dependabot[bot]
c882d0f9f4
build(deps): bump actions/stale from 6.0.1 to 7.0.0 ( #5823 )
...
Bumps [actions/stale](https://github.com/actions/stale ) from 6.0.1 to 7.0.0.
- [Release notes](https://github.com/actions/stale/releases )
- [Changelog](https://github.com/actions/stale/blob/main/CHANGELOG.md )
- [Commits](5ebf00ea0e...6f05e4244c
2023-01-09 10:08:35 -05:00
dependabot[bot]
c7583b56f1
build(deps): bump ossf/scorecard-action from 2.1.0 to 2.1.2 ( #5824 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-12-28 12:18:56 +01:00
Rich
e7ad486b50
plugin/timeouts - Allow ability to configure listening server timeouts ( #5784 )
2022-12-28 12:14:16 +01:00
dependabot[bot]
6c9b49f5c2
build(deps): bump github.com/Azure/azure-sdk-for-go ( #5819 )
...
Bumps [github.com/Azure/azure-sdk-for-go](https://github.com/Azure/azure-sdk-for-go ) from 67.1.0+incompatible to 67.2.0+incompatible.
- [Release notes](https://github.com/Azure/azure-sdk-for-go/releases )
- [Changelog](https://github.com/Azure/azure-sdk-for-go/blob/main/documentation/release.md )
- [Commits](https://github.com/Azure/azure-sdk-for-go/compare/v67.1.0...v67.2.0 )
---
updated-dependencies:
- dependency-name: github.com/Azure/azure-sdk-for-go
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-12-20 09:14:32 -05:00
dependabot[bot]
c59489ba08
build(deps): bump ossf/scorecard-action from 2.0.6 to 2.1.0 ( #5814 )
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 2.0.6 to 2.1.0.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](99c53751e0...937ffa90d7
2022-12-20 09:03:34 -05:00
dependabot[bot]
682eaa9645
build(deps): bump github.com/prometheus/common from 0.38.0 to 0.39.0 ( #5817 )
2022-12-20 05:55:18 -08:00
dependabot[bot]
618a31738b
build(deps): bump google.golang.org/api from 0.104.0 to 0.105.0 ( #5816 )
2022-12-20 05:55:09 -08:00
dependabot[bot]
5ef8508a7d
build(deps): bump gopkg.in/DataDog/dd-trace-go.v1 from 1.43.1 to 1.45.1 ( #5818 )
2022-12-20 05:54:55 -08:00
dependabot[bot]
63df0a54a6
build(deps): bump github.com/aws/aws-sdk-go from 1.44.152 to 1.44.162 ( #5815 )
2022-12-20 05:54:43 -08:00
dependabot[bot]
b2ed4bac77
build(deps): bump actions/dependency-review-action from 3.0.1 to 3.0.2 ( #5813 )
2022-12-20 05:54:08 -08:00
dependabot[bot]
dd9ee4d000
build(deps): bump actions/setup-go from 3.4.0 to 3.5.0 ( #5812 )
2022-12-20 05:54:00 -08:00
dependabot[bot]
611a2f0769
build(deps): bump github/codeql-action from 2.1.36 to 2.1.37 ( #5811 )
2022-12-20 05:53:52 -08:00
Yash Singh
1d55217ea8
Added trivy-nightly-scan for coredns images ( #5810 )
...
* Added trivy-nightly-scan for coredns images
Signed-off-by: Yash Singh <yashsingh1774@gmail.com>
Signed-off-by: Yash Singh <syash@vmware.com>
* Updated the changes
Signed-off-by: Yash Singh <syash@vmware.com>
Signed-off-by: Yash Singh <yashsingh1774@gmail.com>
Signed-off-by: Yash Singh <syash@vmware.com>
2022-12-16 09:47:52 -05:00
Yong Tang
3b81fc8d8c
Update modules manually to fix build failures ( #5808 )
...
This PR updates the following modules as auto upgrade from github actions failed (need to update at the same tiem):
+ k8s.io/api v0.26.0
+ k8s.io/apimachinery v0.26.0
+ k8s.io/client-go v0.26.0
Signed-off-by: Yong Tang <yong.tang.github@outlook.com>
Signed-off-by: Yong Tang <yong.tang.github@outlook.com>
2022-12-15 11:49:27 -05:00
dependabot[bot]
1e2156a8cd
build(deps): bump google.golang.org/api from 0.103.0 to 0.104.0 ( #5805 )
2022-12-15 06:17:19 -08:00
dependabot[bot]
e4795336b6
build(deps): bump github/codeql-action from 2.1.35 to 2.1.36 ( #5801 )
2022-12-15 06:15:35 -08:00
dependabot[bot]
74160a5f60
build(deps): bump github.com/prometheus/common from 0.37.0 to 0.38.0 ( #5802 )
2022-12-15 06:15:17 -08:00
Stephen Kitt
60b7161fee
Drop obsolete client-go auth plugins ( #5806 )
...
* Drop obsolete client-go auth plugins
The OpenStack plugin is no longer available, even in version 0.24.4 of
client-go; see
https://github.com/kubernetes/client-go/blob/v0.24.4/plugin/pkg/client/auth/openstack/openstack_stub.go
It is replaced by the client-keystone-auth credential plugin. The
plugin has been entirely removed in client-go 0.26.0, which breaks the
build when any other dependency pulls in client-go 0.26.0 or later.
The GCP plugin is deprecated in K8s 1.22+ and unavailable in 1.26+
(although it is still stubbed in client-go 0.26.0). Is it replaced by
the gke-gcloud-auth-plugin credential plugin.
Signed-off-by: Stephen Kitt <skitt@redhat.com>
* Update plugin/kubernetes/setup.go
Signed-off-by: Stephen Kitt <skitt@redhat.com>
Co-authored-by: Chris O'Haver <cohaver@infoblox.com>
2022-12-13 15:49:03 -05:00
LAMRobinson
c3228615e0
plugin/kubernetes: error NXDOMAIN for TXT lookups ( #5737 )
...
plugin/kubernetes: fix NXDOMAIN/NOERROR responses for TXT queries
Signed-off-by: Laurence Robinson <laurence_robinson@live.co.uk>
Co-authored-by: Laurence Robinson <laurence.robinson@deshaw.com>
2022-12-13 15:36:46 -05:00
Chris O'Haver
7813b6e090
plugin/geoip: Add GLSB example ( #5795 )
...
* add glsb example
Signed-off-by: Chris O'Haver <cohaver@infoblox.com>
2022-12-07 12:27:23 +01:00
dependabot[bot]
47e5893e88
build(deps): bump go.etcd.io/etcd/client/v3 from 3.5.5 to 3.5.6 ( #5781 )
2022-12-06 11:57:53 -08:00
dependabot[bot]
4e93f5465c
build(deps): bump go.etcd.io/etcd/api/v3 from 3.5.5 to 3.5.6 ( #5783 )
2022-12-06 11:44:33 -08:00
dependabot[bot]
3cc986693d
build(deps): bump actions/setup-go from 3.3.1 to 3.4.0 ( #5788 )
...
Bumps [actions/setup-go](https://github.com/actions/setup-go ) from 3.3.1 to 3.4.0.
- [Release notes](https://github.com/actions/setup-go/releases )
- [Commits](c4a742cab1...d0a58c1c4d
2022-12-06 10:52:51 -05:00
dependabot[bot]
7de1b2ca23
build(deps): bump actions/stale from 5.1.1 to 6.0.1 ( #5789 )
...
Bumps [actions/stale](https://github.com/actions/stale ) from 5.1.1 to 6.0.1.
- [Release notes](https://github.com/actions/stale/releases )
- [Changelog](https://github.com/actions/stale/blob/main/CHANGELOG.md )
- [Commits](9c1b1c6e11...5ebf00ea0e
2022-12-06 10:52:38 -05:00
dependabot[bot]
09da88b140
build(deps): bump github/codeql-action from 2.1.32 to 2.1.35 ( #5790 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.32 to 2.1.35.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](4238421316...b2a92eb56d
2022-12-06 10:52:26 -05:00
dependabot[bot]
cd71a1ab61
build(deps): bump github.com/aws/aws-sdk-go from 1.44.146 to 1.44.152 ( #5791 )
...
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go ) from 1.44.146 to 1.44.152.
- [Release notes](https://github.com/aws/aws-sdk-go/releases )
- [Commits](https://github.com/aws/aws-sdk-go/compare/v1.44.146...v1.44.152 )
---
updated-dependencies:
- dependency-name: github.com/aws/aws-sdk-go
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-12-06 10:52:13 -05:00
dependabot[bot]
8167b01016
build(deps): bump golang.org/x/sys from 0.2.0 to 0.3.0 ( #5792 )
...
Bumps [golang.org/x/sys](https://github.com/golang/sys ) from 0.2.0 to 0.3.0.
