The nats-server v2.1.2 is used by kit , I noticed nats-server v2.1.2 has a High-Risk Vulnerability CVE-2022-24450, However is kit affetcd by this CVE ? #1223
Answered
by
ChrisHines
liufangwai
asked this question in
Q&A
-
|
The nats-server v2.1.2 is used by kit , I noticed nats-server v2.1.2 has a High-Risk Vulnerability CVE-2022-24450, However is kit affetcd by this CVE ? |
Beta Was this translation helpful? Give feedback.
Answered by
ChrisHines
Mar 26, 2022
Replies: 1 comment 1 reply
-
|
No. The most recent release of go-kit (v0.12.0) uses nats-server v2.5.0 and only for tests. The non-test code in go-kit does not use nats-server at all, only the nats client. |
Beta Was this translation helpful? Give feedback.
1 reply
-
|
ok, thanks for you apply |
Beta Was this translation helpful? Give feedback.
Answer selected by
peterbourgon
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
No. The most recent release of go-kit (v0.12.0) uses nats-server v2.5.0 and only for tests. The non-test code in go-kit does not use nats-server at all, only the nats client.