-
Notifications
You must be signed in to change notification settings - Fork 26
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Take security patch #414
Take security patch #414
Conversation
internal/storage/secrets.go
Outdated
if err != nil { | ||
return "", err | ||
} | ||
b, err := term.ReadPassword(intFd) |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I found https://pkg.go.dev/github.com/charmbracelet/x/term which takes a uintptr for ReadPassword
too
.goreleaser.yml
Outdated
@@ -118,10 +118,6 @@ nfpms: | |||
builds: ["linux-amd64-musl", "linux-arm64-musl"] | |||
formats: ["apk"] | |||
|
|||
furies: |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
do we not push to gemfury now?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
It's marked as invalid by goreleaser, but it's in their documentation...
Wha?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I'll reinstate it and raise another issue.
I created an issue on goreleaser for the v2.3.0 regression: goreleaser/goreleaser#5138 |
Description
1.22.7 published a security patch. This takes that patch.
Changes
Bump go.mod to take patch and fix subsequent lint issues
Testing
Review.