Skip to content

fix(security): remediate CVE-2025-65637 - upgrade logrus to v1.9.3#216

Open
Ompragash wants to merge 1 commit into
masterfrom
fix/cve-2025-65637-logrus-v1.9.3
Open

fix(security): remediate CVE-2025-65637 - upgrade logrus to v1.9.3#216
Ompragash wants to merge 1 commit into
masterfrom
fix/cve-2025-65637-logrus-v1.9.3

Conversation

@Ompragash
Copy link
Copy Markdown
Member

@Ompragash Ompragash commented Apr 7, 2026

🔐 Security Remediation — Vigil Automated CVE Fix

Scan Date: 2026-04-07
Repo: drone-plugins/drone-s3
Triggered by: Vigil Security Remediation Agent

Patched CVEs

CVE Severity Package Old Version New Version CVSS
CVE-2025-65637 HIGH github.com/sirupsen/logrus v1.9.0 v1.9.3 8.7

CVE-2025-65637 — Details

Unfixed CVEs (No Patch Available)

None — all detected HIGH/CRITICAL CVEs have been remediated.

Changes Made

  • go.mod — bumped github.com/sirupsen/logrus from v1.9.0 to v1.9.3
  • go.sum — regenerated checksums via go mod tidy
  • Dockerfile — not present in repository; no changes required

Test Results

go test ./...PASSED
ok github.com/drone-plugins/drone-s3 0.005s

🤖 This PR was automatically generated by Vigil, the Harness security remediation agent.
Do not merge without reviewing the changes. Manual approval required.

@Ompragash Ompragash mentioned this pull request Apr 8, 2026
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@Ompragash