From d69f5e75cb6e80b0b0a62d77b6a61d7a2924acd8 Mon Sep 17 00:00:00 2001
From: silverwind <me@silverwind.io>
Date: Wed, 9 Apr 2025 09:49:51 +0200
Subject: [PATCH] Bump go version in go.mod

Fixes: https://pkg.go.dev/vuln/GO-2025-3563

Because of a bug in go, we can not remove the minor version in go.mod
without `make tidy` introducing a potentially harmful `toolchain` directive,
so just bump the go version here. From what I gather, this will be fixed
in go 1.25.
---
 go.mod | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/go.mod b/go.mod
index 1ca481e073ef7..e333a1e5624a1 100644
--- a/go.mod
+++ b/go.mod
@@ -1,6 +1,6 @@
 module code.gitea.io/gitea
 
-go 1.23.6
+go 1.23.8
 
 // rfc5280 said: "The serial number is an integer assigned by the CA to each certificate."
 // But some CAs use negative serial number, just relax the check. related: