Commit 330a128
committed
fix(ci): resolve new govulncheck advisories
Govulncheck began failing on four newly-published advisories in existing
dependencies (unrelated to any code change):
- GO-2026-5004 (github.com/jackc/pgx/v5): SQL injection via the
non-default simple protocol with dollar-quoted literals. Fixed by
upgrading pgx/v5 v5.9.0 -> v5.9.2.
- GO-2026-5617 / GO-2026-5668 / GO-2026-5746 (github.com/docker/docker):
docker cp / archive host-path issues. docker/docker has no patched
release (only moby/moby/v2), so these join the existing docker/docker
exclusions in the CI allowlist. Dependency upgrade tracked by #151.
Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
Claude-Session: https://claude.ai/code/session_01WnKgCRfMvFcZAkoVbr8k791 parent c8e74a0 commit 330a128
4 files changed
Lines changed: 12 additions & 5 deletions
File tree
- .changeset
- .github/workflows
- packages/engine
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
| 1 | + | |
| 2 | + | |
| 3 | + | |
| 4 | + | |
| 5 | + | |
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
63 | 63 | | |
64 | 64 | | |
65 | 65 | | |
66 | | - | |
| 66 | + | |
| 67 | + | |
67 | 68 | | |
| 69 | + | |
68 | 70 | | |
69 | 71 | | |
70 | 72 | | |
| |||
85 | 87 | | |
86 | 88 | | |
87 | 89 | | |
88 | | - | |
| 90 | + | |
89 | 91 | | |
90 | 92 | | |
91 | 93 | | |
| |||
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
23 | 23 | | |
24 | 24 | | |
25 | 25 | | |
26 | | - | |
| 26 | + | |
27 | 27 | | |
28 | 28 | | |
29 | 29 | | |
| |||
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
253 | 253 | | |
254 | 254 | | |
255 | 255 | | |
256 | | - | |
257 | | - | |
| 256 | + | |
| 257 | + | |
258 | 258 | | |
259 | 259 | | |
260 | 260 | | |
| |||
0 commit comments