Vulnerability of dependency "golang.org/x/net"
Silence-worker-02 opened this issue · comments
Hello, we are a team researching the dependency management mechanism of Golang. During our analysis, we came across your project and noticed that it contains a vulnerability (CVE-2022-41723). In your project, the golang.org/x/net package is being used at version v0.0.0-20210405180319-a5a99cb37ef4, but the patched version is v0.7.0. To fix the vulnerability, we recommend modifying the go.mod file to update the version to v0.7.0. Thank you for your attention to this matter.