my company's security scanner has detected that the splunk terraform provider includes an old version of golang.org/x/crypto package that is affected by the CVE-2020-9283 vulnerability.
It would be much appreciated if the package could be upgraded to v0.0.0-20200220183623-bac4c82f6975 , where the vulnerability is fixed.
Hi,
my company's security scanner has detected that the splunk terraform provider includes an old version of
golang.org/x/crypto
package that is affected by the CVE-2020-9283 vulnerability. It would be much appreciated if the package could be upgraded tov0.0.0-20200220183623-bac4c82f6975
, where the vulnerability is fixed.