guardrails[bot]
commented
1 year ago :warning: We detected 1 security issue in this pull request:
Vulnerable Libraries (1)
Severity | Details :-: | :-- High | [pkg:golang/cdr.dev/slog@v1.6.1](https://github.com/Darkness4/blog/blob/1f4fd0fd80f10aa5b3d4837eed909d29fddc2bf5/go.mod#L6) upgrade to: *> v1.6.1* More info on how to fix Vulnerable Libraries in [Go](https://docs.guardrails.io/docs/en/vulnerabilities/go/using_vulnerable_libraries.html?utm_source=ghpr).
👉 Go to the dashboard for detailed results.
📥 Happy? Share your feedback with us.
renovate[bot]
This PR contains the following updates:
v1.4.2->v1.6.1Release Notes
coder/slog (cdr.dev/slog)
### [`v1.6.1`](https://togithub.com/coder/slog/releases/tag/v1.6.1) [Compare Source](https://togithub.com/coder/slog/compare/v1.6.0...v1.6.1) #### What's Changed - chore: update all deps by [@coadler](https://togithub.com/coadler) in [https://github.com/coder/slog/pull/182](https://togithub.com/coder/slog/pull/182) **Full Changelog**: https://github.com/coder/slog/compare/v1.6.0...v1.6.1 ### [`v1.6.0`](https://togithub.com/coder/slog/releases/tag/v1.6.0) [Compare Source](https://togithub.com/coder/slog/compare/v1.5.4...v1.6.0) #### What's Changed - chore: bump golang.org/x/crypto from 0.9.0 to 0.11.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/coder/slog/pull/179](https://togithub.com/coder/slog/pull/179) - chore: bump github.com/muesli/termenv from 0.15.1 to 0.15.2 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/coder/slog/pull/178](https://togithub.com/coder/slog/pull/178) - chore: migrate to `go.opentelemetry.io` tracing by [@coadler](https://togithub.com/coadler) in [https://github.com/coder/slog/pull/181](https://togithub.com/coder/slog/pull/181) **Full Changelog**: https://github.com/coder/slog/compare/v1.5.4...v1.6.0 ### [`v1.5.4`](https://togithub.com/coder/slog/releases/tag/v1.5.4) [Compare Source](https://togithub.com/coder/slog/compare/v1.5.3...v1.5.4) [`c17dfd2`](https://togithub.com/coder/slog/commit/c17dfd2) (HEAD -> main, tag: v1.5.4, origin/main, origin/HEAD) Support keysAndArgs API of stdlib slog ([#173](https://togithub.com/coder/slog/issues/173)) [`2202bcf`](https://togithub.com/coder/slog/commit/2202bcf) fix: Use SyscallConn for isTTY which is safe during file close ([#167](https://togithub.com/coder/slog/issues/167)) [`aa14d1b`](https://togithub.com/coder/slog/commit/aa14d1b) chore: bump cloud.google.com/go from 0.26.0 to 0.110.2 ([#175](https://togithub.com/coder/slog/issues/175)) [`fd83a35`](https://togithub.com/coder/slog/commit/fd83a35) chore: bump golang.org/x/crypto ([#174](https://togithub.com/coder/slog/issues/174)) ### [`v1.5.3`](https://togithub.com/coder/slog/compare/v1.5.2...v1.5.3) [Compare Source](https://togithub.com/coder/slog/compare/v1.5.2...v1.5.3) ### [`v1.5.2`](https://togithub.com/coder/slog/compare/v1.5.1...v1.5.2) [Compare Source](https://togithub.com/coder/slog/compare/v1.5.1...v1.5.2) ### [`v1.5.1`](https://togithub.com/coder/slog/compare/v1.5.0...v1.5.1) [Compare Source](https://togithub.com/coder/slog/compare/v1.5.0...v1.5.1) ### [`v1.5.0`](https://togithub.com/coder/slog/compare/v1.4.2...v1.5.0) [Compare Source](https://togithub.com/coder/slog/compare/v1.4.2...v1.5.0)Configuration
📅 Schedule: Branch creation - "before 4am" (UTC), Automerge - At any time (no schedule defined).
🚦 Automerge: Enabled.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR has been generated by Mend Renovate. View repository job log here.