fix(security): remediate CVE vulnerabilities (#542)

upbound-bot · ulucinar · web-flow · commit 7a1af485effe · 2026-02-26T19:58:20.000-06:00
* fix(security): remediate CVE vulnerabilities - Update Go version to 1.24.13 (fixes CVE-2025-68121, CVE-2025-61726, CVE-2025-61731, CVE-2025-61732, CVE-2025-61728, CVE-2025-61730) Signed-off-by: Alper Rifat Ulucinar <ulucinar@users.noreply.github.com> * fix(ci): update GO_VERSION to 1.24.13 The go.mod requires go >= 1.24.13 but the CI workflow was configured with GO_VERSION 1.24.11, causing Docker builds to fail. Signed-off-by: Alper Rifat Ulucinar <ulucinar@users.noreply.github.com> --------- Signed-off-by: Alper Rifat Ulucinar <ulucinar@users.noreply.github.com> Co-authored-by: Alper Rifat Ulucinar <ulucinar@users.noreply.github.com>
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
@@ -14,7 +14,7 @@ on:
 
 env:
   # Common versions
-  GO_VERSION: '1.24.11'
+  GO_VERSION: '1.24.13'
   GOLANGCI_VERSION: 'v1.64.8'
   DOCKER_BUILDX_VERSION: 'v0.23.0'
 
diff --git a/go.mod b/go.mod
@@ -1,6 +1,6 @@
 module github.com/crossplane-contrib/function-go-templating
 
-go 1.24.11
+go 1.24.13
 
 require (
 	dario.cat/mergo v1.0.2
