From fd76e3eb8e355de70436a346d0374c54f58de0ca Mon Sep 17 00:00:00 2001
From: glageju <gautam@stacklok.com>
Date: Mon, 11 May 2026 21:38:04 -0700
Subject: [PATCH] bump go to 1.26.3 to fix stdlib CVEs:   - CVE-2026-27143
 (Critical)   - CVE-2026-39820, CVE-2026-42499, CVE-2026-32281,
 CVE-2026-33814,     CVE-2026-32280, CVE-2026-32283, CVE-2026-33811,
 CVE-2026-39836,     CVE-2026-27140, CVE-2026-42501, CVE-2026-33810,
 CVE-2026-27144 (High)   - CVE-2026-39817, CVE-2026-39826, CVE-2026-39823,
 CVE-2026-39825,     CVE-2026-32289, CVE-2026-32282, CVE-2026-39819,
 CVE-2026-32288 (Medium)

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
---
 go.mod | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/go.mod b/go.mod
index 16c12f7..1bc091c 100644
--- a/go.mod
+++ b/go.mod
@@ -1,6 +1,6 @@
 module github.com/stackloklabs/yardstick
 
-go 1.26.2
+go 1.26.3
 
 require (
 	github.com/google/jsonschema-go v0.4.3