Update go-getter to v1.5.11

rubrikinc / terraform-provider-polaris

Terraform provider for the Polaris platform

MIT License

2 stars 9 forks source link

Update go-getter to v1.5.11 #42

Closed johan3141592 closed 2 years ago

johan3141592 commented 2 years ago

The Hashicorp go-getter library before 1.5.11 could write SSH credentials into its logfile, exposing sensitive credentials to local users able to read the logfile.

CVE-2022-29810