Skip to content

Commit b2705f7

Browse files
RafalKoreptaRafalKorepta
committed
*: Update mapstructure to the latest
Snyk found Improper Output Neutralization for Logs problem. > Affected versions of this package are vulnerable to Improper Output Neutralization for Logs via the WeakDecode function when handling malformed input data. An attacker can cause sensitive information to be included in error logs by submitting specially crafted input that triggers error messages containing original values. Reference * https://cwe.mitre.org/data/definitions/117.html * https://www.cve.org/CVERecord?id=CVE-2025-11065 * https://www.first.org/cvss/calculator/4-0#CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:P/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:P * https://security.snyk.io/vuln/SNYK-GOLANG-GITHUBCOMGOVIPERMAPSTRUCTUREV2-12177854 * go-viper/mapstructure@742921c
1 parent 029c0b1 commit b2705f7

File tree

2 files changed

+3
-3
lines changed

2 files changed

+3
-3
lines changed

acceptance/go.mod

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -118,7 +118,7 @@ require (
118118
github.com/go-openapi/jsonpointer v0.21.0 // indirect
119119
github.com/go-openapi/jsonreference v0.21.0 // indirect
120120
github.com/go-openapi/swag v0.23.1 // indirect
121-
github.com/go-viper/mapstructure/v2 v2.3.0 // indirect
121+
github.com/go-viper/mapstructure/v2 v2.4.0 // indirect
122122
github.com/gobwas/glob v0.2.3 // indirect
123123
github.com/gofrs/uuid v4.4.0+incompatible // indirect
124124
github.com/gogo/protobuf v1.3.2 // indirect

acceptance/go.sum

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -315,8 +315,8 @@ github.com/go-task/slim-sprig v0.0.0-20230315185526-52ccab3ef572 h1:tfuBGBXKqDEe
315315
github.com/go-task/slim-sprig/v3 v3.0.0 h1:sUs3vkvUymDpBKi3qH1YSqBQk9+9D/8M2mN1vB6EwHI=
316316
github.com/go-task/slim-sprig/v3 v3.0.0/go.mod h1:W848ghGpv3Qj3dhTPRyJypKRiqCdHZiAzKg9hl15HA8=
317317
github.com/go-test/deep v1.0.2-0.20181118220953-042da051cf31/go.mod h1:wGDj63lr65AM2AQyKZd/NYHGb0R+1RLqB8NKt3aSFNA=
318-
github.com/go-viper/mapstructure/v2 v2.3.0 h1:27XbWsHIqhbdR5TIC911OfYvgSaW93HM+dX7970Q7jk=
319-
github.com/go-viper/mapstructure/v2 v2.3.0/go.mod h1:oJDH3BJKyqBA2TXFhDsKDGDTlndYOZ6rGS0BRZIxGhM=
318+
github.com/go-viper/mapstructure/v2 v2.4.0 h1:EBsztssimR/CONLSZZ04E8qAkxNYq4Qp9LvH92wZUgs=
319+
github.com/go-viper/mapstructure/v2 v2.4.0/go.mod h1:oJDH3BJKyqBA2TXFhDsKDGDTlndYOZ6rGS0BRZIxGhM=
320320
github.com/gobuffalo/logger v1.0.6 h1:nnZNpxYo0zx+Aj9RfMPBm+x9zAU2OayFh/xrAWi34HU=
321321
github.com/gobuffalo/logger v1.0.6/go.mod h1:J31TBEHR1QLV2683OXTAItYIg8pv2JMHnF/quuAbMjs=
322322
github.com/gobuffalo/packd v1.0.1 h1:U2wXfRr4E9DH8IdsDLlRFwTZTK7hLfq9qT/QHXGVe/0=

0 commit comments

Comments
 (0)