Skip to content

Update: Package version for golang.org/x/oauth2#270

Closed
arush070 wants to merge 4 commits into
mainfrom
brev-2364/vulnerability-remediation
Closed

Update: Package version for golang.org/x/oauth2#270
arush070 wants to merge 4 commits into
mainfrom
brev-2364/vulnerability-remediation

Conversation

@arush070

Copy link
Copy Markdown
Contributor

Updated the golang.org/x/oauth2 package from v0.21.0 to v0.34.0 to remediate the security vulnerability BDSA-2025-1486(CVE-2025-22868).

Reference: https://nspect.nvidia.com/reports/opensource?type=vulndetails_dd_2_1&s_product_name=Brev.dev&s_product_version_name=0.5&s_vuln_name=CVE-2025-22868

@arush070 arush070 force-pushed the brev-2364/vulnerability-remediation branch from 7b278e9 to 93c9013 Compare December 30, 2025 08:33
@arush070 arush070 self-assigned this Jun 17, 2026
@arush070

Copy link
Copy Markdown
Contributor Author

Already fixed in another PR.

@arush070 arush070 closed this Jun 17, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

3 participants