:warning: We detected 8 security issues in this pull request:
Vulnerable Libraries (8)
Severity | Details
:-: | :--
High | [pkg:golang/golang.org/x/exp@v0.0.0-20231206192017-f3f8817b8deb](https://github.com/xmidt-org/webpa-common/blob/8cd06f7a66b0441abdebe85418870dec52cbf706/go.mod#L34) upgrade to: *> v0.0.0-20231206192017-f3f8817b8deb*
High | [pkg:golang/github.com/xmidt-org/themis@v0.4.15](https://github.com/xmidt-org/webpa-common/blob/8cd06f7a66b0441abdebe85418870dec52cbf706/go.mod#L29) upgrade to: *> v0.4.15*
High | [pkg:golang/github.com/spf13/viper@v1.18.0](https://github.com/xmidt-org/webpa-common/blob/8cd06f7a66b0441abdebe85418870dec52cbf706/go.mod#L23) upgrade to: *> v1.18.0*
N/A | [pkg:golang/github.com/aws/aws-sdk-go@v1.48.15](https://github.com/xmidt-org/webpa-common/blob/8cd06f7a66b0441abdebe85418870dec52cbf706/go.mod#L6) - **no patch available**
High | [pkg:golang/github.com/xmidt-org/candlelight@v0.0.19](https://github.com/xmidt-org/webpa-common/blob/8cd06f7a66b0441abdebe85418870dec52cbf706/go.mod#L27) upgrade to: *> v0.0.19*
High | [pkg:golang/github.com/xmidt-org/wrp-go/v3@v3.2.3](https://github.com/xmidt-org/webpa-common/blob/8cd06f7a66b0441abdebe85418870dec52cbf706/go.mod#L30) upgrade to: *> v3.2.3*
High | [pkg:golang/go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp@v0.46.1](https://github.com/xmidt-org/webpa-common/blob/8cd06f7a66b0441abdebe85418870dec52cbf706/go.mod#L31) upgrade to: *> v0.46.1*
High | [pkg:golang/github.com/hashicorp/consul/api@v1.26.1](https://github.com/xmidt-org/webpa-common/blob/8cd06f7a66b0441abdebe85418870dec52cbf706/go.mod#L15) upgrade to: *> v1.26.1*
More info on how to fix Vulnerable Libraries in [Go](https://docs.guardrails.io/docs/en/vulnerabilities/go/using_vulnerable_libraries.html?utm_source=ghpr).
:warning: We detected 8 security issues in this pull request:
Vulnerable Libraries (8)
Severity | Details :-: | :-- High | [pkg:golang/golang.org/x/exp@v0.0.0-20231206192017-f3f8817b8deb](https://github.com/xmidt-org/webpa-common/blob/8cd06f7a66b0441abdebe85418870dec52cbf706/go.mod#L34) upgrade to: *> v0.0.0-20231206192017-f3f8817b8deb* High | [pkg:golang/github.com/xmidt-org/themis@v0.4.15](https://github.com/xmidt-org/webpa-common/blob/8cd06f7a66b0441abdebe85418870dec52cbf706/go.mod#L29) upgrade to: *> v0.4.15* High | [pkg:golang/github.com/spf13/viper@v1.18.0](https://github.com/xmidt-org/webpa-common/blob/8cd06f7a66b0441abdebe85418870dec52cbf706/go.mod#L23) upgrade to: *> v1.18.0* N/A | [pkg:golang/github.com/aws/aws-sdk-go@v1.48.15](https://github.com/xmidt-org/webpa-common/blob/8cd06f7a66b0441abdebe85418870dec52cbf706/go.mod#L6) - **no patch available** High | [pkg:golang/github.com/xmidt-org/candlelight@v0.0.19](https://github.com/xmidt-org/webpa-common/blob/8cd06f7a66b0441abdebe85418870dec52cbf706/go.mod#L27) upgrade to: *> v0.0.19* High | [pkg:golang/github.com/xmidt-org/wrp-go/v3@v3.2.3](https://github.com/xmidt-org/webpa-common/blob/8cd06f7a66b0441abdebe85418870dec52cbf706/go.mod#L30) upgrade to: *> v3.2.3* High | [pkg:golang/go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp@v0.46.1](https://github.com/xmidt-org/webpa-common/blob/8cd06f7a66b0441abdebe85418870dec52cbf706/go.mod#L31) upgrade to: *> v0.46.1* High | [pkg:golang/github.com/hashicorp/consul/api@v1.26.1](https://github.com/xmidt-org/webpa-common/blob/8cd06f7a66b0441abdebe85418870dec52cbf706/go.mod#L15) upgrade to: *> v1.26.1* More info on how to fix Vulnerable Libraries in [Go](https://docs.guardrails.io/docs/en/vulnerabilities/go/using_vulnerable_libraries.html?utm_source=ghpr).
👉 Go to the dashboard for detailed results.
📥 Happy? Share your feedback with us.