fix(deps): update dependencies by renovate[bot] · Pull Request #115 · Nullify-Platform/cli

renovate · 2025-04-30T22:11:02Z

This PR contains the following updates:

Package	Change	Type	Update
github.com/nullify-platform/logger	`v1.23.0` -> `v1.26.1`	require	minor
go (source)	`1.23.5` -> `1.24.2`	toolchain	minor
golangci/golangci-lint	`v1.63.4` -> `v1.64.8`	stage	minor
ossf/scorecard-action	`v2.4.0` -> `v2.4.1`	action	patch

Release Notes

nullify-platform/logger (github.com/nullify-platform/logger)

What's Changed

Create a python logging library which are used by AI agents by @vik-nullify in https://github.com/Nullify-Platform/Logger/pull/130

Full Changelog: Nullify-Platform/Logger@v1.24.1...v1.25.0

`v1.24.1`

Compare Source

What's Changed

don't log cookies by @tim-thacker-nullify in https://github.com/Nullify-Platform/Logger/pull/129

Full Changelog: Nullify-Platform/Logger@v1.24.0...v1.24.1

`v1.24.0`

Compare Source

What's Changed

remove glitchtip by @tim-thacker-nullify in https://github.com/Nullify-Platform/Logger/pull/128

Full Changelog: Nullify-Platform/Logger@v1.23.0...v1.24.0

golang/go (go)

`v1.24.2`

`v1.24.1`

`v1.24.0`

`v1.23.8`

`v1.23.7`

`v1.23.6`

golangci/golangci-lint (golangci/golangci-lint)

`v1.64.8`

Compare Source

Detects use of configuration files from golangci-lint v2

`v1.64.7`

Compare Source

Linters bug fixes
- depguard: from 2.2.0 to 2.2.1
- dupl: from 3e9179a to f665c8d
- gosec: from 2.22.1 to 2.22.2
- staticcheck: from 0.6.0 to 0.6.1
Documentation
- Add GitLab documentation

`v1.64.6`

Compare Source

Linters bug fixes
- asciicheck: from 0.4.0 to 0.4.1
- contextcheck: from 1.1.5 to 1.1.6
- errcheck: from 1.8.0 to 1.9.0
- exptostd: from 0.4.1 to 0.4.2
- ginkgolinter: from 0.19.0 to 0.19.1
- go-exhaustruct: from 3.3.0 to 3.3.1
- gocheckcompilerdirectives: from 1.2.1 to 1.3.0
- godot: from 1.4.20 to 1.5.0
- perfsprint: from 0.8.1 to 0.8.2
- revive: from 1.6.1 to 1.7.0
- tagalign: from 1.4.1 to 1.4.2

`v1.64.5`

Compare Source

Bug fixes
- Add missing flag new-from-merge-base-flag
Linters bug fixes
- asciicheck: from 0.3.0 to 0.4.0
- forcetypeassert: from 0.1.0 to 0.2.0
- gosec: from 2.22.0 to 2.22.1

`v1.64.4`

Compare Source

Linters bug fixes
- gci: fix standard packages list for go1.24

`v1.64.3`

Compare Source

Linters bug fixes
- ginkgolinter: from 0.18.4 to 0.19.0
- go-critic: from 0.11.5 to 0.12.0
- revive: from 1.6.0 to 1.6.1
- gci: fix standard packages list for go1.24
Misc.
- Build Docker images with go1.24

`v1.64.2`

Compare Source

This is the last minor release of golangci-lint v1.
The next release will be golangci-lint v2.

