forked from intel/cve-bin-tool
-
Notifications
You must be signed in to change notification settings - Fork 0
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Changes #1
Merged
Merged
Changes #1
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
* fixes #3436 Added an exclusion of fuzz/generated sub-directory for linting
Since commit 66e1df3, console width is hardcoded to 120 and so width auto-detection is disabled. Drop this line as most modern screens can display more than 120 characters and a lot of lines are truncated now that EPSS data, latest version, etc. are displayed. Signed-off-by: Fabrice Fontaine <fabrice.fontaine@orange.com>
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.22.3 to 2.22.4. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@0116bc2...49abf0b) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Adding Fedora rpm and OpenWrt ipk files to dosfstools tests. fixes: #3410
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.3.0 to 2.3.1. - [Release notes](https://github.com/ossf/scorecard-action/releases) - [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md) - [Commits](ossf/scorecard-action@483ef80...0864cf1) --- updated-dependencies: - dependency-name: ossf/scorecard-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* chore: update SBOM for Python 3.8 * ci: re-enable linux test and longtest jobs on bot branches Having the if statement at the top of the job caused a situation where the job didn't complete and the sboms could never be merged due to branch protection rules. This attempts to just skip the tests and see if that addresses the problem in a different way. Signed-off-by: Terri Oda <terri.oda@intel.com> --------- Signed-off-by: Terri Oda <terri.oda@intel.com> Co-authored-by: GitHub <noreply@github.com> Co-authored-by: Terri Oda <terri.oda@intel.com>
Co-authored-by: GitHub <noreply@github.com> Co-authored-by: Terri Oda <terri.oda@intel.com>
Co-authored-by: GitHub <noreply@github.com> Co-authored-by: Terri Oda <terri.oda@intel.com>
This adds docstrings just to GAD_Source.format_data (L253) and GAD_Source.get_cve_data (L329). Several functions remain that need docstrings.
* test: re-enable test_SBOM in test_cli.py * correct assertion error in SBOM test * fix flake 8 linting issues
The earlier PR skipping tests caused issues with our branch protection rules and had to be disabled because it blocked merging of pull requests (if the tests were skipped, the PR could never be merged). This allows part of the job to run (so it'll pass branch protection checks) while skipping the install and running of tests on sbom jobs provided by our automated job. Note that this is the same code as I had in #3446 but I'm separating it out so it gets a proper code review from someone who is not me. Signed-off-by: Terri Oda <terri.oda@intel.com>
Signed-off-by: Fabrice Fontaine <fabrice.fontaine@orange.com>
Co-authored-by: GitHub <noreply@github.com>
Co-authored-by: GitHub <noreply@github.com>
Co-authored-by: GitHub <noreply@github.com>
Co-authored-by: GitHub <noreply@github.com> Co-authored-by: Terri Oda <terri.oda@intel.com>
fixes: #3328 added fuzz testing for RustParser(Cargo.lock) based on [Rust docs](https://doc.rust-lang.org/cargo/guide/cargo-toml-vs-cargo-lock.html) and [Cargo.lock of Rust itself](https://github.com/rust-lang/rust/blob/master/Cargo.lock).
Co-authored-by: Terri Oda <terri.oda@intel.com>
Signed-off-by: Hamed Faramarzi <hamed.faramarzi@gmail.com>
joydeep049
pushed a commit
that referenced
this pull request
Aug 9, 2024
Fix binutils pattern to return 2.32.0 instead of 2.32.0.20190204 from the following string: Linux version 4.14.206-perf (oe-user@oe-host) (clang version 6.0.9 for Android NDK, GNU ld (GNU Binutils) 2.32.0.20190204) #1 PREEMPT Mon Jan 29 09:57:30 UTC 2024 Signed-off-by: Fabrice Fontaine <fabrice.fontaine@orange.com>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
No description provided.