Dependency Dashboard

[alaudabot]

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.

Open

These updates have all been created already. Click a checkbox below to force a retry/rebase of any.

• chore(deps): update module golang.org/x/crypto to v0.45.0 [security] (alauda-v0.34.0)

Vulnerabilities

5/11 CVEs have Renovate fixes.

gomod

go.mod

github.com/docker/docker

• GHSA-j249-ghv5-7mxv
• GHSA-6hwg-w5jg-9c6x
• GHSA-qrqr-3x5j-2xw9

github.com/tektoncd/pipeline

• GO-2023-1901

github.com/aws/aws-sdk-go

• GO-2022-0635
• GO-2022-0646

golang.org/x/crypto

• GO-2025-4134 (fixed in >= 0.45.0)
• GHSA-j5w8-q4qc-rx2x (fixed in >= 0.45.0)
• GO-2025-4135 (fixed in >= 0.45.0)
• GO-2025-4116 (fixed in >= 0.43.0)
• GHSA-f6x5-jh6r-wrfv (fixed in >= 0.45.0)

Detected dependencies

Branch alauda-v0.34.0

gomod

go.mod

• go 1.25.4
• golang.org/x/crypto v0.36.0

tools/go.mod

• go 1.25.4

Branch alauda-v0.41.1

gomod

go.mod

• go 1.25.4

tools/go.mod

• go 1.25.4