bentsukun, 5 months ago to random I just ran #govulncheck on all of #pkgsrc, and there are a lot more vulnerable packages than I thought :(
I just ran #govulncheck on all of #pkgsrc, and there are a lot more vulnerable packages than I thought :(
serpentroots, 10 months ago to golang I find #govulncheck really useful, but it's hard to build into production CI flows when it demands fixes only available in release candidates. I mean, we upgrade pretty often, but now I'm going to have to turn it off until 1.21 is released. This doesn't seem like a great security practice. #golang #security #tls
I find #govulncheck really useful, but it's hard to build into production CI flows when it demands fixes only available in release candidates.
I mean, we upgrade pretty often, but now I'm going to have to turn it off until 1.21 is released. This doesn't seem like a great security practice.
#golang #security #tls