fix(deps): Update module golang.org/x/net to v0.38.0 [SECURITY] #287
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
![renovate[bot]](https://avatars.githubusercontent.com/in/2740?s=60&v=4){kind=small}
ℹ Artifact update noticeFile name: modules/project_cleanup/function_source/go.modIn order to perform the update(s) described in the table above, Renovate ran the
Details:
|
|
/gcbrun |
renovate
bot
force-pushed
the
renovate/go-golang.org-x-net-vulnerability
branch
from
6e87f11 to
a603b18
Compare
renovate
bot
changed the title
|
/gcbrun |
renovate
bot
force-pushed
the
renovate/go-golang.org-x-net-vulnerability
branch
from
a603b18 to
1e489e6
Compare
|
/gcbrun |
renovate
bot
force-pushed
the
renovate/go-golang.org-x-net-vulnerability
branch
from
1e489e6 to
b38b97e
Compare
|
/gcbrun |
renovate
bot
force-pushed
the
renovate/go-golang.org-x-net-vulnerability
branch
from
b38b97e to
1bc9eb5
Compare
|
/gcbrun |
renovate
bot
force-pushed
the
renovate/go-golang.org-x-net-vulnerability
branch
from
1bc9eb5 to
88ce5fd
Compare
|
/gcbrun |
renovate
bot
force-pushed
the
renovate/go-golang.org-x-net-vulnerability
branch
from
88ce5fd to
dcd09ce
Compare
|
/gcbrun |
renovate
bot
force-pushed
the
renovate/go-golang.org-x-net-vulnerability
branch
from
dcd09ce to
2363bd7
Compare
|
/gcbrun |
renovate
bot
force-pushed
the
renovate/go-golang.org-x-net-vulnerability
branch
from
2363bd7 to
ba45936
Compare
|
/gcbrun |
renovate
bot
force-pushed
the
renovate/go-golang.org-x-net-vulnerability
branch
from
ba45936 to
4e79170
Compare
|
/gcbrun |
renovate
bot
force-pushed
the
renovate/go-golang.org-x-net-vulnerability
branch
from
4e79170 to
0f1d308
Compare
|
/gcbrun |
renovate
bot
force-pushed
the
renovate/go-golang.org-x-net-vulnerability
branch
from
0f1d308 to
32c3d81
Compare
|
/gcbrun |
renovate
bot
force-pushed
the
renovate/go-golang.org-x-net-vulnerability
branch
from
32c3d81 to
38d2d0e
Compare
|
/gcbrun |
renovate
bot
force-pushed
the
renovate/go-golang.org-x-net-vulnerability
branch
from
38d2d0e to
b38ee87
Compare
|
/gcbrun |
renovate
bot
force-pushed
the
renovate/go-golang.org-x-net-vulnerability
branch
from
b38ee87 to
5a1aa13
Compare
|
/gcbrun |
renovate
bot
force-pushed
the
renovate/go-golang.org-x-net-vulnerability
branch
from
5a1aa13 to
5efddf5
Compare
|
/gcbrun |
renovate
bot
force-pushed
the
renovate/go-golang.org-x-net-vulnerability
branch
from
5efddf5 to
24b5950
Compare
|
/gcbrun |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Coming soon: The Renovate bot (GitHub App) will be renamed to Mend. PRs from Renovate will soon appear from 'Mend'. Learn more here.
This PR contains the following updates:
v0.34.0->v0.38.0GitHub Vulnerability Alerts
CVE-2025-22870
Matching of hosts against proxy patterns can improperly treat an IPv6 zone ID as a hostname component. For example, when the NO_PROXY environment variable is set to "*.example.com", a request to "[::1%25.example.com]:80` will incorrectly match and not be proxied.
CVE-2025-22872
The tokenizer incorrectly interprets tags with unquoted attribute values that end with a solidus character (/) as self-closing. When directly using Tokenizer, this can result in such tags incorrectly being marked as self-closing, and when using the Parse functions, this can result in content following such tags as being placed in the wrong scope during DOM construction, but only when tags are in foreign content (e.g. , , etc contexts).
Configuration
📅 Schedule: Branch creation - "" (UTC), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR was generated by Mend Renovate. View the repository job log.