-
Notifications
You must be signed in to change notification settings - Fork 16
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
leiningen.exec/deps fails with TLS error #26
Comments
Debugged this function
Seems like
Not sure how it worked before, but should these repos have https links instead? |
Currently I solved it like this
But I think it would be nice to have more secure defaults in lein-exec itself, no? |
Thanks for the report. Strangely, I do not see the errors when exec'ing the same code with Lein 2.7.1 and lein-exec 0.3.6. Which version of Leiningen and lein-exec are you using? |
|
Anyway there is clearly unsafe link hardcoded in the projects code, which allows mim attacks. I can prepare a PR which fixes that problem. |
@edvorg True. Happy to receive a PR. |
use https for clojars repo fix #26
Hi, strangely I get following error
when executing code
While lein itself has no issues with fetching dependencies.
The text was updated successfully, but these errors were encountered: