SECURITY.md: Update link to security model

The security model was moved in https://github.com/gohugoio/hugoDocs/pull/2495
modules: Fix potential infinite loop in module collection
2024-05-13 13:03:00 +00:00 · 2024-04-22 13:04:53 +02:00 · 2024-04-22 11:34:11 +02:00
2 changed files with 5 additions and 2 deletions
--- a/SECURITY.md
+++ b/SECURITY.md
@ -4,4 +4,4 @@

 Please report (suspected) security vulnerabilities to **[bjorn.erik.pedersen@gmail.com](mailto:bjorn.erik.pedersen@gmail.com)**. You will receive a response from us within 48 hours. If we can confirm the issue, we will release a patch as soon as possible depending on the complexity of the issue but historically within days.

-Also see [Hugo's Security Model](https://gohugo.io/about/security-model/).
+Also see [Hugo's Security Model](https://gohugo.io/about/security/).
--- a/modules/collect.go
+++ b/modules/collect.go
@ -261,7 +261,10 @@ func (c *collector) add(owner *moduleAdapter, moduleImport Import) (*moduleAdapt
 					// This will select the latest release-version (not beta etc.).
 					versionQuery = "upgrade"
 				}
-				if err := c.Get(fmt.Sprintf("%s@%s", modulePath, versionQuery)); err != nil {
+
+				// Note that we cannot use c.Get for this, as that may
+				// trigger a new module collection and potentially create a infinite loop.
+				if err := c.get(fmt.Sprintf("%s@%s", modulePath, versionQuery)); err != nil {
 					return nil, err
 				}
 				if err := c.loadModules(); err != nil {
Author	SHA1	Message	Date
Eric Anderson	722c486a34	SECURITY.md: Update link to security model The security model was moved in https://github.com/gohugoio/hugoDocs/pull/2495	2024-04-22 13:04:53 +02:00
Bjørn Erik Pedersen	f40f50ead0	modules: Fix potential infinite loop in module collection Fixes #12407	2024-04-22 11:34:11 +02:00