Bard

icon indicating an email [email protected]

Results 2 issues of Bard

Critical vulnerability for package golang.org/x/crypto found in latest version of cdk-notifier.

5 comment

Hello, I'm installing the latest version, v2.13.5, of cdk-notifier and Trivy is detecting a critical vulnerability for golang.org/x/crypto, v0.16.0, package that is present packaged in cdk-notifier. When do you anticipate...

chore: golang.org/x/crypto 0.26.0 -> 0.31.0, patch critical vulnerability

1 comment

Hi, this is a simple PR to for the upgrade of x/crypto module to version 0.31.0. This includes a fix for a critical vulnerability described in vulnerability report [GO-2024-3321](https://pkg.go.dev/vuln/GO-2024-3321). I...