Skip to content

Use the latest bugfix version when using go.mod #740

Open
Open
Use the latest bugfix version when using go.mod#740
Labels
feature requestNew feature or request to improve the current logic
@janisz

Description

@janisz
janisz
opened on Apr 1, 2026

Description:

When go.mod is used for version discovery it will download the exact version that's specified in the file. This means that even if there are known vulnerabilities in Go it still will be used.

Justification:
Always use the latest bugfix release to prevent using and generating vulnerable code.

Are you willing to submit a PR?
Yes

Metadata

Metadata

Assignees

No one assigned

    Labels

    feature requestNew feature or request to improve the current logic

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions