Affected by GO-2024-2582 and 4 other vulnerabilities

GO-2024-2582: Minder trusts client-provided mapping from repo name to upstream ID in github.com/stacklok/minder

GO-2024-2864: Denial of service of Minder Server with attacker-controlled REST endpoint in github.com/stacklok/minder

GO-2024-2871: Stacklok Minder vulnerable to denial of service from maliciously crafted templates in github.com/stacklok/minder

GO-2024-2885: Denial of service of Minder Server from maliciously crafted GitHub attestations in github.com/stacklok/minder

GO-2024-2934: Minder affected by denial of service from maliciously configured Git repository in github.com/stacklok/minder

git

package

v0.0.35 Latest Latest Go to latest Published: Mar 13, 2024 License: Apache-2.0 Imports: 9 Imported by: 0

Details

Package git provides a client for interacting with Git providers

This section is empty.

This section is empty.

This section is empty.

type Git struct {
	// contains filtered or unexported fields
}

Git is the struct that contains the GitHub REST API client

func NewGit(token string) *Git

NewGit creates a new GitHub client

func (g *Git) Clone(ctx context.Context, url, branch string) (*git.Repository, error)

Clone clones a git repository

func (g *Git) GetToken() string

GetToken returns the token for the provider