You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
It looks like the go.mod/sum for sirupsen/logrus hasn't been updated in a while. This is causing a security hit for https://nvd.nist.gov/vuln/detail/CVE-2022-28948 in yaml.v3 via the following dep tree:
It looks like the go.mod/sum for sirupsen/logrus hasn't been updated in a while. This is causing a security hit for https://nvd.nist.gov/vuln/detail/CVE-2022-28948 in yaml.v3 via the following dep tree:
You are currently using v1.7.0 of testify/assert:
https://github.com/sirupsen/logrus/blob/master/go.mod#L5
But there are more recent versions which will fix the yaml vul (looks like v1.7.2 or higher):
https://github.com/stretchr/testify/releases
The text was updated successfully, but these errors were encountered: