From 0268340d921c311641c7bbeef1b3ea01e32589db Mon Sep 17 00:00:00 2001
From: Dheeraj Mohan <modheer@amazon.com>
Date: Thu, 20 Nov 2025 08:38:41 +0000
Subject: [PATCH] fix: go version for CVE fix

---
 .go-version | 2 +-
 Dockerfile  | 2 +-
 go.mod      | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/.go-version b/.go-version
index eb716f77..5bb76b57 100644
--- a/.go-version
+++ b/.go-version
@@ -1 +1 @@
-1.24.9
+1.25.3
diff --git a/Dockerfile b/Dockerfile
index a80e5f83..1bd88c1d 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -8,7 +8,7 @@
 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 # See the License for the specific language governing permissions and
 # limitations under the License.
-ARG BUILDER=public.ecr.aws/eks-distro-build-tooling/golang:1.24.9-gcc
+ARG BUILDER=public.ecr.aws/eks-distro-build-tooling/golang:1.25.3-gcc
 ARG BASE_IMAGE=public.ecr.aws/eks-distro/kubernetes/go-runner:v0.18.0-eks-1-34-latest
 
 FROM --platform=$BUILDPLATFORM ${BUILDER} AS build
diff --git a/go.mod b/go.mod
index 43c5f912..253209fc 100644
--- a/go.mod
+++ b/go.mod
@@ -1,6 +1,6 @@
 module sigs.k8s.io/aws-encryption-provider
 
-go 1.24.9
+go 1.25.3
 
 require (
 	github.com/aws/aws-sdk-go-v2 v1.39.2