Closed joshuaostrom-cb closed 1 year ago
This PR bumps our GoLang version from 1.20.2 to 1.21.1 and GoSec from 2.15.0 to 2.17.0. This will ensure that teams using GoLang 1.21 can use Salus.
This version of GoSec includes the fix for https://github.com/securego/gosec/issues/961. As a result we retired the custom logic added for adding a pound to the nosec-tag.
Addressed a few Salus findings:
Updated a few specs as the NPMAudit advisory for 1091360 has been removed. Updated a cargo audit spec as a cargo audit has added a second CWE for the finding.
This PR bumps our GoLang version from 1.20.2 to 1.21.1 and GoSec from 2.15.0 to 2.17.0. This will ensure that teams using GoLang 1.21 can use Salus.
This version of GoSec includes the fix for https://github.com/securego/gosec/issues/961. As a result we retired the custom logic added for adding a pound to the nosec-tag.
Addressed a few Salus findings:
Updated a few specs as the NPMAudit advisory for 1091360 has been removed.
Updated a cargo audit spec as a cargo audit has added a second CWE for the finding.