Updated go version to fix 3 CVEs #762
dianadevasiaanalysis.yml
on: pull_request
linting
1m 5s
vulnerabilities
2m 16s
Annotations
3 errors and 3 warnings
|
linting:
toxics/slicer.go#L43
G404: Use of weak random number generator (math/rand instead of crypto/rand) (gosec)
|
|
linting:
toxics/toxic.go#L85
G404: Use of weak random number generator (math/rand instead of crypto/rand) (gosec)
|
|
linting
issues found
|
|
linting
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: golangci/golangci-lint-action@3a919529898de77ec3da873e3063ca4b10e7f5cc. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
|
|
vulnerabilities
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: github/codeql-action/init@v2, github/codeql-action/analyze@v2. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
|
|
vulnerabilities
CodeQL Action v2 will be deprecated on December 5th, 2024. Please update all occurrences of the CodeQL Action in your workflow files to v3. For more information, see https://github.blog/changelog/2024-01-12-code-scanning-deprecation-of-codeql-action-v2/
|