| Hello gophers, |
| |
| We have just released go1.25rc2, a release candidate version of Go 1.25. |
| It is cut from release-branch.go1.25 at the revision tagged go1.25rc2. |
| |
| This release includes 1 security fix following the security policy <https://go.dev/doc/security/policy>: |
| |
| - cmd/go: unexpected command execution in untrusted VCS repositories |
| |
| This is CVE-2025-4674 and https://go.dev/issue/74380. |
| |
| Please try your production load tests and unit tests with the new version. |
| Your help testing these pre-release versions is invaluable. |
| |
| Report any problems using the issue tracker: |
| https://go.dev/issue/new |
| |
| Please consider opting in to Go telemetry <https://go.dev/doc/telemetry> if you haven't already. |
| Go telemetry helps validate this release candidate and future Go releases. |
| You can opt in by running the following command: |
| |
| $ go telemetry on |
| |
| If you have Go installed already, an easy way to try go1.25rc2 |
| is by using the go command: |
| |
| $ go install golang.org/dl/go1.25rc2@latest |
| $ go1.25rc2 download |
| |
| You can download binary and source distributions from the usual place: |
| https://go.dev/dl/#go1.25rc2 |
| |
| To find out what has changed in Go 1.25, read the draft release notes: |
| https://tip.golang.org/doc/go1.25 |
| |
| Cheers, |
| Bob for the Go team |
