CVE-2023-44487 - bump x/net dependency to 0.17.0 (#157)

migtools · Oct 19, 2023 · a0975d7 · a0975d7
1 parent a3e4a57
commit a0975d7
Show file tree

Hide file tree

Showing 2 changed files with 399 additions and 13 deletions.
diff --git a/go.mod b/go.mod
@@ -16,7 +16,7 @@ require (
 	github.com/spf13/cobra v1.5.0
 	github.com/spf13/viper v1.12.0
 	github.com/vmware-tanzu/velero v1.6.3
-	golang.org/x/mod v0.6.0
+	golang.org/x/mod v0.8.0
 	gotest.tools/v3 v3.0.3
 	k8s.io/api v0.24.2
 	k8s.io/apimachinery v0.24.2
@@ -76,11 +76,11 @@ require (
 	github.com/subosito/gotenv v1.3.0 // indirect
 	github.com/xlab/treeprint v0.0.0-20181112141820-a009c3971eca // indirect
 	go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5 // indirect
-	golang.org/x/net v0.0.0-20220520000938-2e3eb7b945c2 // indirect
+	golang.org/x/net v0.17.0 // indirect
 	golang.org/x/oauth2 v0.0.0-20220411215720-9780585627b5 // indirect
-	golang.org/x/sys v0.1.0 // indirect
-	golang.org/x/term v0.0.0-20210927222741-03fcf44c2211 // indirect
-	golang.org/x/text v0.3.7 // indirect
+	golang.org/x/sys v0.13.0 // indirect
+	golang.org/x/term v0.13.0 // indirect
+	golang.org/x/text v0.13.0 // indirect
 	golang.org/x/time v0.0.0-20220210224613-90d013bbcef8 // indirect
 	google.golang.org/appengine v1.6.7 // indirect
 	google.golang.org/protobuf v1.28.0 // indirect