Terrascan 1.13.2 version uses go 1.16.14 version which has High vulnerability. When can we expect the release with go version 1.17? #1190

SayaliMane05 · 2022-03-18T05:01:47Z

No description provided.

cesar-rodriguez · 2022-04-01T01:03:20Z

Hi @SayaliMane05, we're planning to release the new version with 1.17 by tomorrow.

SayaliMane05 · 2022-04-01T04:56:18Z

Rchanger · 2022-04-18T03:48:08Z

With the latest release, we are now using go 1.17. @SayaliMane05 Thanks for reporting the issue.

SayaliMane05 · 2022-11-16T09:59:33Z

Hi, I see some vulnerabilities in latest terrascan version 1.16.0 :

Latest terrascan version contains Go version 1.19.1 which is vulnerable. This is fixed in go version 1.19.2, 1.18.7
Latest terrascan version contains go-getter version 1.5.11 which is vulnerable. This vulnerability is fixed in go-getter version 1.6.1 and 2.1.0
open-policy-agent/opa version 0.22.0 is vulnerable. This is fixed in version 0.42.0
When can we expect the release with these vulnerabilities fixed?
Thanks,
Sayali.

Rchanger closed this as completed Apr 18, 2022

Provide feedback