Commits on Dec 12, 2022

1. security: update prometheus/exporter-toolkit for CVE-2022-46146 …

   More details at https://github.com/grafana/mimir/security/dependabot/12
   
   Many other libraries have updates forced by this change:
   
   	github.com/prometheus/alertmanager c60fafa6025c
   	github.com/prometheus/client_golang v1.14.0
   	github.com/spf13/afero v1.8.2
   	github.com/weaveworks/common 7c2720a9024d
   	golang.org/x/crypto v0.1.0
   	golang.org/x/net v0.1.0
   	golang.org/x/sync v0.1.0
   	go.opentelemetry.io/otel v1.11.1
   	go.opentelemetry.io/otel/trace v1.11.1
   	golang.org/x/sys v0.1.0
   
   (Indirect dependencies)
   	github.com/coreos/go-systemd/v22 v22.4.0
   	github.com/go-openapi/runtime v0.25.0
   	github.com/gofrs/uuid v4.3.1
   	github.com/hashicorp/go-hclog v1.2.0
   	github.com/matttproud/golang_protobuf_extensions v1.0.4
   	go.mongodb.org/mongo-driver v1.11.0
   	golang.org/x/mod v0.6.0
   	golang.org/x/text v0.4.0
   	golang.org/x/tools v0.2.0
   	gopkg.in/ini.v1 v1.67.0
   	gopkg.in/telebot.v3 v3.1.2

   

   bboreham committed Dec 12, 2022
   Configuration menu

   • View commit details
   • Copy full SHA for 5d2d6d5
   • Browse repository at this point

   Copy the full SHA

   5d2d6d5 View commit details

   Browse the repository at this point in the history

2. Follow up weaveworks/common update to fix protobuf definitions …

   New weaveworks common explicitly includes gogo protobuf on a more
   generic location.
   See weaveworks/common#265
   
   Signed-off-by: György Krajcsovits <gyorgy.krajcsovits@grafana.com>

   

   krajorama authored and bboreham committed Dec 12, 2022
   Configuration menu

   • View commit details
   • Copy full SHA for da05c26
   • Browse repository at this point

   Copy the full SHA

   da05c26 View commit details

   Browse the repository at this point in the history