Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package gh for openSUSE:Factory checked in
at 2024-11-18 20:02:17
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/gh (Old)
and /work/SRC/openSUSE:Factory/.gh.new.2017 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "gh"
Mon Nov 18 20:02:17 2024 rev:65 rq:1224831 version:2.62.0
Changes:
--------
--- /work/SRC/openSUSE:Factory/gh/gh.changes 2024-10-28 15:23:29.667391698
+0100
+++ /work/SRC/openSUSE:Factory/.gh.new.2017/gh.changes 2024-11-18
20:03:14.166215708 +0100
@@ -1,0 +2,15 @@
+Fri Nov 15 18:58:36 UTC 2024 - Andreas Stieger <andreas.stie...@gmx.de>
+
+- Update to version 2.62.0
+ * CVE-2024-52308: remote code execution (RCE) when users connect
+ to a malicious Codespace SSH server and use the gh codespace
+ ssh or gh codespace logs commands
+ (boo#1233387, GHSA-p2h2-3vg9-4p87)
+ * Check extension for latest version when executed
+ * Shorten extension release checking from 3s to 1s
+- includes changes from 2.61.0:
+ * Enhance gh repo edit command to inform users about
+ consequences of changing visibility and ensure users are
+ intentional before making irreversible changes
+
+-------------------------------------------------------------------
Old:
----
cli-2.60.1.tar.zst
New:
----
cli-2.62.0.tar.zst
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ gh.spec ++++++
--- /var/tmp/diff_new_pack.Uohk8p/_old 2024-11-18 20:03:14.898246325 +0100
+++ /var/tmp/diff_new_pack.Uohk8p/_new 2024-11-18 20:03:14.902246493 +0100
@@ -20,7 +20,7 @@
%define goflags "-buildmode=pie -trimpath -mod=vendor -modcacherw"
%define sname cli
Name: gh
-Version: 2.60.1
+Version: 2.62.0
Release: 0
Summary: The official CLI for GitHub
License: MIT
++++++ _service ++++++
--- /var/tmp/diff_new_pack.Uohk8p/_old 2024-11-18 20:03:14.938247999 +0100
+++ /var/tmp/diff_new_pack.Uohk8p/_new 2024-11-18 20:03:14.942248166 +0100
@@ -3,7 +3,7 @@
<param name="url">https://github.com/cli/cli</param>
<param name="scm">git</param>
<param name="exclude">.git</param>
- <param name="revision">v2.60.1</param>
+ <param name="revision">v2.62.0</param>
<param name="versionformat">@PARENT_TAG@</param>
<param name="changesgenerate">enable</param>
<param name="versionrewrite-pattern">v(.*)</param>
@@ -16,7 +16,7 @@
<param name="compression">zst</param>
</service>
<service name="go_modules" mode="manual">
- <param name="archive">cli-2.60.1.tar.zst</param>
+ <param name="archive">cli-2.62.0.tar.zst</param>
</service>
</services>
++++++ _servicedata ++++++
--- /var/tmp/diff_new_pack.Uohk8p/_old 2024-11-18 20:03:14.966249170 +0100
+++ /var/tmp/diff_new_pack.Uohk8p/_new 2024-11-18 20:03:14.970249337 +0100
@@ -1,7 +1,7 @@
<servicedata>
<service name="tar_scm">
<param name="url">https://github.com/cli/cli</param>
- <param
name="changesrevision">a381ca5dc43eaba63d2356b1442da119864a17ac</param>
+ <param
name="changesrevision">cd3f2ad064fbeca17d330e321fef0591eaa0fea5</param>
</service>
</servicedata>
(No newline at EOF)
++++++ cli-2.60.1.tar.zst -> cli-2.62.0.tar.zst ++++++
++++ 3462 lines of diff (skipped)
++++++ vendor.tar.gz ++++++
/work/SRC/openSUSE:Factory/gh/vendor.tar.gz
/work/SRC/openSUSE:Factory/.gh.new.2017/vendor.tar.gz differ: char 5, line 1
