Skip to content

[release-12.2.1] Go: Update to 1.25.3 #112361

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Oct 14, 2025
Merged

[release-12.2.1] Go: Update to 1.25.3 #112361

merged 1 commit into from
Oct 14, 2025

Conversation

@macabu
Copy link
Contributor

@macabu macabu commented Oct 14, 2025

From the Go team:

This release addresses breakage caused by a security patch included in Go 1.25.2
and 1.24.8, which enforced overly restrictive validation on the parsing of X.509
certificates. We've removed those restrictions while maintaining the security
fix that the initial release addressed.

@github-actions
Copy link
Contributor

github-actions bot commented Oct 14, 2025

😢 zizmor failed with exit code 14.

Expand for full output 
error[cache-poisoning]: runtime artifacts potentially vulnerable to a cache poisoning attack
  --> ./.github/workflows/storybook-a11y.yml:42:7
   |
 2 | / on:
 3 | |   pull_request:
 4 | |   push:
 5 | |     branches:
 6 | |       - main
 7 | |       - release-*.*.*
   | |_____________________- generally used when publishing artifacts generated at runtime
...
42 |       - uses: actions/setup-node@v4
   |         ^^^^^^^^^^^^^^^^^^^^^^^^^^^ cache enabled by default here
   |
   = note: audit confidence → Low

303 findings (76 ignored, 226 suppressed): 0 informational, 0 low, 0 medium, 1 high

@macabu macabu marked this pull request as ready for review October 14, 2025 10:17
@macabu macabu requested review from a team, fcjack, matryer and svennergr as code owners October 14, 2025 10:17
@macabu macabu requested review from andresmgot, charandas, radiohead, toddtreece and xnyo and removed request for a team October 14, 2025 10:17
@macabu macabu requested review from CollinFingar, IevaVasiljeva, Sergej-Vlasov, forsethc, joshhunt, juanicabanas, oscarkilhed and samsch and removed request for a team October 14, 2025 10:17
@macabu macabu enabled auto-merge (squash) October 14, 2025 10:21
@macabu macabu merged commit e6db6c9 into release-12.2.1 Oct 14, 2025
155 of 158 checks passed
@macabu macabu deleted the go-update-1.25.3-release-12.2.1 branch October 14, 2025 10:23
@grafana-delivery-bot
Copy link
Contributor

grafana-delivery-bot bot commented Oct 14, 2025

🚀 Your submission is now being built and packaged.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@Proximyst Proximyst Proximyst approved these changes

@fcjack fcjack Awaiting requested review from fcjack fcjack is a code owner

@matryer matryer Awaiting requested review from matryer matryer is a code owner

@svennergr svennergr Awaiting requested review from svennergr svennergr is a code owner

@toddtreece toddtreece Awaiting requested review from toddtreece toddtreece is a code owner automatically assigned from grafana/plugins-platform-backend

@andresmgot andresmgot Awaiting requested review from andresmgot andresmgot is a code owner automatically assigned from grafana/plugins-platform-backend

@xnyo xnyo Awaiting requested review from xnyo xnyo is a code owner automatically assigned from grafana/plugins-platform-backend

@charandas charandas Awaiting requested review from charandas charandas is a code owner automatically assigned from grafana/grafana-app-platform-squad

@radiohead radiohead Awaiting requested review from radiohead radiohead is a code owner automatically assigned from grafana/grafana-app-platform-squad

@forsethc forsethc Awaiting requested review from forsethc forsethc is a code owner automatically assigned from grafana/access-squad

@IevaVasiljeva IevaVasiljeva Awaiting requested review from IevaVasiljeva IevaVasiljeva is a code owner automatically assigned from grafana/access-squad

@CollinFingar CollinFingar Awaiting requested review from CollinFingar CollinFingar is a code owner automatically assigned from grafana/sharing-squad

@juanicabanas juanicabanas Awaiting requested review from juanicabanas juanicabanas is a code owner automatically assigned from grafana/sharing-squad

@joshhunt joshhunt Awaiting requested review from joshhunt joshhunt is a code owner automatically assigned from grafana/grafana-frontend-platform

@samsch samsch Awaiting requested review from samsch samsch is a code owner automatically assigned from grafana/grafana-frontend-platform

@oscarkilhed oscarkilhed Awaiting requested review from oscarkilhed oscarkilhed is a code owner automatically assigned from grafana/dashboards-squad

@Sergej-Vlasov Sergej-Vlasov Awaiting requested review from Sergej-Vlasov Sergej-Vlasov is a code owner automatically assigned from grafana/dashboards-squad

Assignees

No one assigned

Labels

add to changelog area/backend backport A backport PR type/build-packaging

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@macabu @Proximyst