Skip to content

[Feature]: upgrade go to 1.25.7 or newer #1725

New issue
New issue
Open
Enhancement
Open
[Feature]: upgrade go to 1.25.7 or newer#1725
Enhancement
Labels
featureissue/PR that proposes a new feature or functionalitylifecycle/frozenneeds-triageissue or PR has not been assigned a priority-px label
@arnej27959

Description

@arnej27959
arnej27959
opened on Mar 11, 2026

when running security scans on our machine images, we get reports about possible vulnerabilities in nvidia-ctk:

  • stdlib | 1.25.6 | CRITICAL | 1 vulns | CVE-2025-68121 | fixed: 1.25.7
  • go-module stdlib go1.25.6 usr/bin/nvidia-cdi-hook
  • go-module stdlib go1.25.6 usr/bin/nvidia-container-runtime
  • go-module stdlib go1.25.6 usr/bin/nvidia-container-runtime-hook
  • go-module stdlib go1.25.6 usr/bin/nvidia-ctk

see also https://groups.google.com/g/golang-announce/c/K09ubi9FQFk for announcement.
I can see that "go.mod" currently declares "go 1.25.0"; it would be helpful to us if you can update that to 1.25.7 and release a 1.18.3 version of the toolkit.

Metadata

Metadata

Assignees

No one assigned

    Labels

    featureissue/PR that proposes a new feature or functionalitylifecycle/frozenneeds-triageissue or PR has not been assigned a priority-px label

    Type

    Enhancement

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions