Security vulnerability detected in current stable version
mzanibelli opened this issue · comments
Hello!
Our security scanners ring because of outdated golang.org/x/text/language in the binary. Would it be possible to bump golang.org/x/text to 0.3.7
?
Thanks for this great tool and have a good day.
I bumped the dependency to the latest pgx which depends on the updated x/text
module. Though FWIW, that vulnerable package isn't actually used by tern.
Great, thank you so much for the quick answer.
Though FWIW, that vulnerable package isn't actually used by tern.
That's what I thought, detection bots were silenced for now
Have a good day!