zarf/0.49.0-r0: cve remediation (#43750)

zarf/0.49.0-r0: fix GHSA-c6gw-w398-hv78 Advisory data: https://github.com/wolfi-dev/advisories/blob/main/zarf.advisories.yaml Source code for this service: https://go/cve-remedy-automation-source Logs for this execution: https://go/cve-remedy-automation-logs Docs for this service: _(not provided yet)_ Co-authored-by: octo-sts[bot] <[email protected]>
wolfi-dev · Feb 25, 2025 · 0962df0 · 0962df0
1 parent ade3b6e
commit 0962df0
Showing 1 changed file with 6 additions and 1 deletion.
diff --git a/zarf.yaml b/zarf.yaml
@@ -1,7 +1,7 @@
 package:
   name: zarf
   version: "0.49.0"
-  epoch: 0
+  epoch: 1
   description: DevSecOps for Air Gap & Limited-Connection Systems.
   copyright:
     - license: Apache-2.0
@@ -30,6 +30,11 @@ pipeline:
       go mod edit -replace=github.com/mholt/archiver/v3=github.com/anchore/archiver/[email protected]
       go get
 
+  - uses: go/bump
+    with:
+      deps: |-
+        github.com/go-jose/go-jose/[email protected]
+
   - uses: go/build
     with:
       ldflags: -X 'github.com/zarf-dev/zarf/src/config.CLIVersion=v${{package.version}}'