Skip to content

fix(deps): Bumped golang.org/x/net and golang.org/x/crypto versions#767

Open
lahirumaramba wants to merge 1 commit into
devfrom
gemini-fix-crypto-net-vulns
Open

fix(deps): Bumped golang.org/x/net and golang.org/x/crypto versions#767
lahirumaramba wants to merge 1 commit into
devfrom
gemini-fix-crypto-net-vulns

Conversation

@lahirumaramba

Copy link
Copy Markdown
Member

Upgraded indirect dependencies golang.org/x/net from v0.54.0 to v0.55.0 and golang.org/x/crypto from v0.51.0 to v0.52.0 to remediate critical security vulnerabilities CVE-2026-39821, CVE-2026-39830, CVE-2026-39831, CVE-2026-39832, CVE-2026-39833, CVE-2026-39834, CVE-2026-42508, and CVE-2026-46595.

@lahirumaramba lahirumaramba changed the base branch from master to dev July 3, 2026 17:54
@lahirumaramba lahirumaramba added the release:stage Stage a release candidate label Jul 3, 2026

@gemini-code-assist gemini-code-assist Bot left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Code Review

This pull request updates several Go dependencies in go.mod and go.sum, specifically upgrading golang.org/x/crypto, golang.org/x/net, and golang.org/x/sys to newer versions. There are no review comments, and I have no additional feedback to provide.

Upgraded indirect dependencies golang.org/x/net from v0.54.0 to v0.55.0 and golang.org/x/crypto from v0.51.0 to v0.52.0 to remediate critical security vulnerabilities CVE-2026-39821, CVE-2026-39830, CVE-2026-39831, CVE-2026-39832, CVE-2026-39833, CVE-2026-39834, CVE-2026-42508, and CVE-2026-46595.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

release:stage Stage a release candidate

Projects

None yet

Development

Successfully merging this pull request may close these issues.

3 participants