Skip to content

chore: update hiredis submodule rev and protocol, github no longer supports anon git protocol #124

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 1 commit into from
Closed

chore: update hiredis submodule rev and protocol, github no longer supports anon git protocol #124

wants to merge 1 commit into from

Conversation

kapilt
Copy link

@kapilt kapilt commented Apr 19, 2022
edited
Loading

re submodule protocol error

❯ git submodule update --init --recursive                                                                                                                     
Cloning into '/home/kapilt/projects/hiredis-py/vendor/hiredis'...                                                                                             
fatal: remote error:                                                                                                                                          
  The unauthenticated git protocol on port 9418 is no longer supported.                                                                                       
Please see https://github.blog/2021-09-01-improving-git-protocol-security-github/ for more information.                                                       
fatal: clone of 'git://github.com/redis/hiredis.git' into submodule path '/home/kapilt/projects/hiredis-py/vendor/hiredis' failed                             
Failed to clone 'vendor/hiredis'. Retry scheduled                                                                                                             
Cloning into '/home/kapilt/projects/hiredis-py/vendor/hiredis'...              
fatal: remote error:                                                                                                                                          
  The unauthenticated git protocol on port 9418 is no longer supported.                                                                                       
Please see https://github.blog/2021-09-01-improving-git-protocol-security-github/ for more information.                                                       
fatal: clone of 'git://github.com/redis/hiredis.git' into submodule path '/home/kapilt/projects/hiredis-py/vendor/hiredis' failed                             
Failed to clone 'vendor/hiredis' a second time, aborting

re version bump, hiredis 1.0.0 has an extant cve, GHSA-hfm9-39pp-55p2

@illia-v
Copy link
Contributor

illia-v commented Apr 19, 2022

re version bump, hiredis 1.0.0 has an extant cve, GHSA-hfm9-39pp-55p2

Please take a look at #118 (comment) regarding the vulnerability.

Also, hiredis-py has been sticking to release versions of hiredis. I am not sure if it should be upgraded to the master revision.

@chayim chayim mentioned this pull request Nov 30, 2022
Merged
@chayim chayim closed this in 861539c Dec 12, 2022
@chayim chayim closed this in #136 Dec 12, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@kapilt @illia-v