CVE-2022-28948: upgrade to gopkg.in/yaml.v3
jhendrixMSFT opened this issue · comments
Joel Hendrix commented
Hello! We've been getting Dependabot alerts to due usage of gopkg.in/yaml.v2
. The CVE has been fixed in the latest version.
Marin Atanasov Nikolov commented