Update sys package to address CVE-2022-29526
What does this MR do and why?
This MR fixes the following vulnerabilities reported by Trivy:
usr/local/bin/release-cli (gobinary)
====================================
Total: 1 (UNKNOWN: 0, LOW: 0, MEDIUM: 1, HIGH: 0, CRITICAL: 0)
+------------------+------------------+----------+------------------------------------+-----------------------------------+---------------------------------------+
| LIBRARY | VULNERABILITY ID | SEVERITY | INSTALLED VERSION | FIXED VERSION | TITLE |
+------------------+------------------+----------+------------------------------------+-----------------------------------+---------------------------------------+
| golang.org/x/sys | CVE-2022-29526 | MEDIUM | v0.0.0-20220406163625-3f8b81556e12 | 0.0.0-20220412211240-33da011f77ad | golang: syscall: faccessat |
| | | | | | checks wrong group |
| | | | | | -->avd.aquasec.com/nvd/cve-2022-29526 |
+------------------+------------------+----------+------------------------------------+-----------------------------------+---------------------------------------+
Checklist
-
I added tests -
Green pipeline -
Assign to reviewer
Edited by Florent Monbillard