Closed ashmeenkaur closed 10 months ago
You don’t need to change the version mentioned in go.mod to use a newer release of Go.
It is entirely irrelevant what your dependencies specify.
If you build with Go 1.21, you get all the security fixes.
My apologies. After reading more about the Go version specified in go.mod, I realise that this change is not necessary. I am closing this pull request for the same reason. Thank you, @stapelberg
Upgrade to go version 1.21 as it fixes security vulnerabilities.
Issue: https://github.com/GoogleCloudPlatform/gcsfuse/issues/1288