Investigating Snyk complaints about go.mod #225

staheri14 · 2023-07-18T19:16:20Z

Problem

Starting from this PR, and following the addition of Snyk in the CIs, we have encountered failures in the CIs. These failures are occurring due to Snyk identifying 14 vulnerabilities in the go.mod changes.

For more details, please refer to the comment made by @rootulp:

Snyk claims this PR introduces 14 new vulnerabilities b/c the go.mod changes. I don't think we should block the PR on it though

This issue has been opened to track the problem and ensure that it is addressed, particularly if it is deemed to be a critical issue.

The text was updated successfully, but these errors were encountered:

rootulp · 2023-07-18T19:21:02Z

Screenshot

there are more dependencies flagged by Snyk

staheri14 · 2023-12-04T18:32:00Z

Based on this recent test PR, It seems that Snyk has been disintegrated from this repo, if that is the case, then this issue is no longer needed and can be closed
ccing @rootulp for confirmation

rootulp · 2023-12-04T18:36:04Z

yes please, good catch! Let's close as won't fix.

staheri14 mentioned this issue Jul 18, 2023

feat(proof): create a proto representation of the proof #220

Merged

5 tasks

rootulp closed this as not planned Won't fix, can't repro, duplicate, stale Dec 4, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Investigating Snyk complaints about go.mod #225

Investigating Snyk complaints about go.mod #225

staheri14 commented Jul 18, 2023

rootulp commented Jul 18, 2023

staheri14 commented Dec 4, 2023

rootulp commented Dec 4, 2023

Investigating Snyk complaints about go.mod #225

Investigating Snyk complaints about go.mod #225

Comments

staheri14 commented Jul 18, 2023

Problem

rootulp commented Jul 18, 2023

Screenshot

staheri14 commented Dec 4, 2023

rootulp commented Dec 4, 2023