The latest version contains security vulnerabilities

Postgres version: 17-alpine3.20

The version is vulnerable because it uses gosu v17 (which uses stdlib v1.18.2):

<img width="1355" alt="image" src="https://github.com/user-attachments/assets/a97f3a79-d001-43c3-8165-637202d29599">
<img width="1355" alt="image" src="https://github.com/user-attachments/assets/0becbc94-0fcc-4d75-bad5-9bb681b180fa">
<img width="1355" alt="image" src="https://github.com/user-attachments/assets/8ec608af-0f90-4b4b-92f5-a02d67a33a98">
<img width="1355" alt="image" src="https://github.com/user-attachments/assets/5c61b846-c47e-4dd5-b2e4-31e022f17842">
<img width="1355" alt="image" src="https://github.com/user-attachments/assets/e457183b-4f8f-4e97-aa17-8b5bec5af407">

Is it possible to upgrade the Go stdlib to v1.23?

Thanks

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

The latest version contains security vulnerabilities #1282

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

The latest version contains security vulnerabilities #1282

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions