setup-go

You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

History

Matthew Hughes e75c3e80bc Bump `form-data` to bring in fix for critical vulnerability (#618 ) The vulnerability: $ npm audit --audit-level=high # npm audit report form-data >=4.0.0 <4.0.4 \|\| <2.5.4 Severity: critical form-data uses unsafe random function in form-data for choosing boundary - https://github.com/advisories/GHSA-fjxv-7rqg-78g4 form-data uses unsafe random function in form-data for choosing boundary - https://github.com/advisories/GHSA-fjxv-7rqg-78g4 fix available via `npm audit fix` node_modules/@azure/core-http/node_modules/form-data node_modules/@types/node-fetch/node_modules/form-data node_modules/form-data 1 critical severity vulnerability To address all issues, run: npm audit fix This change is the result of from running `npm audit fix` and then using[1] to update licenses via `licensed cache`. It doesn't look like `dependabot` previously raised any PRs for this dependency, so this bumps it from `4.0.0` to `4.0.4`, see the changelog[2] for details. Link: https://github.com/licensee/licensed [1] Link: https://github.com/form-data/form-data/blob/v4.0.4/CHANGELOG.md [2]		2 months ago
..
@actions	Bump @actions/tool-cache from 2.0.1 to 2.0.2 (#591 )	4 months ago
@azure	Update dependencies for node20 (#445 )	2 years ago
@fastify	Update dependencies for node20 (#445 )	2 years ago
@opentelemetry	Update dependencies for node20 (#445 )	2 years ago
@protobuf-ts	upgrade actions/cache to 4.0.2 (#568 )	8 months ago
@types	Bump undici from 5.28.2 to 5.28.3 (#465 )	2 years ago
abort-controller.dep.yml	Implementation of caching functionality for setup-go action (#228 )	3 years ago
asynckit.dep.yml	Implementation of caching functionality for setup-go action (#228 )	3 years ago
balanced-match.dep.yml	Implementation of caching functionality for setup-go action (#228 )	3 years ago
brace-expansion.dep.yml	Bump typescript from 5.4.2 to 5.8.3 (#538 )	4 months ago
call-bind-apply-helpers.dep.yml	Bump `form-data` to bring in fix for critical vulnerability (#618 )	2 months ago
combined-stream.dep.yml	Implementation of caching functionality for setup-go action (#228 )	3 years ago
concat-map.dep.yml	Implementation of caching functionality for setup-go action (#228 )	3 years ago
delayed-stream.dep.yml	Implementation of caching functionality for setup-go action (#228 )	3 years ago
dunder-proto.dep.yml	Bump `form-data` to bring in fix for critical vulnerability (#618 )	2 months ago
es-define-property.dep.yml	Bump `form-data` to bring in fix for critical vulnerability (#618 )	2 months ago
es-errors.dep.yml	Bump `form-data` to bring in fix for critical vulnerability (#618 )	2 months ago
es-object-atoms.dep.yml	Bump `form-data` to bring in fix for critical vulnerability (#618 )	2 months ago
es-set-tostringtag.dep.yml	Bump `form-data` to bring in fix for critical vulnerability (#618 )	2 months ago
event-target-shim.dep.yml	Implementation of caching functionality for setup-go action (#228 )	3 years ago
events.dep.yml	Implementation of caching functionality for setup-go action (#228 )	3 years ago
form-data-2.5.5.dep.yml	Bump `form-data` to bring in fix for critical vulnerability (#618 )	2 months ago
form-data-4.0.4.dep.yml	Bump `form-data` to bring in fix for critical vulnerability (#618 )	2 months ago
function-bind.dep.yml	Bump `form-data` to bring in fix for critical vulnerability (#618 )	2 months ago
get-intrinsic.dep.yml	Bump `form-data` to bring in fix for critical vulnerability (#618 )	2 months ago
get-proto.dep.yml	Bump `form-data` to bring in fix for critical vulnerability (#618 )	2 months ago
gopd.dep.yml	Bump `form-data` to bring in fix for critical vulnerability (#618 )	2 months ago
has-symbols.dep.yml	Bump `form-data` to bring in fix for critical vulnerability (#618 )	2 months ago
has-tostringtag.dep.yml	Bump `form-data` to bring in fix for critical vulnerability (#618 )	2 months ago
hasown.dep.yml	Bump `form-data` to bring in fix for critical vulnerability (#618 )	2 months ago
math-intrinsics.dep.yml	Bump `form-data` to bring in fix for critical vulnerability (#618 )	2 months ago
mime-db.dep.yml	Implementation of caching functionality for setup-go action (#228 )	3 years ago
mime-types.dep.yml	Implementation of caching functionality for setup-go action (#228 )	3 years ago
minimatch.dep.yml	Implementation of caching functionality for setup-go action (#228 )	3 years ago
node-fetch.dep.yml	Update dependencies for node20 (#445 )	2 years ago
process.dep.yml	Implementation of caching functionality for setup-go action (#228 )	3 years ago
safe-buffer.dep.yml	Bump `form-data` to bring in fix for critical vulnerability (#618 )	2 months ago
sax.dep.yml	Update dependencies for node20 (#445 )	2 years ago
semver-6.3.1.dep.yml	Update dependencies for node20 (#445 )	2 years ago
semver-7.7.1.dep.yml	Bump ts-jest from 29.1.2 to 29.3.2 (#582 )	6 months ago
tr46.dep.yml	Implementation of caching functionality for setup-go action (#228 )	3 years ago
tslib-1.14.1.dep.yml	Implementation of caching functionality for setup-go action (#228 )	3 years ago
tslib-2.6.2.dep.yml	Update dependencies for node20 (#445 )	2 years ago
tunnel.dep.yml	Add Licensed workflow and configuration files	5 years ago
typescript.dep.yml	Use the new cache service: upgrade `@actions/cache` to `^4.0.0` (#531 )	9 months ago
undici-types.dep.yml	Update dependencies for node20 (#445 )	2 years ago
undici.dep.yml	Bump undici from 5.28.5 to 5.29.0 (#594 )	4 months ago
uuid.dep.yml	Bump @actions/tool-cache from 2.0.1 to 2.0.2 (#591 )	4 months ago
webidl-conversions.dep.yml	Implementation of caching functionality for setup-go action (#228 )	3 years ago
whatwg-url.dep.yml	Implementation of caching functionality for setup-go action (#228 )	3 years ago
xml2js.dep.yml	Update xml2js (#370 )	3 years ago
xmlbuilder.dep.yml	Implementation of caching functionality for setup-go action (#228 )	3 years ago