[1.15] fix(deps): Fix deps 1.15#1710
Draft
javier-aliaga wants to merge 6 commits intodapr:release-1.15from
Draft
[1.15] fix(deps): Fix deps 1.15#1710javier-aliaga wants to merge 6 commits intodapr:release-1.15from
javier-aliaga wants to merge 6 commits intodapr:release-1.15from
Conversation
javier-aliaga
force-pushed
the
fix-deps-1.15
branch
from
a61d2b2 to
4c9a5c2
Compare
Upgrade jackson 2.16.1 → 2.18.6 (CVE-2025-52999, CVSS 8.7 DoS), add netty-bom 4.1.132.Final (CVE-2026-33871 CVSS 8.7, CVE-2026-33870 CVSS 7.5), and bump Spring Boot 3.4.3 → 3.4.13 which pulls Tomcat 10.1.46+ (CVE-2025-55754 CVSS 9.6, CVE-2025-55752 CVSS 7.5). Add netty-bom import before grpc-bom so it takes precedence over gRPC's transitive Netty 4.1.124. Signed-off-by: Javier Aliaga <javier@diagrid.io>
Ubuntu 24.04 runners use nf_tables by default, which causes DOCKER-ISOLATION-STAGE-2 chain errors when Docker creates networks. Switch to iptables-legacy before docker/setup-docker-action runs. Signed-off-by: Javier Aliaga <javier@diagrid.io>
The iptables-legacy switch alone isn't enough — Docker needs to be restarted so it recreates the DOCKER-ISOLATION-STAGE-1/2 chains with the legacy backend. Added chain verification for debugging. Signed-off-by: Javier Aliaga <javier@diagrid.io>
The previous restart happened before the action reinstalled Docker, so the isolation chains were wiped. Move the restart to after the action so Docker recreates DOCKER-ISOLATION-STAGE-1/2 with the legacy iptables backend. Signed-off-by: Javier Aliaga <javier@diagrid.io>
The setup-docker-action causes iptables chain errors on Ubuntu 24.04 runners. The default Docker pre-installed on GitHub Actions runners works fine without it, as done on master via PR dapr#1596. Signed-off-by: Javier Aliaga <javier@diagrid.io>
Codecov Report✅ All modified and coverable lines are covered by tests. Additional details and impacted files@@ Coverage Diff @@
## release-1.15 #1710 +/- ##
===============================================
Coverage ? 77.44%
Complexity ? 1794
===============================================
Files ? 207
Lines ? 5555
Branches ? 605
===============================================
Hits ? 4302
Misses ? 930
Partials ? 323 ☔ View full report in Codecov by Sentry. 🚀 New features to boost your workflow:
|
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Description
Please explain the changes you've made
Issue reference
We strive to have all PR being opened based on an issue, where the problem or feature have been discussed prior to implementation.
Please reference the issue this PR will close: #[issue number]
Checklist
Please make sure you've completed the relevant tasks for this PR, out of the following list: