go-sdk
go-sdk copied to clipboard
blend
A composable toolbox of libraries to build everything from CLIs to enterprise applications.
## Found vulnerability ([SNYK-GOLANG-GITHUBCOMDGRIJALVAJWTGO-596515](https://security.snyk.io/vuln/SNYK-GOLANG-GITHUBCOMDGRIJALVAJWTGO-596515)) [github.com/spf13/cobra](https://github.com/spf13/cobra) `v1.1.1` uses [github.com/dgrijalva/jwt-go](https://github.com/dgrijalva/jwt-go) which is affected by [a known vulnerability](https://security.snyk.io/vuln/SNYK-GOLANG-GITHUBCOMDGRIJALVAJWTGO-596515) and [is no longer maintaned](https://github.com/dgrijalva/jwt-go#this-repository-is-no-longer-maintaned) so it should probably be upgraded to a newer version.
### The following modules are affected by volunerability [SNYK-GOLANG-GITHUBCOMJACKCPGPROTO3V2-1316251](https://security.snyk.io/vuln/SNYK-GOLANG-GITHUBCOMJACKCPGPROTO3V2-1316251): - github.com/jackc/pgproto3/[email protected] - github.com/jackc/pgproto3/[email protected] - github.com/jackc/pgproto3/[email protected] - github.com/jackc/pgproto3/[email protected] - github.com/jackc/pgproto3/[email protected] ``` $ ggdh 'github.com/jackc/pgproto3/[email protected]' github.com/blend/go-sdk ⬇ github.com/jackc/pgx/[email protected] ⬇ github.com/jackc/[email protected] ⬇ github.com/jackc/pgx/[email protected]...
- currently this will happen if a field is marked as `readonly` & `auto` - a field such as `created_at` could be auto and read-only
Consider the following example: ```go wg := sync.WaitGroup{} listener := makeWaitListener(&wg) log.Listen(webutil.HTTPResponse, "stats", webutil.NewHTTPResponseEventListener(listener)) // ... wg.Add(1) log.Trigger(context.Background(), *event) wg.Wait() wg.Add(1) log.Trigger(context.Background(), *event) wg.Wait() // This should panic. log.Trigger(context.Background(), *event)...
May be related to: https://github.com/golang/go/issues/34123#issuecomment-534296067 I still need to reproduce this in a "minimal" and "open" fashion but we had an internal file where line 43 caused a panic in...
To reproduce (at 480ad70d161406204ef58d3528b0ac17cf64bf0a), first listen to port 5007 with netcat and then run this sample program ```go package main import ( "fmt" "time" "github.com/blend/go-sdk/r2" ) func mustNil(err error) {...
**What happened**: Function doesn't compare equal to itself. **What you expected to happen**: ```go it := assert.New(t) it.Equal(f, f) it.ReferenceEqual(f, f) ``` to pass. (What's worse, `it.ReferenceEqual()` panics) **How to...
See https://github.com/blend/go-sdk/blob/e7d08d510b515a147af92fa3a8f0483b612770c6/stats/tracing/oauthtrace/tracer.go#L30-L33 The `span.type=http` tag and `operationName=http.request` in the `StartSpanFromContext()` don't seem specific enough to OAuth. The `OperationHTTPRequest` is used in `stats/tracing/oauthtrace`, `stats/tracing/r2trace` and `stats/tracing/webtrace` (as of e7d08d510b515a147af92fa3a8f0483b612770c6) and `SpanTypeHTTP`...
**What happened**: The remote address reports as localhost for requests fronted by a sidecar proxy. **What you expected to happen**: Expected the `X-Forwarded-For` address to be the value used, not...
When [checking][1] ```go if r.Client.Transport == nil { r.Client.Transport = &http.Transport{} } ``` the check will fail if the transport is a typed `nil`. For example: ```go package main import...