From f0fa742e13ff9837fe48f3f46d7ed9fbd55eb582 Mon Sep 17 00:00:00 2001
From: Javier de la Puente <javier.delapuente@canonical.com>
Date: Thu, 10 Oct 2024 13:29:34 +0200
Subject: [PATCH 1/2] do not ignore unneeded CVEs

---
 .trivyignore | 6 ------
 1 file changed, 6 deletions(-)

diff --git a/.trivyignore b/.trivyignore
index f39633c..e69de29 100644
--- a/.trivyignore
+++ b/.trivyignore
@@ -1,6 +0,0 @@
-# ignore CVE introduced by python3-gunicorn
-CVE-2022-40897
-# pypa/setuptools: Remote code execution via download
-CVE-2024-6345
-# pebble: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion
-CVE-2024-34156

From 6ae1238840d0f0c710527a058d9d345d6e1dbc63 Mon Sep 17 00:00:00 2001
From: Javier de la Puente <javier.delapuente@canonical.com>
Date: Thu, 10 Oct 2024 13:58:22 +0200
Subject: [PATCH 2/2] update go to 1.22.7

---
 examples/go/go.mod | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/examples/go/go.mod b/examples/go/go.mod
index 1f3436b..ccda5fd 100644
--- a/examples/go/go.mod
+++ b/examples/go/go.mod
@@ -2,7 +2,7 @@
 // See LICENSE file for licensing details.
 module go-app
 
-go 1.22.5
+go 1.22.7
 
 require (
 	github.com/jackc/pgx/v5 v5.6.0