diff options
author | Jason Song <i@wolfogre.com> | 2023-03-16 18:09:11 +0800 |
---|---|---|
committer | GitHub <noreply@github.com> | 2023-03-16 18:09:11 +0800 |
commit | 19bfea6d7dd7a541a097a403937f8c66ccfa3adf (patch) | |
tree | 6698f6191271feec889d932440284468745c5b9f /go.mod | |
parent | 623a539f23ba2a3d051a522d679780aefcf06e6f (diff) | |
download | gitea-19bfea6d7dd7a541a097a403937f8c66ccfa3adf.tar.gz gitea-19bfea6d7dd7a541a097a403937f8c66ccfa3adf.zip |
Update act (#23512)
Update replace:
```diff
- replace github.com/nektos/act => gitea.com/gitea/act v0.234.2-0.20230131074955-e46ede1b1744
+ replace github.com/nektos/act => gitea.com/gitea/act v0.243.1
```
Update require:
```diff
- github.com/nektos/act v0.0.0
+ github.com/nektos/act v0.2.43
```
Actually, `v0.2.43` doesn't work, it will be replaced by `gitea/act`, so
it's OK to put any version here. But `gitea/act` is based on
`nektos/act`, so keeping the right upstream version will make security
dependabot help.
BTW, the [security
report](https://github.com/go-gitea/gitea/security/dependabot/20) is
false positive, we don't use the artifact server in act, see #22738.
Diffstat (limited to 'go.mod')
-rw-r--r-- | go.mod | 9 |
1 files changed, 4 insertions, 5 deletions
@@ -78,7 +78,7 @@ require ( github.com/minio/minio-go/v7 v7.0.49 github.com/minio/sha256-simd v1.0.0 github.com/msteinert/pam v1.1.0 - github.com/nektos/act v0.0.0 + github.com/nektos/act v0.2.43 github.com/nfnt/resize v0.0.0-20180221191011-83c6a9932646 github.com/niklasfasching/go-org v1.6.5 github.com/oliamb/cutter v0.2.2 @@ -106,7 +106,7 @@ require ( golang.org/x/crypto v0.6.0 golang.org/x/net v0.7.0 golang.org/x/oauth2 v0.5.0 - golang.org/x/sys v0.5.0 + golang.org/x/sys v0.6.0 golang.org/x/text v0.7.0 golang.org/x/tools v0.6.0 google.golang.org/grpc v1.53.0 @@ -174,7 +174,6 @@ require ( github.com/go-asn1-ber/asn1-ber v1.5.4 // indirect github.com/go-enry/go-oniguruma v1.2.1 // indirect github.com/go-git/gcfg v1.5.0 // indirect - github.com/go-ini/ini v1.67.0 // indirect github.com/go-openapi/analysis v0.21.4 // indirect github.com/go-openapi/errors v0.20.3 // indirect github.com/go-openapi/inflect v0.19.0 // indirect @@ -240,7 +239,7 @@ require ( github.com/prometheus/client_model v0.3.0 // indirect github.com/prometheus/common v0.37.0 // indirect github.com/prometheus/procfs v0.8.0 // indirect - github.com/rhysd/actionlint v1.6.22 // indirect + github.com/rhysd/actionlint v1.6.23 // indirect github.com/rivo/uniseg v0.4.4 // indirect github.com/robfig/cron v1.2.0 // indirect github.com/rogpeppe/go-internal v1.9.0 // indirect @@ -287,7 +286,7 @@ replace github.com/shurcooL/vfsgen => github.com/lunny/vfsgen v0.0.0-20220105142 replace github.com/blevesearch/zapx/v15 v15.3.6 => github.com/zeripath/zapx/v15 v15.3.6-alignment-fix -replace github.com/nektos/act => gitea.com/gitea/act v0.234.2-0.20230131074955-e46ede1b1744 +replace github.com/nektos/act => gitea.com/gitea/act v0.243.1 exclude github.com/gofrs/uuid v3.2.0+incompatible |