Skip to content

add tusd package #77046

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
Ritish134 wants to merge 4 commits into
base: main
Choose a base branch
from
Open

add tusd package #77046

Ritish134 wants to merge 4 commits into from

Conversation

@Ritish134
Copy link

@Ritish134 Ritish134 commented Jan 1, 2026

Fixes: #77043

Related:

Pre-review Checklist

For new package PRs only

  • REQUIRED - The package is available under an OSI-approved or FSF-approved license
  • This PR links to the upstream project's support policy (e.g. endoflife.date)

For version bump PRs

  • The epoch field is reset to 0

@Ritish134
add tusd package
7818e48 
Signed-off-by: Ritish Srivastava <121374890+Ritish134@users.noreply.github.com>
@kranurag7 kranurag7 added the approved-to-run A repo member has approved this external contribution label Jan 2, 2026
@octo-sts
Copy link
Contributor

octo-sts bot commented Jan 2, 2026

📝 Build Failed: Syntax

flag provided but not defined: -require
usage: go get [-t] [-u] [-tool] [build flags] [packages]
Run 'go help get' for details.

Build Details

Category Details
Build System Go
Failure Point go get -require=golang.org/x/crypto@v0.45.0

Root Cause Analysis 🔍

The go get command is using an invalid flag '-require' which is not supported by the Go toolchain. This appears to be a configuration error in the build script where an incorrect flag syntax is being used.

🔍 Build failure fix suggestions

Found similar build failures that have been fixed in the past and analyzed them to suggest a fix:

Suggested Changes

File: melange.yaml

  • modification at line 21-24 (pipeline step with go get commands)
    Original:
  - runs: |
      go get -require=golang.org/x/crypto@v0.45.0
      go get -require=golang.org/x/net@v0.38.0
      go mod tidy

Replacement:

  - runs: |
      go mod require golang.org/x/crypto@v0.45.0
      go mod require golang.org/x/net@v0.38.0
      go mod tidy

Content:

Replace 'go get -require=' with 'go mod require' to properly add module requirements
Click to expand fix analysis

Analysis

No similar build failures were provided for analysis. However, the error is clear: the go get command is being used with an invalid -require flag that doesn't exist in the Go toolchain. The correct approach is to use go get without the -require flag to add dependencies, or use go mod require to add specific module requirements to go.mod.

Click to expand fix explanation

Explanation

The fix replaces the invalid go get -require= commands with go mod require commands. The -require flag does not exist for the go get command. The correct way to add specific module requirements to a Go project is using go mod require <module>@<version>. This command adds the specified module version as a requirement in the go.mod file. The go mod tidy command that follows will then ensure all dependencies are properly resolved and downloaded. This approach maintains the intent of pinning specific versions of the crypto and net modules while using the correct Go module management syntax.

Click to expand alternative approaches

Alternative Approaches

  • Use 'go get golang.org/x/crypto@v0.45.0' and 'go get golang.org/x/net@v0.38.0' without the -require flag, which would download and add the dependencies
  • Manually edit the go.mod file to include the required versions and then run 'go mod download' to fetch them
  • Remove the version pinning entirely and let 'go mod tidy' resolve to the latest compatible versions if strict version control is not required

Was this comment helpful? Please use 👍 or 👎 reactions on this comment.

@octo-sts octo-sts bot added the ai/skip-comment Stop AI from commenting on PR label Jan 2, 2026
@Ritish134
Merge branch 'wolfi-dev:main' into main
74605eb
@Ritish134
Remove unnecessary '-require' flag from go get
2173100 
Signed-off-by: Ritish Srivastava <121374890+Ritish134@users.noreply.github.com>
@octo-sts octo-sts bot added the bincapz/pass bincapz/pass Bincapz (aka. malcontent) scan didn't detect any CRITICALs on the scanned packages. label Jan 2, 2026
@Ritish134
Copy link
Author

Ritish134 commented Jan 2, 2026
edited
Loading

I believe in the go.mod dependency version needs to be bumped, which would normally happen when this package is released in a newer upstream version.
Is there a way to specify a dependency version higher than what is currently defined in the upstream go.mod using go bump?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

ai/skip-comment Stop AI from commenting on PR approved-to-run A repo member has approved this external contribution bincapz/pass bincapz/pass Bincapz (aka. malcontent) scan didn't detect any CRITICALs on the scanned packages.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

[Wolfi Package Request]: tusd

2 participants

@Ritish134 @kranurag7