sourcegraph

mirror of https://github.com/sourcegraph/sourcegraph.git synced 2026-02-06 16:51:55 +00:00

History

Keegan Carruthers-Smith 11e13d6583 gomod: update or vendor buildkit, docker, hostmatcher and saml to resolve CVEs (#60130 ) We had multiple CVEs reported for these dependencies. I don't think this affected us in practice, but this is a step towards a clean scan from trivy. I updated to the minimum version which supports the fix. go get github.com/moby/buildkit@v0.12.5 go get github.com/docker/docker@v24.0.7 go get -u github.com/crewjam/saml In the case of code.gitea.io/gitea@v1.18.0/modules/hostmatcher we couldn't update it due to lots of issues popping up in random transitive dependencies. However, we don't depend on the whole gitea project, rather just a tiny self contained package in it. So we vendor it in. Test Plan: CI and "trivy fs go.mod" reporting no issues.		2024-02-05 13:14:15 +02:00
..
BUILD.bazel	gomod: update or vendor buildkit, docker, hostmatcher and saml to resolve CVEs (#60130 )	2024-02-05 13:14:15 +02:00
client_test.go	aspect workflows: add initial aspect workflow yaml (#56569 )	2023-11-24 11:52:17 +02:00
client.go	gomod: update or vendor buildkit, docker, hostmatcher and saml to resolve CVEs (#60130 )	2024-02-05 13:14:15 +02:00
CODENOTIFY	all: remove tsenart from CODENOTIFY (#41035 )	2022-08-30 09:35:14 +02:00
doc.go
external.go	Tracing: final cleanups (#54694 )	2023-07-13 10:16:11 +02:00
noop_response_cache.go	Use uncached doer for downloading packages (#48977 )	2023-03-22 18:56:31 +00:00
redis_logger_middleware_test.go	Fix bug where a nil reader could crash the redis middleware logger (#49571 )	2023-03-17 09:53:10 +02:00
redis_logger_middleware.go	logger: update log lib and remove use of description (#57690 )	2023-10-18 17:29:08 +02:00
transport.go	httpcli: introduce mutable, wrapped transports (#39775 )	2022-08-02 13:12:10 +00:00