I was just looking into building the istio/istio 1.3.4 binaries from source, and noticed that while the Wiki mentions that Go language version 1.13 is being used (for pre-built binaries I presume), the go.mod file in the repository still refers to Go 1.12.
Could anyone comment and advise on the proper use of Go language versions for building, if all we care for is making use of the latest security fixes shipped with 1.13?
If we use Go 1.13 to build but do not make any changes to the go.mod file, will we already get the security fixes and only miss out on the new language features?
Or is it necessary that we run
go mod edit -go=1.13 before starting the build?
How were official Istio binaries generated if, as I mentioned the Wiki proclaims, 1.13 has been used?
Many thanks & best regards,