Ishmael Dönmez

Same problem with `charmbracelet/x/ansi` module: ``` ; go install -ldflags "-s -w" github.com/antonmedv/fx@latest go: downloading github.com/charmbracelet/x/ansi v0.9.2 go/pkg/mod/github.com/charmbracelet/[email protected]/align.go:6:2: github.com/charmbracelet/x/[email protected]: verifying module: checksum mismatch downloaded: h1:VxqhWbZIXFl3/ufdpzcwlaPZRPoaOj8r+KtyeRG3C0g= sum.golang.org: h1:92AGsQmNTRMzuzHEYfCdjQeUzTrgE1vfO5/7fEVoXdY= SECURITY ERROR This...

Works on personal computer => must be the corporate proxy doing something stupid.

Reopening, the issue is reproducible with `export GOPROXY=direct` ``` ; export GOPROXY=direct ; go install -ldflags="-s -w" github.com/charmbracelet/gum@latest go: downloading github.com/charmbracelet/x/ansi v0.9.2 go: downloading github.com/charmbracelet/glamour v0.10.0 go/pkg/mod/github.com/charmbracelet/[email protected]/align.go:6:2: github.com/charmbracelet/x/[email protected]: verifying module:...

cc @bashbunni This hopefully is not a security problem, but would still be nice to figure out what's happening.

`@latest` should use the latest changes and https://github.com/charmbracelet/gum/blob/main/go.sum#L31 shows the same dependency as my error output.

Pinging this again. In summary, we have two charm modules failing checksum: ``` github.com/charmbracelet/[email protected]: verifying module: checksum mismatch downloaded: h1:41/IYxsmIpaBjkMXjrjLwsHDBlucd5at6tY5n2r/qn4= sum.golang.org: h1:MtZvfwsYCx8jEPFJm3rIBFIMZUfUJ765oX8V6kXldcY= ``` and ``` github.com/charmbracelet/x/[email protected]: verifying module: checksum mismatch...

There is probably something wrong with the release process, as the new `charmbracelet/x/[email protected]` fails checksum verification as well: ``` go/pkg/mod/github.com/charmbracelet/[email protected]/profile.go:7:2: github.com/charmbracelet/x/[email protected]: verifying module: checksum mismatch downloaded: h1:LT77A3bpevRD0yZ5NDR5nonS7N83mxzzGwuZcTGezLE= sum.golang.org: h1:rL3Koar5XvX0pHGfovN03f5cxLbCF2YvLeyz7D2jVDQ= ```...

``` ; sudo rm -rf ~/go/ ; export GOPROXY=direct ; go mod download github.com/charmbracelet/x/[email protected] go: github.com/charmbracelet/x/[email protected]: verifying module: checksum mismatch downloaded: h1:LT77A3bpevRD0yZ5NDR5nonS7N83mxzzGwuZcTGezLE= sum.golang.org: h1:rL3Koar5XvX0pHGfovN03f5cxLbCF2YvLeyz7D2jVDQ= SECURITY ERROR This download does NOT...

``` ; go env AR='ar' CC='cc' CGO_CFLAGS='-O2 -g' CGO_CPPFLAGS='' CGO_CXXFLAGS='-O2 -g' CGO_ENABLED='1' CGO_FFLAGS='-O2 -g' CGO_LDFLAGS='-O2 -g' CXX='c++' GCCGO='gccgo' GO111MODULE='' GOARCH='arm64' GOARM64='v8.0' GOAUTH='netrc' GOBIN='' GOCACHE='/Users/ismail/Library/Caches/go-build' GOCACHEPROG='' GODEBUG='' GOENV='/Users/ismail/Library/Application Support/go/env' GOEXE='' GOEXPERIMENT=''...

I think there's value in updating to latest glibc for performance reasons. Most tools will use an older glibc fine, but they won't enable new APIs. Also note that some...