Merge pull request #742 from cheat/dependabot/go_modules/github.com/cloudflare/circl-1.3.7

chore(deps): bump github.com/cloudflare/circl from 1.3.6 to 1.3.7
2024-11-01 05:31:01 +01:00 · 2024-01-08 15:34:48 -05:00 · 2024-01-08 16:53:49 +00:00 · 2023-12-19 14:51:50 -05:00 · 2023-12-19 00:07:38 +00:00 · 2023-12-15 12:48:39 -05:00
1816 changed files with 241130 additions and 50284 deletions
--- a/.github/workflows/build.yml
+++ b/.github/workflows/build.yml
@ -1,57 +1,46 @@
 ---
 name: Go
 on:
  push:
-    branches: [ master ]
+    branches: [master]
  pull_request:
-    branches: [ master ]
+    branches: [master]
 jobs:
  # TODO: is it possible to DRY out these jobs? Aside from `runs-on`, they are
  # identical.
  # See: https://github.com/actions/runner/issues/1182
  build-linux:
-    runs-on: [ ubuntu-latest ] 
+    runs-on: [ubuntu-latest]
    steps:
      - uses: actions/checkout@v2
      - name: Set up Go
        uses: actions/setup-go@v2
        with:
-        go-version: 1.16
+          go-version: 1.19
      - name: Set up Revive (linter)
        run: go get -u github.com/boyter/scc github.com/mgechev/revive
        env:
-          GO111MODULE: off
+          GO111MODULE: "off"
      - name: Build
        run: make build
      - name: Test
        run: make test
  build-osx:
-    runs-on: [ macos-latest ] 
+    runs-on: [macos-latest]
    steps:
      - uses: actions/checkout@v2
      - name: Set up Go
        uses: actions/setup-go@v2
        with:
-        go-version: 1.16
+          go-version: 1.19
      - name: Set up Revive (linter)
        run: go get -u github.com/boyter/scc github.com/mgechev/revive
        env:
-          GO111MODULE: off
+          GO111MODULE: "off"
      - name: Build
        run: make build
      - name: Test
        run: make test
    # TODO: windows
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@ -1,12 +1,11 @@
 ---
 name: CodeQL
 on:
  push:
-    branches: [ master ]
+    branches: [master]
  pull_request:
-    branches: [ master ]
+    branches: [master]
  schedule:
    - cron: '45 23 * * 0'
@ -14,23 +13,18 @@ jobs:
  analyze:
    name: Analyze
    runs-on: ubuntu-latest
    strategy:
      fail-fast: false
      matrix:
-        language: [ 'go' ]
+        language: [go]
    steps:
      - name: Checkout repository
        uses: actions/checkout@v2
      - name: Initialize CodeQL
        uses: github/codeql-action/init@v1
        with:
          languages: ${{ matrix.language }}
      - name: Autobuild
        uses: github/codeql-action/autobuild@v1
      - name: Perform CodeQL Analysis
        uses: github/codeql-action/analyze@v1
--- a/.github/workflows/homebrew.yml
+++ b/.github/workflows/homebrew.yml
@ -1,3 +1,4 @@
 ---
 name: homebrew
 on:
@ -11,7 +12,8 @@ jobs:
    steps:
      - uses: mislav/bump-homebrew-formula-action@v1
        with:
-          # A PR will be sent to github.com/Homebrew/homebrew-core to update this formula:
+          # A PR will be sent to github.com/Homebrew/homebrew-core to update
          # this formula:
          formula-name: cheat
        env:
          COMMITTER_TOKEN: ${{ secrets.COMMITTER_TOKEN }}
--- a/CONTRIBUTING.md
+++ b/CONTRIBUTING.md
@ -19,7 +19,8 @@ tracker][issues] to discuss with the maintainer whether it would be considered
 for merging.
 `cheat` is mostly mature and feature-complete, but may still have some room for
-new features.
+new features. See [HACKING.md][hacking] for a quick-start guide to `cheat`
 development.
 #### Add documentation ####
 Did you encounter features, bugs, edge-cases, use-cases, or environment
@ -41,6 +42,7 @@ Please open all pull-requests against the `develop` branch.
 [cheat]: https://github.com/cheat/cheat
 [cheatsheets]: https://github.com/cheat/cheatsheets
 [hacking]: HACKING.md
 [issues]: https://github.com/cheat/cheat/issues 
 [pr]: https://help.github.com/en/github/collaborating-with-issues-and-pull-requests/creating-a-pull-request-from-a-fork
 [wiki]: https://github.com/cheat/cheat/wiki
--- a/HACKING.md
+++ b/HACKING.md
@ -0,0 +1,57 @@
 Hacking
 =======
 The following is a quickstart guide for developing `cheat`.
 ## 1. Install system dependencies
 Before you begin, you must install a handful of system dependencies. The
 following are required, and must be available on your `PATH`:
 - `git`
 - `go` (>= 1.17 is recommended)
 - `make`
 The following dependencies are optional:
 - `docker`
 - `pandoc` (necessary to generate a `man` page)
 ## 2. Install utility applications
 Run `make setup` to install `scc` and `revive`, which are used by various
 `make` targets.
 ## 3. Development workflow
 After your environment has been configured, your development workflow will
 resemble the following:
 1. Make changes to the `cheat` source code.
 2. Run `make test` to run unit-tests.
 3. Fix compiler errors and failing tests as necessary.
 4. Run `make`. A `cheat` executable will be written to the `dist` directory.
 5. Use the new executable by running `dist/cheat <command>`.
 6. Run `make install` to install `cheat` to your `PATH`.
 7. Run `make build-release` to build cross-platform binaries in `dist`.
 8. Run `make clean` to clean the `dist` directory when desired.
 You may run `make help` to see a list of available `make` commands.
 ### Developing with docker
 It may be useful to test your changes within a pristine environment. An
 Alpine-based docker container has been provided for that purpose.
 If you would like to build the docker container, run:
 ```sh
 make docker-setup
 ```
 To shell into the container, run:
 ```sh
 make docker-sh
 ```
 The `cheat` source code will be mounted at `/app` within the container.
 If you would like to destroy this container, you may run:
 ```sh
 make distclean
 ```
 [go]: https://go.dev/
--- a/INSTALLING.md
+++ b/INSTALLING.md
@ -0,0 +1,79 @@
 Installing
 ==========
 `cheat` has no runtime dependencies. As such, installing it is generally
 straightforward. There are a few methods available:
 ### Install manually
 #### Unix-like
 On Unix-like systems, you may simply paste the following snippet into your terminal:
 ```sh
 cd /tmp \
  && wget https://github.com/cheat/cheat/releases/download/4.4.2/cheat-linux-amd64.gz \
  && gunzip cheat-linux-amd64.gz \
  && chmod +x cheat-linux-amd64 \
  && sudo mv cheat-linux-amd64 /usr/local/bin/cheat
 ```
 You may need to need to change the version number (`4.4.2`) and the archive
 (`cheat-linux-amd64.gz`) depending on your platform.
 See the [releases page][releases] for a list of supported platforms.
 #### Windows
 TODO: community support is requested here. Please open a PR if you'd like to
 contribute installation instructions for Windows.
 ### Install via `go install`
 If you have `go` version `>=1.17` available on your `PATH`, you can install
 `cheat` via `go install`:
 ```sh
 go install github.com/cheat/cheat/cmd/cheat@latest
 ```
 ### Install via package manager
 Several community-maintained packages are also available:
 Package manager  | Package(s)
 ---------------- | -----------
 aur              | [cheat][pkg-aur-cheat], [cheat-bin][pkg-aur-cheat-bin]
 brew             | [cheat][pkg-brew]
 docker           | [docker-cheat][pkg-docker]
 nix              | [nixos.cheat][pkg-nix]
 snap             | [cheat][pkg-snap]
 <!--[pacman][]       |-->
 ## Configuring
 Three things must be done before you can use `cheat`:
 1. A config file must be generated
 2. [`cheatpaths`][cheatpaths] must be configured
 3. [Community cheatsheets][community] must be downloaded
 On first run, `cheat` will run an installer that will do all of the above
 automatically. After the installer is complete, it is strongly advised that you
 view the configuration file that was generated, as you may want to change some
 of its default values (to enable colorization, change the paginator, etc).
 ### conf.yml ###
 `cheat` is configured by a YAML file that will be auto-generated on first run.
 By default, the config file is assumed to exist on an XDG-compliant
 configuration path like `~/.config/cheat/conf.yml`. If you would like to store
 it elsewhere, you may export a `CHEAT_CONFIG_PATH` environment variable that
 specifies its path:
 ```sh
 export CHEAT_CONFIG_PATH="~/.dotfiles/cheat/conf.yml"
 ```
 [cheatpaths]:        README.md#cheatpaths
 [community]:         https://github.com/cheat/cheatsheets/
 [pkg-aur-cheat-bin]: https://aur.archlinux.org/packages/cheat-bin
 [pkg-aur-cheat]:     https://aur.archlinux.org/packages/cheat
 [pkg-brew]:          https://formulae.brew.sh/formula/cheat 
 [pkg-docker]:        https://github.com/bannmann/docker-cheat
 [pkg-nix]:           https://search.nixos.org/packages?channel=unstable&show=cheat&from=0&size=50&sort=relevance&type=packages&query=cheat 
 [pkg-snap]:          https://snapcraft.io/cheat
 [releases]:          https://github.com/cheat/cheat/releases
--- a/40
+++ b/40
@ -35,13 +35,16 @@ releases :=                        \
 	$(dist_dir)/cheat-linux-amd64  \
 	$(dist_dir)/cheat-linux-arm5   \
 	$(dist_dir)/cheat-linux-arm6   \
 	$(dist_dir)/cheat-linux-arm7   \
 	$(dist_dir)/cheat-linux-arm64  \
 	$(dist_dir)/cheat-linux-arm7   \
 	$(dist_dir)/cheat-netbsd-amd64  \
 	$(dist_dir)/cheat-openbsd-amd64  \
 	$(dist_dir)/cheat-solaris-amd64  \
 	$(dist_dir)/cheat-windows-amd64.exe
 ## build: build an executable for your architecture
 .PHONY: build
-build: $(dist_dir) clean fmt lint vet vendor generate man
+build: | clean $(dist_dir) generate fmt lint vet vendor man
 	$(GO) build $(BUILD_FLAGS) -o $(dist_dir)/cheat $(cmd_dir)
 ## build-release: build release executables
@ -83,6 +86,26 @@ $(dist_dir)/cheat-linux-arm64: prepare
 	GOARCH=arm64 GOOS=linux \
 	$(GO) build $(BUILD_FLAGS) -o $@ $(cmd_dir) && $(GZIP) $@ && chmod -x $@.gz
 # cheat-netbsd-amd64
 $(dist_dir)/cheat-netbsd-amd64: prepare
 	GOARCH=amd64 GOOS=netbsd \
 	$(GO) build $(BUILD_FLAGS) -o $@ $(cmd_dir) && $(GZIP) $@ && chmod -x $@.gz
 # cheat-openbsd-amd64
 $(dist_dir)/cheat-openbsd-amd64: prepare
 	GOARCH=amd64 GOOS=openbsd \
 	$(GO) build $(BUILD_FLAGS) -o $@ $(cmd_dir) && $(GZIP) $@ && chmod -x $@.gz
 # cheat-plan9-amd64
 $(dist_dir)/cheat-plan9-amd64: prepare
 	GOARCH=amd64 GOOS=plan9 \
 	$(GO) build $(BUILD_FLAGS) -o $@ $(cmd_dir) && $(GZIP) $@ && chmod -x $@.gz
 # cheat-solaris-amd64
 $(dist_dir)/cheat-solaris-amd64: prepare
 	GOARCH=amd64 GOOS=solaris \
 	$(GO) build $(BUILD_FLAGS) -o $@ $(cmd_dir) && $(GZIP) $@ && chmod -x $@.gz
 # cheat-windows-amd64
 $(dist_dir)/cheat-windows-amd64.exe: prepare
 	GOARCH=amd64 GOOS=windows \
@ -103,8 +126,8 @@ install: build
 ## clean: remove compiled executables
 .PHONY: clean
-clean: $(dist_dir)
+clean:
-	$(RM) -f $(dist_dir)/*
+	$(RM) -f $(dist_dir)/* $(cmd_dir)/str_config.go $(cmd_dir)/str_usage.go
 ## distclean: remove the tags file
 .PHONY: distclean
@ -140,7 +163,7 @@ vendor:
 ## vendor-update: update vendored dependencies
 vendor-update:
-	$(GO) get -t -u ./... && $(GO) mod vendor
+	$(GO) get -t -u ./... && $(GO) mod vendor && $(GO) mod tidy && $(GO) mod verify
 ## fmt: run go fmt
 .PHONY: fmt
@ -173,18 +196,13 @@ coverage:
 check: | vendor fmt lint vet test
 .PHONY: prepare
-prepare: | $(dist_dir) clean generate vendor fmt lint vet test
+prepare: | clean $(dist_dir) generate vendor fmt lint vet test
 ## docker-setup: create a docker image for use during development
 .PHONY: docker-setup
 docker-setup:
 	$(DOCKER) build  -t $(docker_image) -f Dockerfile .
 ## docker-run: shell into the development docker container
 .PHONY: docker-run
 docker-run:
 	$(DOCKER) run -v `pwd`:/app -ti $(docker_image) sh
 ## docker-sh: shell into the docker development container
 .PHONY: docker-sh
 docker-sh:
--- a/README.md
+++ b/README.md
@ -42,114 +42,6 @@ tar -xjvf '/path/to/foo.tgz'
 tar -cjvf '/path/to/foo.tgz' '/path/to/foo/'
 ```
 Installing
 ----------
 `cheat` has no dependencies. To install it, download the executable from the
 [releases][] page and place it on your `PATH`.
 Alternatively, if you have [go][] installed, you may install `cheat` using `go
 get`:
 ```sh
 go get -u github.com/cheat/cheat/cmd/cheat
 ```
 Configuring
 -----------
 ### conf.yml ###
 `cheat` is configured by a YAML file that will be auto-generated on first run.
 By default, the config file is assumed to exist on an XDG-compliant
 configuration path like `~/.config/cheat/conf.yml`. If you would like to store
 it elsewhere, you may export a `CHEAT_CONFIG_PATH` environment variable that
 specifies its path:
 ```sh
 export CHEAT_CONFIG_PATH="~/.dotfiles/cheat/conf.yml"
 ```
 Cheatsheets
 -----------
 Cheatsheets are plain-text files with no file extension, and are named
 according to the command used to view them:
 ```sh
 cheat tar     # file is named "tar"
 cheat foo/bar # file is named "bar", in a "foo" subdirectory
 ```
 Cheatsheet text may optionally be preceeded by a YAML frontmatter header that
 assigns tags and specifies syntax:
 ```
 ---
 syntax: javascript
 tags: [ array, map ]
 ---
 // To map over an array:
 const squares = [1, 2, 3, 4].map(x => x * x);
 ```
 The `cheat` executable includes no cheatsheets, but [community-sourced
 cheatsheets are available][cheatsheets]. You will be asked if you would like to
 install the community-sourced cheatsheets the first time you run `cheat`.
 ### Script ###
 You can manage the cheatsheets via a script `cheatsheets`.
 #### Download and install ####
 ```sh
 mkdir -p ~/.local/bin
 wget -O ~/.local/bin/cheatsheets https://raw.githubusercontent.com/cheat/cheat/master/scripts/git/cheatsheets
 chmod +x ~/.local/bin/cheatsheets
 ```
 #### Pull changes ####
 To pull the community and personal cheatsheets call `cheatsheets pull`
 #### Push changes ####
 To push your personal cheatsheets call `cheatsheets push`
 Cheatpaths
 ----------
 Cheatsheets are stored on "cheatpaths", which are directories that contain
 cheatsheets. Cheatpaths are specified in the `conf.yml` file.
 It can be useful to configure `cheat` against multiple cheatpaths. A common
 pattern is to store cheatsheets from multiple repositories on individual
 cheatpaths:
 ```yaml
 # conf.yml:
 # ...
 cheatpaths:
  - name: community                   # a name for the cheatpath
    path: ~/documents/cheat/community # the path's location on the filesystem
    tags: [ community ]               # these tags will be applied to all sheets on the path
    readonly: true                    # if true, `cheat` will not create new cheatsheets here
  - name: personal
    path: ~/documents/cheat/personal  # this is a separate directory and repository than above
    tags: [ personal ]
    readonly: false                   # new sheets may be written here
 # ...
 ```
 The `readonly` option instructs `cheat` not to edit (or create) any cheatsheets
 on the path. This is useful to prevent merge-conflicts from arising on upstream
 cheatsheet repositories.
 If a user attempts to edit a cheatsheet on a read-only cheatpath, `cheat` will
 transparently copy that sheet to a writeable directory before opening it for
 editing.
 ### Directory-scoped Cheatpaths ###
 At times, it can be useful to closely associate cheatsheets with a directory on
 your filesystem. `cheat` facilitates this by searching for a `.cheat` folder in
 the current working directory. If found, the `.cheat` directory will
 (temporarily) be added to the cheatpaths.
 Usage
 -----
 To view a cheatsheet:
@ -210,7 +102,77 @@ cheat -p personal -t networking --regex -s '(?:[0-9]{1,3}\.){3}[0-9]{1,3}'
 ```
-Advanced Usage
+
 Installing
 ----------
 For installation and configuration instructions, see [INSTALLING.md][].
 Cheatsheets
 -----------
 Cheatsheets are plain-text files with no file extension, and are named
 according to the command used to view them:
 ```sh
 cheat tar     # file is named "tar"
 cheat foo/bar # file is named "bar", in a "foo" subdirectory
 ```
 Cheatsheet text may optionally be preceeded by a YAML frontmatter header that
 assigns tags and specifies syntax:
 ```
 ---
 syntax: javascript
 tags: [ array, map ]
 ---
 // To map over an array:
 const squares = [1, 2, 3, 4].map(x => x * x);
 ```
 The `cheat` executable includes no cheatsheets, but [community-sourced
 cheatsheets are available][cheatsheets]. You will be asked if you would like to
 install the community-sourced cheatsheets the first time you run `cheat`.
 Cheatpaths
 ----------
 Cheatsheets are stored on "cheatpaths", which are directories that contain
 cheatsheets. Cheatpaths are specified in the `conf.yml` file.
 It can be useful to configure `cheat` against multiple cheatpaths. A common
 pattern is to store cheatsheets from multiple repositories on individual
 cheatpaths:
 ```yaml
 # conf.yml:
 # ...
 cheatpaths:
  - name: community                   # a name for the cheatpath
    path: ~/documents/cheat/community # the path's location on the filesystem
    tags: [ community ]               # these tags will be applied to all sheets on the path
    readonly: true                    # if true, `cheat` will not create new cheatsheets here
  - name: personal
    path: ~/documents/cheat/personal  # this is a separate directory and repository than above
    tags: [ personal ]
    readonly: false                   # new sheets may be written here
 # ...
 ```
 The `readonly` option instructs `cheat` not to edit (or create) any cheatsheets
 on the path. This is useful to prevent merge-conflicts from arising on upstream
 cheatsheet repositories.
 If a user attempts to edit a cheatsheet on a read-only cheatpath, `cheat` will
 transparently copy that sheet to a writeable directory before opening it for
 editing.
 ### Directory-scoped Cheatpaths ###
 At times, it can be useful to closely associate cheatsheets with a directory on
 your filesystem. `cheat` facilitates this by searching for a `.cheat` folder in
 the current working directory. If found, the `.cheat` directory will
 (temporarily) be added to the cheatpaths.
 Autocompletion
 --------------
 Shell autocompletion is currently available for `bash`, `fish`, and `zsh`. Copy
 the relevant [completion script][completions] into the appropriate directory on
@ -223,6 +185,7 @@ Additionally, `cheat` supports enhanced autocompletion via integration with
 1. Ensure that `fzf` is available on your `$PATH`
 2. Set an envvar: `export CHEAT_USE_FZF=true`
 [INSTALLING.md]: INSTALLING.md
 [Releases]:      https://github.com/cheat/cheat/releases
 [cheatsheets]:   https://github.com/cheat/cheatsheets
 [completions]:   https://github.com/cheat/cheat/tree/master/scripts
--- a/cmd/cheat/cmd_conf.go
+++ b/cmd/cheat/cmd_conf.go
@ -0,0 +1,11 @@
 package main
 import (
 	"fmt"
 	"github.com/cheat/cheat/internal/config"
 )
 func cmdConf(_ map[string]interface{}, conf config.Config) {
 	fmt.Println(conf.Path)
 }
--- a/cmd/cheat/cmd_directories.go
+++ b/cmd/cheat/cmd_directories.go
@ -10,7 +10,7 @@ import (
 )
 // cmdDirectories lists the configured cheatpaths.
-func cmdDirectories(opts map[string]interface{}, conf config.Config) {
+func cmdDirectories(_ map[string]interface{}, conf config.Config) {
 	// initialize a tabwriter to produce cleanly columnized output
 	var out bytes.Buffer
@ -18,11 +18,7 @@ func cmdDirectories(opts map[string]interface{}, conf config.Config) {
 	// generate sorted, columnized output
 	for _, path := range conf.Cheatpaths {
-		fmt.Fprintln(w, fmt.Sprintf(
+		fmt.Fprintf(w, "%s:\t%s\n", path.Name, path.Path)
 			"%s:\t%s",
 			path.Name,
 			path.Path,
 		))
 	}
 	// write columnized output to stdout
--- a/cmd/cheat/cmd_edit.go
+++ b/cmd/cheat/cmd_edit.go
@ -20,7 +20,7 @@ func cmdEdit(opts map[string]interface{}, conf config.Config) {
 	// load the cheatsheets
 	cheatsheets, err := sheets.Load(conf.Cheatpaths)
 	if err != nil {
-		fmt.Fprintln(os.Stderr, fmt.Sprintf("failed to list cheatsheets: %v", err))
+		fmt.Fprintf(os.Stderr, "failed to list cheatsheets: %v\n", err)
 		os.Exit(1)
 	}
--- a/cmd/cheat/cmd_list.go
+++ b/cmd/cheat/cmd_list.go
@ -21,7 +21,7 @@ func cmdList(opts map[string]interface{}, conf config.Config) {
 	// load the cheatsheets
 	cheatsheets, err := sheets.Load(conf.Cheatpaths)
 	if err != nil {
-		fmt.Fprintln(os.Stderr, fmt.Sprintf("failed to list cheatsheets: %v", err))
+		fmt.Fprintf(os.Stderr, "failed to list cheatsheets: %v\n", err)
 		os.Exit(1)
 	}
@ -63,10 +63,7 @@ func cmdList(opts map[string]interface{}, conf config.Config) {
 		// compile the regex
 		reg, err := regexp.Compile(pattern)
 		if err != nil {
-			fmt.Fprintln(
+			fmt.Fprintf(os.Stderr, "failed to compile regexp: %s, %v\n", pattern, err)
 				os.Stderr,
 				fmt.Sprintf("failed to compile regexp: %s, %v", pattern, err),
 			)
 			os.Exit(1)
 		}
@ -95,12 +92,7 @@ func cmdList(opts map[string]interface{}, conf config.Config) {
 	// generate sorted, columnized output
 	for _, sheet := range flattened {
-		fmt.Fprintln(w, fmt.Sprintf(
+		fmt.Fprintf(w, "%s\t%s\t%s\n", sheet.Title, sheet.Path, strings.Join(sheet.Tags, ","))
 			"%s\t%s\t%s",
 			sheet.Title,
 			sheet.Path,
 			strings.Join(sheet.Tags, ","),
 		))
 	}
 	// write columnized output to stdout
--- a/cmd/cheat/cmd_remove.go
+++ b/cmd/cheat/cmd_remove.go
@ -17,7 +17,7 @@ func cmdRemove(opts map[string]interface{}, conf config.Config) {
 	// load the cheatsheets
 	cheatsheets, err := sheets.Load(conf.Cheatpaths)
 	if err != nil {
-		fmt.Fprintln(os.Stderr, fmt.Sprintf("failed to list cheatsheets: %v", err))
+		fmt.Fprintf(os.Stderr, "failed to list cheatsheets: %v\n", err)
 		os.Exit(1)
 	}
@ -37,19 +37,19 @@ func cmdRemove(opts map[string]interface{}, conf config.Config) {
 	// fail early if the requested cheatsheet does not exist
 	sheet, ok := consolidated[cheatsheet]
 	if !ok {
-		fmt.Fprintln(os.Stderr, fmt.Sprintf("No cheatsheet found for '%s'.\n", cheatsheet))
+		fmt.Fprintf(os.Stderr, "No cheatsheet found for '%s'.\n", cheatsheet)
 		os.Exit(2)
 	}
 	// fail early if the sheet is read-only
 	if sheet.ReadOnly {
-		fmt.Fprintln(os.Stderr, fmt.Sprintf("cheatsheet '%s' is read-only.", cheatsheet))
+		fmt.Fprintf(os.Stderr, "cheatsheet '%s' is read-only.\n", cheatsheet)
 		os.Exit(1)
 	}
 	// otherwise, attempt to delete the sheet
 	if err := os.Remove(sheet.Path); err != nil {
-		fmt.Fprintln(os.Stderr, fmt.Sprintf("failed to delete sheet: %s, %v", sheet.Title, err))
+		fmt.Fprintf(os.Stderr, "failed to delete sheet: %s, %v\n", sheet.Title, err)
 		os.Exit(1)
 	}
 }
--- a/cmd/cheat/cmd_search.go
+++ b/cmd/cheat/cmd_search.go
@ -19,7 +19,7 @@ func cmdSearch(opts map[string]interface{}, conf config.Config) {
 	// load the cheatsheets
 	cheatsheets, err := sheets.Load(conf.Cheatpaths)
 	if err != nil {
-		fmt.Fprintln(os.Stderr, fmt.Sprintf("failed to list cheatsheets: %v", err))
+		fmt.Fprintf(os.Stderr, "failed to list cheatsheets: %v\n", err)
 		os.Exit(1)
 	}
@ -55,13 +55,13 @@ func cmdSearch(opts map[string]interface{}, conf config.Config) {
 			// compile the regex
 			reg, err := regexp.Compile(pattern)
 			if err != nil {
-				fmt.Fprintln(os.Stderr, fmt.Sprintf("failed to compile regexp: %s, %v", pattern, err))
+				fmt.Fprintf(os.Stderr, "failed to compile regexp: %s, %v\n", pattern, err)
 				os.Exit(1)
 			}
-			// `Search` will return text entries that match the search terms. We're
+			// `Search` will return text entries that match the search terms.
-			// using it here to overwrite the prior cheatsheet Text, filtering it to
+			// We're using it here to overwrite the prior cheatsheet Text,
-			// only what is relevant
+			// filtering it to only what is relevant.
 			sheet.Text = sheet.Search(reg)
 			// if the sheet did not match the search, ignore it and move on
@ -74,14 +74,16 @@ func cmdSearch(opts map[string]interface{}, conf config.Config) {
 				sheet.Colorize(conf)
 			}
-			// display the cheatsheet title and path
+			// display the cheatsheet body
-			out += fmt.Sprintf("%s %s\n",
+			out += fmt.Sprintf(
-				display.Underline(sheet.Title),
+				"%s %s\n%s\n",
 				// append the cheatsheet title
 				sheet.Title,
 				// append the cheatsheet path
 				display.Faint(fmt.Sprintf("(%s)", sheet.CheatPath), conf),
 			)
 				// indent each line of content
-			out += display.Indent(sheet.Text) + "\n"
+				display.Indent(sheet.Text),
 			)
 		}
 	}
@ -89,7 +91,7 @@ func cmdSearch(opts map[string]interface{}, conf config.Config) {
 	out = strings.TrimSpace(out)
 	// display the output
-	// NB: resist the temptation to call `display.Display` multiple times in
+	// NB: resist the temptation to call `display.Write` multiple times in the
-	// the loop above. That will not play nicely with the paginator.
+	// loop above. That will not play nicely with the paginator.
 	display.Write(out, conf)
 }
--- a/cmd/cheat/cmd_tags.go
+++ b/cmd/cheat/cmd_tags.go
@ -10,12 +10,12 @@ import (
 )
 // cmdTags lists all tags in use.
-func cmdTags(opts map[string]interface{}, conf config.Config) {
+func cmdTags(_ map[string]interface{}, conf config.Config) {
 	// load the cheatsheets
 	cheatsheets, err := sheets.Load(conf.Cheatpaths)
 	if err != nil {
-		fmt.Fprintln(os.Stderr, fmt.Sprintf("failed to list cheatsheets: %v", err))
+		fmt.Fprintf(os.Stderr, "failed to list cheatsheets: %v\n", err)
 		os.Exit(1)
 	}
--- a/cmd/cheat/cmd_view.go
+++ b/cmd/cheat/cmd_view.go
@ -18,7 +18,7 @@ func cmdView(opts map[string]interface{}, conf config.Config) {
 	// load the cheatsheets
 	cheatsheets, err := sheets.Load(conf.Cheatpaths)
 	if err != nil {
-		fmt.Fprintln(os.Stderr, fmt.Sprintf("failed to list cheatsheets: %v", err))
+		fmt.Fprintf(os.Stderr, "failed to list cheatsheets: %v\n", err)
 		os.Exit(1)
 	}
@ -41,7 +41,7 @@ func cmdView(opts map[string]interface{}, conf config.Config) {
 				// identify the matching cheatsheet
 				out += fmt.Sprintf("%s %s\n",
-					display.Underline(sheet.Title),
+					sheet.Title,
 					display.Faint(fmt.Sprintf("(%s)", sheet.CheatPath), conf),
 				)
--- a/cmd/cheat/docopt.txt
+++ b/cmd/cheat/docopt.txt
@ -15,6 +15,7 @@ Options:
  -T --tags               List all tags in use
  -v --version            Print the version number
  --rm=<cheatsheet>       Remove (delete) <cheatsheet>
  --conf                  Display the config file path
 Examples:
@ -53,3 +54,6 @@ Examples:
  To remove (delete) the foo/bar cheatsheet:
    cheat --rm foo/bar
  To view the configuration file path:
    cheat --conf
--- a/cmd/cheat/main.go
+++ b/cmd/cheat/main.go
@ -1,3 +1,4 @@
 // Package main serves as the executable entrypoint.
 package main
 //go:generate go run ../../build/embed.go
@ -16,7 +17,7 @@ import (
 	"github.com/cheat/cheat/internal/installer"
 )
-const version = "4.2.5"
+const version = "4.4.2"
 func main() {
@ -120,6 +121,9 @@ func main() {
 	var cmd func(map[string]interface{}, config.Config)
 	switch {
 	case opts["--conf"].(bool):
 		cmd = cmdConf
 	case opts["--directories"].(bool):
 		cmd = cmdDirectories
--- a/cmd/cheat/str_config.go
+++ b/cmd/cheat/str_config.go
@ -9,7 +9,7 @@ import (
 func configs() string {
 	return strings.TrimSpace(`---
 # The editor to use with 'cheat -e <sheet>'. Defaults to $EDITOR or $VISUAL.
-# editor: vim
+editor: EDITOR_PATH
 # Should 'cheat' always colorize output?
 colorize: false
@ -17,45 +17,57 @@ colorize: false
 # Which 'chroma' colorscheme should be applied to the output?
 # Options are available here:
 #   https://github.com/alecthomas/chroma/tree/master/styles
-# style: monokai
+style: monokai
 # Which 'chroma' "formatter" should be applied?
 # One of: "terminal", "terminal256", "terminal16m"
-formatter: terminal
+formatter: terminal256
-# Through which pager should output be piped? (Unset this key for no pager.)
+# Through which pager should output be piped?
-pager: more
+# 'less -FRX' is recommended on Unix systems
-# pager: less -FRX # <- recommended where available
+# 'more' is recommended on Windows
 pager: PAGER_PATH
-# The paths at which cheatsheets are available. Tags associated with a cheatpath
+# Cheatpaths are paths at which cheatsheets are available on your local
-# are automatically attached to all cheatsheets residing on that path.
+# filesystem.
 #
-# Whenever cheatsheets share the same title (like 'tar'), the most local
+# It is useful to sort cheatsheets into different cheatpaths for organizational
-# cheatsheets (those which come later in this file) take precedent over the
+# purposes. For example, you might want one cheatpath for community
-# less local sheets. This allows you to create your own "overides" for
+# cheatsheets, one for personal cheatsheets, one for cheatsheets pertaining to
-# "upstream" cheatsheets.
+# your day job, one for code snippets, etc.
 #
-# But what if you want to view the "upstream" cheatsheets instead of your own?
+# Cheatpaths are scoped, such that more "local" cheatpaths take priority over
-# Cheatsheets may be filtered via 'cheat -t <tag>' in combination with other
+# more "global" cheatpaths. (The most global cheatpath is listed first in this
-# commands. So, if you want to view the 'tar' cheatsheet that is tagged as
+# file; the most local is listed last.) For example, if there is a 'tar'
-# 'community' rather than your own, you can use: cheat tar -t community
+# cheatsheet on both global and local paths, you'll be presented with the local
 # one by default. ('cheat -p' can be used to view cheatsheets from alternative
 # cheatpaths.)
 #
 # Cheatpaths can also be tagged as "read only". This instructs cheat not to
 # automatically create cheatsheets on a read-only cheatpath. Instead, when you
 # would like to edit a read-only cheatsheet using 'cheat -e', cheat will
 # perform a copy-on-write of that cheatsheet from a read-only cheatpath to a
 # writeable cheatpath.
 #
 # This is very useful when you would like to maintain, for example, a
 # "pristine" repository of community cheatsheets on one cheatpath, and an
 # editable personal reponsity of cheatsheets on another cheatpath.
 #
 # Cheatpaths can be also configured to automatically apply tags to cheatsheets
 # on certain paths, which can be useful for querying purposes.
 # Example: 'cheat -t work jenkins'.
 #
 # Community cheatsheets must be installed separately, though you may have
 # downloaded them automatically when installing 'cheat'. If not, you may
 # download them here:
 #
 # https://github.com/cheat/cheatsheets
 cheatpaths:
-
+  # Cheatpath properties mean the following:
-  # Paths that come earlier are considered to be the most "global", and will
+  #   'name': the name of the cheatpath (view with 'cheat -d', filter with 'cheat -p')
-  # thus be overridden by more local cheatsheets. That being the case, you
+  #   'path': the filesystem path of the cheatsheet directory (view with 'cheat -d')
-  # should probably list community cheatsheets first.
+  #   'tags': tags that should be automatically applied to sheets on this path
-  #
+  #   'readonly': shall user-created ('cheat -e') cheatsheets be saved here?
  # Note that the paths and tags listed below are placeholders. You may freely
  # change them to suit your needs.
  #
  # Community cheatsheets must be installed separately, though you may have
  # downloaded them automatically when installing 'cheat'. If not, you may
  # download them here:
  #
  # https://github.com/cheat/cheatsheets
  #
  # Once downloaded, ensure that 'path' below points to the location at which
  # you downloaded the community cheatsheets.
  - name: community
    path: COMMUNITY_PATH
    tags: [ community ]
@ -69,13 +81,13 @@ cheatpaths:
    readonly: false
  # While it requires no configuration here, it's also worth noting that
-  # 'cheat' will automatically append directories named '.cheat' within the
+  # cheat will automatically append directories named '.cheat' within the
  # current working directory to the 'cheatpath'. This can be very useful if
  # you'd like to closely associate cheatsheets with, for example, a directory
  # containing source code.
  #
  # Such "directory-scoped" cheatsheets will be treated as the most "local"
-  # cheatsheets, and will override less "local" cheatsheets. Likewise,
+  # cheatsheets, and will override less "local" cheatsheets. Similarly,
  # directory-scoped cheatsheets will always be editable ('readonly: false').
 `)
 }
--- a/cmd/cheat/str_usage.go
+++ b/cmd/cheat/str_usage.go
@ -24,6 +24,7 @@ Options:
  -T --tags               List all tags in use
  -v --version            Print the version number
  --rm=<cheatsheet>       Remove (delete) <cheatsheet>
  --conf                  Display the config file path
 Examples:
@ -62,5 +63,8 @@ Examples:
  To remove (delete) the foo/bar cheatsheet:
    cheat --rm foo/bar
  To view the configuration file path:
    cheat --conf
 `)
 }
--- a/configs/conf.yml
+++ b/configs/conf.yml
@ -1,6 +1,6 @@
 ---
 # The editor to use with 'cheat -e <sheet>'. Defaults to $EDITOR or $VISUAL.
-# editor: vim
+editor: EDITOR_PATH
 # Should 'cheat' always colorize output?
 colorize: false
@ -8,45 +8,57 @@ colorize: false
 # Which 'chroma' colorscheme should be applied to the output?
 # Options are available here:
 #   https://github.com/alecthomas/chroma/tree/master/styles
-# style: monokai
+style: monokai
 # Which 'chroma' "formatter" should be applied?
 # One of: "terminal", "terminal256", "terminal16m"
-formatter: terminal
+formatter: terminal256
-# Through which pager should output be piped? (Unset this key for no pager.)
+# Through which pager should output be piped?
-pager: more
+# 'less -FRX' is recommended on Unix systems
-# pager: less -FRX # <- recommended where available
+# 'more' is recommended on Windows
 pager: PAGER_PATH
-# The paths at which cheatsheets are available. Tags associated with a cheatpath
+# Cheatpaths are paths at which cheatsheets are available on your local
-# are automatically attached to all cheatsheets residing on that path.
+# filesystem.
 #
-# Whenever cheatsheets share the same title (like 'tar'), the most local
+# It is useful to sort cheatsheets into different cheatpaths for organizational
-# cheatsheets (those which come later in this file) take precedent over the
+# purposes. For example, you might want one cheatpath for community
-# less local sheets. This allows you to create your own "overides" for
+# cheatsheets, one for personal cheatsheets, one for cheatsheets pertaining to
-# "upstream" cheatsheets.
+# your day job, one for code snippets, etc.
 #
-# But what if you want to view the "upstream" cheatsheets instead of your own?
+# Cheatpaths are scoped, such that more "local" cheatpaths take priority over
-# Cheatsheets may be filtered via 'cheat -t <tag>' in combination with other
+# more "global" cheatpaths. (The most global cheatpath is listed first in this
-# commands. So, if you want to view the 'tar' cheatsheet that is tagged as
+# file; the most local is listed last.) For example, if there is a 'tar'
-# 'community' rather than your own, you can use: cheat tar -t community
+# cheatsheet on both global and local paths, you'll be presented with the local
 # one by default. ('cheat -p' can be used to view cheatsheets from alternative
 # cheatpaths.)
 #
 # Cheatpaths can also be tagged as "read only". This instructs cheat not to
 # automatically create cheatsheets on a read-only cheatpath. Instead, when you
 # would like to edit a read-only cheatsheet using 'cheat -e', cheat will
 # perform a copy-on-write of that cheatsheet from a read-only cheatpath to a
 # writeable cheatpath.
 #
 # This is very useful when you would like to maintain, for example, a
 # "pristine" repository of community cheatsheets on one cheatpath, and an
 # editable personal reponsity of cheatsheets on another cheatpath.
 #
 # Cheatpaths can be also configured to automatically apply tags to cheatsheets
 # on certain paths, which can be useful for querying purposes.
 # Example: 'cheat -t work jenkins'.
 #
 # Community cheatsheets must be installed separately, though you may have
 # downloaded them automatically when installing 'cheat'. If not, you may
 # download them here:
 #
 # https://github.com/cheat/cheatsheets
 cheatpaths:
-
+  # Cheatpath properties mean the following:
-  # Paths that come earlier are considered to be the most "global", and will
+  #   'name': the name of the cheatpath (view with 'cheat -d', filter with 'cheat -p')
-  # thus be overridden by more local cheatsheets. That being the case, you
+  #   'path': the filesystem path of the cheatsheet directory (view with 'cheat -d')
-  # should probably list community cheatsheets first.
+  #   'tags': tags that should be automatically applied to sheets on this path
-  #
+  #   'readonly': shall user-created ('cheat -e') cheatsheets be saved here?
  # Note that the paths and tags listed below are placeholders. You may freely
  # change them to suit your needs.
  #
  # Community cheatsheets must be installed separately, though you may have
  # downloaded them automatically when installing 'cheat'. If not, you may
  # download them here:
  #
  # https://github.com/cheat/cheatsheets
  #
  # Once downloaded, ensure that 'path' below points to the location at which
  # you downloaded the community cheatsheets.
  - name: community
    path: COMMUNITY_PATH
    tags: [ community ]
@ -60,11 +72,11 @@ cheatpaths:
    readonly: false
  # While it requires no configuration here, it's also worth noting that
-  # 'cheat' will automatically append directories named '.cheat' within the
+  # cheat will automatically append directories named '.cheat' within the
  # current working directory to the 'cheatpath'. This can be very useful if
  # you'd like to closely associate cheatsheets with, for example, a directory
  # containing source code.
  #
  # Such "directory-scoped" cheatsheets will be treated as the most "local"
-  # cheatsheets, and will override less "local" cheatsheets. Likewise,
+  # cheatsheets, and will override less "local" cheatsheets. Similarly,
  # directory-scoped cheatsheets will always be editable ('readonly: false').
--- a/doc/cheat.1
+++ b/doc/cheat.1
@ -1,182 +1,150 @@
-.\" Automatically generated by Pandoc 2.2.1
+.\" Automatically generated by Pandoc 2.17.1.1
 .\"
 .\" Define V font for inline verbatim, using C font in formats
 .\" that render this, and otherwise B font.
 .ie "\f[CB]x\f[]"x" \{\
 . ftr V B
 . ftr VI BI
 . ftr VB B
 . ftr VBI BI
 .\}
 .el \{\
 . ftr V CR
 . ftr VI CI
 . ftr VB CB
 . ftr VBI CBI
 .\}
 .TH "CHEAT" "1" "" "" "General Commands Manual"
 .hy
 .SH NAME
 .PP
-\f[B]cheat\f[] \[em] create and view command\-line cheatsheets
+\f[B]cheat\f[R] \[em] create and view command-line cheatsheets
 .SH SYNOPSIS
 .PP
-\f[B]cheat\f[] [options] [\f[I]CHEATSHEET\f[]]
+\f[B]cheat\f[R] [options] [\f[I]CHEATSHEET\f[R]]
 .SH DESCRIPTION
 .PP
-\f[B]cheat\f[] allows you to create and view interactive cheatsheets on
+\f[B]cheat\f[R] allows you to create and view interactive cheatsheets on
-the command\-line.
+the command-line.
 It was designed to help remind *nix system administrators of options for
 commands that they use frequently, but not frequently enough to
 remember.
 .SH OPTIONS
 .TP
-.B \[en]init
+\[en]init
 Print a config file to stdout.
 .RS
 .RE
 .TP
-.B \-c, \[en]colorize
+-c, \[en]colorize
 Colorize output.
 .RS
 .RE
 .TP
-.B \-d, \[en]directories
+-d, \[en]directories
 List cheatsheet directories.
 .RS
 .RE
 .TP
-.B \-e, \[en]edit=\f[I]CHEATSHEET\f[]
+-e, \[en]edit=\f[I]CHEATSHEET\f[R]
-Open \f[I]CHEATSHEET\f[] for editing.
+Open \f[I]CHEATSHEET\f[R] for editing.
 .RS
 .RE
 .TP
-.B \-l, \[en]list
+-l, \[en]list
 List available cheatsheets.
 .RS
 .RE
 .TP
-.B \-p, \[en]path=\f[I]PATH\f[]
+-p, \[en]path=\f[I]PATH\f[R]
-Filter only to sheets found on path \f[I]PATH\f[].
+Filter only to sheets found on path \f[I]PATH\f[R].
 .RS
 .RE
 .TP
-.B \-r, \[en]regex
+-r, \[en]regex
-Treat search \f[I]PHRASE\f[] as a regular expression.
+Treat search \f[I]PHRASE\f[R] as a regular expression.
 .RS
 .RE
 .TP
-.B \-s, \[en]search=\f[I]PHRASE\f[]
+-s, \[en]search=\f[I]PHRASE\f[R]
-Search cheatsheets for \f[I]PHRASE\f[].
+Search cheatsheets for \f[I]PHRASE\f[R].
 .RS
 .RE
 .TP
-.B \-t, \[en]tag=\f[I]TAG\f[]
+-t, \[en]tag=\f[I]TAG\f[R]
-Filter only to sheets tagged with \f[I]TAG\f[].
+Filter only to sheets tagged with \f[I]TAG\f[R].
 .RS
 .RE
 .TP
-.B \-T, \[en]tags
+-T, \[en]tags
 List all tags in use.
 .RS
 .RE
 .TP
-.B \-v, \[en]version
+-v, \[en]version
 Print the version number.
 .RS
 .RE
 .TP
-.B \[en]rm=\f[I]CHEATSHEET\f[]
+\[en]rm=\f[I]CHEATSHEET\f[R]
-Remove (deletes) \f[I]CHEATSHEET\f[].
+Remove (deletes) \f[I]CHEATSHEET\f[R].
 .RS
 .RE
 .SH EXAMPLES
 .TP
-.B To view the foo cheatsheet:
+To view the foo cheatsheet:
-cheat \f[I]foo\f[]
+cheat \f[I]foo\f[R]
 .RS
 .RE
 .TP
-.B To edit (or create) the foo cheatsheet:
+To edit (or create) the foo cheatsheet:
-cheat \-e \f[I]foo\f[]
+cheat -e \f[I]foo\f[R]
 .RS
 .RE
 .TP
-.B To edit (or create) the foo/bar cheatsheet on the `work' cheatpath:
+To edit (or create) the foo/bar cheatsheet on the `work' cheatpath:
-cheat \-p \f[I]work\f[] \-e \f[I]foo/bar\f[]
+cheat -p \f[I]work\f[R] -e \f[I]foo/bar\f[R]
 .RS
 .RE
 .TP
-.B To view all cheatsheet directories:
+To view all cheatsheet directories:
-cheat \-d
+cheat -d
 .RS
 .RE
 .TP
-.B To list all available cheatsheets:
+To list all available cheatsheets:
-cheat \-l
+cheat -l
 .RS
 .RE
 .TP
-.B To list all cheatsheets whose titles match `apt':
+To list all cheatsheets whose titles match `apt':
-cheat \-l \f[I]apt\f[]
+cheat -l \f[I]apt\f[R]
 .RS
 .RE
 .TP
-.B To list all tags in use:
+To list all tags in use:
-cheat \-T
+cheat -T
 .RS
 .RE
 .TP
-.B To list available cheatsheets that are tagged as `personal':
+To list available cheatsheets that are tagged as `personal':
-cheat \-l \-t \f[I]personal\f[]
+cheat -l -t \f[I]personal\f[R]
 .RS
 .RE
 .TP
-.B To search for `ssh' among all cheatsheets, and colorize matches:
+To search for `ssh' among all cheatsheets, and colorize matches:
-cheat \-c \-s \f[I]ssh\f[]
+cheat -c -s \f[I]ssh\f[R]
 .RS
 .RE
 .TP
-.B To search (by regex) for cheatsheets that contain an IP address:
+To search (by regex) for cheatsheets that contain an IP address:
-cheat \-c \-r \-s \f[I]`(?:[0\-9]{1,3}.){3}[0\-9]{1,3}'\f[]
+cheat -c -r -s \f[I]`(?:[0-9]{1,3}.){3}[0-9]{1,3}'\f[R]
 .RS
 .RE
 .TP
-.B To remove (delete) the foo/bar cheatsheet:
+To remove (delete) the foo/bar cheatsheet:
-cheat \[en]rm \f[I]foo/bar\f[]
+cheat \[en]rm \f[I]foo/bar\f[R]
 .RS
 .RE
 .SH FILES
 .SS Configuration
 .PP
-\f[B]cheat\f[] is configured via a YAML file that is conventionally
+\f[B]cheat\f[R] is configured via a YAML file that is conventionally
-named \f[I]conf.yaml\f[].
+named \f[I]conf.yaml\f[R].
-\f[B]cheat\f[] will search for \f[I]conf.yaml\f[] in varying locations,
+\f[B]cheat\f[R] will search for \f[I]conf.yaml\f[R] in varying
-depending upon your platform:
+locations, depending upon your platform:
 .SS Linux, OSX, and other Unixes
 .IP "1." 3
-\f[B]CHEAT_CONFIG_PATH\f[]
+\f[B]CHEAT_CONFIG_PATH\f[R]
 .IP "2." 3
-\f[B]XDG_CONFIG_HOME\f[]/cheat/conf.yaml
+\f[B]XDG_CONFIG_HOME\f[R]/cheat/conf.yaml
 .IP "3." 3
-\f[B]$HOME\f[]/.config/cheat/conf.yml
+\f[B]$HOME\f[R]/.config/cheat/conf.yml
 .IP "4." 3
-\f[B]$HOME\f[]/.cheat/conf.yml
+\f[B]$HOME\f[R]/.cheat/conf.yml
 .SS Windows
 .IP "1." 3
-\f[B]CHEAT_CONFIG_PATH\f[]
+\f[B]CHEAT_CONFIG_PATH\f[R]
 .IP "2." 3
-\f[B]APPDATA\f[]/cheat/conf.yml
+\f[B]APPDATA\f[R]/cheat/conf.yml
 .IP "3." 3
-\f[B]PROGRAMDATA\f[]/cheat/conf.yml
+\f[B]PROGRAMDATA\f[R]/cheat/conf.yml
 .PP
-\f[B]cheat\f[] will search in the order specified above.
+\f[B]cheat\f[R] will search in the order specified above.
-The first \f[I]conf.yaml\f[] encountered will be respected.
+The first \f[I]conf.yaml\f[R] encountered will be respected.
 .PP
-If \f[B]cheat\f[] cannot locate a config file, it will ask if you'd like
+If \f[B]cheat\f[R] cannot locate a config file, it will ask if you\[cq]d
-to generate one automatically.
+like to generate one automatically.
 Alternatively, you may also generate a config file manually by running
-\f[B]cheat \[en]init\f[] and saving its output to the appropriate
+\f[B]cheat \[en]init\f[R] and saving its output to the appropriate
 location for your platform.
 .SS Cheatpaths
 .PP
-\f[B]cheat\f[] reads its cheatsheets from \[lq]cheatpaths\[rq], which
+\f[B]cheat\f[R] reads its cheatsheets from \[lq]cheatpaths\[rq], which
 are the directories in which cheatsheets are stored.
-Cheatpaths may be configured in \f[I]conf.yaml\f[], and viewed via
+Cheatpaths may be configured in \f[I]conf.yaml\f[R], and viewed via
-\f[B]cheat \-d\f[].
+\f[B]cheat -d\f[R].
 .PP
 For detailed instructions on how to configure cheatpaths, please refer
 to the comments in conf.yml.
 .SS Autocompletion
 .PP
-Autocompletion scripts for \f[B]bash\f[], \f[B]zsh\f[], and
+Autocompletion scripts for \f[B]bash\f[R], \f[B]zsh\f[R], and
-\f[B]fish\f[] are available for download:
+\f[B]fish\f[R] are available for download:
 .IP \[bu] 2
 <https://github.com/cheat/cheat/blob/master/scripts/cheat.bash>
 .IP \[bu] 2
@ -184,25 +152,22 @@ Autocompletion scripts for \f[B]bash\f[], \f[B]zsh\f[], and
 .IP \[bu] 2
 <https://github.com/cheat/cheat/blob/master/scripts/cheat.zsh>
 .PP
-The \f[B]bash\f[] and \f[B]zsh\f[] scripts provide optional integration
+The \f[B]bash\f[R] and \f[B]zsh\f[R] scripts provide optional
-with \f[B]fzf\f[], if the latter is available on your \f[B]PATH\f[].
+integration with \f[B]fzf\f[R], if the latter is available on your
 \f[B]PATH\f[R].
 .PP
 The installation process will vary per system and shell configuration,
 and thus will not be discussed here.
 .SH ENVIRONMENT
 .TP
-.B \f[B]CHEAT_CONFIG_PATH\f[]
+\f[B]CHEAT_CONFIG_PATH\f[R]
 The path at which the config file is available.
-If \f[B]CHEAT_CONFIG_PATH\f[] is set, all other config paths will be
+If \f[B]CHEAT_CONFIG_PATH\f[R] is set, all other config paths will be
 ignored.
 .RS
 .RE
 .TP
-.B \f[B]CHEAT_USE_FZF\f[]
+\f[B]CHEAT_USE_FZF\f[R]
 If set, autocompletion scripts will attempt to integrate with
-\f[B]fzf\f[].
+\f[B]fzf\f[R].
 .RS
 .RE
 .SH RETURN VALUES
 .IP "0." 3
 Successful termination
@ -218,4 +183,4 @@ See GitHub issues: <https://github.com/cheat/cheat/issues>
 Christopher Allen Lane <chris@chris-allen-lane.com>
 .SH SEE ALSO
 .PP
-\f[B]fzf(1)\f[]
+\f[B]fzf(1)\f[R]
--- a/go.mod
+++ b/go.mod
@ -1,17 +1,38 @@
 module github.com/cheat/cheat
-go 1.14
+go 1.19
 require (
-	github.com/alecthomas/chroma v0.10.0
+	github.com/alecthomas/chroma/v2 v2.12.0
 	github.com/davecgh/go-spew v1.1.1
 	github.com/docopt/docopt-go v0.0.0-20180111231733-ee0de3bc6815
-	github.com/kr/text v0.2.0 // indirect
+	github.com/go-git/go-git/v5 v5.11.0
-	github.com/mattn/go-isatty v0.0.14
+	github.com/mattn/go-isatty v0.0.20
 	github.com/mitchellh/go-homedir v1.1.0
-	github.com/niemeyer/pretty v0.0.0-20200227124842-a10e7caefd8e // indirect
+	gopkg.in/yaml.v3 v3.0.1
-	golang.org/x/sys v0.0.0-20220704084225-05e143d24a9e // indirect
+)
-	gopkg.in/check.v1 v1.0.0-20200227125254-8fa46927fb4f // indirect
+
-	gopkg.in/yaml.v1 v1.0.0-20140924161607-9f9df34309c0
+require (
-	gopkg.in/yaml.v2 v2.4.0
+	dario.cat/mergo v1.0.0 // indirect
 	github.com/Microsoft/go-winio v0.6.1 // indirect
 	github.com/ProtonMail/go-crypto v0.0.0-20230923063757-afb1ddc0824c // indirect
 	github.com/cloudflare/circl v1.3.7 // indirect
 	github.com/cyphar/filepath-securejoin v0.2.4 // indirect
 	github.com/dlclark/regexp2 v1.10.0 // indirect
 	github.com/emirpasic/gods v1.18.1 // indirect
 	github.com/go-git/gcfg v1.5.1-0.20230307220236-3a3c6141e376 // indirect
 	github.com/go-git/go-billy/v5 v5.5.0 // indirect
 	github.com/golang/groupcache v0.0.0-20210331224755-41bb18bfe9da // indirect
 	github.com/jbenet/go-context v0.0.0-20150711004518-d14ea06fba99 // indirect
 	github.com/kevinburke/ssh_config v1.2.0 // indirect
 	github.com/pjbgf/sha1cd v0.3.0 // indirect
 	github.com/sergi/go-diff v1.3.1 // indirect
 	github.com/skeema/knownhosts v1.2.1 // indirect
 	github.com/xanzy/ssh-agent v0.3.3 // indirect
 	golang.org/x/crypto v0.17.0 // indirect
 	golang.org/x/mod v0.14.0 // indirect
 	golang.org/x/net v0.19.0 // indirect
 	golang.org/x/sys v0.15.0 // indirect
 	golang.org/x/tools v0.16.1 // indirect
 	gopkg.in/warnings.v0 v0.1.2 // indirect
 )
--- a/go.sum
+++ b/go.sum
@ -1,37 +1,143 @@
-github.com/alecthomas/chroma v0.10.0 h1:7XDcGkCQopCNKjZHfYrNLraA+M7e0fMiJ/Mfikbfjek=
+dario.cat/mergo v1.0.0 h1:AGCNq9Evsj31mOgNPcLyXc+4PNABt905YmuqPYYpBWk=
-github.com/alecthomas/chroma v0.10.0/go.mod h1:jtJATyUxlIORhUOFNA9NZDWGAQ8wpxQQqNSB4rjA/1s=
+dario.cat/mergo v1.0.0/go.mod h1:uNxQE+84aUszobStD9th8a29P2fMDhsBdgRYvZOxGmk=
-github.com/creack/pty v1.1.9/go.mod h1:oKZEueFk5CKHvIhNR5MUki03XCEU+Q6VDXinZuGJ33E=
+github.com/Microsoft/go-winio v0.5.2/go.mod h1:WpS1mjBmmwHBEWmogvA2mj8546UReBk4v8QkMxJ6pZY=
 github.com/Microsoft/go-winio v0.6.1 h1:9/kr64B9VUZrLm5YYwbGtUJnMgqWVOdUAXu6Migciow=
 github.com/Microsoft/go-winio v0.6.1/go.mod h1:LRdKpFKfdobln8UmuiYcKPot9D2v6svN5+sAH+4kjUM=
 github.com/ProtonMail/go-crypto v0.0.0-20230923063757-afb1ddc0824c h1:kMFnB0vCcX7IL/m9Y5LO+KQYv+t1CQOiFe6+SV2J7bE=
 github.com/ProtonMail/go-crypto v0.0.0-20230923063757-afb1ddc0824c/go.mod h1:EjAoLdwvbIOoOQr3ihjnSoLZRtE8azugULFRteWMNc0=
 github.com/alecthomas/assert/v2 v2.2.1 h1:XivOgYcduV98QCahG8T5XTezV5bylXe+lBxLG2K2ink=
 github.com/alecthomas/chroma/v2 v2.12.0 h1:Wh8qLEgMMsN7mgyG8/qIpegky2Hvzr4By6gEF7cmWgw=
 github.com/alecthomas/chroma/v2 v2.12.0/go.mod h1:4TQu7gdfuPjSh76j78ietmqh9LiurGF0EpseFXdKMBw=
 github.com/alecthomas/repr v0.2.0 h1:HAzS41CIzNW5syS8Mf9UwXhNH1J9aix/BvDRf1Ml2Yk=
 github.com/anmitsu/go-shlex v0.0.0-20200514113438-38f4b401e2be h1:9AeTilPcZAjCFIImctFaOjnTIavg87rW78vTPkQqLI8=
 github.com/armon/go-socks5 v0.0.0-20160902184237-e75332964ef5 h1:0CwZNZbxp69SHPdPJAN/hZIm0C4OItdklCFmMRWYpio=
 github.com/bwesterb/go-ristretto v1.2.3/go.mod h1:fUIoIZaG73pV5biE2Blr2xEzDoMj7NFEuV9ekS419A0=
 github.com/cloudflare/circl v1.3.3/go.mod h1:5XYMA4rFBvNIrhs50XuiBJ15vF2pZn4nnUKZrLbUZFA=
 github.com/cloudflare/circl v1.3.7 h1:qlCDlTPz2n9fu58M0Nh1J/JzcFpfgkFHHX3O35r5vcU=
 github.com/cloudflare/circl v1.3.7/go.mod h1:sRTcRWXGLrKw6yIGJ+l7amYJFfAXbZG0kBSc8r4zxgA=
 github.com/cyphar/filepath-securejoin v0.2.4 h1:Ugdm7cg7i6ZK6x3xDF1oEu1nfkyfH53EtKeQYTC3kyg=
 github.com/cyphar/filepath-securejoin v0.2.4/go.mod h1:aPGpWjXOXUn2NCNjFvBE6aRxGGx79pTxQpKOJNYHHl4=
 github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
 github.com/davecgh/go-spew v1.1.1 h1:vj9j/u1bqnvCEfJOwUhtlOARqs3+rkHYY13jYWTU97c=
 github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
-github.com/dlclark/regexp2 v1.4.0 h1:F1rxgk7p4uKjwIQxBs9oAXe5CqrXlCduYEJvrF4u93E=
+github.com/dlclark/regexp2 v1.10.0 h1:+/GIL799phkJqYW+3YbOd8LCcbHzT0Pbo8zl70MHsq0=
-github.com/dlclark/regexp2 v1.4.0/go.mod h1:2pZnwuY/m+8K6iRw6wQdMtk+rH5tNGR1i55kozfMjCc=
+github.com/dlclark/regexp2 v1.10.0/go.mod h1:DHkYz0B9wPfa6wondMfaivmHpzrQ3v9q8cnmRbL6yW8=
 github.com/docopt/docopt-go v0.0.0-20180111231733-ee0de3bc6815 h1:bWDMxwH3px2JBh6AyO7hdCn/PkvCZXii8TGj7sbtEbQ=
 github.com/docopt/docopt-go v0.0.0-20180111231733-ee0de3bc6815/go.mod h1:WwZ+bS3ebgob9U8Nd0kOddGdZWjyMGR8Wziv+TBNwSE=
 github.com/elazarl/goproxy v0.0.0-20230808193330-2592e75ae04a h1:mATvB/9r/3gvcejNsXKSkQ6lcIaNec2nyfOdlTBR2lU=
 github.com/emirpasic/gods v1.18.1 h1:FXtiHYKDGKCW2KzwZKx0iC0PQmdlorYgdFG9jPXJ1Bc=
 github.com/emirpasic/gods v1.18.1/go.mod h1:8tpGGwCnJ5H4r6BWwaV6OrWmMoPhUl5jm/FMNAnJvWQ=
 github.com/gliderlabs/ssh v0.3.5 h1:OcaySEmAQJgyYcArR+gGGTHCyE7nvhEMTlYY+Dp8CpY=
 github.com/go-git/gcfg v1.5.1-0.20230307220236-3a3c6141e376 h1:+zs/tPmkDkHx3U66DAb0lQFJrpS6731Oaa12ikc+DiI=
 github.com/go-git/gcfg v1.5.1-0.20230307220236-3a3c6141e376/go.mod h1:an3vInlBmSxCcxctByoQdvwPiA7DTK7jaaFDBTtu0ic=
 github.com/go-git/go-billy/v5 v5.5.0 h1:yEY4yhzCDuMGSv83oGxiBotRzhwhNr8VZyphhiu+mTU=
 github.com/go-git/go-billy/v5 v5.5.0/go.mod h1:hmexnoNsr2SJU1Ju67OaNz5ASJY3+sHgFRpCtpDCKow=
 github.com/go-git/go-git-fixtures/v4 v4.3.2-0.20231010084843-55a94097c399 h1:eMje31YglSBqCdIqdhKBW8lokaMrL3uTkpGYlE2OOT4=
 github.com/go-git/go-git/v5 v5.11.0 h1:XIZc1p+8YzypNr34itUfSvYJcv+eYdTnTvOZ2vD3cA4=
 github.com/go-git/go-git/v5 v5.11.0/go.mod h1:6GFcX2P3NM7FPBfpePbpLd21XxsgdAt+lKqXmCUiUCY=
 github.com/golang/groupcache v0.0.0-20210331224755-41bb18bfe9da h1:oI5xCqsCo564l8iNU+DwB5epxmsaqB+rhGL0m5jtYqE=
 github.com/golang/groupcache v0.0.0-20210331224755-41bb18bfe9da/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc=
 github.com/google/go-cmp v0.6.0 h1:ofyhxvXcZhMsU5ulbFiLKl/XBFqE1GSq7atu8tAmTRI=
 github.com/hexops/gotextdiff v1.0.3 h1:gitA9+qJrrTCsiCl7+kh75nPqQt1cx4ZkudSTLoUqJM=
 github.com/jbenet/go-context v0.0.0-20150711004518-d14ea06fba99 h1:BQSFePA1RWJOlocH6Fxy8MmwDt+yVQYULKfN0RoTN8A=
 github.com/jbenet/go-context v0.0.0-20150711004518-d14ea06fba99/go.mod h1:1lJo3i6rXxKeerYnT8Nvf0QmHCRC1n8sfWVwXF2Frvo=
 github.com/kevinburke/ssh_config v1.2.0 h1:x584FjTGwHzMwvHx18PXxbBVzfnxogHaAReU4gf13a4=
 github.com/kevinburke/ssh_config v1.2.0/go.mod h1:CT57kijsi8u/K/BOFA39wgDQJ9CxiF4nAY/ojJ6r6mM=
 github.com/kr/pretty v0.1.0/go.mod h1:dAy3ld7l9f0ibDNOQOHHMYYIIbhfbHSm3C4ZsoJORNo=
 github.com/kr/pretty v0.3.1 h1:flRD4NNwYAUpkphVc1HcthR4KEIFJ65n8Mw5qdRn3LE=
 github.com/kr/pty v1.1.1/go.mod h1:pFQYn66WHrOpPYNljwOMqo10TkYh1fy3cYio2l3bCsQ=
 github.com/kr/text v0.1.0/go.mod h1:4Jbv+DJW3UT/LiOwJeYQe1efqtUx/iVham/4vfdArNI=
 github.com/kr/text v0.2.0 h1:5Nx0Ya0ZqY2ygV366QzturHI13Jq95ApcVaJBhpS+AY=
-github.com/kr/text v0.2.0/go.mod h1:eLer722TekiGuMkidMxC/pM04lWEeraHUUmBw8l2grE=
+github.com/mattn/go-isatty v0.0.20 h1:xfD0iDuEKnDkl03q4limB+vH+GxLEtL/jb4xVJSWWEY=
-github.com/mattn/go-isatty v0.0.14 h1:yVuAays6BHfxijgZPzw+3Zlu5yQgKGP2/hcQbHb7S9Y=
+github.com/mattn/go-isatty v0.0.20/go.mod h1:W+V8PltTTMOvKvAeJH7IuucS94S2C6jfK/D7dTCTo3Y=
 github.com/mattn/go-isatty v0.0.14/go.mod h1:7GGIvUiUoEMVVmxf/4nioHXj79iQHKdU27kJ6hsGG94=
 github.com/mitchellh/go-homedir v1.1.0 h1:lukF9ziXFxDFPkA1vsr5zpc1XuPDn/wFntq5mG+4E0Y=
 github.com/mitchellh/go-homedir v1.1.0/go.mod h1:SfyaCUpYCn1Vlf4IUYiD9fPX4A5wJrkLzIz1N1q0pr0=
-github.com/niemeyer/pretty v0.0.0-20200227124842-a10e7caefd8e h1:fD57ERR4JtEqsWbfPhv4DMiApHyliiK5xCTNVSPiaAs=
+github.com/onsi/gomega v1.27.10 h1:naR28SdDFlqrG6kScpT8VWpu1xWY5nJRCF3XaYyBjhI=
-github.com/niemeyer/pretty v0.0.0-20200227124842-a10e7caefd8e/go.mod h1:zD1mROLANZcx1PVRCS0qkT7pwLkGfwJo4zjcN/Tysno=
+github.com/pjbgf/sha1cd v0.3.0 h1:4D5XXmUUBUl/xQ6IjCkEAbqXskkq/4O7LmGn0AqMDs4=
 github.com/pjbgf/sha1cd v0.3.0/go.mod h1:nZ1rrWOcGJ5uZgEEVL1VUM9iRQiZvWdbZjkKyFzPPsI=
 github.com/pkg/errors v0.9.1 h1:FEBLx1zS214owpjy7qsBeixbURkuhQAwrK5UwLGTwt4=
 github.com/pkg/errors v0.9.1/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0=
 github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM=
 github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
 github.com/rogpeppe/go-internal v1.11.0 h1:cWPaGQEPrBb5/AsnsZesgZZ9yb1OQ+GOISoDNXVBh4M=
 github.com/sergi/go-diff v1.3.1 h1:xkr+Oxo4BOQKmkn/B9eMK0g5Kg/983T9DqqPHwYqD+8=
 github.com/sergi/go-diff v1.3.1/go.mod h1:aMJSSKb2lpPvRNec0+w3fl7LP9IOFzdc9Pa4NFbPK1I=
 github.com/sirupsen/logrus v1.7.0/go.mod h1:yWOB1SBYBC5VeMP7gHvWumXLIWorT60ONWic61uBYv0=
 github.com/skeema/knownhosts v1.2.1 h1:SHWdIUa82uGZz+F+47k8SY4QhhI291cXCpopT1lK2AQ=
 github.com/skeema/knownhosts v1.2.1/go.mod h1:xYbVRSPxqBZFrdmDyMmsOs+uX1UZC3nTN3ThzgDxUwo=
 github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
-github.com/stretchr/testify v1.7.0 h1:nwc3DEeHmmLAfoZucVR881uASk0Mfjw8xYJ99tb5CcY=
+github.com/stretchr/testify v1.2.2/go.mod h1:a8OnRcib4nhh0OaRAV+Yts87kKdq0PP7pXfy6kDkUVs=
-github.com/stretchr/testify v1.7.0/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
+github.com/stretchr/testify v1.4.0/go.mod h1:j7eGeouHqKxXV5pUuKE4zz7dFj8WfuZ+81PSLYec5m4=
-golang.org/x/sys v0.0.0-20210630005230-0f9fa26af87c/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+github.com/stretchr/testify v1.8.4 h1:CcVxjf3Q8PM0mHUKJCdn+eZZtm5yQwehR5yeSVQQcUk=
-golang.org/x/sys v0.0.0-20220704084225-05e143d24a9e h1:CsOuNlbOuf0mzxJIefr6Q4uAUetRUwZE4qt7VfzP+xo=
+github.com/xanzy/ssh-agent v0.3.3 h1:+/15pJfg/RsTxqYcX6fHqOXZwwMP+2VyYWJeWM2qQFM=
-golang.org/x/sys v0.0.0-20220704084225-05e143d24a9e/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+github.com/xanzy/ssh-agent v0.3.3/go.mod h1:6dzNDKs0J9rVPHPhaGCukekBHKqfl+L3KghI1Bc68Uw=
 github.com/yuin/goldmark v1.4.13/go.mod h1:6yULJ656Px+3vBD8DxQVa3kxgyrAnzto9xy5taEt/CY=
 golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
 golang.org/x/crypto v0.0.0-20210921155107-089bfa567519/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
 golang.org/x/crypto v0.0.0-20220622213112-05595931fe9d/go.mod h1:IxCIyHEi3zRg3s0A5j5BB6A9Jmi73HwBIUl50j+osU4=
 golang.org/x/crypto v0.3.1-0.20221117191849-2c476679df9a/go.mod h1:hebNnKkNXi2UzZN1eVRvBB7co0a+JxK6XbPiWVs/3J4=
 golang.org/x/crypto v0.7.0/go.mod h1:pYwdfH91IfpZVANVyUOhSIPZaFoJGxTFbZhFTx+dXZU=
 golang.org/x/crypto v0.17.0 h1:r8bRNjWL3GshPW3gkd+RpvzWrZAwPS49OmTGZ/uhM4k=
 golang.org/x/crypto v0.17.0/go.mod h1:gCAAfMLgwOJRpTjQ2zCCt2OcSfYMTeZVSRtQlPC7Nq4=
 golang.org/x/mod v0.6.0-dev.0.20220419223038-86c51ed26bb4/go.mod h1:jJ57K6gSWd91VN4djpZkiMVwK6gcyfeH4XE8wZrZaV4=
 golang.org/x/mod v0.8.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
 golang.org/x/mod v0.14.0 h1:dGoOF9QVLYng8IHTm7BAyWqCqSheQ5pYWGhzW00YJr0=
 golang.org/x/mod v0.14.0/go.mod h1:hTbmBsO62+eylJbnUtE2MGJUyE7QWk4xUqPFrRgJ+7c=
 golang.org/x/net v0.0.0-20190620200207-3b0461eec859/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20211112202133-69e39bad7dc2/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.0.0-20220722155237-a158d28d115b/go.mod h1:XRhObCWvk6IyKnWLug+ECip1KBveYUHfp+8e9klMJ9c=
 golang.org/x/net v0.2.0/go.mod h1:KqCZLdyyvdV855qA2rE3GC2aiw5xGR5TEjj8smXukLY=
 golang.org/x/net v0.6.0/go.mod h1:2Tu9+aMcznHK/AK1HMvgo6xiTLG5rD5rZLDS+rp2Bjs=
 golang.org/x/net v0.8.0/go.mod h1:QVkue5JL9kW//ek3r6jTKnTFis1tRmNAW2P1shuFdJc=
 golang.org/x/net v0.19.0 h1:zTwKpTd2XuCqf8huc7Fo2iSy+4RHPd10s4KzeTnVr1c=
 golang.org/x/net v0.19.0/go.mod h1:CfAk/cbD4CthTvqiEl8NpboMuiuOYsAr/7NOjZJtv1U=
 golang.org/x/sync v0.0.0-20190423024810-112230192c58/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20220722155255-886fb9371eb4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.1.0/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.5.0 h1:60k92dhOjHxJkrqnwsfl8KuaHbn/5dl0lUPUklKo3qE=
 golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20191026070338-33540a1f6037/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20201119102817-f84b799fce68/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210124154548-22da62e12c0c/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210423082822-04245dca01da/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220715151400-c0bba94af5f8/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.2.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.3.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.5.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.15.0 h1:h48lPFYpsTvQJZF4EKyI4aLHaev3CxivZmv7yZig9pc=
 golang.org/x/sys v0.15.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
 golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
 golang.org/x/term v0.2.0/go.mod h1:TVmDHMZPmdnySmBfhjOoOdhjzdE1h4u1VwSiw2l1Nuc=
 golang.org/x/term v0.5.0/go.mod h1:jMB1sMXY+tzblOD4FWmEbocvup2/aLOaQEp7JmGp78k=
 golang.org/x/term v0.6.0/go.mod h1:m6U89DPEgQRMq3DNkDClhWw02AUbt2daBVO4cn4Hv9U=
 golang.org/x/term v0.15.0 h1:y/Oo/a/q3IXu26lQgl04j/gjuBDOBlx7X6Om1j2CPW4=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.3.6/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.3.7/go.mod h1:u+2+/6zg+i71rQMx5EYifcz6MCKuco9NR6JIITiCfzQ=
 golang.org/x/text v0.4.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8=
 golang.org/x/text v0.7.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8=
 golang.org/x/text v0.8.0/go.mod h1:e1OnstbJyHTd6l/uOt8jFFHp6TRDWZR/bV3emEE/zU8=
 golang.org/x/text v0.14.0 h1:ScX5w1eTa3QqT8oi6+ziP7dTV1S2+ALU0bI+0zXKWiQ=
 golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20191119224855-298f0cb1881e/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.1.12/go.mod h1:hNGJHUnrk76NpqgfD5Aqm5Crs+Hm0VOH/i9J2+nxYbc=
 golang.org/x/tools v0.6.0/go.mod h1:Xwgl3UAJ/d3gWutnCtw505GrjyAbvKui8lOU390QaIU=
 golang.org/x/tools v0.16.1 h1:TLyB3WofjdOEepBHAU20JdNC1Zbg87elYofWYAY5oZA=
 golang.org/x/tools v0.16.1/go.mod h1:kYVVN6I1mBNoB1OX+noeBjbRk4IUEPa7JJ+TJMEooJ0=
 golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
-gopkg.in/check.v1 v1.0.0-20200227125254-8fa46927fb4f h1:BLraFXnmrev5lT+xlilqcH8XK9/i0At2xKjWk4p6zsU=
+gopkg.in/check.v1 v1.0.0-20190902080502-41f04d3bba15/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
-gopkg.in/check.v1 v1.0.0-20200227125254-8fa46927fb4f/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
+gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c h1:Hei/4ADfdWqJk1ZMxUNpqntNwaWcugrBjAiHlqqRiVk=
-gopkg.in/yaml.v1 v1.0.0-20140924161607-9f9df34309c0 h1:POO/ycCATvegFmVuPpQzZFJ+pGZeX22Ufu6fibxDVjU=
+gopkg.in/warnings.v0 v0.1.2 h1:wFXVbFY8DY5/xOe1ECiWdKCzZlxgshcYVNkBHstARME=
-gopkg.in/yaml.v1 v1.0.0-20140924161607-9f9df34309c0/go.mod h1:WDnlLJ4WF5VGsH/HVa3CI79GS0ol3YnhVnKP89i0kNg=
+gopkg.in/warnings.v0 v0.1.2/go.mod h1:jksf8JmL6Qr/oQM2OXTHunEvvTAsrWBLb6OOjuVWRNI=
-gopkg.in/yaml.v2 v2.4.0 h1:D8xgwECY7CYvx+Y2n4sBz93Jn9JRvxdiyyo8CTfuKaY=
+gopkg.in/yaml.v2 v2.2.2/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.4.0/go.mod h1:RDklbk79AGWmwhnvt/jBztapEOGDOx6ZbXqjP6csGnQ=
-gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c h1:dUUwHk2QECo/6vqA44rthZ8ie2QXMNeKRTHCNY2nXvo=
+gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
-gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
+gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
--- a/internal/cheatpath/cheatpath.go
+++ b/internal/cheatpath/cheatpath.go
@ -1,3 +1,5 @@
 // Package cheatpath implements functions pertaining to cheatsheet file path
 // management.
 package cheatpath
 // Cheatpath encapsulates cheatsheet path information
--- a/internal/cheatpath/filter_test.go
+++ b/internal/cheatpath/filter_test.go
@ -46,7 +46,7 @@ func TestFilterFailure(t *testing.T) {
 	}
 	// filter the paths
-	paths, err := Filter(paths, "qux")
+	_, err := Filter(paths, "qux")
 	if err == nil {
 		t.Errorf("failed to return an error on non-existent cheatpath")
 	}
--- a/internal/cheatpath/writeable.go
+++ b/internal/cheatpath/writeable.go
@ -11,12 +11,10 @@ func Writeable(cheatpaths []Cheatpath) (Cheatpath, error) {
 	// NB: we're going backwards because we assume that the most "local"
 	// cheatpath will be specified last in the configs
 	for i := len(cheatpaths) - 1; i >= 0; i-- {
 		// if the cheatpath is not read-only, it is writeable, and thus returned
-		if cheatpaths[i].ReadOnly == false {
+		if !cheatpaths[i].ReadOnly {
 			return cheatpaths[i], nil
 		}
 	}
 	// otherwise, return an error
--- a/internal/config/config.go
+++ b/internal/config/config.go
@ -1,18 +1,16 @@
 // Package config implements functions pertaining to configuration management.
 package config
 import (
 	"fmt"
 	"io/ioutil"
 	"os"
 	"os/exec"
 	"path/filepath"
 	"runtime"
 	"strings"
 	cp "github.com/cheat/cheat/internal/cheatpath"
 	"github.com/mitchellh/go-homedir"
-	"gopkg.in/yaml.v2"
+	"gopkg.in/yaml.v3"
 )
 // Config encapsulates configuration parameters
@ -23,13 +21,14 @@ type Config struct {
 	Style      string         `yaml:"style"`
 	Formatter  string         `yaml:"formatter"`
 	Pager      string         `yaml:"pager"`
 	Path       string
 }
 // New returns a new Config struct
-func New(opts map[string]interface{}, confPath string, resolve bool) (Config, error) {
+func New(_ map[string]interface{}, confPath string, resolve bool) (Config, error) {
 	// read the config file
-	buf, err := ioutil.ReadFile(confPath)
+	buf, err := os.ReadFile(confPath)
 	if err != nil {
 		return Config{}, fmt.Errorf("could not read config file: %v", err)
 	}
@ -37,8 +36,11 @@ func New(opts map[string]interface{}, confPath string, resolve bool) (Config, er
 	// initialize a config object
 	conf := Config{}
 	// store the config path
 	conf.Path = confPath
 	// unmarshal the yaml
-	err = yaml.UnmarshalStrict(buf, &conf)
+	err = yaml.Unmarshal(buf, &conf)
 	if err != nil {
 		return Config{}, fmt.Errorf("could not unmarshal yaml: %v", err)
 	}
@ -94,28 +96,11 @@ func New(opts map[string]interface{}, confPath string, resolve bool) (Config, er
 		conf.Cheatpaths[i].Path = expanded
 	}
-	// if an editor was not provided in the configs, look to envvars
+	// if an editor was not provided in the configs, attempt to choose one
 	// that's appropriate for the environment
 	if conf.Editor == "" {
-		if os.Getenv("VISUAL") != "" {
+		if conf.Editor, err = Editor(); err != nil {
-			conf.Editor = os.Getenv("VISUAL")
+			return Config{}, err
 		} else if os.Getenv("EDITOR") != "" {
 			conf.Editor = os.Getenv("EDITOR")
 		} else if runtime.GOOS == "windows" {
 			conf.Editor = "notepad"
 		} else {
 			// try to fall back to `nano`
 			path, err := exec.LookPath("nano")
 			if err != nil {
 				return Config{}, fmt.Errorf("failed to locate nano: %s", err)
 			}
 			// use `nano` if we found it
 			if path != "" {
 				conf.Editor = "nano"
 				// otherwise, give up
 			} else {
 				return Config{}, fmt.Errorf("no editor set")
 			}
 		}
 	}
@ -129,11 +114,8 @@ func New(opts map[string]interface{}, confPath string, resolve bool) (Config, er
 		conf.Formatter = "terminal"
 	}
-	// attempt to fall back to `PAGER` if a pager is not specified in configs
+	// load the pager
 	conf.Pager = strings.TrimSpace(conf.Pager)
 	if conf.Pager == "" && os.Getenv("PAGER") != "" {
 		conf.Pager = os.Getenv("PAGER")
 	}
 	return conf, nil
 }
--- a/internal/config/editor.go
+++ b/internal/config/editor.go
@ -0,0 +1,41 @@
 package config
 import (
 	"fmt"
 	"os"
 	"os/exec"
 	"runtime"
 )
 // Editor attempts to locate an editor that's appropriate for the environment.
 func Editor() (string, error) {
 	// default to `notepad.exe` on Windows
 	if runtime.GOOS == "windows" {
 		return "notepad", nil
 	}
 	// look for `nano` and `vim` on the `PATH`
 	def, _ := exec.LookPath("editor") // default `editor` wrapper
 	nano, _ := exec.LookPath("nano")
 	vim, _ := exec.LookPath("vim")
 	// set editor priority
 	editors := []string{
 		os.Getenv("VISUAL"),
 		os.Getenv("EDITOR"),
 		def,
 		nano,
 		vim,
 	}
 	// return the first editor that was found per the priority above
 	for _, editor := range editors {
 		if editor != "" {
 			return editor, nil
 		}
 	}
 	// return an error if no path is found
 	return "", fmt.Errorf("no editor set")
 }
--- a/internal/config/init.go
+++ b/internal/config/init.go
@ -2,7 +2,6 @@ package config
 import (
 	"fmt"
 	"io/ioutil"
 	"os"
 	"path/filepath"
 )
@ -16,7 +15,7 @@ func Init(confpath string, configs string) error {
 	}
 	// write the config file
-	if err := ioutil.WriteFile(confpath, []byte(configs), 0644); err != nil {
+	if err := os.WriteFile(confpath, []byte(configs), 0644); err != nil {
 		return fmt.Errorf("failed to create file: %v", err)
 	}
--- a/internal/config/init_test.go
+++ b/internal/config/init_test.go
@ -1,7 +1,6 @@
 package config
 import (
 	"io/ioutil"
 	"os"
 	"testing"
 )
@ -10,7 +9,7 @@ import (
 func TestInit(t *testing.T) {
 	// initialize a temporary config file
-	confFile, err := ioutil.TempFile("", "cheat-test")
+	confFile, err := os.CreateTemp("", "cheat-test")
 	if err != nil {
 		t.Errorf("failed to create temp file: %v", err)
 	}
@ -25,7 +24,7 @@ func TestInit(t *testing.T) {
 	}
 	// read back the config file contents
-	bytes, err := ioutil.ReadFile(confFile.Name())
+	bytes, err := os.ReadFile(confFile.Name())
 	if err != nil {
 		t.Errorf("failed to read config file: %v", err)
 	}
--- a/internal/config/pager.go
+++ b/internal/config/pager.go
@ -0,0 +1,32 @@
 package config
 import (
 	"os"
 	"os/exec"
 	"runtime"
 )
 // Pager attempts to locate a pager that's appropriate for the environment.
 func Pager() string {
 	// default to `more` on Windows
 	if runtime.GOOS == "windows" {
 		return "more"
 	}
 	// if $PAGER is set, return the corresponding pager
 	if os.Getenv("PAGER") != "" {
 		return os.Getenv("PAGER")
 	}
 	// Otherwise, search for `pager`, `less`, and `more` on the `$PATH`. If
 	// none are found, return an empty pager.
 	for _, pager := range []string{"pager", "less", "more"} {
 		if path, err := exec.LookPath(pager); err != nil {
 			return path
 		}
 	}
 	// default to no pager
 	return ""
 }
--- a/internal/config/path_test.go
+++ b/internal/config/path_test.go
@ -1,7 +1,6 @@
 package config
 import (
 	"io/ioutil"
 	"os"
 	"testing"
 )
@ -24,7 +23,7 @@ func TestPathConfigNotExists(t *testing.T) {
 func TestPathConfigExists(t *testing.T) {
 	// initialize a temporary config file
-	confFile, err := ioutil.TempFile("", "cheat-test")
+	confFile, err := os.CreateTemp("", "cheat-test")
 	if err != nil {
 		t.Errorf("failed to create temp file: %v", err)
 	}
--- a/internal/config/paths.go
+++ b/internal/config/paths.go
@ -28,7 +28,10 @@ func Paths(
 	}
 	switch sys {
-	case "android", "darwin", "linux", "freebsd":
+
 	// darwin/linux/unix
 	case "aix", "android", "darwin", "dragonfly", "freebsd", "illumos", "ios",
 		"linux", "netbsd", "openbsd", "plan9", "solaris":
 		paths := []string{}
 		// don't include the `XDG_CONFIG_HOME` path if that envvar is not set
@ -43,6 +46,8 @@ func Paths(
 		}...)
 		return paths, nil
 	// windows
 	case "windows":
 		return []string{
 			filepath.Join(envvars["APPDATA"], "cheat", "conf.yml"),
--- a/internal/display/faint.go
+++ b/internal/display/faint.go
@ -1,3 +1,5 @@
 // Package display implement functions pertaining to writing formatted
 // cheatsheet content to stdout, or alternatively the system pager.
 package display
 import (
@ -6,11 +8,12 @@ import (
 	"github.com/cheat/cheat/internal/config"
 )
-// Faint returns an faint string
+// Faint returns a faintly-colored string that's used to de-prioritize text
 // written to stdout
 func Faint(str string, conf config.Config) string {
 	// make `str` faint only if colorization has been requested
 	if conf.Colorize {
-		return fmt.Sprintf(fmt.Sprintf("\033[2m%s\033[0m", str))
+		return fmt.Sprintf("\033[2m%s\033[0m", str)
 	}
 	// otherwise, return the string unmodified
--- a/internal/display/underline.go
+++ b/internal/display/underline.go
@ -1,8 +0,0 @@
 package display
 import "fmt"
 // Underline returns an underlined string
 func Underline(str string) string {
 	return fmt.Sprintf(fmt.Sprintf("\033[4m%s\033[0m", str))
 }
--- a/internal/display/underline_test.go
+++ b/internal/display/underline_test.go
@ -1,14 +0,0 @@
 package display
 import (
 	"testing"
 )
 // TestUnderline asserts that Underline applies underline formatting
 func TestUnderline(t *testing.T) {
 	want := "\033[4mfoo\033[0m"
 	got := Underline("foo")
 	if want != got {
 		t.Errorf("failed to underline: want: %s, got: %s", want, got)
 	}
 }
--- a/internal/display/write.go
+++ b/internal/display/write.go
@ -23,15 +23,14 @@ func Write(out string, conf config.Config) {
 	pager := parts[0]
 	args := parts[1:]
-	// run the pager
+	// configure the pager
 	cmd := exec.Command(pager, args...)
 	cmd.Stdin = strings.NewReader(out)
 	cmd.Stdout = os.Stdout
-	// handle errors
+	// run the pager and handle errors
-	err := cmd.Run()
+	if err := cmd.Run(); err != nil {
-	if err != nil {
+		fmt.Fprintf(os.Stderr, "failed to write to pager: %v\n", err)
 		fmt.Fprintln(os.Stderr, fmt.Sprintf("failed to write to pager: %v", err))
 		os.Exit(1)
 	}
 }
--- a/internal/frontmatter/frontmatter.go
+++ b/internal/frontmatter/frontmatter.go
@ -1,44 +0,0 @@
 package frontmatter
 import (
 	"fmt"
 	"strings"
 	"gopkg.in/yaml.v1"
 )
 // Frontmatter encapsulates cheatsheet frontmatter data
 type Frontmatter struct {
 	Tags   []string
 	Syntax string
 }
 // Parse parses cheatsheet frontmatter
 func Parse(markdown string) (string, Frontmatter, error) {
 	// specify the frontmatter delimiter
 	delim := "---"
 	// initialize a frontmatter struct
 	var fm Frontmatter
 	// if the markdown does not contain frontmatter, pass it through unmodified
 	if !strings.HasPrefix(markdown, delim) {
 		return strings.TrimSpace(markdown), fm, nil
 	}
 	// otherwise, split the frontmatter and cheatsheet text
 	parts := strings.SplitN(markdown, delim, 3)
 	// return an error if the frontmatter parses into the wrong number of parts
 	if len(parts) != 3 {
 		return markdown, fm, fmt.Errorf("failed to delimit frontmatter")
 	}
 	// return an error if the YAML cannot be unmarshalled
 	if err := yaml.Unmarshal([]byte(parts[1]), &fm); err != nil {
 		return markdown, fm, fmt.Errorf("failed to unmarshal frontmatter: %v", err)
 	}
 	return strings.TrimSpace(parts[2]), fm, nil
 }
--- a/internal/frontmatter/frontmatter_test.go
+++ b/internal/frontmatter/frontmatter_test.go
@ -1,95 +0,0 @@
 package frontmatter
 import (
 	"testing"
 )
 // TestHasFrontmatter asserts that markdown is properly parsed when it contains
 // frontmatter
 func TestHasFrontmatter(t *testing.T) {
 	// stub our cheatsheet content
 	markdown := `---
 syntax: go
 tags: [ test ]
 ---
 To foo the bar: baz`
 	// parse the frontmatter
 	text, fm, err := Parse(markdown)
 	// assert expectations
 	if err != nil {
 		t.Errorf("failed to parse markdown: %v", err)
 	}
 	want := "To foo the bar: baz"
 	if text != want {
 		t.Errorf("failed to parse text: want: %s, got: %s", want, text)
 	}
 	want = "go"
 	if fm.Syntax != want {
 		t.Errorf("failed to parse syntax: want: %s, got: %s", want, fm.Syntax)
 	}
 	want = "test"
 	if fm.Tags[0] != want {
 		t.Errorf("failed to parse tags: want: %s, got: %s", want, fm.Tags[0])
 	}
 	if len(fm.Tags) != 1 {
 		t.Errorf("failed to parse tags: want: len 0, got: len %d", len(fm.Tags))
 	}
 }
 // TestHasFrontmatter asserts that markdown is properly parsed when it does not
 // contain frontmatter
 func TestHasNoFrontmatter(t *testing.T) {
 	// stub our cheatsheet content
 	markdown := "To foo the bar: baz"
 	// parse the frontmatter
 	text, fm, err := Parse(markdown)
 	// assert expectations
 	if err != nil {
 		t.Errorf("failed to parse markdown: %v", err)
 	}
 	if text != markdown {
 		t.Errorf("failed to parse text: want: %s, got: %s", markdown, text)
 	}
 	if fm.Syntax != "" {
 		t.Errorf("failed to parse syntax: want: '', got: %s", fm.Syntax)
 	}
 	if len(fm.Tags) != 0 {
 		t.Errorf("failed to parse tags: want: len 0, got: len %d", len(fm.Tags))
 	}
 }
 // TestHasInvalidFrontmatter asserts that markdown is properly parsed when it
 // contains invalid frontmatter
 func TestHasInvalidFrontmatter(t *testing.T) {
 	// stub our cheatsheet content (with invalid frontmatter)
 	markdown := `---
 syntax: go
 tags: [ test ]
 To foo the bar: baz`
 	// parse the frontmatter
 	text, _, err := Parse(markdown)
 	// assert that an error was returned
 	if err == nil {
 		t.Error("failed to error on invalid frontmatter")
 	}
 	// assert that the "raw" markdown was returned
 	if text != markdown {
 		t.Errorf("failed to parse text: want: %s, got: %s", markdown, text)
 	}
 }
--- a/internal/installer/clone.go
+++ b/internal/installer/clone.go
@ -1,24 +0,0 @@
 package installer
 import (
 	"fmt"
 	"os"
 	"os/exec"
 )
 const cloneURL = "https://github.com/cheat/cheatsheets.git"
 // clone clones the community cheatsheets
 func clone(path string) error {
 	// perform the clone in a shell
 	cmd := exec.Command("git", "clone", cloneURL, path)
 	cmd.Stdout = os.Stdout
 	cmd.Stderr = os.Stderr
 	err := cmd.Run()
 	if err != nil {
 		return fmt.Errorf("failed to clone cheatsheets: %v", err)
 	}
 	return nil
 }
--- a/internal/installer/prompt.go
+++ b/internal/installer/prompt.go
@ -1,3 +1,5 @@
 // Package installer implements functions that provide a first-time
 // installation wizard.
 package installer
 import (
@ -14,7 +16,7 @@ func Prompt(prompt string, def bool) (bool, error) {
 	reader := bufio.NewReader(os.Stdin)
 	// display the prompt
-	fmt.Print(fmt.Sprintf("%s: ", prompt))
+	fmt.Printf("%s: ", prompt)
 	// read the answer
 	ans, err := reader.ReadString('\n')
--- a/internal/installer/run.go
+++ b/internal/installer/run.go
@ -7,6 +7,7 @@ import (
 	"strings"
 	"github.com/cheat/cheat/internal/config"
 	"github.com/cheat/cheat/internal/repo"
 )
 // Run runs the installer
@ -20,10 +21,18 @@ func Run(configs string, confpath string) error {
 	community := filepath.Join(confdir, "cheatsheets", "community")
 	personal := filepath.Join(confdir, "cheatsheets", "personal")
-	// template the above paths into the default configs
+	// set default cheatpaths
 	configs = strings.Replace(configs, "COMMUNITY_PATH", community, -1)
 	configs = strings.Replace(configs, "PERSONAL_PATH", personal, -1)
 	// locate and set a default pager
 	configs = strings.Replace(configs, "PAGER_PATH", config.Pager(), -1)
 	// locate and set a default editor
 	if editor, err := config.Editor(); err == nil {
 		configs = strings.Replace(configs, "EDITOR_PATH", editor, -1)
 	}
 	// prompt the user to download the community cheatsheets
 	yes, err := Prompt(
 		"Would you like to download the community cheatsheets? [Y/n]",
@ -37,7 +46,7 @@ func Run(configs string, confpath string) error {
 	if yes {
 		// clone the community cheatsheets
 		fmt.Printf("Cloning community cheatsheets to %s.\n", community)
-		if err := clone(community); err != nil {
+		if err := repo.Clone(community); err != nil {
 			return fmt.Errorf("failed to clone cheatsheets: %v", err)
 		}
--- a/internal/mock/path.go
+++ b/internal/mock/path.go
@ -1,3 +1,4 @@
 // Package mock implements mock functions used in unit-tests.
 package mock
 import (
--- a/internal/repo/clone.go
+++ b/internal/repo/clone.go
@ -0,0 +1,26 @@
 // Package repo implements functions pertaining to the management of git repos.
 package repo
 import (
 	"fmt"
 	"os"
 	"github.com/go-git/go-git/v5"
 )
 // Clone clones the repo available at `url`
 func Clone(url string) error {
 	// clone the community cheatsheets
 	_, err := git.PlainClone(url, false, &git.CloneOptions{
 		URL:      "https://github.com/cheat/cheatsheets.git",
 		Depth:    1,
 		Progress: os.Stdout,
 	})
 	if err != nil {
 		return fmt.Errorf("failed to clone cheatsheets: %v", err)
 	}
 	return nil
 }
--- a/internal/repo/gitdir.go
+++ b/internal/repo/gitdir.go
@ -0,0 +1,110 @@
 package repo
 import (
 	"fmt"
 	"os"
 	"strings"
 )
 // GitDir returns `true` if we are iterating over a directory contained within
 // a repositories `.git` directory.
 func GitDir(path string) (bool, error) {
 	/*
 		A bit of context is called for here, because this functionality has
 		previously caused a number of tricky, subtle bugs.
 		Fundamentally, here we are simply trying to avoid walking over the
 		contents of the `.git` directory. Doing so potentially makes
 		hundreds/thousands of needless syscalls, and can noticeably harm
 		performance on machines with slow disks.
 		The earliest effort to solve this problem involved simply returning
 		`fs.SkipDir` when the cheatsheet file path began with `.`, signifying a
 		hidden directory. This, however, caused two problems:
 		1. The `.cheat` directory was ignored
 		2. Cheatsheets installed by `brew` (which were by default installed to
 		`~/.config/cheat`) were ignored
 		See: https://github.com/cheat/cheat/issues/690
 		To remedy this, the exclusion criteria were narrowed, and the search
 		for a literal `.` was replaced with a search for a literal `.git`.
 		This, however, broke user installations that stored cheatsheets in
 		`git` submodules, because such an installation would contain a `.git`
 		file that pointed to the upstream repository.
 		See: https://github.com/cheat/cheat/issues/694
 		The next attempt at solving this was to search for a `.git` literal
 		string in the cheatsheet file path. If a match was not found, we would
 		continue to walk the directory, as before.
 		If a match *was* found, we determined whether `.git` referred to a file
 		or directory, and would only stop walking the path in the latter case.
 		This, however, caused crashes if a cheatpath contained a `.gitignore`
 		file. (Presumably, a crash would likewise occur on the presence of
 		`.gitattributes`, `.gitmodules`, etc.)
 		See: https://github.com/cheat/cheat/issues/699
 		Accounting for all of the above (hopefully?), the current solution is
 		not to search for `.git`, but `.git/` (including the directory
 		separator), and then only ceasing to walk the directory on a match.
 		To summarize, this code must account for the following possibilities:
 		1. A cheatpath is not a repository
 		2. A cheatpath is a repository
 		3. A cheatpath is a repository, and contains a `.git*` file
 		4. A cheatpath is a submodule
 		5. A cheatpath is a hidden directory
 		Care must be taken to support the above on both Unix and Windows
 		systems, which have different directory separators and line-endings.
 		There is a lot of nuance to all of this, and it would be worthwhile to
 		do two things to stop writing bugs here:
 		1. Build integration tests around all of this
 		2. Discard string-matching solutions entirely, and use `go-git` instead
 		NB: A reasonable smoke-test for ensuring that skipping is being applied
 		correctly is to run the following command:
 		    make && strace ./dist/cheat -l | wc -l
 		That check should be run twice: once normally, and once after
 		commenting out the "skip" check in `sheets.Load`.
 		The specific line counts don't matter; what matters is that the number
 		of syscalls should be significantly lower with the skip check enabled.
 	*/
 	// determine if the literal string `.git` appears within `path`
 	pos := strings.Index(path, fmt.Sprintf(".git%s", string(os.PathSeparator)))
 	// if it does not, we know for certain that we are not within a `.git`
 	// directory.
 	if pos == -1 {
 		return false, nil
 	}
 	// If `path` does contain the string `.git`, we need to determine if we're
 	// inside of a `.git` directory, or if `path` points to a cheatsheet that's
 	// stored within a `git` submodule.
 	//
 	// See: https://github.com/cheat/cheat/issues/694
 	// truncate `path` to the occurrence of `.git`
 	f, err := os.Stat(path[:pos+5])
 	if err != nil {
 		return false, fmt.Errorf("failed to stat path %s: %v", path, err)
 	}
 	// return true or false depending on whether the truncated path is a
 	// directory
 	return f.Mode().IsDir(), nil
 }
--- a/internal/repo/update.go
+++ b/internal/repo/update.go
@ -0,0 +1 @@
 package repo
--- a/internal/sheet/colorize.go
+++ b/internal/sheet/colorize.go
@ -5,7 +5,7 @@ import (
 	"github.com/cheat/cheat/internal/config"
-	"github.com/alecthomas/chroma/quick"
+	"github.com/alecthomas/chroma/v2/quick"
 )
 // Colorize applies syntax-highlighting to a cheatsheet's Text.
--- a/internal/sheet/copy_test.go
+++ b/internal/sheet/copy_test.go
@ -1,7 +1,6 @@
 package sheet
 import (
 	"io/ioutil"
 	"os"
 	"path"
 	"testing"
@ -13,7 +12,7 @@ func TestCopyFlat(t *testing.T) {
 	// mock a cheatsheet file
 	text := "this is the cheatsheet text"
-	src, err := ioutil.TempFile("", "foo-src")
+	src, err := os.CreateTemp("", "foo-src")
 	if err != nil {
 		t.Errorf("failed to mock cheatsheet: %v", err)
 	}
@ -41,7 +40,7 @@ func TestCopyFlat(t *testing.T) {
 	}
 	// assert that the destination file contains the correct text
-	got, err := ioutil.ReadFile(outpath)
+	got, err := os.ReadFile(outpath)
 	if err != nil {
 		t.Errorf("failed to read destination file: %v", err)
 	}
@ -60,7 +59,7 @@ func TestCopyDeep(t *testing.T) {
 	// mock a cheatsheet file
 	text := "this is the cheatsheet text"
-	src, err := ioutil.TempFile("", "foo-src")
+	src, err := os.CreateTemp("", "foo-src")
 	if err != nil {
 		t.Errorf("failed to mock cheatsheet: %v", err)
 	}
@ -94,7 +93,7 @@ func TestCopyDeep(t *testing.T) {
 	}
 	// assert that the destination file contains the correct text
-	got, err := ioutil.ReadFile(outpath)
+	got, err := os.ReadFile(outpath)
 	if err != nil {
 		t.Errorf("failed to read destination file: %v", err)
 	}
--- a/internal/sheet/parse.go
+++ b/internal/sheet/parse.go
@ -0,0 +1,45 @@
 package sheet
 import (
 	"fmt"
 	"runtime"
 	"strings"
 	"gopkg.in/yaml.v3"
 )
 // Parse parses cheatsheet frontmatter
 func parse(markdown string) (frontmatter, string, error) {
 	// determine the appropriate line-break for the platform
 	linebreak := "\n"
 	if runtime.GOOS == "windows" {
 		linebreak = "\r\n"
 	}
 	// specify the frontmatter delimiter
 	delim := fmt.Sprintf("---%s", linebreak)
 	// initialize a frontmatter struct
 	var fm frontmatter
 	// if the markdown does not contain frontmatter, pass it through unmodified
 	if !strings.HasPrefix(markdown, delim) {
 		return fm, markdown, nil
 	}
 	// otherwise, split the frontmatter and cheatsheet text
 	parts := strings.SplitN(markdown, delim, 3)
 	// return an error if the frontmatter parses into the wrong number of parts
 	if len(parts) != 3 {
 		return fm, markdown, fmt.Errorf("failed to delimit frontmatter")
 	}
 	// return an error if the YAML cannot be unmarshalled
 	if err := yaml.Unmarshal([]byte(parts[1]), &fm); err != nil {
 		return fm, markdown, fmt.Errorf("failed to unmarshal frontmatter: %v", err)
 	}
 	return fm, parts[2], nil
 }
--- a/internal/sheet/parse_test.go
+++ b/internal/sheet/parse_test.go
@ -0,0 +1,95 @@
 package sheet
 import (
 	"testing"
 )
 // TestHasFrontmatter asserts that markdown is properly parsed when it contains
 // frontmatter
 func TestHasFrontmatter(t *testing.T) {
 	// stub our cheatsheet content
 	markdown := `---
 syntax: go
 tags: [ test ]
 ---
 To foo the bar: baz`
 	// parse the frontmatter
 	fm, text, err := parse(markdown)
 	// assert expectations
 	if err != nil {
 		t.Errorf("failed to parse markdown: %v", err)
 	}
 	want := "To foo the bar: baz"
 	if text != want {
 		t.Errorf("failed to parse text: want: %s, got: %s", want, text)
 	}
 	want = "go"
 	if fm.Syntax != want {
 		t.Errorf("failed to parse syntax: want: %s, got: %s", want, fm.Syntax)
 	}
 	want = "test"
 	if fm.Tags[0] != want {
 		t.Errorf("failed to parse tags: want: %s, got: %s", want, fm.Tags[0])
 	}
 	if len(fm.Tags) != 1 {
 		t.Errorf("failed to parse tags: want: len 0, got: len %d", len(fm.Tags))
 	}
 }
 // TestHasFrontmatter asserts that markdown is properly parsed when it does not
 // contain frontmatter
 func TestHasNoFrontmatter(t *testing.T) {
 	// stub our cheatsheet content
 	markdown := "To foo the bar: baz"
 	// parse the frontmatter
 	fm, text, err := parse(markdown)
 	// assert expectations
 	if err != nil {
 		t.Errorf("failed to parse markdown: %v", err)
 	}
 	if text != markdown {
 		t.Errorf("failed to parse text: want: %s, got: %s", markdown, text)
 	}
 	if fm.Syntax != "" {
 		t.Errorf("failed to parse syntax: want: '', got: %s", fm.Syntax)
 	}
 	if len(fm.Tags) != 0 {
 		t.Errorf("failed to parse tags: want: len 0, got: len %d", len(fm.Tags))
 	}
 }
 // TestHasInvalidFrontmatter asserts that markdown is properly parsed when it
 // contains invalid frontmatter
 func TestHasInvalidFrontmatter(t *testing.T) {
 	// stub our cheatsheet content (with invalid frontmatter)
 	markdown := `---
 syntax: go
 tags: [ test ]
 To foo the bar: baz`
 	// parse the frontmatter
 	_, text, err := parse(markdown)
 	// assert that an error was returned
 	if err == nil {
 		t.Error("failed to error on invalid frontmatter")
 	}
 	// assert that the "raw" markdown was returned
 	if text != markdown {
 		t.Errorf("failed to parse text: want: %s, got: %s", markdown, text)
 	}
 }
--- a/internal/sheet/sheet.go
+++ b/internal/sheet/sheet.go
@ -1,13 +1,19 @@
 // Package sheet implements functions pertaining to parsing, searching, and
 // displaying cheatsheets.
 package sheet
 import (
 	"fmt"
-	"io/ioutil"
+	"os"
 	"sort"
 	"github.com/cheat/cheat/internal/frontmatter"
 )
 // Frontmatter encapsulates cheatsheet frontmatter data
 type frontmatter struct {
 	Tags   []string
 	Syntax string
 }
 // Sheet encapsulates sheet information
 type Sheet struct {
 	Title     string
@ -29,13 +35,13 @@ func New(
 ) (Sheet, error) {
 	// read the cheatsheet file
-	markdown, err := ioutil.ReadFile(path)
+	markdown, err := os.ReadFile(path)
 	if err != nil {
 		return Sheet{}, fmt.Errorf("failed to read file: %s, %v", path, err)
 	}
-	// parse the cheatsheet frontmatter
+	// parse the raw cheatsheet text
-	text, fm, err := frontmatter.Parse(string(markdown))
+	fm, text, err := parse(string(markdown))
 	if err != nil {
 		return Sheet{}, fmt.Errorf("failed to parse front-matter: %v", err)
 	}
@ -51,7 +57,7 @@ func New(
 		Title:     title,
 		CheatPath: cheatpath,
 		Path:      path,
-		Text:      text + "\n",
+		Text:      text,
 		Tags:      tags,
 		Syntax:    fm.Syntax,
 		ReadOnly:  readOnly,
--- a/internal/sheets/consolidate.go
+++ b/internal/sheets/consolidate.go
@ -1,3 +1,5 @@
 // Package sheets implements functions pertaining to loading, sorting,
 // filtering, and tagging cheatsheets.
 package sheets
 import (
--- a/internal/sheets/load.go
+++ b/internal/sheets/load.go
@ -2,11 +2,13 @@ package sheets
 import (
 	"fmt"
 	"io/fs"
 	"os"
 	"path/filepath"
 	"strings"
 	cp "github.com/cheat/cheat/internal/cheatpath"
 	"github.com/cheat/cheat/internal/repo"
 	"github.com/cheat/cheat/internal/sheet"
 )
@ -48,14 +50,15 @@ func Load(cheatpaths []cp.Cheatpath) ([]map[string]sheet.Sheet, error) {
 					string(os.PathSeparator),
 				)
-				// ignore hidden files and directories. Otherwise, we'll likely load
+				// Don't walk the `.git` directory. Doing so creates
-				// .git/* and .DS_Store.
+				// hundreds/thousands of needless syscalls and could
-				//
+				// potentially harm performance on machines with slow disks.
-				// NB: this is still somewhat brittle in that it will miss files
+				skip, err := repo.GitDir(path)
-				// contained within hidden directories in the middle of a path, though
+				if err != nil {
-				// that should not realistically occur.
+					return fmt.Errorf("failed to identify .git directory: %v", err)
-				if strings.HasPrefix(title, ".") || strings.HasPrefix(info.Name(), ".") {
+				}
-					return nil
+				if skip {
 					return fs.SkipDir
 				}
 				// parse the cheatsheet file into a `sheet` struct
--- a/vendor/dario.cat/mergo/.deepsource.toml
+++ b/vendor/dario.cat/mergo/.deepsource.toml
@ -0,0 +1,12 @@
 version = 1
 test_patterns = [
  "*_test.go"
 ]
 [[analyzers]]
 name = "go"
 enabled = true
  [analyzers.meta]
  import_path = "dario.cat/mergo"
--- a/vendor/dario.cat/mergo/.gitignore
+++ b/vendor/dario.cat/mergo/.gitignore
@ -0,0 +1,33 @@
 #### joe made this: http://goel.io/joe
 #### go ####
 # Binaries for programs and plugins
 *.exe
 *.dll
 *.so
 *.dylib
 # Test binary, build with `go test -c`
 *.test
 # Output of the go coverage tool, specifically when used with LiteIDE
 *.out
 # Project-local glide cache, RE: https://github.com/Masterminds/glide/issues/736
 .glide/
 #### vim ####
 # Swap
 [._]*.s[a-v][a-z]
 [._]*.sw[a-p]
 [._]s[a-v][a-z]
 [._]sw[a-p]
 # Session
 Session.vim
 # Temporary
 .netrwhist
 *~
 # Auto-generated tag files
 tags
--- a/vendor/dario.cat/mergo/.travis.yml
+++ b/vendor/dario.cat/mergo/.travis.yml
@ -0,0 +1,12 @@
 language: go
 arch:
    - amd64
    - ppc64le
 install:
  - go get -t
  - go get golang.org/x/tools/cmd/cover
  - go get github.com/mattn/goveralls
 script:
  - go test -race -v ./...
 after_script:
  - $HOME/gopath/bin/goveralls -service=travis-ci -repotoken $COVERALLS_TOKEN
--- a/vendor/dario.cat/mergo/CODE_OF_CONDUCT.md
+++ b/vendor/dario.cat/mergo/CODE_OF_CONDUCT.md
@ -0,0 +1,46 @@
 # Contributor Covenant Code of Conduct
 ## Our Pledge
 In the interest of fostering an open and welcoming environment, we as contributors and maintainers pledge to making participation in our project and our community a harassment-free experience for everyone, regardless of age, body size, disability, ethnicity, gender identity and expression, level of experience, nationality, personal appearance, race, religion, or sexual identity and orientation.
 ## Our Standards
 Examples of behavior that contributes to creating a positive environment include:
 * Using welcoming and inclusive language
 * Being respectful of differing viewpoints and experiences
 * Gracefully accepting constructive criticism
 * Focusing on what is best for the community
 * Showing empathy towards other community members
 Examples of unacceptable behavior by participants include:
 * The use of sexualized language or imagery and unwelcome sexual attention or advances
 * Trolling, insulting/derogatory comments, and personal or political attacks
 * Public or private harassment
 * Publishing others' private information, such as a physical or electronic address, without explicit permission
 * Other conduct which could reasonably be considered inappropriate in a professional setting
 ## Our Responsibilities
 Project maintainers are responsible for clarifying the standards of acceptable behavior and are expected to take appropriate and fair corrective action in response to any instances of unacceptable behavior.
 Project maintainers have the right and responsibility to remove, edit, or reject comments, commits, code, wiki edits, issues, and other contributions that are not aligned to this Code of Conduct, or to ban temporarily or permanently any contributor for other behaviors that they deem inappropriate, threatening, offensive, or harmful.
 ## Scope
 This Code of Conduct applies both within project spaces and in public spaces when an individual is representing the project or its community. Examples of representing a project or community include using an official project e-mail address, posting via an official social media account, or acting as an appointed representative at an online or offline event. Representation of a project may be further defined and clarified by project maintainers.
 ## Enforcement
 Instances of abusive, harassing, or otherwise unacceptable behavior may be reported by contacting the project team at i@dario.im. The project team will review and investigate all complaints, and will respond in a way that it deems appropriate to the circumstances. The project team is obligated to maintain confidentiality with regard to the reporter of an incident. Further details of specific enforcement policies may be posted separately.
 Project maintainers who do not follow or enforce the Code of Conduct in good faith may face temporary or permanent repercussions as determined by other members of the project's leadership.
 ## Attribution
 This Code of Conduct is adapted from the [Contributor Covenant][homepage], version 1.4, available at [http://contributor-covenant.org/version/1/4][version]
 [homepage]: http://contributor-covenant.org
 [version]: http://contributor-covenant.org/version/1/4/
--- a/vendor/dario.cat/mergo/CONTRIBUTING.md
+++ b/vendor/dario.cat/mergo/CONTRIBUTING.md
@ -0,0 +1,112 @@
 <!-- omit in toc -->
 # Contributing to mergo
 First off, thanks for taking the time to contribute! ❤️
 All types of contributions are encouraged and valued. See the [Table of Contents](#table-of-contents) for different ways to help and details about how this project handles them. Please make sure to read the relevant section before making your contribution. It will make it a lot easier for us maintainers and smooth out the experience for all involved. The community looks forward to your contributions. 🎉
 > And if you like the project, but just don't have time to contribute, that's fine. There are other easy ways to support the project and show your appreciation, which we would also be very happy about:
 > - Star the project
 > - Tweet about it
 > - Refer this project in your project's readme
 > - Mention the project at local meetups and tell your friends/colleagues
 <!-- omit in toc -->
 ## Table of Contents
 - [Code of Conduct](#code-of-conduct)
 - [I Have a Question](#i-have-a-question)
 - [I Want To Contribute](#i-want-to-contribute)
 - [Reporting Bugs](#reporting-bugs)
 - [Suggesting Enhancements](#suggesting-enhancements)
 ## Code of Conduct
 This project and everyone participating in it is governed by the
 [mergo Code of Conduct](https://github.com/imdario/mergoblob/master/CODE_OF_CONDUCT.md).
 By participating, you are expected to uphold this code. Please report unacceptable behavior
 to <>.
 ## I Have a Question
 > If you want to ask a question, we assume that you have read the available [Documentation](https://pkg.go.dev/github.com/imdario/mergo).
 Before you ask a question, it is best to search for existing [Issues](https://github.com/imdario/mergo/issues) that might help you. In case you have found a suitable issue and still need clarification, you can write your question in this issue. It is also advisable to search the internet for answers first.
 If you then still feel the need to ask a question and need clarification, we recommend the following:
 - Open an [Issue](https://github.com/imdario/mergo/issues/new).
 - Provide as much context as you can about what you're running into.
 - Provide project and platform versions (nodejs, npm, etc), depending on what seems relevant.
 We will then take care of the issue as soon as possible.
 ## I Want To Contribute
 > ### Legal Notice <!-- omit in toc -->
 > When contributing to this project, you must agree that you have authored 100% of the content, that you have the necessary rights to the content and that the content you contribute may be provided under the project license.
 ### Reporting Bugs
 <!-- omit in toc -->
 #### Before Submitting a Bug Report
 A good bug report shouldn't leave others needing to chase you up for more information. Therefore, we ask you to investigate carefully, collect information and describe the issue in detail in your report. Please complete the following steps in advance to help us fix any potential bug as fast as possible.
 - Make sure that you are using the latest version.
 - Determine if your bug is really a bug and not an error on your side e.g. using incompatible environment components/versions (Make sure that you have read the [documentation](). If you are looking for support, you might want to check [this section](#i-have-a-question)).
 - To see if other users have experienced (and potentially already solved) the same issue you are having, check if there is not already a bug report existing for your bug or error in the [bug tracker](https://github.com/imdario/mergoissues?q=label%3Abug).
 - Also make sure to search the internet (including Stack Overflow) to see if users outside of the GitHub community have discussed the issue.
 - Collect information about the bug:
 - Stack trace (Traceback)
 - OS, Platform and Version (Windows, Linux, macOS, x86, ARM)
 - Version of the interpreter, compiler, SDK, runtime environment, package manager, depending on what seems relevant.
 - Possibly your input and the output
 - Can you reliably reproduce the issue? And can you also reproduce it with older versions?
 <!-- omit in toc -->
 #### How Do I Submit a Good Bug Report?
 > You must never report security related issues, vulnerabilities or bugs including sensitive information to the issue tracker, or elsewhere in public. Instead sensitive bugs must be sent by email to .
 <!-- You may add a PGP key to allow the messages to be sent encrypted as well. -->
 We use GitHub issues to track bugs and errors. If you run into an issue with the project:
 - Open an [Issue](https://github.com/imdario/mergo/issues/new). (Since we can't be sure at this point whether it is a bug or not, we ask you not to talk about a bug yet and not to label the issue.)
 - Explain the behavior you would expect and the actual behavior.
 - Please provide as much context as possible and describe the *reproduction steps* that someone else can follow to recreate the issue on their own. This usually includes your code. For good bug reports you should isolate the problem and create a reduced test case.
 - Provide the information you collected in the previous section.
 Once it's filed:
 - The project team will label the issue accordingly.
 - A team member will try to reproduce the issue with your provided steps. If there are no reproduction steps or no obvious way to reproduce the issue, the team will ask you for those steps and mark the issue as `needs-repro`. Bugs with the `needs-repro` tag will not be addressed until they are reproduced.
 - If the team is able to reproduce the issue, it will be marked `needs-fix`, as well as possibly other tags (such as `critical`), and the issue will be left to be implemented by someone.
 ### Suggesting Enhancements
 This section guides you through submitting an enhancement suggestion for mergo, **including completely new features and minor improvements to existing functionality**. Following these guidelines will help maintainers and the community to understand your suggestion and find related suggestions.
 <!-- omit in toc -->
 #### Before Submitting an Enhancement
 - Make sure that you are using the latest version.
 - Read the [documentation]() carefully and find out if the functionality is already covered, maybe by an individual configuration.
 - Perform a [search](https://github.com/imdario/mergo/issues) to see if the enhancement has already been suggested. If it has, add a comment to the existing issue instead of opening a new one.
 - Find out whether your idea fits with the scope and aims of the project. It's up to you to make a strong case to convince the project's developers of the merits of this feature. Keep in mind that we want features that will be useful to the majority of our users and not just a small subset. If you're just targeting a minority of users, consider writing an add-on/plugin library.
 <!-- omit in toc -->
 #### How Do I Submit a Good Enhancement Suggestion?
 Enhancement suggestions are tracked as [GitHub issues](https://github.com/imdario/mergo/issues).
 - Use a **clear and descriptive title** for the issue to identify the suggestion.
 - Provide a **step-by-step description of the suggested enhancement** in as many details as possible.
 - **Describe the current behavior** and **explain which behavior you expected to see instead** and why. At this point you can also tell which alternatives do not work for you.
 - You may want to **include screenshots and animated GIFs** which help you demonstrate the steps or point out the part which the suggestion is related to. You can use [this tool](https://www.cockos.com/licecap/) to record GIFs on macOS and Windows, and [this tool](https://github.com/colinkeenan/silentcast) or [this tool](https://github.com/GNOME/byzanz) on Linux. <!-- this should only be included if the project has a GUI -->
 - **Explain why this enhancement would be useful** to most mergo users. You may also want to point out the other projects that solved it better and which could serve as inspiration.
 <!-- omit in toc -->
 ## Attribution
 This guide is based on the **contributing-gen**. [Make your own](https://github.com/bttger/contributing-gen)!
--- a/vendor/dario.cat/mergo/LICENSE
+++ b/vendor/dario.cat/mergo/LICENSE
@ -0,0 +1,28 @@
 Copyright (c) 2013 Dario Castañé. All rights reserved.
 Copyright (c) 2012 The Go Authors. All rights reserved.
 Redistribution and use in source and binary forms, with or without
 modification, are permitted provided that the following conditions are
 met:
   * Redistributions of source code must retain the above copyright
 notice, this list of conditions and the following disclaimer.
   * Redistributions in binary form must reproduce the above
 copyright notice, this list of conditions and the following disclaimer
 in the documentation and/or other materials provided with the
 distribution.
   * Neither the name of Google Inc. nor the names of its
 contributors may be used to endorse or promote products derived from
 this software without specific prior written permission.
 THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
 "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
 LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
 A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
 OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
 SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
 LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
 DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
 THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
 (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
 OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
--- a/vendor/dario.cat/mergo/README.md
+++ b/vendor/dario.cat/mergo/README.md
@ -0,0 +1,248 @@
 # Mergo
 [![GitHub release][5]][6]
 [![GoCard][7]][8]
 [![Test status][1]][2]
 [![OpenSSF Scorecard][21]][22]
 [![OpenSSF Best Practices][19]][20]
 [![Coverage status][9]][10]
 [![Sourcegraph][11]][12]
 [![FOSSA status][13]][14]
 [![GoDoc][3]][4]
 [![Become my sponsor][15]][16]
 [![Tidelift][17]][18]
 [1]: https://github.com/imdario/mergo/workflows/tests/badge.svg?branch=master
 [2]: https://github.com/imdario/mergo/actions/workflows/tests.yml
 [3]: https://godoc.org/github.com/imdario/mergo?status.svg
 [4]: https://godoc.org/github.com/imdario/mergo
 [5]: https://img.shields.io/github/release/imdario/mergo.svg
 [6]: https://github.com/imdario/mergo/releases
 [7]: https://goreportcard.com/badge/imdario/mergo
 [8]: https://goreportcard.com/report/github.com/imdario/mergo
 [9]: https://coveralls.io/repos/github/imdario/mergo/badge.svg?branch=master
 [10]: https://coveralls.io/github/imdario/mergo?branch=master
 [11]: https://sourcegraph.com/github.com/imdario/mergo/-/badge.svg
 [12]: https://sourcegraph.com/github.com/imdario/mergo?badge
 [13]: https://app.fossa.io/api/projects/git%2Bgithub.com%2Fimdario%2Fmergo.svg?type=shield
 [14]: https://app.fossa.io/projects/git%2Bgithub.com%2Fimdario%2Fmergo?ref=badge_shield
 [15]: https://img.shields.io/github/sponsors/imdario
 [16]: https://github.com/sponsors/imdario
 [17]: https://tidelift.com/badges/package/go/github.com%2Fimdario%2Fmergo
 [18]: https://tidelift.com/subscription/pkg/go-github.com-imdario-mergo
 [19]: https://bestpractices.coreinfrastructure.org/projects/7177/badge
 [20]: https://bestpractices.coreinfrastructure.org/projects/7177
 [21]: https://api.securityscorecards.dev/projects/github.com/imdario/mergo/badge
 [22]: https://api.securityscorecards.dev/projects/github.com/imdario/mergo
 A helper to merge structs and maps in Golang. Useful for configuration default values, avoiding messy if-statements.
 Mergo merges same-type structs and maps by setting default values in zero-value fields. Mergo won't merge unexported (private) fields. It will do recursively any exported one. It also won't merge structs inside maps (because they are not addressable using Go reflection).
 Also a lovely [comune](http://en.wikipedia.org/wiki/Mergo) (municipality) in the Province of Ancona in the Italian region of Marche.
 ## Status
 It is ready for production use. [It is used in several projects by Docker, Google, The Linux Foundation, VMWare, Shopify, Microsoft, etc](https://github.com/imdario/mergo#mergo-in-the-wild).
 ### Important notes
 #### 1.0.0
 In [1.0.0](//github.com/imdario/mergo/releases/tag/1.0.0) Mergo moves to a vanity URL `dario.cat/mergo`.
 #### 0.3.9
 Please keep in mind that a problematic PR broke [0.3.9](//github.com/imdario/mergo/releases/tag/0.3.9). I reverted it in [0.3.10](//github.com/imdario/mergo/releases/tag/0.3.10), and I consider it stable but not bug-free. Also, this version adds support for go modules.
 Keep in mind that in [0.3.2](//github.com/imdario/mergo/releases/tag/0.3.2), Mergo changed `Merge()`and `Map()` signatures to support [transformers](#transformers). I added an optional/variadic argument so that it won't break the existing code.
 If you were using Mergo before April 6th, 2015, please check your project works as intended after updating your local copy with ```go get -u dario.cat/mergo```. I apologize for any issue caused by its previous behavior and any future bug that Mergo could cause in existing projects after the change (release 0.2.0).
 ### Donations
 If Mergo is useful to you, consider buying me a coffee, a beer, or making a monthly donation to allow me to keep building great free software. :heart_eyes:
 <a href='https://ko-fi.com/B0B58839' target='_blank'><img height='36' style='border:0px;height:36px;' src='https://az743702.vo.msecnd.net/cdn/kofi1.png?v=0' border='0' alt='Buy Me a Coffee at ko-fi.com' /></a>
 <a href="https://liberapay.com/dario/donate"><img alt="Donate using Liberapay" src="https://liberapay.com/assets/widgets/donate.svg"></a>
 <a href='https://github.com/sponsors/imdario' target='_blank'><img alt="Become my sponsor" src="https://img.shields.io/github/sponsors/imdario?style=for-the-badge" /></a>
 ### Mergo in the wild
 - [moby/moby](https://github.com/moby/moby)
 - [kubernetes/kubernetes](https://github.com/kubernetes/kubernetes)
 - [vmware/dispatch](https://github.com/vmware/dispatch)
 - [Shopify/themekit](https://github.com/Shopify/themekit)
 - [imdario/zas](https://github.com/imdario/zas)
 - [matcornic/hermes](https://github.com/matcornic/hermes)
 - [OpenBazaar/openbazaar-go](https://github.com/OpenBazaar/openbazaar-go)
 - [kataras/iris](https://github.com/kataras/iris)
 - [michaelsauter/crane](https://github.com/michaelsauter/crane)
 - [go-task/task](https://github.com/go-task/task)
 - [sensu/uchiwa](https://github.com/sensu/uchiwa)
 - [ory/hydra](https://github.com/ory/hydra)
 - [sisatech/vcli](https://github.com/sisatech/vcli)
 - [dairycart/dairycart](https://github.com/dairycart/dairycart)
 - [projectcalico/felix](https://github.com/projectcalico/felix)
 - [resin-os/balena](https://github.com/resin-os/balena)
 - [go-kivik/kivik](https://github.com/go-kivik/kivik)
 - [Telefonica/govice](https://github.com/Telefonica/govice)
 - [supergiant/supergiant](supergiant/supergiant)
 - [SergeyTsalkov/brooce](https://github.com/SergeyTsalkov/brooce)
 - [soniah/dnsmadeeasy](https://github.com/soniah/dnsmadeeasy)
 - [ohsu-comp-bio/funnel](https://github.com/ohsu-comp-bio/funnel)
 - [EagerIO/Stout](https://github.com/EagerIO/Stout)
 - [lynndylanhurley/defsynth-api](https://github.com/lynndylanhurley/defsynth-api)
 - [russross/canvasassignments](https://github.com/russross/canvasassignments)
 - [rdegges/cryptly-api](https://github.com/rdegges/cryptly-api)
 - [casualjim/exeggutor](https://github.com/casualjim/exeggutor)
 - [divshot/gitling](https://github.com/divshot/gitling)
 - [RWJMurphy/gorl](https://github.com/RWJMurphy/gorl)
 - [andrerocker/deploy42](https://github.com/andrerocker/deploy42)
 - [elwinar/rambler](https://github.com/elwinar/rambler)
 - [tmaiaroto/gopartman](https://github.com/tmaiaroto/gopartman)
 - [jfbus/impressionist](https://github.com/jfbus/impressionist)
 - [Jmeyering/zealot](https://github.com/Jmeyering/zealot)
 - [godep-migrator/rigger-host](https://github.com/godep-migrator/rigger-host)
 - [Dronevery/MultiwaySwitch-Go](https://github.com/Dronevery/MultiwaySwitch-Go)
 - [thoas/picfit](https://github.com/thoas/picfit)
 - [mantasmatelis/whooplist-server](https://github.com/mantasmatelis/whooplist-server)
 - [jnuthong/item_search](https://github.com/jnuthong/item_search)
 - [bukalapak/snowboard](https://github.com/bukalapak/snowboard)
 - [containerssh/containerssh](https://github.com/containerssh/containerssh)
 - [goreleaser/goreleaser](https://github.com/goreleaser/goreleaser)
 - [tjpnz/structbot](https://github.com/tjpnz/structbot)
 ## Install
    go get dario.cat/mergo
    // use in your .go code
    import (
        "dario.cat/mergo"
    )
 ## Usage
 You can only merge same-type structs with exported fields initialized as zero value of their type and same-types maps. Mergo won't merge unexported (private) fields but will do recursively any exported one. It won't merge empty structs value as [they are zero values](https://golang.org/ref/spec#The_zero_value) too. Also, maps will be merged recursively except for structs inside maps (because they are not addressable using Go reflection).
 ```go
 if err := mergo.Merge(&dst, src); err != nil {
    // ...
 }
 ```
 Also, you can merge overwriting values using the transformer `WithOverride`.
 ```go
 if err := mergo.Merge(&dst, src, mergo.WithOverride); err != nil {
    // ...
 }
 ```
 Additionally, you can map a `map[string]interface{}` to a struct (and otherwise, from struct to map), following the same restrictions as in `Merge()`. Keys are capitalized to find each corresponding exported field.
 ```go
 if err := mergo.Map(&dst, srcMap); err != nil {
    // ...
 }
 ```
 Warning: if you map a struct to map, it won't do it recursively. Don't expect Mergo to map struct members of your struct as `map[string]interface{}`. They will be just assigned as values.
 Here is a nice example:
 ```go
 package main
 import (
 	"fmt"
 	"dario.cat/mergo"
 )
 type Foo struct {
 	A string
 	B int64
 }
 func main() {
 	src := Foo{
 		A: "one",
 		B: 2,
 	}
 	dest := Foo{
 		A: "two",
 	}
 	mergo.Merge(&dest, src)
 	fmt.Println(dest)
 	// Will print
 	// {two 2}
 }
 ```
 Note: if test are failing due missing package, please execute:
    go get gopkg.in/yaml.v3
 ### Transformers
 Transformers allow to merge specific types differently than in the default behavior. In other words, now you can customize how some types are merged. For example, `time.Time` is a struct; it doesn't have zero value but IsZero can return true because it has fields with zero value. How can we merge a non-zero `time.Time`?
 ```go
 package main
 import (
 	"fmt"
 	"dario.cat/mergo"
    "reflect"
    "time"
 )
 type timeTransformer struct {
 }
 func (t timeTransformer) Transformer(typ reflect.Type) func(dst, src reflect.Value) error {
 	if typ == reflect.TypeOf(time.Time{}) {
 		return func(dst, src reflect.Value) error {
 			if dst.CanSet() {
 				isZero := dst.MethodByName("IsZero")
 				result := isZero.Call([]reflect.Value{})
 				if result[0].Bool() {
 					dst.Set(src)
 				}
 			}
 			return nil
 		}
 	}
 	return nil
 }
 type Snapshot struct {
 	Time time.Time
 	// ...
 }
 func main() {
 	src := Snapshot{time.Now()}
 	dest := Snapshot{}
 	mergo.Merge(&dest, src, mergo.WithTransformers(timeTransformer{}))
 	fmt.Println(dest)
 	// Will print
 	// { 2018-01-12 01:15:00 +0000 UTC m=+0.000000001 }
 }
 ```
 ## Contact me
 If I can help you, you have an idea or you are using Mergo in your projects, don't hesitate to drop me a line (or a pull request): [@im_dario](https://twitter.com/im_dario)
 ## About
 Written by [Dario Castañé](http://dario.im).
 ## License
 [BSD 3-Clause](http://opensource.org/licenses/BSD-3-Clause) license, as [Go language](http://golang.org/LICENSE).
 [![FOSSA Status](https://app.fossa.io/api/projects/git%2Bgithub.com%2Fimdario%2Fmergo.svg?type=large)](https://app.fossa.io/projects/git%2Bgithub.com%2Fimdario%2Fmergo?ref=badge_large)
--- a/vendor/dario.cat/mergo/SECURITY.md
+++ b/vendor/dario.cat/mergo/SECURITY.md
@ -0,0 +1,14 @@
 # Security Policy
 ## Supported Versions
 | Version | Supported          |
 | ------- | ------------------ |
 | 0.3.x   | :white_check_mark: |
 | < 0.3   | :x:                |
 ## Security contact information
 To report a security vulnerability, please use the
 [Tidelift security contact](https://tidelift.com/security).
 Tidelift will coordinate the fix and disclosure.
--- a/vendor/dario.cat/mergo/doc.go
+++ b/vendor/dario.cat/mergo/doc.go
@ -0,0 +1,148 @@
 // Copyright 2013 Dario Castañé. All rights reserved.
 // Copyright 2009 The Go Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style
 // license that can be found in the LICENSE file.
 /*
 A helper to merge structs and maps in Golang. Useful for configuration default values, avoiding messy if-statements.
 Mergo merges same-type structs and maps by setting default values in zero-value fields. Mergo won't merge unexported (private) fields. It will do recursively any exported one. It also won't merge structs inside maps (because they are not addressable using Go reflection).
 # Status
 It is ready for production use. It is used in several projects by Docker, Google, The Linux Foundation, VMWare, Shopify, etc.
 # Important notes
 1.0.0
 In 1.0.0 Mergo moves to a vanity URL `dario.cat/mergo`.
 0.3.9
 Please keep in mind that a problematic PR broke 0.3.9. We reverted it in 0.3.10. We consider 0.3.10 as stable but not bug-free. . Also, this version adds suppot for go modules.
 Keep in mind that in 0.3.2, Mergo changed Merge() and Map() signatures to support transformers. We added an optional/variadic argument so that it won't break the existing code.
 If you were using Mergo before April 6th, 2015, please check your project works as intended after updating your local copy with go get -u dario.cat/mergo. I apologize for any issue caused by its previous behavior and any future bug that Mergo could cause in existing projects after the change (release 0.2.0).
 # Install
 Do your usual installation procedure:
 	go get dario.cat/mergo
 	// use in your .go code
 	import (
 	    "dario.cat/mergo"
 	)
 # Usage
 You can only merge same-type structs with exported fields initialized as zero value of their type and same-types maps. Mergo won't merge unexported (private) fields but will do recursively any exported one. It won't merge empty structs value as they are zero values too. Also, maps will be merged recursively except for structs inside maps (because they are not addressable using Go reflection).
 	if err := mergo.Merge(&dst, src); err != nil {
 		// ...
 	}
 Also, you can merge overwriting values using the transformer WithOverride.
 	if err := mergo.Merge(&dst, src, mergo.WithOverride); err != nil {
 		// ...
 	}
 Additionally, you can map a map[string]interface{} to a struct (and otherwise, from struct to map), following the same restrictions as in Merge(). Keys are capitalized to find each corresponding exported field.
 	if err := mergo.Map(&dst, srcMap); err != nil {
 		// ...
 	}
 Warning: if you map a struct to map, it won't do it recursively. Don't expect Mergo to map struct members of your struct as map[string]interface{}. They will be just assigned as values.
 Here is a nice example:
 	package main
 	import (
 		"fmt"
 		"dario.cat/mergo"
 	)
 	type Foo struct {
 		A string
 		B int64
 	}
 	func main() {
 		src := Foo{
 			A: "one",
 			B: 2,
 		}
 		dest := Foo{
 			A: "two",
 		}
 		mergo.Merge(&dest, src)
 		fmt.Println(dest)
 		// Will print
 		// {two 2}
 	}
 # Transformers
 Transformers allow to merge specific types differently than in the default behavior. In other words, now you can customize how some types are merged. For example, time.Time is a struct; it doesn't have zero value but IsZero can return true because it has fields with zero value. How can we merge a non-zero time.Time?
 	package main
 	import (
 		"fmt"
 		"dario.cat/mergo"
 		"reflect"
 		"time"
 	)
 	type timeTransformer struct {
 	}
 	func (t timeTransformer) Transformer(typ reflect.Type) func(dst, src reflect.Value) error {
 		if typ == reflect.TypeOf(time.Time{}) {
 			return func(dst, src reflect.Value) error {
 				if dst.CanSet() {
 					isZero := dst.MethodByName("IsZero")
 					result := isZero.Call([]reflect.Value{})
 					if result[0].Bool() {
 						dst.Set(src)
 					}
 				}
 				return nil
 			}
 		}
 		return nil
 	}
 	type Snapshot struct {
 		Time time.Time
 		// ...
 	}
 	func main() {
 		src := Snapshot{time.Now()}
 		dest := Snapshot{}
 		mergo.Merge(&dest, src, mergo.WithTransformers(timeTransformer{}))
 		fmt.Println(dest)
 		// Will print
 		// { 2018-01-12 01:15:00 +0000 UTC m=+0.000000001 }
 	}
 # Contact me
 If I can help you, you have an idea or you are using Mergo in your projects, don't hesitate to drop me a line (or a pull request): https://twitter.com/im_dario
 # About
 Written by Dario Castañé: https://da.rio.hn
 # License
 BSD 3-Clause license, as Go language.
 */
 package mergo
--- a/vendor/dario.cat/mergo/map.go
+++ b/vendor/dario.cat/mergo/map.go
@ -0,0 +1,178 @@
 // Copyright 2014 Dario Castañé. All rights reserved.
 // Copyright 2009 The Go Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style
 // license that can be found in the LICENSE file.
 // Based on src/pkg/reflect/deepequal.go from official
 // golang's stdlib.
 package mergo
 import (
 	"fmt"
 	"reflect"
 	"unicode"
 	"unicode/utf8"
 )
 func changeInitialCase(s string, mapper func(rune) rune) string {
 	if s == "" {
 		return s
 	}
 	r, n := utf8.DecodeRuneInString(s)
 	return string(mapper(r)) + s[n:]
 }
 func isExported(field reflect.StructField) bool {
 	r, _ := utf8.DecodeRuneInString(field.Name)
 	return r >= 'A' && r <= 'Z'
 }
 // Traverses recursively both values, assigning src's fields values to dst.
 // The map argument tracks comparisons that have already been seen, which allows
 // short circuiting on recursive types.
 func deepMap(dst, src reflect.Value, visited map[uintptr]*visit, depth int, config *Config) (err error) {
 	overwrite := config.Overwrite
 	if dst.CanAddr() {
 		addr := dst.UnsafeAddr()
 		h := 17 * addr
 		seen := visited[h]
 		typ := dst.Type()
 		for p := seen; p != nil; p = p.next {
 			if p.ptr == addr && p.typ == typ {
 				return nil
 			}
 		}
 		// Remember, remember...
 		visited[h] = &visit{typ, seen, addr}
 	}
 	zeroValue := reflect.Value{}
 	switch dst.Kind() {
 	case reflect.Map:
 		dstMap := dst.Interface().(map[string]interface{})
 		for i, n := 0, src.NumField(); i < n; i++ {
 			srcType := src.Type()
 			field := srcType.Field(i)
 			if !isExported(field) {
 				continue
 			}
 			fieldName := field.Name
 			fieldName = changeInitialCase(fieldName, unicode.ToLower)
 			if v, ok := dstMap[fieldName]; !ok || (isEmptyValue(reflect.ValueOf(v), !config.ShouldNotDereference) || overwrite) {
 				dstMap[fieldName] = src.Field(i).Interface()
 			}
 		}
 	case reflect.Ptr:
 		if dst.IsNil() {
 			v := reflect.New(dst.Type().Elem())
 			dst.Set(v)
 		}
 		dst = dst.Elem()
 		fallthrough
 	case reflect.Struct:
 		srcMap := src.Interface().(map[string]interface{})
 		for key := range srcMap {
 			config.overwriteWithEmptyValue = true
 			srcValue := srcMap[key]
 			fieldName := changeInitialCase(key, unicode.ToUpper)
 			dstElement := dst.FieldByName(fieldName)
 			if dstElement == zeroValue {
 				// We discard it because the field doesn't exist.
 				continue
 			}
 			srcElement := reflect.ValueOf(srcValue)
 			dstKind := dstElement.Kind()
 			srcKind := srcElement.Kind()
 			if srcKind == reflect.Ptr && dstKind != reflect.Ptr {
 				srcElement = srcElement.Elem()
 				srcKind = reflect.TypeOf(srcElement.Interface()).Kind()
 			} else if dstKind == reflect.Ptr {
 				// Can this work? I guess it can't.
 				if srcKind != reflect.Ptr && srcElement.CanAddr() {
 					srcPtr := srcElement.Addr()
 					srcElement = reflect.ValueOf(srcPtr)
 					srcKind = reflect.Ptr
 				}
 			}
 			if !srcElement.IsValid() {
 				continue
 			}
 			if srcKind == dstKind {
 				if err = deepMerge(dstElement, srcElement, visited, depth+1, config); err != nil {
 					return
 				}
 			} else if dstKind == reflect.Interface && dstElement.Kind() == reflect.Interface {
 				if err = deepMerge(dstElement, srcElement, visited, depth+1, config); err != nil {
 					return
 				}
 			} else if srcKind == reflect.Map {
 				if err = deepMap(dstElement, srcElement, visited, depth+1, config); err != nil {
 					return
 				}
 			} else {
 				return fmt.Errorf("type mismatch on %s field: found %v, expected %v", fieldName, srcKind, dstKind)
 			}
 		}
 	}
 	return
 }
 // Map sets fields' values in dst from src.
 // src can be a map with string keys or a struct. dst must be the opposite:
 // if src is a map, dst must be a valid pointer to struct. If src is a struct,
 // dst must be map[string]interface{}.
 // It won't merge unexported (private) fields and will do recursively
 // any exported field.
 // If dst is a map, keys will be src fields' names in lower camel case.
 // Missing key in src that doesn't match a field in dst will be skipped. This
 // doesn't apply if dst is a map.
 // This is separated method from Merge because it is cleaner and it keeps sane
 // semantics: merging equal types, mapping different (restricted) types.
 func Map(dst, src interface{}, opts ...func(*Config)) error {
 	return _map(dst, src, opts...)
 }
 // MapWithOverwrite will do the same as Map except that non-empty dst attributes will be overridden by
 // non-empty src attribute values.
 // Deprecated: Use Map(…) with WithOverride
 func MapWithOverwrite(dst, src interface{}, opts ...func(*Config)) error {
 	return _map(dst, src, append(opts, WithOverride)...)
 }
 func _map(dst, src interface{}, opts ...func(*Config)) error {
 	if dst != nil && reflect.ValueOf(dst).Kind() != reflect.Ptr {
 		return ErrNonPointerArgument
 	}
 	var (
 		vDst, vSrc reflect.Value
 		err        error
 	)
 	config := &Config{}
 	for _, opt := range opts {
 		opt(config)
 	}
 	if vDst, vSrc, err = resolveValues(dst, src); err != nil {
 		return err
 	}
 	// To be friction-less, we redirect equal-type arguments
 	// to deepMerge. Only because arguments can be anything.
 	if vSrc.Kind() == vDst.Kind() {
 		return deepMerge(vDst, vSrc, make(map[uintptr]*visit), 0, config)
 	}
 	switch vSrc.Kind() {
 	case reflect.Struct:
 		if vDst.Kind() != reflect.Map {
 			return ErrExpectedMapAsDestination
 		}
 	case reflect.Map:
 		if vDst.Kind() != reflect.Struct {
 			return ErrExpectedStructAsDestination
 		}
 	default:
 		return ErrNotSupported
 	}
 	return deepMap(vDst, vSrc, make(map[uintptr]*visit), 0, config)
 }
--- a/vendor/dario.cat/mergo/merge.go
+++ b/vendor/dario.cat/mergo/merge.go
@ -0,0 +1,409 @@
 // Copyright 2013 Dario Castañé. All rights reserved.
 // Copyright 2009 The Go Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style
 // license that can be found in the LICENSE file.
 // Based on src/pkg/reflect/deepequal.go from official
 // golang's stdlib.
 package mergo
 import (
 	"fmt"
 	"reflect"
 )
 func hasMergeableFields(dst reflect.Value) (exported bool) {
 	for i, n := 0, dst.NumField(); i < n; i++ {
 		field := dst.Type().Field(i)
 		if field.Anonymous && dst.Field(i).Kind() == reflect.Struct {
 			exported = exported || hasMergeableFields(dst.Field(i))
 		} else if isExportedComponent(&field) {
 			exported = exported || len(field.PkgPath) == 0
 		}
 	}
 	return
 }
 func isExportedComponent(field *reflect.StructField) bool {
 	pkgPath := field.PkgPath
 	if len(pkgPath) > 0 {
 		return false
 	}
 	c := field.Name[0]
 	if 'a' <= c && c <= 'z' || c == '_' {
 		return false
 	}
 	return true
 }
 type Config struct {
 	Transformers                 Transformers
 	Overwrite                    bool
 	ShouldNotDereference         bool
 	AppendSlice                  bool
 	TypeCheck                    bool
 	overwriteWithEmptyValue      bool
 	overwriteSliceWithEmptyValue bool
 	sliceDeepCopy                bool
 	debug                        bool
 }
 type Transformers interface {
 	Transformer(reflect.Type) func(dst, src reflect.Value) error
 }
 // Traverses recursively both values, assigning src's fields values to dst.
 // The map argument tracks comparisons that have already been seen, which allows
 // short circuiting on recursive types.
 func deepMerge(dst, src reflect.Value, visited map[uintptr]*visit, depth int, config *Config) (err error) {
 	overwrite := config.Overwrite
 	typeCheck := config.TypeCheck
 	overwriteWithEmptySrc := config.overwriteWithEmptyValue
 	overwriteSliceWithEmptySrc := config.overwriteSliceWithEmptyValue
 	sliceDeepCopy := config.sliceDeepCopy
 	if !src.IsValid() {
 		return
 	}
 	if dst.CanAddr() {
 		addr := dst.UnsafeAddr()
 		h := 17 * addr
 		seen := visited[h]
 		typ := dst.Type()
 		for p := seen; p != nil; p = p.next {
 			if p.ptr == addr && p.typ == typ {
 				return nil
 			}
 		}
 		// Remember, remember...
 		visited[h] = &visit{typ, seen, addr}
 	}
 	if config.Transformers != nil && !isReflectNil(dst) && dst.IsValid() {
 		if fn := config.Transformers.Transformer(dst.Type()); fn != nil {
 			err = fn(dst, src)
 			return
 		}
 	}
 	switch dst.Kind() {
 	case reflect.Struct:
 		if hasMergeableFields(dst) {
 			for i, n := 0, dst.NumField(); i < n; i++ {
 				if err = deepMerge(dst.Field(i), src.Field(i), visited, depth+1, config); err != nil {
 					return
 				}
 			}
 		} else {
 			if dst.CanSet() && (isReflectNil(dst) || overwrite) && (!isEmptyValue(src, !config.ShouldNotDereference) || overwriteWithEmptySrc) {
 				dst.Set(src)
 			}
 		}
 	case reflect.Map:
 		if dst.IsNil() && !src.IsNil() {
 			if dst.CanSet() {
 				dst.Set(reflect.MakeMap(dst.Type()))
 			} else {
 				dst = src
 				return
 			}
 		}
 		if src.Kind() != reflect.Map {
 			if overwrite && dst.CanSet() {
 				dst.Set(src)
 			}
 			return
 		}
 		for _, key := range src.MapKeys() {
 			srcElement := src.MapIndex(key)
 			if !srcElement.IsValid() {
 				continue
 			}
 			dstElement := dst.MapIndex(key)
 			switch srcElement.Kind() {
 			case reflect.Chan, reflect.Func, reflect.Map, reflect.Interface, reflect.Slice:
 				if srcElement.IsNil() {
 					if overwrite {
 						dst.SetMapIndex(key, srcElement)
 					}
 					continue
 				}
 				fallthrough
 			default:
 				if !srcElement.CanInterface() {
 					continue
 				}
 				switch reflect.TypeOf(srcElement.Interface()).Kind() {
 				case reflect.Struct:
 					fallthrough
 				case reflect.Ptr:
 					fallthrough
 				case reflect.Map:
 					srcMapElm := srcElement
 					dstMapElm := dstElement
 					if srcMapElm.CanInterface() {
 						srcMapElm = reflect.ValueOf(srcMapElm.Interface())
 						if dstMapElm.IsValid() {
 							dstMapElm = reflect.ValueOf(dstMapElm.Interface())
 						}
 					}
 					if err = deepMerge(dstMapElm, srcMapElm, visited, depth+1, config); err != nil {
 						return
 					}
 				case reflect.Slice:
 					srcSlice := reflect.ValueOf(srcElement.Interface())
 					var dstSlice reflect.Value
 					if !dstElement.IsValid() || dstElement.IsNil() {
 						dstSlice = reflect.MakeSlice(srcSlice.Type(), 0, srcSlice.Len())
 					} else {
 						dstSlice = reflect.ValueOf(dstElement.Interface())
 					}
 					if (!isEmptyValue(src, !config.ShouldNotDereference) || overwriteWithEmptySrc || overwriteSliceWithEmptySrc) && (overwrite || isEmptyValue(dst, !config.ShouldNotDereference)) && !config.AppendSlice && !sliceDeepCopy {
 						if typeCheck && srcSlice.Type() != dstSlice.Type() {
 							return fmt.Errorf("cannot override two slices with different type (%s, %s)", srcSlice.Type(), dstSlice.Type())
 						}
 						dstSlice = srcSlice
 					} else if config.AppendSlice {
 						if srcSlice.Type() != dstSlice.Type() {
 							return fmt.Errorf("cannot append two slices with different type (%s, %s)", srcSlice.Type(), dstSlice.Type())
 						}
 						dstSlice = reflect.AppendSlice(dstSlice, srcSlice)
 					} else if sliceDeepCopy {
 						i := 0
 						for ; i < srcSlice.Len() && i < dstSlice.Len(); i++ {
 							srcElement := srcSlice.Index(i)
 							dstElement := dstSlice.Index(i)
 							if srcElement.CanInterface() {
 								srcElement = reflect.ValueOf(srcElement.Interface())
 							}
 							if dstElement.CanInterface() {
 								dstElement = reflect.ValueOf(dstElement.Interface())
 							}
 							if err = deepMerge(dstElement, srcElement, visited, depth+1, config); err != nil {
 								return
 							}
 						}
 					}
 					dst.SetMapIndex(key, dstSlice)
 				}
 			}
 			if dstElement.IsValid() && !isEmptyValue(dstElement, !config.ShouldNotDereference) {
 				if reflect.TypeOf(srcElement.Interface()).Kind() == reflect.Slice {
 					continue
 				}
 				if reflect.TypeOf(srcElement.Interface()).Kind() == reflect.Map && reflect.TypeOf(dstElement.Interface()).Kind() == reflect.Map {
 					continue
 				}
 			}
 			if srcElement.IsValid() && ((srcElement.Kind() != reflect.Ptr && overwrite) || !dstElement.IsValid() || isEmptyValue(dstElement, !config.ShouldNotDereference)) {
 				if dst.IsNil() {
 					dst.Set(reflect.MakeMap(dst.Type()))
 				}
 				dst.SetMapIndex(key, srcElement)
 			}
 		}
 		// Ensure that all keys in dst are deleted if they are not in src.
 		if overwriteWithEmptySrc {
 			for _, key := range dst.MapKeys() {
 				srcElement := src.MapIndex(key)
 				if !srcElement.IsValid() {
 					dst.SetMapIndex(key, reflect.Value{})
 				}
 			}
 		}
 	case reflect.Slice:
 		if !dst.CanSet() {
 			break
 		}
 		if (!isEmptyValue(src, !config.ShouldNotDereference) || overwriteWithEmptySrc || overwriteSliceWithEmptySrc) && (overwrite || isEmptyValue(dst, !config.ShouldNotDereference)) && !config.AppendSlice && !sliceDeepCopy {
 			dst.Set(src)
 		} else if config.AppendSlice {
 			if src.Type() != dst.Type() {
 				return fmt.Errorf("cannot append two slice with different type (%s, %s)", src.Type(), dst.Type())
 			}
 			dst.Set(reflect.AppendSlice(dst, src))
 		} else if sliceDeepCopy {
 			for i := 0; i < src.Len() && i < dst.Len(); i++ {
 				srcElement := src.Index(i)
 				dstElement := dst.Index(i)
 				if srcElement.CanInterface() {
 					srcElement = reflect.ValueOf(srcElement.Interface())
 				}
 				if dstElement.CanInterface() {
 					dstElement = reflect.ValueOf(dstElement.Interface())
 				}
 				if err = deepMerge(dstElement, srcElement, visited, depth+1, config); err != nil {
 					return
 				}
 			}
 		}
 	case reflect.Ptr:
 		fallthrough
 	case reflect.Interface:
 		if isReflectNil(src) {
 			if overwriteWithEmptySrc && dst.CanSet() && src.Type().AssignableTo(dst.Type()) {
 				dst.Set(src)
 			}
 			break
 		}
 		if src.Kind() != reflect.Interface {
 			if dst.IsNil() || (src.Kind() != reflect.Ptr && overwrite) {
 				if dst.CanSet() && (overwrite || isEmptyValue(dst, !config.ShouldNotDereference)) {
 					dst.Set(src)
 				}
 			} else if src.Kind() == reflect.Ptr {
 				if !config.ShouldNotDereference {
 					if err = deepMerge(dst.Elem(), src.Elem(), visited, depth+1, config); err != nil {
 						return
 					}
 				} else {
 					if overwriteWithEmptySrc || (overwrite && !src.IsNil()) || dst.IsNil() {
 						dst.Set(src)
 					}
 				}
 			} else if dst.Elem().Type() == src.Type() {
 				if err = deepMerge(dst.Elem(), src, visited, depth+1, config); err != nil {
 					return
 				}
 			} else {
 				return ErrDifferentArgumentsTypes
 			}
 			break
 		}
 		if dst.IsNil() || overwrite {
 			if dst.CanSet() && (overwrite || isEmptyValue(dst, !config.ShouldNotDereference)) {
 				dst.Set(src)
 			}
 			break
 		}
 		if dst.Elem().Kind() == src.Elem().Kind() {
 			if err = deepMerge(dst.Elem(), src.Elem(), visited, depth+1, config); err != nil {
 				return
 			}
 			break
 		}
 	default:
 		mustSet := (isEmptyValue(dst, !config.ShouldNotDereference) || overwrite) && (!isEmptyValue(src, !config.ShouldNotDereference) || overwriteWithEmptySrc)
 		if mustSet {
 			if dst.CanSet() {
 				dst.Set(src)
 			} else {
 				dst = src
 			}
 		}
 	}
 	return
 }
 // Merge will fill any empty for value type attributes on the dst struct using corresponding
 // src attributes if they themselves are not empty. dst and src must be valid same-type structs
 // and dst must be a pointer to struct.
 // It won't merge unexported (private) fields and will do recursively any exported field.
 func Merge(dst, src interface{}, opts ...func(*Config)) error {
 	return merge(dst, src, opts...)
 }
 // MergeWithOverwrite will do the same as Merge except that non-empty dst attributes will be overridden by
 // non-empty src attribute values.
 // Deprecated: use Merge(…) with WithOverride
 func MergeWithOverwrite(dst, src interface{}, opts ...func(*Config)) error {
 	return merge(dst, src, append(opts, WithOverride)...)
 }
 // WithTransformers adds transformers to merge, allowing to customize the merging of some types.
 func WithTransformers(transformers Transformers) func(*Config) {
 	return func(config *Config) {
 		config.Transformers = transformers
 	}
 }
 // WithOverride will make merge override non-empty dst attributes with non-empty src attributes values.
 func WithOverride(config *Config) {
 	config.Overwrite = true
 }
 // WithOverwriteWithEmptyValue will make merge override non empty dst attributes with empty src attributes values.
 func WithOverwriteWithEmptyValue(config *Config) {
 	config.Overwrite = true
 	config.overwriteWithEmptyValue = true
 }
 // WithOverrideEmptySlice will make merge override empty dst slice with empty src slice.
 func WithOverrideEmptySlice(config *Config) {
 	config.overwriteSliceWithEmptyValue = true
 }
 // WithoutDereference prevents dereferencing pointers when evaluating whether they are empty
 // (i.e. a non-nil pointer is never considered empty).
 func WithoutDereference(config *Config) {
 	config.ShouldNotDereference = true
 }
 // WithAppendSlice will make merge append slices instead of overwriting it.
 func WithAppendSlice(config *Config) {
 	config.AppendSlice = true
 }
 // WithTypeCheck will make merge check types while overwriting it (must be used with WithOverride).
 func WithTypeCheck(config *Config) {
 	config.TypeCheck = true
 }
 // WithSliceDeepCopy will merge slice element one by one with Overwrite flag.
 func WithSliceDeepCopy(config *Config) {
 	config.sliceDeepCopy = true
 	config.Overwrite = true
 }
 func merge(dst, src interface{}, opts ...func(*Config)) error {
 	if dst != nil && reflect.ValueOf(dst).Kind() != reflect.Ptr {
 		return ErrNonPointerArgument
 	}
 	var (
 		vDst, vSrc reflect.Value
 		err        error
 	)
 	config := &Config{}
 	for _, opt := range opts {
 		opt(config)
 	}
 	if vDst, vSrc, err = resolveValues(dst, src); err != nil {
 		return err
 	}
 	if vDst.Type() != vSrc.Type() {
 		return ErrDifferentArgumentsTypes
 	}
 	return deepMerge(vDst, vSrc, make(map[uintptr]*visit), 0, config)
 }
 // IsReflectNil is the reflect value provided nil
 func isReflectNil(v reflect.Value) bool {
 	k := v.Kind()
 	switch k {
 	case reflect.Interface, reflect.Slice, reflect.Chan, reflect.Func, reflect.Map, reflect.Ptr:
 		// Both interface and slice are nil if first word is 0.
 		// Both are always bigger than a word; assume flagIndir.
 		return v.IsNil()
 	default:
 		return false
 	}
 }
--- a/vendor/dario.cat/mergo/mergo.go
+++ b/vendor/dario.cat/mergo/mergo.go
@ -0,0 +1,81 @@
 // Copyright 2013 Dario Castañé. All rights reserved.
 // Copyright 2009 The Go Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style
 // license that can be found in the LICENSE file.
 // Based on src/pkg/reflect/deepequal.go from official
 // golang's stdlib.
 package mergo
 import (
 	"errors"
 	"reflect"
 )
 // Errors reported by Mergo when it finds invalid arguments.
 var (
 	ErrNilArguments                = errors.New("src and dst must not be nil")
 	ErrDifferentArgumentsTypes     = errors.New("src and dst must be of same type")
 	ErrNotSupported                = errors.New("only structs, maps, and slices are supported")
 	ErrExpectedMapAsDestination    = errors.New("dst was expected to be a map")
 	ErrExpectedStructAsDestination = errors.New("dst was expected to be a struct")
 	ErrNonPointerArgument          = errors.New("dst must be a pointer")
 )
 // During deepMerge, must keep track of checks that are
 // in progress.  The comparison algorithm assumes that all
 // checks in progress are true when it reencounters them.
 // Visited are stored in a map indexed by 17 * a1 + a2;
 type visit struct {
 	typ  reflect.Type
 	next *visit
 	ptr  uintptr
 }
 // From src/pkg/encoding/json/encode.go.
 func isEmptyValue(v reflect.Value, shouldDereference bool) bool {
 	switch v.Kind() {
 	case reflect.Array, reflect.Map, reflect.Slice, reflect.String:
 		return v.Len() == 0
 	case reflect.Bool:
 		return !v.Bool()
 	case reflect.Int, reflect.Int8, reflect.Int16, reflect.Int32, reflect.Int64:
 		return v.Int() == 0
 	case reflect.Uint, reflect.Uint8, reflect.Uint16, reflect.Uint32, reflect.Uint64, reflect.Uintptr:
 		return v.Uint() == 0
 	case reflect.Float32, reflect.Float64:
 		return v.Float() == 0
 	case reflect.Interface, reflect.Ptr:
 		if v.IsNil() {
 			return true
 		}
 		if shouldDereference {
 			return isEmptyValue(v.Elem(), shouldDereference)
 		}
 		return false
 	case reflect.Func:
 		return v.IsNil()
 	case reflect.Invalid:
 		return true
 	}
 	return false
 }
 func resolveValues(dst, src interface{}) (vDst, vSrc reflect.Value, err error) {
 	if dst == nil || src == nil {
 		err = ErrNilArguments
 		return
 	}
 	vDst = reflect.ValueOf(dst).Elem()
 	if vDst.Kind() != reflect.Struct && vDst.Kind() != reflect.Map && vDst.Kind() != reflect.Slice {
 		err = ErrNotSupported
 		return
 	}
 	vSrc = reflect.ValueOf(src)
 	// We check if vSrc is a pointer to dereference it.
 	if vSrc.Kind() == reflect.Ptr {
 		vSrc = vSrc.Elem()
 	}
 	return
 }
--- a/vendor/github.com/Microsoft/go-winio/.gitattributes
+++ b/vendor/github.com/Microsoft/go-winio/.gitattributes
@ -0,0 +1 @@
 * text=auto eol=lf
--- a/vendor/github.com/Microsoft/go-winio/.gitignore
+++ b/vendor/github.com/Microsoft/go-winio/.gitignore
@ -0,0 +1,10 @@
 .vscode/
 *.exe
 # testing
 testdata
 # go workspaces
 go.work
 go.work.sum
--- a/vendor/github.com/Microsoft/go-winio/.golangci.yml
+++ b/vendor/github.com/Microsoft/go-winio/.golangci.yml
@ -0,0 +1,149 @@
 run:
  skip-dirs:
    - pkg/etw/sample
 linters:
  enable:
    # style
    - containedctx # struct contains a context
    - dupl # duplicate code
    - errname # erorrs are named correctly
    - nolintlint # "//nolint" directives are properly explained
    - revive # golint replacement
    - unconvert # unnecessary conversions
    - wastedassign
    # bugs, performance, unused, etc ...
    - contextcheck # function uses a non-inherited context
    - errorlint # errors not wrapped for 1.13
    - exhaustive # check exhaustiveness of enum switch statements
    - gofmt # files are gofmt'ed
    - gosec # security
    - nilerr # returns nil even with non-nil error
    - unparam # unused function params
 issues:
  exclude-rules:
    # err is very often shadowed in nested scopes
    - linters:
        - govet
      text: '^shadow: declaration of "err" shadows declaration'
    # ignore long lines for skip autogen directives
    - linters:
        - revive
      text: "^line-length-limit: "
      source: "^//(go:generate|sys) "
    #TODO: remove after upgrading to go1.18
    # ignore comment spacing for nolint and sys directives
    - linters:
        - revive
      text: "^comment-spacings: no space between comment delimiter and comment text"
      source: "//(cspell:|nolint:|sys |todo)"
    # not on go 1.18 yet, so no any
    - linters:
        - revive
      text: "^use-any: since GO 1.18 'interface{}' can be replaced by 'any'"
    # allow unjustified ignores of error checks in defer statements
    - linters:
        - nolintlint
      text: "^directive `//nolint:errcheck` should provide explanation"
      source: '^\s*defer '
    # allow unjustified ignores of error lints for io.EOF
    - linters:
        - nolintlint
      text: "^directive `//nolint:errorlint` should provide explanation"
      source: '[=|!]= io.EOF'
 linters-settings:
  exhaustive:
    default-signifies-exhaustive: true
  govet:
    enable-all: true
    disable:
      # struct order is often for Win32 compat
      # also, ignore pointer bytes/GC issues for now until performance becomes an issue
      - fieldalignment
    check-shadowing: true
  nolintlint:
    allow-leading-space: false
    require-explanation: true
    require-specific: true
  revive:
    # revive is more configurable than static check, so likely the preferred alternative to static-check
    # (once the perf issue is solved: https://github.com/golangci/golangci-lint/issues/2997)
    enable-all-rules:
      true
      # https://github.com/mgechev/revive/blob/master/RULES_DESCRIPTIONS.md
    rules:
      # rules with required arguments
      - name: argument-limit
        disabled: true
      - name: banned-characters
        disabled: true
      - name: cognitive-complexity
        disabled: true
      - name: cyclomatic
        disabled: true
      - name: file-header
        disabled: true
      - name: function-length
        disabled: true
      - name: function-result-limit
        disabled: true
      - name: max-public-structs
        disabled: true
      # geneally annoying rules
      - name: add-constant # complains about any and all strings and integers
        disabled: true
      - name: confusing-naming # we frequently use "Foo()" and "foo()" together
        disabled: true
      - name: flag-parameter # excessive, and a common idiom we use
        disabled: true
      - name: unhandled-error # warns over common fmt.Print* and io.Close; rely on errcheck instead
        disabled: true
      # general config
      - name: line-length-limit
        arguments:
          - 140
      - name: var-naming
        arguments:
          - []
          - - CID
            - CRI
            - CTRD
            - DACL
            - DLL
            - DOS
            - ETW
            - FSCTL
            - GCS
            - GMSA
            - HCS
            - HV
            - IO
            - LCOW
            - LDAP
            - LPAC
            - LTSC
            - MMIO
            - NT
            - OCI
            - PMEM
            - PWSH
            - RX
            - SACl
            - SID
            - SMB
            - TX
            - VHD
            - VHDX
            - VMID
            - VPCI
            - WCOW
            - WIM
--- a/vendor/github.com/Microsoft/go-winio/CODEOWNERS
+++ b/vendor/github.com/Microsoft/go-winio/CODEOWNERS
@ -0,0 +1 @@
  * @microsoft/containerplat
--- a/vendor/github.com/Microsoft/go-winio/LICENSE
+++ b/vendor/github.com/Microsoft/go-winio/LICENSE
@ -0,0 +1,22 @@
 The MIT License (MIT)
 Copyright (c) 2015 Microsoft
 Permission is hereby granted, free of charge, to any person obtaining a copy
 of this software and associated documentation files (the "Software"), to deal
 in the Software without restriction, including without limitation the rights
 to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
 copies of the Software, and to permit persons to whom the Software is
 furnished to do so, subject to the following conditions:
 The above copyright notice and this permission notice shall be included in all
 copies or substantial portions of the Software.
 THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
 IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
 FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
 AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
 LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
 OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
 SOFTWARE.
--- a/vendor/github.com/Microsoft/go-winio/README.md
+++ b/vendor/github.com/Microsoft/go-winio/README.md
@ -0,0 +1,89 @@
 # go-winio [![Build Status](https://github.com/microsoft/go-winio/actions/workflows/ci.yml/badge.svg)](https://github.com/microsoft/go-winio/actions/workflows/ci.yml)
 This repository contains utilities for efficiently performing Win32 IO operations in
 Go. Currently, this is focused on accessing named pipes and other file handles, and
 for using named pipes as a net transport.
 This code relies on IO completion ports to avoid blocking IO on system threads, allowing Go
 to reuse the thread to schedule another goroutine. This limits support to Windows Vista and
 newer operating systems. This is similar to the implementation of network sockets in Go's net
 package.
 Please see the LICENSE file for licensing information.
 ## Contributing
 This project welcomes contributions and suggestions.
 Most contributions require you to agree to a Contributor License Agreement (CLA) declaring that
 you have the right to, and actually do, grant us the rights to use your contribution.
 For details, visit [Microsoft CLA](https://cla.microsoft.com).
 When you submit a pull request, a CLA-bot will automatically determine whether you need to
 provide a CLA and decorate the PR appropriately (e.g., label, comment).
 Simply follow the instructions provided by the bot.
 You will only need to do this once across all repos using our CLA.
 Additionally, the pull request pipeline requires the following steps to be performed before
 mergining.
 ### Code Sign-Off
 We require that contributors sign their commits using [`git commit --signoff`][git-commit-s]
 to certify they either authored the work themselves or otherwise have permission to use it in this project.
 A range of commits can be signed off using [`git rebase --signoff`][git-rebase-s].
 Please see [the developer certificate](https://developercertificate.org) for more info,
 as well as to make sure that you can attest to the rules listed.
 Our CI uses the DCO Github app to ensure that all commits in a given PR are signed-off.
 ### Linting
 Code must pass a linting stage, which uses [`golangci-lint`][lint].
 The linting settings are stored in [`.golangci.yaml`](./.golangci.yaml), and can be run
 automatically with VSCode by adding the following to your workspace or folder settings:
 ```json
    "go.lintTool": "golangci-lint",
    "go.lintOnSave": "package",
 ```
 Additional editor [integrations options are also available][lint-ide].
 Alternatively, `golangci-lint` can be [installed locally][lint-install] and run from the repo root:
 ```shell
 # use . or specify a path to only lint a package
 # to show all lint errors, use flags "--max-issues-per-linter=0 --max-same-issues=0"
 > golangci-lint run ./...
 ```
 ### Go Generate
 The pipeline checks that auto-generated code, via `go generate`, are up to date.
 This can be done for the entire repo:
 ```shell
 > go generate ./...
 ```
 ## Code of Conduct
 This project has adopted the [Microsoft Open Source Code of Conduct](https://opensource.microsoft.com/codeofconduct/).
 For more information see the [Code of Conduct FAQ](https://opensource.microsoft.com/codeofconduct/faq/) or
 contact [opencode@microsoft.com](mailto:opencode@microsoft.com) with any additional questions or comments.
 ## Special Thanks
 Thanks to [natefinch][natefinch] for the inspiration for this library.
 See [npipe](https://github.com/natefinch/npipe) for another named pipe implementation.
 [lint]: https://golangci-lint.run/
 [lint-ide]: https://golangci-lint.run/usage/integrations/#editor-integration
 [lint-install]: https://golangci-lint.run/usage/install/#local-installation
 [git-commit-s]: https://git-scm.com/docs/git-commit#Documentation/git-commit.txt--s
 [git-rebase-s]: https://git-scm.com/docs/git-rebase#Documentation/git-rebase.txt---signoff
 [natefinch]: https://github.com/natefinch
--- a/vendor/github.com/Microsoft/go-winio/SECURITY.md
+++ b/vendor/github.com/Microsoft/go-winio/SECURITY.md
@ -0,0 +1,41 @@
 <!-- BEGIN MICROSOFT SECURITY.MD V0.0.7 BLOCK -->
 ## Security
 Microsoft takes the security of our software products and services seriously, which includes all source code repositories managed through our GitHub organizations, which include [Microsoft](https://github.com/Microsoft), [Azure](https://github.com/Azure), [DotNet](https://github.com/dotnet), [AspNet](https://github.com/aspnet), [Xamarin](https://github.com/xamarin), and [our GitHub organizations](https://opensource.microsoft.com/).
 If you believe you have found a security vulnerability in any Microsoft-owned repository that meets [Microsoft's definition of a security vulnerability](https://aka.ms/opensource/security/definition), please report it to us as described below.
 ## Reporting Security Issues
 **Please do not report security vulnerabilities through public GitHub issues.**
 Instead, please report them to the Microsoft Security Response Center (MSRC) at [https://msrc.microsoft.com/create-report](https://aka.ms/opensource/security/create-report).
 If you prefer to submit without logging in, send email to [secure@microsoft.com](mailto:secure@microsoft.com).  If possible, encrypt your message with our PGP key; please download it from the [Microsoft Security Response Center PGP Key page](https://aka.ms/opensource/security/pgpkey).
 You should receive a response within 24 hours. If for some reason you do not, please follow up via email to ensure we received your original message. Additional information can be found at [microsoft.com/msrc](https://aka.ms/opensource/security/msrc). 
 Please include the requested information listed below (as much as you can provide) to help us better understand the nature and scope of the possible issue:
  * Type of issue (e.g. buffer overflow, SQL injection, cross-site scripting, etc.)
  * Full paths of source file(s) related to the manifestation of the issue
  * The location of the affected source code (tag/branch/commit or direct URL)
  * Any special configuration required to reproduce the issue
  * Step-by-step instructions to reproduce the issue
  * Proof-of-concept or exploit code (if possible)
  * Impact of the issue, including how an attacker might exploit the issue
 This information will help us triage your report more quickly.
 If you are reporting for a bug bounty, more complete reports can contribute to a higher bounty award. Please visit our [Microsoft Bug Bounty Program](https://aka.ms/opensource/security/bounty) page for more details about our active programs.
 ## Preferred Languages
 We prefer all communications to be in English.
 ## Policy
 Microsoft follows the principle of [Coordinated Vulnerability Disclosure](https://aka.ms/opensource/security/cvd).
 <!-- END MICROSOFT SECURITY.MD BLOCK -->
--- a/vendor/github.com/Microsoft/go-winio/backup.go
+++ b/vendor/github.com/Microsoft/go-winio/backup.go
@ -0,0 +1,290 @@
 //go:build windows
 // +build windows
 package winio
 import (
 	"encoding/binary"
 	"errors"
 	"fmt"
 	"io"
 	"os"
 	"runtime"
 	"syscall"
 	"unicode/utf16"
 	"golang.org/x/sys/windows"
 )
 //sys backupRead(h syscall.Handle, b []byte, bytesRead *uint32, abort bool, processSecurity bool, context *uintptr) (err error) = BackupRead
 //sys backupWrite(h syscall.Handle, b []byte, bytesWritten *uint32, abort bool, processSecurity bool, context *uintptr) (err error) = BackupWrite
 const (
 	BackupData = uint32(iota + 1)
 	BackupEaData
 	BackupSecurity
 	BackupAlternateData
 	BackupLink
 	BackupPropertyData
 	BackupObjectId //revive:disable-line:var-naming ID, not Id
 	BackupReparseData
 	BackupSparseBlock
 	BackupTxfsData
 )
 const (
 	StreamSparseAttributes = uint32(8)
 )
 //nolint:revive // var-naming: ALL_CAPS
 const (
 	WRITE_DAC              = windows.WRITE_DAC
 	WRITE_OWNER            = windows.WRITE_OWNER
 	ACCESS_SYSTEM_SECURITY = windows.ACCESS_SYSTEM_SECURITY
 )
 // BackupHeader represents a backup stream of a file.
 type BackupHeader struct {
 	//revive:disable-next-line:var-naming ID, not Id
 	Id         uint32 // The backup stream ID
 	Attributes uint32 // Stream attributes
 	Size       int64  // The size of the stream in bytes
 	Name       string // The name of the stream (for BackupAlternateData only).
 	Offset     int64  // The offset of the stream in the file (for BackupSparseBlock only).
 }
 type win32StreamID struct {
 	StreamID   uint32
 	Attributes uint32
 	Size       uint64
 	NameSize   uint32
 }
 // BackupStreamReader reads from a stream produced by the BackupRead Win32 API and produces a series
 // of BackupHeader values.
 type BackupStreamReader struct {
 	r         io.Reader
 	bytesLeft int64
 }
 // NewBackupStreamReader produces a BackupStreamReader from any io.Reader.
 func NewBackupStreamReader(r io.Reader) *BackupStreamReader {
 	return &BackupStreamReader{r, 0}
 }
 // Next returns the next backup stream and prepares for calls to Read(). It skips the remainder of the current stream if
 // it was not completely read.
 func (r *BackupStreamReader) Next() (*BackupHeader, error) {
 	if r.bytesLeft > 0 { //nolint:nestif // todo: flatten this
 		if s, ok := r.r.(io.Seeker); ok {
 			// Make sure Seek on io.SeekCurrent sometimes succeeds
 			// before trying the actual seek.
 			if _, err := s.Seek(0, io.SeekCurrent); err == nil {
 				if _, err = s.Seek(r.bytesLeft, io.SeekCurrent); err != nil {
 					return nil, err
 				}
 				r.bytesLeft = 0
 			}
 		}
 		if _, err := io.Copy(io.Discard, r); err != nil {
 			return nil, err
 		}
 	}
 	var wsi win32StreamID
 	if err := binary.Read(r.r, binary.LittleEndian, &wsi); err != nil {
 		return nil, err
 	}
 	hdr := &BackupHeader{
 		Id:         wsi.StreamID,
 		Attributes: wsi.Attributes,
 		Size:       int64(wsi.Size),
 	}
 	if wsi.NameSize != 0 {
 		name := make([]uint16, int(wsi.NameSize/2))
 		if err := binary.Read(r.r, binary.LittleEndian, name); err != nil {
 			return nil, err
 		}
 		hdr.Name = syscall.UTF16ToString(name)
 	}
 	if wsi.StreamID == BackupSparseBlock {
 		if err := binary.Read(r.r, binary.LittleEndian, &hdr.Offset); err != nil {
 			return nil, err
 		}
 		hdr.Size -= 8
 	}
 	r.bytesLeft = hdr.Size
 	return hdr, nil
 }
 // Read reads from the current backup stream.
 func (r *BackupStreamReader) Read(b []byte) (int, error) {
 	if r.bytesLeft == 0 {
 		return 0, io.EOF
 	}
 	if int64(len(b)) > r.bytesLeft {
 		b = b[:r.bytesLeft]
 	}
 	n, err := r.r.Read(b)
 	r.bytesLeft -= int64(n)
 	if err == io.EOF {
 		err = io.ErrUnexpectedEOF
 	} else if r.bytesLeft == 0 && err == nil {
 		err = io.EOF
 	}
 	return n, err
 }
 // BackupStreamWriter writes a stream compatible with the BackupWrite Win32 API.
 type BackupStreamWriter struct {
 	w         io.Writer
 	bytesLeft int64
 }
 // NewBackupStreamWriter produces a BackupStreamWriter on top of an io.Writer.
 func NewBackupStreamWriter(w io.Writer) *BackupStreamWriter {
 	return &BackupStreamWriter{w, 0}
 }
 // WriteHeader writes the next backup stream header and prepares for calls to Write().
 func (w *BackupStreamWriter) WriteHeader(hdr *BackupHeader) error {
 	if w.bytesLeft != 0 {
 		return fmt.Errorf("missing %d bytes", w.bytesLeft)
 	}
 	name := utf16.Encode([]rune(hdr.Name))
 	wsi := win32StreamID{
 		StreamID:   hdr.Id,
 		Attributes: hdr.Attributes,
 		Size:       uint64(hdr.Size),
 		NameSize:   uint32(len(name) * 2),
 	}
 	if hdr.Id == BackupSparseBlock {
 		// Include space for the int64 block offset
 		wsi.Size += 8
 	}
 	if err := binary.Write(w.w, binary.LittleEndian, &wsi); err != nil {
 		return err
 	}
 	if len(name) != 0 {
 		if err := binary.Write(w.w, binary.LittleEndian, name); err != nil {
 			return err
 		}
 	}
 	if hdr.Id == BackupSparseBlock {
 		if err := binary.Write(w.w, binary.LittleEndian, hdr.Offset); err != nil {
 			return err
 		}
 	}
 	w.bytesLeft = hdr.Size
 	return nil
 }
 // Write writes to the current backup stream.
 func (w *BackupStreamWriter) Write(b []byte) (int, error) {
 	if w.bytesLeft < int64(len(b)) {
 		return 0, fmt.Errorf("too many bytes by %d", int64(len(b))-w.bytesLeft)
 	}
 	n, err := w.w.Write(b)
 	w.bytesLeft -= int64(n)
 	return n, err
 }
 // BackupFileReader provides an io.ReadCloser interface on top of the BackupRead Win32 API.
 type BackupFileReader struct {
 	f               *os.File
 	includeSecurity bool
 	ctx             uintptr
 }
 // NewBackupFileReader returns a new BackupFileReader from a file handle. If includeSecurity is true,
 // Read will attempt to read the security descriptor of the file.
 func NewBackupFileReader(f *os.File, includeSecurity bool) *BackupFileReader {
 	r := &BackupFileReader{f, includeSecurity, 0}
 	return r
 }
 // Read reads a backup stream from the file by calling the Win32 API BackupRead().
 func (r *BackupFileReader) Read(b []byte) (int, error) {
 	var bytesRead uint32
 	err := backupRead(syscall.Handle(r.f.Fd()), b, &bytesRead, false, r.includeSecurity, &r.ctx)
 	if err != nil {
 		return 0, &os.PathError{Op: "BackupRead", Path: r.f.Name(), Err: err}
 	}
 	runtime.KeepAlive(r.f)
 	if bytesRead == 0 {
 		return 0, io.EOF
 	}
 	return int(bytesRead), nil
 }
 // Close frees Win32 resources associated with the BackupFileReader. It does not close
 // the underlying file.
 func (r *BackupFileReader) Close() error {
 	if r.ctx != 0 {
 		_ = backupRead(syscall.Handle(r.f.Fd()), nil, nil, true, false, &r.ctx)
 		runtime.KeepAlive(r.f)
 		r.ctx = 0
 	}
 	return nil
 }
 // BackupFileWriter provides an io.WriteCloser interface on top of the BackupWrite Win32 API.
 type BackupFileWriter struct {
 	f               *os.File
 	includeSecurity bool
 	ctx             uintptr
 }
 // NewBackupFileWriter returns a new BackupFileWriter from a file handle. If includeSecurity is true,
 // Write() will attempt to restore the security descriptor from the stream.
 func NewBackupFileWriter(f *os.File, includeSecurity bool) *BackupFileWriter {
 	w := &BackupFileWriter{f, includeSecurity, 0}
 	return w
 }
 // Write restores a portion of the file using the provided backup stream.
 func (w *BackupFileWriter) Write(b []byte) (int, error) {
 	var bytesWritten uint32
 	err := backupWrite(syscall.Handle(w.f.Fd()), b, &bytesWritten, false, w.includeSecurity, &w.ctx)
 	if err != nil {
 		return 0, &os.PathError{Op: "BackupWrite", Path: w.f.Name(), Err: err}
 	}
 	runtime.KeepAlive(w.f)
 	if int(bytesWritten) != len(b) {
 		return int(bytesWritten), errors.New("not all bytes could be written")
 	}
 	return len(b), nil
 }
 // Close frees Win32 resources associated with the BackupFileWriter. It does not
 // close the underlying file.
 func (w *BackupFileWriter) Close() error {
 	if w.ctx != 0 {
 		_ = backupWrite(syscall.Handle(w.f.Fd()), nil, nil, true, false, &w.ctx)
 		runtime.KeepAlive(w.f)
 		w.ctx = 0
 	}
 	return nil
 }
 // OpenForBackup opens a file or directory, potentially skipping access checks if the backup
 // or restore privileges have been acquired.
 //
 // If the file opened was a directory, it cannot be used with Readdir().
 func OpenForBackup(path string, access uint32, share uint32, createmode uint32) (*os.File, error) {
 	winPath, err := syscall.UTF16FromString(path)
 	if err != nil {
 		return nil, err
 	}
 	h, err := syscall.CreateFile(&winPath[0],
 		access,
 		share,
 		nil,
 		createmode,
 		syscall.FILE_FLAG_BACKUP_SEMANTICS|syscall.FILE_FLAG_OPEN_REPARSE_POINT,
 		0)
 	if err != nil {
 		err = &os.PathError{Op: "open", Path: path, Err: err}
 		return nil, err
 	}
 	return os.NewFile(uintptr(h), path), nil
 }
--- a/vendor/github.com/Microsoft/go-winio/doc.go
+++ b/vendor/github.com/Microsoft/go-winio/doc.go
@ -0,0 +1,22 @@
 // This package provides utilities for efficiently performing Win32 IO operations in Go.
 // Currently, this package is provides support for genreal IO and management of
 //   - named pipes
 //   - files
 //   - [Hyper-V sockets]
 //
 // This code is similar to Go's [net] package, and uses IO completion ports to avoid
 // blocking IO on system threads, allowing Go to reuse the thread to schedule other goroutines.
 //
 // This limits support to Windows Vista and newer operating systems.
 //
 // Additionally, this package provides support for:
 //   - creating and managing GUIDs
 //   - writing to [ETW]
 //   - opening and manageing VHDs
 //   - parsing [Windows Image files]
 //   - auto-generating Win32 API code
 //
 // [Hyper-V sockets]: https://docs.microsoft.com/en-us/virtualization/hyper-v-on-windows/user-guide/make-integration-service
 // [ETW]: https://docs.microsoft.com/en-us/windows-hardware/drivers/devtest/event-tracing-for-windows--etw-
 // [Windows Image files]: https://docs.microsoft.com/en-us/windows-hardware/manufacture/desktop/work-with-windows-images
 package winio
--- a/vendor/github.com/Microsoft/go-winio/ea.go
+++ b/vendor/github.com/Microsoft/go-winio/ea.go
@ -0,0 +1,137 @@
 package winio
 import (
 	"bytes"
 	"encoding/binary"
 	"errors"
 )
 type fileFullEaInformation struct {
 	NextEntryOffset uint32
 	Flags           uint8
 	NameLength      uint8
 	ValueLength     uint16
 }
 var (
 	fileFullEaInformationSize = binary.Size(&fileFullEaInformation{})
 	errInvalidEaBuffer = errors.New("invalid extended attribute buffer")
 	errEaNameTooLarge  = errors.New("extended attribute name too large")
 	errEaValueTooLarge = errors.New("extended attribute value too large")
 )
 // ExtendedAttribute represents a single Windows EA.
 type ExtendedAttribute struct {
 	Name  string
 	Value []byte
 	Flags uint8
 }
 func parseEa(b []byte) (ea ExtendedAttribute, nb []byte, err error) {
 	var info fileFullEaInformation
 	err = binary.Read(bytes.NewReader(b), binary.LittleEndian, &info)
 	if err != nil {
 		err = errInvalidEaBuffer
 		return ea, nb, err
 	}
 	nameOffset := fileFullEaInformationSize
 	nameLen := int(info.NameLength)
 	valueOffset := nameOffset + int(info.NameLength) + 1
 	valueLen := int(info.ValueLength)
 	nextOffset := int(info.NextEntryOffset)
 	if valueLen+valueOffset > len(b) || nextOffset < 0 || nextOffset > len(b) {
 		err = errInvalidEaBuffer
 		return ea, nb, err
 	}
 	ea.Name = string(b[nameOffset : nameOffset+nameLen])
 	ea.Value = b[valueOffset : valueOffset+valueLen]
 	ea.Flags = info.Flags
 	if info.NextEntryOffset != 0 {
 		nb = b[info.NextEntryOffset:]
 	}
 	return ea, nb, err
 }
 // DecodeExtendedAttributes decodes a list of EAs from a FILE_FULL_EA_INFORMATION
 // buffer retrieved from BackupRead, ZwQueryEaFile, etc.
 func DecodeExtendedAttributes(b []byte) (eas []ExtendedAttribute, err error) {
 	for len(b) != 0 {
 		ea, nb, err := parseEa(b)
 		if err != nil {
 			return nil, err
 		}
 		eas = append(eas, ea)
 		b = nb
 	}
 	return eas, err
 }
 func writeEa(buf *bytes.Buffer, ea *ExtendedAttribute, last bool) error {
 	if int(uint8(len(ea.Name))) != len(ea.Name) {
 		return errEaNameTooLarge
 	}
 	if int(uint16(len(ea.Value))) != len(ea.Value) {
 		return errEaValueTooLarge
 	}
 	entrySize := uint32(fileFullEaInformationSize + len(ea.Name) + 1 + len(ea.Value))
 	withPadding := (entrySize + 3) &^ 3
 	nextOffset := uint32(0)
 	if !last {
 		nextOffset = withPadding
 	}
 	info := fileFullEaInformation{
 		NextEntryOffset: nextOffset,
 		Flags:           ea.Flags,
 		NameLength:      uint8(len(ea.Name)),
 		ValueLength:     uint16(len(ea.Value)),
 	}
 	err := binary.Write(buf, binary.LittleEndian, &info)
 	if err != nil {
 		return err
 	}
 	_, err = buf.Write([]byte(ea.Name))
 	if err != nil {
 		return err
 	}
 	err = buf.WriteByte(0)
 	if err != nil {
 		return err
 	}
 	_, err = buf.Write(ea.Value)
 	if err != nil {
 		return err
 	}
 	_, err = buf.Write([]byte{0, 0, 0}[0 : withPadding-entrySize])
 	if err != nil {
 		return err
 	}
 	return nil
 }
 // EncodeExtendedAttributes encodes a list of EAs into a FILE_FULL_EA_INFORMATION
 // buffer for use with BackupWrite, ZwSetEaFile, etc.
 func EncodeExtendedAttributes(eas []ExtendedAttribute) ([]byte, error) {
 	var buf bytes.Buffer
 	for i := range eas {
 		last := false
 		if i == len(eas)-1 {
 			last = true
 		}
 		err := writeEa(&buf, &eas[i], last)
 		if err != nil {
 			return nil, err
 		}
 	}
 	return buf.Bytes(), nil
 }
--- a/vendor/github.com/Microsoft/go-winio/file.go
+++ b/vendor/github.com/Microsoft/go-winio/file.go
@ -0,0 +1,331 @@
 //go:build windows
 // +build windows
 package winio
 import (
 	"errors"
 	"io"
 	"runtime"
 	"sync"
 	"sync/atomic"
 	"syscall"
 	"time"
 	"golang.org/x/sys/windows"
 )
 //sys cancelIoEx(file syscall.Handle, o *syscall.Overlapped) (err error) = CancelIoEx
 //sys createIoCompletionPort(file syscall.Handle, port syscall.Handle, key uintptr, threadCount uint32) (newport syscall.Handle, err error) = CreateIoCompletionPort
 //sys getQueuedCompletionStatus(port syscall.Handle, bytes *uint32, key *uintptr, o **ioOperation, timeout uint32) (err error) = GetQueuedCompletionStatus
 //sys setFileCompletionNotificationModes(h syscall.Handle, flags uint8) (err error) = SetFileCompletionNotificationModes
 //sys wsaGetOverlappedResult(h syscall.Handle, o *syscall.Overlapped, bytes *uint32, wait bool, flags *uint32) (err error) = ws2_32.WSAGetOverlappedResult
 type atomicBool int32
 func (b *atomicBool) isSet() bool { return atomic.LoadInt32((*int32)(b)) != 0 }
 func (b *atomicBool) setFalse()   { atomic.StoreInt32((*int32)(b), 0) }
 func (b *atomicBool) setTrue()    { atomic.StoreInt32((*int32)(b), 1) }
 //revive:disable-next-line:predeclared Keep "new" to maintain consistency with "atomic" pkg
 func (b *atomicBool) swap(new bool) bool {
 	var newInt int32
 	if new {
 		newInt = 1
 	}
 	return atomic.SwapInt32((*int32)(b), newInt) == 1
 }
 var (
 	ErrFileClosed = errors.New("file has already been closed")
 	ErrTimeout    = &timeoutError{}
 )
 type timeoutError struct{}
 func (*timeoutError) Error() string   { return "i/o timeout" }
 func (*timeoutError) Timeout() bool   { return true }
 func (*timeoutError) Temporary() bool { return true }
 type timeoutChan chan struct{}
 var ioInitOnce sync.Once
 var ioCompletionPort syscall.Handle
 // ioResult contains the result of an asynchronous IO operation.
 type ioResult struct {
 	bytes uint32
 	err   error
 }
 // ioOperation represents an outstanding asynchronous Win32 IO.
 type ioOperation struct {
 	o  syscall.Overlapped
 	ch chan ioResult
 }
 func initIO() {
 	h, err := createIoCompletionPort(syscall.InvalidHandle, 0, 0, 0xffffffff)
 	if err != nil {
 		panic(err)
 	}
 	ioCompletionPort = h
 	go ioCompletionProcessor(h)
 }
 // win32File implements Reader, Writer, and Closer on a Win32 handle without blocking in a syscall.
 // It takes ownership of this handle and will close it if it is garbage collected.
 type win32File struct {
 	handle        syscall.Handle
 	wg            sync.WaitGroup
 	wgLock        sync.RWMutex
 	closing       atomicBool
 	socket        bool
 	readDeadline  deadlineHandler
 	writeDeadline deadlineHandler
 }
 type deadlineHandler struct {
 	setLock     sync.Mutex
 	channel     timeoutChan
 	channelLock sync.RWMutex
 	timer       *time.Timer
 	timedout    atomicBool
 }
 // makeWin32File makes a new win32File from an existing file handle.
 func makeWin32File(h syscall.Handle) (*win32File, error) {
 	f := &win32File{handle: h}
 	ioInitOnce.Do(initIO)
 	_, err := createIoCompletionPort(h, ioCompletionPort, 0, 0xffffffff)
 	if err != nil {
 		return nil, err
 	}
 	err = setFileCompletionNotificationModes(h, windows.FILE_SKIP_COMPLETION_PORT_ON_SUCCESS|windows.FILE_SKIP_SET_EVENT_ON_HANDLE)
 	if err != nil {
 		return nil, err
 	}
 	f.readDeadline.channel = make(timeoutChan)
 	f.writeDeadline.channel = make(timeoutChan)
 	return f, nil
 }
 func MakeOpenFile(h syscall.Handle) (io.ReadWriteCloser, error) {
 	// If we return the result of makeWin32File directly, it can result in an
 	// interface-wrapped nil, rather than a nil interface value.
 	f, err := makeWin32File(h)
 	if err != nil {
 		return nil, err
 	}
 	return f, nil
 }
 // closeHandle closes the resources associated with a Win32 handle.
 func (f *win32File) closeHandle() {
 	f.wgLock.Lock()
 	// Atomically set that we are closing, releasing the resources only once.
 	if !f.closing.swap(true) {
 		f.wgLock.Unlock()
 		// cancel all IO and wait for it to complete
 		_ = cancelIoEx(f.handle, nil)
 		f.wg.Wait()
 		// at this point, no new IO can start
 		syscall.Close(f.handle)
 		f.handle = 0
 	} else {
 		f.wgLock.Unlock()
 	}
 }
 // Close closes a win32File.
 func (f *win32File) Close() error {
 	f.closeHandle()
 	return nil
 }
 // IsClosed checks if the file has been closed.
 func (f *win32File) IsClosed() bool {
 	return f.closing.isSet()
 }
 // prepareIO prepares for a new IO operation.
 // The caller must call f.wg.Done() when the IO is finished, prior to Close() returning.
 func (f *win32File) prepareIO() (*ioOperation, error) {
 	f.wgLock.RLock()
 	if f.closing.isSet() {
 		f.wgLock.RUnlock()
 		return nil, ErrFileClosed
 	}
 	f.wg.Add(1)
 	f.wgLock.RUnlock()
 	c := &ioOperation{}
 	c.ch = make(chan ioResult)
 	return c, nil
 }
 // ioCompletionProcessor processes completed async IOs forever.
 func ioCompletionProcessor(h syscall.Handle) {
 	for {
 		var bytes uint32
 		var key uintptr
 		var op *ioOperation
 		err := getQueuedCompletionStatus(h, &bytes, &key, &op, syscall.INFINITE)
 		if op == nil {
 			panic(err)
 		}
 		op.ch <- ioResult{bytes, err}
 	}
 }
 // todo: helsaawy - create an asyncIO version that takes a context
 // asyncIO processes the return value from ReadFile or WriteFile, blocking until
 // the operation has actually completed.
 func (f *win32File) asyncIO(c *ioOperation, d *deadlineHandler, bytes uint32, err error) (int, error) {
 	if err != syscall.ERROR_IO_PENDING { //nolint:errorlint // err is Errno
 		return int(bytes), err
 	}
 	if f.closing.isSet() {
 		_ = cancelIoEx(f.handle, &c.o)
 	}
 	var timeout timeoutChan
 	if d != nil {
 		d.channelLock.Lock()
 		timeout = d.channel
 		d.channelLock.Unlock()
 	}
 	var r ioResult
 	select {
 	case r = <-c.ch:
 		err = r.err
 		if err == syscall.ERROR_OPERATION_ABORTED { //nolint:errorlint // err is Errno
 			if f.closing.isSet() {
 				err = ErrFileClosed
 			}
 		} else if err != nil && f.socket {
 			// err is from Win32. Query the overlapped structure to get the winsock error.
 			var bytes, flags uint32
 			err = wsaGetOverlappedResult(f.handle, &c.o, &bytes, false, &flags)
 		}
 	case <-timeout:
 		_ = cancelIoEx(f.handle, &c.o)
 		r = <-c.ch
 		err = r.err
 		if err == syscall.ERROR_OPERATION_ABORTED { //nolint:errorlint // err is Errno
 			err = ErrTimeout
 		}
 	}
 	// runtime.KeepAlive is needed, as c is passed via native
 	// code to ioCompletionProcessor, c must remain alive
 	// until the channel read is complete.
 	// todo: (de)allocate *ioOperation via win32 heap functions, instead of needing to KeepAlive?
 	runtime.KeepAlive(c)
 	return int(r.bytes), err
 }
 // Read reads from a file handle.
 func (f *win32File) Read(b []byte) (int, error) {
 	c, err := f.prepareIO()
 	if err != nil {
 		return 0, err
 	}
 	defer f.wg.Done()
 	if f.readDeadline.timedout.isSet() {
 		return 0, ErrTimeout
 	}
 	var bytes uint32
 	err = syscall.ReadFile(f.handle, b, &bytes, &c.o)
 	n, err := f.asyncIO(c, &f.readDeadline, bytes, err)
 	runtime.KeepAlive(b)
 	// Handle EOF conditions.
 	if err == nil && n == 0 && len(b) != 0 {
 		return 0, io.EOF
 	} else if err == syscall.ERROR_BROKEN_PIPE { //nolint:errorlint // err is Errno
 		return 0, io.EOF
 	} else {
 		return n, err
 	}
 }
 // Write writes to a file handle.
 func (f *win32File) Write(b []byte) (int, error) {
 	c, err := f.prepareIO()
 	if err != nil {
 		return 0, err
 	}
 	defer f.wg.Done()
 	if f.writeDeadline.timedout.isSet() {
 		return 0, ErrTimeout
 	}
 	var bytes uint32
 	err = syscall.WriteFile(f.handle, b, &bytes, &c.o)
 	n, err := f.asyncIO(c, &f.writeDeadline, bytes, err)
 	runtime.KeepAlive(b)
 	return n, err
 }
 func (f *win32File) SetReadDeadline(deadline time.Time) error {
 	return f.readDeadline.set(deadline)
 }
 func (f *win32File) SetWriteDeadline(deadline time.Time) error {
 	return f.writeDeadline.set(deadline)
 }
 func (f *win32File) Flush() error {
 	return syscall.FlushFileBuffers(f.handle)
 }
 func (f *win32File) Fd() uintptr {
 	return uintptr(f.handle)
 }
 func (d *deadlineHandler) set(deadline time.Time) error {
 	d.setLock.Lock()
 	defer d.setLock.Unlock()
 	if d.timer != nil {
 		if !d.timer.Stop() {
 			<-d.channel
 		}
 		d.timer = nil
 	}
 	d.timedout.setFalse()
 	select {
 	case <-d.channel:
 		d.channelLock.Lock()
 		d.channel = make(chan struct{})
 		d.channelLock.Unlock()
 	default:
 	}
 	if deadline.IsZero() {
 		return nil
 	}
 	timeoutIO := func() {
 		d.timedout.setTrue()
 		close(d.channel)
 	}
 	now := time.Now()
 	duration := deadline.Sub(now)
 	if deadline.After(now) {
 		// Deadline is in the future, set a timer to wait
 		d.timer = time.AfterFunc(duration, timeoutIO)
 	} else {
 		// Deadline is in the past. Cancel all pending IO now.
 		timeoutIO()
 	}
 	return nil
 }
--- a/vendor/github.com/Microsoft/go-winio/fileinfo.go
+++ b/vendor/github.com/Microsoft/go-winio/fileinfo.go
@ -0,0 +1,92 @@
 //go:build windows
 // +build windows
 package winio
 import (
 	"os"
 	"runtime"
 	"unsafe"
 	"golang.org/x/sys/windows"
 )
 // FileBasicInfo contains file access time and file attributes information.
 type FileBasicInfo struct {
 	CreationTime, LastAccessTime, LastWriteTime, ChangeTime windows.Filetime
 	FileAttributes                                          uint32
 	_                                                       uint32 // padding
 }
 // GetFileBasicInfo retrieves times and attributes for a file.
 func GetFileBasicInfo(f *os.File) (*FileBasicInfo, error) {
 	bi := &FileBasicInfo{}
 	if err := windows.GetFileInformationByHandleEx(
 		windows.Handle(f.Fd()),
 		windows.FileBasicInfo,
 		(*byte)(unsafe.Pointer(bi)),
 		uint32(unsafe.Sizeof(*bi)),
 	); err != nil {
 		return nil, &os.PathError{Op: "GetFileInformationByHandleEx", Path: f.Name(), Err: err}
 	}
 	runtime.KeepAlive(f)
 	return bi, nil
 }
 // SetFileBasicInfo sets times and attributes for a file.
 func SetFileBasicInfo(f *os.File, bi *FileBasicInfo) error {
 	if err := windows.SetFileInformationByHandle(
 		windows.Handle(f.Fd()),
 		windows.FileBasicInfo,
 		(*byte)(unsafe.Pointer(bi)),
 		uint32(unsafe.Sizeof(*bi)),
 	); err != nil {
 		return &os.PathError{Op: "SetFileInformationByHandle", Path: f.Name(), Err: err}
 	}
 	runtime.KeepAlive(f)
 	return nil
 }
 // FileStandardInfo contains extended information for the file.
 // FILE_STANDARD_INFO in WinBase.h
 // https://docs.microsoft.com/en-us/windows/win32/api/winbase/ns-winbase-file_standard_info
 type FileStandardInfo struct {
 	AllocationSize, EndOfFile int64
 	NumberOfLinks             uint32
 	DeletePending, Directory  bool
 }
 // GetFileStandardInfo retrieves ended information for the file.
 func GetFileStandardInfo(f *os.File) (*FileStandardInfo, error) {
 	si := &FileStandardInfo{}
 	if err := windows.GetFileInformationByHandleEx(windows.Handle(f.Fd()),
 		windows.FileStandardInfo,
 		(*byte)(unsafe.Pointer(si)),
 		uint32(unsafe.Sizeof(*si))); err != nil {
 		return nil, &os.PathError{Op: "GetFileInformationByHandleEx", Path: f.Name(), Err: err}
 	}
 	runtime.KeepAlive(f)
 	return si, nil
 }
 // FileIDInfo contains the volume serial number and file ID for a file. This pair should be
 // unique on a system.
 type FileIDInfo struct {
 	VolumeSerialNumber uint64
 	FileID             [16]byte
 }
 // GetFileID retrieves the unique (volume, file ID) pair for a file.
 func GetFileID(f *os.File) (*FileIDInfo, error) {
 	fileID := &FileIDInfo{}
 	if err := windows.GetFileInformationByHandleEx(
 		windows.Handle(f.Fd()),
 		windows.FileIdInfo,
 		(*byte)(unsafe.Pointer(fileID)),
 		uint32(unsafe.Sizeof(*fileID)),
 	); err != nil {
 		return nil, &os.PathError{Op: "GetFileInformationByHandleEx", Path: f.Name(), Err: err}
 	}
 	runtime.KeepAlive(f)
 	return fileID, nil
 }
--- a/vendor/github.com/Microsoft/go-winio/hvsock.go
+++ b/vendor/github.com/Microsoft/go-winio/hvsock.go
@ -0,0 +1,575 @@
 //go:build windows
 // +build windows
 package winio
 import (
 	"context"
 	"errors"
 	"fmt"
 	"io"
 	"net"
 	"os"
 	"syscall"
 	"time"
 	"unsafe"
 	"golang.org/x/sys/windows"
 	"github.com/Microsoft/go-winio/internal/socket"
 	"github.com/Microsoft/go-winio/pkg/guid"
 )
 const afHVSock = 34 // AF_HYPERV
 // Well known Service and VM IDs
 // https://docs.microsoft.com/en-us/virtualization/hyper-v-on-windows/user-guide/make-integration-service#vmid-wildcards
 // HvsockGUIDWildcard is the wildcard VmId for accepting connections from all partitions.
 func HvsockGUIDWildcard() guid.GUID { // 00000000-0000-0000-0000-000000000000
 	return guid.GUID{}
 }
 // HvsockGUIDBroadcast is the wildcard VmId for broadcasting sends to all partitions.
 func HvsockGUIDBroadcast() guid.GUID { // ffffffff-ffff-ffff-ffff-ffffffffffff
 	return guid.GUID{
 		Data1: 0xffffffff,
 		Data2: 0xffff,
 		Data3: 0xffff,
 		Data4: [8]uint8{0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff},
 	}
 }
 // HvsockGUIDLoopback is the Loopback VmId for accepting connections to the same partition as the connector.
 func HvsockGUIDLoopback() guid.GUID { // e0e16197-dd56-4a10-9195-5ee7a155a838
 	return guid.GUID{
 		Data1: 0xe0e16197,
 		Data2: 0xdd56,
 		Data3: 0x4a10,
 		Data4: [8]uint8{0x91, 0x95, 0x5e, 0xe7, 0xa1, 0x55, 0xa8, 0x38},
 	}
 }
 // HvsockGUIDSiloHost is the address of a silo's host partition:
 //   - The silo host of a hosted silo is the utility VM.
 //   - The silo host of a silo on a physical host is the physical host.
 func HvsockGUIDSiloHost() guid.GUID { // 36bd0c5c-7276-4223-88ba-7d03b654c568
 	return guid.GUID{
 		Data1: 0x36bd0c5c,
 		Data2: 0x7276,
 		Data3: 0x4223,
 		Data4: [8]byte{0x88, 0xba, 0x7d, 0x03, 0xb6, 0x54, 0xc5, 0x68},
 	}
 }
 // HvsockGUIDChildren is the wildcard VmId for accepting connections from the connector's child partitions.
 func HvsockGUIDChildren() guid.GUID { // 90db8b89-0d35-4f79-8ce9-49ea0ac8b7cd
 	return guid.GUID{
 		Data1: 0x90db8b89,
 		Data2: 0xd35,
 		Data3: 0x4f79,
 		Data4: [8]uint8{0x8c, 0xe9, 0x49, 0xea, 0xa, 0xc8, 0xb7, 0xcd},
 	}
 }
 // HvsockGUIDParent is the wildcard VmId for accepting connections from the connector's parent partition.
 // Listening on this VmId accepts connection from:
 //   - Inside silos: silo host partition.
 //   - Inside hosted silo: host of the VM.
 //   - Inside VM: VM host.
 //   - Physical host: Not supported.
 func HvsockGUIDParent() guid.GUID { // a42e7cda-d03f-480c-9cc2-a4de20abb878
 	return guid.GUID{
 		Data1: 0xa42e7cda,
 		Data2: 0xd03f,
 		Data3: 0x480c,
 		Data4: [8]uint8{0x9c, 0xc2, 0xa4, 0xde, 0x20, 0xab, 0xb8, 0x78},
 	}
 }
 // hvsockVsockServiceTemplate is the Service GUID used for the VSOCK protocol.
 func hvsockVsockServiceTemplate() guid.GUID { // 00000000-facb-11e6-bd58-64006a7986d3
 	return guid.GUID{
 		Data2: 0xfacb,
 		Data3: 0x11e6,
 		Data4: [8]uint8{0xbd, 0x58, 0x64, 0x00, 0x6a, 0x79, 0x86, 0xd3},
 	}
 }
 // An HvsockAddr is an address for a AF_HYPERV socket.
 type HvsockAddr struct {
 	VMID      guid.GUID
 	ServiceID guid.GUID
 }
 type rawHvsockAddr struct {
 	Family    uint16
 	_         uint16
 	VMID      guid.GUID
 	ServiceID guid.GUID
 }
 var _ socket.RawSockaddr = &rawHvsockAddr{}
 // Network returns the address's network name, "hvsock".
 func (*HvsockAddr) Network() string {
 	return "hvsock"
 }
 func (addr *HvsockAddr) String() string {
 	return fmt.Sprintf("%s:%s", &addr.VMID, &addr.ServiceID)
 }
 // VsockServiceID returns an hvsock service ID corresponding to the specified AF_VSOCK port.
 func VsockServiceID(port uint32) guid.GUID {
 	g := hvsockVsockServiceTemplate() // make a copy
 	g.Data1 = port
 	return g
 }
 func (addr *HvsockAddr) raw() rawHvsockAddr {
 	return rawHvsockAddr{
 		Family:    afHVSock,
 		VMID:      addr.VMID,
 		ServiceID: addr.ServiceID,
 	}
 }
 func (addr *HvsockAddr) fromRaw(raw *rawHvsockAddr) {
 	addr.VMID = raw.VMID
 	addr.ServiceID = raw.ServiceID
 }
 // Sockaddr returns a pointer to and the size of this struct.
