build(deps): bump the main group across 1 directory with 2 updates #93
Trunk Check
Checked 2 modified files
5 existing issues (use --show-existing to see them)
✖ 6 new security issues
Details
To reproduce and test locally, run:
trunk check
For help resolving these issues, see our docs on running on PRs or debugging Trunk Check
Annotations
Check failure on line 1 in selproj/go.mod
github-actions / Trunk Check
osv-scanner(CVE-2025-22866)
[new] Timing sidechannel for P-256 on ppc64le in crypto/internal/nistec. Current version of 'stdlib' is vulnerable: 1.23.0.
Check failure on line 1 in selproj/go.mod
github-actions / Trunk Check
osv-scanner(CVE-2024-45341)
[new] Usage of IPv6 zone IDs can bypass URI name constraints in crypto/x509. Current version of 'stdlib' is vulnerable: 1.23.0.
Check failure on line 1 in selproj/go.mod
github-actions / Trunk Check
osv-scanner(CVE-2024-45336)
[new] Sensitive headers incorrectly sent after cross-domain redirect in net/http. Current version of 'stdlib' is vulnerable: 1.23.0.
Check failure on line 1 in selproj/go.mod
github-actions / Trunk Check
osv-scanner(CVE-2024-34158)
[new] Stack exhaustion in Parse in go/build/constraint. Current version of 'stdlib' is vulnerable: 1.23.0.
Check failure on line 1 in selproj/go.mod
github-actions / Trunk Check
osv-scanner(CVE-2024-34156)
[new] Stack exhaustion in Decoder.Decode in encoding/gob. Current version of 'stdlib' is vulnerable: 1.23.0.
Check failure on line 1 in selproj/go.mod
github-actions / Trunk Check
osv-scanner(CVE-2024-34155)
[new] Stack exhaustion in all Parse functions in go/parser. Current version of 'stdlib' is vulnerable: 1.23.0.