Vulnerability scan

Bump golang.org/x/crypto from 0.21.0 to 0.31.0 #7694

Sign in to view logs

Triggered via pull request December 20, 2024 23:48

dependabot[bot]

synchronize #9067

dependabot/go_modules/golang.org/x/crypto-0.31.0

Status Failure

Total duration 1m 43s

Artifacts –

vulnerability.yml

on: pull_request

dependency-review

Annotations

2 errors and 2 warnings

dependency-review

Dependency review detected vulnerable packages.

govulncheck

Process completed with exit code 1.

dependency-review

ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636

govulncheck

Both go-version and go-version-file inputs are specified, only go-version will be used