headlamp-intel-gpu-plugin

privilegedescalation/headlamp-intel-gpu-plugin

You've already forked headlamp-intel-gpu-plugin

Code Issues 2 Pull Requests 1 Actions Packages Projects Releases 9 Wiki Activity

Compare commits

base: privilegedescalation/headlamp-intel-gpu-plugin:v1.1.0

privilegedescalation/headlamp-intel-gpu-plugin:v1.1.0 privilegedescalation/headlamp-intel-gpu-plugin:v1.0.0 privilegedescalation/headlamp-intel-gpu-plugin:v0.4.3 privilegedescalation/headlamp-intel-gpu-plugin:v0.4.2 privilegedescalation/headlamp-intel-gpu-plugin:v0.4.1 privilegedescalation/headlamp-intel-gpu-plugin:v0.4.0 privilegedescalation/headlamp-intel-gpu-plugin:v0.3.0 privilegedescalation/headlamp-intel-gpu-plugin:v0.2.0 privilegedescalation/headlamp-intel-gpu-plugin:v0.1.0

compare: privilegedescalation/headlamp-intel-gpu-plugin:gandalf/fix-lodash-lockfile

Branches Tags

3 Commits

v1.1.0 .. gandalf/fix-lodash-lockfile

Author	SHA1	Message	Date
Gandalf the Greybeard	4d80c2a541	fix: update package-lock.json to satisfy lodash override The package.json override requires lodash >=4.18.0, but the lockfile had 4.17.23. Regenerated lockfile with npm install --include=dev. Co-Authored-By: Paperclip <noreply@paperclip.ing>	2026-04-26 21:30:04 +00:00
Gandalf the Greybeard	ecd1e4db29	fix: override lodash >=4.18.0 to patch code injection vulnerability GHSA-r5fr-rjxr-66jc is a code injection vulnerability in lodash below 4.18.0. The vulnerable transitive dependency comes through @kinvolk/headlamp-plugin. Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>	2026-04-23 10:58:22 +00:00
privilegedescalation-engineer[bot]	823e590513	release: v1.1.0 (#49 ) Co-authored-by: github-actions[bot] <github-actions[bot]@users.noreply.github.com>	2026-04-21 20:52:49 +00:00

Author

SHA1

Message

Date

Gandalf the Greybeard

4d80c2a541

fix: update package-lock.json to satisfy lodash override

The package.json override requires lodash >=4.18.0, but the lockfile
had 4.17.23. Regenerated lockfile with npm install --include=dev.

Co-Authored-By: Paperclip <noreply@paperclip.ing>

2026-04-26 21:30:04 +00:00

Gandalf the Greybeard

ecd1e4db29

fix: override lodash >=4.18.0 to patch code injection vulnerability

GHSA-r5fr-rjxr-66jc is a code injection vulnerability in lodash
below 4.18.0. The vulnerable transitive dependency comes through
@kinvolk/headlamp-plugin.

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>

2026-04-23 10:58:22 +00:00

privilegedescalation-engineer[bot]

823e590513

release: v1.1.0 (#49 )

Co-authored-by: github-actions[bot] <github-actions[bot]@users.noreply.github.com>

2026-04-21 20:52:49 +00:00

2 changed files with 601 additions and 470 deletions

Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL

Expand all files Collapse all files

package-lock.json

Generated

+599 -469

View File

File diff suppressed because it is too large Load Diff

									
										package.json
									
		+2
		-1
	
												View File
												
				@@ -44,6 +44,7 @@

				  },

				  "overrides": {

				    "tar": "^7.5.11",

				    "undici": "^7.24.3"

				    "undici": "^7.24.3",

				    "lodash": ">=4.18.0"

				  }

				}

Reference in New Issue

Repository

privilegedescalation/headlamp-intel-gpu-plugin

Title

Body

Block a user

Blocking a user prevents them from interacting with repositories, such as opening or commenting on pull requests or issues. Learn more about blocking a user.

User to block:

Optional note:

The note is not visible to the blocked user.

Compare commits

3 Commits v1.1.0 .. gandalf/fix-lodash-lockfile

3 Commits

v1.1.0 .. gandalf/fix-lodash-lockfile