build(deps): bump github.com/hashicorp/go-getter from 1.4.1 to 1.5.11…

… in /cosmovisor (#525)

Bumps [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter) from 1.4.1 to 1.5.11.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/hashicorp/go-getter/releases">github.com/hashicorp/go-getter's releases</a>.</em></p>
<blockquote>
<h2>v1.5.11</h2>
<h2>What's Changed</h2>
<ul>
<li>Redact SSH key from URL query parameter by <a href="https://github.com/macedogm"><code>@​macedogm</code></a> in <a href="https://github-redirect.dependabot.com/hashicorp/go-getter/pull/348">hashicorp/go-getter#348</a></li>
<li>gcs: only run oauth test if env var is set by <a href="https://github.com/schmichael"><code>@​schmichael</code></a> in <a href="https://github-redirect.dependabot.com/hashicorp/go-getter/pull/349">hashicorp/go-getter#349</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/macedogm"><code>@​macedogm</code></a> made their first contribution in <a href="https://github-redirect.dependabot.com/hashicorp/go-getter/pull/348">hashicorp/go-getter#348</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a href="https://github.com/hashicorp/go-getter/compare/v1.5.10...v1.5.11">https://github.com/hashicorp/go-getter/compare/v1.5.10...v1.5.11</a></p>
<h2>v1.5.10</h2>
<ul>
<li>When fetching files from Google Cloud Storage, go-getter will now consider the <code>GOOGLE_OAUTH_ACCESS_TOKEN</code> environment variable as a potential source of a Google Cloud Platform access token. (<a href="https://github-redirect.dependabot.com/hashicorp/go-getter/pull/302">#302</a>)</li>
<li>Fixed a regression from v1.5.9 where <code>git::</code> sources would no longer accept direct commit ids in the optional <code>ref</code> argument, and would instead only allow named refs from the remote. As a compromise, go-getter will now accept for <code>ref</code> anything that <code>git checkout</code> would accept as a valid tree selector, <em>unless</em> you also set <code>depth</code> to activate shallow clone mode in which case <code>ref</code> must be a named ref due to requirements of the Git protocol in that case. (<a href="https://github-redirect.dependabot.com/hashicorp/go-getter/pull/345">#345</a>)</li>
</ul>
<h2>v1.5.9</h2>
<p>Fix git shallow clone (<code>depth</code> parameter) for any ref. See <a href="https://github-redirect.dependabot.com/hashicorp/go-getter/issues/266">#266</a></p>
<h2>v1.5.8</h2>
<p>No release notes provided.</p>
<h2>v1.5.7</h2>
<p>In 1.5.7, we moved to using signore, an internal tool, for GPG signing.</p>
<h2>v1.5.5</h2>
<p>IMPROVEMENTS:</p>
<ul>
<li>Added and exported tar decompressor <a href="https://github-redirect.dependabot.com/hashicorp/go-getter/issues/328">#328</a> <a href="https://github-redirect.dependabot.com/hashicorp/go-getter/issues/138">#138</a></li>
</ul>
<h2>v1.5.4</h2>
<p>IMPROVEMENTS:</p>
<ul>
<li>Add support to detect 5 parts s3 virtual hosted-style requests <a href="https://github-redirect.dependabot.com/hashicorp/go-getter/pull/314">hashicorp/go-getter#314</a></li>
<li>Add support for insecure HttpGetter <a href="https://github-redirect.dependabot.com/hashicorp/go-getter/pull/319">hashicorp/go-getter#319</a></li>
</ul>
<p>FIXES:</p>
<ul>
<li>Allow to context cancel HTTP requests <a href="https://github-redirect.dependabot.com/hashicorp/go-getter/issues/321">#321</a></li>
</ul>
<p>NOTES:</p>
<ul>
<li>This version requires Go 1.15+ and will no longer compile on older versions</li>
</ul>
<h2>v1.5.3</h2>
<p>IMPROVEMENTS:</p>
<ul>
<li>Add support for GCS object generations <a href="https://github-redirect.dependabot.com/hashicorp/go-getter/pull/310">hashicorp/go-getter#310</a></li>
</ul>
<p>BUGFIXES:</p>
<ul>
<li>Avoid a race condition in HttpGetter <a href="https://github-redirect.dependabot.com/hashicorp/go-getter/pull/315">hashicorp/go-getter#315</a></li>
</ul>
<h2>v1.5.2</h2>
<p>Bug fixes:</p>
<ul>
<li>The goreleaser release pipeline that was created and used for the 1.5.1 release was missing the GOPRIVATE env var being set, which caused private modules to be skipped. This release contains the same code as 1.5.1, but with GOPRIVATE set to github.com/hashicorp.</li>
</ul>

</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/hashicorp/go-getter/commit/b1336defcc3479d5a368d406f95ffdf0cb5f787f"><code>b1336de</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/hashicorp/go-getter/issues/349">#349</a> from hashicorp/b-gcs-test</li>
<li><a href="https://github.com/hashicorp/go-getter/commit/ca385154913163577cf87db70fe6ec445f6fe270"><code>ca38515</code></a> gcs: only run oauth test if env var is set</li>
<li><a href="https://github.com/hashicorp/go-getter/commit/f5cbbb458c1482e08133d07ebd70a3810e6e4d92"><code>f5cbbb4</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/hashicorp/go-getter/issues/348">#348</a> from macedogm/sshkey-redact</li>
<li><a href="https://github.com/hashicorp/go-getter/commit/17af21e717d343bb11eb0e875fa1b88ae7dd7361"><code>17af21e</code></a> Redact SSH key from URL query parameter</li>
<li><a href="https://github.com/hashicorp/go-getter/commit/36b68b2f68a3ed10ee7ecbb0cb9f6b1dc5da49cc"><code>36b68b2</code></a> Redact SSH key from URL query parameter</li>
<li><a href="https://github.com/hashicorp/go-getter/commit/23702d0c00e2ee7ad769ac9956c0f2d22b6cd983"><code>23702d0</code></a> GitGetter: Re-allow ref=COMMIT_ID</li>
<li><a href="https://github.com/hashicorp/go-getter/commit/64f1c03f893eea31663363653e3d90aa7287a765"><code>64f1c03</code></a> Feature Request: Add GOOGLE_OAUTH_ACCESS_TOKEN support for modules hosted on ...</li>
<li><a href="https://github.com/hashicorp/go-getter/commit/817ea417e296c43dd70134d3ce4dd649fc567c75"><code>817ea41</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/hashicorp/go-getter/issues/340">#340</a> from hashicorp/signore-dont-write-secrets-to-disk</li>
<li><a href="https://github.com/hashicorp/go-getter/commit/9b477267971ec38c185f082e3a88267eacbc8424"><code>9b47726</code></a> release.yml: stop writing signore secrets to disk</li>
<li><a href="https://github.com/hashicorp/go-getter/commit/0821303379b8710364f15cae37bbbc8f0dc19cc7"><code>0821303</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/hashicorp/go-getter/issues/266">#266</a> from zachwhaley/shallow-tag-clone</li>
<li>Additional commits viewable in <a href="https://github.com/hashicorp/go-getter/compare/v1.4.1...v1.5.11">compare view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/hashicorp/go-getter&package-manager=go_modules&previous-version=1.4.1&new-version=1.5.11)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/line/lbm-sdk/network/alerts).

</details>

cosmovisor/go.mod

@@ -3,7 +3,7 @@ module github.com/line/lbm-sdk/cosmovisor
 go 1.14
 
 require (
-	github.com/hashicorp/go-getter v1.4.1
+	github.com/hashicorp/go-getter v1.5.11
 	github.com/otiai10/copy v1.2.0
 	github.com/stretchr/testify v1.6.1
 	github.com/ulikunitz/xz v0.5.10 // indirect

cosmovisor/go.sum

@@ -40,10 +40,10 @@ github.com/google/pprof v0.0.0-20190515194954-54271f7e092f/go.mod h1:zfwlbNMJ+OI
 github.com/googleapis/gax-go/v2 v2.0.4/go.mod h1:0Wqv26UfaUD9n4G6kQubkQ+KchISgw+vpHVxEJEs9eg=
 github.com/googleapis/gax-go/v2 v2.0.5 h1:sjZBwGj9Jlw33ImPtvFviGYvseOtDM7hkSKB7+Tv3SM=
 github.com/googleapis/gax-go/v2 v2.0.5/go.mod h1:DWXyrwAJ9X0FpwwEdw+IPEYBICEFu5mhpdKc/us6bOk=
-github.com/hashicorp/go-cleanhttp v0.5.0 h1:wvCrVc9TjDls6+YGAF2hAifE1E5U1+b4tH6KdvN3Gig=
-github.com/hashicorp/go-cleanhttp v0.5.0/go.mod h1:JpRdi6/HCYpAwUzNwuwqhbovhLtngrth3wmdIIUrZ80=
-github.com/hashicorp/go-getter v1.4.1 h1:3A2Mh8smGFcf5M+gmcv898mZdrxpseik45IpcyISLsA=
-github.com/hashicorp/go-getter v1.4.1/go.mod h1:7qxyCd8rBfcShwsvxgIguu4KbS3l8bUCwg2Umn7RjeY=
+github.com/hashicorp/go-cleanhttp v0.5.2 h1:035FKYIWjmULyFRBKPs8TBQoi0x6d9G4xc9neXJWAZQ=
+github.com/hashicorp/go-cleanhttp v0.5.2/go.mod h1:kO/YDlP8L1346E6Sodw+PrpBSV4/SoxCXGY6BqNFT48=
+github.com/hashicorp/go-getter v1.5.11 h1:wioTuNmaBU3IE9vdFtFMcmZWj0QzLc6DYaP6sNe5onY=
+github.com/hashicorp/go-getter v1.5.11/go.mod h1:9i48BP6wpWweI/0/+FBjqLrp9S8XtwUGjiu0QkWHEaY=
 github.com/hashicorp/go-safetemp v1.0.0 h1:2HR189eFNrjHQyENnQMMpCiBAsRxzbTMIgBhEyExpmo=
 github.com/hashicorp/go-safetemp v1.0.0/go.mod h1:oaerMy3BhqiTbVye6QuFhFtIceqFoDHxNAB65b+Rj1I=
 github.com/hashicorp/go-version v1.1.0 h1:bPIoEKD27tNdebFGGxxYwcL4nepeY4j1QP23PFRGzg0=
@@ -54,6 +54,8 @@ github.com/hashicorp/golang-lru v0.5.1/go.mod h1:/m3WP610KZHVQ1SGc6re/UDhFvYD7pJ
 github.com/jmespath/go-jmespath v0.0.0-20160202185014-0b12d6b521d8 h1:12VvqtR6Aowv3l/EQUlocDHW2Cp4G9WJVH7uyH8QFJE=
 github.com/jmespath/go-jmespath v0.0.0-20160202185014-0b12d6b521d8/go.mod h1:Nht3zPeWKUH0NzdCt2Blrr5ys8VGpn0CEB0cQHVjt7k=
 github.com/jstemmer/go-junit-report v0.0.0-20190106144839-af01ea7f8024/go.mod h1:6v2b51hI/fHJwM22ozAgKL4VKDeJcHhJFhtBdhmNjmU=
+github.com/klauspost/compress v1.11.2 h1:MiK62aErc3gIiVEtyzKfeOHgW7atJb5g/KNX5m3c2nQ=
+github.com/klauspost/compress v1.11.2/go.mod h1:aoV0uJVorq1K+umq18yTdKaF57EivdYsUV+/s2qKfXs=
 github.com/mattn/go-colorable v0.0.9/go.mod h1:9vuHe8Xs5qXnSaW/c/ABM9alt+Vo+STaOChaDxuIBZU=
 github.com/mattn/go-isatty v0.0.4/go.mod h1:M+lRXTBqGeGNdLjl/ufCoiOlB5xdOkqRJdNxMWT7Zi4=
 github.com/mattn/go-runewidth v0.0.4/go.mod h1:LwmH8dsx7+W8Uxz3IHJYH5QSwggIsqBzpuz5H//U1FU=
@@ -72,12 +74,10 @@ github.com/otiai10/mint v1.3.1/go.mod h1:/yxELlJQ0ufhjUwhshSj+wFjZ78CnZ48/1wtmBH
 github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM=
 github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
 github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
-github.com/stretchr/testify v1.2.2 h1:bSDNvY7ZPG5RlJ8otE/7V6gMiyenm9RtJ7IUVIAoJ1w=
 github.com/stretchr/testify v1.2.2/go.mod h1:a8OnRcib4nhh0OaRAV+Yts87kKdq0PP7pXfy6kDkUVs=
 github.com/stretchr/testify v1.6.1 h1:hDPOHmpOpP40lSULcqw7IrRb/u7w6RpDC9399XyoNd0=
 github.com/stretchr/testify v1.6.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
-github.com/ulikunitz/xz v0.5.5 h1:pFrO0lVpTBXLpYw+pnLj6TbvHuyjXMfjGeCwSqCVwok=
-github.com/ulikunitz/xz v0.5.5/go.mod h1:2bypXElzHzzJZwzH67Y6wb67pO62Rzfn7BSiF4ABRW8=
+github.com/ulikunitz/xz v0.5.8/go.mod h1:nbz6k7qbPmH4IRqmfOplQw/tblSgqTqBwxkY0oWt/14=
 github.com/ulikunitz/xz v0.5.10 h1:t92gobL9l3HE202wg3rlk19F6X+JOxl9BBrCCMYEYd8=
 github.com/ulikunitz/xz v0.5.10/go.mod h1:nbz6k7qbPmH4IRqmfOplQw/tblSgqTqBwxkY0oWt/14=
 go.opencensus.io v0.21.0/go.mod h1:mSImk1erAIZhrmZN+AvHh14ztQfjbGwt4TtuofqLduU=