vndr issues

Results 16 vndr issues

Sort by recently updated

cache cloned git repositories

Running `vndr` with a `vendor.conf` which contains some large repositories can take quite some time to clone them all every time. This is particularly apparent when iterating adding transitive dependencies...

ijc

Possible vendor.conf syntax to allow use of tags without downsides of retagging

In https://github.com/docker/swarmkit/pull/2220 I proposed moving some vendoring from using hashes to using tagged releases, however it was pointed out that this is vulnerable to (possibly even malicious) retagging by upstreams....

ijc

vndr init doesn't get some of the dependencies

For example - it will get the `github.com/mattn/go-colorable` and `github.com/mattn/go-isatty` for `github.com/fatih/color`, but will not get the transitive dependency of `golang.org/x/sys/unix` from https://github.com/mattn/go-isatty/blob/master/isatty_solaris.go#L7

DmitriyMV

vndr
vndr copied to clipboard

Metadata

cache cloned git repositories

Possible vendor.conf syntax to allow use of tags without downsides of retagging

vndr init doesn't get some of the dependencies

Handling of nested-vendoring

update to go1.18, go1.19, update actions, and replace deprecated io/ioutil

Migrate to Go modules

← Metadata

Owner

Metadata

vndr vndr copied to clipboard

Metadata

cache cloned git repositories

Possible vendor.conf syntax to allow use of tags without downsides of retagging

vndr init doesn't get some of the dependencies

Handling of nested-vendoring

update to go1.18, go1.19, update actions, and replace deprecated io/ioutil

Migrate to Go modules

← Metadata

Owner

Metadata

vndr
vndr copied to clipboard