Google Git
Sign in
boringssl / boringssl.git / bade46179ea3d729a434b92c2577be18d8a1cc4b^! / . / go.mod
commitbade46179ea3d729a434b92c2577be18d8a1cc4b[log] [tgz]
authorDavid Benjamin <davidben@google.com>Tue Feb 21 12:42:59 2023 -0500
committerBoringssl LUCI CQ <boringssl-scoped@luci-project-accounts.iam.gserviceaccount.com>Tue Feb 21 17:59:57 2023 +0000
tree3fad4eeb3d8fdb6dcb2d7d9f99ae0377c43e32ad
parente18ba272d4532659a20904c812207079c4ec2e80 [diff] [blame]
Update Go dependencies

Ran go get -u all, followed by go mod tidy. Some tools are flagging
CVE-2021-43565 and CVE-2022-27191 in some of the Go packages. Our uses
of x/crypto are x/net are not impacted by either bug, but update anyway
to silence the tools.

Change-Id: Ia0e2757625b58d964aedd4217f21b72f293b910b
Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/57485
Commit-Queue: Bob Beck <bbe@google.com>
Reviewed-by: Bob Beck <bbe@google.com>
Auto-Submit: David Benjamin <davidben@google.com>
Commit-Queue: David Benjamin <davidben@google.com>

diff --git a/go.mod b/go.mod
index 5fd27f4..23038f0 100644
--- a/go.mod
+++ b/go.mod

@@ -3,11 +3,11 @@
 go 1.19
 
 require (
-	golang.org/x/crypto v0.4.0
-	golang.org/x/net v0.3.0
+	golang.org/x/crypto v0.6.0
+	golang.org/x/net v0.7.0
 )
 
 require (
-	golang.org/x/sys v0.3.0 // indirect
-	golang.org/x/term v0.3.0 // indirect
+	golang.org/x/sys v0.5.0 // indirect
+	golang.org/x/term v0.5.0 // indirect
 )