[jira] [Resolved] (YUNIKORN-3270) Update go-ntlmssp dependency across repos

Manikandan R (Jira) Wed, 13 May 2026 00:11:58 -0700


     [ 
https://issues.apache.org/jira/browse/YUNIKORN-3270?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Manikandan R resolved YUNIKORN-3270.
------------------------------------
    Resolution: Fixed

> Update go-ntlmssp dependency across repos
> -----------------------------------------
>
>                 Key: YUNIKORN-3270
>                 URL: https://issues.apache.org/jira/browse/YUNIKORN-3270
>             Project: Apache YuniKorn
>          Issue Type: Task
>          Components: core - common
>            Reporter: Wilfred Spiegelenburg
>            Assignee: Wilfred Spiegelenburg
>            Priority: Major
>              Labels: pull-request-available
>             Fix For: 1.9.0
>
>
> The go-ntlmssp dependency in the core has an open moderate CVE.
> The k8shim shows the same CVE due to the import of the core. Instead of 
> updating the shim independently we need to update the core and the core 
> reference in the k8shim after for the proper fix.



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

[jira] [Resolved] (YUNIKORN-3270) Update go-ntlmssp dependency across repos

Reply via email to