Skip to content

Fix CVEs in Go version #9

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
mwillfox merged 1 commit into from
Sep 30, 2025
Merged

Fix CVEs in Go version #9

mwillfox merged 1 commit into from
Sep 30, 2025

Conversation

@mwillfox
Copy link
Contributor

@mwillfox mwillfox commented Sep 29, 2025

  1. Fixes CVEs in Go version by updating to go 1.25.1.
  2. Adds supply chain attestation to docker image.

@amplify-security
Copy link
Contributor

amplify-security bot commented Sep 29, 2025

🔍 Amplify code check status:   status looks good

⚠️ 0 issues detected in   📄 3 files and   ❇️ 9 lines of code   🛠️ using Opengrep

Last updated by commit 627dbb2 at 2025-09-29 23:21:08 UTC.

lae
lae approved these changes Sep 30, 2025
View reviewed changes
Copy link
Contributor

@lae lae left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@mwillfox mwillfox merged commit 615f302 into main Sep 30, 2025
5 checks passed
@mwillfox mwillfox deleted the ENG-1514/security-health branch September 30, 2025 16:57
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@lae lae lae approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@mwillfox @lae