fix cve (#800)

* fix cve

* remove inactivated linters

* fix golangci-lint

* fix go

* fix python

* fix sample cve

* fix ci

Author: freeznet

.github/workflows/bundle-release.yml

@@ -49,10 +49,10 @@ jobs:
           username: ${{ secrets.DOCKER_USER }}
           password: ${{ secrets.DOCKER_PASSWORD }}
 
-      - name: Set up GO 1.22.12
+      - name: Set up GO 1.23.7
         uses: actions/setup-go@v1
         with:
-          go-version: 1.22.12
+          go-version: 1.23.7
         id: go
 
       - name: InstallKubebuilder
@@ -180,10 +180,10 @@ jobs:
           username: ${{ secrets.DOCKER_USER }}
           password: ${{ secrets.DOCKER_PASSWORD }}
 
-      - name: Set up GO 1.22.12
+      - name: Set up GO 1.23.7
         uses: actions/setup-go@v1
         with:
-          go-version: 1.22.12
+          go-version: 1.23.7
         id: go
 
       - name: InstallKubebuilder

.github/workflows/olm-verify.yml

@@ -34,10 +34,10 @@ jobs:
       - name: checkout
         uses: actions/checkout@v2
 
-      - name: Set up GO 1.22.12
+      - name: Set up GO 1.23.7
         uses: actions/setup-go@v1
         with:
-          go-version: 1.22.12
+          go-version: 1.23.7
         id: go
 
       - name: InstallKubebuilder

.github/workflows/project.yml

@@ -18,7 +18,7 @@ jobs:
     strategy:
       fail-fast: false
       matrix:
-        go-version: [1.21.9, 1.22.12]
+        go-version: [1.22.12, 1.23.7]
     steps:
       - name: Free Disk Space (Ubuntu)
         uses: jlumbroso/[email protected]
@@ -51,7 +51,7 @@ jobs:
 
       - name: InstallTool
         run: |
-          wget -O - -q https://raw.githubusercontent.com/golangci/golangci-lint/master/install.sh| sh -s v1.57.2
+          wget -O - -q https://raw.githubusercontent.com/golangci/golangci-lint/master/install.sh| sh -s v1.64.7
           ./bin/golangci-lint --version
 
       - name: validate controller-gen

.github/workflows/release.yml

@@ -37,10 +37,10 @@ jobs:
           username: ${{ secrets.DOCKER_USER }}
           password: ${{ secrets.DOCKER_PASSWORD }}
 
-      - name: Set up GO 1.22.12
+      - name: Set up GO 1.23.7
         uses: actions/setup-go@v1
         with:
-          go-version: 1.22.12
+          go-version: 1.23.7
         id: go
 
       - name: InstallKubebuilder

.github/workflows/test-helm-charts.yml

@@ -62,7 +62,7 @@ jobs:
 
       - uses: actions/setup-python@v2
         with:
-          python-version: 3.7
+          python-version: 3.9
 
       - name: Set up chart-testing
         uses: helm/[email protected]
@@ -83,11 +83,11 @@ jobs:
         run: hack/kind-cluster-build.sh --name chart-testing -c 1 -v 10 --k8sVersion v1.23.17
         if: steps.list-changed.outputs.changed == 'true'
 
-      - name: Set up GO 1.22.12
+      - name: Set up GO 1.23.7
         if: steps.list-changed.outputs.changed == 'true'
         uses: actions/setup-go@v1
         with:
-          go-version: 1.22.12
+          go-version: 1.23.7
         id: go
 
       - name: setup kubebuilder 3.6.0

.github/workflows/trivy.yml

@@ -34,10 +34,10 @@ jobs:
           repository: ${{github.event.pull_request.head.repo.full_name}}
           ref: ${{ github.event.pull_request.head.sha }}
 
-      - name: Set up GO 1.22.12
+      - name: Set up GO 1.23.7
         uses: actions/setup-go@v1
         with:
-          go-version: 1.22.12
+          go-version: 1.23.7
         id: go
 
       - name: InstallKubebuilder

.github/workflows/trivy_scheduled_master.yml

@@ -45,10 +45,10 @@ jobs:
           repository: ${{github.event.pull_request.head.repo.full_name}}
           ref: ${{ github.event.pull_request.head.sha }}
 
-      - name: Set up GO 1.22.12
+      - name: Set up GO 1.23.7
         uses: actions/setup-go@v1
         with:
-          go-version: 1.22.12
+          go-version: 1.23.7
         id: go
 
       - name: InstallKubebuilder

.golangci.yml

@@ -7,19 +7,19 @@ linters:
   disable-all: true
   enable:
     - bodyclose
-    - deadcode
+#     - deadcode
     - goimports
-    - golint
+#     - golint
     - gosimple
     - govet
     - ineffassign
-    - interfacer
+#     - interfacer
     - misspell
     - staticcheck
-    - structcheck
+#     - structcheck
     - stylecheck
     - typecheck
     - unconvert
     - unparam
-    - varcheck
+#     - varcheck
     - prealloc

Dockerfile

@@ -1,5 +1,5 @@
 # Build the manager binary
-FROM golang:1.22.12-bullseye as builder
+FROM golang:1.23.7-bullseye as builder
 
 WORKDIR /workspace/api
 COPY api/ .

api/go.mod

@@ -1,20 +1,20 @@
 module github.com/streamnative/function-mesh/api
 
-go 1.21
+go 1.23.7
 
 require (
-	k8s.io/api v0.29.4
-	k8s.io/apimachinery v0.29.4
+	k8s.io/api v0.30.9
+	k8s.io/apimachinery v0.30.9
 	k8s.io/autoscaler/vertical-pod-autoscaler v0.11.0
-	k8s.io/client-go v0.29.4
-	sigs.k8s.io/controller-runtime v0.17.3
+	k8s.io/client-go v0.30.9
+	sigs.k8s.io/controller-runtime v0.18.6
 )
 
 require (
 	github.com/davecgh/go-spew v1.1.1 // indirect
 	github.com/emicklei/go-restful/v3 v3.11.0 // indirect
 	github.com/evanphx/json-patch v4.12.0+incompatible // indirect
-	github.com/go-logr/logr v1.4.1 // indirect
+	github.com/go-logr/logr v1.4.2 // indirect
 	github.com/go-openapi/jsonpointer v0.19.6 // indirect
 	github.com/go-openapi/jsonreference v0.20.2 // indirect
 	github.com/go-openapi/swag v0.22.3 // indirect
@@ -30,12 +30,12 @@ require (
 	github.com/modern-go/reflect2 v1.0.2 // indirect
 	github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 // indirect
 	github.com/pkg/errors v0.9.1 // indirect
-	golang.org/x/net v0.33.0 // indirect
+	golang.org/x/net v0.37.0 // indirect
 	golang.org/x/oauth2 v0.12.0 // indirect
-	golang.org/x/sys v0.28.0 // indirect
-	golang.org/x/term v0.27.0 // indirect
-	golang.org/x/text v0.21.0 // indirect
-	golang.org/x/time v0.4.0 // indirect
+	golang.org/x/sys v0.31.0 // indirect
+	golang.org/x/term v0.30.0 // indirect
+	golang.org/x/text v0.23.0 // indirect
+	golang.org/x/time v0.3.0 // indirect
 	google.golang.org/appengine v1.6.7 // indirect
 	google.golang.org/protobuf v1.33.0 // indirect
 	gopkg.in/inf.v0 v0.9.1 // indirect