Enhancements
- 🎉 go1.24 support
- New issues.new-from-merge-base option
- New run.relative-path-mode option
Linters new features
- copyloopvar: from 1.1.0 to 1.2.1 (support suggested fixes)
- exptostd: from 0.3.1 to 0.4.1 (handles golang.org/x/exp/constraints.Ordered)
- fatcontext: from 0.5.3 to 0.7.1 (new option: check-struct-pointers)
- perfsprint: from 0.7.1 to 0.8.1 (new options: integer-format, error-format, string-format, bool-format, and hex-format)
- revive: from 1.5.1 to 1.6.0 (new rules: redundant-build-tag, use-errors-new. New option early-return.early-return)
Linters bug fixes
- go-errorlint: from 1.7.0 to 1.7.1
- gochecknoglobals: from 0.2.1 to 0.2.2
- godox: from 006bad1 to 1.1.0
- gosec: from 2.21.4 to 2.22.0
- iface: from 1.3.0 to 1.3.1
- nilnesserr: from 0.1.1 to 0.1.2
- protogetter: from 0.3.8 to 0.3.9
- sloglint: from 0.7.2 to 0.9.0
- spancheck: fix default StartSpanMatchersSlice values
- staticcheck: from 0.5.1 to 0.6.0
Deprecations
- ⚠️ tenv is deprecated and replaced by usetesting.os-setenv: true.
- ⚠️ exportloopref deprecation step 2
Misc.
- Sanitize severities by output format
- Avoid panic with plugin without description
Documentation
- Clarify depguard configuration

ossf/scorecard-action (ossf/scorecard-action)

`v2.4.1`

Compare Source

What's Changed

This update bumps the Scorecard version to the v5.1.1 release. For a complete list of changes, please refer to the v5.1.0 and v5.1.1 release notes.
Publishing results now uses half the API quota as before. The exact savings depends on the repository in question.
- use Scorecard library entrypoint instead of Cobra hooking by @spencerschrock in https://github.com/ossf/scorecard-action/pull/1423
Some errors were made into annotations to make them more visible
- Make default branch error more prominent by @jsoref in https://github.com/ossf/scorecard-action/pull/1459
There is now an optional file_mode input which controls how repository files are fetched from GitHub. The default is archive, but git produces the most accurate results for repositories with .gitattributes files at the cost of analysis speed.
- add input for specifying --file-mode by @spencerschrock in https://github.com/ossf/scorecard-action/pull/1509
The underlying container for the action is now hosted on GitHub Container Registry. There should be no functional changes.
- 🌱 publish docker images to GitHub Container Registry by @spencerschrock in https://github.com/ossf/scorecard-action/pull/1453

Docs

Installation docs update by @JeremiahAHoward in https://github.com/ossf/scorecard-action/pull/1416

New Contributors

@JeremiahAHoward made their first contribution in https://github.com/ossf/scorecard-action/pull/1416
@jsoref made their first contribution in https://github.com/ossf/scorecard-action/pull/1459
Full Changelog: ossf/scorecard-action@v2.4.0...v2.4.1

Configuration

📅 Schedule: Branch creation - Between 08:00 AM and 08:59 AM, on day 1 of the month ( * 8 1 * * ) in timezone Australia/Sydney, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

renovate · 2025-04-30T22:11:04Z

ℹ Artifact update notice

File name: go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

16 additional dependencies were updated

Details:

Package	Change
`github.com/grpc-ecosystem/grpc-gateway/v2`	`v2.24.0` -> `v2.26.1`
`go.opentelemetry.io/otel`	`v1.33.0` -> `v1.35.0`
`go.opentelemetry.io/otel/exporters/otlp/otlptrace`	`v1.33.0` -> `v1.35.0`
`go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp`	`v1.33.0` -> `v1.35.0`
`go.opentelemetry.io/otel/exporters/stdout/stdouttrace`	`v1.33.0` -> `v1.35.0`
`go.opentelemetry.io/otel/metric`	`v1.33.0` -> `v1.35.0`
`go.opentelemetry.io/otel/sdk`	`v1.33.0` -> `v1.35.0`
`go.opentelemetry.io/otel/trace`	`v1.33.0` -> `v1.35.0`
`go.opentelemetry.io/proto/otlp`	`v1.4.0` -> `v1.5.0`
`golang.org/x/net`	`v0.32.0` -> `v0.35.0`
`golang.org/x/sys`	`v0.28.0` -> `v0.30.0`
`golang.org/x/text`	`v0.21.0` -> `v0.22.0`
`google.golang.org/genproto/googleapis/api`	`v0.0.0-20241209162323-e6fa225c2576` -> `v0.0.0-20250218202821-56aae31c358a`
`google.golang.org/genproto/googleapis/rpc`	`v0.0.0-20241209162323-e6fa225c2576` -> `v0.0.0-20250218202821-56aae31c358a`
`google.golang.org/grpc`	`v1.68.1` -> `v1.71.0`
`google.golang.org/protobuf`	`v1.35.2` -> `v1.36.5`

nullify-latest · 2025-04-30T22:13:49Z

Nullify Container Vulnerabilities

Container vulnerabilities occur due to misconfigurations, outdated software, or unpatched security flaws in containerized applications.

