fix(deps): update module github.com/azure/go-ntlmssp to v0.1.1 [security]

[TheFox0x7]

This PR contains the following updates:

Package	Change	Age	Confidence
github.com/Azure/go-ntlmssp	v0.1.0 → v0.1.1

---

go-ntlmssp NTLM challenges can panic on malformed payloads

CVE-2026-32952 / GHSA-pjcq-xvwq-hhpj

More information

Details

A malicious NTLM challenge message can causes an slice out of bounds panic, which can crash any Go process using ntlmssp.Negotiator as an HTTP transport.

Severity

• CVSS Score: 5.3 / 10 (Medium)
• Vector String: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

References

• https://github.com/Azure/go-ntlmssp/security/advisories/GHSA-pjcq-xvwq-hhpj
• https://github.com/Azure/go-ntlmssp
• https://github.com/Azure/go-ntlmssp/releases/tag/v0.1.1

This data is provided by OSV and the GitHub Advisory Database (CC-BY 4.0).

---

Release Notes

Azure/go-ntlmssp (github.com/Azure/go-ntlmssp)

v0.1.1

Compare Source

Fix CVE-2026-32952: A malicious NTLM challenge message can causes an slice out of bounds panic, which can crash any Go process using ntlmssp.Negotiator as an HTTP transport.

---

Configuration

📅 Schedule: (UTC)

• Branch creation
  • ""
• Automerge
  • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Mend Renovate.