New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Snyk: gosnowflake gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c | Snyk ID - SNYK-GOLANG-GOPKGINYAMLV3-2952714 #623

Closed

github-actions bot opened this issue Jul 18, 2022 · 1 comment

github-actions bot commented Jul 18, 2022

Title: Snyk: gosnowflake gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c
Additional information on Snyk can be found here: https://snyk.io/org/snowflakedb_public_repo/project/70187b64-3a98-4b6f-a945-48604ebb7832
Repo: gosnowflake
CVE:
Package Type: golang
Package Name: gopkg.in/yaml.v3
Package Version: v3.0.0-20200313102051-9f266ea9e77c
Snyk ID: SNYK-GOLANG-GOPKGINYAMLV3-2952714
Vulnerability URL: http://security.snyk.io/vuln/SNYK-GOLANG-GOPKGINYAMLV3-2952714
Severity: high
Introduced Date: 2022-07-17
Projects with Vulnerability: snowflakedb/gosnowflake:go.mod
Target File: go.mod
JIRA Ticket: https://snowflakecomputing.atlassian.net/browse/SNOW-620793

SimbaGithub mentioned this issue

Update Go vendors #663

Merged

6 tasks

sfc-gh-ext-simba-lb mentioned this issue

Replace golang.org/x/text and gopkg.in/yaml.v3 with latest versions #760

Merged

6 tasks

Contributor

sfc-gh-dszmolka commented Mar 28, 2023

should be fixed by #760 , closing

sfc-gh-dszmolka closed this as completed

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment