Update module github.com/securego/gosec/v2 to v2.20.0 #444
Conversation
![renovate[bot]](https://avatars.githubusercontent.com/in/2740?s=60&v=4){kind=small}
|
Hi @renovate[bot]. Thanks for your PR. I'm waiting for a ComplianceAsCode member to verify that this patch is reasonable to test. If it is, they should reply with Once the patch is verified, the new status will be reflected by the I understand the commands that are listed here. Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
renovate
bot
force-pushed
the
renovate/github.com-securego-gosec-v2-2.x
branch
from
decc6ed to
6e1955c
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/github.com-securego-gosec-v2-2.x
branch
from
6e1955c to
2d63fa1
Compare
renovate
bot
force-pushed
the
renovate/github.com-securego-gosec-v2-2.x
branch
from
2d63fa1 to
d730172
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/github.com-securego-gosec-v2-2.x
branch
from
d730172 to
ff578cd
Compare
renovate
bot
changed the title
|
🤖 To deploy this PR, run the following command: |
|
/retest-required Serial tests should be unblocked now. |
renovate
bot
force-pushed
the
renovate/github.com-securego-gosec-v2-2.x
branch
from
ff578cd to
7c06bca
Compare
renovate
bot
force-pushed
the
renovate/github.com-securego-gosec-v2-2.x
branch
from
7c06bca to
99d0e03
Compare
renovate
bot
changed the title
|
This is failing We need to be using https://pkg.go.dev/go/[email protected]#IsGenerated at least. |
|
Need to land #491 before this will start passing. |
renovate
bot
force-pushed
the
renovate/github.com-securego-gosec-v2-2.x
branch
from
99d0e03 to
d436ff9
Compare
ℹ Artifact update noticeFile name: go.modIn order to perform the update(s) described in the table above, Renovate ran the
Details:
|
renovate
bot
force-pushed
the
renovate/github.com-securego-gosec-v2-2.x
branch
from
d436ff9 to
7372bc0
Compare
|
🤖 To deploy this PR, run the following command: |
|
We need to be using at least golang 1.21 to bump this version because gosec is calling a function of golang's standard library that was introduced in 1.21 - https://pkg.go.dev/go/[email protected]#IsGenerated |
renovate
bot
force-pushed
the
renovate/github.com-securego-gosec-v2-2.x
branch
from
7372bc0 to
f939eac
Compare
|
🤖 To deploy this PR, run the following command: |
renovate
bot
force-pushed
the
renovate/github.com-securego-gosec-v2-2.x
branch
from
f939eac to
3f5dd7e
Compare
|
🤖 To deploy this PR, run the following command: |
|
/test e2e-aws-serial The serial tests ran successfully, but cleanup failed on a networking issues after the suite was done. |
|
The trivy issue will get fixed on #548 lands. |
|
/retest-required |
|
Trivy scanning should be fixed now that #548 landed. |
renovate
bot
force-pushed
the
renovate/github.com-securego-gosec-v2-2.x
branch
from
3f5dd7e to
6e1a908
Compare
|
🤖 To deploy this PR, run the following command: |
|
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: renovate[bot], rhmdnd, Vincent056 The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
openshift-merge-bot
bot
deleted the
renovate/github.com-securego-gosec-v2-2.x
branch
This PR contains the following updates:
v2.17.0->v2.20.0Warning
Some dependencies could not be looked up. Check the Dependency Dashboard for more information.