 //
 // Implements the [socket.RawSockaddr] interface, and allows use in
 // [socket.Bind] and [socket.ConnectEx].
 func (r *rawHvsockAddr) Sockaddr() (unsafe.Pointer, int32, error) {
 	return unsafe.Pointer(r), int32(unsafe.Sizeof(rawHvsockAddr{})), nil
 }
 // Sockaddr interface allows use with `sockets.Bind()` and `.ConnectEx()`.
 func (r *rawHvsockAddr) FromBytes(b []byte) error {
 	n := int(unsafe.Sizeof(rawHvsockAddr{}))
 	if len(b) < n {
 		return fmt.Errorf("got %d, want %d: %w", len(b), n, socket.ErrBufferSize)
 	}
 	copy(unsafe.Slice((*byte)(unsafe.Pointer(r)), n), b[:n])
 	if r.Family != afHVSock {
 		return fmt.Errorf("got %d, want %d: %w", r.Family, afHVSock, socket.ErrAddrFamily)
 	}
 	return nil
 }
 // HvsockListener is a socket listener for the AF_HYPERV address family.
 type HvsockListener struct {
 	sock *win32File
 	addr HvsockAddr
 }
 var _ net.Listener = &HvsockListener{}
 // HvsockConn is a connected socket of the AF_HYPERV address family.
 type HvsockConn struct {
 	sock          *win32File
 	local, remote HvsockAddr
 }
 var _ net.Conn = &HvsockConn{}
 func newHVSocket() (*win32File, error) {
 	fd, err := syscall.Socket(afHVSock, syscall.SOCK_STREAM, 1)
 	if err != nil {
 		return nil, os.NewSyscallError("socket", err)
 	}
 	f, err := makeWin32File(fd)
 	if err != nil {
 		syscall.Close(fd)
 		return nil, err
 	}
 	f.socket = true
 	return f, nil
 }
 // ListenHvsock listens for connections on the specified hvsock address.
 func ListenHvsock(addr *HvsockAddr) (_ *HvsockListener, err error) {
 	l := &HvsockListener{addr: *addr}
 	sock, err := newHVSocket()
 	if err != nil {
 		return nil, l.opErr("listen", err)
 	}
 	sa := addr.raw()
 	err = socket.Bind(windows.Handle(sock.handle), &sa)
 	if err != nil {
 		return nil, l.opErr("listen", os.NewSyscallError("socket", err))
 	}
 	err = syscall.Listen(sock.handle, 16)
 	if err != nil {
 		return nil, l.opErr("listen", os.NewSyscallError("listen", err))
 	}
 	return &HvsockListener{sock: sock, addr: *addr}, nil
 }
 func (l *HvsockListener) opErr(op string, err error) error {
 	return &net.OpError{Op: op, Net: "hvsock", Addr: &l.addr, Err: err}
 }
 // Addr returns the listener's network address.
 func (l *HvsockListener) Addr() net.Addr {
 	return &l.addr
 }
 // Accept waits for the next connection and returns it.
 func (l *HvsockListener) Accept() (_ net.Conn, err error) {
 	sock, err := newHVSocket()
 	if err != nil {
 		return nil, l.opErr("accept", err)
 	}
 	defer func() {
 		if sock != nil {
 			sock.Close()
 		}
 	}()
 	c, err := l.sock.prepareIO()
 	if err != nil {
 		return nil, l.opErr("accept", err)
 	}
 	defer l.sock.wg.Done()
 	// AcceptEx, per documentation, requires an extra 16 bytes per address.
 	//
 	// https://docs.microsoft.com/en-us/windows/win32/api/mswsock/nf-mswsock-acceptex
 	const addrlen = uint32(16 + unsafe.Sizeof(rawHvsockAddr{}))
 	var addrbuf [addrlen * 2]byte
 	var bytes uint32
 	err = syscall.AcceptEx(l.sock.handle, sock.handle, &addrbuf[0], 0 /* rxdatalen */, addrlen, addrlen, &bytes, &c.o)
 	if _, err = l.sock.asyncIO(c, nil, bytes, err); err != nil {
 		return nil, l.opErr("accept", os.NewSyscallError("acceptex", err))
 	}
 	conn := &HvsockConn{
 		sock: sock,
 	}
 	// The local address returned in the AcceptEx buffer is the same as the Listener socket's
 	// address. However, the service GUID reported by GetSockName is different from the Listeners
 	// socket, and is sometimes the same as the local address of the socket that dialed the
 	// address, with the service GUID.Data1 incremented, but othertimes is different.
 	// todo: does the local address matter? is the listener's address or the actual address appropriate?
 	conn.local.fromRaw((*rawHvsockAddr)(unsafe.Pointer(&addrbuf[0])))
 	conn.remote.fromRaw((*rawHvsockAddr)(unsafe.Pointer(&addrbuf[addrlen])))
 	// initialize the accepted socket and update its properties with those of the listening socket
 	if err = windows.Setsockopt(windows.Handle(sock.handle),
 		windows.SOL_SOCKET, windows.SO_UPDATE_ACCEPT_CONTEXT,
 		(*byte)(unsafe.Pointer(&l.sock.handle)), int32(unsafe.Sizeof(l.sock.handle))); err != nil {
 		return nil, conn.opErr("accept", os.NewSyscallError("setsockopt", err))
 	}
 	sock = nil
 	return conn, nil
 }
 // Close closes the listener, causing any pending Accept calls to fail.
 func (l *HvsockListener) Close() error {
 	return l.sock.Close()
 }
 // HvsockDialer configures and dials a Hyper-V Socket (ie, [HvsockConn]).
 type HvsockDialer struct {
 	// Deadline is the time the Dial operation must connect before erroring.
 	Deadline time.Time
 	// Retries is the number of additional connects to try if the connection times out, is refused,
 	// or the host is unreachable
 	Retries uint
 	// RetryWait is the time to wait after a connection error to retry
 	RetryWait time.Duration
 	rt *time.Timer // redial wait timer
 }
 // Dial the Hyper-V socket at addr.
 //
 // See [HvsockDialer.Dial] for more information.
 func Dial(ctx context.Context, addr *HvsockAddr) (conn *HvsockConn, err error) {
 	return (&HvsockDialer{}).Dial(ctx, addr)
 }
 // Dial attempts to connect to the Hyper-V socket at addr, and returns a connection if successful.
 // Will attempt (HvsockDialer).Retries if dialing fails, waiting (HvsockDialer).RetryWait between
 // retries.
 //
 // Dialing can be cancelled either by providing (HvsockDialer).Deadline, or cancelling ctx.
 func (d *HvsockDialer) Dial(ctx context.Context, addr *HvsockAddr) (conn *HvsockConn, err error) {
 	op := "dial"
 	// create the conn early to use opErr()
 	conn = &HvsockConn{
 		remote: *addr,
 	}
 	if !d.Deadline.IsZero() {
 		var cancel context.CancelFunc
 		ctx, cancel = context.WithDeadline(ctx, d.Deadline)
 		defer cancel()
 	}
 	// preemptive timeout/cancellation check
 	if err = ctx.Err(); err != nil {
 		return nil, conn.opErr(op, err)
 	}
 	sock, err := newHVSocket()
 	if err != nil {
 		return nil, conn.opErr(op, err)
 	}
 	defer func() {
 		if sock != nil {
 			sock.Close()
 		}
 	}()
 	sa := addr.raw()
 	err = socket.Bind(windows.Handle(sock.handle), &sa)
 	if err != nil {
 		return nil, conn.opErr(op, os.NewSyscallError("bind", err))
 	}
 	c, err := sock.prepareIO()
 	if err != nil {
 		return nil, conn.opErr(op, err)
 	}
 	defer sock.wg.Done()
 	var bytes uint32
 	for i := uint(0); i <= d.Retries; i++ {
 		err = socket.ConnectEx(
 			windows.Handle(sock.handle),
 			&sa,
 			nil, // sendBuf
 			0,   // sendDataLen
 			&bytes,
 			(*windows.Overlapped)(unsafe.Pointer(&c.o)))
 		_, err = sock.asyncIO(c, nil, bytes, err)
 		if i < d.Retries && canRedial(err) {
 			if err = d.redialWait(ctx); err == nil {
 				continue
 			}
 		}
 		break
 	}
 	if err != nil {
 		return nil, conn.opErr(op, os.NewSyscallError("connectex", err))
 	}
 	// update the connection properties, so shutdown can be used
 	if err = windows.Setsockopt(
 		windows.Handle(sock.handle),
 		windows.SOL_SOCKET,
 		windows.SO_UPDATE_CONNECT_CONTEXT,
 		nil, // optvalue
 		0,   // optlen
 	); err != nil {
 		return nil, conn.opErr(op, os.NewSyscallError("setsockopt", err))
 	}
 	// get the local name
 	var sal rawHvsockAddr
 	err = socket.GetSockName(windows.Handle(sock.handle), &sal)
 	if err != nil {
 		return nil, conn.opErr(op, os.NewSyscallError("getsockname", err))
 	}
 	conn.local.fromRaw(&sal)
 	// one last check for timeout, since asyncIO doesn't check the context
 	if err = ctx.Err(); err != nil {
 		return nil, conn.opErr(op, err)
 	}
 	conn.sock = sock
 	sock = nil
 	return conn, nil
 }
 // redialWait waits before attempting to redial, resetting the timer as appropriate.
 func (d *HvsockDialer) redialWait(ctx context.Context) (err error) {
 	if d.RetryWait == 0 {
 		return nil
 	}
 	if d.rt == nil {
 		d.rt = time.NewTimer(d.RetryWait)
 	} else {
 		// should already be stopped and drained
 		d.rt.Reset(d.RetryWait)
 	}
 	select {
 	case <-ctx.Done():
 	case <-d.rt.C:
 		return nil
 	}
 	// stop and drain the timer
 	if !d.rt.Stop() {
 		<-d.rt.C
 	}
 	return ctx.Err()
 }
 // assumes error is a plain, unwrapped syscall.Errno provided by direct syscall.
 func canRedial(err error) bool {
 	//nolint:errorlint // guaranteed to be an Errno
 	switch err {
 	case windows.WSAECONNREFUSED, windows.WSAENETUNREACH, windows.WSAETIMEDOUT,
 		windows.ERROR_CONNECTION_REFUSED, windows.ERROR_CONNECTION_UNAVAIL:
 		return true
 	default:
 		return false
 	}
 }
 func (conn *HvsockConn) opErr(op string, err error) error {
 	// translate from "file closed" to "socket closed"
 	if errors.Is(err, ErrFileClosed) {
 		err = socket.ErrSocketClosed
 	}
 	return &net.OpError{Op: op, Net: "hvsock", Source: &conn.local, Addr: &conn.remote, Err: err}
 }
 func (conn *HvsockConn) Read(b []byte) (int, error) {
 	c, err := conn.sock.prepareIO()
 	if err != nil {
 		return 0, conn.opErr("read", err)
 	}
 	defer conn.sock.wg.Done()
 	buf := syscall.WSABuf{Buf: &b[0], Len: uint32(len(b))}
 	var flags, bytes uint32
 	err = syscall.WSARecv(conn.sock.handle, &buf, 1, &bytes, &flags, &c.o, nil)
 	n, err := conn.sock.asyncIO(c, &conn.sock.readDeadline, bytes, err)
 	if err != nil {
 		var eno windows.Errno
 		if errors.As(err, &eno) {
 			err = os.NewSyscallError("wsarecv", eno)
 		}
 		return 0, conn.opErr("read", err)
 	} else if n == 0 {
 		err = io.EOF
 	}
 	return n, err
 }
 func (conn *HvsockConn) Write(b []byte) (int, error) {
 	t := 0
 	for len(b) != 0 {
 		n, err := conn.write(b)
 		if err != nil {
 			return t + n, err
 		}
 		t += n
 		b = b[n:]
 	}
 	return t, nil
 }
 func (conn *HvsockConn) write(b []byte) (int, error) {
 	c, err := conn.sock.prepareIO()
 	if err != nil {
 		return 0, conn.opErr("write", err)
 	}
 	defer conn.sock.wg.Done()
 	buf := syscall.WSABuf{Buf: &b[0], Len: uint32(len(b))}
 	var bytes uint32
 	err = syscall.WSASend(conn.sock.handle, &buf, 1, &bytes, 0, &c.o, nil)
 	n, err := conn.sock.asyncIO(c, &conn.sock.writeDeadline, bytes, err)
 	if err != nil {
 		var eno windows.Errno
 		if errors.As(err, &eno) {
 			err = os.NewSyscallError("wsasend", eno)
 		}
 		return 0, conn.opErr("write", err)
 	}
 	return n, err
 }
 // Close closes the socket connection, failing any pending read or write calls.
 func (conn *HvsockConn) Close() error {
 	return conn.sock.Close()
 }
 func (conn *HvsockConn) IsClosed() bool {
 	return conn.sock.IsClosed()
 }
 // shutdown disables sending or receiving on a socket.
 func (conn *HvsockConn) shutdown(how int) error {
 	if conn.IsClosed() {
 		return socket.ErrSocketClosed
 	}
 	err := syscall.Shutdown(conn.sock.handle, how)
 	if err != nil {
 		// If the connection was closed, shutdowns fail with "not connected"
 		if errors.Is(err, windows.WSAENOTCONN) ||
 			errors.Is(err, windows.WSAESHUTDOWN) {
 			err = socket.ErrSocketClosed
 		}
 		return os.NewSyscallError("shutdown", err)
 	}
 	return nil
 }
 // CloseRead shuts down the read end of the socket, preventing future read operations.
 func (conn *HvsockConn) CloseRead() error {
 	err := conn.shutdown(syscall.SHUT_RD)
 	if err != nil {
 		return conn.opErr("closeread", err)
 	}
 	return nil
 }
 // CloseWrite shuts down the write end of the socket, preventing future write operations and
 // notifying the other endpoint that no more data will be written.
 func (conn *HvsockConn) CloseWrite() error {
 	err := conn.shutdown(syscall.SHUT_WR)
 	if err != nil {
 		return conn.opErr("closewrite", err)
 	}
 	return nil
 }
 // LocalAddr returns the local address of the connection.
 func (conn *HvsockConn) LocalAddr() net.Addr {
 	return &conn.local
 }
 // RemoteAddr returns the remote address of the connection.
 func (conn *HvsockConn) RemoteAddr() net.Addr {
 	return &conn.remote
 }
 // SetDeadline implements the net.Conn SetDeadline method.
 func (conn *HvsockConn) SetDeadline(t time.Time) error {
 	// todo: implement `SetDeadline` for `win32File`
 	if err := conn.SetReadDeadline(t); err != nil {
 		return fmt.Errorf("set read deadline: %w", err)
 	}
 	if err := conn.SetWriteDeadline(t); err != nil {
 		return fmt.Errorf("set write deadline: %w", err)
 	}
 	return nil
 }
 // SetReadDeadline implements the net.Conn SetReadDeadline method.
 func (conn *HvsockConn) SetReadDeadline(t time.Time) error {
 	return conn.sock.SetReadDeadline(t)
 }
 // SetWriteDeadline implements the net.Conn SetWriteDeadline method.
 func (conn *HvsockConn) SetWriteDeadline(t time.Time) error {
 	return conn.sock.SetWriteDeadline(t)
 }
--- a/vendor/github.com/Microsoft/go-winio/internal/fs/doc.go
+++ b/vendor/github.com/Microsoft/go-winio/internal/fs/doc.go
@ -0,0 +1,2 @@
 // This package contains Win32 filesystem functionality.
 package fs
--- a/vendor/github.com/Microsoft/go-winio/internal/fs/fs.go
+++ b/vendor/github.com/Microsoft/go-winio/internal/fs/fs.go
@ -0,0 +1,202 @@
 //go:build windows
 package fs
 import (
 	"golang.org/x/sys/windows"
 	"github.com/Microsoft/go-winio/internal/stringbuffer"
 )
 //go:generate go run github.com/Microsoft/go-winio/tools/mkwinsyscall -output zsyscall_windows.go fs.go
 // https://learn.microsoft.com/en-us/windows/win32/api/fileapi/nf-fileapi-createfilew
 //sys CreateFile(name string, access AccessMask, mode FileShareMode, sa *syscall.SecurityAttributes, createmode FileCreationDisposition, attrs FileFlagOrAttribute, templatefile windows.Handle) (handle windows.Handle, err error) [failretval==windows.InvalidHandle] = CreateFileW
 const NullHandle windows.Handle = 0
 // AccessMask defines standard, specific, and generic rights.
 //
 //	Bitmask:
 //	 3 3 2 2 2 2 2 2 2 2 2 2 1 1 1 1 1 1 1 1 1 1
 //	 1 0 9 8 7 6 5 4 3 2 1 0 9 8 7 6 5 4 3 2 1 0 9 8 7 6 5 4 3 2 1 0
 //	+---------------+---------------+-------------------------------+
 //	|G|G|G|G|Resvd|A| StandardRights|         SpecificRights        |
 //	|R|W|E|A|     |S|               |                               |
 //	+-+-------------+---------------+-------------------------------+
 //
 //	GR     Generic Read
 //	GW     Generic Write
 //	GE     Generic Exectue
 //	GA     Generic All
 //	Resvd  Reserved
 //	AS     Access Security System
 //
 // https://learn.microsoft.com/en-us/windows/win32/secauthz/access-mask
 //
 // https://learn.microsoft.com/en-us/windows/win32/secauthz/generic-access-rights
 //
 // https://learn.microsoft.com/en-us/windows/win32/fileio/file-access-rights-constants
 type AccessMask = windows.ACCESS_MASK
 //nolint:revive // SNAKE_CASE is not idiomatic in Go, but aligned with Win32 API.
 const (
 	// Not actually any.
 	//
 	// For CreateFile: "query certain metadata such as file, directory, or device attributes without accessing that file or device"
 	// https://learn.microsoft.com/en-us/windows/win32/api/fileapi/nf-fileapi-createfilew#parameters
 	FILE_ANY_ACCESS AccessMask = 0
 	// Specific Object Access
 	// from ntioapi.h
 	FILE_READ_DATA      AccessMask = (0x0001) // file & pipe
 	FILE_LIST_DIRECTORY AccessMask = (0x0001) // directory
 	FILE_WRITE_DATA AccessMask = (0x0002) // file & pipe
 	FILE_ADD_FILE   AccessMask = (0x0002) // directory
 	FILE_APPEND_DATA          AccessMask = (0x0004) // file
 	FILE_ADD_SUBDIRECTORY     AccessMask = (0x0004) // directory
 	FILE_CREATE_PIPE_INSTANCE AccessMask = (0x0004) // named pipe
 	FILE_READ_EA         AccessMask = (0x0008) // file & directory
 	FILE_READ_PROPERTIES AccessMask = FILE_READ_EA
 	FILE_WRITE_EA         AccessMask = (0x0010) // file & directory
 	FILE_WRITE_PROPERTIES AccessMask = FILE_WRITE_EA
 	FILE_EXECUTE  AccessMask = (0x0020) // file
 	FILE_TRAVERSE AccessMask = (0x0020) // directory
 	FILE_DELETE_CHILD AccessMask = (0x0040) // directory
 	FILE_READ_ATTRIBUTES AccessMask = (0x0080) // all
 	FILE_WRITE_ATTRIBUTES AccessMask = (0x0100) // all
 	FILE_ALL_ACCESS      AccessMask = (STANDARD_RIGHTS_REQUIRED | SYNCHRONIZE | 0x1FF)
 	FILE_GENERIC_READ    AccessMask = (STANDARD_RIGHTS_READ | FILE_READ_DATA | FILE_READ_ATTRIBUTES | FILE_READ_EA | SYNCHRONIZE)
 	FILE_GENERIC_WRITE   AccessMask = (STANDARD_RIGHTS_WRITE | FILE_WRITE_DATA | FILE_WRITE_ATTRIBUTES | FILE_WRITE_EA | FILE_APPEND_DATA | SYNCHRONIZE)
 	FILE_GENERIC_EXECUTE AccessMask = (STANDARD_RIGHTS_EXECUTE | FILE_READ_ATTRIBUTES | FILE_EXECUTE | SYNCHRONIZE)
 	SPECIFIC_RIGHTS_ALL AccessMask = 0x0000FFFF
 	// Standard Access
 	// from ntseapi.h
 	DELETE       AccessMask = 0x0001_0000
 	READ_CONTROL AccessMask = 0x0002_0000
 	WRITE_DAC    AccessMask = 0x0004_0000
 	WRITE_OWNER  AccessMask = 0x0008_0000
 	SYNCHRONIZE  AccessMask = 0x0010_0000
 	STANDARD_RIGHTS_REQUIRED AccessMask = 0x000F_0000
 	STANDARD_RIGHTS_READ    AccessMask = READ_CONTROL
 	STANDARD_RIGHTS_WRITE   AccessMask = READ_CONTROL
 	STANDARD_RIGHTS_EXECUTE AccessMask = READ_CONTROL
 	STANDARD_RIGHTS_ALL AccessMask = 0x001F_0000
 )
 type FileShareMode uint32
 //nolint:revive // SNAKE_CASE is not idiomatic in Go, but aligned with Win32 API.
 const (
 	FILE_SHARE_NONE        FileShareMode = 0x00
 	FILE_SHARE_READ        FileShareMode = 0x01
 	FILE_SHARE_WRITE       FileShareMode = 0x02
 	FILE_SHARE_DELETE      FileShareMode = 0x04
 	FILE_SHARE_VALID_FLAGS FileShareMode = 0x07
 )
 type FileCreationDisposition uint32
 //nolint:revive // SNAKE_CASE is not idiomatic in Go, but aligned with Win32 API.
 const (
 	// from winbase.h
 	CREATE_NEW        FileCreationDisposition = 0x01
 	CREATE_ALWAYS     FileCreationDisposition = 0x02
 	OPEN_EXISTING     FileCreationDisposition = 0x03
 	OPEN_ALWAYS       FileCreationDisposition = 0x04
 	TRUNCATE_EXISTING FileCreationDisposition = 0x05
 )
 // CreateFile and co. take flags or attributes together as one parameter.
 // Define alias until we can use generics to allow both
 // https://learn.microsoft.com/en-us/windows/win32/fileio/file-attribute-constants
 type FileFlagOrAttribute uint32
 //nolint:revive // SNAKE_CASE is not idiomatic in Go, but aligned with Win32 API.
 const ( // from winnt.h
 	FILE_FLAG_WRITE_THROUGH       FileFlagOrAttribute = 0x8000_0000
 	FILE_FLAG_OVERLAPPED          FileFlagOrAttribute = 0x4000_0000
 	FILE_FLAG_NO_BUFFERING        FileFlagOrAttribute = 0x2000_0000
 	FILE_FLAG_RANDOM_ACCESS       FileFlagOrAttribute = 0x1000_0000
 	FILE_FLAG_SEQUENTIAL_SCAN     FileFlagOrAttribute = 0x0800_0000
 	FILE_FLAG_DELETE_ON_CLOSE     FileFlagOrAttribute = 0x0400_0000
 	FILE_FLAG_BACKUP_SEMANTICS    FileFlagOrAttribute = 0x0200_0000
 	FILE_FLAG_POSIX_SEMANTICS     FileFlagOrAttribute = 0x0100_0000
 	FILE_FLAG_OPEN_REPARSE_POINT  FileFlagOrAttribute = 0x0020_0000
 	FILE_FLAG_OPEN_NO_RECALL      FileFlagOrAttribute = 0x0010_0000
 	FILE_FLAG_FIRST_PIPE_INSTANCE FileFlagOrAttribute = 0x0008_0000
 )
 type FileSQSFlag = FileFlagOrAttribute
 //nolint:revive // SNAKE_CASE is not idiomatic in Go, but aligned with Win32 API.
 const ( // from winbase.h
 	SECURITY_ANONYMOUS      FileSQSFlag = FileSQSFlag(SecurityAnonymous << 16)
 	SECURITY_IDENTIFICATION FileSQSFlag = FileSQSFlag(SecurityIdentification << 16)
 	SECURITY_IMPERSONATION  FileSQSFlag = FileSQSFlag(SecurityImpersonation << 16)
 	SECURITY_DELEGATION     FileSQSFlag = FileSQSFlag(SecurityDelegation << 16)
 	SECURITY_SQOS_PRESENT     FileSQSFlag = 0x00100000
 	SECURITY_VALID_SQOS_FLAGS FileSQSFlag = 0x001F0000
 )
 // GetFinalPathNameByHandle flags
 //
 // https://learn.microsoft.com/en-us/windows/win32/api/fileapi/nf-fileapi-getfinalpathnamebyhandlew#parameters
 type GetFinalPathFlag uint32
 //nolint:revive // SNAKE_CASE is not idiomatic in Go, but aligned with Win32 API.
 const (
 	GetFinalPathDefaultFlag GetFinalPathFlag = 0x0
 	FILE_NAME_NORMALIZED GetFinalPathFlag = 0x0
 	FILE_NAME_OPENED     GetFinalPathFlag = 0x8
 	VOLUME_NAME_DOS  GetFinalPathFlag = 0x0
 	VOLUME_NAME_GUID GetFinalPathFlag = 0x1
 	VOLUME_NAME_NT   GetFinalPathFlag = 0x2
 	VOLUME_NAME_NONE GetFinalPathFlag = 0x4
 )
 // getFinalPathNameByHandle facilitates calling the Windows API GetFinalPathNameByHandle
 // with the given handle and flags. It transparently takes care of creating a buffer of the
 // correct size for the call.
 //
 // https://learn.microsoft.com/en-us/windows/win32/api/fileapi/nf-fileapi-getfinalpathnamebyhandlew
 func GetFinalPathNameByHandle(h windows.Handle, flags GetFinalPathFlag) (string, error) {
 	b := stringbuffer.NewWString()
 	//TODO: can loop infinitely if Win32 keeps returning the same (or a larger) n?
 	for {
 		n, err := windows.GetFinalPathNameByHandle(h, b.Pointer(), b.Cap(), uint32(flags))
 		if err != nil {
 			return "", err
 		}
 		// If the buffer wasn't large enough, n will be the total size needed (including null terminator).
 		// Resize and try again.
 		if n > b.Cap() {
 			b.ResizeTo(n)
 			continue
 		}
 		// If the buffer is large enough, n will be the size not including the null terminator.
 		// Convert to a Go string and return.
 		return b.String(), nil
 	}
 }
--- a/vendor/github.com/Microsoft/go-winio/internal/fs/security.go
+++ b/vendor/github.com/Microsoft/go-winio/internal/fs/security.go
@ -0,0 +1,12 @@
 package fs
 // https://learn.microsoft.com/en-us/windows/win32/api/winnt/ne-winnt-security_impersonation_level
 type SecurityImpersonationLevel int32 // C default enums underlying type is `int`, which is Go `int32`
 // Impersonation levels
 const (
 	SecurityAnonymous      SecurityImpersonationLevel = 0
 	SecurityIdentification SecurityImpersonationLevel = 1
 	SecurityImpersonation  SecurityImpersonationLevel = 2
 	SecurityDelegation     SecurityImpersonationLevel = 3
 )
--- a/vendor/github.com/Microsoft/go-winio/internal/fs/zsyscall_windows.go
+++ b/vendor/github.com/Microsoft/go-winio/internal/fs/zsyscall_windows.go
@ -0,0 +1,64 @@
 //go:build windows
 // Code generated by 'go generate' using "github.com/Microsoft/go-winio/tools/mkwinsyscall"; DO NOT EDIT.
 package fs
 import (
 	"syscall"
 	"unsafe"
 	"golang.org/x/sys/windows"
 )
 var _ unsafe.Pointer
 // Do the interface allocations only once for common
 // Errno values.
 const (
 	errnoERROR_IO_PENDING = 997
 )
 var (
 	errERROR_IO_PENDING error = syscall.Errno(errnoERROR_IO_PENDING)
 	errERROR_EINVAL     error = syscall.EINVAL
 )
 // errnoErr returns common boxed Errno values, to prevent
 // allocations at runtime.
 func errnoErr(e syscall.Errno) error {
 	switch e {
 	case 0:
 		return errERROR_EINVAL
 	case errnoERROR_IO_PENDING:
 		return errERROR_IO_PENDING
 	}
 	// TODO: add more here, after collecting data on the common
 	// error values see on Windows. (perhaps when running
 	// all.bat?)
 	return e
 }
 var (
 	modkernel32 = windows.NewLazySystemDLL("kernel32.dll")
 	procCreateFileW = modkernel32.NewProc("CreateFileW")
 )
 func CreateFile(name string, access AccessMask, mode FileShareMode, sa *syscall.SecurityAttributes, createmode FileCreationDisposition, attrs FileFlagOrAttribute, templatefile windows.Handle) (handle windows.Handle, err error) {
 	var _p0 *uint16
 	_p0, err = syscall.UTF16PtrFromString(name)
 	if err != nil {
 		return
 	}
 	return _CreateFile(_p0, access, mode, sa, createmode, attrs, templatefile)
 }
 func _CreateFile(name *uint16, access AccessMask, mode FileShareMode, sa *syscall.SecurityAttributes, createmode FileCreationDisposition, attrs FileFlagOrAttribute, templatefile windows.Handle) (handle windows.Handle, err error) {
 	r0, _, e1 := syscall.Syscall9(procCreateFileW.Addr(), 7, uintptr(unsafe.Pointer(name)), uintptr(access), uintptr(mode), uintptr(unsafe.Pointer(sa)), uintptr(createmode), uintptr(attrs), uintptr(templatefile), 0, 0)
 	handle = windows.Handle(r0)
 	if handle == windows.InvalidHandle {
 		err = errnoErr(e1)
 	}
 	return
 }
--- a/vendor/github.com/Microsoft/go-winio/internal/socket/rawaddr.go
+++ b/vendor/github.com/Microsoft/go-winio/internal/socket/rawaddr.go
@ -0,0 +1,20 @@
 package socket
 import (
 	"unsafe"
 )
 // RawSockaddr allows structs to be used with [Bind] and [ConnectEx]. The
 // struct must meet the Win32 sockaddr requirements specified here:
 // https://docs.microsoft.com/en-us/windows/win32/winsock/sockaddr-2
 //
 // Specifically, the struct size must be least larger than an int16 (unsigned short)
 // for the address family.
 type RawSockaddr interface {
 	// Sockaddr returns a pointer to the RawSockaddr and its struct size, allowing
 	// for the RawSockaddr's data to be overwritten by syscalls (if necessary).
 	//
 	// It is the callers responsibility to validate that the values are valid; invalid
 	// pointers or size can cause a panic.
 	Sockaddr() (unsafe.Pointer, int32, error)
 }
--- a/vendor/github.com/Microsoft/go-winio/internal/socket/socket.go
+++ b/vendor/github.com/Microsoft/go-winio/internal/socket/socket.go
@ -0,0 +1,179 @@
 //go:build windows
 package socket
 import (
 	"errors"
 	"fmt"
 	"net"
 	"sync"
 	"syscall"
 	"unsafe"
 	"github.com/Microsoft/go-winio/pkg/guid"
 	"golang.org/x/sys/windows"
 )
 //go:generate go run github.com/Microsoft/go-winio/tools/mkwinsyscall -output zsyscall_windows.go socket.go
 //sys getsockname(s windows.Handle, name unsafe.Pointer, namelen *int32) (err error) [failretval==socketError] = ws2_32.getsockname
 //sys getpeername(s windows.Handle, name unsafe.Pointer, namelen *int32) (err error) [failretval==socketError] = ws2_32.getpeername
 //sys bind(s windows.Handle, name unsafe.Pointer, namelen int32) (err error) [failretval==socketError] = ws2_32.bind
 const socketError = uintptr(^uint32(0))
 var (
 	// todo(helsaawy): create custom error types to store the desired vs actual size and addr family?
 	ErrBufferSize     = errors.New("buffer size")
 	ErrAddrFamily     = errors.New("address family")
 	ErrInvalidPointer = errors.New("invalid pointer")
 	ErrSocketClosed   = fmt.Errorf("socket closed: %w", net.ErrClosed)
 )
 // todo(helsaawy): replace these with generics, ie: GetSockName[S RawSockaddr](s windows.Handle) (S, error)
 // GetSockName writes the local address of socket s to the [RawSockaddr] rsa.
 // If rsa is not large enough, the [windows.WSAEFAULT] is returned.
 func GetSockName(s windows.Handle, rsa RawSockaddr) error {
 	ptr, l, err := rsa.Sockaddr()
 	if err != nil {
 		return fmt.Errorf("could not retrieve socket pointer and size: %w", err)
 	}
 	// although getsockname returns WSAEFAULT if the buffer is too small, it does not set
 	// &l to the correct size, so--apart from doubling the buffer repeatedly--there is no remedy
 	return getsockname(s, ptr, &l)
 }
 // GetPeerName returns the remote address the socket is connected to.
 //
 // See [GetSockName] for more information.
 func GetPeerName(s windows.Handle, rsa RawSockaddr) error {
 	ptr, l, err := rsa.Sockaddr()
 	if err != nil {
 		return fmt.Errorf("could not retrieve socket pointer and size: %w", err)
 	}
 	return getpeername(s, ptr, &l)
 }
 func Bind(s windows.Handle, rsa RawSockaddr) (err error) {
 	ptr, l, err := rsa.Sockaddr()
 	if err != nil {
 		return fmt.Errorf("could not retrieve socket pointer and size: %w", err)
 	}
 	return bind(s, ptr, l)
 }
 // "golang.org/x/sys/windows".ConnectEx and .Bind only accept internal implementations of the
 // their sockaddr interface, so they cannot be used with HvsockAddr
 // Replicate functionality here from
 // https://cs.opensource.google/go/x/sys/+/master:windows/syscall_windows.go
 // The function pointers to `AcceptEx`, `ConnectEx` and `GetAcceptExSockaddrs` must be loaded at
 // runtime via a WSAIoctl call:
 // https://docs.microsoft.com/en-us/windows/win32/api/Mswsock/nc-mswsock-lpfn_connectex#remarks
 type runtimeFunc struct {
 	id   guid.GUID
 	once sync.Once
 	addr uintptr
 	err  error
 }
 func (f *runtimeFunc) Load() error {
 	f.once.Do(func() {
 		var s windows.Handle
 		s, f.err = windows.Socket(windows.AF_INET, windows.SOCK_STREAM, windows.IPPROTO_TCP)
 		if f.err != nil {
 			return
 		}
 		defer windows.CloseHandle(s) //nolint:errcheck
 		var n uint32
 		f.err = windows.WSAIoctl(s,
 			windows.SIO_GET_EXTENSION_FUNCTION_POINTER,
 			(*byte)(unsafe.Pointer(&f.id)),
 			uint32(unsafe.Sizeof(f.id)),
 			(*byte)(unsafe.Pointer(&f.addr)),
 			uint32(unsafe.Sizeof(f.addr)),
 			&n,
 			nil, // overlapped
 			0,   // completionRoutine
 		)
 	})
 	return f.err
 }
 var (
 	// todo: add `AcceptEx` and `GetAcceptExSockaddrs`
 	WSAID_CONNECTEX = guid.GUID{ //revive:disable-line:var-naming ALL_CAPS
 		Data1: 0x25a207b9,
 		Data2: 0xddf3,
 		Data3: 0x4660,
 		Data4: [8]byte{0x8e, 0xe9, 0x76, 0xe5, 0x8c, 0x74, 0x06, 0x3e},
 	}
 	connectExFunc = runtimeFunc{id: WSAID_CONNECTEX}
 )
 func ConnectEx(
 	fd windows.Handle,
 	rsa RawSockaddr,
 	sendBuf *byte,
 	sendDataLen uint32,
 	bytesSent *uint32,
 	overlapped *windows.Overlapped,
 ) error {
 	if err := connectExFunc.Load(); err != nil {
 		return fmt.Errorf("failed to load ConnectEx function pointer: %w", err)
 	}
 	ptr, n, err := rsa.Sockaddr()
 	if err != nil {
 		return err
 	}
 	return connectEx(fd, ptr, n, sendBuf, sendDataLen, bytesSent, overlapped)
 }
 // BOOL LpfnConnectex(
 //   [in]           SOCKET s,
 //   [in]           const sockaddr *name,
 //   [in]           int namelen,
 //   [in, optional] PVOID lpSendBuffer,
 //   [in]           DWORD dwSendDataLength,
 //   [out]          LPDWORD lpdwBytesSent,
 //   [in]           LPOVERLAPPED lpOverlapped
 // )
 func connectEx(
 	s windows.Handle,
 	name unsafe.Pointer,
 	namelen int32,
 	sendBuf *byte,
 	sendDataLen uint32,
 	bytesSent *uint32,
 	overlapped *windows.Overlapped,
 ) (err error) {
 	// todo: after upgrading to 1.18, switch from syscall.Syscall9 to syscall.SyscallN
 	r1, _, e1 := syscall.Syscall9(connectExFunc.addr,
 		7,
 		uintptr(s),
 		uintptr(name),
 		uintptr(namelen),
 		uintptr(unsafe.Pointer(sendBuf)),
 		uintptr(sendDataLen),
 		uintptr(unsafe.Pointer(bytesSent)),
 		uintptr(unsafe.Pointer(overlapped)),
 		0,
 		0)
 	if r1 == 0 {
 		if e1 != 0 {
 			err = error(e1)
 		} else {
 			err = syscall.EINVAL
 		}
 	}
 	return err
 }
--- a/vendor/github.com/Microsoft/go-winio/internal/socket/zsyscall_windows.go
+++ b/vendor/github.com/Microsoft/go-winio/internal/socket/zsyscall_windows.go
@ -0,0 +1,72 @@
 //go:build windows
 // Code generated by 'go generate' using "github.com/Microsoft/go-winio/tools/mkwinsyscall"; DO NOT EDIT.
 package socket
 import (
 	"syscall"
 	"unsafe"
 	"golang.org/x/sys/windows"
 )
 var _ unsafe.Pointer
 // Do the interface allocations only once for common
 // Errno values.
 const (
 	errnoERROR_IO_PENDING = 997
 )
 var (
 	errERROR_IO_PENDING error = syscall.Errno(errnoERROR_IO_PENDING)
 	errERROR_EINVAL     error = syscall.EINVAL
 )
 // errnoErr returns common boxed Errno values, to prevent
 // allocations at runtime.
 func errnoErr(e syscall.Errno) error {
 	switch e {
 	case 0:
 		return errERROR_EINVAL
 	case errnoERROR_IO_PENDING:
 		return errERROR_IO_PENDING
 	}
 	// TODO: add more here, after collecting data on the common
 	// error values see on Windows. (perhaps when running
 	// all.bat?)
 	return e
 }
 var (
 	modws2_32 = windows.NewLazySystemDLL("ws2_32.dll")
 	procbind        = modws2_32.NewProc("bind")
 	procgetpeername = modws2_32.NewProc("getpeername")
 	procgetsockname = modws2_32.NewProc("getsockname")
 )
 func bind(s windows.Handle, name unsafe.Pointer, namelen int32) (err error) {
 	r1, _, e1 := syscall.Syscall(procbind.Addr(), 3, uintptr(s), uintptr(name), uintptr(namelen))
 	if r1 == socketError {
 		err = errnoErr(e1)
 	}
 	return
 }
 func getpeername(s windows.Handle, name unsafe.Pointer, namelen *int32) (err error) {
 	r1, _, e1 := syscall.Syscall(procgetpeername.Addr(), 3, uintptr(s), uintptr(name), uintptr(unsafe.Pointer(namelen)))
 	if r1 == socketError {
 		err = errnoErr(e1)
 	}
 	return
 }
 func getsockname(s windows.Handle, name unsafe.Pointer, namelen *int32) (err error) {
 	r1, _, e1 := syscall.Syscall(procgetsockname.Addr(), 3, uintptr(s), uintptr(name), uintptr(unsafe.Pointer(namelen)))
 	if r1 == socketError {
 		err = errnoErr(e1)
 	}
 	return
 }
--- a/vendor/github.com/Microsoft/go-winio/internal/stringbuffer/wstring.go
+++ b/vendor/github.com/Microsoft/go-winio/internal/stringbuffer/wstring.go
@ -0,0 +1,132 @@
 package stringbuffer
 import (
 	"sync"
 	"unicode/utf16"
 )
 // TODO: worth exporting and using in mkwinsyscall?
 // Uint16BufferSize is the buffer size in the pool, chosen somewhat arbitrarily to accommodate
 // large path strings:
 // MAX_PATH (260) + size of volume GUID prefix (49) + null terminator = 310.
 const MinWStringCap = 310
 // use *[]uint16 since []uint16 creates an extra allocation where the slice header
 // is copied to heap and then referenced via pointer in the interface header that sync.Pool
 // stores.
 var pathPool = sync.Pool{ // if go1.18+ adds Pool[T], use that to store []uint16 directly
 	New: func() interface{} {
 		b := make([]uint16, MinWStringCap)
 		return &b
 	},
 }
 func newBuffer() []uint16 { return *(pathPool.Get().(*[]uint16)) }
 // freeBuffer copies the slice header data, and puts a pointer to that in the pool.
 // This avoids taking a pointer to the slice header in WString, which can be set to nil.
 func freeBuffer(b []uint16) { pathPool.Put(&b) }
 // WString is a wide string buffer ([]uint16) meant for storing UTF-16 encoded strings
 // for interacting with Win32 APIs.
 // Sizes are specified as uint32 and not int.
 //
 // It is not thread safe.
 type WString struct {
 	// type-def allows casting to []uint16 directly, use struct to prevent that and allow adding fields in the future.
 	// raw buffer
 	b []uint16
 }
 // NewWString returns a [WString] allocated from a shared pool with an
 // initial capacity of at least [MinWStringCap].
 // Since the buffer may have been previously used, its contents are not guaranteed to be empty.
 //
 // The buffer should be freed via [WString.Free]
 func NewWString() *WString {
 	return &WString{
 		b: newBuffer(),
 	}
 }
 func (b *WString) Free() {
 	if b.empty() {
 		return
 	}
 	freeBuffer(b.b)
 	b.b = nil
 }
 // ResizeTo grows the buffer to at least c and returns the new capacity, freeing the
 // previous buffer back into pool.
 func (b *WString) ResizeTo(c uint32) uint32 {
 	// allready sufficient (or n is 0)
 	if c <= b.Cap() {
 		return b.Cap()
 	}
 	if c <= MinWStringCap {
 		c = MinWStringCap
 	}
 	// allocate at-least double buffer size, as is done in [bytes.Buffer] and other places
 	if c <= 2*b.Cap() {
 		c = 2 * b.Cap()
 	}
 	b2 := make([]uint16, c)
 	if !b.empty() {
 		copy(b2, b.b)
 		freeBuffer(b.b)
 	}
 	b.b = b2
 	return c
 }
 // Buffer returns the underlying []uint16 buffer.
 func (b *WString) Buffer() []uint16 {
 	if b.empty() {
 		return nil
 	}
 	return b.b
 }
 // Pointer returns a pointer to the first uint16 in the buffer.
 // If the [WString.Free] has already been called, the pointer will be nil.
 func (b *WString) Pointer() *uint16 {
 	if b.empty() {
 		return nil
 	}
 	return &b.b[0]
 }
 // String returns the returns the UTF-8 encoding of the UTF-16 string in the buffer.
 //
 // It assumes that the data is null-terminated.
 func (b *WString) String() string {
 	// Using [windows.UTF16ToString] would require importing "golang.org/x/sys/windows"
 	// and would make this code Windows-only, which makes no sense.
 	// So copy UTF16ToString code into here.
 	// If other windows-specific code is added, switch to [windows.UTF16ToString]
 	s := b.b
 	for i, v := range s {
 		if v == 0 {
 			s = s[:i]
 			break
 		}
 	}
 	return string(utf16.Decode(s))
 }
 // Cap returns the underlying buffer capacity.
 func (b *WString) Cap() uint32 {
 	if b.empty() {
 		return 0
 	}
 	return b.cap()
 }
 func (b *WString) cap() uint32 { return uint32(cap(b.b)) }
 func (b *WString) empty() bool { return b == nil || b.cap() == 0 }
--- a/vendor/github.com/Microsoft/go-winio/pipe.go
+++ b/vendor/github.com/Microsoft/go-winio/pipe.go
@ -0,0 +1,525 @@
 //go:build windows
 // +build windows
 package winio
 import (
 	"context"
 	"errors"
 	"fmt"
 	"io"
 	"net"
 	"os"
 	"runtime"
 	"syscall"
 	"time"
 	"unsafe"
 	"golang.org/x/sys/windows"
 	"github.com/Microsoft/go-winio/internal/fs"
 )
 //sys connectNamedPipe(pipe syscall.Handle, o *syscall.Overlapped) (err error) = ConnectNamedPipe
 //sys createNamedPipe(name string, flags uint32, pipeMode uint32, maxInstances uint32, outSize uint32, inSize uint32, defaultTimeout uint32, sa *syscall.SecurityAttributes) (handle syscall.Handle, err error)  [failretval==syscall.InvalidHandle] = CreateNamedPipeW
 //sys getNamedPipeInfo(pipe syscall.Handle, flags *uint32, outSize *uint32, inSize *uint32, maxInstances *uint32) (err error) = GetNamedPipeInfo
 //sys getNamedPipeHandleState(pipe syscall.Handle, state *uint32, curInstances *uint32, maxCollectionCount *uint32, collectDataTimeout *uint32, userName *uint16, maxUserNameSize uint32) (err error) = GetNamedPipeHandleStateW
 //sys localAlloc(uFlags uint32, length uint32) (ptr uintptr) = LocalAlloc
 //sys ntCreateNamedPipeFile(pipe *syscall.Handle, access uint32, oa *objectAttributes, iosb *ioStatusBlock, share uint32, disposition uint32, options uint32, typ uint32, readMode uint32, completionMode uint32, maxInstances uint32, inboundQuota uint32, outputQuota uint32, timeout *int64) (status ntStatus) = ntdll.NtCreateNamedPipeFile
 //sys rtlNtStatusToDosError(status ntStatus) (winerr error) = ntdll.RtlNtStatusToDosErrorNoTeb
 //sys rtlDosPathNameToNtPathName(name *uint16, ntName *unicodeString, filePart uintptr, reserved uintptr) (status ntStatus) = ntdll.RtlDosPathNameToNtPathName_U
 //sys rtlDefaultNpAcl(dacl *uintptr) (status ntStatus) = ntdll.RtlDefaultNpAcl
 type ioStatusBlock struct {
 	Status, Information uintptr
 }
 type objectAttributes struct {
 	Length             uintptr
 	RootDirectory      uintptr
 	ObjectName         *unicodeString
 	Attributes         uintptr
 	SecurityDescriptor *securityDescriptor
 	SecurityQoS        uintptr
 }
 type unicodeString struct {
 	Length        uint16
 	MaximumLength uint16
 	Buffer        uintptr
 }
 type securityDescriptor struct {
 	Revision byte
 	Sbz1     byte
 	Control  uint16
 	Owner    uintptr
 	Group    uintptr
 	Sacl     uintptr //revive:disable-line:var-naming SACL, not Sacl
 	Dacl     uintptr //revive:disable-line:var-naming DACL, not Dacl
 }
 type ntStatus int32
 func (status ntStatus) Err() error {
 	if status >= 0 {
 		return nil
 	}
 	return rtlNtStatusToDosError(status)
 }
 var (
 	// ErrPipeListenerClosed is returned for pipe operations on listeners that have been closed.
 	ErrPipeListenerClosed = net.ErrClosed
 	errPipeWriteClosed = errors.New("pipe has been closed for write")
 )
 type win32Pipe struct {
 	*win32File
 	path string
 }
 type win32MessageBytePipe struct {
 	win32Pipe
 	writeClosed bool
 	readEOF     bool
 }
 type pipeAddress string
 func (f *win32Pipe) LocalAddr() net.Addr {
 	return pipeAddress(f.path)
 }
 func (f *win32Pipe) RemoteAddr() net.Addr {
 	return pipeAddress(f.path)
 }
 func (f *win32Pipe) SetDeadline(t time.Time) error {
 	if err := f.SetReadDeadline(t); err != nil {
 		return err
 	}
 	return f.SetWriteDeadline(t)
 }
 // CloseWrite closes the write side of a message pipe in byte mode.
 func (f *win32MessageBytePipe) CloseWrite() error {
 	if f.writeClosed {
 		return errPipeWriteClosed
 	}
 	err := f.win32File.Flush()
 	if err != nil {
 		return err
 	}
 	_, err = f.win32File.Write(nil)
 	if err != nil {
 		return err
 	}
 	f.writeClosed = true
 	return nil
 }
 // Write writes bytes to a message pipe in byte mode. Zero-byte writes are ignored, since
 // they are used to implement CloseWrite().
 func (f *win32MessageBytePipe) Write(b []byte) (int, error) {
 	if f.writeClosed {
 		return 0, errPipeWriteClosed
 	}
 	if len(b) == 0 {
 		return 0, nil
 	}
 	return f.win32File.Write(b)
 }
 // Read reads bytes from a message pipe in byte mode. A read of a zero-byte message on a message
 // mode pipe will return io.EOF, as will all subsequent reads.
 func (f *win32MessageBytePipe) Read(b []byte) (int, error) {
 	if f.readEOF {
 		return 0, io.EOF
 	}
 	n, err := f.win32File.Read(b)
 	if err == io.EOF { //nolint:errorlint
 		// If this was the result of a zero-byte read, then
 		// it is possible that the read was due to a zero-size
 		// message. Since we are simulating CloseWrite with a
 		// zero-byte message, ensure that all future Read() calls
 		// also return EOF.
 		f.readEOF = true
 	} else if err == syscall.ERROR_MORE_DATA { //nolint:errorlint // err is Errno
 		// ERROR_MORE_DATA indicates that the pipe's read mode is message mode
 		// and the message still has more bytes. Treat this as a success, since
 		// this package presents all named pipes as byte streams.
 		err = nil
 	}
 	return n, err
 }
 func (pipeAddress) Network() string {
 	return "pipe"
 }
 func (s pipeAddress) String() string {
 	return string(s)
 }
 // tryDialPipe attempts to dial the pipe at `path` until `ctx` cancellation or timeout.
 func tryDialPipe(ctx context.Context, path *string, access fs.AccessMask) (syscall.Handle, error) {
 	for {
 		select {
 		case <-ctx.Done():
 			return syscall.Handle(0), ctx.Err()
 		default:
 			wh, err := fs.CreateFile(*path,
 				access,
 				0,   // mode
 				nil, // security attributes
 				fs.OPEN_EXISTING,
 				fs.FILE_FLAG_OVERLAPPED|fs.SECURITY_SQOS_PRESENT|fs.SECURITY_ANONYMOUS,
 				0, // template file handle
 			)
 			h := syscall.Handle(wh)
 			if err == nil {
 				return h, nil
 			}
 			if err != windows.ERROR_PIPE_BUSY { //nolint:errorlint // err is Errno
 				return h, &os.PathError{Err: err, Op: "open", Path: *path}
 			}
 			// Wait 10 msec and try again. This is a rather simplistic
 			// view, as we always try each 10 milliseconds.
 			time.Sleep(10 * time.Millisecond)
 		}
 	}
 }
 // DialPipe connects to a named pipe by path, timing out if the connection
 // takes longer than the specified duration. If timeout is nil, then we use
 // a default timeout of 2 seconds.  (We do not use WaitNamedPipe.)
 func DialPipe(path string, timeout *time.Duration) (net.Conn, error) {
 	var absTimeout time.Time
 	if timeout != nil {
 		absTimeout = time.Now().Add(*timeout)
 	} else {
 		absTimeout = time.Now().Add(2 * time.Second)
 	}
 	ctx, cancel := context.WithDeadline(context.Background(), absTimeout)
 	defer cancel()
 	conn, err := DialPipeContext(ctx, path)
 	if errors.Is(err, context.DeadlineExceeded) {
 		return nil, ErrTimeout
 	}
 	return conn, err
 }
 // DialPipeContext attempts to connect to a named pipe by `path` until `ctx`
 // cancellation or timeout.
 func DialPipeContext(ctx context.Context, path string) (net.Conn, error) {
 	return DialPipeAccess(ctx, path, syscall.GENERIC_READ|syscall.GENERIC_WRITE)
 }
 // DialPipeAccess attempts to connect to a named pipe by `path` with `access` until `ctx`
 // cancellation or timeout.
 func DialPipeAccess(ctx context.Context, path string, access uint32) (net.Conn, error) {
 	var err error
 	var h syscall.Handle
 	h, err = tryDialPipe(ctx, &path, fs.AccessMask(access))
 	if err != nil {
 		return nil, err
 	}
 	var flags uint32
 	err = getNamedPipeInfo(h, &flags, nil, nil, nil)
 	if err != nil {
 		return nil, err
 	}
 	f, err := makeWin32File(h)
 	if err != nil {
 		syscall.Close(h)
 		return nil, err
 	}
 	// If the pipe is in message mode, return a message byte pipe, which
 	// supports CloseWrite().
 	if flags&windows.PIPE_TYPE_MESSAGE != 0 {
 		return &win32MessageBytePipe{
 			win32Pipe: win32Pipe{win32File: f, path: path},
 		}, nil
 	}
 	return &win32Pipe{win32File: f, path: path}, nil
 }
 type acceptResponse struct {
 	f   *win32File
 	err error
 }
 type win32PipeListener struct {
 	firstHandle syscall.Handle
 	path        string
 	config      PipeConfig
 	acceptCh    chan (chan acceptResponse)
 	closeCh     chan int
 	doneCh      chan int
 }
 func makeServerPipeHandle(path string, sd []byte, c *PipeConfig, first bool) (syscall.Handle, error) {
 	path16, err := syscall.UTF16FromString(path)
 	if err != nil {
 		return 0, &os.PathError{Op: "open", Path: path, Err: err}
 	}
 	var oa objectAttributes
 	oa.Length = unsafe.Sizeof(oa)
 	var ntPath unicodeString
 	if err := rtlDosPathNameToNtPathName(&path16[0],
 		&ntPath,
 		0,
 		0,
 	).Err(); err != nil {
 		return 0, &os.PathError{Op: "open", Path: path, Err: err}
 	}
 	defer localFree(ntPath.Buffer)
 	oa.ObjectName = &ntPath
 	oa.Attributes = windows.OBJ_CASE_INSENSITIVE
 	// The security descriptor is only needed for the first pipe.
 	if first {
 		if sd != nil {
 			l := uint32(len(sd))
 			sdb := localAlloc(0, l)
 			defer localFree(sdb)
 			copy((*[0xffff]byte)(unsafe.Pointer(sdb))[:], sd)
 			oa.SecurityDescriptor = (*securityDescriptor)(unsafe.Pointer(sdb))
 		} else {
 			// Construct the default named pipe security descriptor.
 			var dacl uintptr
 			if err := rtlDefaultNpAcl(&dacl).Err(); err != nil {
 				return 0, fmt.Errorf("getting default named pipe ACL: %w", err)
 			}
 			defer localFree(dacl)
 			sdb := &securityDescriptor{
 				Revision: 1,
 				Control:  windows.SE_DACL_PRESENT,
 				Dacl:     dacl,
 			}
 			oa.SecurityDescriptor = sdb
 		}
 	}
 	typ := uint32(windows.FILE_PIPE_REJECT_REMOTE_CLIENTS)
 	if c.MessageMode {
 		typ |= windows.FILE_PIPE_MESSAGE_TYPE
 	}
 	disposition := uint32(windows.FILE_OPEN)
 	access := uint32(syscall.GENERIC_READ | syscall.GENERIC_WRITE | syscall.SYNCHRONIZE)
 	if first {
 		disposition = windows.FILE_CREATE
 		// By not asking for read or write access, the named pipe file system
 		// will put this pipe into an initially disconnected state, blocking
 		// client connections until the next call with first == false.
 		access = syscall.SYNCHRONIZE
 	}
 	timeout := int64(-50 * 10000) // 50ms
 	var (
 		h    syscall.Handle
 		iosb ioStatusBlock
 	)
 	err = ntCreateNamedPipeFile(&h,
 		access,
 		&oa,
 		&iosb,
 		syscall.FILE_SHARE_READ|syscall.FILE_SHARE_WRITE,
 		disposition,
 		0,
 		typ,
 		0,
 		0,
 		0xffffffff,
 		uint32(c.InputBufferSize),
 		uint32(c.OutputBufferSize),
 		&timeout).Err()
 	if err != nil {
 		return 0, &os.PathError{Op: "open", Path: path, Err: err}
 	}
 	runtime.KeepAlive(ntPath)
 	return h, nil
 }
 func (l *win32PipeListener) makeServerPipe() (*win32File, error) {
 	h, err := makeServerPipeHandle(l.path, nil, &l.config, false)
 	if err != nil {
 		return nil, err
 	}
 	f, err := makeWin32File(h)
 	if err != nil {
 		syscall.Close(h)
 		return nil, err
 	}
 	return f, nil
 }
 func (l *win32PipeListener) makeConnectedServerPipe() (*win32File, error) {
 	p, err := l.makeServerPipe()
 	if err != nil {
 		return nil, err
 	}
 	// Wait for the client to connect.
 	ch := make(chan error)
 	go func(p *win32File) {
 		ch <- connectPipe(p)
 	}(p)
 	select {
 	case err = <-ch:
 		if err != nil {
 			p.Close()
 			p = nil
 		}
 	case <-l.closeCh:
 		// Abort the connect request by closing the handle.
 		p.Close()
 		p = nil
 		err = <-ch
 		if err == nil || err == ErrFileClosed { //nolint:errorlint // err is Errno
 			err = ErrPipeListenerClosed
 		}
 	}
 	return p, err
 }
 func (l *win32PipeListener) listenerRoutine() {
 	closed := false
 	for !closed {
 		select {
 		case <-l.closeCh:
 			closed = true
 		case responseCh := <-l.acceptCh:
 			var (
 				p   *win32File
 				err error
 			)
 			for {
 				p, err = l.makeConnectedServerPipe()
 				// If the connection was immediately closed by the client, try
 				// again.
 				if err != windows.ERROR_NO_DATA { //nolint:errorlint // err is Errno
 					break
 				}
 			}
 			responseCh <- acceptResponse{p, err}
 			closed = err == ErrPipeListenerClosed //nolint:errorlint // err is Errno
 		}
 	}
 	syscall.Close(l.firstHandle)
 	l.firstHandle = 0
 	// Notify Close() and Accept() callers that the handle has been closed.
 	close(l.doneCh)
 }
 // PipeConfig contain configuration for the pipe listener.
 type PipeConfig struct {
 	// SecurityDescriptor contains a Windows security descriptor in SDDL format.
 	SecurityDescriptor string
 	// MessageMode determines whether the pipe is in byte or message mode. In either
 	// case the pipe is read in byte mode by default. The only practical difference in
 	// this implementation is that CloseWrite() is only supported for message mode pipes;
 	// CloseWrite() is implemented as a zero-byte write, but zero-byte writes are only
 	// transferred to the reader (and returned as io.EOF in this implementation)
 	// when the pipe is in message mode.
 	MessageMode bool
 	// InputBufferSize specifies the size of the input buffer, in bytes.
 	InputBufferSize int32
 	// OutputBufferSize specifies the size of the output buffer, in bytes.
 	OutputBufferSize int32
 }
 // ListenPipe creates a listener on a Windows named pipe path, e.g. \\.\pipe\mypipe.
 // The pipe must not already exist.
 func ListenPipe(path string, c *PipeConfig) (net.Listener, error) {
 	var (
 		sd  []byte
 		err error
 	)
 	if c == nil {
 		c = &PipeConfig{}
 	}
 	if c.SecurityDescriptor != "" {
 		sd, err = SddlToSecurityDescriptor(c.SecurityDescriptor)
 		if err != nil {
 			return nil, err
 		}
 	}
 	h, err := makeServerPipeHandle(path, sd, c, true)
 	if err != nil {
 		return nil, err
 	}
 	l := &win32PipeListener{
 		firstHandle: h,
 		path:        path,
 		config:      *c,
 		acceptCh:    make(chan (chan acceptResponse)),
 		closeCh:     make(chan int),
 		doneCh:      make(chan int),
 	}
 	go l.listenerRoutine()
 	return l, nil
 }
 func connectPipe(p *win32File) error {
 	c, err := p.prepareIO()
 	if err != nil {
 		return err
 	}
 	defer p.wg.Done()
 	err = connectNamedPipe(p.handle, &c.o)
 	_, err = p.asyncIO(c, nil, 0, err)
 	if err != nil && err != windows.ERROR_PIPE_CONNECTED { //nolint:errorlint // err is Errno
 		return err
 	}
 	return nil
 }
 func (l *win32PipeListener) Accept() (net.Conn, error) {
 	ch := make(chan acceptResponse)
 	select {
 	case l.acceptCh <- ch:
 		response := <-ch
 		err := response.err
 		if err != nil {
 			return nil, err
 		}
 		if l.config.MessageMode {
 			return &win32MessageBytePipe{
 				win32Pipe: win32Pipe{win32File: response.f, path: l.path},
 			}, nil
 		}
 		return &win32Pipe{win32File: response.f, path: l.path}, nil
 	case <-l.doneCh:
 		return nil, ErrPipeListenerClosed
 	}
 }
 func (l *win32PipeListener) Close() error {
 	select {
 	case l.closeCh <- 1:
 		<-l.doneCh
 	case <-l.doneCh:
 	}
 	return nil
 }
 func (l *win32PipeListener) Addr() net.Addr {
 	return pipeAddress(l.path)
 }
--- a/vendor/github.com/Microsoft/go-winio/pkg/guid/guid.go
+++ b/vendor/github.com/Microsoft/go-winio/pkg/guid/guid.go
@ -0,0 +1,232 @@
 // Package guid provides a GUID type. The backing structure for a GUID is
 // identical to that used by the golang.org/x/sys/windows GUID type.
 // There are two main binary encodings used for a GUID, the big-endian encoding,
 // and the Windows (mixed-endian) encoding. See here for details:
 // https://en.wikipedia.org/wiki/Universally_unique_identifier#Encoding
 package guid
 import (
 	"crypto/rand"
 	"crypto/sha1" //nolint:gosec // not used for secure application
 	"encoding"
 	"encoding/binary"
 	"fmt"
 	"strconv"
 )
 //go:generate go run golang.org/x/tools/cmd/stringer -type=Variant -trimprefix=Variant -linecomment
 // Variant specifies which GUID variant (or "type") of the GUID. It determines
 // how the entirety of the rest of the GUID is interpreted.
 type Variant uint8
 // The variants specified by RFC 4122 section 4.1.1.
 const (
 	// VariantUnknown specifies a GUID variant which does not conform to one of
 	// the variant encodings specified in RFC 4122.
 	VariantUnknown Variant = iota
 	VariantNCS
 	VariantRFC4122 // RFC 4122
 	VariantMicrosoft
 	VariantFuture
 )
 // Version specifies how the bits in the GUID were generated. For instance, a
 // version 4 GUID is randomly generated, and a version 5 is generated from the
 // hash of an input string.
 type Version uint8
 func (v Version) String() string {
 	return strconv.FormatUint(uint64(v), 10)
 }
 var _ = (encoding.TextMarshaler)(GUID{})
 var _ = (encoding.TextUnmarshaler)(&GUID{})
 // NewV4 returns a new version 4 (pseudorandom) GUID, as defined by RFC 4122.
 func NewV4() (GUID, error) {
 	var b [16]byte
 	if _, err := rand.Read(b[:]); err != nil {
 		return GUID{}, err
 	}
 	g := FromArray(b)
 	g.setVersion(4) // Version 4 means randomly generated.
 	g.setVariant(VariantRFC4122)
 	return g, nil
 }
 // NewV5 returns a new version 5 (generated from a string via SHA-1 hashing)
 // GUID, as defined by RFC 4122. The RFC is unclear on the encoding of the name,
 // and the sample code treats it as a series of bytes, so we do the same here.
 //
 // Some implementations, such as those found on Windows, treat the name as a
 // big-endian UTF16 stream of bytes. If that is desired, the string can be
 // encoded as such before being passed to this function.
 func NewV5(namespace GUID, name []byte) (GUID, error) {
 	b := sha1.New() //nolint:gosec // not used for secure application
 	namespaceBytes := namespace.ToArray()
 	b.Write(namespaceBytes[:])
 	b.Write(name)
 	a := [16]byte{}
 	copy(a[:], b.Sum(nil))
 	g := FromArray(a)
 	g.setVersion(5) // Version 5 means generated from a string.
 	g.setVariant(VariantRFC4122)
 	return g, nil
 }
 func fromArray(b [16]byte, order binary.ByteOrder) GUID {
 	var g GUID
 	g.Data1 = order.Uint32(b[0:4])
 	g.Data2 = order.Uint16(b[4:6])
 	g.Data3 = order.Uint16(b[6:8])
 	copy(g.Data4[:], b[8:16])
 	return g
 }
 func (g GUID) toArray(order binary.ByteOrder) [16]byte {
 	b := [16]byte{}
 	order.PutUint32(b[0:4], g.Data1)
 	order.PutUint16(b[4:6], g.Data2)
 	order.PutUint16(b[6:8], g.Data3)
 	copy(b[8:16], g.Data4[:])
 	return b
 }
 // FromArray constructs a GUID from a big-endian encoding array of 16 bytes.
 func FromArray(b [16]byte) GUID {
 	return fromArray(b, binary.BigEndian)
 }
 // ToArray returns an array of 16 bytes representing the GUID in big-endian
 // encoding.
 func (g GUID) ToArray() [16]byte {
 	return g.toArray(binary.BigEndian)
 }
 // FromWindowsArray constructs a GUID from a Windows encoding array of bytes.
 func FromWindowsArray(b [16]byte) GUID {
 	return fromArray(b, binary.LittleEndian)
 }
 // ToWindowsArray returns an array of 16 bytes representing the GUID in Windows
 // encoding.
 func (g GUID) ToWindowsArray() [16]byte {
 	return g.toArray(binary.LittleEndian)
 }
 func (g GUID) String() string {
 	return fmt.Sprintf(
 		"%08x-%04x-%04x-%04x-%012x",
 		g.Data1,
 		g.Data2,
 		g.Data3,
 		g.Data4[:2],
 		g.Data4[2:])
 }
 // FromString parses a string containing a GUID and returns the GUID. The only
 // format currently supported is the `xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx`
 // format.
 func FromString(s string) (GUID, error) {
 	if len(s) != 36 {
 		return GUID{}, fmt.Errorf("invalid GUID %q", s)
 	}
 	if s[8] != '-' || s[13] != '-' || s[18] != '-' || s[23] != '-' {
 		return GUID{}, fmt.Errorf("invalid GUID %q", s)
 	}
 	var g GUID
 	data1, err := strconv.ParseUint(s[0:8], 16, 32)
 	if err != nil {
 		return GUID{}, fmt.Errorf("invalid GUID %q", s)
 	}
 	g.Data1 = uint32(data1)
 	data2, err := strconv.ParseUint(s[9:13], 16, 16)
 	if err != nil {
 		return GUID{}, fmt.Errorf("invalid GUID %q", s)
 	}
 	g.Data2 = uint16(data2)
 	data3, err := strconv.ParseUint(s[14:18], 16, 16)
 	if err != nil {
 		return GUID{}, fmt.Errorf("invalid GUID %q", s)
 	}
 	g.Data3 = uint16(data3)
 	for i, x := range []int{19, 21, 24, 26, 28, 30, 32, 34} {
 		v, err := strconv.ParseUint(s[x:x+2], 16, 8)
 		if err != nil {
 			return GUID{}, fmt.Errorf("invalid GUID %q", s)
 		}
 		g.Data4[i] = uint8(v)
 	}
 	return g, nil
 }
 func (g *GUID) setVariant(v Variant) {
 	d := g.Data4[0]
 	switch v {
 	case VariantNCS:
 		d = (d & 0x7f)
 	case VariantRFC4122:
 		d = (d & 0x3f) | 0x80
 	case VariantMicrosoft:
 		d = (d & 0x1f) | 0xc0
 	case VariantFuture:
 		d = (d & 0x0f) | 0xe0
 	case VariantUnknown:
 		fallthrough
 	default:
 		panic(fmt.Sprintf("invalid variant: %d", v))
 	}
 	g.Data4[0] = d
 }
 // Variant returns the GUID variant, as defined in RFC 4122.
 func (g GUID) Variant() Variant {
 	b := g.Data4[0]
 	if b&0x80 == 0 {
 		return VariantNCS
 	} else if b&0xc0 == 0x80 {
 		return VariantRFC4122
 	} else if b&0xe0 == 0xc0 {
 		return VariantMicrosoft
 	} else if b&0xe0 == 0xe0 {
 		return VariantFuture
 	}
 	return VariantUnknown
 }
 func (g *GUID) setVersion(v Version) {
 	g.Data3 = (g.Data3 & 0x0fff) | (uint16(v) << 12)
 }
 // Version returns the GUID version, as defined in RFC 4122.
 func (g GUID) Version() Version {
 	return Version((g.Data3 & 0xF000) >> 12)
 }
 // MarshalText returns the textual representation of the GUID.
 func (g GUID) MarshalText() ([]byte, error) {
 	return []byte(g.String()), nil
 }
 // UnmarshalText takes the textual representation of a GUID, and unmarhals it
 // into this GUID.
 func (g *GUID) UnmarshalText(text []byte) error {
 	g2, err := FromString(string(text))
 	if err != nil {
 		return err
 	}
 	*g = g2
 	return nil
 }
--- a/vendor/github.com/Microsoft/go-winio/pkg/guid/guid_nonwindows.go
+++ b/vendor/github.com/Microsoft/go-winio/pkg/guid/guid_nonwindows.go
@ -0,0 +1,16 @@
 //go:build !windows
 // +build !windows
 package guid
 // GUID represents a GUID/UUID. It has the same structure as
 // golang.org/x/sys/windows.GUID so that it can be used with functions expecting
 // that type. It is defined as its own type as that is only available to builds
 // targeted at `windows`. The representation matches that used by native Windows
 // code.
 type GUID struct {
 	Data1 uint32
 	Data2 uint16
 	Data3 uint16
 	Data4 [8]byte
 }
--- a/vendor/github.com/Microsoft/go-winio/pkg/guid/guid_windows.go
+++ b/vendor/github.com/Microsoft/go-winio/pkg/guid/guid_windows.go
@ -0,0 +1,13 @@
 //go:build windows
 // +build windows
 package guid
 import "golang.org/x/sys/windows"
 // GUID represents a GUID/UUID. It has the same structure as
 // golang.org/x/sys/windows.GUID so that it can be used with functions expecting
 // that type. It is defined as its own type so that stringification and
 // marshaling can be supported. The representation matches that used by native
 // Windows code.
 type GUID windows.GUID
--- a/vendor/github.com/Microsoft/go-winio/pkg/guid/variant_string.go
+++ b/vendor/github.com/Microsoft/go-winio/pkg/guid/variant_string.go
@ -0,0 +1,27 @@
 // Code generated by "stringer -type=Variant -trimprefix=Variant -linecomment"; DO NOT EDIT.
 package guid
 import "strconv"
 func _() {
 	// An "invalid array index" compiler error signifies that the constant values have changed.
 	// Re-run the stringer command to generate them again.
 	var x [1]struct{}
 	_ = x[VariantUnknown-0]
 	_ = x[VariantNCS-1]
 	_ = x[VariantRFC4122-2]
 	_ = x[VariantMicrosoft-3]
 	_ = x[VariantFuture-4]
 }
 const _Variant_name = "UnknownNCSRFC 4122MicrosoftFuture"
 var _Variant_index = [...]uint8{0, 7, 10, 18, 27, 33}
 func (i Variant) String() string {
 	if i >= Variant(len(_Variant_index)-1) {
 		return "Variant(" + strconv.FormatInt(int64(i), 10) + ")"
 	}
 	return _Variant_name[_Variant_index[i]:_Variant_index[i+1]]
 }
--- a/vendor/github.com/Microsoft/go-winio/privilege.go
+++ b/vendor/github.com/Microsoft/go-winio/privilege.go
@ -0,0 +1,197 @@
 //go:build windows
 // +build windows
 package winio
 import (
 	"bytes"
 	"encoding/binary"
 	"fmt"
 	"runtime"
 	"sync"
 	"syscall"
 	"unicode/utf16"
 	"golang.org/x/sys/windows"
 )
 //sys adjustTokenPrivileges(token windows.Token, releaseAll bool, input *byte, outputSize uint32, output *byte, requiredSize *uint32) (success bool, err error) [true] = advapi32.AdjustTokenPrivileges
 //sys impersonateSelf(level uint32) (err error) = advapi32.ImpersonateSelf
 //sys revertToSelf() (err error) = advapi32.RevertToSelf
 //sys openThreadToken(thread syscall.Handle, accessMask uint32, openAsSelf bool, token *windows.Token) (err error) = advapi32.OpenThreadToken
 //sys getCurrentThread() (h syscall.Handle) = GetCurrentThread
 //sys lookupPrivilegeValue(systemName string, name string, luid *uint64) (err error) = advapi32.LookupPrivilegeValueW
 //sys lookupPrivilegeName(systemName string, luid *uint64, buffer *uint16, size *uint32) (err error) = advapi32.LookupPrivilegeNameW
 //sys lookupPrivilegeDisplayName(systemName string, name *uint16, buffer *uint16, size *uint32, languageId *uint32) (err error) = advapi32.LookupPrivilegeDisplayNameW
 const (
 	//revive:disable-next-line:var-naming ALL_CAPS
 	SE_PRIVILEGE_ENABLED = windows.SE_PRIVILEGE_ENABLED
 	//revive:disable-next-line:var-naming ALL_CAPS
 	ERROR_NOT_ALL_ASSIGNED syscall.Errno = windows.ERROR_NOT_ALL_ASSIGNED
 	SeBackupPrivilege   = "SeBackupPrivilege"
 	SeRestorePrivilege  = "SeRestorePrivilege"
 	SeSecurityPrivilege = "SeSecurityPrivilege"
 )
 var (
 	privNames     = make(map[string]uint64)
 	privNameMutex sync.Mutex
 )
 // PrivilegeError represents an error enabling privileges.
 type PrivilegeError struct {
 	privileges []uint64
 }
 func (e *PrivilegeError) Error() string {
 	s := "Could not enable privilege "
 	if len(e.privileges) > 1 {
 		s = "Could not enable privileges "
 	}
 	for i, p := range e.privileges {
 		if i != 0 {
 			s += ", "
 		}
 		s += `"`
 		s += getPrivilegeName(p)
 		s += `"`
 	}
 	return s
 }
 // RunWithPrivilege enables a single privilege for a function call.
 func RunWithPrivilege(name string, fn func() error) error {
 	return RunWithPrivileges([]string{name}, fn)
 }
 // RunWithPrivileges enables privileges for a function call.
 func RunWithPrivileges(names []string, fn func() error) error {
 	privileges, err := mapPrivileges(names)
 	if err != nil {
 		return err
 	}
 	runtime.LockOSThread()
 	defer runtime.UnlockOSThread()
 	token, err := newThreadToken()
 	if err != nil {
 		return err
 	}
 	defer releaseThreadToken(token)
 	err = adjustPrivileges(token, privileges, SE_PRIVILEGE_ENABLED)
 	if err != nil {
 		return err
 	}
 	return fn()
 }
 func mapPrivileges(names []string) ([]uint64, error) {
 	privileges := make([]uint64, 0, len(names))
 	privNameMutex.Lock()
 	defer privNameMutex.Unlock()
 	for _, name := range names {
 		p, ok := privNames[name]
 		if !ok {
 			err := lookupPrivilegeValue("", name, &p)
 			if err != nil {
 				return nil, err
 			}
 			privNames[name] = p
 		}
 		privileges = append(privileges, p)
 	}
 	return privileges, nil
 }
 // EnableProcessPrivileges enables privileges globally for the process.
 func EnableProcessPrivileges(names []string) error {
 	return enableDisableProcessPrivilege(names, SE_PRIVILEGE_ENABLED)
 }
 // DisableProcessPrivileges disables privileges globally for the process.
 func DisableProcessPrivileges(names []string) error {
 	return enableDisableProcessPrivilege(names, 0)
 }
 func enableDisableProcessPrivilege(names []string, action uint32) error {
 	privileges, err := mapPrivileges(names)
 	if err != nil {
 		return err
 	}
 	p := windows.CurrentProcess()
 	var token windows.Token
 	err = windows.OpenProcessToken(p, windows.TOKEN_ADJUST_PRIVILEGES|windows.TOKEN_QUERY, &token)
 	if err != nil {
 		return err
 	}
 	defer token.Close()
 	return adjustPrivileges(token, privileges, action)
 }
 func adjustPrivileges(token windows.Token, privileges []uint64, action uint32) error {
 	var b bytes.Buffer
 	_ = binary.Write(&b, binary.LittleEndian, uint32(len(privileges)))
 	for _, p := range privileges {
 		_ = binary.Write(&b, binary.LittleEndian, p)
 		_ = binary.Write(&b, binary.LittleEndian, action)
 	}
 	prevState := make([]byte, b.Len())
 	reqSize := uint32(0)
 	success, err := adjustTokenPrivileges(token, false, &b.Bytes()[0], uint32(len(prevState)), &prevState[0], &reqSize)
 	if !success {
 		return err
 	}
 	if err == ERROR_NOT_ALL_ASSIGNED { //nolint:errorlint // err is Errno
 		return &PrivilegeError{privileges}
 	}
 	return nil
 }
 func getPrivilegeName(luid uint64) string {
 	var nameBuffer [256]uint16
 	bufSize := uint32(len(nameBuffer))
 	err := lookupPrivilegeName("", &luid, &nameBuffer[0], &bufSize)
 	if err != nil {
 		return fmt.Sprintf("<unknown privilege %d>", luid)
 	}
 	var displayNameBuffer [256]uint16
 	displayBufSize := uint32(len(displayNameBuffer))
 	var langID uint32
 	err = lookupPrivilegeDisplayName("", &nameBuffer[0], &displayNameBuffer[0], &displayBufSize, &langID)
 	if err != nil {
 		return fmt.Sprintf("<unknown privilege %s>", string(utf16.Decode(nameBuffer[:bufSize])))
 	}
 	return string(utf16.Decode(displayNameBuffer[:displayBufSize]))
 }
 func newThreadToken() (windows.Token, error) {
 	err := impersonateSelf(windows.SecurityImpersonation)
 	if err != nil {
 		return 0, err
 	}
 	var token windows.Token
 	err = openThreadToken(getCurrentThread(), syscall.TOKEN_ADJUST_PRIVILEGES|syscall.TOKEN_QUERY, false, &token)
 	if err != nil {
 		rerr := revertToSelf()
 		if rerr != nil {
 			panic(rerr)
 		}
 		return 0, err
 	}
 	return token, nil
 }
 func releaseThreadToken(h windows.Token) {
 	err := revertToSelf()
 	if err != nil {
 		panic(err)
 	}
 	h.Close()
 }
--- a/vendor/github.com/Microsoft/go-winio/reparse.go
+++ b/vendor/github.com/Microsoft/go-winio/reparse.go
@ -0,0 +1,131 @@
 //go:build windows
 // +build windows
 package winio
 import (
 	"bytes"
 	"encoding/binary"
 	"fmt"
 	"strings"
 	"unicode/utf16"
 	"unsafe"
 )
 const (
 	reparseTagMountPoint = 0xA0000003
 	reparseTagSymlink    = 0xA000000C
 )
 type reparseDataBuffer struct {
 	ReparseTag           uint32
 	ReparseDataLength    uint16
 	Reserved             uint16
 	SubstituteNameOffset uint16
 	SubstituteNameLength uint16
 	PrintNameOffset      uint16
 	PrintNameLength      uint16
 }
 // ReparsePoint describes a Win32 symlink or mount point.
 type ReparsePoint struct {
 	Target       string
 	IsMountPoint bool
 }
 // UnsupportedReparsePointError is returned when trying to decode a non-symlink or
 // mount point reparse point.
 type UnsupportedReparsePointError struct {
 	Tag uint32
 }
 func (e *UnsupportedReparsePointError) Error() string {
 	return fmt.Sprintf("unsupported reparse point %x", e.Tag)
 }
 // DecodeReparsePoint decodes a Win32 REPARSE_DATA_BUFFER structure containing either a symlink
 // or a mount point.
 func DecodeReparsePoint(b []byte) (*ReparsePoint, error) {
 	tag := binary.LittleEndian.Uint32(b[0:4])
 	return DecodeReparsePointData(tag, b[8:])
 }
 func DecodeReparsePointData(tag uint32, b []byte) (*ReparsePoint, error) {
 	isMountPoint := false
 	switch tag {
 	case reparseTagMountPoint:
 		isMountPoint = true
 	case reparseTagSymlink:
 	default:
 		return nil, &UnsupportedReparsePointError{tag}
 	}
 	nameOffset := 8 + binary.LittleEndian.Uint16(b[4:6])
 	if !isMountPoint {
 		nameOffset += 4
 	}
 	nameLength := binary.LittleEndian.Uint16(b[6:8])
 	name := make([]uint16, nameLength/2)
 	err := binary.Read(bytes.NewReader(b[nameOffset:nameOffset+nameLength]), binary.LittleEndian, &name)
 	if err != nil {
 		return nil, err
 	}
 	return &ReparsePoint{string(utf16.Decode(name)), isMountPoint}, nil
 }
 func isDriveLetter(c byte) bool {
 	return (c >= 'a' && c <= 'z') || (c >= 'A' && c <= 'Z')
 }
 // EncodeReparsePoint encodes a Win32 REPARSE_DATA_BUFFER structure describing a symlink or
 // mount point.
 func EncodeReparsePoint(rp *ReparsePoint) []byte {
 	// Generate an NT path and determine if this is a relative path.
 	var ntTarget string
 	relative := false
 	if strings.HasPrefix(rp.Target, `\\?\`) {
 		ntTarget = `\??\` + rp.Target[4:]
 	} else if strings.HasPrefix(rp.Target, `\\`) {
 		ntTarget = `\??\UNC\` + rp.Target[2:]
 	} else if len(rp.Target) >= 2 && isDriveLetter(rp.Target[0]) && rp.Target[1] == ':' {
 		ntTarget = `\??\` + rp.Target
 	} else {
 		ntTarget = rp.Target
 		relative = true
 	}
 	// The paths must be NUL-terminated even though they are counted strings.
 	target16 := utf16.Encode([]rune(rp.Target + "\x00"))
 	ntTarget16 := utf16.Encode([]rune(ntTarget + "\x00"))
 	size := int(unsafe.Sizeof(reparseDataBuffer{})) - 8
 	size += len(ntTarget16)*2 + len(target16)*2
 	tag := uint32(reparseTagMountPoint)
 	if !rp.IsMountPoint {
 		tag = reparseTagSymlink
 		size += 4 // Add room for symlink flags
 	}
 	data := reparseDataBuffer{
 		ReparseTag:           tag,
 		ReparseDataLength:    uint16(size),
 		SubstituteNameOffset: 0,
 		SubstituteNameLength: uint16((len(ntTarget16) - 1) * 2),
 		PrintNameOffset:      uint16(len(ntTarget16) * 2),
 		PrintNameLength:      uint16((len(target16) - 1) * 2),
 	}
 	var b bytes.Buffer
 	_ = binary.Write(&b, binary.LittleEndian, &data)
 	if !rp.IsMountPoint {
 		flags := uint32(0)
 		if relative {
 			flags |= 1
 		}
 		_ = binary.Write(&b, binary.LittleEndian, flags)
 	}
 	_ = binary.Write(&b, binary.LittleEndian, ntTarget16)
 	_ = binary.Write(&b, binary.LittleEndian, target16)
 	return b.Bytes()
 }
--- a/vendor/github.com/Microsoft/go-winio/sd.go
+++ b/vendor/github.com/Microsoft/go-winio/sd.go
@ -0,0 +1,144 @@
 //go:build windows
 // +build windows
 package winio
 import (
 	"errors"
 	"syscall"
 	"unsafe"
 	"golang.org/x/sys/windows"
 )
 //sys lookupAccountName(systemName *uint16, accountName string, sid *byte, sidSize *uint32, refDomain *uint16, refDomainSize *uint32, sidNameUse *uint32) (err error) = advapi32.LookupAccountNameW
 //sys lookupAccountSid(systemName *uint16, sid *byte, name *uint16, nameSize *uint32, refDomain *uint16, refDomainSize *uint32, sidNameUse *uint32) (err error) = advapi32.LookupAccountSidW
 //sys convertSidToStringSid(sid *byte, str **uint16) (err error) = advapi32.ConvertSidToStringSidW
 //sys convertStringSidToSid(str *uint16, sid **byte) (err error) = advapi32.ConvertStringSidToSidW
 //sys convertStringSecurityDescriptorToSecurityDescriptor(str string, revision uint32, sd *uintptr, size *uint32) (err error) = advapi32.ConvertStringSecurityDescriptorToSecurityDescriptorW
 //sys convertSecurityDescriptorToStringSecurityDescriptor(sd *byte, revision uint32, secInfo uint32, sddl **uint16, sddlSize *uint32) (err error) = advapi32.ConvertSecurityDescriptorToStringSecurityDescriptorW
 //sys localFree(mem uintptr) = LocalFree
 //sys getSecurityDescriptorLength(sd uintptr) (len uint32) = advapi32.GetSecurityDescriptorLength
 type AccountLookupError struct {
 	Name string
 	Err  error
 }
 func (e *AccountLookupError) Error() string {
 	if e.Name == "" {
 		return "lookup account: empty account name specified"
 	}
 	var s string
 	switch {
 	case errors.Is(e.Err, windows.ERROR_INVALID_SID):
 		s = "the security ID structure is invalid"
 	case errors.Is(e.Err, windows.ERROR_NONE_MAPPED):
 		s = "not found"
 	default:
 		s = e.Err.Error()
 	}
 	return "lookup account " + e.Name + ": " + s
 }
 func (e *AccountLookupError) Unwrap() error { return e.Err }
 type SddlConversionError struct {
 	Sddl string
 	Err  error
 }
 func (e *SddlConversionError) Error() string {
 	return "convert " + e.Sddl + ": " + e.Err.Error()
 }
 func (e *SddlConversionError) Unwrap() error { return e.Err }
 // LookupSidByName looks up the SID of an account by name
 //
 //revive:disable-next-line:var-naming SID, not Sid
 func LookupSidByName(name string) (sid string, err error) {
 	if name == "" {
 		return "", &AccountLookupError{name, windows.ERROR_NONE_MAPPED}
 	}
 	var sidSize, sidNameUse, refDomainSize uint32
 	err = lookupAccountName(nil, name, nil, &sidSize, nil, &refDomainSize, &sidNameUse)
 	if err != nil && err != syscall.ERROR_INSUFFICIENT_BUFFER { //nolint:errorlint // err is Errno
 		return "", &AccountLookupError{name, err}
 	}
 	sidBuffer := make([]byte, sidSize)
 	refDomainBuffer := make([]uint16, refDomainSize)
 	err = lookupAccountName(nil, name, &sidBuffer[0], &sidSize, &refDomainBuffer[0], &refDomainSize, &sidNameUse)
 	if err != nil {
 		return "", &AccountLookupError{name, err}
 	}
 	var strBuffer *uint16
 	err = convertSidToStringSid(&sidBuffer[0], &strBuffer)
 	if err != nil {
 		return "", &AccountLookupError{name, err}
 	}
 	sid = syscall.UTF16ToString((*[0xffff]uint16)(unsafe.Pointer(strBuffer))[:])
 	localFree(uintptr(unsafe.Pointer(strBuffer)))
 	return sid, nil
 }
 // LookupNameBySid looks up the name of an account by SID
 //
 //revive:disable-next-line:var-naming SID, not Sid
 func LookupNameBySid(sid string) (name string, err error) {
 	if sid == "" {
 		return "", &AccountLookupError{sid, windows.ERROR_NONE_MAPPED}
 	}
 	sidBuffer, err := windows.UTF16PtrFromString(sid)
 	if err != nil {
 		return "", &AccountLookupError{sid, err}
 	}
 	var sidPtr *byte
 	if err = convertStringSidToSid(sidBuffer, &sidPtr); err != nil {
 		return "", &AccountLookupError{sid, err}
 	}
 	defer localFree(uintptr(unsafe.Pointer(sidPtr)))
 	var nameSize, refDomainSize, sidNameUse uint32
 	err = lookupAccountSid(nil, sidPtr, nil, &nameSize, nil, &refDomainSize, &sidNameUse)
 	if err != nil && err != windows.ERROR_INSUFFICIENT_BUFFER { //nolint:errorlint // err is Errno
 		return "", &AccountLookupError{sid, err}
 	}
 	nameBuffer := make([]uint16, nameSize)
 	refDomainBuffer := make([]uint16, refDomainSize)
 	err = lookupAccountSid(nil, sidPtr, &nameBuffer[0], &nameSize, &refDomainBuffer[0], &refDomainSize, &sidNameUse)
 	if err != nil {
 		return "", &AccountLookupError{sid, err}
 	}
 	name = windows.UTF16ToString(nameBuffer)
 	return name, nil
 }
 func SddlToSecurityDescriptor(sddl string) ([]byte, error) {
 	var sdBuffer uintptr
 	err := convertStringSecurityDescriptorToSecurityDescriptor(sddl, 1, &sdBuffer, nil)
 	if err != nil {
 		return nil, &SddlConversionError{sddl, err}
 	}
 	defer localFree(sdBuffer)
 	sd := make([]byte, getSecurityDescriptorLength(sdBuffer))
 	copy(sd, (*[0xffff]byte)(unsafe.Pointer(sdBuffer))[:len(sd)])
 	return sd, nil
 }
 func SecurityDescriptorToSddl(sd []byte) (string, error) {
 	var sddl *uint16
 	// The returned string length seems to include an arbitrary number of terminating NULs.
