Some ACN Go dependencies contains CVE's with high severity

[matmerr]

Scan results using Trivy

usr/bin/azure-npm
=================
Total: 4 (UNKNOWN: 0, LOW: 0, MEDIUM: 1, HIGH: 3, CRITICAL: 0)

+---------------------+------------------+----------+------------------------------------+------------------------------------+---------------------------------------+
|       LIBRARY       | VULNERABILITY ID | SEVERITY |         INSTALLED VERSION          |           FIXED VERSION            |                 TITLE                 |
+---------------------+------------------+----------+------------------------------------+------------------------------------+---------------------------------------+
| golang.org/x/crypto | CVE-2020-29652   | HIGH     | v0.0.0-20200220183623-bac4c82f6975 | v0.0.0-20201216223049-8b5274cf687f | golang: crypto/ssh: crafted           |
|                     |                  |          |                                    |                                    | authentication request can            |
|                     |                  |          |                                    |                                    | lead to nil pointer dereference       |
|                     |                  |          |                                    |                                    | -->avd.aquasec.com/nvd/cve-2020-29652 |
+                     +------------------+          +                                    +------------------------------------+---------------------------------------+
|                     | CVE-2020-9283    |          |                                    |                                    | golang.org/x/crypto: Processing       |
|                     |                  |          |                                    |                                    | of crafted ssh-ed25519                |
|                     |                  |          |                                    |                                    | public keys allows for panic          |
|                     |                  |          |                                    |                                    | -->avd.aquasec.com/nvd/cve-2020-9283  |
+---------------------+------------------+          +------------------------------------+------------------------------------+---------------------------------------+
| golang.org/x/text   | CVE-2020-14040   |          | v0.3.2                             | v0.3.3                             | golang.org/x/text: possibility        |
|                     |                  |          |                                    |                                    | to trigger an infinite loop in        |
|                     |                  |          |                                    |                                    | encoding/unicode could lead to...     |
|                     |                  |          |                                    |                                    | -->avd.aquasec.com/nvd/cve-2020-14040 |
+---------------------+------------------+----------+------------------------------------+------------------------------------+---------------------------------------+
| k8s.io/client-go    | CVE-2019-11250   | MEDIUM   | v0.18.2                            | 1.15.4, 1.16.1-beta.0              | kubernetes: Bearer tokens             |
|                     |                  |          |                                    |                                    | written to logs at high               |
|                     |                  |          |                                    |                                    | verbosity levels (>= 7)...            |
|                     |                  |          |                                    |                                    | -->avd.aquasec.com/nvd/cve-2019-11250 |
+---------------------+------------------+----------+------------------------------------+------------------------------------+---------------------------------------+