Skip to content

Commit e6dd026

Browse files
cx-bruno-silvacx-bruno-silva
committed
Update vulnerable dependencies
1 parent 8905f7c commit e6dd026

File tree

2 files changed

+189
-156
lines changed

2 files changed

+189
-156
lines changed

go.mod

Lines changed: 57 additions & 47 deletions
Original file line numberDiff line numberDiff line change
@@ -1,14 +1,14 @@
11
module github.com/Checkmarx/kics/v2
22

3-
go 1.25
3+
go 1.25.5
44

55
require (
66
code.cloudfoundry.org/bytefmt v0.35.0
77
github.com/BurntSushi/toml v1.5.0
88
github.com/agnivade/levenshtein v1.2.1
99
github.com/alexmullins/zip v0.0.0-20180717182244-4affb64b04d0
1010
github.com/antlr4-go/antlr/v4 v4.13.1
11-
github.com/aws/aws-sdk-go-v2 v1.38.1
11+
github.com/aws/aws-sdk-go-v2 v1.41.1
1212
github.com/bigkevmcd/go-configparser v0.0.0-20230427073640-c6b631f70126
1313
github.com/cheggaaa/pb/v3 v3.1.7
1414
github.com/emicklei/proto v1.14.0
@@ -24,7 +24,7 @@ require (
2424
github.com/hashicorp/terraform-json v0.24.0
2525
github.com/johnfercher/maroto v1.0.0
2626
github.com/mackerelio/go-osstat v0.2.5
27-
github.com/moby/buildkit v0.26.3
27+
github.com/moby/buildkit v0.28.1
2828
github.com/open-policy-agent/opa v1.12.3
2929
github.com/pkg/errors v0.9.1
3030
github.com/relex/aini v1.6.0
@@ -40,8 +40,8 @@ require (
4040
github.com/yargevad/filepathx v1.0.0
4141
github.com/zclconf/go-cty v1.16.2
4242
golang.org/x/exp v0.0.0-20250911091902-df9299821621
43-
golang.org/x/net v0.47.0
44-
golang.org/x/text v0.31.0
43+
golang.org/x/net v0.51.0
44+
golang.org/x/text v0.34.0
4545
golang.org/x/tools/godoc v0.1.0-deprecated
4646
gopkg.in/yaml.v3 v3.0.1
4747
helm.sh/helm/v3 v3.19.4
@@ -50,7 +50,7 @@ require (
5050
)
5151

