Flyte enables production-grade orchestration for machine learning workflows and data processing created to accelerate local workflows to production.

Flyte

<https://github.com/flyteorg/flyte/issues/3366|#3366 [Housekeeping] Replace satori/go.uuid in datacatalog>
Issue created by <https://github.com/hajapy|hajapy>
*Describe the issue*

Replace "<http://github.com/satori/go.uuid|github.com/satori/go.uuid>" in <https://github.com/flyteorg/datacatalog/blob/b526b0c1125ee9a4b087bc9b1bc46c40d361551c/pkg/repositories/models/dataset.go#L4|datacatalog> with a maintained library (possibly <https://github.com/gofrs/uuid|https://github.com/gofrs/uuid> or <https://github.com/google/uuid|https://github.com/google/uuid>).

*What if we do not do this?*

<http://github.com/satori/go.uuid|github.com/satori/go.uuid> is vulnerable to <https://nvd.nist.gov/vuln/detail/CVE-2021-3538|https://nvd.nist.gov/vuln/detail/CVE-2021-3538>, which is listed as a CRITICAL, which makes datacalog potentially vulnerable as well. Continuing to use an unmaintained library is also not ideal should additional vulnerabilities or issues come up in this library.

*Related component(s)*

datacatalog, flyte single binary

*Are you sure this issue hasn't been raised already?*

☑︎ Yes

*Have you read the Code of Conduct?*

☑︎ Yes
<https://github.com/flyteorg/flyte|flyteorg/flyte>

<https://github.com/flyteorg/flyte/issues/3366|#3366 [Housekeeping] Replace satori/go.uuid in datacatalog>
Issue closed as completed by <https://github.com/hamersaw|hamersaw>
<https://github.com/flyteorg/flyte|flyteorg/flyte>