bob
bob copied to clipboard
benchkram
Bob is a high-level build tool for multi-language projects.
Fixing the following Go vulnerabilities found in your code using [govulncheck](https://go.dev/blog/govulncheck): https://pkg.go.dev/vuln/GO-2024-2687 https://pkg.go.dev/vuln/GO-2024-2466 https://pkg.go.dev/vuln/GO-2024-2456 https://pkg.go.dev/vuln/GO-2023-2402 https://pkg.go.dev/vuln/GO-2023-2153 https://pkg.go.dev/vuln/GO-2023-2102 https://pkg.go.dev/vuln/GO-2023-1571 https://pkg.go.dev/vuln/GO-2022-1144 https://pkg.go.dev/vuln/GO-2022-0969 Full scan output: https://gist.github.com/katexochen/81e01dbaa6fb6cdc7cf145c2b72c94ec Maybe you can add the [govulncheck-action](https://github.com/marketplace/actions/golang-govulncheck-action)...
Bumps [golang.org/x/net](https://github.com/golang/net) from 0.0.0-20220520000938-2e3eb7b945c2 to 0.23.0. Commits See full diff in compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Bumps [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) from 5.4.2 to 5.12.0. Release notes Sourced from github.com/go-git/go-git/v5's releases. v5.12.0 What's Changed git: Worktree.AddWithOptions: add skipStatus option when providing a specific path by @moranCohen26 in go-git/go-git#994 git:...