(airavata) branch master updated: deps: bump grpc-go from 1.64.1 to 1.79.3 in airavata-agent (#605)

[yasith]

This is an automated email from the ASF dual-hosted git repository.

yasith pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/airavata.git


The following commit(s) were added to refs/heads/master by this push:
     new 4c545fbb6a deps: bump grpc-go from 1.64.1 to 1.79.3 in airavata-agent 
(#605)
4c545fbb6a is described below

commit 4c545fbb6adef8209de9c9a5e9cebbc338ad9fe3
Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
AuthorDate: Mon Mar 30 15:28:13 2026 -0400

    deps: bump grpc-go from 1.64.1 to 1.79.3 in airavata-agent (#605)
    
    Includes security fix for authorization bypass via malformed :path headers. 
Also bumps protobuf to 1.36.10 and transitive deps.
---
 airavata-agent/go.mod | 24 ++++++++++++------------
 1 file changed, 12 insertions(+), 12 deletions(-)

diff --git a/airavata-agent/go.mod b/airavata-agent/go.mod
index 784cf84168..fa96d030c7 100644
--- a/airavata-agent/go.mod
+++ b/airavata-agent/go.mod
@@ -6,18 +6,18 @@ require (
        github.com/cyber-shuttle/cybershuttle-tunnels 
v0.0.0-20250505072337-4314f6e407c4
        github.com/fatedier/frp v0.62.1
        github.com/google/uuid v1.6.0
-       google.golang.org/grpc v1.64.1
-       google.golang.org/protobuf v1.34.2
+       google.golang.org/grpc v1.79.3
+       google.golang.org/protobuf v1.36.10
 )
 
 require (
        github.com/Azure/go-ntlmssp v0.0.0-20221128193559-754e69321358 // 
indirect
        github.com/armon/go-socks5 v0.0.0-20160902184237-e75332964ef5 // 
indirect
        github.com/beorn7/perks v1.0.1 // indirect
-       github.com/cespare/xxhash/v2 v2.2.0 // indirect
+       github.com/cespare/xxhash/v2 v2.3.0 // indirect
        github.com/coreos/go-oidc/v3 v3.14.1 // indirect
        github.com/fatedier/golib v0.5.1 // indirect
-       github.com/go-jose/go-jose/v4 v4.0.5 // indirect
+       github.com/go-jose/go-jose/v4 v4.1.3 // indirect
        github.com/go-task/slim-sprig/v3 v3.0.0 // indirect
        github.com/golang/snappy v0.0.4 // indirect
        github.com/google/pprof v0.0.0-20241206021119-61a79c692802 // indirect
@@ -51,16 +51,16 @@ require (
        github.com/vishvananda/netns v0.0.4 // indirect
        github.com/xtaci/kcp-go/v5 v5.6.13 // indirect
        go.uber.org/mock v0.5.0 // indirect
-       golang.org/x/crypto v0.45.0 // indirect
+       golang.org/x/crypto v0.46.0 // indirect
        golang.org/x/exp v0.0.0-20241204233417-43b7b7cde48d // indirect
-       golang.org/x/mod v0.29.0 // indirect
-       golang.org/x/net v0.47.0 // indirect
-       golang.org/x/oauth2 v0.28.0 // indirect
-       golang.org/x/sync v0.18.0 // indirect
-       golang.org/x/sys v0.38.0 // indirect
-       golang.org/x/text v0.31.0 // indirect
+       golang.org/x/mod v0.30.0 // indirect
+       golang.org/x/net v0.48.0 // indirect
+       golang.org/x/oauth2 v0.34.0 // indirect
+       golang.org/x/sync v0.19.0 // indirect
+       golang.org/x/sys v0.39.0 // indirect
+       golang.org/x/text v0.32.0 // indirect
        golang.org/x/time v0.5.0 // indirect
-       golang.org/x/tools v0.38.0 // indirect
+       golang.org/x/tools v0.39.0 // indirect
        golang.zx2c4.com/wintun v0.0.0-20230126152724-0fa3db229ce2 // indirect
        golang.zx2c4.com/wireguard v0.0.0-20231211153847-12269c276173 // 
indirect
        google.golang.org/genproto v0.0.0-20230410155749-daa745c078e1 // 
indirect