Severity Threshold: 🟡 HIGH

16 Vulnerabilities found in image: golangci/golangci-lint:v1.64.8@sha256:2987913e27f4eca9c8a39129d2c7bc1e74fbcf77f181e01cea607be437aa5cb8

Total Vulnerabilities	🔴 CRITICAL	🟡 HIGH	🔵 MEDIUM	⚪ LOW
16	2	14	0	0

cli/Dockerfile

Line 1 in c305842

    
           FROM golangci/golangci-lint:v1.64.8@sha256:2987913e27f4eca9c8a39129d2c7bc1e74fbcf77f181e01cea607be437aa5cb8 as golangci-lint

View Vulnerable Packages

Package: debian:wget Version: 1.21.3-1+b2 Vulnerabilities: 1

View Vulnerabilities (CVEs)

🔴 CRITICAL	🟡 HIGH	🔵 MEDIUM	⚪ LOW
1	0	0	0

CVE	Severity	CVSS	Impact Score	ExploitabilityScore	Vector String
CVE-2024-38428	CRITICAL	9.10	5.20	3.90	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Package: debian:zlib1g Version: 1:1.2.13.dfsg-1 Vulnerabilities: 1

View Vulnerabilities (CVEs)

🔴 CRITICAL	🟡 HIGH	🔵 MEDIUM	⚪ LOW
1	0	0	0

CVE	Severity	CVSS	Impact Score	ExploitabilityScore	Vector String
CVE-2023-45853	CRITICAL	9.80	5.90	3.90	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Package: debian:libexpat1 Version: 2.5.0-1+deb12u1 Vulnerabilities: 1

View Vulnerabilities (CVEs)

🔴 CRITICAL	🟡 HIGH	🔵 MEDIUM	⚪ LOW
0	1	0	0

CVE	Severity	CVSS	Impact Score	ExploitabilityScore	Vector String
CVE-2023-52425	HIGH	7.50	3.60	3.90	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Package: debian:libldap-2.5-0 Version: 2.5.13+dfsg-5 Vulnerabilities: 1

View Vulnerabilities (CVEs)

🔴 CRITICAL	🟡 HIGH	🔵 MEDIUM	⚪ LOW
0	1	0	0

CVE	Severity	CVSS	Impact Score	ExploitabilityScore	Vector String
CVE-2023-2953	HIGH	7.50	3.60	3.90	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Package: debian:libpam-modules Version: 1.5.2-6+deb12u1 Vulnerabilities: 1

View Vulnerabilities (CVEs)

🔴 CRITICAL	🟡 HIGH	🔵 MEDIUM	⚪ LOW
0	1	0	0

CVE	Severity	CVSS	Impact Score	ExploitabilityScore	Vector String
CVE-2024-10963	HIGH	7.40	5.20	2.20

Package: debian:libpam-modules-bin Version: 1.5.2-6+deb12u1 Vulnerabilities: 1

View Vulnerabilities (CVEs)

🔴 CRITICAL	🟡 HIGH	🔵 MEDIUM	⚪ LOW
0	1	0	0

CVE	Severity	CVSS	Impact Score	ExploitabilityScore	Vector String
CVE-2024-10963	HIGH	7.40	5.20	2.20

Package: debian:libpam-runtime Version: 1.5.2-6+deb12u1 Vulnerabilities: 1

View Vulnerabilities (CVEs)

🔴 CRITICAL	🟡 HIGH	🔵 MEDIUM	⚪ LOW
0	1	0	0

CVE	Severity	CVSS	Impact Score	ExploitabilityScore	Vector String
CVE-2024-10963	HIGH	7.40	5.20	2.20

Package: debian:libpam0g Version: 1.5.2-6+deb12u1 Vulnerabilities: 1

View Vulnerabilities (CVEs)

🔴 CRITICAL	🟡 HIGH	🔵 MEDIUM	⚪ LOW
0	1	0	0

CVE	Severity	CVSS	Impact Score	ExploitabilityScore	Vector String
CVE-2024-10963	HIGH	7.40	5.20	2.20

