primal/athens
1
0
Fork 0
mirror of https://github.com/gomods/athens synced 2026-02-03 11:00:32 +00:00
Code Issues Packages Projects Releases Wiki Activity
1,059 Commits 29 Branches 34 Tags
5d36140c5cb25aaa720f89abf36109f1aacfb3f0
Commit Graph

1059 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Gerdriaan Mulder
5d36140c5c docfix: use GONOSUMDB on Athens' home page (#2056) 2025-07-19 14:41:09 +02:00
dependabot[bot]
47b69500c2 chore(deps): bump golang.org/x/oauth2 from 0.23.0 to 0.27.0 (#2058) 
Bumps [golang.org/x/oauth2](https://github.com/golang/oauth2) from 0.23.0 to 0.27.0.
- [Commits](https://github.com/golang/oauth2/compare/v0.23.0...v0.27.0)

---
updated-dependencies:
- dependency-name: golang.org/x/oauth2
  dependency-version: 0.27.0
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-07-19 14:31:56 +02:00
south-mer
25b890553a fix: move single-flight to stash (#2050) 2025-07-08 10:00:59 +02:00
south-mer
33f32fd3af Fix GCP Storage Backend Locking Issue (#2051) 2025-06-25 05:04:34 +02:00
Nicholas Wiersma
379144c07e chore: update workflows for consistency (#2053) 2025-06-23 09:41:14 +02:00
south-mer
24895f2a24 Fix no child processes error (#2048) 2025-05-14 13:38:07 +02:00
Nicholas Wiersma
d3db910e70 chore: update goreleaser config (#2045) 2025-04-19 12:30:15 +02:00
dependabot[bot]
b338559444 chore(deps): bump golang.org/x/net from 0.36.0 to 0.38.0 (#2044) 
Bumps [golang.org/x/net](https://github.com/golang/net) from 0.36.0 to 0.38.0.
- [Commits](https://github.com/golang/net/compare/v0.36.0...v0.38.0)

---
updated-dependencies:
- dependency-name: golang.org/x/net
  dependency-version: 0.38.0
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
v0.16.0 		2025-04-17 06:27:17 +02:00
Rob Prentiss
c6ec0711d1 feat: add handling for SIGCHLD to cleanup child processes (#2043) 2025-04-06 06:12:22 +02:00
Nicholas Wiersma
1d91fa5d9b chore: bump golangci-lint to v2 (#2042) 2025-04-01 09:08:02 +02:00
Alexandr Hacicheant
ab1775afee Redis Sentinel SingeFlight: support of Redis master node username and password (#2039) 
* Add support for Redis Username and Password configuration

Introduced Redis master authentication parameters (username and password) to the Redis Sentinel setup. This enhances compatibility with Redis environments that require authentication for both sentinel and master nodes.

* Add support for protected Redis Sentinel configuration and related unit tests
 2025-04-01 07:34:13 +02:00
Connor McCarthy
ebb5ac698b feat: add pagination to s3 lister (#2037) 
By default `ListObjectsV2()` returns the first 1000 objects matching the
list parameters. Normally this is fine, as it supports up to 333
versions (1000 / 3 files in proxy-triplet). For modules with more
versions, this is insufficient and must be upgraded to paginate.
 2025-04-01 07:01:35 +02:00
dependabot[bot]
18041d7364 chore(deps): bump github.com/golang-jwt/jwt/v4 from 4.5.1 to 4.5.2 (#2036) 
Bumps [github.com/golang-jwt/jwt/v4](https://github.com/golang-jwt/jwt) from 4.5.1 to 4.5.2.
- [Release notes](https://github.com/golang-jwt/jwt/releases)
- [Changelog](https://github.com/golang-jwt/jwt/blob/main/VERSION_HISTORY.md)
- [Commits](https://github.com/golang-jwt/jwt/compare/v4.5.1...v4.5.2)

---
updated-dependencies:
- dependency-name: github.com/golang-jwt/jwt/v4
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-03-22 16:18:19 +02:00
dependabot[bot]
b479740ac2 chore(deps): bump github.com/golang-jwt/jwt/v5 from 5.2.1 to 5.2.2 (#2035) 
Bumps [github.com/golang-jwt/jwt/v5](https://github.com/golang-jwt/jwt) from 5.2.1 to 5.2.2.
- [Release notes](https://github.com/golang-jwt/jwt/releases)
- [Changelog](https://github.com/golang-jwt/jwt/blob/main/VERSION_HISTORY.md)
- [Commits](https://github.com/golang-jwt/jwt/compare/v5.2.1...v5.2.2)

---
updated-dependencies:
- dependency-name: github.com/golang-jwt/jwt/v5
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-03-22 15:47:41 +02:00
dependabot[bot]
4a3c4e4051 chore(deps): bump golang.org/x/net from 0.33.0 to 0.36.0 (#2034) 
Bumps [golang.org/x/net](https://github.com/golang/net) from 0.33.0 to 0.36.0.
- [Commits](https://github.com/golang/net/compare/v0.33.0...v0.36.0)

---
updated-dependencies:
- dependency-name: golang.org/x/net
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-03-13 06:46:04 +02:00
dependabot[bot]
de19d14c17 chore(deps): bump golang.org/x/net from 0.30.0 to 0.33.0 (#2024) 
Bumps [golang.org/x/net](https://github.com/golang/net) from 0.30.0 to 0.33.0.
- [Commits](https://github.com/golang/net/compare/v0.30.0...v0.33.0)

---
updated-dependencies:
- dependency-name: golang.org/x/net
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Matt <matt.ouille@protonmail.com>
 2025-02-19 04:44:41 +00:00
Siyovush
1ac9228759 Update shared-team-instance.md (#2032) 2025-02-18 13:55:37 +01:00
HDYA-BackFire
b1036a9dc8 [chore][golang] bump golang to 1.23.5 for security patches (#2025) 2025-01-27 12:20:22 -08:00
yueluhuan
ac9e4fa4fe Bump go version to 1.23.4 (#2019) 2025-01-20 08:51:00 +01:00
day253
04e425642e add utf8 charset meta to the proxy home (#2017) 2025-01-07 23:54:42 +01:00
Matt
0a4b44bfb9 Fix the README Slack link (#2016) 
The README Slack link points to the Gophers Slack but is not an invite link

Fixes #2013
 2024-12-25 20:56:43 -08:00
dependabot[bot]
f348d6c311 update-go-pkg(deps): bump github.com/aws/aws-sdk-go-v2/feature/s3/manager (#2011) 
Bumps [github.com/aws/aws-sdk-go-v2/feature/s3/manager](https://github.com/aws/aws-sdk-go-v2) from 1.16.15 to 1.17.43.
- [Release notes](https://github.com/aws/aws-sdk-go-v2/releases)
- [Commits](https://github.com/aws/aws-sdk-go-v2/compare/v1.16.15...credentials/v1.17.43)

---
updated-dependencies:
- dependency-name: github.com/aws/aws-sdk-go-v2/feature/s3/manager
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-12-09 06:02:40 +02:00
dependabot[bot]
e765256033 update-go-pkg(deps): bump github.com/go-playground/validator/v10 (#2009) 
Bumps [github.com/go-playground/validator/v10](https://github.com/go-playground/validator) from 10.19.0 to 10.23.0.
- [Release notes](https://github.com/go-playground/validator/releases)
- [Commits](https://github.com/go-playground/validator/compare/v10.19.0...v10.23.0)

---
updated-dependencies:
- dependency-name: github.com/go-playground/validator/v10
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-12-02 06:17:13 +02:00
yatesliang
8f0ee5e52f Swith s3 ListObjects api to ListObjectsV2 (#2006) 
Switch the ListObjects API used in s3 storage to ListObjectsV2
 2024-11-26 03:08:21 +00:00
dependabot[bot]
bf38a47902 update-go-pkg(deps): bump github.com/gobuffalo/httptest (#2007) 
Bumps [github.com/gobuffalo/httptest](https://github.com/gobuffalo/httptest) from 1.0.4 to 1.5.2.
- [Release notes](https://github.com/gobuffalo/httptest/releases)
- [Commits](https://github.com/gobuffalo/httptest/compare/v1.0.4...v1.5.2)

---
updated-dependencies:
- dependency-name: github.com/gobuffalo/httptest
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-11-25 08:09:18 +02:00
dependabot[bot]
531dcf6ff3 update-go-pkg(deps): bump github.com/aws/smithy-go from 1.20.2 to 1.22.1 (#2005) 
Bumps [github.com/aws/smithy-go](https://github.com/aws/smithy-go) from 1.20.2 to 1.22.1.
- [Release notes](https://github.com/aws/smithy-go/releases)
- [Changelog](https://github.com/aws/smithy-go/blob/main/CHANGELOG.md)
- [Commits](https://github.com/aws/smithy-go/compare/v1.20.2...v1.22.1)

