codyoss
commented
2 years ago @szh could you please sign the CLA: https://cla.developers.google.com/.
Closed szh closed 2 years ago
codyoss
commented
2 years ago @szh could you please sign the CLA: https://cla.developers.google.com/.
szh
commented
2 years ago @codyoss Sorry for the delay. Working through this with legal.
codyoss
commented
2 years ago @szh No worries. If it does not work out lmk and I can make a similar PR to get things updated. This might be a good time to prep for a next release and stop supporting older Go versions.(Updating to head dependencies may force this)
szh
commented
2 years ago @codyoss Honestly the sooner this is fixed the better. If it'll be faster for you to do it that's better for me too.
codyoss
commented
2 years ago Sounds good, I will try to get something out soon. Closing.
codyoss
commented
2 years ago
Removes dependencies on "golang.org/x/net" package version with security vulnerability (https://github.com/golang/go/issues/50058). This will fix projects depending on this package from being flagged by security scanners such as Snyk.