chore(dependency): whitelist mholt/archiver/v3 CVE-2024-0406

It is not possible to tell vulncheck that Forgejo is not affected by CVE-2024-0406. Use a mirror of the repository to do that. Refs: https://github.com/mholt/archiver/issues/404 (cherry picked from commit 3bfec270acde189fe5e5e8f2e65be9e5a1be61d9) Conflicts: go.sum trivial context conflict
author: Earl Warren <contact@earl-warren.org> 2024-06-05 22:07:40 +0200
committer: Earl Warren <contact@earl-warren.org> 2024-06-05 22:19:30 +0200
commit: e7977767facf1aa0378dc5af73cc31faaa984b48 (patch)
tree: be778142da7be2c070481de4cfdca5272110f34c /go.sum
parent: Merge pull request '[gitea] week 2024-23-v7.0 cherry pick (release/v1.22 -> v... (diff)
download: forgejo-e7977767facf1aa0378dc5af73cc31faaa984b48.tar.xz
forgejo-e7977767facf1aa0378dc5af73cc31faaa984b48.zip
1 files changed, 2 insertions, 2 deletions
diff --git a/go.sum b/go.sum
index 1ecd37a8f7..59980ec1c8 100644
--- a/go.sum
+++ b/go.sum
@@ -35,6 +35,8 @@ cloud.google.com/go/storage v1.5.0/go.mod h1:tpKbwo567HUNpVclU5sGELwQWBDZ8gh0Zeo
 cloud.google.com/go/storage v1.6.0/go.mod h1:N7U0C8pVQ/+NIKOBQyamJIeKQKkZ+mxpohlUTyfDhBk=
 cloud.google.com/go/storage v1.8.0/go.mod h1:Wv1Oy7z6Yz3DshWRJFhqM/UCfaWIRTdp0RXyy7KQOVs=
 cloud.google.com/go/storage v1.10.0/go.mod h1:FLPqc6j+Ki4BU591ie1oL6qBQGu2Bl/tZ9ullr3+Kg0=
+code.forgejo.org/forgejo/archiver/v3 v3.5.1 h1:UmmbA7D5550uf71SQjarmrn6yKwOGxtEjb3jaYYtmSE=
+code.forgejo.org/forgejo/archiver/v3 v3.5.1/go.mod h1:e3dqJ7H78uzsRSEACH1joayhuSyhnonssnDhppzS1L4=
 code.forgejo.org/forgejo/reply v1.0.1 h1:usZi5yx7/g0D+xtGPJEM6mCvoDNdWvmtJu5J9/B/KBI=
 code.forgejo.org/forgejo/reply v1.0.1/go.mod h1:RyZUfzQLc+fuLIGjTSQWDAJWPiL4WtKXB/FifT5fM7U=
 code.gitea.io/actions-proto-go v0.4.0 h1:OsPBPhodXuQnsspG1sQ4eRE1PeoZyofd7+i73zCwnsU=
@@ -613,8 +615,6 @@ github.com/meilisearch/meilisearch-go v0.26.1 h1:3bmo2uLijX7kvBmiZ9LupVfC95TFcRJ
 github.com/meilisearch/meilisearch-go v0.26.1/go.mod h1:SxuSqDcPBIykjWz1PX+KzsYzArNLSCadQodWs8extS0=
 github.com/mholt/acmez v1.2.0 h1:1hhLxSgY5FvH5HCnGUuwbKY2VQVo8IU7rxXKSnZ7F30=
 github.com/mholt/acmez v1.2.0/go.mod h1:VT9YwH1xgNX1kmYY89gY8xPJC84BFAisjo8Egigt4kE=
-github.com/mholt/archiver/v3 v3.5.1 h1:rDjOBX9JSF5BvoJGvjqK479aL70qh9DIpZCl+k7Clwo=
-github.com/mholt/archiver/v3 v3.5.1/go.mod h1:e3dqJ7H78uzsRSEACH1joayhuSyhnonssnDhppzS1L4=
 github.com/microcosm-cc/bluemonday v1.0.26 h1:xbqSvqzQMeEHCqMi64VAs4d8uy6Mequs3rQ0k/Khz58=
 github.com/microcosm-cc/bluemonday v1.0.26/go.mod h1:JyzOCs9gkyQyjs+6h10UEVSe02CGwkhd72Xdqh78TWs=
 github.com/miekg/dns v1.1.58 h1:ca2Hdkz+cDg/7eNF6V56jjzuZ4aCAE+DbVkILdQWG/4=
author	Earl Warren <contact@earl-warren.org>	2024-06-05 22:07:40 +0200
committer	Earl Warren <contact@earl-warren.org>	2024-06-05 22:19:30 +0200
commit	e7977767facf1aa0378dc5af73cc31faaa984b48 (patch)
tree	be778142da7be2c070481de4cfdca5272110f34c /go.sum
parent	Merge pull request '[gitea] week 2024-23-v7.0 cherry pick (release/v1.22 -> v... (diff)
download	forgejo-e7977767facf1aa0378dc5af73cc31faaa984b48.tar.xz forgejo-e7977767facf1aa0378dc5af73cc31faaa984b48.zip