search

open-policy-agent / conftest

Write tests against structured configuration data using the Open Policy Agent Rego query language
https://conftest.dev
Other
2.82k stars 298 forks source link

build(deps): bump github.com/docker/docker from v25.0.3 to v25.0.5 #932

Closed robmonct closed 2 months ago

robmonct commented 3 months ago

Bump github.com/docker/docker from v25.0.3 to v25.0.5

jalseth commented 3 months ago

Can you elaborate on the rationale for this change? Is there a specific bug you're running into?

robmonct commented 3 months ago

Hi @jalseth , Yes, there is a vulnerability: https://github.com/advisories/GHSA-mq39-4gv4-mvpx

jalseth commented 2 months ago

Thanks for clarifying. I'm fairly certain this code path isn't used, but it shouldn't hurt to bump the dependency regardless.