Skip to content

Patches vulnerability introduced through golang.org/x/crypto@v0.30.0 #65

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Dec 19, 2024
Merged

Patches vulnerability introduced through golang.org/x/crypto@v0.30.0 #65

merged 1 commit into from
Dec 19, 2024

Conversation

petruki
Copy link
Member

@petruki petruki commented Dec 19, 2024

golang.org/x/crypto Incorrect Implementation of Authentication Algorithm

CVSS v4.0 9.0 - Critical Severity | CVSS v3.1 8.7 - High Severity

@petruki petruki added security Vulnerability detected patch Updating dependencies labels Dec 19, 2024
@petruki petruki added this to the v1.0.1 milestone Dec 19, 2024
@petruki petruki self-assigned this Dec 19, 2024
@sonarqubecloud SonarQubeCloud
Copy link

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

@petruki petruki merged commit a13143d into master Dec 19, 2024
5 checks passed
@petruki petruki deleted the staging branch December 19, 2024 05:21
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees

@petruki petruki

Labels
patch Updating dependencies security Vulnerability detected
Projects
None yet
Milestone
v1.0.1
Development

Successfully merging this pull request may close these issues.
1 participant
@petruki