Update jitsucom-bulker.yaml

debasishbsws · web-flow · commit dd766bbd4a6a · 2024-05-23T12:08:35.000+05:30
Signed-off-by: Debasish Biswas &lt;debasishbsws.dev@gmail.com&gt;
diff --git a/jitsucom-bulker.yaml b/jitsucom-bulker.yaml
@@ -23,21 +23,27 @@ pipeline:
   - uses: go/bump
     with:
       # Mitigate CVE-2023-45288
-      deps: golang.org/x/net@v0.23.0 github.com/dvsekhvalnov/jose2go@v1.6.0
+      deps: golang.org/x/net@v0.23.0
       modroot: ingest
 
   - uses: go/bump
     with:
       # Mitigate CVE-2023-45288
-      deps: golang.org/x/net@v0.23.0 github.com/dvsekhvalnov/jose2go@v1.6.0
+      deps: golang.org/x/net@v0.23.0
       modroot: ingress-manager
 
   - uses: go/bump
     with:
       # Mitigate CVE-2023-45288
-      deps: golang.org/x/net@v0.23.0 github.com/dvsekhvalnov/jose2go@v1.6.0
+      deps: golang.org/x/net@v0.23.0
       modroot: sync-controller
 
+  - uses: go/bump
+    with:
+      # Mitigate GHSA-6294-6rgp-fr7r
+      deps: github.com/dvsekhvalnov/jose2go@v1.6.0
+      modroot: bulkerlib
+
 data:
   - name: commands
     items:
