upgrade go and dependencies #19

romain-dartigues · 2024-05-15T12:16:36Z

This merge request upgrade a lot of dependencies, some are security related.

github-advanced-security · 2024-05-15T12:18:02Z

This pull request sets up GitHub code scanning for this repository. Once the scans have completed and the checks have passed, the analysis results for this pull request branch will appear on this overview. Once you merge this pull request, the 'Security' tab will show more code scanning analysis results (for example, for the default branch). Depending on your configuration and choice of analysis tool, future pull requests will be annotated with code scanning analysis results. For more information about GitHub code scanning, check out the documentation.

…s been available since Go 1.0

Dependency go:github.com/satori/go.uuid:v1.2.0 is vulnerable CVE-2021-3538 9.8 Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) vulnerability with High severity foundResults powered by Checkmarx(c)

…gnored

…hemaIntercepter

…/rabbitmq/amqp091-go

…a does not have a Version function Related to: alexflint/go-arg@v1.4.3...v1.5.0#diff-5150d3041d43020ac2b39e44af9b692972d5627a5777782e52a0e2094c420af9L278-R271

romain-dartigues added 3 commits May 15, 2024 13:59

go vet: remove unreachable code

60d24be

gofmt

e5685bf

go vet: struct literal uses unkeyed fields

460a1f5

romain-dartigues added 6 commits May 15, 2024 14:18

CI: enable dependabot

11c10d6

CI: enable CodeQL

67bae21

CI: add lint

4a71359

upgrade go and dependencies

099bb31

strings.Title has been deprecated since Go 1.18 and an alternative ha…

6233286

…s been available since Go 1.0

replace satori/go.uuid with google/uuid (CVE-2021-3538)

f4deeff

Dependency go:github.com/satori/go.uuid:v1.2.0 is vulnerable CVE-2021-3538 9.8 Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) vulnerability with High severity foundResults powered by Checkmarx(c)

romain-dartigues force-pushed the devel branch from d633fb8 to c710fa9 Compare May 15, 2024 13:15

romain-dartigues added 10 commits May 15, 2024 15:35

code cleanup, typos and coding style

756e221

NewErrGiveService doesn't have side effects and its return value is i…

489c0c3

…gnored

this value of is never used

f7a8bcb

lint: disable unused check because I am unsure

bb75806

type assertion to the same type: currentIntercept already has type Sc…

14d1473

…hemaIntercepter

redundant type conversion

e2a5b2a

remove redundant break statement

83c2db5

use fmt.Errorf instead of errors.New(fmt...)

adef725

module github.com/streadway/amqp is deprecated in favor to github.com…

3105620

…/rabbitmq/amqp091-go

CI: add unit-tests

c8c98af

romain-dartigues force-pushed the devel branch from 4150a94 to c8c98af Compare May 15, 2024 13:55

breaking change: a default version is not returned anymore when schem…

739788e

…a does not have a Version function Related to: alexflint/go-arg@v1.4.3...v1.5.0#diff-5150d3041d43020ac2b39e44af9b692972d5627a5777782e52a0e2094c420af9L278-R271

romain-dartigues merged commit 4df6971 into master May 15, 2024
5 checks passed

romain-dartigues deleted the devel branch May 15, 2024 15:01

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

upgrade go and dependencies #19

upgrade go and dependencies #19

romain-dartigues commented May 15, 2024 •

edited

Loading

github-advanced-security bot commented May 15, 2024

upgrade go and dependencies #19

upgrade go and dependencies #19

Conversation

romain-dartigues commented May 15, 2024 • edited Loading

github-advanced-security bot commented May 15, 2024

romain-dartigues commented May 15, 2024 •

edited

Loading