Closed andytinkham closed 2 years ago
Signed-off-by: Andy Tinkham andy.tinkham@cyberark.com
Remove the usage of gopkg.in/yaml.v2 v2.2.2 in our dependency tree because of CVE-2019-11254 and SNYK-GOLANG-GOPKGINYAMLV2-1533594.
Added replace statement to go.mod to force usage of 2.2.8 instead of 2.2.2
Signed-off-by: Andy Tinkham andy.tinkham@cyberark.com
Desired Outcome
Remove the usage of gopkg.in/yaml.v2 v2.2.2 in our dependency tree because of CVE-2019-11254 and SNYK-GOLANG-GOPKGINYAMLV2-1533594.
Implemented Changes
Added replace statement to go.mod to force usage of 2.2.8 instead of 2.2.2