Affected by GO-2023-1515 and 1 other vulnerabilities

GO-2023-1515: Denial of service when processing Git credentials in github.com/rancher/wrangler

GO-2023-1519: Command injection in github.com/rancher/wrangler

The highest tagged major version is v3.

git

package

v0.8.3 Latest Latest Go to latest Published: Jul 2, 2021 License: Apache-2.0 Imports: 21 Imported by: 1

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

This section is empty.

This section is empty.

This section is empty.

type Git struct {
	URL       string
	Directory string
	// contains filtered or unexported fields
}

func NewGit(directory, url string, opts *Options) (*Git, error)

func (g *Git) Clone(branch string) error

Clone runs git clone with depth 1

func (g *Git) Ensure(commit string) error

Ensure runs git clone, clean DIRTY contents and fetch the latest commit

func (g *Git) Head(branch string) (string, error)

Head runs git clone on directory(if not exist), reset dirty content and return the HEAD commit

func (g *Git) LsRemote(branch string, commit string) (string, error)

LsRemote runs ls-remote on git repo and returns the HEAD commit SHA

func (g *Git) Update(branch string) (string, error)

Update updates git repo if remote sha has changed

type Options struct {
	Credential        *corev1.Secret
	CABundle          []byte
	InsecureTLSVerify bool
	Headers           map[string]string
}