all: update vuln to latest release
This will allow to use newest govulncheck and also enable collecting
reviewed vs unreviewed.
We also update go to 1.22.2.
Change-Id: I4f91fb8453e7373ef2c54bb771017873d8c0161e
Reviewed-on: https://go-review.googlesource.com/c/pkgsite-metrics/+/591115
Reviewed-by: Maceo Thompson <maceothompson@google.com>
LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com>
diff --git a/cmd/govulncheck_sandbox/govulncheck_sandbox_test.go b/cmd/govulncheck_sandbox/govulncheck_sandbox_test.go
index f8e7fad..77db317 100644
--- a/cmd/govulncheck_sandbox/govulncheck_sandbox_test.go
+++ b/cmd/govulncheck_sandbox/govulncheck_sandbox_test.go
@@ -83,7 +83,7 @@
{
name: "no mode",
args: []string{govulncheckPath, "unsupported mode", module, vulndb},
- want: "not a valid mode",
+ want: "invalid value",
},
{
name: "no mode",
diff --git a/cmd/worker/Dockerfile b/cmd/worker/Dockerfile
index 1c84398..0123ff0 100644
--- a/cmd/worker/Dockerfile
+++ b/cmd/worker/Dockerfile
@@ -13,7 +13,7 @@
# installed here will be shadowed.
-FROM golang:1.21.2
+FROM golang:1.22.2
LABEL maintainer="Go Ecosystem Team <go-ecosystem-team@google.com>"
diff --git a/deploy/worker.yaml b/deploy/worker.yaml
index 5210f22..4afb86e 100644
--- a/deploy/worker.yaml
+++ b/deploy/worker.yaml
@@ -13,7 +13,7 @@
steps:
- id: Lock
- name: golang:1.20.7
+ name: golang:1.22.2
entrypoint: bash
args:
- -ec
@@ -27,7 +27,7 @@
- id: Test
# Run tests. Do this early, to avoid wasting time if they fail.
- name: golang:1.20.7
+ name: golang:1.22.2
entrypoint: bash
args:
- -ec
diff --git a/go.mod b/go.mod
index 4580425..946f82d 100644
--- a/go.mod
+++ b/go.mod
@@ -28,7 +28,7 @@
golang.org/x/net v0.26.0
golang.org/x/oauth2 v0.21.0
golang.org/x/tools v0.22.0
- golang.org/x/vuln v1.0.5-0.20240213143941-dcac2d7cab09
+ golang.org/x/vuln v1.1.2
google.golang.org/api v0.132.0
google.golang.org/genproto/googleapis/api v0.0.0-20230706204954-ccb25ca9f130
google.golang.org/grpc v1.56.2
@@ -74,6 +74,7 @@
golang.org/x/exp/typeparams v0.0.0-20221208152030-732eee02a75a // indirect
golang.org/x/sync v0.7.0 // indirect
golang.org/x/sys v0.21.0 // indirect
+ golang.org/x/telemetry v0.0.0-20240522233618-39ace7a40ae7 // indirect
golang.org/x/text v0.16.0 // indirect
golang.org/x/time v0.5.0 // indirect
golang.org/x/xerrors v0.0.0-20220907171357-04be3eba64a2 // indirect
diff --git a/go.sum b/go.sum
index 5b4b472..782e53f 100644
--- a/go.sum
+++ b/go.sum
@@ -519,6 +519,8 @@
golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
golang.org/x/sys v0.21.0 h1:rF+pYz3DAGSQAxAu1CbC7catZg4ebC4UIeIhKxBZvws=
golang.org/x/sys v0.21.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/telemetry v0.0.0-20240522233618-39ace7a40ae7 h1:FemxDzfMUcK2f3YY4H+05K9CDzbSVr2+q/JKN45pey0=
+golang.org/x/telemetry v0.0.0-20240522233618-39ace7a40ae7/go.mod h1:pRgIJT+bRLFKnoM1ldnzKoxTIn14Yxz928LQRYYgIN0=
golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
golang.org/x/text v0.0.0-20170915032832-14c0d48ead0c/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
@@ -593,8 +595,8 @@
golang.org/x/tools v0.1.12/go.mod h1:hNGJHUnrk76NpqgfD5Aqm5Crs+Hm0VOH/i9J2+nxYbc=
golang.org/x/tools v0.22.0 h1:gqSGLZqv+AI9lIQzniJ0nZDRG5GBPsSi+DRNHWNz6yA=
golang.org/x/tools v0.22.0/go.mod h1:aCwcsjqvq7Yqt6TNyX7QMU2enbQ/Gt0bo6krSeEri+c=
-golang.org/x/vuln v1.0.5-0.20240213143941-dcac2d7cab09 h1:A64fP6pOn7HymW2o6mact9ciWbn8bAVYuEmoxjCd43Y=
-golang.org/x/vuln v1.0.5-0.20240213143941-dcac2d7cab09/go.mod h1:17esbGXVHp03iSShz13iJUumhcDknaO/tzYo0Oau1TQ=
+golang.org/x/vuln v1.1.2 h1:UkLxe+kAMcrNBpGrFbU0Mc5l7cX97P2nhy21wx5+Qbk=
+golang.org/x/vuln v1.1.2/go.mod h1:2o3fRKD8Uz9AraAL3lwd/grWBv+t+SeJnPcqBUJrY24=
golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
