Closed KevinPoole closed 1 year ago
https://github.com/advisories/GHSA-p782-xgp4-8hr8
This one is a bit stickier than the other issue I opened, seems like it must be a sub-dependency that is causing the problematic library to be included, because golang.org/x/sys has what seems to be an OK version specified in go.mod 😕
golang.org/x/sys
fixed
alexei-led
commented
1 year ago
https://github.com/advisories/GHSA-p782-xgp4-8hr8
This one is a bit stickier than the other issue I opened, seems like it must be a sub-dependency that is causing the problematic library to be included, because
golang.org/x/syshas what seems to be an OK version specified in go.mod 😕