fix: upgrade Go to 1.25.7 to fix GO-2026-4337 vulnerability

ndbroadbent · claude · ndbroadbent · commit 0e9877281fe5 · 2026-03-03T08:12:33.000+13:00
Go 1.25.7 was just released to fix a new crypto/tls vulnerability (GO-2026-4337: Unexpected session resumption in crypto/tls). Updated all workflow files and go.mod to use Go 1.25.7. 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
@@ -19,7 +19,7 @@ jobs:
       - name: Setup Go
         uses: actions/setup-go@v5
         with:
-          go-version: "1.25.6"
+          go-version: "1.25.7"
 
       - name: Install libfido2 dependencies
         run: |
@@ -63,7 +63,7 @@ jobs:
       - name: Setup Go
         uses: actions/setup-go@v5
         with:
-          go-version: "1.25.6"
+          go-version: "1.25.7"
 
       - name: Cache golangci-lint cache
         uses: actions/cache@v4
diff --git a/.github/workflows/e2e.yml b/.github/workflows/e2e.yml
@@ -157,7 +157,7 @@ jobs:
       - name: Setup Go
         uses: actions/setup-go@v5
         with:
-          go-version: "1.25.6"
+          go-version: "1.25.7"
 
       - name: Download gateway image
         uses: actions/download-artifact@v4
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
@@ -77,7 +77,7 @@ jobs:
       - name: Setup Go
         uses: actions/setup-go@v5
         with:
-          go-version: "1.25.6"
+          go-version: "1.25.7"
       - name: Build binary
         env:
           CGO_ENABLED: 0
diff --git a/go.mod b/go.mod
@@ -1,6 +1,6 @@
 module github.com/DocSpring/rack-gateway
 
-go 1.25.6
+go 1.25.7
 
 require (
 	github.com/GeertJohan/yubigo v0.0.0-20190917122436-175bc097e60e
