I used to be earlier on golang 1.20 when Snyk reported a few vulnerabilities in my code, which wanted me to improve the next:
golang . org/x/crypto => golang . org/x/crypto v0.35.0
golang . org/x/internet => golang . org/x/internet v0.36.0
At this level, I solely had 2 vulnerabilities. Now, in an effort to improve these packages, I want golang 1.23 +
Shifting to golang 1.23, and upgrading the above packages, I now have 52 vulnerabilities.
But when I solely improve golang to 1.23, there’s no situation.
That is one in every of them on Snyk:
go@1.23.0, golang . org /x/internet @ v0.36.0 and others
go@1.56.3, @1.57.1, @1.58.3
What model is that this? How do I repair the vulnerabilities?
