Commit Briefs
use unveil to restrict filesystem access of got-fetch-http
With HTTPS we only need to be able to read /etc/ssl/cert.pem. With plaintext HTTP no filesystem access is needed at all.
drop git+ssh protocol name from documentation; Git has done the same
We can keep accepting git+ssh for backwards compatibility with existing configs.
http-server: error on unknown method
just for robustness; neither git nor got-fetch-http are expected to use other methods except for GET and POST.
add http-server; will be used to test got-fetch-http
based on a draft by stsp; git(1) manages to clone from it.