Skip to content

🌱 Bump golang.org/x/crypto from 0.32.0 to 0.45.0 in /hack/tools #1001

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
dependabot wants to merge 1 commit into
base: main
Choose a base branch
from

:seedling: Bump golang.org/x/crypto from 0.32.0 to 0.45.0 in /hack/tools

00f4a80
Select commit
Loading
Failed to load commit list.
Open

🌱 Bump golang.org/x/crypto from 0.32.0 to 0.45.0 in /hack/tools #1001

:seedling: Bump golang.org/x/crypto from 0.32.0 to 0.45.0 in /hack/tools
00f4a80
Select commit
Loading
Failed to load commit list.
Bulwark-SpectroCloud / security-scans/gosec failed Jan 14, 2026 in 9m 38s

Gosec scan completed

⚠️ GoSec scan found code issues:

  1. G401: Use of weak cryptographic primitive, Severity: MEDIUM
      1. File: /home/runner/work/bulwark/bulwark/target-repo/pkg/cloud/services/eks/iam/iam.go:499:13
  2. G505: Blocklisted import crypto/sha1: weak cryptographic primitive, Severity: MEDIUM
      1. File: /home/runner/work/bulwark/bulwark/target-repo/pkg/cloud/services/eks/iam/iam.go:22:2

Please review these findings and fix the issues before merging.

Click 'View more details' to see the workflow run and detailed results in the Bulwark repository.

View more details on Bulwark-SpectroCloud