From 8dd5086adb37b2928767debaa406cbe75eb4a818 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Sybren=20A=2E=20St=C3=BCvel?= <sybren@blender.org>
Date: Tue, 10 Sep 2024 10:56:23 +0200
Subject: [PATCH] Bump Go version to 1.22.7 to get security fix

---
 CHANGELOG.md | 2 ++
 go.mod       | 2 +-
 2 files changed, 3 insertions(+), 1 deletion(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index e0530fde..c7135d14 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -14,6 +14,8 @@ bugs in actually-released versions.
   - [GO-2024-2937: Parsing a corrupt or malicious image with invalid color indices can cause a panic](https://pkg.go.dev/vuln/GO-2024-2937)
 - Web interface: list the job's worker tag in the job details.
 - Ensure the submitted scene is rendered in a multi-scene blend file.
+- Security updates of dependencies:
+  - [GO-2024-3106: Stack exhaustion in Decoder.Decode in encoding/gob](https://pkg.go.dev/vuln/GO-2024-3106)
 
 ## 3.5 - released 2024-04-16
 
diff --git a/go.mod b/go.mod
index 6de0e22a..617abc56 100644
--- a/go.mod
+++ b/go.mod
@@ -1,6 +1,6 @@
 module projects.blender.org/studio/flamenco
 
-go 1.22.4
+go 1.22.7
 
 require (
 	github.com/adrg/xdg v0.4.0