From 47729bba1fdbe50e06ec2a6b59f3cb7d325e2021 Mon Sep 17 00:00:00 2001
From: Franco <48300215+fhielpos@users.noreply.github.com>
Date: Tue, 20 Aug 2024 13:34:58 +0200
Subject: [PATCH] Fix vulnerabilities (#371)

---
 .nancy-ignore | 5 ++---
 go.mod        | 2 ++
 go.sum        | 4 ++--
 3 files changed, 6 insertions(+), 5 deletions(-)

diff --git a/.nancy-ignore b/.nancy-ignore
index 4b70161c..ceea8eae 100644
--- a/.nancy-ignore
+++ b/.nancy-ignore
@@ -1,3 +1,2 @@
-CVE-2024-35192 until=2024-07-11 # github.com/aquasecurity/trivy@v0.50.1
-CVE-2019-25210 until=2024-07-11 # helm.sh/helm/v3@v3.15.1
-CVE-2020-8561 until=2024-07-11 # k8s.io/apiserver@v0.30.1
+CVE-2019-25210 until=2024-09-19 # helm.sh/helm/v3@v3.15.1
+CVE-2020-8561 until=2024-09-19 # k8s.io/apiserver@v0.30.1
diff --git a/go.mod b/go.mod
index de7a3780..d9eb707d 100644
--- a/go.mod
+++ b/go.mod
@@ -251,3 +251,5 @@ replace github.com/go-git/go-git/v5 v5.10.1 => github.com/go-git/go-git/v5 v5.11
 replace go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.42.0 => go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.47.0
 
 replace github.com/moby/buildkit v0.12.3 => github.com/moby/buildkit v0.12.5
+
+replace github.com/hashicorp/go-getter v1.7.4 => github.com/hashicorp/go-getter v1.7.6
diff --git a/go.sum b/go.sum
index 280f9ce7..6800e778 100644
--- a/go.sum
+++ b/go.sum
@@ -685,8 +685,8 @@ github.com/hashicorp/errwrap v1.1.0 h1:OxrOeh75EUXMY8TBjag2fzXGZ40LB6IKw45YeGUDY
 github.com/hashicorp/errwrap v1.1.0/go.mod h1:YH+1FKiLXxHSkmPseP+kNlulaMuP3n2brvKWEqk/Jc4=
 github.com/hashicorp/go-cleanhttp v0.5.2 h1:035FKYIWjmULyFRBKPs8TBQoi0x6d9G4xc9neXJWAZQ=
 github.com/hashicorp/go-cleanhttp v0.5.2/go.mod h1:kO/YDlP8L1346E6Sodw+PrpBSV4/SoxCXGY6BqNFT48=
-github.com/hashicorp/go-getter v1.7.4 h1:3yQjWuxICvSpYwqSayAdKRFcvBl1y/vogCxczWSmix0=
-github.com/hashicorp/go-getter v1.7.4/go.mod h1:W7TalhMmbPmsSMdNjD0ZskARur/9GJ17cfHTRtXV744=
+github.com/hashicorp/go-getter v1.7.6 h1:5jHuM+aH373XNtXl9TNTUH5Qd69Trve11tHIrB+6yj4=
+github.com/hashicorp/go-getter v1.7.6/go.mod h1:W7TalhMmbPmsSMdNjD0ZskARur/9GJ17cfHTRtXV744=
 github.com/hashicorp/go-multierror v1.1.1 h1:H5DkEtf6CXdFp0N0Em5UCwQpXMWke8IA0+lD48awMYo=
 github.com/hashicorp/go-multierror v1.1.1/go.mod h1:iw975J/qwKPdAO1clOe2L8331t/9/fmwbPZ6JB6eMoM=
 github.com/hashicorp/go-safetemp v1.0.0 h1:2HR189eFNrjHQyENnQMMpCiBAsRxzbTMIgBhEyExpmo=