---
updated-dependencies:
- dependency-name: github.com/aws/smithy-go
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-11-18 08:09:29 +02:00
Nicholas Wiersma
e53c524a96 chore: upgrade go to v1.23.2 (#1997) 
Upgrades Go to 1.23.2
 2024-11-14 05:36:25 +00:00
Nicholas Wiersma
76e7c3746a chore: bump cloud.google.com/go/storage to v1.45.0 (#1996) 2024-11-14 07:23:41 +02:00
Jérôme Foray
223a173806 fix arch selection for github-app helper (#2003) 2024-11-13 11:11:06 +02:00
Jérôme Foray
1644083522 fix: use TARGETARCH to select the git-credential-github-app artifact (#2002) 2024-11-12 19:44:15 +02:00
dependabot[bot]
c71cb72a2f update-go-pkg(deps): bump github.com/go-redis/redis/v8 (#2001) 
Bumps [github.com/go-redis/redis/v8](https://github.com/go-redis/redis) from 8.11.4 to 8.11.5.
- [Release notes](https://github.com/go-redis/redis/releases)
- [Changelog](https://github.com/redis/go-redis/blob/v8.11.5/CHANGELOG.md)
- [Commits](https://github.com/go-redis/redis/compare/v8.11.4...v8.11.5)

---
updated-dependencies:
- dependency-name: github.com/go-redis/redis/v8
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-11-11 06:41:12 +02:00
dependabot[bot]
ce19cde35f chore(deps): bump github.com/golang-jwt/jwt/v4 from 4.5.0 to 4.5.1 (#1999) 
Bumps [github.com/golang-jwt/jwt/v4](https://github.com/golang-jwt/jwt) from 4.5.0 to 4.5.1.
- [Release notes](https://github.com/golang-jwt/jwt/releases)
- [Changelog](https://github.com/golang-jwt/jwt/blob/main/VERSION_HISTORY.md)
- [Commits](https://github.com/golang-jwt/jwt/compare/v4.5.0...v4.5.1)

---
updated-dependencies:
- dependency-name: github.com/golang-jwt/jwt/v4
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-11-05 06:20:14 +02:00
dependabot[bot]
bf31119b38 update-go-pkg(deps): bump contrib.go.opencensus.io/exporter/stackdriver (#1998) 
Bumps [contrib.go.opencensus.io/exporter/stackdriver](https://github.com/census-ecosystem/opencensus-go-exporter-stackdriver) from 0.6.0 to 0.13.14.
- [Release notes](https://github.com/census-ecosystem/opencensus-go-exporter-stackdriver/releases)
- [Commits](https://github.com/census-ecosystem/opencensus-go-exporter-stackdriver/compare/v0.6.0...v0.13.14)

---
updated-dependencies:
- dependency-name: contrib.go.opencensus.io/exporter/stackdriver
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-11-04 09:05:34 +01:00
dependabot[bot]
6510048069 update-go-pkg(deps): bump github.com/spf13/afero from 1.8.2 to 1.11.0 (#1960) 
Bumps [github.com/spf13/afero](https://github.com/spf13/afero) from 1.8.2 to 1.11.0.
- [Release notes](https://github.com/spf13/afero/releases)
- [Commits](https://github.com/spf13/afero/compare/v1.8.2...v1.11.0)

---
updated-dependencies:
- dependency-name: github.com/spf13/afero
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
v0.15.4 		2024-10-28 09:14:25 +02:00
Bradley Kemp
2c2608a3f5 Update Dockerfile (#1995) 2024-10-28 08:01:49 +02:00
opalmer
3ba08f64f0 Support using redis urls to construct the redis client (#1994) 
Currently Athens only supports connecting to Redis using a hostname:port combination in addition to a password. While this works in most cases it also means that if you have other options you wish to supply Athens has to be updated to support them. As a basic example Redis clusters that require TLS currently are not supported by Athens but with this change you can simply supply a [redis url](https://github.com/redis/redis-specifications/blob/master/uri/redis.txt) to connect over TLS. It also makes it easy to override the password, set a username and more all from a single configuration option:

`rediss://username:password@redis.example.com:6379/1?protocol=3`
 2024-10-22 13:33:03 -07:00
Nicholas Wiersma
71119f8fcf feat: support GitHub App authentication (#1988) 
Adds support for using GitHub Apps as a form of authentication
v0.15.3 		2024-10-21 18:14:34 +00:00
Nicholas Wiersma
2712e2ef17 fix: go in docker failing (#1989) 
Co-authored-by: Matt <matt.ouille@protonmail.com>
 2024-10-07 21:22:53 +02:00
Radon Rosborough
74b3cf5082 Document log level format (#1982) 
Specify log levels that can be configured with Athens explicitly in the documentation.
v0.15.2 		2024-09-30 12:23:00 +02:00
Matt
0092d3a118 Upgrade to Go 1.22 toolchain (#1987) 
Upgrades to the Go 1.22 toolchain. Upgrades golangci-lint to 1.61.0 and disables some new linters.

---------

Co-authored-by: Nicholas Wiersma <nick@wiersma.co.za>
 2024-09-28 05:51:14 +00:00
Taylor Chen
3856c6feee add timeout to vcsLister.List() (#1986) 2024-09-20 08:19:47 +02:00
Matt
6f1346fdb9 Fix: Change goreleaser flag from --rm-dist to --clean (#1984) 
Fixing a release with maintainer permissions
v0.15.1 		2024-09-08 21:27:48 -07:00
Balazs Sandor
70ee634a80 Add http body to list handler on error (#1974) 
Mimic responses to that of proxy.golang.org when a list fails to produce a result.
v0.15.0 		2024-09-09 03:23:40 +00:00
yueluhuan
34002b8408 Switch from ADAL to AzIdentity, Add Azure Storage Token Refresh, and Update Golang Version (#1977) 
Uses the new Azure Identity package for current support. Support automated Azure storage token refresh. Sets the default value of Athens storage account key and Azure managed identity resource id should be empty.
 2024-09-09 03:03:26 +00:00
sb464f
86c8a4fc4c Fix helm install command in docs (#1981) 2024-08-27 16:10:04 +02:00
yueluhuan
1e39c23d72 Add aad auth option when using azure storage account (#1973) 
Support managed identity authentication in Azure Blob Storage.
 2024-07-14 18:21:31 -07:00
dependabot[bot]
a1e728e5be update-github-action(deps): bump docker/build-push-action from 5 to 6 (#1971) 
Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 5 to 6.
- [Release notes](https://github.com/docker/build-push-action/releases)
- [Commits](https://github.com/docker/build-push-action/compare/v5...v6)

---
updated-dependencies:
- dependency-name: docker/build-push-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-06-24 06:20:11 +02:00
dependabot[bot]
72603ea459 update-github-action(deps): bump goreleaser/goreleaser-action (#1969) 
Bumps [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action) from 5 to 6.
- [Release notes](https://github.com/goreleaser/goreleaser-action/releases)
- [Commits](https://github.com/goreleaser/goreleaser-action/compare/v5...v6)

---
updated-dependencies:
- dependency-name: goreleaser/goreleaser-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-06-10 07:01:19 +02:00
Matt
bde4952614 Set correct content type and send once (#1965) 
Set correct Content-Type headers on each endpoint rather than on the router. The router would, at times, send two Content-Type headers and other times just send the wrong one.
v0.14.1 		2024-06-02 19:49:36 +00:00
Derek Buitenhuis
0ef761cc8b gcp/saver: Only return errors.KindAlreadyExists if all three exist (#1957) 
* gcp/saver: Only return errors.KindAlreadyExists if all three exist

In #1124, a GCP lock type was added as a singleflight backend. As part of this work, the GCP backend's Save() was made serial, likely because moduploader.Upload requires a call to Exists() before it, rendering the GCP lock less useful, by doubling the calls to GCS.

However, by doing this, the existence check was now only checking the existence of the mod file, and not the info or zip. This meant that if during a Save, the zip or info uploads failed, on subsequent rquests, that when using the GCP singleflight backend, Athens would assume everything had been stashed and saved properly, and then fail to serve up the info or zip that had failed upload, meaning the cache was in an unhealable broklen state, requiring a manual intervention.

To fix this, without breaking the singleflight behavior, introduce a metadata key that is set on the mod file during its initial upload, indicating that a Stash is still in progress on subsequent files, which gets removed once all three files are uploaded successfully, which can be checked if it it is determined that the mod file already exists. That way we can return a errors.KindAlreadyExists if a Stash is in progress, but also properly return it when a Stash is *not* currently in progress if and only if all three files exist on GCS, which prevents the cache from becoming permanently poisoned.

One note is that it is possible the GCS call to remove the metadata key fails, which would mean it is left on the mod object forever. To avoid this, consider it stale after 2 minutes.

---------

Signed-off-by: Derek Buitenhuis <derek.buitenhuis@gmail.com>
Co-authored-by: Matt <matt.ouille@protonmail.com>
 2024-06-02 19:32:54 +00:00