They don't use a vendor folder, right?

Even if they do, buildGoModule does not support invocations without modSha256 at the moment.

Well, we do have somewhat limited support for these kind of terraform modules with patchGoModVendor - maybe open an issue upstream and ask if they plan to package their modules in the future too?

Then we could use the generic updater framework we already have. cc @mmilata

It's possible to use nix-prefetch to get the latest checksum. I use this in nix-update

They don't use a vendor folder, right?

I wish, otherwise I would have used the other method.

There are a number of improvements that we could do around the update-all script that are out of scope for this PR but that would nice to have soon:

• avoid re-fetching if the version hasn't change. At the moment update-all prefeteches all the repos even if they are already in data.nix
• support a "go repo type" as a second argument to the slugs to handle these other cases
• plug with the rytantm updater bot somehow

I agree. I didn't meant to say this is in-scope for this PR.

But it'd be good to at least have an issue opened to track these things.

I think it's good to have the discussion. I don't know if an extra issue is going to help given how much issues are open already.

I'm not sure if people will find it if it's just here - I'd rather see it somewhere deep in the backlog, than just in our minds ;-)