In this repo, go-multierror package is being used and it contain MPL 2.0 License which is being tagged as vulnerable via VeraCode.
I was wondering if there's a way around that? or what should i do next ?
i am certainly new to this area..