Skip to content

add govulncheck scan to Makefile #262

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 2 commits into from
Oct 18, 2023
Merged

add govulncheck scan to Makefile #262

merged 2 commits into from
Oct 18, 2023

Conversation

@sheharyaar
Copy link
Contributor

@sheharyaar sheharyaar commented Feb 9, 2023

Signed-off-by: Mohammad Shehar Yaar Tausif [email protected]

@sheharyaar
Copy link
Contributor Author

sheharyaar commented Feb 9, 2023

It includes the test files via the -test flag

kranurag7
kranurag7 requested changes Oct 18, 2023
View reviewed changes
Copy link
Member

@kranurag7 kranurag7 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Hey @sheharyaar With the latest version of govulncheck, -v flag is not defined anymore, so we don't need that anymore. Rest looks good to me.

@sheharyaar
Copy link
Contributor Author

sheharyaar commented Oct 18, 2023

Sure, will make the required changes.

@sheharyaar
add govulncheck scan to Makefile
a8fc7d2 
Signed-off-by: Mohammad Shehar Yaar Tausif <[email protected]>
@sheharyaar
Copy link
Contributor Author

sheharyaar commented Oct 18, 2023

@kranurag7 it's done

@sheharyaar sheharyaar requested a review from kranurag7 October 18, 2023 07:56
kranurag7
kranurag7 approved these changes Oct 18, 2023
View reviewed changes
Copy link
Member

@kranurag7 kranurag7 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM @sheharyaar, thanks for working on this.

daemon1024
daemon1024 reviewed Oct 18, 2023
View reviewed changes
@sheharyaar
add govulncheck install check
f2fc9a4 
Signed-off-by: Mohammad Shehar Yaar Tausif <[email protected]>
@sheharyaar
Copy link
Contributor Author

sheharyaar commented Oct 18, 2023

It's done

@daemon1024
Copy link
Member

daemon1024 commented Oct 18, 2023

Will adding it to CI be a different task, @kranurag7 @sheharyaar ?

@kranurag7
Copy link
Member

kranurag7 commented Oct 18, 2023

Will adding it to CI be a different task, @kranurag7 @sheharyaar ?

Can be handled in a separate PR using this reusable action https://github.com/golang/govulncheck-action
It also requires more work, I'm not sure if the action returns a non-zero exit code when it finds some vulnerabilities. A good thing would be to take a look at how other repos are using this reusable action.
Ref: https://github.com/search?q=path%3A%2F%5E.github%5C%2Fworkflows%2F+golang%2Fgovulncheck&type=code

@kranurag7 kranurag7 merged commit 489d159 into kubearmor:main Oct 18, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@daemon1024 daemon1024 daemon1024 approved these changes

@kranurag7 kranurag7 kranurag7 approved these changes

@Ankurk99 Ankurk99 Awaiting requested review from Ankurk99

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@sheharyaar @daemon1024 @kranurag7