Package: debian:libperl5.36 Version: 5.36.0-7+deb12u1 Vulnerabilities: 1

View Vulnerabilities (CVEs)

🔴 CRITICAL	🟡 HIGH	🔵 MEDIUM	⚪ LOW
0	1	0	0

CVE	Severity	CVSS	Impact Score	ExploitabilityScore	Vector String
CVE-2023-31484	HIGH	8.10	5.90	2.20	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Package: debian:libpython3.11-minimal Version: 3.11.2-6+deb12u5 Vulnerabilities: 1

View Vulnerabilities (CVEs)

🔴 CRITICAL	🟡 HIGH	🔵 MEDIUM	⚪ LOW
0	1	0	0

CVE	Severity	CVSS	Impact Score	ExploitabilityScore	Vector String
CVE-2024-7592	HIGH	7.50	3.60	3.90	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Package: debian:libpython3.11-stdlib Version: 3.11.2-6+deb12u5 Vulnerabilities: 1

View Vulnerabilities (CVEs)

🔴 CRITICAL	🟡 HIGH	🔵 MEDIUM	⚪ LOW
0	1	0	0

CVE	Severity	CVSS	Impact Score	ExploitabilityScore	Vector String
CVE-2024-7592	HIGH	7.50	3.60	3.90	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Package: debian:perl Version: 5.36.0-7+deb12u1 Vulnerabilities: 1

View Vulnerabilities (CVEs)

🔴 CRITICAL	🟡 HIGH	🔵 MEDIUM	⚪ LOW
0	1	0	0

CVE	Severity	CVSS	Impact Score	ExploitabilityScore	Vector String
CVE-2023-31484	HIGH	8.10	5.90	2.20	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Package: debian:perl-base Version: 5.36.0-7+deb12u1 Vulnerabilities: 1

View Vulnerabilities (CVEs)

🔴 CRITICAL	🟡 HIGH	🔵 MEDIUM	⚪ LOW
0	1	0	0

CVE	Severity	CVSS	Impact Score	ExploitabilityScore	Vector String
CVE-2023-31484	HIGH	8.10	5.90	2.20	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Package: debian:perl-modules-5.36 Version: 5.36.0-7+deb12u1 Vulnerabilities: 1

View Vulnerabilities (CVEs)

🔴 CRITICAL	🟡 HIGH	🔵 MEDIUM	⚪ LOW
0	1	0	0

CVE	Severity	CVSS	Impact Score	ExploitabilityScore	Vector String
CVE-2023-31484	HIGH	8.10	5.90	2.20	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Package: debian:python3.11 Version: 3.11.2-6+deb12u5 Vulnerabilities: 1

View Vulnerabilities (CVEs)

🔴 CRITICAL	🟡 HIGH	🔵 MEDIUM	⚪ LOW
0	1	0	0

CVE	Severity	CVSS	Impact Score	ExploitabilityScore	Vector String
CVE-2024-7592	HIGH	7.50	3.60	3.90	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Package: debian:python3.11-minimal Version: 3.11.2-6+deb12u5 Vulnerabilities: 1

View Vulnerabilities (CVEs)

🔴 CRITICAL	🟡 HIGH	🔵 MEDIUM	⚪ LOW
0	1	0	0

CVE	Severity	CVSS	Impact Score	ExploitabilityScore	Vector String
CVE-2024-7592	HIGH	7.50	3.60	3.90	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Alternative Images

golangci/golangci-lint:latest@sha256:88a8cc6bd17bc81a0cc97f401d25427b47394d664f16e5ca15d4156563d32154

Total Vulnerabilities	🔴 CRITICAL	🟡 HIGH	🔵 MEDIUM	⚪ LOW
16	2	14	0	0

View Vulnerable Packages

Package: debian:wget Version: 1.21.3-1+deb12u1 Vulnerabilities: 1

View Vulnerabilities (CVEs)

🔴 CRITICAL	🟡 HIGH	🔵 MEDIUM	⚪ LOW
1	0	0	0

CVE	Severity	CVSS	Impact Score	ExploitabilityScore	Vector String
CVE-2024-38428	CRITICAL	9.10	5.20	3.90	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Package: debian:zlib1g Version: 1:1.2.13.dfsg-1 Vulnerabilities: 1

