diff --git a/.github/workflows/build.yaml b/.github/workflows/build.yaml
index 55bf28d..65266e8 100644
--- a/.github/workflows/build.yaml
+++ b/.github/workflows/build.yaml
@@ -14,6 +14,18 @@ env:
   PKG_NAME: "vault-plugin-database-oracle"
 
 jobs:
+  cve-check:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Check OSV
+        id: osv-check
+        run: |
+          test $(curl -XPOST https://api.osv.dev/v1/query -d '{"package":{"name":"oracle-instantclient19.18-basic"}, "version": "19.18"}') = "{}"
+      - name: Check NIST NVD
+        id: nvd-check
+        run: |
+          test $(curl -sSL 'https://services.nvd.nist.gov/rest/json/cves/2.0?cpeName=cpe:2.3:a:oracle:instant_client:19.18:*' | jq .totalResults) -eq 0
+
   get-product-version:
     runs-on: ubuntu-latest
     outputs:
diff --git a/.go-version b/.go-version
index 769e37e..0bd54ef 100644
--- a/.go-version
+++ b/.go-version
@@ -1 +1 @@
-1.20.2
+1.20.4
diff --git a/Dockerfile b/Dockerfile
index f9491f1..9f091e1 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -18,7 +18,7 @@ RUN yum update -y && yum install -y  \
 		zip \
 		git
 
-ENV GOLANG_VERSION 1.20.2
+ENV GOLANG_VERSION 1.20.4
 
 RUN set -eux; \
 	url="https://golang.org/dl/go${GOLANG_VERSION}.linux-amd64.tar.gz"; \
diff --git a/Makefile b/Makefile
index 8fef98c..acc0c72 100644
--- a/Makefile
+++ b/Makefile
@@ -12,7 +12,7 @@ EXTERNAL_TOOLS=\
 
 default: dev
 
-# bin generates the releaseable binaries for vault-plugin-database-oracl0e
+# bin generates the releaseable binaries for vault-plugin-database-oracle
 bin: fmtcheck generate
 	@CGO_ENABLED=1 BUILD_TAGS='$(BUILD_TAGS)' XC_ARCH="amd64" XC_OS="linux" XC_OSARCH="linux/amd64" sh -c "'$(CURDIR)/scripts/build.sh'"