From 1d383aacb344afd2235371e79417592928771f18 Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Mon, 13 Jan 2025 14:53:55 +0100
Subject: [PATCH] deps: update module golang.org/x/net to v0.33.0 [SECURITY]
 (#1143)

Co-authored-by: Paul Meyer <katexochen0@gmail.com>
---
 packages/by-name/nydus-pull/package.nix | 2 +-
 tools/nydus-pull/go.mod                 | 2 +-
 tools/nydus-pull/go.sum                 | 4 ++--
 3 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/packages/by-name/nydus-pull/package.nix b/packages/by-name/nydus-pull/package.nix
index 2444def5e0..ea7d2bde5d 100644
--- a/packages/by-name/nydus-pull/package.nix
+++ b/packages/by-name/nydus-pull/package.nix
@@ -10,7 +10,7 @@ buildGoModule rec {
   src = ../../../tools/nydus-pull;
 
   proxyVendor = true;
-  vendorHash = "sha256-bzCdcDfdivf52CerJ+9Nf5i+/laqjBWKNhhyLS8eBs4=";
+  vendorHash = "sha256-7CMF/VELcqWhRwEIeC7qg/wUDXBmedL6BaQYZq9nD0w=";
 
   subPackages = [ "." ];
 
diff --git a/tools/nydus-pull/go.mod b/tools/nydus-pull/go.mod
index 9c0fb2115f..a9d53db66f 100644
--- a/tools/nydus-pull/go.mod
+++ b/tools/nydus-pull/go.mod
@@ -68,7 +68,7 @@ require (
 	go.opentelemetry.io/otel v1.31.0 // indirect
 	go.opentelemetry.io/otel/metric v1.31.0 // indirect
 	go.opentelemetry.io/otel/trace v1.31.0 // indirect
-	golang.org/x/net v0.32.0 // indirect
+	golang.org/x/net v0.33.0 // indirect
 	golang.org/x/oauth2 v0.24.0 // indirect
 	golang.org/x/sync v0.10.0 // indirect
 	golang.org/x/sys v0.28.0 // indirect
diff --git a/tools/nydus-pull/go.sum b/tools/nydus-pull/go.sum
index 660f999ebe..20f4ad4cbe 100644
--- a/tools/nydus-pull/go.sum
+++ b/tools/nydus-pull/go.sum
@@ -212,8 +212,8 @@ golang.org/x/net v0.0.0-20190620200207-3b0461eec859/go.mod h1:z5CRVTTTmAJ677TzLL
 golang.org/x/net v0.0.0-20200226121028-0de0cce0169b/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
 golang.org/x/net v0.0.0-20201110031124-69a78807bb2b/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
-golang.org/x/net v0.32.0 h1:ZqPmj8Kzc+Y6e0+skZsuACbx+wzMgo5MQsJh9Qd6aYI=
-golang.org/x/net v0.32.0/go.mod h1:CwU0IoeOlnQQWJ6ioyFrfRuomB8GKF6KbYXZVyeXNfs=
+golang.org/x/net v0.33.0 h1:74SYHlV8BIgHIFC/LrYkOGIwL19eTYXQ5wc6TBuO36I=
+golang.org/x/net v0.33.0/go.mod h1:HXLR5J+9DxmrqMwG9qjGCxZ+zKXxBru04zlTvWlWuN4=
 golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
 golang.org/x/oauth2 v0.24.0 h1:KTBBxWqUa0ykRPLtV69rRto9TLXcqYkeswu48x/gvNE=
 golang.org/x/oauth2 v0.24.0/go.mod h1:XYTD2NtWslqkgxebSiOHnXEap4TF09sJSc7H1sXbhtI=