fix: Golang & codecov version updates (#629)

davidk-procore · web-flow · commit 7c8de43068d4 · 2025-07-23T15:27:50.000-07:00
* bump codecov-action to newest 4.x release to avoid EPIPE errors * bump golang to 1.24.4 to address CVE-2025-22874
diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
@@ -68,7 +68,7 @@ jobs:
         run: make coverage
 
       - name: Upload coverage reports to Codecov
-        uses: codecov/codecov-action@v4.0.1
+        uses: codecov/codecov-action@v4.6.0
         with:
           token: ${{ secrets.CODECOV_TOKEN }}
           slug: segmentio/chamber
diff --git a/Dockerfile b/Dockerfile
@@ -1,4 +1,4 @@
-FROM golang:1.24.2-alpine AS build
+FROM golang:1.24.4-alpine AS build
 
 WORKDIR /go/src/github.com/segmentio/chamber
 COPY . .

Original file line number	Diff line number	Diff line change
`@@ -1,4 +1,4 @@`
`1`		`-FROM golang:1.24.2-alpine AS build`
	`1`	`+FROM golang:1.24.4-alpine AS build`
`2`	`2`
`3`	`3`	`WORKDIR /go/src/github.com/segmentio/chamber`
`4`	`4`	`COPY . .`