From 91dd6a8418cb2551fb89fe8f74e004545f81a6c6 Mon Sep 17 00:00:00 2001
From: B-Whitt <34513926+B-Whitt@users.noreply.github.com>
Date: Wed, 20 May 2026 12:53:19 -0400
Subject: [PATCH 1/2] Update .gitignore

---
 .gitignore | 1 +
 1 file changed, 1 insertion(+)

diff --git a/.gitignore b/.gitignore
index 373d5557..44fd866d 100644
--- a/.gitignore
+++ b/.gitignore
@@ -34,3 +34,4 @@ kustomization.yaml
 *.swo
 *~
 .vscode/
+/.venv

From 04170cd5d0b5c15659ecedea4721af206b10860b Mon Sep 17 00:00:00 2001
From: B-Whitt <34513926+B-Whitt@users.noreply.github.com>
Date: Wed, 20 May 2026 13:06:49 -0400
Subject: [PATCH 2/2] fix(deps): [devel] upgrade ansible-operator to v1.42.2
 for CVE-2026-33186

gRPC-Go < v1.79.3 allows authorization bypass via malformed HTTP/2 :path headers. The v1.42.2 base image and SDK ship grpc@v1.79.3.

Ref: AAP-75792

Assisted by: Claude Opus
---
 Dockerfile | 2 +-
 Makefile   | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/Dockerfile b/Dockerfile
index 48acf683..99bfd45a 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -1,4 +1,4 @@
-FROM quay.io/operator-framework/ansible-operator:v1.40.0
+FROM quay.io/operator-framework/ansible-operator:v1.42.2
 
 ARG DEFAULT_EDA_VERSION
 ARG DEFAULT_EDA_UI_VERSION
diff --git a/Makefile b/Makefile
index 3988aae2..de88e91a 100644
--- a/Makefile
+++ b/Makefile
@@ -48,7 +48,7 @@ endif
 
 # Set the Operator SDK version to use. By default, what is installed on the system is used.
 # This is useful for CI or a project to utilize a specific version of the operator-sdk toolkit.
-OPERATOR_SDK_VERSION ?= v1.40.0
+OPERATOR_SDK_VERSION ?= v1.42.2
 CONTAINER_TOOL ?= podman
 
 # Image URL to use all building/pushing image targets