[GitHub] [rocketmq-client-go] QiAnXinCodeSafe opened a new issue #595: There is a vulnerability in gjson v1.2.1,upgrade recommended

[GitBox <gi...@apache.org>]

QiAnXinCodeSafe opened a new issue #595:
URL: https://github.com/apache/rocketmq-client-go/issues/595


   https://github.com/apache/rocketmq-client-go/blob/7e36c751e428c781eedf44704a77acd5bd0fe26c/go.mod#L11
   
   CVE-2020-35380  CVE-2020-36066  CVE-2020-36067
   
   Recommended upgrade version：v1.6.7


----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

For queries about this service, please contact Infrastructure at:
users@infra.apache.org

[GitHub] [rocketmq-client-go] ShannonDing commented on issue #595: There is a vulnerability in gjson v1.2.1,upgrade recommended

[GitBox <gi...@apache.org>]

ShannonDing commented on issue #595:
URL: https://github.com/apache/rocketmq-client-go/issues/595#issuecomment-783358407


   will be fixed in 2.1.0 release.


----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

For queries about this service, please contact Infrastructure at:
users@infra.apache.org

[GitHub] [rocketmq-client-go] maixiaohai closed issue #595: There is a vulnerability in gjson v1.2.1,upgrade recommended

[GitBox <gi...@apache.org>]

maixiaohai closed issue #595:
URL: https://github.com/apache/rocketmq-client-go/issues/595


   


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: dev-unsubscribe@rocketmq.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org