-
Notifications
You must be signed in to change notification settings - Fork 2k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
deps: Switch from mitchellh/cli to hashicorp/cli #19321
Merged
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
angrycub
added
type/enhancement
stage/needs-discussion
theme/dependencies
Pull requests that update a dependency file
labels
Dec 5, 2023
Should probably also add the old import to the list of forbidden packages semgrep rule |
angrycub
force-pushed
the
deps/switch_to_hashicorp_cli
branch
from
January 4, 2024 20:50
beeb51a
to
cc29d36
Compare
tgross
added
the
stage/needs-rebase
This PR needs to be rebased on main before it can be backported to pick up new BPA workflows
label
May 17, 2024
jrasell
changed the title
[WIP] [deps] Switch from mitchellh/cli to hashicorp/cli
deps: Switch from mitchellh/cli to hashicorp/cli
Dec 19, 2024
jrasell
added
theme/cli
and removed
stage/needs-discussion
stage/needs-rebase
This PR needs to be rebased on main before it can be backported to pick up new BPA workflows
labels
Dec 19, 2024
jrasell
added
backport/ent/1.7.x+ent
Changes are backported to 1.7.x+ent
backport/ent/1.8.x+ent
Changes are backported to 1.8.x+ent
backport/1.9.x
backport to 1.9.x release line
labels
Dec 19, 2024
pkazmierczak
previously approved these changes
Dec 19, 2024
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Looks good!
pkazmierczak
approved these changes
Dec 19, 2024
jrasell
added a commit
that referenced
this pull request
Dec 19, 2024
Co-authored-by: James Rasell <jrasell@hashicorp.com>
jrasell
added a commit
that referenced
this pull request
Dec 19, 2024
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Labels
backport/ent/1.7.x+ent
Changes are backported to 1.7.x+ent
backport/ent/1.8.x+ent
Changes are backported to 1.8.x+ent
backport/ent/1.9.x+ent
Changes are backported to 1.9.x+ent
backport/1.9.x
backport to 1.9.x release line
theme/cli
theme/dependencies
Pull requests that update a dependency file
type/enhancement
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Thanks @angrycub!
This PR switches from the achieved
mitchellh/cli
to the internally maintainedhashicorp/cli
. A semgrep rule is included to stop usage of this library in the future.The change is like-for-like, therefore my plan is to backport this to all active release branches. Additionally, backporting CLI bug fixes might be painful without this. If any reviewers think this is a bad idea, please let me know.
The remaining indirect reference is due to
github.com/hashicorp/go-secure-stdlib/listenerutil
which has migrated the library on main, but not released this version. I have submitted a request for a release via hashicorp/go-secure-stdlib#151. Once released, we can followup with a dependency update PR to remove the indirect dependency.