[security] CVE-2019-11254 - SNYK-GOLANG-GITHUBCOMGOYAMLYAML-564236
nabbar opened this issue · comments
Nicolas JUHEL commented
Hello,
Could you bump your dependancies and specialy yaml package ?
The current package is concerned by a CVE for the version included in the go.mod :
- report at Snyk.io : https://snyk.io/vuln/SNYK-GOLANG-GITHUBCOMGOYAMLYAML-564236
- report at mitre.org : https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11254
Thanks in advance.