build: Use Go 1.12.8
This this includes some security fixes that don't impact Terraform along with a number of general improvements and fixes in the Go toolchain that don't appear to affect Terraform behavior. - URL parsing (such as in the "source" argument in a "module" block) now validates more strictly the port portion, rejecting non-numeric ports. Previously this could potentially lead to parts of the URL being silently ignored. - The temporary callback server for the forthcoming OAuth client implementation in "terraform login" would otherwise have been vulnerable to local (on the same host) denial of service attacks, which is not a common attack vector but good to fix anyway.
This commit is contained in:
parent
3aa909ac6e
commit
f6c6a88fe8
|
@ -1 +1 @@
|
||||||
1.12.4
|
1.12.8
|
||||||
|
|
|
@ -4,7 +4,7 @@ services:
|
||||||
- docker
|
- docker
|
||||||
language: go
|
language: go
|
||||||
go:
|
go:
|
||||||
- "1.12.4"
|
- "1.12.8"
|
||||||
|
|
||||||
# add TF_CONSUL_TEST=1 to run consul tests
|
# add TF_CONSUL_TEST=1 to run consul tests
|
||||||
# they were causing timouts in travis
|
# they were causing timouts in travis
|
||||||
|
|
Loading…
Reference in New Issue