From f85a0d54e6a00b8775b301d3dc2939ef687d5811 Mon Sep 17 00:00:00 2001
From: Ilya <138466237+ikheifets-splunk@users.noreply.github.com>
Date: Thu, 23 May 2024 17:09:21 +0200
Subject: [PATCH] fix: cves vulnerabilities (#2466)

* fix: upgrade goss on 0.4.7

* chore(deps): update dependency requests to v2.32.2 (#2472)

---------

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
---
 package/Dockerfile      | 2 +-
 package/Dockerfile.lite | 2 +-
 poetry.lock             | 8 ++++----
 3 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/package/Dockerfile b/package/Dockerfile
index ed70628d5f..6f0a7e3f9f 100644
--- a/package/Dockerfile
+++ b/package/Dockerfile
@@ -41,7 +41,7 @@ RUN apk add -U --upgrade --no-cache \
       cargo \
       ca-certificates \
       poetry \
-    && curl -fsSL https://goss.rocks/install | GOSS_VER=v0.4.6 sh \
+    && curl -fsSL https://goss.rocks/install | GOSS_VER=v0.4.7 sh \
     && groupadd --gid 1024 syslog \
     && useradd -M -g 1024 -u 1024 syslog \
     && usermod -L syslog \
diff --git a/package/Dockerfile.lite b/package/Dockerfile.lite
index 0a124da704..6875e6ab63 100644
--- a/package/Dockerfile.lite
+++ b/package/Dockerfile.lite
@@ -41,7 +41,7 @@ RUN apk add -U --upgrade --no-cache \
       cargo \
       ca-certificates \
       poetry \
-    && curl -fsSL https://goss.rocks/install | GOSS_VER=v0.4.6 sh \
+    && curl -fsSL https://goss.rocks/install | GOSS_VER=v0.4.7 sh \
     && groupadd --gid 1024 syslog \
     && useradd -M -g 1024 -u 1024 syslog \
     && usermod -L syslog \
diff --git a/poetry.lock b/poetry.lock
index fbfce851fb..96a37ba437 100644
--- a/poetry.lock
+++ b/poetry.lock
@@ -1140,13 +1140,13 @@ files = [
 
 [[package]]
 name = "requests"
-version = "2.31.0"
+version = "2.32.2"
 description = "Python HTTP for Humans."
 optional = false
-python-versions = ">=3.7"
+python-versions = ">=3.8"
 files = [
-    {file = "requests-2.31.0-py3-none-any.whl", hash = "sha256:58cd2187c01e70e6e26505bca751777aa9f2ee0b7f4300988b709f44e013003f"},
-    {file = "requests-2.31.0.tar.gz", hash = "sha256:942c5a758f98d790eaed1a29cb6eefc7ffb0d1cf7af05c3d2791656dbd6ad1e1"},
+    {file = "requests-2.32.2-py3-none-any.whl", hash = "sha256:fc06670dd0ed212426dfeb94fc1b983d917c4f9847c863f313c9dfaaffb7c23c"},
+    {file = "requests-2.32.2.tar.gz", hash = "sha256:dd951ff5ecf3e3b3aa26b40703ba77495dab41da839ae72ef3c8e5d8e2433289"},
 ]
 
 [package.dependencies]