From 2a2db6f6c3651893c8fc3b3a6cdf783afeb3824b Mon Sep 17 00:00:00 2001 From: "HeraldBot[bot]" <149080493+heraldbot[bot]@users.noreply.github.com> Date: Mon, 29 Jul 2024 09:01:33 +0000 Subject: [PATCH 1/3] Remediate Nancy findings --- .nancy-ignore | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.nancy-ignore b/.nancy-ignore index 68e37c1..0205aed 100644 --- a/.nancy-ignore +++ b/.nancy-ignore @@ -1,4 +1,4 @@ CVE-2023-26125 until=2024-08-07 # github.com/gin-gonic/gin@v1.8.1 CVE-2023-29401 until=2024-08-07 # github.com/gin-gonic/gin@v1.8.1 -CVE-2023-47108 until=2024-07-25 # go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc@v0.20.0 +CVE-2023-47108 until=2024-08-28 # go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc@v0.20.0 CVE-2022-29153 until=2024-08-08 # github.com/hashicorp/consul/sdk@v0.15.1 From 65bea5db9f30600b5c807cf19e7f032811baee2a Mon Sep 17 00:00:00 2001 From: "HeraldBot[bot]" <149080493+heraldbot[bot]@users.noreply.github.com> Date: Wed, 7 Aug 2024 09:01:39 +0000 Subject: [PATCH 2/3] Remediate Nancy findings --- .nancy-ignore | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.nancy-ignore b/.nancy-ignore index 0205aed..84e94d3 100644 --- a/.nancy-ignore +++ b/.nancy-ignore @@ -1,4 +1,4 @@ -CVE-2023-26125 until=2024-08-07 # github.com/gin-gonic/gin@v1.8.1 -CVE-2023-29401 until=2024-08-07 # github.com/gin-gonic/gin@v1.8.1 +CVE-2023-26125 until=2024-09-06 # github.com/gin-gonic/gin@v1.8.1 +CVE-2023-29401 until=2024-09-06 # github.com/gin-gonic/gin@v1.8.1 CVE-2023-47108 until=2024-08-28 # go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc@v0.20.0 CVE-2022-29153 until=2024-08-08 # github.com/hashicorp/consul/sdk@v0.15.1 From e2bb7c936dc93793daf44c69bcb86fb299c332a8 Mon Sep 17 00:00:00 2001 From: "HeraldBot[bot]" <149080493+heraldbot[bot]@users.noreply.github.com> Date: Thu, 8 Aug 2024 09:01:51 +0000 Subject: [PATCH 3/3] Remediate Nancy findings --- .nancy-ignore | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.nancy-ignore b/.nancy-ignore index 84e94d3..643a230 100644 --- a/.nancy-ignore +++ b/.nancy-ignore @@ -1,4 +1,4 @@ CVE-2023-26125 until=2024-09-06 # github.com/gin-gonic/gin@v1.8.1 CVE-2023-29401 until=2024-09-06 # github.com/gin-gonic/gin@v1.8.1 CVE-2023-47108 until=2024-08-28 # go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc@v0.20.0 -CVE-2022-29153 until=2024-08-08 # github.com/hashicorp/consul/sdk@v0.15.1 +CVE-2022-29153 until=2024-09-07 # github.com/hashicorp/consul/api@v1.25.1