chore: Update dependencies (#97)

spolti · spolti · commit f0c2d4b4c2e8 · 2025-03-02T22:46:10.000-03:00
chore: Fixes the following CVEs: CVE-2023-45288 - Non-linear parsing of case-insensitive content in golang.org/x/net/html CVE-2024-45337 - Misuse of ServerConfig.PublicKeyCallback may cause authorization bypass in golang.org/x/crypto Signed-off-by: Spolti <fspolti@redhat.com>
diff --git a/go.mod b/go.mod
@@ -71,7 +71,7 @@ require (
 )
 
 replace (
-	// Fixes CVE-2024-45337
+	// Fixes CVE-2024-45338
 	golang.org/x/net => golang.org/x/net v0.33.0
 	// remove when upgrade to controller-runtime 0.15.x or apimachinery to 0.27.x
 	// Fixes SNYK-GOLANG-K8SIOAPIMACHINERYPKGUTILRUNTIME-8367153

Original file line number	Diff line number	Diff line change
`@@ -71,7 +71,7 @@ require (`
`71`	`71`	`)`
`72`	`72`
`73`	`73`	`replace (`
`74`		`- // Fixes CVE-2024-45337`
	`74`	`+ // Fixes CVE-2024-45338`
`75`	`75`	`golang.org/x/net => golang.org/x/net v0.33.0`
`76`	`76`	`// remove when upgrade to controller-runtime 0.15.x or apimachinery to 0.27.x`
`77`	`77`	`// Fixes SNYK-GOLANG-K8SIOAPIMACHINERYPKGUTILRUNTIME-8367153`