cli-purge icon indicating copy to clipboard operation
cli-purge copied to clipboard

Published 20 hours ago verified publisher icon akamai

Old Go version used to build executable triggers security vulnerability scanners

Open griswold opened this issue 2 years ago • 0 comments

The most recent release (1.0.1) appears to be built with Go 1.11.5. This triggers vulnerability scanners (e.g. JFrog X-Ray) due to susceptibility the following high severity vulnerabilities:

  • CVE-2021-33195
  • CVE-2021-38297
  • CVE-2022-23806
  • CVE-2022-23772
  • CVE-2022-23773

Is it possible to build the executable with a more recent Go version to address these issues?

Thank you!

griswold avatar May 11 '22 15:05 griswold