From 96c5907271d66cd7af83d9b6853e84d02afa0beb Mon Sep 17 00:00:00 2001
From: Ethan <ethan@wispr.ai>
Date: Fri, 8 May 2026 09:25:53 -0700
Subject: [PATCH] fix: upgrade Go toolchain to 1.22 to address CVE-2025-22871,
 CVE-2025-68121, CVE-2024-3566

---
 .github/actions/setup/action.yml | 2 +-
 go.mod                           | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/actions/setup/action.yml b/.github/actions/setup/action.yml
index 3def4b5..5b9a3b3 100644
--- a/.github/actions/setup/action.yml
+++ b/.github/actions/setup/action.yml
@@ -17,7 +17,7 @@ runs:
     - name: Set up Go
       uses: actions/setup-go@v4
       with:
-        go-version: '1.21'
+        go-version: '1.22'
 
     - name: Install go packages
       run: go install && go install -a -v github.com/go-bindata/go-bindata/...@latest
diff --git a/go.mod b/go.mod
index 9342a78..98df350 100644
--- a/go.mod
+++ b/go.mod
@@ -1,6 +1,6 @@
 module github.com/develar/app-builder
 
-go 1.21
+go 1.22
 
 require (
 	github.com/aclements/go-rabin v0.0.0-20170911142644-d0b643ea1a4c