From b18a809ed1a6f9339d308a3d7e86cf214e75dbcd Mon Sep 17 00:00:00 2001 From: Niraj Yadav Date: Tue, 20 Aug 2024 18:01:42 +0530 Subject: [PATCH] build: Use Go v1.22.5 Go versions 1.22.0 through 1.22.4 are affected by CVE-2024-24791 Signed-off-by: Niraj Yadav (cherry picked from commit cc6835eee801f6cffc4f716d4b52bb6186f44690) --- build.env | 2 +- go.mod | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/build.env b/build.env index 013ea3710..7e39f02cd 100644 --- a/build.env +++ b/build.env @@ -19,7 +19,7 @@ BASE_IMAGE=quay.io/ceph/ceph:v19 CEPH_VERSION=squid # standard Golang options -GOLANG_VERSION=1.22.2 +GOLANG_VERSION=1.22.5 GO111MODULE=on # commitlint version diff --git a/go.mod b/go.mod index e80c32284..8dc814fdd 100644 --- a/go.mod +++ b/go.mod @@ -1,6 +1,6 @@ module github.com/ceph/ceph-csi -go 1.22.0 +go 1.22.5 require ( github.com/IBM/keyprotect-go-client v0.15.1