diff --git a/.nancy-ignore b/.nancy-ignore index 62150f98..31069e2a 100644 --- a/.nancy-ignore +++ b/.nancy-ignore @@ -1 +1,8 @@ -CVE-2025-4673 until=2025-07-13 # golang.org/x/net@v0.41.0 +CVE-2025-30204 until=2026-08-09 # github.com/golang-jwt/jwt/v4@v4.0.0 +CVE-2024-51744 until=2026-08-09 # github.com/golang-jwt/jwt/v4@v4.0.0 +CVE-2026-27136 until=2026-08-09 # golang.org/x/net@v0.53.0 +CVE-2026-39821 until=2026-08-09 # golang.org/x/net@v0.53.0 +CVE-2026-42502 until=2026-08-09 # golang.org/x/net@v0.53.0 +CVE-2026-42506 until=2026-08-09 # golang.org/x/net@v0.53.0 +CVE-2026-25680 until=2026-08-09 # golang.org/x/net@v0.53.0 +CVE-2026-25681 until=2026-08-09 # golang.org/x/net@v0.53.0 diff --git a/go.mod b/go.mod index 56f02dd0..fb480009 100644 --- a/go.mod +++ b/go.mod @@ -52,3 +52,11 @@ replace ( golang.org/x/crypto => golang.org/x/crypto v0.53.0 golang.org/x/net => golang.org/x/net v0.53.0 ) + +replace github.com/nats-io/nats-server/v2 v2.8.4 => github.com/nats-io/nats-server/v2 v2.14.3 + +replace github.com/sirupsen/logrus v1.8.1 => github.com/sirupsen/logrus v1.9.4 + +replace github.com/yuin/goldmark v1.4.13 => github.com/yuin/goldmark v1.8.2 + +replace google.golang.org/grpc v1.40.0 => google.golang.org/grpc v1.82.0 diff --git a/go.sum b/go.sum index 52e65923..46f91b8b 100644 --- a/go.sum +++ b/go.sum @@ -80,7 +80,7 @@ github.com/stretchr/testify v1.11.1 h1:7s2iGBzp5EwR7/aIZr8ao5+dra3wiQyKjjFuvgVKu github.com/stretchr/testify v1.11.1/go.mod h1:wZwfW3scLgRK+23gO65QZefKpKQRnfz6sD981Nm4B6U= github.com/subosito/gotenv v1.6.0 h1:9NlTDc1FTs4qu0DDq7AEtTPNw6SVm7uBMsUCUjABIf8= github.com/subosito/gotenv v1.6.0/go.mod h1:Dk4QP5c2W3ibzajGcXpNraDfq2IrhjMIvMSWPKKo0FU= -github.com/yuin/goldmark v1.4.13/go.mod h1:6yULJ656Px+3vBD8DxQVa3kxgyrAnzto9xy5taEt/CY= +github.com/yuin/goldmark v1.8.2/go.mod h1:ip/1k0VRfGynBgxOz0yCqHrbZXhcjxyuS66Brc7iBKg= go.uber.org/goleak v1.3.0 h1:2K3zAYmnTNqV73imy9J1T3WC+gmCePx2hEGkimedGto= go.uber.org/goleak v1.3.0/go.mod h1:CoHD4mav9JJNrW/WLlf7HGZPjdw8EucARQHekz1X6bE= go.yaml.in/yaml/v2 v2.4.2 h1:DzmwEr2rDGHl7lsFgAHxmNz/1NlQ7xLIrlN2h5d1eGI=