From 7abb19fa2a8f8f0ff0291182b53d0e4370e2ae58 Mon Sep 17 00:00:00 2001
From: mingfu <mingfu@alauda.io>
Date: Wed, 10 Jun 2026 22:47:55 +0800
Subject: [PATCH] fix(vuln): bump go to 1.26.4 to patch stdlib CVEs

- stdlib CVE-2026-42504 / CVE-2026-27145 / CVE-2026-42507

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
---
 go.mod | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/go.mod b/go.mod
index 4e9bb460d..9abe4aab9 100644
--- a/go.mod
+++ b/go.mod
@@ -1,6 +1,6 @@
 module github.com/cloudflare/cfssl
 
-go 1.26.3
+go 1.26.4
 
 require (
 	bitbucket.org/liamstask/goose v0.0.0-20150115234039-8488cc47d90c