src/5.5.0-r0: cve remediation (#28738)

src/5.5.0-r0: fix CVE-2024-34158 Advisory data: https://github.com/wolfi-dev/advisories/blob/main/src.advisories.yaml --------- Co-authored-by: octo-sts[bot] <[email protected]> Co-authored-by: Hunter Harris <[email protected]>
wolfi-dev · Oct 21, 2024 · d635dd5 · d635dd5
1 parent d51c2da
commit d635dd5
Showing 1 changed file with 4 additions and 1 deletion.
diff --git a/src.yaml b/src.yaml
@@ -1,7 +1,7 @@
 package:
   name: src
   version: 5.5.0
-  epoch: 0
+  epoch: 1
   description: Sourcegraph CLI
   copyright:
     - license: Apache-2.0
@@ -27,7 +27,10 @@ pipeline:
 
   - uses: go/bump
     with:
+      # The replacement must run before the initial tidy, otherwise the repo resolution fails and so does the build. The build will run tidy.
+      skip-initial-tidy: true
       deps: github.com/golang/[email protected] k8s.io/[email protected] k8s.io/[email protected] k8s.io/[email protected] k8s.io/[email protected]
+      replaces: github.com/sourcegraph/sourcegraph/lib=github.com/sourcegraph/sourcegraph-public-snapshot/[email protected]
 
   - uses: go/build
     with: