82966f13c0
Update the vendored golang.org/x/crypto module to the latest version, which in turn updates the vendored copy of the x/sys module. While the portions of x/crypto vendored into this project do not actually change at all, updating the module's entry in vendor/modules.txt and go.{mod,sum} means we will not be flagged by security scanners regarding CVE-2020-29652 in the x/crypto/ssh library code. The Git LFS client should not be affected by that security issue, since we do not use the ssh component of the x/crypto module. The specific commands run to perform this update were: go get golang.org/x/crypto@latest && go mod tidy && go mod vendor
33 lines
1.5 KiB
Modula-2
33 lines
1.5 KiB
Modula-2
// The Git LFS project does not maintain a stable API or ABI for this module.
|
|
// Please do not import this module outside of the Git LFS project.
|
|
module github.com/git-lfs/git-lfs/v3
|
|
|
|
require (
|
|
github.com/avast/retry-go v2.4.2+incompatible
|
|
github.com/dpotapov/go-spnego v0.0.0-20210315154721-298b63a54430
|
|
github.com/git-lfs/gitobj/v2 v2.0.2
|
|
github.com/git-lfs/go-netrc v0.0.0-20210914205454-f0c862dd687a
|
|
github.com/git-lfs/pktline v0.0.0-20210330133718-06e9096e2825
|
|
github.com/git-lfs/wildmatch/v2 v2.0.1
|
|
github.com/inconshreveable/mousetrap v1.0.0 // indirect
|
|
github.com/leonelquinteros/gotext v1.5.0
|
|
github.com/mattn/go-isatty v0.0.4
|
|
github.com/olekukonko/ts v0.0.0-20171002115256-78ecb04241c0
|
|
github.com/pkg/errors v0.0.0-20170505043639-c605e284fe17
|
|
github.com/rubyist/tracerx v0.0.0-20170927163412-787959303086
|
|
github.com/spf13/cobra v0.0.3
|
|
github.com/spf13/pflag v1.0.3 // indirect
|
|
github.com/ssgelm/cookiejarparser v1.0.1
|
|
github.com/stretchr/testify v1.6.1
|
|
github.com/xeipuuv/gojsonpointer v0.0.0-20180127040702-4e3ac2762d5f // indirect
|
|
github.com/xeipuuv/gojsonreference v0.0.0-20180127040603-bd5ef7bd5415 // indirect
|
|
github.com/xeipuuv/gojsonschema v0.0.0-20170210233622-6b67b3fab74d
|
|
golang.org/x/crypto v0.0.0-20211108221036-ceb1ce70b4fa // indirect
|
|
golang.org/x/net v0.0.0-20210405180319-a5a99cb37ef4
|
|
golang.org/x/sync v0.0.0-20210220032951-036812b2e83c
|
|
golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1
|
|
golang.org/x/text v0.3.5 // indirect
|
|
)
|
|
|
|
go 1.11
|