pulsar-client-go icon indicating copy to clipboard operation
pulsar-client-go copied to clipboard
verified publisher icon apache

[security] Bump github.com/stretchr/testify to update gopkg.in/yaml.v3

Open massakam opened this issue 3 years ago • 0 comments

Motivation

A vulnerability scan on this repository found a vulnerable version of gopkg.in/yaml.v3. https://github.com/advisories/GHSA-hp87-p4gw-j4gq

We need to upgrade the version of github.com/stretchr/testify because it directly depends on gopkg.in/yaml.v3. https://github.com/stretchr/testify/pull/1192

Modifications

Upgraded github.com/stretchr/testify to the latest version, v1.8.0.

Verifying this change

  • [x] Make sure that the change passes the CI checks.

massakam avatar Jul 25 '22 06:07 massakam