Skip to content

chore(deps): bump golang.org/x/net to v0.55.0 (CVE-2026-39821)#188

Open
pirat89 wants to merge 1 commit into
mainfrom
chore/update-net-module
Open

chore(deps): bump golang.org/x/net to v0.55.0 (CVE-2026-39821)#188
pirat89 wants to merge 1 commit into
mainfrom
chore/update-net-module

Conversation

@pirat89

@pirat89 pirat89 commented Jul 9, 2026

Copy link
Copy Markdown
Member

Mitigate privilege escalation via incorrect Punycode label processing in the x/net/idna package (CVSS 9.6 Critical per CISA).

Tiding dependencies and checksums with go mod tidy.

Mitigate privilege escalation via incorrect Punycode label processing
in the x/net/idna package (CVSS 9.6 Critical per CISA).

Also update the minimal golang version to 1.25.10 due to security
fixes.

Tiding dependencies and checksums with `go mod tidy`.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
@codecov-commenter

Copy link
Copy Markdown

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 65.90%. Comparing base (9a64cb2) to head (5b75026).

Additional details and impacted files
@@           Coverage Diff           @@
##             main     #188   +/-   ##
=======================================
  Coverage   65.90%   65.90%           
=======================================
  Files           5        5           
  Lines         264      264           
=======================================
  Hits          174      174           
  Misses         68       68           
  Partials       22       22           
Flag Coverage Δ
go-1.25 65.90% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Harness.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants