Updating to go 1.17 to fix CVE #944

2026-01-15 07:53:35 +08:00 · 2021-10-02 15:12:54 +10:00
parent e052ff8025
commit 989b11764d
4 changed files with 12 additions and 4 deletions
--- a/2
+++ b/2
@@ -1,4 +1,4 @@
-FROM golang:1.15 as builder
+FROM golang:1.17 as builder

 WORKDIR /go/src/mikefarah/yq

--- a/Dockerfile.dev
+++ b/Dockerfile.dev
@@ -1,4 +1,4 @@
-FROM golang:1.15
+FROM golang:1.17

 COPY scripts/devtools.sh /opt/devtools.sh

--- a/go.mod
+++ b/go.mod
@@ -14,4 +14,12 @@ require (
 	gopkg.in/yaml.v3 v3.0.0-20210107192922-496545a6307b
 )

-go 1.15
+require (
+	github.com/inconshreveable/mousetrap v1.0.0 // indirect
+	github.com/mattn/go-colorable v0.1.8 // indirect
+	github.com/mattn/go-isatty v0.0.12 // indirect
+	github.com/spf13/pflag v1.0.5 // indirect
+	golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1 // indirect
+)
+
+go 1.17
--- a/scripts/devtools.sh
+++ b/scripts/devtools.sh
@@ -2,4 +2,4 @@
 set -ex
 go get golang.org/x/tools/cmd/goimports
 wget -O- -nv https://raw.githubusercontent.com/golangci/golangci-lint/master/install.sh | sh -s v1.37.1
-#  wget -O- -nv https://raw.githubusercontent.com/securego/gosec/master/install.sh | sh -s v2.6.1
+#  wget -O- -nv https://raw.githubusercontent.com/securego/gosec/master/install.sh | sh -s v2.8.1