Release Notes
securego/gosec (github.com/securego/gosec/v2)
v2.20.0Compare Source
Changelog
6fbd381Catch os.ModePerm permissions in os.WriteFiledc5e5a9Add a unit test to detect the false negative in rule G306 for os.ModePerm permissions417a44cAdd filepath.EvalSymlinks to clean functions in rule G304d34f8b7chore(deps): update all dependencies8658b8eUpdate Go to version 2.22.3 in CI and released3b2359chore(deps): update module golang.org/x/text to v0.15.0cf29d54chore(deps): update all dependencies09d62bdchore(deps): update module github.com/onsi/gomega to v1.33.03b23ec8Update to go 1.22.231009c3chore(deps): update all dependenciesdaf6f67chore(deps): update module github.com/onsi/ginkgo/v2 to v2.17.1e27f442chore(deps): update all dependencies5513615fix(helpers/goversion): get from go.mod43b8b75chore: fix function nameaccd7a1chore(deps): update all dependencies48aa72eFormat the imports using the gci toolb6df69cFixup: delete unused variableccb0a08Fix test: update test to comply with the spec of generated sources3a0ea51Refactor: use standard function to check if a file is generated11c3252Fix lint warningsbe378e6Add support for math/rand/v2 added in Go 1.2236878a9Skip the G601 tests for Go version 1.22903c75bUpdate go version to 1.22.1 and 1.21.8f25ccd9Ignore 'implicit memory aliasing' rule for Go 1.22+582e91achore(deps): update all dependencies198a40cchore(deps): update module golang.org/x/tools to v0.18.0c824a5dfix(hardcoded): remove duplicatedStripe API Keyd13d7daUpdate gosec version to v2.19.0 in the Github actionv2.19.0Compare Source
Changelog
26e57d6Update CI to go version 1.22e60b8d8chore(deps): update all dependencies1285eb7chore(deps): update all dependenciescf4ab3echore(deps): update all dependencies277553cchore(deps): update all dependencies57ec76bchore(deps): update all dependencies8fa46c1chore(deps): update dependency babel-standalone to v7.23.753aa3f7chore(deps): update module golang.org/x/crypto to v0.17.0 [security]187adabchore(deps): update all dependenciese1f27bachore(deps): update actions/setup-go action to v52aad3f0Fix lint warnings by properly formatting the files0e2a618chore: Refactor Sample Code to Separate Filesbc03d1cUpdate go version to 1.21.5 and 1.20.12 (#1084)79a6b47chore(deps): update all dependencies (#1080)eb256a7Ignore the issues from generated files when using the analysis framework (#1079)43b7cbfUpdate README with upload-sarif v2 (#1078)fece498chore(deps): update dependency babel-standalone to v7.23.424c614bAdded ppc64le supportc736581chore(deps): update all dependencies3188e3fEnsure ignores are handled properly for multi-line issues6d56592Update Go to version 1.21.4 and 1.20.11870103bchore(deps): update module golang.org/x/text to v0.14.0b50e493chore(deps): update all dependencies2f9965bRemove the hardcoded GOOS value when building the Linux binary to enable support for container image for ARMfa1b74dAvoid allocations with(*regexp.Regexp).MatchString64bbe90Fix some typosd9071e3Update local installation instructions by removing the details for Go 1.165d837bcUpdate gosec version to 2.18.2 in the actionv2.18.2Compare Source
Changelog
55d7949Disable dot-imports in revive linter4656817chore(deps): update module github.com/onsi/gomega to v1.28.15567ac4Run the gosec with data race detector active during testsa239758Fix data race in the analyzerc06903aFix test that checks the overriden nosec directivebde2619Clean global state in flgs testse108c56Format the filee298388Update README with details which describe the current behaviour of #nosecd8a6d35Ensure the ignores are parsed before analysing the package7846db0chore(deps): update all dependencies8e0cf8cUpdate gosec to version 2.18.1 in the action6b12a71Update cosign version to v2.2.0v2.18.1Compare Source
Changelog
0ec6cd9Refactor how ignored issues are trackedf338a98Restrict the maximum depth when tracking the slice bounds7e2d8d3Handle empty ssa results074353aHandle gracefully any panic that occurs when building the SSA representation of a packageec31a3aFix typoa11eb28Handle new function when getting the call info in case is overriden5b7867dBump golang.org/x/net from 0.16.0 to 0.17.0 (#1037)dd08f99Update to Go 1.21.3 and 1.20.10 (#1035)616520fUpdate the list of unsafe functions detected by the unsafe rule (#1033)3952187Update the action to use gosec version v2.18.0 (#1029)2b62dd1Use a step ID in github release action to get the digest of the image (#1028)v2.18.0Compare Source
Changelog
53fc0c3Update to go version 1.21.2 and 1.20.9 (#1027)7f7c47fchore(deps): update all dependencies (#1026)d864a91Enable gochecknoinits; fix lint issues; use consts for some vars (#1022)09cf6efFix typos in struct fields, comments, and docs (#1023)665e87bchore(deps): update all dependencies4def3a4Fix lint warning0d332a1Add a new rule which detects when a file is created with os.Create but the configured permissions are less than 0666293d887Fix lint warningsac482cbUpdate ginkgo to latest versione02e2f6Redesign and reimplement the slice out of bounds check using SSA code representatione1278f9docs: add reMarkable to users listf6a6496chore(deps): update all dependenciesaebe20cDrop support for go 1.19.x since go team doesn't ship anymore security fixes for it7a98537Update to latest go versionb192f06chore(deps): update all dependencies (#1011)6c93653Fix hardcoded_credentials rule to only match on more specific patterns (#1009)325eb19chore(deps): update all dependencies (#1008)beef125Exclude maps from slince bounce check rule (#1006)21d13c9Ignore struct pointers in G601 (#1003)85005c4Update gosec image version to 2.17.0 in the Github action (#1002)6a2c5e1Update cosign to version v2.1.1 (#1000)Configuration
📅 Schedule: Branch creation - "every weekend" (UTC), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR was generated by Mend Renovate. View the repository job log.