Skip to content

Commit 7eec9b5

Browse files
vasil-cfvasil-cf
authored
fix: security vulnerabilities CVE-2025-58050 and CVE-2025-59343 (#888)
## What ## Why https://codefresh-io.atlassian.net/browse/CR-31902 ## Notes
1 parent 0f59a2a commit 7eec9b5

File tree

7 files changed

+12
-12
lines changed

7 files changed

+12
-12
lines changed

.nvmrc

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1 +1 @@
1-
v22.16.0
1+
v22.21.0

Dockerfile

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -14,7 +14,7 @@ RUN pyinstaller --noconfirm --onefile --log-level DEBUG --clean --distpath /tmp/
1414
FROM bitnamilegacy/kubectl:1.33.1 AS kubectl
1515

1616
# Main
17-
FROM node:22.16.0-alpine3.22
17+
FROM node:22.21.0-alpine3.22
1818
RUN apk --update add --no-cache \
1919
bash \
2020
ca-certificates \

Dockerfile-debian

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -14,7 +14,7 @@ RUN pyinstaller --noconfirm --onefile --log-level DEBUG --clean --distpath /tmp/
1414
FROM bitnamilegacy/kubectl:1.33.1 as kubectl
1515

1616
# Main
17-
FROM node:22.16.0-bookworm-slim
17+
FROM node:22.21.0-trixie-slim
1818
RUN apt update \
1919
&& apt -y install \
2020
apt-transport-https \

Dockerfile-debian-rootless

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -14,7 +14,7 @@ RUN pyinstaller --noconfirm --onefile --log-level DEBUG --clean --distpath /tmp/
1414
FROM bitnamilegacy/kubectl:1.33.1 as kubectl
1515

1616
# Main
17-
FROM node:22.16.0-bookworm-slim
17+
FROM node:22.21.0-trixie-slim
1818
RUN apt update \
1919
&& apt -y install \
2020
bash \

Dockerfile-rootless

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -14,7 +14,7 @@ RUN pyinstaller --noconfirm --onefile --log-level DEBUG --clean --distpath /tmp/
1414
FROM bitnamilegacy/kubectl:1.33.1 as kubectl
1515

1616
# Main
17-
FROM node:22.16.0-alpine3.22
17+
FROM node:22.21.0-alpine3.22
1818
RUN apk --update add --no-cache \
1919
bash \
2020
ca-certificates \

package.json

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,6 +1,6 @@
11
{
22
"name": "codefresh",
3-
"version": "0.89.4",
3+
"version": "0.89.5",
44
"description": "Codefresh command line utility",
55
"main": "index.js",
66
"preferGlobal": true,

yarn.lock

Lines changed: 6 additions & 6 deletions
Original file line numberDiff line numberDiff line change
@@ -6360,19 +6360,19 @@ table@^6.0.9:
63606360
strip-ansi "^6.0.1"
63616361

63626362
tar-fs@^2.0.0, tar-fs@^2.1.1:
6363-
version "2.1.3"
6364-
resolved "https://registry.yarnpkg.com/tar-fs/-/tar-fs-2.1.3.tgz#fb3b8843a26b6f13a08e606f7922875eb1fbbf92"
6365-
integrity sha512-090nwYJDmlhwFwEW3QQl+vaNnxsO2yVsd45eTKRBzSzu+hlb1w2K9inVq5b0ngXuLVqQ4ApvsUHHnu/zQNkWAg==
6363+
version "2.1.4"
6364+
resolved "https://registry.yarnpkg.com/tar-fs/-/tar-fs-2.1.4.tgz#800824dbf4ef06ded9afea4acafe71c67c76b930"
6365+
integrity sha512-mDAjwmZdh7LTT6pNleZ05Yt65HC3E+NiQzl672vQG38jIrehtJk/J3mNwIg+vShQPcLF/LV7CMnDW6vjj6sfYQ==
63666366
dependencies:
63676367
chownr "^1.1.1"
63686368
mkdirp-classic "^0.5.2"
63696369
pump "^3.0.0"
63706370
tar-stream "^2.1.4"
63716371

63726372
tar-fs@~1.16.3:
6373-
version "1.16.5"
6374-
resolved "https://registry.yarnpkg.com/tar-fs/-/tar-fs-1.16.5.tgz#716a323609c11182d1d3d7b5bf277d15dc128665"
6375-
integrity sha512-1ergVCCysmwHQNrOS+Pjm4DQ4nrGp43+Xnu4MRGjCnQu/m3hEgLNS78d5z+B8OJ1hN5EejJdCSFZE1oM6AQXAQ==
6373+
version "1.16.6"
6374+
resolved "https://registry.yarnpkg.com/tar-fs/-/tar-fs-1.16.6.tgz#b9be1854fe2c88af488a2edcc570be965e9750bd"
6375+
integrity sha512-JkOgFt3FxM/2v2CNpAVHqMW2QASjc/Hxo7IGfNd3MHaDYSW/sBFiS7YVmmhmr8x6vwN1VFQDQGdT2MWpmIuVKA==
63766376
dependencies:
63776377
chownr "^1.0.1"
63786378
mkdirp "^0.5.1"

0 commit comments

Comments
 (0)