Skip to content

Commit 7fe8dce

Browse files
gbrayhangbrayhan
committed
security scans
1 parent dbbd793 commit 7fe8dce

File tree

3 files changed

+101
-27
lines changed

3 files changed

+101
-27
lines changed

README.md

Lines changed: 10 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -54,6 +54,16 @@ git clone https://github.com/gbrayhan/microservices-go
5454
- **Code quality**: with [CodeFactor](https://www.codefactor.io/) and [Codacy](https://www.codacy.com/)
5555
- **Linting**: with [golangci-lint](https://golangci-lint.run/usage/install/) an implementation of a Golang linter
5656

57+
58+
## Security Checks using Trivy
59+
60+
https://github.com/aquasecurity/trivy?tab=readme-ov-file
61+
62+
command:
63+
```bash
64+
trivy fs .
65+
```
66+
5767
## Commands
5868

5969
### Build and run image of docker

go.mod

Lines changed: 29 additions & 27 deletions
Original file line numberDiff line numberDiff line change
@@ -3,57 +3,59 @@ module github.com/gbrayhan/microservices-go
33
go 1.24.2
44

55
require (
6-
github.com/gin-contrib/cors v1.6.0
7-
github.com/gin-gonic/gin v1.9.1
8-
github.com/go-playground/validator/v10 v10.19.0
6+
github.com/gin-contrib/cors v1.7.5
7+
github.com/gin-gonic/gin v1.10.0
8+
github.com/go-playground/validator/v10 v10.26.0
99
github.com/golang-jwt/jwt/v4 v4.5.2
1010
github.com/swaggo/files v1.0.1
1111
github.com/swaggo/gin-swagger v1.6.0
12-
github.com/swaggo/swag v1.16.2
13-
golang.org/x/crypto v0.35.0
12+
github.com/swaggo/swag v1.16.4
13+
golang.org/x/crypto v0.37.0
1414
gorm.io/driver/postgres v1.5.11
15-
gorm.io/gorm v1.25.10
15+
gorm.io/gorm v1.26.0
1616
)
1717

1818
require (
1919
github.com/KyleBanks/depth v1.2.1 // indirect
20-
github.com/bytedance/sonic v1.11.2 // indirect
20+
github.com/bytedance/sonic v1.13.2 // indirect
21+
github.com/bytedance/sonic/loader v0.2.4 // indirect
2122
github.com/chenzhuoyu/base64x v0.0.0-20230717121745-296ad89f973d // indirect
2223
github.com/chenzhuoyu/iasm v0.9.1 // indirect
24+
github.com/cloudwego/base64x v0.1.5 // indirect
2325
github.com/davecgh/go-spew v1.1.2-0.20180830191138-d8f796af33cc // indirect
24-
github.com/gabriel-vasile/mimetype v1.4.3 // indirect
25-
github.com/gin-contrib/sse v0.1.0 // indirect
26-
github.com/go-openapi/jsonpointer v0.20.2 // indirect
27-
github.com/go-openapi/jsonreference v0.20.4 // indirect
28-
github.com/go-openapi/spec v0.20.14 // indirect
29-
github.com/go-openapi/swag v0.22.8 // indirect
26+
github.com/gabriel-vasile/mimetype v1.4.9 // indirect
27+
github.com/gin-contrib/sse v1.1.0 // indirect
28+
github.com/go-openapi/jsonpointer v0.21.1 // indirect
29+
github.com/go-openapi/jsonreference v0.21.0 // indirect
30+
github.com/go-openapi/spec v0.21.0 // indirect
31+
github.com/go-openapi/swag v0.23.1 // indirect
3032
github.com/go-playground/locales v0.14.1 // indirect
3133
github.com/go-playground/universal-translator v0.18.1 // indirect
32-
github.com/goccy/go-json v0.10.2 // indirect
34+
github.com/goccy/go-json v0.10.5 // indirect
3335
github.com/jackc/pgpassfile v1.0.0 // indirect
34-
github.com/jackc/pgservicefile v0.0.0-20221227161230-091c0ba34f0a // indirect
35-
github.com/jackc/pgx/v5 v5.5.5 // indirect
36-
github.com/jackc/puddle/v2 v2.2.1 // indirect
36+
github.com/jackc/pgservicefile v0.0.0-20240606120523-5a60cdf6a761 // indirect
37+
github.com/jackc/pgx/v5 v5.7.4 // indirect
38+
github.com/jackc/puddle/v2 v2.2.2 // indirect
3739
github.com/jinzhu/inflection v1.0.0 // indirect
3840
github.com/jinzhu/now v1.1.5 // indirect
3941
github.com/josharian/intern v1.0.0 // indirect
4042
github.com/json-iterator/go v1.1.12 // indirect
41-
github.com/klauspost/cpuid/v2 v2.2.7 // indirect
43+
github.com/klauspost/cpuid/v2 v2.2.10 // indirect
4244
github.com/leodido/go-urn v1.4.0 // indirect
43-
github.com/mailru/easyjson v0.7.7 // indirect
45+
github.com/mailru/easyjson v0.9.0 // indirect
4446
github.com/mattn/go-isatty v0.0.20 // indirect
4547
github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect
4648
github.com/modern-go/reflect2 v1.0.2 // indirect
47-
github.com/pelletier/go-toml/v2 v2.1.1 // indirect
49+
github.com/pelletier/go-toml/v2 v2.2.4 // indirect
4850
github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2 // indirect
4951
github.com/twitchyliquid64/golang-asm v0.15.1 // indirect
5052
github.com/ugorji/go/codec v1.2.12 // indirect
51-
golang.org/x/arch v0.7.0 // indirect
52-
golang.org/x/net v0.36.0 // indirect
53-
golang.org/x/sync v0.11.0 // indirect
54-
golang.org/x/sys v0.30.0 // indirect
55-
golang.org/x/text v0.22.0 // indirect
56-
golang.org/x/tools v0.21.1-0.20240508182429-e35e4ccd0d2d // indirect
57-
google.golang.org/protobuf v1.33.0 // indirect
53+
golang.org/x/arch v0.16.0 // indirect
54+
golang.org/x/net v0.39.0 // indirect
55+
golang.org/x/sync v0.13.0 // indirect
56+
golang.org/x/sys v0.32.0 // indirect
57+
golang.org/x/text v0.24.0 // indirect
58+
golang.org/x/tools v0.32.0 // indirect
59+
google.golang.org/protobuf v1.36.6 // indirect
5860
gopkg.in/yaml.v3 v3.0.1 // indirect
5961
)

0 commit comments

Comments
 (0)