There is a new pull request by nilium against master on the void-packages repository

https://github.com/nilium/ecks-bops-packages go
https://github.com/void-linux/void-packages/pull/24109

go: update to 1.14.7.
This is a security release for CVE-2020-16845
(<https://golang.org/issue/40618>).

A patch file from https://github.com/void-linux/void-packages/pull/24109.patch is attached