View Vulnerabilities (CVEs)

🔴 CRITICAL	🟡 HIGH	🔵 MEDIUM	⚪ LOW
1	0	0	0

CVE	Severity	CVSS	Impact Score	ExploitabilityScore	Vector String
CVE-2023-45853	CRITICAL	9.80	5.90	3.90	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Package: debian:libexpat1 Version: 2.5.0-1+deb12u1 Vulnerabilities: 1

View Vulnerabilities (CVEs)

🔴 CRITICAL	🟡 HIGH	🔵 MEDIUM	⚪ LOW
0	1	0	0

CVE	Severity	CVSS	Impact Score	ExploitabilityScore	Vector String
CVE-2023-52425	HIGH	7.50	3.60	3.90	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Package: debian:libldap-2.5-0 Version: 2.5.13+dfsg-5 Vulnerabilities: 1

View Vulnerabilities (CVEs)

🔴 CRITICAL	🟡 HIGH	🔵 MEDIUM	⚪ LOW
0	1	0	0

CVE	Severity	CVSS	Impact Score	ExploitabilityScore	Vector String
CVE-2023-2953	HIGH	7.50	3.60	3.90	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Package: debian:libpam-modules Version: 1.5.2-6+deb12u1 Vulnerabilities: 1

View Vulnerabilities (CVEs)

🔴 CRITICAL	🟡 HIGH	🔵 MEDIUM	⚪ LOW
0	1	0	0

CVE	Severity	CVSS	Impact Score	ExploitabilityScore	Vector String
CVE-2024-10963	HIGH	7.40	5.20	2.20

Package: debian:libpam-modules-bin Version: 1.5.2-6+deb12u1 Vulnerabilities: 1

View Vulnerabilities (CVEs)

🔴 CRITICAL	🟡 HIGH	🔵 MEDIUM	⚪ LOW
0	1	0	0

CVE	Severity	CVSS	Impact Score	ExploitabilityScore	Vector String
CVE-2024-10963	HIGH	7.40	5.20	2.20

Package: debian:libpam-runtime Version: 1.5.2-6+deb12u1 Vulnerabilities: 1

View Vulnerabilities (CVEs)

🔴 CRITICAL	🟡 HIGH	🔵 MEDIUM	⚪ LOW
0	1	0	0

CVE	Severity	CVSS	Impact Score	ExploitabilityScore	Vector String
CVE-2024-10963	HIGH	7.40	5.20	2.20

Package: debian:libpam0g Version: 1.5.2-6+deb12u1 Vulnerabilities: 1

View Vulnerabilities (CVEs)

🔴 CRITICAL	🟡 HIGH	🔵 MEDIUM	⚪ LOW
0	1	0	0

CVE	Severity	CVSS	Impact Score	ExploitabilityScore	Vector String
CVE-2024-10963	HIGH	7.40	5.20	2.20

Package: debian:libperl5.36 Version: 5.36.0-7+deb12u1 Vulnerabilities: 1

View Vulnerabilities (CVEs)

🔴 CRITICAL	🟡 HIGH	🔵 MEDIUM	⚪ LOW
0	1	0	0

CVE	Severity	CVSS	Impact Score	ExploitabilityScore	Vector String
CVE-2023-31484	HIGH	8.10	5.90	2.20	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Package: debian:libpython3.11-minimal Version: 3.11.2-6+deb12u5 Vulnerabilities: 1

View Vulnerabilities (CVEs)

🔴 CRITICAL	🟡 HIGH	🔵 MEDIUM	⚪ LOW
0	1	0	0

CVE	Severity	CVSS	Impact Score	ExploitabilityScore	Vector String
CVE-2024-7592	HIGH	7.50	3.60	3.90	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Package: debian:libpython3.11-stdlib Version: 3.11.2-6+deb12u5 Vulnerabilities: 1

View Vulnerabilities (CVEs)

🔴 CRITICAL	🟡 HIGH	🔵 MEDIUM	⚪ LOW
0	1	0	0

CVE	Severity	CVSS	Impact Score	ExploitabilityScore	Vector String
CVE-2024-7592	HIGH	7.50	3.60	3.90	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Package: debian:perl Version: 5.36.0-7+deb12u1 Vulnerabilities: 1

