go.mod has golang.org/x/crypto@v0.0.0-20220331220935-ae2d96664a29, which in order depends on golang.org/x/net@v0.0.0-20211112202133-69e39bad7dc2 which has a number of known vulnerabilities (CVE-2022-41723, CVE-2022-44716, CVE-20220-41717).
Can you please bump golang.org/x/crypto to v0.4.0?
go.modhasgolang.org/x/crypto@v0.0.0-20220331220935-ae2d96664a29, which in order depends ongolang.org/x/net@v0.0.0-20211112202133-69e39bad7dc2which has a number of known vulnerabilities (CVE-2022-41723, CVE-2022-44716, CVE-20220-41717).Can you please bump
golang.org/x/cryptotov0.4.0?