Skip to content
Security Testing

build(deps): bump golang.org/x/sync from 0.16.0 to 0.17.0 in the all group #279

Sign in to view logs

build(deps): bump golang.org/x/sync from 0.16.0 to 0.17.0 in the all group

build(deps): bump golang.org/x/sync from 0.16.0 to 0.17.0 in the all group #279

Triggered via pull request September 22, 2025 07:14
@dependabotdependabot[bot]
opened #101
dependabot/go_modules/all-d8420e696d
Status Failure
Total duration 6m 29s
Artifacts

security.yml

on: pull_request
Perform SAST analysis (golangci-lint)
6m 21s
Perform SAST analysis (golangci-lint)
Perform SCA analysis (govulncheck)
3m 13s
Perform SCA analysis (govulncheck)
Fit to window
Zoom out
Zoom in

Annotations

10 errors and 1 warning
Perform SCA analysis (govulncheck)
config.InitConfig calls viper.ReadInConfig, which eventually calls lzma.Reader2Config.Verify
Perform SCA analysis (govulncheck)
config.InitConfig calls viper.ReadInConfig, which eventually calls lzma.Reader2Config.NewReader2
Perform SCA analysis (govulncheck)
config.InitConfig calls viper.ReadInConfig, which eventually calls lzma.Reader2.Read
Perform SCA analysis (govulncheck)
config.Key.String calls cast.ToString, which eventually calls lzma.Properties.String
Perform SCA analysis (govulncheck)
docker.RunOnce calls multierr.multiError.Error, which eventually calls lzma.EncodeDictCap
Perform SCA analysis (govulncheck)
config.InitConfig calls viper.ReadInConfig, which eventually calls lzma.DecodeDictCap
Perform SCA analysis (govulncheck)
config.InitConfig calls viper.ReadInConfig, which eventually calls lzma.ByteReader
Perform SCA analysis (govulncheck)
sync.init calls copy.init, which eventually calls hash.init
Perform SCA analysis (govulncheck)
docker.RunOnce calls multierr.multiError.Error, which eventually calls hash.NewCyclicPoly
Perform SCA analysis (govulncheck)
docker.RunOnce calls multierr.multiError.Error, which eventually calls hash.CyclicPoly.RollByte
Perform SCA analysis (govulncheck)
Both go-version and go-version-file inputs are specified, only go-version will be used