The github.com/gin-gonic/gin dependency has a http response splitting vulnerability in versions less than 1.7.0: https://github.com/gin-gonic/gin/pull/2632 Upgrading the dependency to 1.7.0 or higher will fix this vulnerability (current version is 1.7.1)