From dac73aaf34bcfa4a6fb65463f9520ca083b39594 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 28 Apr 2026 10:30:22 +0000 Subject: [PATCH 1/2] chore(deps): bump golang.org/x/term from 0.40.0 to 0.42.0 Bumps [golang.org/x/term](https://github.com/golang/term) from 0.40.0 to 0.42.0. - [Commits](https://github.com/golang/term/compare/v0.40.0...v0.42.0) --- updated-dependencies: - dependency-name: golang.org/x/term dependency-version: 0.41.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- go.mod | 6 +++--- go.sum | 8 ++++---- 2 files changed, 7 insertions(+), 7 deletions(-) diff --git a/go.mod b/go.mod index 04c926b..4fc5e36 100644 --- a/go.mod +++ b/go.mod @@ -1,6 +1,6 @@ module github.com/ArmisSecurity/armis-cli -go 1.24.0 +go 1.25.0 require ( github.com/alecthomas/chroma/v2 v2.23.1 @@ -13,7 +13,7 @@ require ( github.com/schollz/progressbar/v3 v3.19.0 github.com/spf13/cobra v1.10.2 github.com/xeipuuv/gojsonschema v1.2.0 - golang.org/x/term v0.40.0 + golang.org/x/term v0.42.0 ) require ( @@ -39,6 +39,6 @@ require ( github.com/xeipuuv/gojsonreference v0.0.0-20180127040603-bd5ef7bd5415 // indirect github.com/xo/terminfo v0.0.0-20220910002029-abceb7e1c41e // indirect golang.org/x/net v0.48.0 // indirect - golang.org/x/sys v0.41.0 // indirect + golang.org/x/sys v0.43.0 // indirect gopkg.in/warnings.v0 v0.1.2 // indirect ) diff --git a/go.sum b/go.sum index 9ad17e5..5b44e39 100644 --- a/go.sum +++ b/go.sum @@ -94,10 +94,10 @@ golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56/go.mod h1:M4RDyNAINzryxdtnbR golang.org/x/net v0.48.0 h1:zyQRTTrjc33Lhh0fBgT/H3oZq9WuvRR5gPC70xpDiQU= golang.org/x/net v0.48.0/go.mod h1:+ndRgGjkh8FGtu1w1FGbEC31if4VrNVMuKTgcAAnQRY= golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= -golang.org/x/sys v0.41.0 h1:Ivj+2Cp/ylzLiEU89QhWblYnOE9zerudt9Ftecq2C6k= -golang.org/x/sys v0.41.0/go.mod h1:OgkHotnGiDImocRcuBABYBEXf8A9a87e/uXjp9XT3ks= -golang.org/x/term v0.40.0 h1:36e4zGLqU4yhjlmxEaagx2KuYbJq3EwY8K943ZsHcvg= -golang.org/x/term v0.40.0/go.mod h1:w2P8uVp06p2iyKKuvXIm7N/y0UCRt3UfJTfZ7oOpglM= +golang.org/x/sys v0.43.0 h1:Rlag2XtaFTxp19wS8MXlJwTvoh8ArU6ezoyFsMyCTNI= +golang.org/x/sys v0.43.0/go.mod h1:4GL1E5IUh+htKOUEOaiffhrAeqysfVGipDYzABqnCmw= +golang.org/x/term v0.42.0 h1:UiKe+zDFmJobeJ5ggPwOshJIVt6/Ft0rcfrXZDLWAWY= +golang.org/x/term v0.42.0/go.mod h1:Dq/D+snpsbazcBG5+F9Q1n2rXV8Ma+71xEjTRufARgY= gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0= gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c h1:Hei/4ADfdWqJk1ZMxUNpqntNwaWcugrBjAiHlqqRiVk= gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c/go.mod h1:JHkPIbrfpd72SG/EVd6muEfDQjcINNoR0C8j2r3qZ4Q= From 1c8af8eb4d8907f97679179ed09d926831f7e6ab Mon Sep 17 00:00:00 2001 From: Yiftach Cohen Date: Tue, 28 Apr 2026 13:38:09 +0300 Subject: [PATCH 2/2] fix(ci): bump Go version to 1.25 to match go.mod requirement The x/term v0.42.0 dependency requires go 1.25.0. All CI workflows were pinned to Go 1.24, which fails with GOTOOLCHAIN=local. --- .github/CONTRIBUTING.md | 2 +- .github/workflows/ci.yml | 2 +- .github/workflows/release-snapshot.yml | 2 +- .github/workflows/release.yml | 4 ++-- .github/workflows/reusable-lint.yml | 2 +- CLAUDE.md | 2 +- 6 files changed, 7 insertions(+), 7 deletions(-) diff --git a/.github/CONTRIBUTING.md b/.github/CONTRIBUTING.md index 1fee98e..7afc0af 100644 --- a/.github/CONTRIBUTING.md +++ b/.github/CONTRIBUTING.md @@ -28,7 +28,7 @@ intentionally out of scope. ### Prerequisites -- Go 1.24 or later +- Go 1.25 or later - [golangci-lint](https://golangci-lint.run/welcome/install/) v2.0+ - Make diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 8084242..af7bce2 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -32,7 +32,7 @@ jobs: - name: Set up Go uses: actions/setup-go@v6 with: - go-version: "1.24" + go-version: "1.25" cache: true - name: Install gotestsum diff --git a/.github/workflows/release-snapshot.yml b/.github/workflows/release-snapshot.yml index 2a48593..8f95aca 100644 --- a/.github/workflows/release-snapshot.yml +++ b/.github/workflows/release-snapshot.yml @@ -27,7 +27,7 @@ jobs: - name: Set up Go uses: actions/setup-go@v6 with: - go-version: "1.24" + go-version: "1.25" cache: true - name: Install Syft diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 349fa4a..ce1b90d 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -21,7 +21,7 @@ jobs: - name: Set up Go uses: actions/setup-go@v6 with: - go-version: "1.24" + go-version: "1.25" cache: true - name: Install gotestsum @@ -63,7 +63,7 @@ jobs: - name: Set up Go uses: actions/setup-go@v6 with: - go-version: "1.24" + go-version: "1.25" cache: true - name: Install Syft diff --git a/.github/workflows/reusable-lint.yml b/.github/workflows/reusable-lint.yml index f936947..8e5abc0 100644 --- a/.github/workflows/reusable-lint.yml +++ b/.github/workflows/reusable-lint.yml @@ -20,7 +20,7 @@ jobs: - name: Set up Go uses: actions/setup-go@v6 with: - go-version: "1.24" + go-version: "1.25" cache: true - name: Go fmt check diff --git a/CLAUDE.md b/CLAUDE.md index 426fac7..6da1e3e 100644 --- a/CLAUDE.md +++ b/CLAUDE.md @@ -6,7 +6,7 @@ This file provides guidance to Claude Code (claude.ai/code) when working with co Armis CLI is an enterprise-grade security scanning tool written in Go that integrates with Armis Cloud. It scans repositories and container images for security vulnerabilities, secrets, and license risks. -**Prerequisites:** Go 1.24+, [golangci-lint](https://golangci-lint.run/) v2.0+, Make +**Prerequisites:** Go 1.25+, [golangci-lint](https://golangci-lint.run/) v2.0+, Make ## Build Commands