Upgrade the version of Go for next release of Sensu Go #5086
Assignees
Labels
dependencies
Pull requests that update a dependency file
low hanging 🍇
Things that are relatively easy to solve
Milestone
Comments
jhenderson-pro
added
low hanging 🍇
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
There are known vulnerabilities in the version of Go presently utilized in the latest version of Sensu Go 6.12.0
vulnerability_name source source name version fixed_version
CVE-2024-45338 GHSA-w32m-9786-jp63 LIBRARY golang.org/x/net 0.23.0 0.33.0
CVE-2024-0406 GHSA-rhh4-rh7c-7r5v LIBRARY github.com/mholt/archiver/v3 3.3.1-0.20191129193105-44285f7ed244
CVE-2024-51744 GHSA-29wx-vh33-7x7r LIBRARY github.com/golang-jwt/jwt/v4 4.5.0 4.5.1
Possible Solution
Please include the latest version of Go (and other dependencies) in the next release of Sensu Go
The text was updated successfully, but these errors were encountered: