Skip to content

Commit c094b60

Browse files
sirdeggenclaude
andcommitted
chore(infra): bump patch versions to publish CVE-fixed images
The HIGH-CVE remediation merged in the previous infra fix changed the Dockerfiles and dependency trees but not the package.json versions, so the infra-release workflow (which only builds a component when ghcr.io/<owner>/<dir>:v<version> does not already exist) would skip them and leave the vulnerable images live. Roll each fixed component by one patch so the next infra release builds and publishes the remediated images: - chaintracks-server: 1.0.6 -> 1.0.7 - message-box-server: 1.1.10 -> 1.1.11 - overlay-server: 2.1.11 -> 2.1.12 - uhrp-server-cloud-bucket: 0.2.6 -> 0.2.7 - wab: 1.4.6 -> 1.4.7 - wallet-infra: 2.0.9 -> 2.0.10 Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
1 parent 264da4e commit c094b60

12 files changed

Lines changed: 18 additions & 18 deletions

File tree

infra/chaintracks-server/package-lock.json

Lines changed: 2 additions & 2 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

infra/chaintracks-server/package.json

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,6 +1,6 @@
11
{
22
"name": "chaintracks-server",
3-
"version": "1.0.6",
3+
"version": "1.0.7",
44
"description": "TypeScript Express server wrapping ChaintracksService from @bsv/wallet-toolbox",
55
"main": "dist/server.js",
66
"type": "commonjs",

infra/message-box-server/package-lock.json

Lines changed: 2 additions & 2 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

infra/message-box-server/package.json

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
{
22
"name": "@bsv/messagebox-server",
33
"private": true,
4-
"version": "1.1.10",
4+
"version": "1.1.11",
55
"main": "./out/src/index.js",
66
"type": "module",
77
"scripts": {

infra/overlay-server/package-lock.json

Lines changed: 2 additions & 2 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

infra/overlay-server/package.json

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
{
22
"name": "@bsv/overlay-express-examples",
33
"private": true,
4-
"version": "2.1.11",
4+
"version": "2.1.12",
55
"description": "Run the overlay infrastructure for distributed applications.",
66
"homepage": "https://github.com/bsv-blockchain/ts-stack/tree/main/infra/overlay-server#readme",
77
"bugs": {

infra/uhrp-server-cloud-bucket/package-lock.json

Lines changed: 2 additions & 2 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

infra/uhrp-server-cloud-bucket/package.json

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,6 +1,6 @@
11
{
22
"name": "@bsv/uhrp-storage-server",
3-
"version": "0.2.6",
3+
"version": "0.2.7",
44
"main": "./out/src/index.js",
55
"types": "./out/src/index.d.ts",
66
"files": [

infra/wab/package-lock.json

Lines changed: 2 additions & 2 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

infra/wab/package.json

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
{
22
"name": "@bsv/wab-server",
33
"private": true,
4-
"version": "1.4.6",
4+
"version": "1.4.7",
55
"description": "Wallet Authentication Backend (WAB) server",
66
"main": "dist/server.js",
77
"scripts": {

0 commit comments

Comments
 (0)