Skip to content

Fix CVEs in dependencies #401

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
szkiba merged 3 commits into from
Dec 17, 2025
Merged

Fix CVEs in dependencies #401

szkiba merged 3 commits into from
Dec 17, 2025

Conversation

@szkiba
Copy link
Contributor

@szkiba szkiba commented Dec 17, 2025

This PR addresses security vulnerabilities by updating the Docker base image and the release workflow configuration.

Changes

  • Update Docker base image gosec from 2.22.10 to 2.22.11
  • Set go version to v1.25.5 in release workflow

Fixes #400

@szkiba szkiba requested a review from a team as a code owner December 17, 2025 12:34
@szkiba szkiba linked an issue Dec 17, 2025 that may be closed by this pull request
fix CVEs #400
Closed
@szkiba szkiba requested a review from andrewslotin December 17, 2025 12:39
@szkiba szkiba enabled auto-merge (squash) December 17, 2025 12:41
@szkiba szkiba merged commit da8eccb into master Dec 17, 2025
18 checks passed
@szkiba szkiba deleted the 400-fix-cves branch December 17, 2025 13:01
@stefanb stefanb mentioned this pull request Dec 18, 2025
Draft
55 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@andrewslotin andrewslotin andrewslotin approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

fix CVEs

2 participants

@szkiba @andrewslotin