Skip to content

Commit 7ab73ae

Browse files
SecAI-Hubclaude
andcommitted
Fix CI: bandit pin 1.9.0→1.9.4, Go 1.23→1.25 for stdlib vuln fixes
- bandit==1.9.0 was yanked from PyPI; pin to 1.9.4 (latest stable) - Update all 9 Go services from go 1.23 to go 1.25, fixing 12 stdlib vulnerabilities (GO-2025-4007 through GO-2026-4602) in crypto/tls, crypto/x509, encoding/asn1, encoding/pem, net/url, and os - go mod tidy cleaned unused indirect deps in policy-engine and runtime-attestor Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
1 parent 450d1fd commit 7ab73ae

10 files changed

Lines changed: 10 additions & 14 deletions

File tree

requirements-ci.txt

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -6,7 +6,7 @@ Flask==3.1.1
66
requests==2.32.5
77
pytest==8.3.5
88
ruff==0.11.6
9-
bandit==1.9.0
9+
bandit==1.9.4
1010
mypy==1.15.0
1111
pip-audit==2.9.0
1212
types-PyYAML==6.0.12.20250402

services/airlock/go.mod

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,5 +1,5 @@
11
module github.com/sec_ai/SecAI_OS/services/airlock
22

3-
go 1.23
3+
go 1.25
44

55
require gopkg.in/yaml.v3 v3.0.1
Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,5 +1,5 @@
11
module github.com/SecAI-Hub/gpu-integrity-watch
22

3-
go 1.23
3+
go 1.25
44

55
require gopkg.in/yaml.v3 v3.0.1

services/incident-recorder/go.mod

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,5 +1,5 @@
11
module github.com/SecAI-Hub/incident-recorder
22

3-
go 1.23
3+
go 1.25
44

55
require gopkg.in/yaml.v3 v3.0.1

services/integrity-monitor/go.mod

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,5 +1,5 @@
11
module github.com/SecAI-Hub/integrity-monitor
22

3-
go 1.23
3+
go 1.25
44

55
require gopkg.in/yaml.v3 v3.0.1

services/mcp-firewall/go.mod

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,5 +1,5 @@
11
module github.com/SecAI-Hub/mcp-firewall
22

3-
go 1.23
3+
go 1.25
44

55
require gopkg.in/yaml.v3 v3.0.1

services/policy-engine/go.mod

Lines changed: 1 addition & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,5 @@
11
module github.com/SecAI-Hub/policy-engine
22

3-
go 1.23
3+
go 1.25
44

55
require gopkg.in/yaml.v3 v3.0.1
6-
7-
require gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405 // indirect

services/registry/go.mod

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,5 +1,5 @@
11
module github.com/sec_ai/SecAI_OS/services/registry
22

3-
go 1.23
3+
go 1.25
44

55
require gopkg.in/yaml.v3 v3.0.1

services/runtime-attestor/go.mod

Lines changed: 1 addition & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,5 @@
11
module github.com/SecAI-Hub/runtime-attestor
22

3-
go 1.23
3+
go 1.25
44

55
require gopkg.in/yaml.v3 v3.0.1
6-
7-
require gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405 // indirect

services/tool-firewall/go.mod

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,5 +1,5 @@
11
module github.com/sec_ai/SecAI_OS/services/tool-firewall
22

3-
go 1.23
3+
go 1.25
44

55
require gopkg.in/yaml.v3 v3.0.1

0 commit comments

Comments
 (0)