replace uuid package due to security issue

[missdeer]

No description provided.

[coveralls]

Coverage remained the same at 81.354% when pulling d576684 on missdeer:master into c653f95 on bmaupin:master.

[bmaupin]

This pull request is a bit confusing because it looks like it's based on some old commits and then merged with the latest from master. I'll see if I can make sense of it anyway!

I'd been meaning to look into this because satori/go.uuid doesn't seem to be maintained. But you mentioned there's a security issue with it as well? Could you provide more details on that?

Thanks!

[missdeer]

Hi,

https://github.com/satori/go.uuid has a critical defect where it doesn't generate random UUIDV4s satori/go.uuid#73 and should be replaced as the maintainer has been unresponsive for 5 months with the bug still open.
This PR just replace it with https://github.com/google/uuid.

Regards,
Fan

[bmaupin]

I looked into the alternative UUID libraries and settled on gofrs/uuid. It's a fork of satori/go.uuid with a bunch of issues fixed and it looks like it has more community support than google/uuid at the moment.

Thanks for your help!