Merge pull request #99 from asatsi/CVE-2020-29652

everesio · web-flow · commit 69f439e0e2ad · 2022-02-05T11:12:01.000+01:00
Fix for CVE-2020-29652
diff --git a/go.mod b/go.mod
@@ -38,7 +38,7 @@ require (
 	github.com/stretchr/testify v1.4.0
 	github.com/xdg/scram v0.0.0-20180814205039-7eeb5667e42c
 	github.com/xdg/stringprep v1.0.0 // indirect
-	golang.org/x/crypto v0.0.0-20200820211705-5c72a883971a // indirect
+	golang.org/x/crypto v0.0.0-20201216223049-8b5274cf687f // indirect
 	golang.org/x/net v0.0.0-20200520004742-59133d7f0dd7
 	golang.org/x/oauth2 v0.0.0-20180314180239-fdc9e635145a
 	golang.org/x/sys v0.0.0-20200625212154-ddb9806d33ae // indirect
diff --git a/vendor/modules.txt b/vendor/modules.txt
@@ -144,7 +144,7 @@ github.com/xdg/scram
 # github.com/xdg/stringprep v1.0.0
 ## explicit
 github.com/xdg/stringprep
-# golang.org/x/crypto v0.0.0-20200820211705-5c72a883971a
+# golang.org/x/crypto v0.0.0-20201216223049-8b5274cf687f
 ## explicit
 golang.org/x/crypto/md4
 golang.org/x/crypto/pbkdf2