5252
require (
53-
cel.dev/expr v0.24.0 // indirect
53+
cel.dev/expr v0.25.1 // indirect
5454
cloud.google.com/go v0.116.0 // indirect
5555
cloud.google.com/go/auth v0.13.0 // indirect
5656
cloud.google.com/go/auth/oauth2adapt v0.2.6 // indirect
@@ -63,38 +63,50 @@ require (
6363
github.com/GoogleCloudPlatform/opentelemetry-operations-go/exporter/metric v0.48.1 // indirect
6464
github.com/GoogleCloudPlatform/opentelemetry-operations-go/internal/resourcemapping v0.48.1 // indirect
6565
github.com/apparentlymart/go-textseg/v15 v15.0.0 // indirect
66-
github.com/aws/aws-sdk-go-v2/aws/protocol/eventstream v1.7.0 // indirect
67-
github.com/aws/aws-sdk-go-v2/config v1.31.3 // indirect
68-
github.com/aws/aws-sdk-go-v2/credentials v1.18.7 // indirect
69-
github.com/aws/aws-sdk-go-v2/feature/ec2/imds v1.18.4 // indirect
70-
github.com/aws/aws-sdk-go-v2/internal/configsources v1.4.4 // indirect
71-
github.com/aws/aws-sdk-go-v2/internal/endpoints/v2 v2.7.4 // indirect
72-
github.com/aws/aws-sdk-go-v2/internal/ini v1.8.3 // indirect
73-
github.com/aws/aws-sdk-go-v2/internal/v4a v1.4.4 // indirect
74-
github.com/aws/aws-sdk-go-v2/service/internal/accept-encoding v1.13.0 // indirect
75-
github.com/aws/aws-sdk-go-v2/service/internal/checksum v1.8.4 // indirect
76-
github.com/aws/aws-sdk-go-v2/service/internal/presigned-url v1.13.4 // indirect
77-
github.com/aws/aws-sdk-go-v2/service/internal/s3shared v1.19.4 // indirect
78-
github.com/aws/aws-sdk-go-v2/service/s3 v1.87.1 // indirect
79-
github.com/aws/aws-sdk-go-v2/service/sso v1.28.2 // indirect
80-
github.com/aws/aws-sdk-go-v2/service/ssooidc v1.34.0 // indirect
81-
github.com/aws/aws-sdk-go-v2/service/sts v1.38.0 // indirect
82-
github.com/aws/smithy-go v1.22.5 // indirect
66+
github.com/aws/aws-sdk-go-v2/aws/protocol/eventstream v1.7.4 // indirect
67+
github.com/aws/aws-sdk-go-v2/config v1.32.7 // indirect
68+
github.com/aws/aws-sdk-go-v2/credentials v1.19.7 // indirect
69+
github.com/aws/aws-sdk-go-v2/feature/ec2/imds v1.18.17 // indirect
70+
github.com/aws/aws-sdk-go-v2/internal/configsources v1.4.17 // indirect
71+
github.com/aws/aws-sdk-go-v2/internal/endpoints/v2 v2.7.17 // indirect
72+
github.com/aws/aws-sdk-go-v2/internal/ini v1.8.4 // indirect
73+
github.com/aws/aws-sdk-go-v2/internal/v4a v1.4.12 // indirect
74+
github.com/aws/aws-sdk-go-v2/service/internal/accept-encoding v1.13.4 // indirect
75+
github.com/aws/aws-sdk-go-v2/service/internal/checksum v1.9.3 // indirect
76+
github.com/aws/aws-sdk-go-v2/service/internal/presigned-url v1.13.17 // indirect
77+
github.com/aws/aws-sdk-go-v2/service/internal/s3shared v1.19.12 // indirect
78+
github.com/aws/aws-sdk-go-v2/service/s3 v1.89.1 // indirect
79+
github.com/aws/aws-sdk-go-v2/service/signin v1.0.5 // indirect
80+
github.com/aws/aws-sdk-go-v2/service/sso v1.30.9 // indirect
81+
github.com/aws/aws-sdk-go-v2/service/ssooidc v1.35.13 // indirect
82+
github.com/aws/aws-sdk-go-v2/service/sts v1.41.6 // indirect
83+
github.com/aws/smithy-go v1.24.0 // indirect
8384
github.com/blang/semver/v4 v4.0.0 // indirect
84-
github.com/cncf/xds/go v0.0.0-20251022180443-0feb69152e9f // indirect
85+
github.com/cncf/xds/go v0.0.0-20251210132809-ee656c7534f5 // indirect
8586
github.com/containerd/errdefs v1.0.0 // indirect
8687
github.com/containerd/log v0.1.0 // indirect
8788
github.com/containerd/platforms v1.0.0-rc.2 // indirect
8889
github.com/containerd/typeurl/v2 v2.2.3 // indirect