 	// Don't use it.
 	err := convertSecurityDescriptorToStringSecurityDescriptor(&sd[0], 1, 0xff, &sddl, nil)
 	if err != nil {
 		return "", err
 	}
 	defer localFree(uintptr(unsafe.Pointer(sddl)))
 	return syscall.UTF16ToString((*[0xffff]uint16)(unsafe.Pointer(sddl))[:]), nil
 }
--- a/vendor/github.com/Microsoft/go-winio/syscall.go
+++ b/vendor/github.com/Microsoft/go-winio/syscall.go
@ -0,0 +1,5 @@
 //go:build windows
 package winio
 //go:generate go run github.com/Microsoft/go-winio/tools/mkwinsyscall -output zsyscall_windows.go ./*.go
--- a/vendor/github.com/Microsoft/go-winio/tools.go
+++ b/vendor/github.com/Microsoft/go-winio/tools.go
@ -0,0 +1,5 @@
 //go:build tools
 package winio
 import _ "golang.org/x/tools/cmd/stringer"
--- a/vendor/github.com/Microsoft/go-winio/zsyscall_windows.go
+++ b/vendor/github.com/Microsoft/go-winio/zsyscall_windows.go
@ -0,0 +1,419 @@
 //go:build windows
 // Code generated by 'go generate' using "github.com/Microsoft/go-winio/tools/mkwinsyscall"; DO NOT EDIT.
 package winio
 import (
 	"syscall"
 	"unsafe"
 	"golang.org/x/sys/windows"
 )
 var _ unsafe.Pointer
 // Do the interface allocations only once for common
 // Errno values.
 const (
 	errnoERROR_IO_PENDING = 997
 )
 var (
 	errERROR_IO_PENDING error = syscall.Errno(errnoERROR_IO_PENDING)
 	errERROR_EINVAL     error = syscall.EINVAL
 )
 // errnoErr returns common boxed Errno values, to prevent
 // allocations at runtime.
 func errnoErr(e syscall.Errno) error {
 	switch e {
 	case 0:
 		return errERROR_EINVAL
 	case errnoERROR_IO_PENDING:
 		return errERROR_IO_PENDING
 	}
 	// TODO: add more here, after collecting data on the common
 	// error values see on Windows. (perhaps when running
 	// all.bat?)
 	return e
 }
 var (
 	modadvapi32 = windows.NewLazySystemDLL("advapi32.dll")
 	modkernel32 = windows.NewLazySystemDLL("kernel32.dll")
 	modntdll    = windows.NewLazySystemDLL("ntdll.dll")
 	modws2_32   = windows.NewLazySystemDLL("ws2_32.dll")
 	procAdjustTokenPrivileges                                = modadvapi32.NewProc("AdjustTokenPrivileges")
 	procConvertSecurityDescriptorToStringSecurityDescriptorW = modadvapi32.NewProc("ConvertSecurityDescriptorToStringSecurityDescriptorW")
 	procConvertSidToStringSidW                               = modadvapi32.NewProc("ConvertSidToStringSidW")
 	procConvertStringSecurityDescriptorToSecurityDescriptorW = modadvapi32.NewProc("ConvertStringSecurityDescriptorToSecurityDescriptorW")
 	procConvertStringSidToSidW                               = modadvapi32.NewProc("ConvertStringSidToSidW")
 	procGetSecurityDescriptorLength                          = modadvapi32.NewProc("GetSecurityDescriptorLength")
 	procImpersonateSelf                                      = modadvapi32.NewProc("ImpersonateSelf")
 	procLookupAccountNameW                                   = modadvapi32.NewProc("LookupAccountNameW")
 	procLookupAccountSidW                                    = modadvapi32.NewProc("LookupAccountSidW")
 	procLookupPrivilegeDisplayNameW                          = modadvapi32.NewProc("LookupPrivilegeDisplayNameW")
 	procLookupPrivilegeNameW                                 = modadvapi32.NewProc("LookupPrivilegeNameW")
 	procLookupPrivilegeValueW                                = modadvapi32.NewProc("LookupPrivilegeValueW")
 	procOpenThreadToken                                      = modadvapi32.NewProc("OpenThreadToken")
 	procRevertToSelf                                         = modadvapi32.NewProc("RevertToSelf")
 	procBackupRead                                           = modkernel32.NewProc("BackupRead")
 	procBackupWrite                                          = modkernel32.NewProc("BackupWrite")
 	procCancelIoEx                                           = modkernel32.NewProc("CancelIoEx")
 	procConnectNamedPipe                                     = modkernel32.NewProc("ConnectNamedPipe")
 	procCreateIoCompletionPort                               = modkernel32.NewProc("CreateIoCompletionPort")
 	procCreateNamedPipeW                                     = modkernel32.NewProc("CreateNamedPipeW")
 	procGetCurrentThread                                     = modkernel32.NewProc("GetCurrentThread")
 	procGetNamedPipeHandleStateW                             = modkernel32.NewProc("GetNamedPipeHandleStateW")
 	procGetNamedPipeInfo                                     = modkernel32.NewProc("GetNamedPipeInfo")
 	procGetQueuedCompletionStatus                            = modkernel32.NewProc("GetQueuedCompletionStatus")
 	procLocalAlloc                                           = modkernel32.NewProc("LocalAlloc")
 	procLocalFree                                            = modkernel32.NewProc("LocalFree")
 	procSetFileCompletionNotificationModes                   = modkernel32.NewProc("SetFileCompletionNotificationModes")
 	procNtCreateNamedPipeFile                                = modntdll.NewProc("NtCreateNamedPipeFile")
 	procRtlDefaultNpAcl                                      = modntdll.NewProc("RtlDefaultNpAcl")
 	procRtlDosPathNameToNtPathName_U                         = modntdll.NewProc("RtlDosPathNameToNtPathName_U")
 	procRtlNtStatusToDosErrorNoTeb                           = modntdll.NewProc("RtlNtStatusToDosErrorNoTeb")
 	procWSAGetOverlappedResult                               = modws2_32.NewProc("WSAGetOverlappedResult")
 )
 func adjustTokenPrivileges(token windows.Token, releaseAll bool, input *byte, outputSize uint32, output *byte, requiredSize *uint32) (success bool, err error) {
 	var _p0 uint32
 	if releaseAll {
 		_p0 = 1
 	}
 	r0, _, e1 := syscall.Syscall6(procAdjustTokenPrivileges.Addr(), 6, uintptr(token), uintptr(_p0), uintptr(unsafe.Pointer(input)), uintptr(outputSize), uintptr(unsafe.Pointer(output)), uintptr(unsafe.Pointer(requiredSize)))
 	success = r0 != 0
 	if true {
 		err = errnoErr(e1)
 	}
 	return
 }
 func convertSecurityDescriptorToStringSecurityDescriptor(sd *byte, revision uint32, secInfo uint32, sddl **uint16, sddlSize *uint32) (err error) {
 	r1, _, e1 := syscall.Syscall6(procConvertSecurityDescriptorToStringSecurityDescriptorW.Addr(), 5, uintptr(unsafe.Pointer(sd)), uintptr(revision), uintptr(secInfo), uintptr(unsafe.Pointer(sddl)), uintptr(unsafe.Pointer(sddlSize)), 0)
 	if r1 == 0 {
 		err = errnoErr(e1)
 	}
 	return
 }
 func convertSidToStringSid(sid *byte, str **uint16) (err error) {
 	r1, _, e1 := syscall.Syscall(procConvertSidToStringSidW.Addr(), 2, uintptr(unsafe.Pointer(sid)), uintptr(unsafe.Pointer(str)), 0)
 	if r1 == 0 {
 		err = errnoErr(e1)
 	}
 	return
 }
 func convertStringSecurityDescriptorToSecurityDescriptor(str string, revision uint32, sd *uintptr, size *uint32) (err error) {
 	var _p0 *uint16
 	_p0, err = syscall.UTF16PtrFromString(str)
 	if err != nil {
 		return
 	}
 	return _convertStringSecurityDescriptorToSecurityDescriptor(_p0, revision, sd, size)
 }
 func _convertStringSecurityDescriptorToSecurityDescriptor(str *uint16, revision uint32, sd *uintptr, size *uint32) (err error) {
 	r1, _, e1 := syscall.Syscall6(procConvertStringSecurityDescriptorToSecurityDescriptorW.Addr(), 4, uintptr(unsafe.Pointer(str)), uintptr(revision), uintptr(unsafe.Pointer(sd)), uintptr(unsafe.Pointer(size)), 0, 0)
 	if r1 == 0 {
 		err = errnoErr(e1)
 	}
 	return
 }
 func convertStringSidToSid(str *uint16, sid **byte) (err error) {
 	r1, _, e1 := syscall.Syscall(procConvertStringSidToSidW.Addr(), 2, uintptr(unsafe.Pointer(str)), uintptr(unsafe.Pointer(sid)), 0)
 	if r1 == 0 {
 		err = errnoErr(e1)
 	}
 	return
 }
 func getSecurityDescriptorLength(sd uintptr) (len uint32) {
 	r0, _, _ := syscall.Syscall(procGetSecurityDescriptorLength.Addr(), 1, uintptr(sd), 0, 0)
 	len = uint32(r0)
 	return
 }
 func impersonateSelf(level uint32) (err error) {
 	r1, _, e1 := syscall.Syscall(procImpersonateSelf.Addr(), 1, uintptr(level), 0, 0)
 	if r1 == 0 {
 		err = errnoErr(e1)
 	}
 	return
 }
 func lookupAccountName(systemName *uint16, accountName string, sid *byte, sidSize *uint32, refDomain *uint16, refDomainSize *uint32, sidNameUse *uint32) (err error) {
 	var _p0 *uint16
 	_p0, err = syscall.UTF16PtrFromString(accountName)
 	if err != nil {
 		return
 	}
 	return _lookupAccountName(systemName, _p0, sid, sidSize, refDomain, refDomainSize, sidNameUse)
 }
 func _lookupAccountName(systemName *uint16, accountName *uint16, sid *byte, sidSize *uint32, refDomain *uint16, refDomainSize *uint32, sidNameUse *uint32) (err error) {
 	r1, _, e1 := syscall.Syscall9(procLookupAccountNameW.Addr(), 7, uintptr(unsafe.Pointer(systemName)), uintptr(unsafe.Pointer(accountName)), uintptr(unsafe.Pointer(sid)), uintptr(unsafe.Pointer(sidSize)), uintptr(unsafe.Pointer(refDomain)), uintptr(unsafe.Pointer(refDomainSize)), uintptr(unsafe.Pointer(sidNameUse)), 0, 0)
 	if r1 == 0 {
 		err = errnoErr(e1)
 	}
 	return
 }
 func lookupAccountSid(systemName *uint16, sid *byte, name *uint16, nameSize *uint32, refDomain *uint16, refDomainSize *uint32, sidNameUse *uint32) (err error) {
 	r1, _, e1 := syscall.Syscall9(procLookupAccountSidW.Addr(), 7, uintptr(unsafe.Pointer(systemName)), uintptr(unsafe.Pointer(sid)), uintptr(unsafe.Pointer(name)), uintptr(unsafe.Pointer(nameSize)), uintptr(unsafe.Pointer(refDomain)), uintptr(unsafe.Pointer(refDomainSize)), uintptr(unsafe.Pointer(sidNameUse)), 0, 0)
 	if r1 == 0 {
 		err = errnoErr(e1)
 	}
 	return
 }
 func lookupPrivilegeDisplayName(systemName string, name *uint16, buffer *uint16, size *uint32, languageId *uint32) (err error) {
 	var _p0 *uint16
 	_p0, err = syscall.UTF16PtrFromString(systemName)
 	if err != nil {
 		return
 	}
 	return _lookupPrivilegeDisplayName(_p0, name, buffer, size, languageId)
 }
 func _lookupPrivilegeDisplayName(systemName *uint16, name *uint16, buffer *uint16, size *uint32, languageId *uint32) (err error) {
 	r1, _, e1 := syscall.Syscall6(procLookupPrivilegeDisplayNameW.Addr(), 5, uintptr(unsafe.Pointer(systemName)), uintptr(unsafe.Pointer(name)), uintptr(unsafe.Pointer(buffer)), uintptr(unsafe.Pointer(size)), uintptr(unsafe.Pointer(languageId)), 0)
 	if r1 == 0 {
 		err = errnoErr(e1)
 	}
 	return
 }
 func lookupPrivilegeName(systemName string, luid *uint64, buffer *uint16, size *uint32) (err error) {
 	var _p0 *uint16
 	_p0, err = syscall.UTF16PtrFromString(systemName)
 	if err != nil {
 		return
 	}
 	return _lookupPrivilegeName(_p0, luid, buffer, size)
 }
 func _lookupPrivilegeName(systemName *uint16, luid *uint64, buffer *uint16, size *uint32) (err error) {
 	r1, _, e1 := syscall.Syscall6(procLookupPrivilegeNameW.Addr(), 4, uintptr(unsafe.Pointer(systemName)), uintptr(unsafe.Pointer(luid)), uintptr(unsafe.Pointer(buffer)), uintptr(unsafe.Pointer(size)), 0, 0)
 	if r1 == 0 {
 		err = errnoErr(e1)
 	}
 	return
 }
 func lookupPrivilegeValue(systemName string, name string, luid *uint64) (err error) {
 	var _p0 *uint16
 	_p0, err = syscall.UTF16PtrFromString(systemName)
 	if err != nil {
 		return
 	}
 	var _p1 *uint16
 	_p1, err = syscall.UTF16PtrFromString(name)
 	if err != nil {
 		return
 	}
 	return _lookupPrivilegeValue(_p0, _p1, luid)
 }
 func _lookupPrivilegeValue(systemName *uint16, name *uint16, luid *uint64) (err error) {
 	r1, _, e1 := syscall.Syscall(procLookupPrivilegeValueW.Addr(), 3, uintptr(unsafe.Pointer(systemName)), uintptr(unsafe.Pointer(name)), uintptr(unsafe.Pointer(luid)))
 	if r1 == 0 {
 		err = errnoErr(e1)
 	}
 	return
 }
 func openThreadToken(thread syscall.Handle, accessMask uint32, openAsSelf bool, token *windows.Token) (err error) {
 	var _p0 uint32
 	if openAsSelf {
 		_p0 = 1
 	}
 	r1, _, e1 := syscall.Syscall6(procOpenThreadToken.Addr(), 4, uintptr(thread), uintptr(accessMask), uintptr(_p0), uintptr(unsafe.Pointer(token)), 0, 0)
 	if r1 == 0 {
 		err = errnoErr(e1)
 	}
 	return
 }
 func revertToSelf() (err error) {
 	r1, _, e1 := syscall.Syscall(procRevertToSelf.Addr(), 0, 0, 0, 0)
 	if r1 == 0 {
 		err = errnoErr(e1)
 	}
 	return
 }
 func backupRead(h syscall.Handle, b []byte, bytesRead *uint32, abort bool, processSecurity bool, context *uintptr) (err error) {
 	var _p0 *byte
 	if len(b) > 0 {
 		_p0 = &b[0]
 	}
 	var _p1 uint32
 	if abort {
 		_p1 = 1
 	}
 	var _p2 uint32
 	if processSecurity {
 		_p2 = 1
 	}
 	r1, _, e1 := syscall.Syscall9(procBackupRead.Addr(), 7, uintptr(h), uintptr(unsafe.Pointer(_p0)), uintptr(len(b)), uintptr(unsafe.Pointer(bytesRead)), uintptr(_p1), uintptr(_p2), uintptr(unsafe.Pointer(context)), 0, 0)
 	if r1 == 0 {
 		err = errnoErr(e1)
 	}
 	return
 }
 func backupWrite(h syscall.Handle, b []byte, bytesWritten *uint32, abort bool, processSecurity bool, context *uintptr) (err error) {
 	var _p0 *byte
 	if len(b) > 0 {
 		_p0 = &b[0]
 	}
 	var _p1 uint32
 	if abort {
 		_p1 = 1
 	}
 	var _p2 uint32
 	if processSecurity {
 		_p2 = 1
 	}
 	r1, _, e1 := syscall.Syscall9(procBackupWrite.Addr(), 7, uintptr(h), uintptr(unsafe.Pointer(_p0)), uintptr(len(b)), uintptr(unsafe.Pointer(bytesWritten)), uintptr(_p1), uintptr(_p2), uintptr(unsafe.Pointer(context)), 0, 0)
 	if r1 == 0 {
 		err = errnoErr(e1)
 	}
 	return
 }
 func cancelIoEx(file syscall.Handle, o *syscall.Overlapped) (err error) {
 	r1, _, e1 := syscall.Syscall(procCancelIoEx.Addr(), 2, uintptr(file), uintptr(unsafe.Pointer(o)), 0)
 	if r1 == 0 {
 		err = errnoErr(e1)
 	}
 	return
 }
 func connectNamedPipe(pipe syscall.Handle, o *syscall.Overlapped) (err error) {
 	r1, _, e1 := syscall.Syscall(procConnectNamedPipe.Addr(), 2, uintptr(pipe), uintptr(unsafe.Pointer(o)), 0)
 	if r1 == 0 {
 		err = errnoErr(e1)
 	}
 	return
 }
 func createIoCompletionPort(file syscall.Handle, port syscall.Handle, key uintptr, threadCount uint32) (newport syscall.Handle, err error) {
 	r0, _, e1 := syscall.Syscall6(procCreateIoCompletionPort.Addr(), 4, uintptr(file), uintptr(port), uintptr(key), uintptr(threadCount), 0, 0)
 	newport = syscall.Handle(r0)
 	if newport == 0 {
 		err = errnoErr(e1)
 	}
 	return
 }
 func createNamedPipe(name string, flags uint32, pipeMode uint32, maxInstances uint32, outSize uint32, inSize uint32, defaultTimeout uint32, sa *syscall.SecurityAttributes) (handle syscall.Handle, err error) {
 	var _p0 *uint16
 	_p0, err = syscall.UTF16PtrFromString(name)
 	if err != nil {
 		return
 	}
 	return _createNamedPipe(_p0, flags, pipeMode, maxInstances, outSize, inSize, defaultTimeout, sa)
 }
 func _createNamedPipe(name *uint16, flags uint32, pipeMode uint32, maxInstances uint32, outSize uint32, inSize uint32, defaultTimeout uint32, sa *syscall.SecurityAttributes) (handle syscall.Handle, err error) {
 	r0, _, e1 := syscall.Syscall9(procCreateNamedPipeW.Addr(), 8, uintptr(unsafe.Pointer(name)), uintptr(flags), uintptr(pipeMode), uintptr(maxInstances), uintptr(outSize), uintptr(inSize), uintptr(defaultTimeout), uintptr(unsafe.Pointer(sa)), 0)
 	handle = syscall.Handle(r0)
 	if handle == syscall.InvalidHandle {
 		err = errnoErr(e1)
 	}
 	return
 }
 func getCurrentThread() (h syscall.Handle) {
 	r0, _, _ := syscall.Syscall(procGetCurrentThread.Addr(), 0, 0, 0, 0)
 	h = syscall.Handle(r0)
 	return
 }
 func getNamedPipeHandleState(pipe syscall.Handle, state *uint32, curInstances *uint32, maxCollectionCount *uint32, collectDataTimeout *uint32, userName *uint16, maxUserNameSize uint32) (err error) {
 	r1, _, e1 := syscall.Syscall9(procGetNamedPipeHandleStateW.Addr(), 7, uintptr(pipe), uintptr(unsafe.Pointer(state)), uintptr(unsafe.Pointer(curInstances)), uintptr(unsafe.Pointer(maxCollectionCount)), uintptr(unsafe.Pointer(collectDataTimeout)), uintptr(unsafe.Pointer(userName)), uintptr(maxUserNameSize), 0, 0)
 	if r1 == 0 {
 		err = errnoErr(e1)
 	}
 	return
 }
 func getNamedPipeInfo(pipe syscall.Handle, flags *uint32, outSize *uint32, inSize *uint32, maxInstances *uint32) (err error) {
 	r1, _, e1 := syscall.Syscall6(procGetNamedPipeInfo.Addr(), 5, uintptr(pipe), uintptr(unsafe.Pointer(flags)), uintptr(unsafe.Pointer(outSize)), uintptr(unsafe.Pointer(inSize)), uintptr(unsafe.Pointer(maxInstances)), 0)
 	if r1 == 0 {
 		err = errnoErr(e1)
 	}
 	return
 }
 func getQueuedCompletionStatus(port syscall.Handle, bytes *uint32, key *uintptr, o **ioOperation, timeout uint32) (err error) {
 	r1, _, e1 := syscall.Syscall6(procGetQueuedCompletionStatus.Addr(), 5, uintptr(port), uintptr(unsafe.Pointer(bytes)), uintptr(unsafe.Pointer(key)), uintptr(unsafe.Pointer(o)), uintptr(timeout), 0)
 	if r1 == 0 {
 		err = errnoErr(e1)
 	}
 	return
 }
 func localAlloc(uFlags uint32, length uint32) (ptr uintptr) {
 	r0, _, _ := syscall.Syscall(procLocalAlloc.Addr(), 2, uintptr(uFlags), uintptr(length), 0)
 	ptr = uintptr(r0)
 	return
 }
 func localFree(mem uintptr) {
 	syscall.Syscall(procLocalFree.Addr(), 1, uintptr(mem), 0, 0)
 	return
 }
 func setFileCompletionNotificationModes(h syscall.Handle, flags uint8) (err error) {
 	r1, _, e1 := syscall.Syscall(procSetFileCompletionNotificationModes.Addr(), 2, uintptr(h), uintptr(flags), 0)
 	if r1 == 0 {
 		err = errnoErr(e1)
 	}
 	return
 }
 func ntCreateNamedPipeFile(pipe *syscall.Handle, access uint32, oa *objectAttributes, iosb *ioStatusBlock, share uint32, disposition uint32, options uint32, typ uint32, readMode uint32, completionMode uint32, maxInstances uint32, inboundQuota uint32, outputQuota uint32, timeout *int64) (status ntStatus) {
 	r0, _, _ := syscall.Syscall15(procNtCreateNamedPipeFile.Addr(), 14, uintptr(unsafe.Pointer(pipe)), uintptr(access), uintptr(unsafe.Pointer(oa)), uintptr(unsafe.Pointer(iosb)), uintptr(share), uintptr(disposition), uintptr(options), uintptr(typ), uintptr(readMode), uintptr(completionMode), uintptr(maxInstances), uintptr(inboundQuota), uintptr(outputQuota), uintptr(unsafe.Pointer(timeout)), 0)
 	status = ntStatus(r0)
 	return
 }
 func rtlDefaultNpAcl(dacl *uintptr) (status ntStatus) {
 	r0, _, _ := syscall.Syscall(procRtlDefaultNpAcl.Addr(), 1, uintptr(unsafe.Pointer(dacl)), 0, 0)
 	status = ntStatus(r0)
 	return
 }
 func rtlDosPathNameToNtPathName(name *uint16, ntName *unicodeString, filePart uintptr, reserved uintptr) (status ntStatus) {
 	r0, _, _ := syscall.Syscall6(procRtlDosPathNameToNtPathName_U.Addr(), 4, uintptr(unsafe.Pointer(name)), uintptr(unsafe.Pointer(ntName)), uintptr(filePart), uintptr(reserved), 0, 0)
 	status = ntStatus(r0)
 	return
 }
 func rtlNtStatusToDosError(status ntStatus) (winerr error) {
 	r0, _, _ := syscall.Syscall(procRtlNtStatusToDosErrorNoTeb.Addr(), 1, uintptr(status), 0, 0)
 	if r0 != 0 {
 		winerr = syscall.Errno(r0)
 	}
 	return
 }
 func wsaGetOverlappedResult(h syscall.Handle, o *syscall.Overlapped, bytes *uint32, wait bool, flags *uint32) (err error) {
 	var _p0 uint32
 	if wait {
 		_p0 = 1
 	}
 	r1, _, e1 := syscall.Syscall6(procWSAGetOverlappedResult.Addr(), 5, uintptr(h), uintptr(unsafe.Pointer(o)), uintptr(unsafe.Pointer(bytes)), uintptr(_p0), uintptr(unsafe.Pointer(flags)), 0)
 	if r1 == 0 {
 		err = errnoErr(e1)
 	}
 	return
 }
--- a/vendor/github.com/ProtonMail/go-crypto/AUTHORS
+++ b/vendor/github.com/ProtonMail/go-crypto/AUTHORS
@ -0,0 +1,3 @@
 # This source code refers to The Go Authors for copyright purposes.
 # The master list of authors is in the main Go distribution,
 # visible at https://tip.golang.org/AUTHORS.
--- a/vendor/github.com/ProtonMail/go-crypto/CONTRIBUTORS
+++ b/vendor/github.com/ProtonMail/go-crypto/CONTRIBUTORS
@ -0,0 +1,3 @@
 # This source code was written by the Go contributors.
 # The master list of contributors is in the main Go distribution,
 # visible at https://tip.golang.org/CONTRIBUTORS.
--- a/Show More
+++ b/Show More
Author	SHA1	Message	Date
Chris Allen Lane	7908a678df	Merge pull request #742 from cheat/dependabot/go_modules/github.com/cloudflare/circl-1.3.7 chore(deps): bump github.com/cloudflare/circl from 1.3.6 to 1.3.7	2024-01-08 15:34:48 -05:00
dependabot[bot]	7c0eacb53d	chore(deps): bump github.com/cloudflare/circl from 1.3.6 to 1.3.7 Bumps [github.com/cloudflare/circl](https://github.com/cloudflare/circl) from 1.3.6 to 1.3.7. - [Release notes](https://github.com/cloudflare/circl/releases) - [Commits](https://github.com/cloudflare/circl/compare/v1.3.6...v1.3.7) --- updated-dependencies: - dependency-name: github.com/cloudflare/circl dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>	2024-01-08 16:53:49 +00:00
Chris Allen Lane	4bf804ac60	Merge pull request #741 from cheat/dependabot/go_modules/golang.org/x/crypto-0.17.0 chore(deps): bump golang.org/x/crypto from 0.16.0 to 0.17.0	2023-12-19 14:51:50 -05:00
dependabot[bot]	33c5918087	chore(deps): bump golang.org/x/crypto from 0.16.0 to 0.17.0 Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.16.0 to 0.17.0. - [Commits](https://github.com/golang/crypto/compare/v0.16.0...v0.17.0) --- updated-dependencies: - dependency-name: golang.org/x/crypto dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>	2023-12-19 00:07:38 +00:00
Christopher Allen Lane	d34177729d	chore: bump version to 4.4.2	2023-12-15 12:48:39 -05:00
Chris Allen Lane	7fa50328d7	Merge pull request #740 from chrisallenlane/chroma chore(deps): bump chroma to v2 #735	2023-12-13 12:59:52 -05:00
Christopher Allen Lane	1790aec85d	chore(deps): bump chroma to v2 #735 Bump `alecthomas/chroma` to `v2`: https://github.com/cheat/cheat/issues/735	2023-12-13 12:54:32 -05:00
Mikel Olasagasti Uranga	6bf51e758f	Use yaml.v3 rather than .v2 and .v1	2023-12-13 09:57:58 -05:00
Christopher Allen Lane	242da8c89a	chore(build): remove `plan9` support Remove `plan9` support from the `Makefile` because the executable now fails to build.	2023-12-13 09:45:21 -05:00
Chris Allen Lane	2294f40ee0	Merge pull request #739 from chrisallenlane/v4.4.1 V4.4.1	2023-12-13 09:17:16 -05:00
Christopher Allen Lane	fe25019b14	chore: bump version to `4.4.1`	2023-12-13 09:12:14 -05:00
Christopher Allen Lane	bfb071c0b2	chore(lint): various changes to appease revive - Add `package` comments - Rename `opts` to `_` where unused	2023-12-13 09:10:20 -05:00
Christopher Allen Lane	95a4e31b6c	chore(deps): upgrade dependencies Upgrade all dependencies to newest versions.	2023-12-13 08:29:02 -05:00
Chris Allen Lane	0d9c92c8c0	Merge pull request #707 from chrisallenlane/v4.4.0 V4.4.0	2022-11-05 13:11:22 -04:00
Christopher Allen Lane	16c50bb659	chore: bump version to `4.4.0`	2022-11-05 12:56:43 -04:00
Christopher Allen Lane	1a85c9e9c8	feat: platform compatibility Add experimental support for the following platforms: - aix - dragonfly - illumos - ios - netbsd - openbsd - plan9 - solaris	2022-11-05 12:00:43 -04:00
Christopher Allen Lane	c9ccefa607	chore(deps): remove `yaml.v1` Remove errant `yaml.v1` dependency, and use `yaml.v2` everywhere.	2022-11-05 11:39:48 -04:00
Christopher Allen Lane	3a6b6e58f0	chore(deps): update dependencies `make vendor-update`	2022-11-05 10:15:15 -04:00
Christopher Allen Lane	2edc0ee299	chore: add a comment Add a small comment regarding a tricky edge-case in `gitdir.go`.	2022-08-28 06:54:29 -04:00
Chris Allen Lane	bd9fa1ba70	Merge pull request #700 from chrisallenlane/4.3.3 4.3.3	2022-08-27 22:07:19 -04:00
Christopher Allen Lane	bb85e611f4	chore: bump version to `4.3.3`	2022-08-27 21:29:06 -04:00
Christopher Allen Lane	a2f538f114	refactor(repo): create `repo` package - Refactor `installer.clone` into new `repo.Clone` package and method. - Refactor `sheets.isGitDir` into `repo.GitDir`. Both of these changes read better, and will facilitate cleaner architecture when `--update` is implemented.	2022-08-27 21:02:48 -04:00
Christopher Allen Lane	80c91cbdee	feat(installer): use `go-git` to clone Integrate `go-git` into the application, and use it to `git clone` cheatsheets when the installer runs. Previously, the installer required that `git` be installed on the system `PATH`, so this change has to big advantages: 1. It removes that system dependency on `git` 2. It paves the way for implementing the `--update` command Additionally, `cheat` now performs a `--depth=1` clone when installing cheatsheets, which should at least somewhat improve installation times (especially on slow network connections).	2022-08-27 21:00:46 -04:00
Christopher Allen Lane	ede2d2dbaa	fix(Sheets): `.gitignore` in cheatpath (#699 ) Fix an issue whereby `cheat` would crash if a cheatpath contained a file that began with `.git`, like `.gitignore`.	2022-08-27 20:57:07 -04:00
Chris Allen Lane	db3d7e53a4	Merge pull request #698 from chrisallenlane/4.3.2 4.3.2	2022-08-26 14:07:14 -04:00
Christopher Allen Lane	06c4ff52fc	chore: bump version to `4.3.2`	2022-08-26 13:56:35 -04:00
Christopher Allen Lane	cbc2638d96	fix(docopt): whitespace typo in `--help` output Fix a whitespace (alignment) typo in the `--help` output.	2022-08-26 13:56:35 -04:00
Christopher Allen Lane	fd93da799d	fix(sheets): cheatsheets in submodules (#694 ) Resolve an issue whereby cheatsheets contained within `git` submodules were ignored due to a regression introduced in `4.3.1`.	2022-08-26 13:55:09 -04:00
Christopher Allen Lane	5c5ed7344f	chore(docs): improve configuration docs (#656 ) Improve the configuration documentation in `configs/conf.yml` (#656).	2022-08-26 13:55:09 -04:00
Christopher Allen Lane	d773383f70	fix(build): `Makefile` corrections - Fix an issue whereby `make clean` filed to remove assets created by `make generate`. - Fix a subsequent issue whereby `make generate` was being run too late in the `make build` target, which resulted in a build failure.	2022-08-26 13:55:09 -04:00
Christopher Allen Lane	2717044b62	chore(docs): update `INSTALLING.md` (#677 ) Update `INSTALLING.md` with more package information. See: #677	2022-08-26 13:55:09 -04:00
Christopher Allen Lane	2d635293c5	refactor(Sheet): create `parse` method Move `Frontmatter.Parse` to `Sheet.parse`, and delete the `frontmatter` package. `Sheet.parse` more accurately describes the parser's behavior.	2022-08-26 13:55:09 -04:00
Christopher Allen Lane	f0bfeda47a	fix(frontmatter): do not trim whitespace (#663 ) Do not strip leading or trailing newlines. Doing so had interferred with users' intended cheatsheet layouts.	2022-08-26 13:55:09 -04:00
Christopher Allen Lane	f1540290a7	chore(deps): update dependencies	2022-08-26 11:06:21 -04:00
Chris Allen Lane	0b80a608c3	Merge pull request #692 from chrisallenlane/4.3.1 4.3.1	2022-08-08 21:01:56 -04:00
Christopher Allen Lane	3c1e24a0e8	chore: bump version to `4.3.1`	2022-08-08 20:38:23 -04:00
Christopher Allen Lane	2a6586b41b	fix(installer): always use `more` pager on Windows	2022-08-08 20:38:23 -04:00
Christopher Allen Lane	6421953183	feat(installer): set default `editor` Attempt to set and locate a default editor when running the installer.	2022-08-08 20:14:27 -04:00
Christopher Allen Lane	0c47f44ff9	fix: no colorization on default install (#687 ) Fix an issue whereby a default installation (as created by the installer) would (seemingly) fail to output colorized text, even when the `-c` flag was passed. The root cause of the problem was that the installer did not set a default `style` for `chroma`, which in turn defaulted to using the `bw` (black-and-white) style. Thus, colorization actually was being applied with `-c` - it was simply black and white!	2022-08-08 19:45:32 -04:00
Christopher Allen Lane	77f9c3fdd0	fix(Sheets): cheatsheets in hidden directories (#690 ) Fix an issue whereby cheatsheets that were contained within hidden directories were prevented from being loaded.	2022-08-08 19:17:59 -04:00
Chris Allen Lane	b53a14b1a7	Merge pull request #691 from chrisallenlane/4.3.0 4.3.0	2022-08-07 14:45:27 -04:00
Christopher Allen Lane	f1e8602369	chore: bump version to `4.3.0`	2022-08-07 14:11:47 -04:00
Christopher Allen Lane	ddbe710881	feat: add the `--conf` command Add the `--conf` command, which dipslay's the current `cheat` configuration file path.	2022-08-07 14:08:25 -04:00
Christopher Allen Lane	d598d96fce	fix(Config): colorization without pager (#687 ) Fix an issue whereby colorization would output ANSI codes if a pager was not configured. The solution here is to stop guessing about the state of the user's system at runtime, as well as the user's intention. The installer now chooses an appropriate installer when generating configs, and no longer bothers searching for pagers at runtime.	2022-08-07 10:19:56 -04:00
Christopher Allen Lane	4fdec50487	chore(deps): upgrade dependencies - Upgrade to Go 1.19 in `go.mod` - Upgrade dependencies	2022-08-07 10:19:56 -04:00
Chris Allen Lane	9de866dfb6	Merge pull request #689 from chrisallenlane/ci chore(ci): YAML lints	2022-08-05 07:53:53 -04:00
Christopher Allen Lane	eb99a070ce	chore: CI template nits - Fix YAML nits per `yamllint` - Upgrade Go version to `1.19`	2022-08-05 07:49:20 -04:00
Chris Allen Lane	73f80bde48	Merge pull request #688 from chrisallenlane/4.2.7 4.2.7	2022-08-05 07:01:51 -04:00
Chris Allen Lane	8130b2f3bd	chore: bump version to `4.2.7`	2022-08-05 06:41:16 -04:00
Christopher Allen Lane	f4e6c76e58	fix: escape sequences in search output (#687 ) Fix an issue whereby ANSI escape characters could appear in search output when a pager was not configured. The root cause of the problem was code that was overzealously applying an underlying effect to search terms. This commit simply rips out underlying entirely, both as means of resolving this problem, and also simply for removing needless visual noise from search output.	2022-08-05 06:41:16 -04:00
Chris Allen Lane	85f5ae8ec7	chore: various lint corrections Make various lint corrections in order to appease `staticcheck`.	2022-08-04 20:43:50 -04:00
Chris Allen Lane	484b447391	perf(Sheets): do not walk hidden directories Modify `Sheets.Load` to not walk hidden directories like `.git`. This optimization can potentially prevent thousands of system calls from being made, because `.git` directories can contain many files.	2022-08-04 20:43:42 -04:00
Chris Allen Lane	cfd1702bc6	Merge pull request #685 from chrisallenlane/page-bug Fix #681	2022-08-02 20:37:48 -04:00
Christopher Allen Lane	7406ebfb5e	chore(deps): update dependencies	2022-08-02 20:30:31 -04:00
Christopher Allen Lane	0737af2fec	fix: pagination error on Linux Bury the `more` pager default on Linux in an effort to work around the following problem: https://github.com/cheat/cheat/issues/681#issuecomment-1201842334 We're satisficing for this kludge because it does not appear to be possible to actually make `more` perform as expected in all environments.	2022-08-02 20:27:56 -04:00
Christopher Allen Lane	a23d372d1f	docs(INSTALLING): `nix` link Update the `nix` package information.	2022-07-06 08:11:42 -04:00
Chris Allen Lane	fe66ff3768	Merge pull request #679 from chrisallenlane/hacking-md docs: create `HACKING.md`	2022-07-05 15:11:09 -04:00
Christopher Allen Lane	7fed1f63a6	docs: create `HACKING.md` Create a `HACKING.md` file for onboarding new developers to `cheat`.	2022-07-05 15:07:34 -04:00
Christopher Allen Lane	a297d1619c	chore(build): remove `make docker-run` Remove the `docker-run` `make` target, which was added in haste. It was entirely redundant with `docker-sh`.	2022-07-05 14:40:15 -04:00
Chris Allen Lane	ef1da90a77	Merge pull request #678 from chrisallenlane/go-install Build/CI corrections	2022-07-05 12:24:48 -04:00
Christopher Allen Lane	d8f405c112	chore(ci): use Go 1.18 in CI Use Go 1.18 in the CI pipeline.	2022-07-05 11:59:08 -04:00
Chris Allen Lane	f8403ff241	Merge pull request #676 from chrisallenlane/install-md docs: create `INSTALLING.md`	2022-07-05 11:24:02 -04:00
Christopher Allen Lane	65f6be3fd8	docs: create `INSTALLING.md` - Create `INSTALLING.md` - Update the `README.md`	2022-07-05 11:19:40 -04:00
Chris Allen Lane	1cb53697d2	Merge pull request #674 from cheat/4.2.5 4.2.5	2022-07-04 22:37:19 -04:00
		`@ -0,0 +1,2 @@`
							`// This package contains Win32 filesystem functionality.`
							`package fs`