head	1.2;
access;
symbols
	pkgsrc-2024Q2:1.1.0.6
	pkgsrc-2024Q2-base:1.1
	pkgsrc-2024Q1:1.1.0.4
	pkgsrc-2024Q1-base:1.1
	pkgsrc-2023Q4:1.1.0.2
	pkgsrc-2023Q4-base:1.1;
locks; strict;
comment	@# @;


1.2
date	2024.08.06.01.02.35;	author tnn;	state dead;
branches;
next	1.1;
commitid	5kift4bx5542nHkF;

1.1
date	2023.12.22.19.14.43;	author bsiegert;	state Exp;
branches;
next	;
commitid	4bkFzh7kH5jfJuRE;


desc
@@


1.2
log
@git-lfs: update to 3.5.1

- FETCH_HEAD as a remote source (from a plain git fetch)
- better support for detection of the system gitattributes file
- configuration options for the SSH protocol
- bugfixes
@
text
@$NetBSD: patch-go.mod,v 1.1 2023/12/22 19:14:43 bsiegert Exp $

--- go.mod.orig	2023-12-13 18:56:25.000000000 +0000
+++ go.mod
@@@@ -18,9 +18,9 @@@@ require (
 	github.com/ssgelm/cookiejarparser v1.0.1
 	github.com/stretchr/testify v1.6.1
 	github.com/xeipuuv/gojsonschema v0.0.0-20170210233622-6b67b3fab74d
-	golang.org/x/net v0.7.0
+	golang.org/x/net v0.19.0
 	golang.org/x/sync v0.1.0
-	golang.org/x/sys v0.5.0
+	golang.org/x/sys v0.15.0
 )
 
 require (
@@@@ -38,8 +38,8 @@@@ require (
 	github.com/spf13/pflag v1.0.5 // indirect
 	github.com/xeipuuv/gojsonpointer v0.0.0-20180127040702-4e3ac2762d5f // indirect
 	github.com/xeipuuv/gojsonreference v0.0.0-20180127040603-bd5ef7bd5415 // indirect
-	golang.org/x/crypto v0.0.0-20220411220226-7b82a4e95df4 // indirect
-	golang.org/x/text v0.7.0 // indirect
+	golang.org/x/crypto v0.17.0 // indirect
+	golang.org/x/text v0.14.0 // indirect
 	gopkg.in/yaml.v3 v3.0.1 // indirect
 )
 
@


1.1
log
@git-lfs: update to 3.4.1 (security)

This fixes the following vulnerability:

Vulnerability: GO-2023-1571
    Denial of service via crafted HTTP/2 stream in net/http and golang.org/x/net
  More info: https://pkg.go.dev/vuln/GO-2023-1571
  Module: golang.org/x/net
    Found in: golang.org/x/net@@v0.0.0-20211112202133-69e39bad7dc2
    Fixed in: golang.org/x/net@@v0.7.0

3.4.1
-----
This is a bugfix release which resolves a bug introduced in the
v3.4.0 release, where Git LFS may crash if the Git credential manager
returns credentials containing one or more empty fields.

3.4.0
-----
This release is a feature release which includes support for generating
shell scripts for command-line tab-completion of Git LFS commands with
the new git-lfs-completion(1) command, providing multiple headers to Git
credential helpers (a new feature as of Git 2.41), and installing Git LFS
with a Git configuration file stored under the XDG configuration path.
@
text
@d1 1
a1 1
$NetBSD$
@