View Vulnerabilities (CVEs)

🔴 CRITICAL	🟡 HIGH	🔵 MEDIUM	⚪ LOW
0	1	0	0

CVE	Severity	CVSS	Impact Score	ExploitabilityScore	Vector String
CVE-2023-31484	HIGH	8.10	5.90	2.20	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Package: debian:perl-base Version: 5.36.0-7+deb12u1 Vulnerabilities: 1

View Vulnerabilities (CVEs)

🔴 CRITICAL	🟡 HIGH	🔵 MEDIUM	⚪ LOW
0	1	0	0

CVE	Severity	CVSS	Impact Score	ExploitabilityScore	Vector String
CVE-2023-31484	HIGH	8.10	5.90	2.20	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Package: debian:perl-modules-5.36 Version: 5.36.0-7+deb12u1 Vulnerabilities: 1

View Vulnerabilities (CVEs)

🔴 CRITICAL	🟡 HIGH	🔵 MEDIUM	⚪ LOW
0	1	0	0

CVE	Severity	CVSS	Impact Score	ExploitabilityScore	Vector String
CVE-2023-31484	HIGH	8.10	5.90	2.20	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Package: debian:python3.11 Version: 3.11.2-6+deb12u5 Vulnerabilities: 1

View Vulnerabilities (CVEs)

🔴 CRITICAL	🟡 HIGH	🔵 MEDIUM	⚪ LOW
0	1	0	0

CVE	Severity	CVSS	Impact Score	ExploitabilityScore	Vector String
CVE-2024-7592	HIGH	7.50	3.60	3.90	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Package: debian:python3.11-minimal Version: 3.11.2-6+deb12u5 Vulnerabilities: 1

View Vulnerabilities (CVEs)

🔴 CRITICAL	🟡 HIGH	🔵 MEDIUM	⚪ LOW
0	1	0	0

CVE	Severity	CVSS	Impact Score	ExploitabilityScore	Vector String
CVE-2024-7592	HIGH	7.50	3.60	3.90	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

golangci/golangci-lint:v2.1.5-alpine@sha256:eff222d3ac17f7e2a12dbe757cb33c2dc7899cd5bfae4432594e558a1e1e0228

Total Vulnerabilities	🔴 CRITICAL	🟡 HIGH	🔵 MEDIUM	⚪ LOW
0	0	0	0	0

fix(deps): update dependencies

c305842

renovate bot requested a review from tim-thacker-nullify as a code owner April 30, 2025 22:11

renovate bot added the patch Patch version updates (fixes) label Apr 30, 2025

tim-thacker-nullify approved these changes May 1, 2025

View reviewed changes

tim-thacker-nullify added this pull request to the merge queue May 1, 2025

Merged via the queue into main with commit 9dc57b3 May 1, 2025
8 checks passed

tim-thacker-nullify deleted the renovate/dependencies branch May 1, 2025 01:32

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

fix(deps): update dependencies#115

fix(deps): update dependencies#115
tim-thacker-nullify merged 1 commit intomainfrom
renovate/dependencies

renovate bot commented Apr 30, 2025

Uh oh!

renovate bot commented Apr 30, 2025

Uh oh!

nullify-latest bot commented Apr 30, 2025

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Conversation

renovate bot commented Apr 30, 2025

Release Notes

What's Changed

What's Changed

New Contributors

What's Changed

What's Changed

What's Changed

What's Changed

Docs

New Contributors

Configuration

Uh oh!

renovate bot commented Apr 30, 2025

ℹ Artifact update notice

File name: go.mod

Uh oh!

nullify-latest bot commented Apr 30, 2025

Nullify Container Vulnerabilities

16 Vulnerabilities found in image: golangci/golangci-lint:v1.64.8@sha256:2987913e27f4eca9c8a39129d2c7bc1e74fbcf77f181e01cea607be437aa5cb8

Alternative Images

golangci/golangci-lint:latest@sha256:88a8cc6bd17bc81a0cc97f401d25427b47394d664f16e5ca15d4156563d32154

golangci/golangci-lint:v2.1.5-alpine@sha256:eff222d3ac17f7e2a12dbe757cb33c2dc7899cd5bfae4432594e558a1e1e0228

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant