search

bcicen / ctop

Top-like interface for container metrics
https://ctop.sh
MIT License
15.6k stars 528 forks source link

fix(sec): upgrade golang.org/x/sys to 0.1.0 #343

Open realize096 opened 1 year ago

realize096 commented 1 year ago

What happened?

There are 1 security vulnerabilities found in golang.org/x/sys v0.0.0-20211116061358-0a5406a5449c

What did I do?

Upgrade golang.org/x/sys from v0.0.0-20211116061358-0a5406a5449c to 0.1.0 for vulnerability fix

What did you expect to happen?

Ideally, no insecure libs should be used.

How can we automate the detection of these types of issues?

By using the GitHub Actions configurations provided by murphysec, we can conduct automatic code security checks in our CI pipeline.

The specification of the pull request

PR Specification from OSCS

zhangguanzhang commented 4 months ago

@bcicen Are you still alive? I found that ctop has not been maintained for a long time, and there are many CVEs that need to be fixed.