From 6b08cd203743b24ed871effd9ce765ae434381c8 Mon Sep 17 00:00:00 2001 From: Brendan Kellam Date: Wed, 1 Jul 2026 19:03:58 -0700 Subject: [PATCH] chore: bump zoekt submodule to upgrade golang.org/x/net and golang.org/x/crypto (CVEs) Advances the vendor/zoekt submodule to sourcebot-dev/zoekt#16, which upgrades golang.org/x/net v0.53.0 -> v0.55.0 and golang.org/x/crypto v0.50.0 -> v0.52.0 to address the Trivy container-scan HIGH CVEs: - x/net: CVE-2026-25680, CVE-2026-25681, CVE-2026-27136, CVE-2026-39821, CVE-2026-42502, CVE-2026-42506 - x/crypto: CVE-2026-39827, CVE-2026-39828, CVE-2026-39829, CVE-2026-39830, CVE-2026-39835, CVE-2026-42508, CVE-2026-46595, CVE-2026-46597 Co-Authored-By: Claude Opus 4.8 (1M context) --- vendor/zoekt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/vendor/zoekt b/vendor/zoekt index 3d1f49a3e..58f59f145 160000 --- a/vendor/zoekt +++ b/vendor/zoekt @@ -1 +1 @@ -Subproject commit 3d1f49a3e6d367e714da1a00450efad2fd1a318c +Subproject commit 58f59f14543881234affea940a8cf4240eb60b4b