Skip to content

chore(deps): update module golang.org/x/crypto to v0.45.0 #2

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
mend-for-github-com wants to merge 1 commit into
base: dror.cohen/WEKAPP-339673-check-policy-json-before-applying
Choose a base branch
from
Open

chore(deps): update module golang.org/x/crypto to v0.45.0 #2

mend-for-github-com wants to merge 1 commit into from
+72 −12

Conversation

@mend-for-github-com
Copy link

@mend-for-github-com mend-for-github-com bot commented Nov 26, 2025

This PR contains the following updates:

Package Type Update Change
golang.org/x/crypto require minor v0.0.0-20200709230013-948cd5f35899 -> v0.45.0

By merging this PR, the below vulnerabilities will be automatically resolved:

Severity CVSS Score Vulnerability
High High 7.5 CVE-2020-29652
High High 7.5 CVE-2025-47913
Medium Medium 5.3 CVE-2022-30636
Medium Medium 5.3 CVE-2025-47914
Medium Medium 5.3 CVE-2025-58181
  • If you want to rebase/retry this PR, check this box

@mend-for-github-com mend-for-github-com bot added the security fix Security fix generated by Mend label Nov 26, 2025
@mend-for-github-com
Copy link
Author

mend-for-github-com bot commented Nov 26, 2025

ℹ Artifact update notice

File name: go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

  • 3 additional dependencies were updated
  • The go directive was updated for compatibility reasons

Details:

Package Change
go 1.12 -> 1.24.0
github.com/google/uuid v1.1.1 -> v1.6.0
github.com/stretchr/testify v1.4.0 -> v1.9.0
golang.org/x/sys v0.0.0-20200625212154-ddb9806d33ae -> v0.38.0

@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/golang.org-x-crypto-0.x branch 2 times, most recently from e7b616a to f6144af Compare December 5, 2025 07:57
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/golang.org-x-crypto-0.x branch 5 times, most recently from 33a57de to d0143bd Compare December 21, 2025 03:09
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/golang.org-x-crypto-0.x branch from d0143bd to 079e9e3 Compare December 27, 2025 10:36
@mend-for-github-com
Copy link
Author

mend-for-github-com bot commented Dec 29, 2025

ℹ️ Artifact update notice

File name: go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

  • 3 additional dependencies were updated
  • The go directive was updated for compatibility reasons

Details:

Package Change
go 1.12 -> 1.24.0
github.com/google/uuid v1.1.1 -> v1.6.0
github.com/stretchr/testify v1.4.0 -> v1.9.0
golang.org/x/sys v0.0.0-20200625212154-ddb9806d33ae -> v0.38.0

@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/golang.org-x-crypto-0.x branch from 079e9e3 to a37f9cc Compare December 29, 2025 15:07
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/golang.org-x-crypto-0.x branch from a37f9cc to 39dafac Compare December 31, 2025 20:39
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

security fix Security fix generated by Mend

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant