Bumps minor version of google.golang.org/grpc from v1.40 to v1.55 to prevent code security scanners from picking up CVE-2022-41717, which is a transitive dependency and fixed in v1.52 and later.
A few tests needed minor adjustments, as v1.52.0 introduced a change that prevents the grpc.Dial() method from receiving an empty target string. I also addressed a deprecated method being used (WithInsecure) and updated it so it won't break later.
DonSealy
commented
1 year ago
Bumps minor version of google.golang.org/grpc from v1.40 to v1.55 to prevent code security scanners from picking up CVE-2022-41717, which is a transitive dependency and fixed in v1.52 and later.
A few tests needed minor adjustments, as v1.52.0 introduced a change that prevents the grpc.Dial() method from receiving an empty target string. I also addressed a deprecated method being used (WithInsecure) and updated it so it won't break later.