Skip to content

[Dependencies] Bump go version to 1.23#37

Merged
TomerShor merged 2 commits intov3io:developmentfrom
rokatyy:bump-go-1-23-8
Jun 10, 2025
Merged

[Dependencies] Bump go version to 1.23#37
TomerShor merged 2 commits intov3io:developmentfrom
rokatyy:bump-go-1-23-8

Conversation

@rokatyy
Copy link
Collaborator

@rokatyy rokatyy commented Jun 9, 2025
edited
Loading

liranbg
liranbg requested changes Jun 9, 2025
View reviewed changes
Copy link
Collaborator

@liranbg liranbg left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please do change to 1.23 rather than mention specific patch version
we would like to get latest patch security updates if possible

@rokatyy
Copy link
Collaborator Author

rokatyy commented Jun 9, 2025

@liranbg The Go version specified in the go.mod file should include the patch version to ensure compatibility with the project's dependencies. If you specify only the major and minor version (e.g., go 1.23), Go may interpret this as a "unreleased" version or as a broader requirement that could lead to unexpected issues or errors. it is generally not a recommended way.

@liranbg
Copy link
Collaborator

liranbg commented Jun 9, 2025

@liranbg The Go version specified in the go.mod file should include the patch version to ensure compatibility with the project's dependencies. If you specify only the major and minor version (e.g., go 1.23), Go may interpret this as a "unreleased" version or as a broader requirement that could lead to unexpected issues or errors. it is generally not a recommended way.

For project small enough, such as below - this should not be an issue. for large-scale projects where dependencies may very between OS / Arch and etc, it may be more accurate. the overhead of bumping patch every security cycle perhaps should be more easy and therefore my suggestion

@TomerShor TomerShor changed the title [Dependencies] Bump go version to 1.23.8 [Dependencies] Bump go version to 1.23 Jun 10, 2025
@rokatyy rokatyy requested a review from liranbg June 10, 2025 14:35
@TomerShor TomerShor merged commit db9c2be into v3io:development Jun 10, 2025
2 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@TomerShor TomerShor TomerShor approved these changes

@liranbg liranbg Awaiting requested review from liranbg

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@rokatyy @liranbg @TomerShor