[tuxxy]

I've been out of the loop on Golang security for a bit, but last I recalled there might have been some timing vulnerabilities in the crypto library.

Is this not the case anymore?

[PopsiclePete]

Bunch of stuff was discovered and fixed relatively promptly: https://golang.org/doc/devel/release.html

There was a pretty thorough audit that discovered some of those issues. I'm not aware of anything outstanding - they're pretty good about patching things promptly.