VULN UPGRADE: minor upgrades — 8 packages (minor: 8)

[campaigner-prod]

Summary: High-severity security update — 8 packages upgraded (MINOR changes included)

Manifests changed:

• . (go)

Updates

Package	From	To	Type	Vulnerabilities Fixed
github.com/sirupsen/logrus	v1.4.1	v1.9.4	minor	3 HIGH
github.com/aws/aws-sdk-go-v2	v1.30.3	v1.41.1	minor	-
github.com/aws/aws-sdk-go-v2/config	v1.27.24	v1.32.7	minor	-
github.com/aws/aws-sdk-go-v2/service/cloudtrail	v1.42.1	v1.55.5	minor	-
github.com/aws/aws-sdk-go-v2/service/sts	v1.30.1	v1.41.6	minor	-
github.com/datadog/stratus-red-team/v2	v2.16.0	v2.25.0	minor	-
github.com/spf13/cobra	v1.6.0	v1.10.2	minor	-
github.com/stretchr/testify	v1.9.0	v1.11.1	minor	-

Packages marked with "-" are updated due to dependency constraints.

---

Security Details

🚨 Critical & High Severity (3 fixed)

Package	CVE	Severity	Summary	Unsafe Version	Fixed In
github.com/sirupsen/logrus	GHSA-4f99-4q7p-p3gh	HIGH	Logrus is vulnerable to DoS when using Entry.Writer()	v1.4.1	1.8.3
github.com/sirupsen/logrus	CVE-2025-65637	HIGH	-	v1.4.1	-
github.com/sirupsen/logrus	GO-2025-4188	HIGH	Logrus is vulnerable to DoS when using Entry.writerScanner in github.com/sirupsen/logrus	v1.4.1	1.8.3

⚠️ Dependencies that have Reached EOL (1)

Dependency	Unsafe Version	EOL Date	New Version	Path
github.com/spf13/cobra	v1.6.0	Oct 11, 2025	v1.10.2	go.mod

---

Review Checklist

Standard review:

• Review changes for compatibility with your code
• Check for breaking changes in release notes
• Run tests locally or wait for CI

---

Update Mode: Vulnerability Remediation (High)

🤖 Generated by DataDog Automated Dependency Management System