Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Cleanup go.mod replace directives that are no longer needed. #786

Merged
merged 3 commits into from Aug 20, 2021
Merged

Cleanup go.mod replace directives that are no longer needed. #786

merged 3 commits into from Aug 20, 2021

Conversation

mattmoyer
Copy link
Contributor

This change removes several replace directives that we previously needed to make sure we got a working and secure set of Go module dependencies. Due to some of our recent direct and transitive dependency upgrades, it turns out we can remove all of these!

I confirmed manually that the output of go list -deps -json all was identical before and after these changes.

Release note:

NONE

@codecov
Copy link

codecov bot commented Aug 17, 2021
edited

Codecov Report

Merging #786 (03a8160) into main (c4727d5) will not change coverage.
The diff coverage is n/a.

Impacted file tree graph

@@           Coverage Diff           @@
##             main     #786   +/-   ##
=======================================
  Coverage   79.37%   79.37%           
=======================================
  Files         127      127           
  Lines        8639     8639           
=======================================
  Hits         6857     6857           
+ Misses       1559     1558    -1     
- Partials      223      224    +1
Impacted Files Coverage Δ
...l/localuserauthenticator/localuserauthenticator.go 57.40% <0.00%> (ø)

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update c4727d5...03a8160. Read the comment docs.

@enj
Copy link
Contributor

enj commented Aug 17, 2021

132d909 does not look valid to me since we pick up github.com/dgrijalva/jwt-go?

@mattmoyer
Copy link
Contributor Author

132d909 does not look valid to me since we pick up github.com/dgrijalva/jwt-go?

We don't anymore, it turns out:

$ go list -deps all | grep -F "jwt-go"
github.com/form3tech-oss/jwt-go

@mattmoyer mattmoyer force-pushed the cleanup-go-mod branch 3 times, most recently from 842c8ba to 1b5aeb7 Compare August 17, 2021 18:00
@mattmoyer mattmoyer force-pushed the cleanup-go-mod branch 2 times, most recently from 6a53e05 to 80c7e0a Compare August 18, 2021 22:03
@mattmoyer
Undo dep hacks to work around gRPC example module.
4f53128 
This is essentially reverting 87c7e89.

Signed-off-by: Matt Moyer <moyerm@vmware.com>
@mattmoyer
Drop replace directive for oleiade/reflections.
f379eee 
This is reverting 8358c26.

Signed-off-by: Matt Moyer <moyerm@vmware.com>
@mattmoyer
Remove replace directive for dgrijalva/jwt-go.
03a8160 
We no longer have a transitive dependency on this older repository, so we don't need the replace directive anymore.

There is a new fork of this that we should move to (https://github.com/golang-jwt/jwt), but we can't easily do that until a couple of our direct dependencies upgrade.

This is a revert of d162cb9.

Signed-off-by: Matt Moyer <moyerm@vmware.com>
@mattmoyer mattmoyer merged commit b9d186e into vmware-tanzu:main Aug 20, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@enj enj enj approved these changes

Assignees
No one assigned
Labels
cla-not-required
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@mattmoyer @enj @vmwclabot