- [Release notes](https://github.com/golang/sys/releases )
- [Commits](https://github.com/golang/sys/compare/v0.2.0...v0.3.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/sys
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-12-06 10:51:49 -05:00
Ben Kaplan
9b94696b11
plugin/edns: remove truncating of question section on bad EDNS version ( #5787 )
...
* plugin/edns: remove truncating of question section on bad EDNS version
EDNS requests of "Unknown Version" removed the query section altogether.
Not sure why since this is not require (see [link](https://kb.isc.org/docs/edns-compatibility-dig-queries )
This cause issues with DNS solutions that uses this information (initial queried name, type and class) in order to route the response to the right client (e.g. PDNS).
The change here is to keep the inital query section as is.
Signed-off-by: Ben Kaplan <ben.kaplan@redis.com>
* adding tests for edns0 version check
Signed-off-by: Ben Kaplan <ben.kaplan@redis.com>
* adding tests for non-edns0 version check
Signed-off-by: Ben Kaplan <ben.kaplan@redis.com>
Signed-off-by: Ben Kaplan <ben.kaplan@redis.com>
2022-12-01 09:07:13 -05:00
dependabot[bot]
5517c3fd30
build(deps): bump github.com/aws/aws-sdk-go from 1.44.142 to 1.44.146 ( #5782 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-11-30 23:01:18 +01:00
Chris O'Haver
04a30198c3
plugin/dnstap: Fix behavior when multiple dnstap plugins specified ( #5773 )
...
* fix multiple dnstap plugins behavior
Signed-off-by: Chris O'Haver <cohaver@infoblox.com>
2022-11-28 10:33:31 -05:00
dependabot[bot]
c4dd9d50f1
build(deps): bump actions/dependency-review-action from 2.5.1 to 3.0.1 ( #5772 )
2022-11-21 05:27:26 -08:00
dependabot[bot]
bb7dffa749
build(deps): bump github.com/aws/aws-sdk-go from 1.44.132 to 1.44.142 ( #5771 )
2022-11-21 05:27:17 -08:00
dependabot[bot]
38dc618e83
build(deps): bump golang.org/x/sys from 0.1.0 to 0.2.0 ( #5770 )
2022-11-21 05:27:06 -08:00
dependabot[bot]
47026f761b
build(deps): bump google.golang.org/grpc from 1.50.1 to 1.51.0 ( #5769 )
2022-11-21 05:26:59 -08:00
dependabot[bot]
d01be1fb66
build(deps): bump github.com/Azure/azure-sdk-for-go ( #5768 )
2022-11-21 05:26:50 -08:00
dependabot[bot]
78da65d8cd
build(deps): bump golangci/golangci-lint-action from 3.3.0 to 3.3.1 ( #5755 )
...
Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action ) from 3.3.0 to 3.3.1.
- [Release notes](https://github.com/golangci/golangci-lint-action/releases )
- [Commits](https://github.com/golangci/golangci-lint-action/compare/v3.3.0...v3.3.1 )
---
updated-dependencies:
- dependency-name: golangci/golangci-lint-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-11-14 16:44:25 -05:00
dependabot[bot]
d1d8cd78b4
build(deps): bump github/codeql-action from 2.1.31 to 2.1.32 ( #5756 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.31 to 2.1.32.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](c3b6fce4ee...4238421316
2022-11-14 16:42:27 -05:00
dependabot[bot]
a83fd41428
build(deps): bump github.com/prometheus/client_golang ( #5760 )
...
Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang ) from 1.13.1 to 1.14.0.
- [Release notes](https://github.com/prometheus/client_golang/releases )
- [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md )
- [Commits](https://github.com/prometheus/client_golang/compare/v1.13.1...v1.14.0 )
---
updated-dependencies:
- dependency-name: github.com/prometheus/client_golang
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-11-14 16:40:27 -05:00
dependabot[bot]
e6dc270467
build(deps): bump google.golang.org/api from 0.102.0 to 0.103.0 ( #5757 )
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.102.0 to 0.103.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.102.0...v0.103.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-11-14 16:39:09 -05:00
dependabot[bot]
cc9321f36c
build(deps): bump k8s.io/api from 0.25.3 to 0.25.4 ( #5753 )
...
Bumps [k8s.io/api](https://github.com/kubernetes/api ) from 0.25.3 to 0.25.4.
- [Release notes](https://github.com/kubernetes/api/releases )
- [Commits](https://github.com/kubernetes/api/compare/v0.25.3...v0.25.4 )
---
updated-dependencies:
- dependency-name: k8s.io/api
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-11-14 16:02:28 -05:00
Ondřej Benkovský
bd9ad69a2b
fix readme after removing gofmt and gotidy actions ( #5749 )
2022-11-10 03:38:52 -08:00
Ondřej Benkovský
13ac3adaaa
remove superfluous and nonworking github actions ( #5747 )
...
Signed-off-by: Ondřej Benkovský <ondrej.benkovsky@jamf.com>
Signed-off-by: Ondřej Benkovský <ondrej.benkovsky@jamf.com>
2022-11-09 14:06:01 -05:00
dependabot[bot]
4649281772
build(deps): bump github.com/aws/aws-sdk-go from 1.44.126 to 1.44.132 ( #5745 )
...
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go ) from 1.44.126 to 1.44.132.
- [Release notes](https://github.com/aws/aws-sdk-go/releases )
- [Commits](https://github.com/aws/aws-sdk-go/compare/v1.44.126...v1.44.132 )
---
updated-dependencies:
- dependency-name: github.com/aws/aws-sdk-go
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-11-08 13:00:09 -05:00
dependabot[bot]
0a5e8eaffb
build(deps): bump github.com/prometheus/client_golang ( #5739 )
...
Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang ) from 1.13.0 to 1.13.1.
- [Release notes](https://github.com/prometheus/client_golang/releases )
- [Changelog](https://github.com/prometheus/client_golang/blob/v1.13.1/CHANGELOG.md )
- [Commits](https://github.com/prometheus/client_golang/compare/v1.13.0...v1.13.1 )
---
updated-dependencies:
- dependency-name: github.com/prometheus/client_golang
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-11-08 10:53:00 -05:00
dependabot[bot]
f550c37db2
build(deps): bump github/codeql-action from 2.1.29 to 2.1.31 ( #5738 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.29 to 2.1.31.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](ec3cf9c605...c3b6fce4ee
2022-11-08 10:52:48 -05:00
dependabot[bot]
a148b465af
build(deps): bump google.golang.org/api from 0.101.0 to 0.102.0 ( #5741 )
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.101.0 to 0.102.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.101.0...v0.102.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-11-08 10:52:26 -05:00
Chris O'Haver
47c99dc73b
dont match external services when endpoint is specified ( #5734 )
...
Signed-off-by: Chris O'Haver <cohaver@infoblox.com>
2022-11-04 09:54:57 -04:00
rsclarke
ead84e1fa8
plugin/acl: adding ability to drop queries ( #5722 )
...
Both block and filter actions write responses to the client based upon
the source IP address of the UDP packet containing the query. An
attacker spoofing the source IP address to that of their target, can
elicit a response to be sent to the victim host, known as DNS
Reflection. If an attacker is able to elicit a large response from a
relatively small query, with a spoofed source IP address, they are able
to increase the amount of data sent to the victim, known as DNS
Amplification. Scaling this from one to many queries allows an attacker
to perform an effective Denial of Service (DoS) attack against their
target.
Adding the drop action enables CoreDNS to ignore queries of a given
type or network range from being processed and a response written,
where an operator knows ahead of time, should not originate or be
destined to.
Signed-off-by: rsclarke <hey@rsclarke.dev>
Signed-off-by: rsclarke <hey@rsclarke.dev>
2022-11-01 10:16:55 +01:00
dependabot[bot]
faaf2b446e
build(deps): bump gopkg.in/DataDog/dd-trace-go.v1 from 1.43.0 to 1.43.1 ( #5727 )
...
Bumps [gopkg.in/DataDog/dd-trace-go.v1](https://github.com/DataDog/dd-trace-go ) from 1.43.0 to 1.43.1.
- [Release notes](https://github.com/DataDog/dd-trace-go/releases )
- [Commits](https://github.com/DataDog/dd-trace-go/compare/v1.43.0...v1.43.1 )
---
updated-dependencies:
- dependency-name: gopkg.in/DataDog/dd-trace-go.v1
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-10-31 12:54:42 -04:00
dependabot[bot]
f10e60fb93
build(deps): bump github.com/aws/aws-sdk-go from 1.44.121 to 1.44.126 ( #5728 )
...
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go ) from 1.44.121 to 1.44.126.
- [Release notes](https://github.com/aws/aws-sdk-go/releases )
- [Commits](https://github.com/aws/aws-sdk-go/compare/v1.44.121...v1.44.126 )
---
updated-dependencies:
- dependency-name: github.com/aws/aws-sdk-go
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-10-31 12:20:42 -04:00
