[🐸 Frogbot] Update version of golang.org/x/crypto to 0.35.0 #833

github-actions · 2025-02-27T00:33:02Z

Severity	ID	Contextual Analysis	Direct Dependencies	Impacted Dependency	Fixed Versions
Unknown	CVE-2025-22869	Not Covered	github.com/jfrog/jfrog-cli-artifactory:v0.1.12 github.com/jfrog/jfrog-cli-core/v2:v2.58.0 github.com/jfrog/jfrog-cli-security:v1.15.0 github.com/jfrog/jfrog-client-go:v1.50.0 golang.org/x/crypto:v0.32.0 golang.org/x/net:v0.34.0	golang.org/x/crypto v0.32.0	[0.35.0]


Contextual Analysis:	Not Covered
Direct Dependencies:	github.com/jfrog/jfrog-cli-artifactory:v0.1.12, github.com/jfrog/jfrog-cli-core/v2:v2.58.0, github.com/jfrog/jfrog-cli-security:v1.15.0, github.com/jfrog/jfrog-client-go:v1.50.0, golang.org/x/crypto:v0.32.0, golang.org/x/net:v0.34.0
Impacted Dependency:	golang.org/x/crypto:v0.32.0
Fixed Versions:	[0.35.0]
CVSS V3:	-

Potential denial of service in golang.org/x/crypto

Upgrade golang.org/x/crypto to 0.35.0

9a2fb9f

eranturgeman closed this Mar 12, 2025

eranturgeman deleted the frogbot-golang.org/x/crypto-5a2f5d8d0a6bce3e177d5b7d59f9eb07 branch March 12, 2025 07:07

Provide feedback