8990
github.com/decred/dcrd/dcrec/secp256k1/v4 v4.4.0 // indirect
90-
github.com/envoyproxy/go-control-plane/envoy v1.35.0 // indirect
91-
github.com/envoyproxy/protoc-gen-validate v1.2.1 // indirect
91+
github.com/envoyproxy/go-control-plane/envoy v1.36.0 // indirect
92+
github.com/envoyproxy/protoc-gen-validate v1.3.0 // indirect
9293
github.com/evanphx/json-patch/v5 v5.9.11 // indirect
9394
github.com/felixge/httpsnoop v1.0.4 // indirect
9495
github.com/fxamacker/cbor/v2 v2.9.0 // indirect
9596
github.com/go-ini/ini v1.67.0 // indirect
9697
github.com/go-jose/go-jose/v4 v4.1.3 // indirect
9798
github.com/go-logr/stdr v1.2.2 // indirect
99+
github.com/go-openapi/swag/cmdutils v0.25.4 // indirect
100+
github.com/go-openapi/swag/conv v0.25.4 // indirect
101+
github.com/go-openapi/swag/fileutils v0.25.4 // indirect
102+
github.com/go-openapi/swag/jsonname v0.25.4 // indirect
103+
github.com/go-openapi/swag/jsonutils v0.25.4 // indirect
104+
github.com/go-openapi/swag/loading v0.25.4 // indirect
105+
github.com/go-openapi/swag/mangling v0.25.4 // indirect
106+
github.com/go-openapi/swag/netutils v0.25.4 // indirect
107+
github.com/go-openapi/swag/stringutils v0.25.4 // indirect
108+
github.com/go-openapi/swag/typeutils v0.25.4 // indirect
109+
github.com/go-openapi/swag/yamlutils v0.25.4 // indirect
98110
github.com/go-viper/mapstructure/v2 v2.4.0 // indirect
99111
github.com/goccy/go-json v0.10.5 // indirect
100112
github.com/golang/groupcache v0.0.0-20241129210726-2c02b8208cf8 // indirect
@@ -114,7 +126,6 @@ require (
114126
github.com/lestrrat-go/jwx/v3 v3.0.12 // indirect
115127
github.com/lestrrat-go/option v1.0.1 // indirect
116128
github.com/lestrrat-go/option/v2 v2.0.0 // indirect
117-
github.com/mailru/easyjson v0.7.7 // indirect
118129
github.com/mxk/go-flowrate v0.0.0-20140419014527-cca7078d478f // indirect
119130
github.com/planetscale/vtprotobuf v0.6.1-0.20240319094008-0393e58bdf10 // indirect
120131
github.com/russross/blackfriday/v2 v2.1.0 // indirect
@@ -130,22 +141,22 @@ require (
130141
github.com/x448/float16 v0.8.4 // indirect
131142
go.opencensus.io v0.24.0 // indirect
132143
go.opentelemetry.io/auto/sdk v1.2.1 // indirect
133-
go.opentelemetry.io/contrib/detectors/gcp v1.38.0 // indirect
134-
go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.61.0 // indirect
144+
go.opentelemetry.io/contrib/detectors/gcp v1.39.0 // indirect
145+
go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.63.0 // indirect
135146
go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.63.0 // indirect
136147
go.opentelemetry.io/otel v1.40.0 // indirect
137148
go.opentelemetry.io/otel/metric v1.40.0 // indirect
138149
go.opentelemetry.io/otel/sdk v1.40.0 // indirect
139150
go.opentelemetry.io/otel/sdk/metric v1.40.0 // indirect
140151
go.opentelemetry.io/otel/trace v1.40.0 // indirect
141-
go.yaml.in/yaml/v2 v2.4.2 // indirect
152+
go.yaml.in/yaml/v2 v2.4.3 // indirect
142153
go.yaml.in/yaml/v3 v3.0.4 // indirect
143-
golang.org/x/mod v0.29.0 // indirect
144-
golang.org/x/tools v0.38.0 // indirect
154+
golang.org/x/mod v0.33.0 // indirect
155+
golang.org/x/tools v0.41.0 // indirect
145156
google.golang.org/api v0.215.0 // indirect
146157
google.golang.org/genproto v0.0.0-20241118233622-e639e219e697 // indirect
147-
google.golang.org/genproto/googleapis/api v0.0.0-20251022142026-3a174f9686a8 // indirect
148-
google.golang.org/genproto/googleapis/rpc v0.0.0-20251022142026-3a174f9686a8 // indirect
158+
google.golang.org/genproto/googleapis/api v0.0.0-20251202230838-ff82c1b0f217 // indirect
159+
google.golang.org/genproto/googleapis/rpc v0.0.0-20251222181119-0a764e51fe1b // indirect
149160
gopkg.in/evanphx/json-patch.v4 v4.12.0 // indirect
150161
oras.land/oras-go/v2 v2.6.0 // indirect
151162
sigs.k8s.io/randfill v1.0.0 // indirect
@@ -178,9 +189,9 @@ require (
178189
github.com/go-errors/errors v1.4.2 // indirect
179190
github.com/go-gorp/gorp/v3 v3.1.0 // indirect
180191
github.com/go-logr/logr v1.4.3 // indirect
181-
github.com/go-openapi/jsonpointer v0.21.0 // indirect
182-
github.com/go-openapi/jsonreference v0.20.2 // indirect
183-
github.com/go-openapi/swag v0.23.0 // indirect
192+
github.com/go-openapi/jsonpointer v0.22.4 // indirect
193+
github.com/go-openapi/jsonreference v0.21.4 // indirect
194+
github.com/go-openapi/swag v0.25.4 // indirect
184195
github.com/gobwas/glob v0.2.3 // indirect
185196
github.com/gogo/protobuf v1.3.2 // indirect
186197
github.com/google/btree v1.1.3 // indirect
@@ -194,10 +205,9 @@ require (
194205
github.com/huandu/xstrings v1.5.0 // indirect
195206
github.com/inconshreveable/mousetrap v1.1.0 // indirect
196207
github.com/jmoiron/sqlx v1.4.0 // indirect
197-
github.com/josharian/intern v1.0.0 // indirect
198208
github.com/json-iterator/go v1.1.12 // indirect
199209
github.com/jung-kurt/gofpdf v1.16.3-0.20210918000319-0c885ad36193 // indirect
200-
github.com/klauspost/compress v1.18.1 // indirect
210+
github.com/klauspost/compress v1.18.4 // indirect
201211
github.com/lann/builder v0.0.0-20180802200727-47ae307949d0 // indirect
202212
github.com/lann/ps v0.0.0-20150810152359-62de8c46ede0 // indirect
203213
github.com/lib/pq v1.10.9 // indirect
@@ -230,7 +240,7 @@ require (
230240
github.com/ruudk/golang-pdf417 v0.0.0-20201230142125-a7e3863a1245 // indirect
231241
github.com/sabhiram/go-gitignore v0.0.0-20210923224102-525f6e181f06
232242
github.com/shopspring/decimal v1.4.0 // indirect
233-
github.com/sirupsen/logrus v1.9.4-0.20230606125235-dd1b4c2e81af // indirect
243+
github.com/sirupsen/logrus v1.9.4 // indirect
234244
github.com/spf13/afero v1.15.0 // indirect
235245
github.com/spf13/cast v1.10.0 // indirect
236246
github.com/subosito/gotenv v1.6.0 // indirect
@@ -243,14 +253,14 @@ require (
243253
github.com/xlab/treeprint v1.2.0 // indirect
244254
github.com/xo/terminfo v0.0.0-20210125001918-ca9a967f8778 // indirect
245255
github.com/yashtewari/glob-intersection v0.2.0 // indirect
246-
golang.org/x/crypto v0.45.0 // indirect
247-
golang.org/x/oauth2 v0.32.0 // indirect
248-
golang.org/x/sync v0.18.0 // indirect
249-
golang.org/x/sys v0.40.0 // indirect
250-
golang.org/x/term v0.37.0 // indirect
256+
golang.org/x/crypto v0.48.0 // indirect
257+
golang.org/x/oauth2 v0.34.0 // indirect
258+
golang.org/x/sync v0.19.0 // indirect
259+
golang.org/x/sys v0.41.0 // indirect
260+
golang.org/x/term v0.40.0 // indirect
251261
golang.org/x/time v0.14.0 // indirect
252-
google.golang.org/grpc v1.77.0 // indirect
253-
google.golang.org/protobuf v1.36.10 // indirect
262+
google.golang.org/grpc v1.79.3 // indirect
263+
google.golang.org/protobuf v1.36.11 // indirect
254264
gopkg.in/inf.v0 v0.9.1 // indirect
255265
k8s.io/api v0.34.2
256266
k8s.io/apiextensions-apiserver v0.34.2 // indirect

0 commit comments

Comments
 (0)