DNS and Sandbox Improvements

Highlights

• Attempt to improve Hostname data collection by eliminating race conditions with packet capture
• Add wget and git to sandbox images, add requests and urllib3 to Python, allow bower to install in root in npm
• Always exit if install fails in sandbox to make it easier to see issues.

What's Changed

• Add a script for quickly bulk backfilling package analysis. by @oliverchang in #225
• Limit any race conditions that might arise during packet capture. by @calebbrown in #234
• Improve the functionality of the sandbox images so more packages run successfully and failures are more obvious by @calebbrown in #237

Full Changelog: rel-4...rel-5

Volume argument bug fix

• Fix a bug with volume set up 8a4d20d

Full Changelog: rel-3...rel-4

Sandbox error handling

Improve the error messages and "gofer" handling during container "stop". by @calebbrown in #217

Full Changelog: rel-2...rel-3

Improve ability to observe success/failure

What's Changed

• Create scorecards-analysis.yml by @calebbrown in #205
• Handle lines of arbitrary size better. by @calebbrown in #209
• Add a status, stdout and stderr to the results returned for each command by @calebbrown in #211
• Add some logging so we can measure the behavior of the pipeline. by @calebbrown in #215

Full Changelog: rel-1...rel-2

Initial phased analysis

Release that includes phased analysis support.

Install and import and reported separately.

What's Changed

• Log details about the worker's environment when it is started. by @calebbrown in #195
• Fix workers-set.yaml to include OSSF_MALWARE_ANALYSIS_PACKAGES. by @oliverchang in #196
• Add HorizontalPodAutoscaler for workers. by @oliverchang in #197
• Support multiple phases of dynamic analysis by @calebbrown in #200
• Improve the multi-phase sandbox behavior by @calebbrown in #203
• Improve error handling and remove panics from library and worker code. by @calebbrown in #204

Full Changelog: rel-0...rel-1

Initial release

Initial release to test tagged based build infrastructure.