lunny/git-lfs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
b9c8e1de4a
git-lfs/go.mod
Chris Darroch 82966f13c0 vendor,go.*: update x/crypto and dependencies 
Update the vendored golang.org/x/crypto module to the
latest version, which in turn updates the vendored copy
of the x/sys module.

While the portions of x/crypto vendored into this project do
not actually change at all, updating the module's entry in
vendor/modules.txt and go.{mod,sum} means we will not be
flagged by security scanners regarding CVE-2020-29652 in the
x/crypto/ssh library code.

The Git LFS client should not be affected by that security
issue, since we do not use the ssh component of the x/crypto
module.

The specific commands run to perform this update were:

  go get golang.org/x/crypto@latest &&
  go mod tidy && go mod vendor
2021-11-15 15:09:41 -08:00

33 lines
1.5 KiB
Modula-2
Raw Blame History

// The Git LFS project does not maintain a stable API or ABI for this module.
// Please do not import this module outside of the Git LFS project.
module github.com/git-lfs/git-lfs/v3
require (
github.com/avast/retry-go v2.4.2+incompatible
github.com/dpotapov/go-spnego v0.0.0-20210315154721-298b63a54430
github.com/git-lfs/gitobj/v2 v2.0.2
github.com/git-lfs/go-netrc v0.0.0-20210914205454-f0c862dd687a
github.com/git-lfs/pktline v0.0.0-20210330133718-06e9096e2825
github.com/git-lfs/wildmatch/v2 v2.0.1
github.com/inconshreveable/mousetrap v1.0.0 // indirect
github.com/leonelquinteros/gotext v1.5.0
github.com/mattn/go-isatty v0.0.4
github.com/olekukonko/ts v0.0.0-20171002115256-78ecb04241c0
github.com/pkg/errors v0.0.0-20170505043639-c605e284fe17
github.com/rubyist/tracerx v0.0.0-20170927163412-787959303086
github.com/spf13/cobra v0.0.3
github.com/spf13/pflag v1.0.3 // indirect
github.com/ssgelm/cookiejarparser v1.0.1
github.com/stretchr/testify v1.6.1
github.com/xeipuuv/gojsonpointer v0.0.0-20180127040702-4e3ac2762d5f // indirect
github.com/xeipuuv/gojsonreference v0.0.0-20180127040603-bd5ef7bd5415 // indirect
github.com/xeipuuv/gojsonschema v0.0.0-20170210233622-6b67b3fab74d
golang.org/x/crypto v0.0.0-20211108221036-ceb1ce70b4fa // indirect
golang.org/x/net v0.0.0-20210405180319-a5a99cb37ef4
golang.org/x/sync v0.0.0-20210220032951-036812b2e83c
golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1
golang.org/x/text v0.3.5 // indirect
)
go 1.11
Reference in New Issue View Git Blame Copy Permalink