From 22b7623f8204a85c867cfa9970f40c9180ecb6c5 Mon Sep 17 00:00:00 2001 From: Hermes Agent Date: Fri, 12 Jun 2026 21:24:07 +0000 Subject: [PATCH] security: update pgx v5 to v5.10.0 to fix auth downgrade vulnerability (CWE-306) --- go.mod | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/go.mod b/go.mod index 314273c7bdd9..aec7283ea13d 100644 --- a/go.mod +++ b/go.mod @@ -185,7 +185,7 @@ require ( github.com/iancoleman/strcase v0.2.0 github.com/influxdata/influxdb-client-go/v2 v2.3.1-0.20210518120617-5d1fff431040 github.com/irfansharif/recorder v0.0.0-20211218081646-a21b46510fd6 - github.com/jackc/pgx/v5 v5.7.2 + github.com/jackc/pgx/v5 v5.10.0 github.com/jaegertracing/jaeger v1.18.1 github.com/jordan-wright/email v4.0.1-0.20210109023952-943e75fe5223+incompatible github.com/jordanlewis/gcassert v0.0.0-20240401195008-3141cbd028c0