Retract v1.0.22 and prior due to old x/net dependency

Old dependency of x/net was vulnerable to CVE-2022-41723 and required an update, v1.0.23 of bluemonday has the update and we retract the old versions
microcosm-cc · Mar 7, 2023 · 3572176 · 3572176
1 parent 6660f4f
commit 3572176
Showing 1 changed file with 1 addition and 3 deletions.
diff --git a/go.mod b/go.mod
@@ -9,6 +9,4 @@ require (
 
 require github.com/gorilla/css v1.0.0 // indirect
 
-retract [v1.0.0, v1.0.18] // Retract older versions as only latest is to be depended upon
-
-retract v1.0.19 // Uses older version of golang.org/x/net
+retract [v1.0.0, v1.0.22] // Retract older versions as only latest is to be depended upon