encore.dev
encore.dev copied to clipboard
encoredev
This repository contains the Encore's Runtime API contract, which Encore applications are built against.
Bumps [github.com/jackc/pgx/v5](https://github.com/jackc/pgx) from 5.2.0 to 5.5.4. Changelog Sourced from github.com/jackc/pgx/v5's changelog. 5.5.4 (March 4, 2024) Fix CVE-2024-27304 SQL injection can occur if an attacker can cause a single query or...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.0.0-20220829220503-c86fa9a7ed90 to 0.17.0. Commits See full diff in compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter...
just updating version, no breaking changes, updates indirect dependency golang.org/x/text as v0.3.8 has security vulnerability https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-38561
Hi team, Context: I realize this repository only holds the contract for development purposes, but some vulnerability scanners - such as Snyk - light up when scanning this, and updating...
