Update golang to 1.18.5, 1.17.13

Update Go runtime to 1.18.5 to address CVE-2022-32189. Full diff: https://github.com/golang/go/compare/go1.18.4...go1.18.5 -------------------------------------------------------- From the security announcement: https://groups.google.com/g/golang-announce/c/YqYYG87xB10 We have just released Go versions 1.18.5 and 1.17.13, minor point releases. These minor releases include 1 security fixes following the security policy: encoding/gob & math/big: decoding big.Float and big.Rat can panic Decoding big.Float and big.Rat types can panic if the encoded message is too short. This is CVE-2022-32189 and Go issue https://go.dev/issue/53871. View the release notes for more information: https://go.dev/doc/devel/release#go1.18.5 Signed-off-by: Daniel Canter <dcanter@microsoft.com>
2022-08-02 11:54:45 -07:00
parent e2069e99f0
commit e1c5d71c0c
13 changed files with 24 additions and 24 deletions
--- a/.github/workflows/nightly.yml
+++ b/.github/workflows/nightly.yml
@@ -18,7 +18,7 @@ jobs:
    steps:
      - uses: actions/setup-go@v2
        with:
-          go-version: '1.18.4'
+          go-version: '1.18.5'

      - uses: actions/checkout@v2
        with:
@@ -155,7 +155,7 @@ jobs:
    steps:
      - uses: actions/setup-go@v2
        with:
-          go-version: '1.18.4'
+          go-version: '1.18.5'

      - uses: actions/checkout@v2
        with: