Skip to content

Update module software.sslmate.com/src/go-pkcs12 to v0.7.2 [SECURITY]#330

Open
renovate[bot] wants to merge 1 commit into
mainfrom
renovate/go-software.sslmate.com-src-go-pkcs12-vulnerability
Open

Update module software.sslmate.com/src/go-pkcs12 to v0.7.2 [SECURITY]#330
renovate[bot] wants to merge 1 commit into
mainfrom
renovate/go-software.sslmate.com-src-go-pkcs12-vulnerability

Conversation

@renovate

@renovate renovate Bot commented Jul 3, 2026

Copy link
Copy Markdown
Contributor

This PR contains the following updates:

Package Change Age Adoption Passing Confidence
software.sslmate.com/src/go-pkcs12 v0.7.1v0.7.2 age adoption passing confidence

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.


Vulnerability in software.sslmate.com/src/go-pkcs12

GHSA-mpwr-8vm7-h73f / GO-2026-5052

More information

Details

Users who decode PKCS#12 files from untrusted sources and rely on the password for authentication can be tricked into accepting malicious PKCS#12 files.

Severity

Unknown

References

This data is provided by OSV and the Go Vulnerability Database (CC-BY 4.0).


Release Notes

SSLMate/go-pkcs12 (software.sslmate.com/src/go-pkcs12)

v0.7.2

Compare Source


Configuration

📅 Schedule: (UTC)

  • Branch creation
    • At any time (no schedule defined)
  • Automerge
    • Between 08:00 AM and 05:59 PM, Monday through Friday (* 8-17 * * 1-5)

🚦 Automerge: Enabled.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.


  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate Bot requested a review from a team as a code owner July 3, 2026 15:55
@renovate renovate Bot force-pushed the renovate/go-software.sslmate.com-src-go-pkcs12-vulnerability branch from 3997df9 to 0048cf5 Compare July 10, 2026 19:45
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant