guardrails[bot]
commented
1 year ago :warning: We detected 182 security issues in this pull request:
Mode: paranoid | Total findings: 182 | Considered vulnerability: 182
Vulnerable Libraries (182)
Severity | Details ----- | -------- High | [pkg:golang/golang.org/x/net@v0.0.0-20180724234803-3673e40ba225@v0.0.0-20180724234803-3673e40ba225](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** Medium | [pkg:golang/golang.org/x/crypto@v0.0.0-20190701094942-4def268fd1a4@v0.0.0-20190701094942-4def268fd1a4](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** High | [pkg:golang/golang.org/x/net@v0.0.0-20200625001655-4c5254603344@v0.0.0-20200625001655-4c5254603344](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** High | [pkg:golang/github.com/gorilla/websocket@v0.0.0-20170926233335-4201258b820c@v0.0.0-20170926233335-4201258b820c](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.4.1* High | [pkg:golang/gopkg.in/yaml.v2@v2.2.8@v2.2.8](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** High | [pkg:golang/github.com/prometheus/client_golang@v1.6.0@v1.6.0](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.11.1* N/A | [pkg:golang/golang.org/x/sys@v0.0.0-20190222072716-a9d3bda3a223@v0.0.0-20190222072716-a9d3bda3a223](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad* High | [pkg:golang/github.com/gogo/protobuf@v1.1.1@v1.1.1](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.3.2* High | [pkg:golang/github.com/miekg/dns@v1.1.26@v1.1.26](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** N/A | [pkg:golang/golang.org/x/sys@v0.0.0-20200116001909-b77594299b42@v0.0.0-20200116001909-b77594299b42](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad* N/A | [pkg:golang/golang.org/x/sys@v0.0.0-20181107165924-66b7b1311ac8@v0.0.0-20181107165924-66b7b1311ac8](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad* N/A | [pkg:golang/golang.org/x/sys@v0.0.0-20190904154756-749cb33beabd@v0.0.0-20190904154756-749cb33beabd](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad* N/A | [pkg:golang/golang.org/x/text@v0.3.6 @v0.3.6 ](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *0.3.8* N/A | [pkg:golang/golang.org/x/sys@v0.0.0-20190922100055-0a153f010e69@v0.0.0-20190922100055-0a153f010e69](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad* Medium | [pkg:golang/golang.org/x/crypto@v0.0.0-20190605123033-f99c8df09eb5@v0.0.0-20190605123033-f99c8df09eb5](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** N/A | [pkg:golang/golang.org/x/sys@v0.0.0-20191005200804-aed5e4c7ecf9@v0.0.0-20191005200804-aed5e4c7ecf9](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad* Medium | [pkg:golang/golang.org/x/crypto@v0.0.0-20220128200615-198e4374d7ed@v0.0.0-20220128200615-198e4374d7ed](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** N/A | [pkg:golang/golang.org/x/sys@v0.0.0-20200409092240-59c9f1ba88fa@v0.0.0-20200409092240-59c9f1ba88fa](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad* Medium | [pkg:golang/github.com/gorilla/sessions@v1.2.0@v1.2.0](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** High | [pkg:golang/golang.org/x/net@v0.0.0-20190501004415-9ce7a6920f09@v0.0.0-20190501004415-9ce7a6920f09](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** N/A | [pkg:golang/golang.org/x/net@v0.0.0-20180911220305-26e67e76b6c3@v0.0.0-20180911220305-26e67e76b6c3](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *0.0.0-20190125002852-4b62a64f59f7* N/A | [pkg:golang/github.com/docker/docker@v1.4.2-0.20200213202729-31a86c4ab209 @v1.4.2-0.20200213202729-31a86c4ab209 ](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.6.1* High | [pkg:golang/github.com/gogo/protobuf@v1.3.1 @v1.3.1 ](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.3.2* N/A | [pkg:golang/golang.org/x/sys@v0.0.0-20190221075227-b4e8571b14e0@v0.0.0-20190221075227-b4e8571b14e0](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad* High | [pkg:golang/github.com/tidwall/match@v1.0.1@v1.0.1](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** N/A | [pkg:golang/github.com/prometheus/client_golang@v1.6.0 @v1.6.0 ](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.11.1* Low | [pkg:golang/github.com/opencontainers/image-spec@v1.0.1 @v1.0.1 ](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.0.2* N/A | [pkg:golang/golang.org/x/net@v0.0.0-20211112202133-69e39bad7dc2@v0.0.0-20211112202133-69e39bad7dc2](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.mod#L164) upgrade to: *1.16.12,1.17.5,0.0.0-20211209124913-491a49abca63* N/A | [pkg:golang/golang.org/x/net@v0.0.0-20211112202133-69e39bad7dc2@v0.0.0-20211112202133-69e39bad7dc2](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.18.6,1.19.1,0.0.0-20220906165146-f3363e06e74c* High | [pkg:golang/github.com/prometheus/client_golang@v1.3.0@v1.3.0](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.11.1* N/A | [pkg:golang/golang.org/x/sys@v0.0.0-20190616124812-15dcb6c0061f@v0.0.0-20190616124812-15dcb6c0061f](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad* High | [pkg:golang/golang.org/x/net@v0.0.0-20200226121028-0de0cce0169b@v0.0.0-20200226121028-0de0cce0169b](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** Medium | [pkg:golang/golang.org/x/crypto@v0.0.0-20200622213623-75b288015ac9@v0.0.0-20200622213623-75b288015ac9](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** High | [pkg:golang/golang.org/x/crypto@v0.0.0-20190308221718-c2843e01d9a2@v0.0.0-20190308221718-c2843e01d9a2](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** High | [pkg:golang/gopkg.in/yaml.v3@v3.0.0-20210107192922-496545a6307b @v3.0.0-20210107192922-496545a6307b ](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *3.0.0* High | [pkg:golang/github.com/gin-gonic/gin@v1.6.3@v1.6.3](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.7.0* Critical | [pkg:golang/github.com/graphql-go/graphql@v0.7.9@v0.7.9](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** High | [pkg:golang/golang.org/x/net@v0.0.0-20180906233101-161cd47e91fd@v0.0.0-20180906233101-161cd47e91fd](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** N/A | [pkg:golang/golang.org/x/sys@v0.0.0-20191204072324-ce4227a45e2e@v0.0.0-20191204072324-ce4227a45e2e](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad* N/A | [pkg:golang/golang.org/x/crypto@v0.0.0-20190313024323-a1f597ede03a@v0.0.0-20190313024323-a1f597ede03a](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *0.0.0-20201216223049-8b5274cf687f* Medium | [pkg:golang/github.com/jackc/pgproto3/v2@v2.0.0-rc3@v2.0.0-rc3](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** Medium | [pkg:golang/github.com/containerd/containerd@v1.3.4 @v1.3.4 ](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.3.9,1.4.3,1.2.0,1.3.9,1.4.3* N/A | [pkg:golang/golang.org/x/sys@v0.0.0-20210615035016-665e8c7367d1@v0.0.0-20210615035016-665e8c7367d1](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad* N/A | [pkg:golang/golang.org/x/sys@v0.0.0-20191120155948-bd437916bb0e@v0.0.0-20191120155948-bd437916bb0e](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad* Critical | [pkg:golang/github.com/nats-io/nats-server/v2@v2.1.2@v2.1.2](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** High | [pkg:golang/gopkg.in/yaml.v2@v2.2.4@v2.2.4](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** Medium | [pkg:golang/go.mongodb.org/mongo-driver@v1.0.3@v1.0.3](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.5.1* Medium | [pkg:golang/go.mongodb.org/mongo-driver@v1.1.2@v1.1.2](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.5.1* High | [pkg:golang/github.com/nats-io/jwt@v0.3.0@v0.3.0](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.1.0* N/A | [pkg:golang/golang.org/x/sys@v0.0.0-20200122134326-e047566fdf82@v0.0.0-20200122134326-e047566fdf82](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad* N/A | [pkg:golang/github.com/microcosm-cc/bluemonday@v1.0.3@v1.0.3](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** N/A | [pkg:golang/golang.org/x/sys@v0.0.0-20181205085412-a5c9d58dba9a@v0.0.0-20181205085412-a5c9d58dba9a](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad* Critical | [pkg:golang/github.com/gogo/protobuf@v1.2.0@v1.2.0](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** N/A | [pkg:golang/golang.org/x/sys@v0.0.0-20200420163511-1957bb5e6d1f@v0.0.0-20200420163511-1957bb5e6d1f](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad* N/A | [pkg:golang/golang.org/x/crypto@v0.0.0-20220128200615-198e4374d7ed @v0.0.0-20220128200615-198e4374d7ed ](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *0.0.0-20220314234659-1baeb1ce4c0b* High | [pkg:golang/github.com/hashicorp/consul/api@v1.3.0@v1.3.0](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** High | [pkg:golang/github.com/gin-gonic/gin@v1.6.3 @v1.6.3 ](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.7.7* High | [pkg:golang/github.com/graphql-go/graphql@v0.7.9 @v0.7.9 ](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** Medium | [pkg:golang/golang.org/x/crypto@v0.0.0-20190923035154-9ee001bba392@v0.0.0-20190923035154-9ee001bba392](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** High | [pkg:golang/golang.org/x/net@v0.0.0-20190213061140-3a22650c66bd@v0.0.0-20190213061140-3a22650c66bd](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** N/A | [pkg:golang/gopkg.in/yaml.v2@v2.0.0-20170812160011-eb3733d160e7@v2.0.0-20170812160011-eb3733d160e7](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *2.2.3* High | [pkg:golang/golang.org/x/crypto@v0.0.0-20190422162423-af44ce270edf@v0.0.0-20190422162423-af44ce270edf](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *0.0.0-20200220183623-bac4c82f6975* Medium | [pkg:golang/github.com/jackc/pgproto3@v1.1.0@v1.1.0](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** N/A | [pkg:golang/golang.org/x/text@v0.3.1-0.20180807135948-17ff2d5776d2@v0.3.1-0.20180807135948-17ff2d5776d2](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *0.3.8* N/A | [pkg:golang/golang.org/x/sys@v0.0.0-20200124204421-9fbb57f87de9@v0.0.0-20200124204421-9fbb57f87de9](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad* High | [pkg:golang/golang.org/x/net@v0.0.0-20190813141303-74dc4d7220e7@v0.0.0-20190813141303-74dc4d7220e7](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** High | [pkg:golang/golang.org/x/net@v0.0.0-20190827160401-ba9fcec4b297@v0.0.0-20190827160401-ba9fcec4b297](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** N/A | [pkg:golang/golang.org/x/sys@v0.0.0-20191220142924-d4481acd189f@v0.0.0-20191220142924-d4481acd189f](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad* N/A | [pkg:golang/golang.org/x/sys@v0.0.0-20190924154521-2837fb4f24fe@v0.0.0-20190924154521-2837fb4f24fe](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad* N/A | [pkg:golang/golang.org/x/sys@v0.0.0-20181026203630-95b1ffbd15a5@v0.0.0-20181026203630-95b1ffbd15a5](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad* N/A | [pkg:golang/golang.org/x/net@v0.0.0-20181201002055-351d144fa1fc@v0.0.0-20181201002055-351d144fa1fc](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.16.12,1.17.5,0.0.0-20211209124913-491a49abca63* High | [pkg:golang/gopkg.in/yaml.v2@v2.3.0@v2.3.0](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** High | [pkg:golang/golang.org/x/net@v0.0.0-20190613194153-d28f0bde5980@v0.0.0-20190613194153-d28f0bde5980](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** Medium | [pkg:golang/golang.org/x/crypto@v0.0.0-20190320223903-b7391e95e576@v0.0.0-20190320223903-b7391e95e576](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** N/A | [pkg:golang/golang.org/x/sys@v0.0.0-20210615035016-665e8c7367d1 @v0.0.0-20210615035016-665e8c7367d1 ](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad* High | [pkg:golang/gopkg.in/yaml.v3@v3.0.0-20210107192922-496545a6307b@v3.0.0-20210107192922-496545a6307b](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *3.0.0* N/A | [pkg:golang/golang.org/x/net@v0.0.0-20190125091013-d26f9f9a57f3@v0.0.0-20190125091013-d26f9f9a57f3](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.18.6,1.19.1,0.0.0-20220906165146-f3363e06e74c* N/A | [pkg:golang/golang.org/x/net@v0.0.0-20200301022130-244492dfa37a@v0.0.0-20200301022130-244492dfa37a](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.16.12,1.17.5,0.0.0-20211209124913-491a49abca63* N/A | [pkg:golang/golang.org/x/sys@v0.0.0-20190422165155-953cdadca894@v0.0.0-20190422165155-953cdadca894](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad* Medium | [pkg:golang/github.com/opencontainers/image-spec@v1.0.1@v1.0.1](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** High | [pkg:golang/golang.org/x/crypto@v0.0.0-20191011191535-87dc89f01550@v0.0.0-20191011191535-87dc89f01550](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *0.0.0-20200220183623-bac4c82f6975* High | [pkg:golang/golang.org/x/net@v0.0.0-20190424112056-4829fb13d2c6@v0.0.0-20190424112056-4829fb13d2c6](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** Medium | [pkg:golang/go.mongodb.org/mongo-driver@v1.3.0@v1.3.0](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.5.1* High | [pkg:golang/golang.org/x/net@v0.0.0-20200513185701-a91f0712d120@v0.0.0-20200513185701-a91f0712d120](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** High | [pkg:golang/gopkg.in/yaml.v2@v2.2.7@v2.2.7](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** Medium | [pkg:golang/golang.org/x/crypto@v0.0.0-20181029021203-45a5f77698d3@v0.0.0-20181029021203-45a5f77698d3](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** High | [pkg:golang/github.com/miekg/dns@v1.0.14@v1.0.14](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** N/A | [pkg:golang/golang.org/x/sys@v0.0.0-20190428183149-804c0c7841b5@v0.0.0-20190428183149-804c0c7841b5](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad* High | [pkg:golang/golang.org/x/text@v0.3.6@v0.3.6](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** High | [pkg:golang/golang.org/x/net@v0.0.0-20200222125558-5a598a2470a0@v0.0.0-20200222125558-5a598a2470a0](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** High | [pkg:golang/github.com/prometheus/client_golang@v0.9.1@v0.9.1](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.11.1* High | [pkg:golang/github.com/prometheus/client_golang@v0.9.3@v0.9.3](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** N/A | [pkg:golang/golang.org/x/sys@v0.0.0-20190321052220-f7bb7a8bee54@v0.0.0-20190321052220-f7bb7a8bee54](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad* N/A | [pkg:golang/golang.org/x/sys@v0.0.0-20180823144017-11551d06cbcc@v0.0.0-20180823144017-11551d06cbcc](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad* N/A | [pkg:golang/golang.org/x/sys@v0.0.0-20200615200032-f1bc736245b1@v0.0.0-20200615200032-f1bc736245b1](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad* Medium | [pkg:golang/github.com/yuin/goldmark@v1.1.32@v1.1.32](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** Medium | [pkg:golang/golang.org/x/crypto@v0.0.0-20180904163835-0709b304e793@v0.0.0-20180904163835-0709b304e793](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** N/A | [pkg:golang/golang.org/x/text@v0.0.0-20170915032832-14c0d48ead0c@v0.0.0-20170915032832-14c0d48ead0c](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *0.3.8* High | [pkg:golang/golang.org/x/net@v0.0.0-20190724013045-ca1201d0de80@v0.0.0-20190724013045-ca1201d0de80](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** Medium | [pkg:golang/github.com/gobuffalo/packr/v2@v2.0.9@v2.0.9](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** Medium | [pkg:golang/go.mongodb.org/mongo-driver@v1.3.0 @v1.3.0 ](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.5.1* Medium | [pkg:golang/github.com/yuin/goldmark@v1.1.25@v1.1.25](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** Medium | [pkg:golang/golang.org/x/crypto@v0.0.0-20190530122614-20be4c3c3ed5@v0.0.0-20190530122614-20be4c3c3ed5](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** High | [pkg:golang/golang.org/x/net@v0.0.0-20181005035420-146acd28ed58@v0.0.0-20181005035420-146acd28ed58](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** High | [pkg:golang/golang.org/x/net@v0.0.0-20181023162649-9b4f9f5ad519@v0.0.0-20181023162649-9b4f9f5ad519](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** High | [pkg:golang/gopkg.in/yaml.v2@v2.2.5@v2.2.5](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** N/A | [pkg:golang/golang.org/x/net@v0.0.0-20190320064053-1272bf9dcd53@v0.0.0-20190320064053-1272bf9dcd53](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.18.6,1.19.1,0.0.0-20220906165146-f3363e06e74c* High | [pkg:golang/golang.org/x/net@v0.0.0-20190404232315-eb5bcb51f2a3@v0.0.0-20190404232315-eb5bcb51f2a3](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** Medium | [pkg:golang/github.com/gorilla/sessions@v1.1.1@v1.1.1](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** High | [pkg:golang/github.com/valyala/fasthttp@v1.2.0@v1.2.0](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.34.0* N/A | [pkg:golang/golang.org/x/net@v0.0.0-20190108225652-1e06a53dbb7e@v0.0.0-20190108225652-1e06a53dbb7e](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *0.0.0-20210520170846-37e1c6afe023* Medium | [pkg:golang/golang.org/x/crypto@v0.0.0-20190219172222-a4c6cb3142f2@v0.0.0-20190219172222-a4c6cb3142f2](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** High | [pkg:golang/github.com/hashicorp/consul/sdk@v0.3.0@v0.3.0](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** N/A | [pkg:golang/github.com/docker/docker@v1.4.2-0.20200213202729-31a86c4ab209@v1.4.2-0.20200213202729-31a86c4ab209](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.6.1* N/A | [pkg:golang/golang.org/x/sys@v0.0.0-20201119102817-f84b799fce68@v0.0.0-20201119102817-f84b799fce68](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad* Medium | [pkg:golang/github.com/jackc/pgproto3/v2@v2.0.1@v2.0.1](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** N/A | [pkg:golang/go.etcd.io/etcd@v0.0.0-20191023171146-3cf2f69b5738@v0.0.0-20191023171146-3cf2f69b5738](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *0.5.0-alpha.5.0.20190108173120-83c051b701d3* High | [pkg:golang/github.com/dgrijalva/jwt-go@v3.2.0+incompatible@v3.2.0+incompatible](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** Medium | [pkg:golang/golang.org/x/crypto@v0.0.0-20190426145343-a29dc8fdc734@v0.0.0-20190426145343-a29dc8fdc734](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** N/A | [pkg:golang/golang.org/x/sys@v0.0.0-20181122145206-62eef0e2fa9b@v0.0.0-20181122145206-62eef0e2fa9b](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad* High | [pkg:golang/gopkg.in/yaml.v3@v3.0.0-20200313102051-9f266ea9e77c@v3.0.0-20200313102051-9f266ea9e77c](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *3.0.0* N/A | [pkg:golang/golang.org/x/crypto@v0.0.0-20190411191339-88737f569e3a@v0.0.0-20190411191339-88737f569e3a](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *0.0.0-20211202192323-5770296d904e* High | [pkg:golang/github.com/prometheus/client_golang@v1.0.0@v1.0.0](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.11.1* N/A | [pkg:golang/golang.org/x/sys@v0.0.0-20190624142023-c5567b49c5d0@v0.0.0-20190624142023-c5567b49c5d0](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad* N/A | [pkg:golang/golang.org/x/sys@v0.0.0-20190813064441-fde4db37ae7a@v0.0.0-20190813064441-fde4db37ae7a](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad* N/A | [pkg:golang/golang.org/x/sys@v0.0.0-20200202164722-d101bd2416d5@v0.0.0-20200202164722-d101bd2416d5](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad* N/A | [pkg:golang/github.com/gorilla/websocket@v1.4.0@v1.4.0](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.4.1* High | [pkg:golang/golang.org/x/net@v0.0.0-20200324143707-d3edc9973b7e@v0.0.0-20200324143707-d3edc9973b7e](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** Critical | [pkg:golang/github.com/gogo/protobuf@v1.3.1@v1.3.1](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** Critical | [pkg:golang/github.com/nats-io/jwt@v0.3.2@v0.3.2](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** High | [pkg:golang/github.com/tidwall/gjson@v1.6.0@v1.6.0](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.6.5* Medium | [pkg:golang/golang.org/x/crypto@v0.0.0-20181203042331-505ab145d0a9@v0.0.0-20181203042331-505ab145d0a9](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** High | [pkg:golang/golang.org/x/net@v0.0.0-20181220203305-927f97764cc3@v0.0.0-20181220203305-927f97764cc3](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** N/A | [pkg:golang/golang.org/x/sys@v0.0.0-20190403152447-81d4e9dc473e@v0.0.0-20190403152447-81d4e9dc473e](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad* N/A | [pkg:golang/golang.org/x/net@v0.0.0-20211112202133-69e39bad7dc2 @v0.0.0-20211112202133-69e39bad7dc2 ](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.18.6,1.19.1,0.0.0-20220906165146-f3363e06e74c* N/A | [pkg:golang/golang.org/x/sys@v0.0.0-20190826190057-c7b8b68b1456@v0.0.0-20190826190057-c7b8b68b1456](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad* High | [pkg:golang/gopkg.in/yaml.v2@v2.2.1@v2.2.1](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** High | [pkg:golang/github.com/tidwall/gjson@v1.6.0 @v1.6.0 ](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.6.5* Medium | [pkg:golang/go.mongodb.org/mongo-driver@v1.1.0@v1.1.0](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.5.1* Critical | [pkg:golang/github.com/satori/go.uuid@v1.2.0@v1.2.0](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** High | [pkg:golang/golang.org/x/net@v0.0.0-20190503192946-f4e77d36d62c@v0.0.0-20190503192946-f4e77d36d62c](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** N/A | [pkg:golang/golang.org/x/sys@v0.0.0-20180909124046-d0be0721c37e@v0.0.0-20180909124046-d0be0721c37e](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad* Medium | [pkg:golang/github.com/containerd/containerd@v1.3.3@v1.3.3](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.4.8,1.5.4* N/A | [pkg:golang/github.com/apache/thrift@v0.12.0@v0.12.0](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *0.13.0* N/A | [pkg:golang/golang.org/x/sys@v0.0.0-20191008105621-543471e840be@v0.0.0-20191008105621-543471e840be](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad* Low | [pkg:golang/github.com/docker/distribution@v2.7.1+incompatible @v2.7.1+incompatible ](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *2.8.0* Medium | [pkg:golang/github.com/containerd/containerd@v1.3.4@v1.3.4](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.4.8,1.5.4* High | [pkg:golang/golang.org/x/net@v0.0.0-20190522155817-f3200d17e092@v0.0.0-20190522155817-f3200d17e092](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** Medium | [pkg:golang/golang.org/x/crypto@v0.0.0-20190617133340-57b3e21c3d56@v0.0.0-20190617133340-57b3e21c3d56](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** High | [pkg:golang/golang.org/x/net@v0.0.0-20181114220301-adae6a3d119a@v0.0.0-20181114220301-adae6a3d119a](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** High | [pkg:golang/golang.org/x/net@v0.0.0-20190311183353-d8887717615a@v0.0.0-20190311183353-d8887717615a](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** N/A | [pkg:golang/golang.org/x/net@v0.0.0-20200202094626-16171245cfb2@v0.0.0-20200202094626-16171245cfb2](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.16.12,1.17.5,0.0.0-20211209124913-491a49abca63* Medium | [pkg:golang/golang.org/x/crypto@v0.0.0-20190611184440-5c40567a22f8@v0.0.0-20190611184440-5c40567a22f8](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** N/A | [pkg:golang/github.com/aws/aws-sdk-go@v1.17.7@v1.17.7](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.34.0* N/A | [pkg:golang/golang.org/x/sys@v0.0.0-20181116152217-5ac8a444bdc5@v0.0.0-20181116152217-5ac8a444bdc5](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad* N/A | [pkg:golang/golang.org/x/sys@v0.0.0-20180905080454-ebe1bf3edb33@v0.0.0-20180905080454-ebe1bf3edb33](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad* Medium | [pkg:golang/golang.org/x/crypto@v0.0.0-20190325154230-a5d413f7728c@v0.0.0-20190325154230-a5d413f7728c](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** Low | [pkg:golang/github.com/aws/aws-sdk-go@v1.27.0@v1.27.0](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** Medium | [pkg:golang/github.com/yuin/goldmark@v1.1.27@v1.1.27](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** Medium | [pkg:golang/golang.org/x/crypto@v0.0.0-20200302210943-78000ba7a073@v0.0.0-20200302210943-78000ba7a073](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** N/A | [pkg:golang/github.com/prometheus/client_golang@v0.9.3-0.20190127221311-3c4408c8b829@v0.9.3-0.20190127221311-3c4408c8b829](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.11.1* Medium | [pkg:golang/golang.org/x/crypto@v0.0.0-20190820162420-60c769a6c586@v0.0.0-20190820162420-60c769a6c586](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** N/A | [pkg:golang/golang.org/x/sys@v0.0.0-20210423082822-04245dca01da@v0.0.0-20210423082822-04245dca01da](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad* Medium | [pkg:golang/go.mongodb.org/mongo-driver@v1.1.1@v1.1.1](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.5.1* Low | [pkg:golang/github.com/docker/distribution@v2.7.0+incompatible@v2.7.0+incompatible](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *2.8.0* High | [pkg:golang/golang.org/x/net@v0.0.0-20190603091049-60506f45cf65@v0.0.0-20190603091049-60506f45cf65](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** N/A | [pkg:golang/github.com/docker/distribution@v2.7.1+incompatible@v2.7.1+incompatible](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *2.8.0* Medium | [pkg:golang/github.com/microcosm-cc/bluemonday@v1.0.3 @v1.0.3 ](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.0.5* N/A | [pkg:golang/golang.org/x/net@v0.0.0-20181108082009-03003ca0c849@v0.0.0-20181108082009-03003ca0c849](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *0.0.0-20210520170846-37e1c6afe023* N/A | [pkg:golang/golang.org/x/sys@v0.0.0-20191026070338-33540a1f6037@v0.0.0-20191026070338-33540a1f6037](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad* N/A | [pkg:golang/golang.org/x/sys@v0.0.0-20200302150141-5c8b2ff67527@v0.0.0-20200302150141-5c8b2ff67527](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad* N/A | [pkg:golang/golang.org/x/sys@v0.0.0-20181228144115-9a3f9b0469bb@v0.0.0-20181228144115-9a3f9b0469bb](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad* Medium | [pkg:golang/github.com/rs/cors@v1.7.0@v1.7.0](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** N/A | [pkg:golang/golang.org/x/sys@v0.0.0-20200106162015-b016eb3dc98e@v0.0.0-20200106162015-b016eb3dc98e](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad* N/A | [pkg:golang/golang.org/x/sys@v0.0.0-20190419153524-e8e3143a4f4a@v0.0.0-20190419153524-e8e3143a4f4a](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad* Medium | [pkg:golang/golang.org/x/crypto@v0.0.0-20200311171314-f7b00557c8c4@v0.0.0-20200311171314-f7b00557c8c4](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** High | [pkg:golang/golang.org/x/net@v0.0.0-20190620200207-3b0461eec859@v0.0.0-20190620200207-3b0461eec859](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** Medium | [pkg:golang/github.com/gobuffalo/packr/v2@v2.2.0@v2.2.0](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** Critical | [pkg:golang/github.com/gogo/protobuf@v1.2.1@v1.2.1](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** High | [pkg:golang/golang.org/x/net@v0.0.0-20190923162816-aa69164e4478@v0.0.0-20190923162816-aa69164e4478](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) - **no patch available** High | [pkg:golang/github.com/prometheus/client_golang@v1.5.1@v1.5.1](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.11.1* N/A | [pkg:golang/golang.org/x/sys@v0.0.0-20190531175056-4c3a928424d2@v0.0.0-20190531175056-4c3a928424d2](https://github.com/turkdevops/sourcegraph/blob/9fb5776b06593d9f0decfa358ff8bb5bff3fa462/go.sum) (t) upgrade to: *1.17.10,1.18.2,0.0.0-20220412211240-33da011f77ad* More info on how to fix Vulnerable Libraries in [Go](https://docs.guardrails.io/docs/en/vulnerabilities/go/using_vulnerable_libraries.html?utm_source=ghpr#).
👉 Go to the dashboard for detailed results.
📥 Happy? Share your feedback with us.
Bumps github.com/crewjam/saml from 0.4.0 to 0.4.9.
Commits
aee3fb1Merge pull request from GHSA-j2jp-wvqg-wc2g5e0ffd2minimum go version is 1.16f519373CI: invoke tests correctly (?)d74fd35fix test matrixing in CIa544445update go.{mod,sum} files1a0d2f4Bump github.com/google/go-cmp from 0.5.7 to 0.5.8 (#435)e87e838Support configuring binding for SP SLO endpoints (#444)702b90cRevert "Bump github.com/russellhaering/goxmldsig from 1.1.1 to 1.2.0 (#426)"824f793remove maint.yaml from CI; use dependabot insteada3bdfa1bump golangci-lint in ci to 1.46.2Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/turkdevops/sourcegraph/network/alerts).