Skip to content

fix(deps): x/crypto v0.52.0 (SSH CVE 8건 HIGH 해소)#378

Merged
KeiaiLab-PHIL merged 1 commit into
mainfrom
fix/x-crypto-cve
Jun 25, 2026
Merged

fix(deps): x/crypto v0.52.0 (SSH CVE 8건 HIGH 해소)#378
KeiaiLab-PHIL merged 1 commit into
mainfrom
fix/x-crypto-cve

Conversation

@KeiaiLab-PHIL

Copy link
Copy Markdown
Contributor

Summary

golang.org/x/crypto v0.51.0 → v0.52.0 — SSH 관련 HIGH CVE 8건(CVE-2026-39827~46597) 해소. make release Trivy audit 게이트 차단 해소 + §2.2 modern-first.

변경

go.mod/go.sum: x/crypto v0.52.0 (indirect). go get golang.org/x/crypto@v0.52.0 && go mod tidy.

검증

  • go build ./... OK
  • go test ./internal/mongodb/... PASS
  • Trivy: x/crypto CVE 0 (0.52.0 fixed)

🤖 Generated with Claude Code

CVE-2026-39827/39828/39829/39830/39835/42508/46595/46597 (golang.org/x/crypto/ssh
권한·DoS·인증우회). indirect dep, go get + tidy. §2.2 modern-first + 보안.

검증: go build + go test ./internal/mongodb/... PASS.

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
Signed-off-by: phil <phil@keiailab.com>
@KeiaiLab-PHIL KeiaiLab-PHIL merged commit 914e5e7 into main Jun 25, 2026
15 checks passed
@KeiaiLab-PHIL KeiaiLab-PHIL deleted the fix/x-crypto-cve branch June 25, 2026 11:24
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant