From f5787ef5bcf34bf8f60160a1e2a31a87777e08ec Mon Sep 17 00:00:00 2001 From: Alexsandro Date: Tue, 13 Aug 2024 16:09:33 -0300 Subject: [PATCH] Updated github.com/nats-io/nats-server/v2 to address CVE-2022-28357 Found the corresponding dependency: go mod graph | grep github.com/nats-io/nats-server/v2 > github.com/go-kit/kit@v0.12.0 github.com/nats-io/nats-server/v2@v2.5.0 Updated the dependency with the command: go get github.com/go-kit/kit The dependency updated after updating: go mod graph | grep github.com/nats-io/nats-server/v2 > github.com/go-kit/kit@v0.13.0 github.com/nats-io/nats-server/v2@v2.8.4 --- go.mod | 2 +- go.sum | 2 ++ 2 files changed, 3 insertions(+), 1 deletion(-) diff --git a/go.mod b/go.mod index 6503a1b07d3..046ce025330 100644 --- a/go.mod +++ b/go.mod @@ -10,7 +10,7 @@ require ( github.com/Workiva/go-datastructures v1.0.53 github.com/adlio/schema v1.3.3 github.com/fortytw2/leaktest v1.3.0 - github.com/go-kit/kit v0.12.0 + github.com/go-kit/kit v0.13.0 github.com/go-kit/log v0.2.1 github.com/go-logfmt/logfmt v0.5.1 github.com/gofrs/uuid v4.3.0+incompatible diff --git a/go.sum b/go.sum index d1f1ed33767..76963c753b1 100644 --- a/go.sum +++ b/go.sum @@ -323,6 +323,8 @@ github.com/go-kit/kit v0.8.0/go.mod h1:xBxKIO96dXMWWy0MnWVtmwkA9/13aqxPnvrjFYMA2 github.com/go-kit/kit v0.9.0/go.mod h1:xBxKIO96dXMWWy0MnWVtmwkA9/13aqxPnvrjFYMA2as= github.com/go-kit/kit v0.12.0 h1:e4o3o3IsBfAKQh5Qbbiqyfu97Ku7jrO/JbohvztANh4= github.com/go-kit/kit v0.12.0/go.mod h1:lHd+EkCZPIwYItmGDDRdhinkzX2A1sj+M9biaEaizzs= +github.com/go-kit/kit v0.13.0 h1:OoneCcHKHQ03LfBpoQCUfCluwd2Vt3ohz+kvbJneZAU= +github.com/go-kit/kit v0.13.0/go.mod h1:phqEHMMUbyrCFCTgH48JueqrM3md2HcAZ8N3XE4FKDg= github.com/go-kit/log v0.1.0/go.mod h1:zbhenjAZHb184qTLMA9ZjW7ThYL0H2mk7Q6pNt4vbaY= github.com/go-kit/log v0.2.0/go.mod h1:NwTd00d/i8cPZ3xOwwiv2PO5MOcx78fFErGNcVmBjv0= github.com/go-kit/log v0.2.1 h1:MRVx0/zhvdseW+Gza6N9rVzU/IVzaeE1SFI4raAhmBU=