mirror of
https://github.com/mikefarah/yq.git
synced 2026-07-07 22:35:37 +00:00
security: update Go version to 1.24.4 to fix CVE-2025-22874
- Updated go.mod to require Go 1.24.4 (minimum version) - Updated GitHub workflows to use Go 1.24.4 instead of ^1.20 - Dockerfiles already using Go 1.24.4 (no changes needed) - Fixes vulnerability CVE-2025-22874 in Go versions < 1.23.10, 1.24.4
This commit is contained in:
parent
40808838ba
commit
91c9af7583
2
.github/workflows/go.yml
vendored
2
.github/workflows/go.yml
vendored
@ -13,7 +13,7 @@ jobs:
|
||||
- name: Set up Go
|
||||
uses: actions/setup-go@v5
|
||||
with:
|
||||
go-version: '^1.20'
|
||||
go-version: '1.24.4'
|
||||
id: go
|
||||
|
||||
- name: Check out code into the Go module directory
|
||||
|
||||
2
.github/workflows/release.yml
vendored
2
.github/workflows/release.yml
vendored
@ -12,7 +12,7 @@ jobs:
|
||||
- uses: actions/checkout@v4
|
||||
- uses: actions/setup-go@v5
|
||||
with:
|
||||
go-version: '^1.20'
|
||||
go-version: '1.24.4'
|
||||
check-latest: true
|
||||
- name: Compile man page markup
|
||||
id: gen-man-page-md
|
||||
|
||||
Loading…
Reference in New Issue
Block a user