nathanlaceyraft
nathanlaceyraft
Some scanners like Trivy don't use modern govulncheck, and as such, can have 'false alarms' ea say something is a CVE that isn't actually being called. But the 2 patches...
also, like I was showing in https://github.com/terrastruct/d2/pull/2381, you could make GitHub automatically create PR's to help your project stay free of CVE's, by Enabling Dependabot. Thanks
I'm not able to download that version. I think you need to pay chainguard to get that file.
or something like gcr.io/distroless/java17-debian12:nonroot you want an image that isn't running as root if possible
I just tested a simple client and server using golang 1.25.2 I build using ```GOFIPS140=latest go build main.go``` I added ``` if fips140.Enabled() { fmt.Println("FIPS 140 mode is enabled.") }...
Sorry for being confusing. The start of this issue stated that core go 1.24 had a bug preventing you from compiling an app with GOFIPS140 enabled. I was just trying...