From b058c03c3028e67be90016a026b012d523d01b0e Mon Sep 17 00:00:00 2001 From: Rafael Espinoza Date: Mon, 19 Jun 2023 15:26:22 -0700 Subject: [PATCH] ci: Bump go version to address vulnerabilities go version 1.20.2 has some vulnerabilities, details at: - https://pkg.go.dev/vuln/GO-2023-1840 - https://pkg.go.dev/vuln/GO-2023-1705 - https://pkg.go.dev/vuln/GO-2023-1704 - https://pkg.go.dev/vuln/GO-2023-1753 - https://pkg.go.dev/vuln/GO-2023-1752 - https://pkg.go.dev/vuln/GO-2023-1751 - https://pkg.go.dev/vuln/GO-2023-1737 - https://pkg.go.dev/vuln/GO-2023-1703 - https://pkg.go.dev/vuln/GO-2023-1702 They've been addressed in the new go version. --- .github/workflows/documentation.yml | 2 +- .github/workflows/publish.yml | 4 ++-- .github/workflows/test.yml | 2 +- 3 files changed, 4 insertions(+), 4 deletions(-) diff --git a/.github/workflows/documentation.yml b/.github/workflows/documentation.yml index 62efaa0..7d82377 100644 --- a/.github/workflows/documentation.yml +++ b/.github/workflows/documentation.yml @@ -21,7 +21,7 @@ jobs: - name: Export GOBIN uses: actions/setup-go@v4 with: - go-version: '1.20.2' + go-version: '1.20.5' - name: Install dependencies run: make setup diff --git a/.github/workflows/publish.yml b/.github/workflows/publish.yml index 91d3269..3b72a79 100644 --- a/.github/workflows/publish.yml +++ b/.github/workflows/publish.yml @@ -19,7 +19,7 @@ jobs: - name: Export GOBIN uses: actions/setup-go@v4 with: - go-version: '1.20.2' + go-version: '1.20.5' - name: Install dependencies run: make setup @@ -86,7 +86,7 @@ jobs: - name: Export GOBIN uses: actions/setup-go@v4 with: - go-version: '1.20.2' + go-version: '1.20.5' - name: Run GoReleaser uses: goreleaser/goreleaser-action@v4 diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml index 24df163..908f1b3 100644 --- a/.github/workflows/test.yml +++ b/.github/workflows/test.yml @@ -24,7 +24,7 @@ jobs: - name: Export GOBIN uses: actions/setup-go@v4 with: - go-version: '1.20.2' + go-version: '1.20.5' - name: Install dependencies run: make setup