bump to golang 1.22 to avoid vulnchecks in the filepath.join windows implementation

7ae7ab02d322 · Florent Aide · 8b8467400d2b · 7ae7ab02 · 7ae7ab02 · 7ae7ab02
Commit 7ae7ab02d322 authored 1 year ago by Florent Aide
--- a/.gitlab-ci.yml
+++ b/.gitlab-ci.yml
@@ -8,7 +8,7 @@

 unit_tests:
  stage: test
-  image: quay.orus.io/cc/golang:1.21.3-bullseye
+  image: quay.orus.io/cc/golang:1.22.0-bullseye
  variables:
    YTT_VERSION: v0.41.1
    YTT_SHA256: 65dbc4f3a4a2ed84296dd1b323e8e7bd77e488fa7540d12dd36cf7fb2fc77c03
@@ -43,7 +43,7 @@

 lint:
  stage: lint
-  image: quay.orus.io/cc/golang:1.21.3-bullseye
+  image: quay.orus.io/cc/golang:1.22.0-bullseye
  cache:
    key: tooling
    paths:
@@ -56,7 +56,7 @@

 vulncheck:
  stage: vulncheck
-  image: quay.orus.io/cc/golang:1.21.3-bullseye
+  image: quay.orus.io/cc/golang:1.22.0-bullseye
  cache:
    key: tooling
    paths:
@@ -69,7 +69,7 @@

 build:
  stage: build
-  image: quay.orus.io/cc/golang:1.21.3-bullseye
+  image: quay.orus.io/cc/golang:1.22.0-bullseye
  artifacts:
    paths:
      - build

--- a/HISTORY.rst
+++ b/HISTORY.rst
@@ -2,6 +2,13 @@
 HISTORY
 *******

+3.2.5 (2024-03-01)
+==================
+
+- no functional change. Just bumped the golang release from 1.21 to 1.22.0 to
+  avoid potential vulnerability in the filepath.join functions on windows
+
+
 3.2.4 (2024-03-01)
 ==================


--- a/go.mod
+++ b/go.mod
 module orus.io/orus-io/beaver

-go 1.20
+go 1.22

 require (
 	github.com/getsentry/sentry-go v0.13.0