fix: upgrade github.com/go-viper/mapstructure/v2 to v2.4.0 (CVE-2025-11065)

[Copilot]

CVE-2025-11065 (moderate) affects github.com/go-viper/mapstructure/v2 ≤ 2.3.0. Upgrading to v2.4.0 resolves the vulnerability.

Changes

• go.mod: bump github.com/go-viper/mapstructure/v2 from v2.3.0 → v2.4.0
• go.sum: updated checksums via go mod tidy

Original prompt

The project 'go_hsm' has a known security vulnerability in the dependency 'github.com/go-viper/mapstructure/v2' version <= 2.3.0. The go.mod file specifies this dependency and needs to be updated. The CVE-2025-11065, categorized as a moderate severity issue, can be resolved by upgrading this dependency to version ~> 2.4.0. Update the go.mod file to upgrade this dependency and ensure the codebase remains secure. After updating the dependency, validate that all tests pass successfully.

The following is the prior conversation context from the user's chat exploration (may be truncated):

User: Andrei-cloud / go_hsm
Known security vulnerabilities detected

Dependency
github.com/go-viper/mapstructure/v2
Version
<= 2.3.0
Upgrade to
~> 2.4.0
Defined in
go.mod
Vulnerabilities
CVE-2025-11065 Moderate severity

Fix it

Assistant: A pull request is being created to fix the security vulnerability by upgrading the mapstructure dependency in the go_hsm repository. I'll notify you once the PR is complete.

This pull request was created from Copilot chat.

---

📱 Kick off Copilot coding agent tasks wherever you are with GitHub Mobile, available on iOS and Android.