renovate[bot]
e1484658ac
chore(deps): update all dependencies
2023-05-30 08:25:13 +02:00
Cosmin Cojocar
9120883a15
Fix no-sec alternative tag ( #962 )
...
The no-sec alternative tag prepends now automatically the # symbol
Signed-off-by: Cosmin Cojocar <gcojocar@adobe.com>
2023-05-25 11:54:26 +02:00
Cosmin Cojocar
87cc45e1cd
Use image digest instead of tag when signing the released image with cosign ( #960 )
...
Signed-off-by: Cosmin Cojocar <gcojocar@adobe.com>
2023-05-17 15:58:25 +02:00
Cosmin Cojocar
6df05bd7a3
Update gosec image version to 2.16.0 in the Github action ( #959 )
...
Signed-off-by: Cosmin Cojocar <gcojocar@adobe.com>
2023-05-17 15:50:14 +02:00
Cosmin Cojocar
c5ea1b7bdd
Update cosign to latest version in release Github action ( #958 )
...
Signed-off-by: Cosmin Cojocar <gcojocar@adobe.com>
2023-05-17 15:27:49 +02:00
renovate[bot]
8632a8c58a
chore(deps): update all dependencies ( #956 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2023-05-15 12:05:59 +02:00
Cosmin Cojocar
ae3c2f787c
Update go version in build and release scripts ( #957 )
2023-05-15 12:05:44 +02:00
renovate[bot]
970cc2957f
chore(deps): update all dependencies ( #955 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2023-05-03 09:46:14 +02:00
Cosmin Cojocar
47bfd4eb6f
Update Go version to 1.20.3 ( #953 )
2023-04-18 10:18:21 +02:00
renovate[bot]
440141a948
chore(deps): update all dependencies ( #952 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2023-04-18 10:08:02 +02:00
Giovanni Rosa
7df7baa3f0
Fix for Dockerfile smell DL3059 ( #951 )
...
Signed-off-by: Giovanni Rosa <g.rosa1@studenti.unimol.it>
2023-04-14 13:46:24 +02:00
Olivier Mengué
2ee3213dc1
README: upgrade GitHub action in examples ( #950 )
...
Upgrade actions/checkout from v2 to v3 in GitHub actions examples.
2023-04-13 10:23:06 +02:00
Matthieu MOREL
68b520165d
enable ginkgolinter linter ( #948 )
...
Signed-off-by: Matthieu MOREL <matthieu.morel35@gmail.com>
2023-04-04 08:52:59 +02:00
renovate[bot]
780ebd0819
chore(deps): update all dependencies ( #947 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2023-04-03 10:17:38 +02:00
Matthieu MOREL
d6aeaad931
correct gci linter ( #946 )
...
Signed-off-by: Matthieu MOREL <matthieu.morel35@gmail.com>
2023-03-30 09:31:24 +02:00
Matthieu MOREL
73f0efcd02
remove deprecated linters
2023-03-28 20:39:41 +02:00
Matthieu MOREL
aef69b3f85
increase timeout to 5m
...
Signed-off-by: Matthieu MOREL <matthieu.morel35@gmail.com>
2023-03-28 20:39:41 +02:00
renovate[bot]
6bad723dfa
chore(deps): update all dependencies
2023-03-27 09:16:10 +02:00
Cosmin Cojocar
96bb741801
Use the latest version
2023-03-20 10:25:45 +01:00
Cosmin Cojocar
6a73248135
Fix some linting warnings
2023-03-20 10:25:45 +01:00
Cosmin Cojocar
83fc5e63fa
Fix lint warning
2023-03-20 10:25:45 +01:00
Cosmin Cojocar
8e7cf4bd72
Bump the go versions and golanci
2023-03-20 10:25:45 +01:00
renovate[bot]
e7bfcd1d53
chore(deps): update all dependencies ( #942 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2023-03-20 09:23:03 +01:00
Rick Moran
f823a7e92b
Check nil pointer when variable is declared in a different file
2023-03-08 14:42:45 +01:00
dan "smiley" murray
cdd3476f91
fix dead link to issue.go in README.md ( #936 )
2023-03-06 09:09:40 +01:00
Cosmin Cojocar
d5a9c73723
Remove rule G307 which checks when an error is not handled when a file or socket connection is closed ( #935 )
...
* Remove read only types from unsafe defer rules
* Remove rule G307 which checks when an error is not handled when a file or socket connection is closed
This doesn't seem to bring much value from security perspective, and it caused a lot of controversy since
is a very common pattern in Go.
* Mentioned in documentation that rule G307 is retired
* Clean up the test for rule G307
2023-02-24 14:04:13 +01:00
Cosmin Cojocar
27bf0e4f9b
Fix rule index reference into sarif report ( #934 )
2023-02-21 11:43:38 +01:00
dependabot[bot]
e7b896f234
Bump golang.org/x/net from 0.6.0 to 0.7.0
...
Bumps [golang.org/x/net](https://github.com/golang/net ) from 0.6.0 to 0.7.0.
- [Release notes](https://github.com/golang/net/releases )
- [Commits](https://github.com/golang/net/compare/v0.6.0...v0.7.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/net
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-02-20 08:58:52 +01:00
Cosmin Cojocar
4340efaa9a
Format file
2023-02-16 09:45:28 +01:00
Cosmin Cojocar
f850069114
Use the gosec issue in the go analysers
2023-02-16 09:45:28 +01:00
Cosmin Cojocar
b1fd94881e
Fix file formatting
2023-02-16 09:45:28 +01:00
Cosmin Cojocar
2071786199
Update Go version in CI builds
2023-02-16 09:45:28 +01:00
Cosmin Cojocar
1915717875
Fix method name in the comment
2023-02-16 09:45:28 +01:00
Cosmin Cojocar
de2c6a36fa
Extract the issue in its own package
2023-02-16 09:45:28 +01:00
Cosmin Cojocar
31e63276f1
Add support for Go analysis framework and SSA code representation
2023-02-16 09:45:28 +01:00
renovate[bot]
e795d75a46
chore(deps): update all dependencies ( #931 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2023-02-13 10:25:24 +01:00
Cosmin Cojocar
8aa00db022
Remove the version form ci github action
2023-02-08 11:33:30 +01:00
Cosmin Cojocar
392e53c8d0
Pin github action to latest release version 2.15.0
2023-02-08 11:29:30 +01:00
Cosmin Cojocar
ffe254e3a9
Revert the image tag in github action until a working solution is found
2023-02-08 10:47:46 +01:00
Cosmin Cojocar
a0eddfb4ab
Fix version interpolation in github action image
2023-02-08 10:45:57 +01:00
Cosmin Cojocar
d22a7b6ede
Add gosec version as an input parameter to GitHub action ( #927 )
...
* Add gosec version as a paramter to the Github action
* Run gosec as a github action as part of CI
2023-02-08 10:40:36 +01:00
Cosmin Cojocar
2d6b0a5b0f
Update release build script ( #924 )
...
* Remove deprecated goreleaser flag from release build script
* Update cosign version to v1.13.1
2023-02-06 14:39:25 +01:00
Cosmin Cojocar
a459eb0ba3
Fix dependencies after renovate update
2023-02-06 14:19:11 +01:00
renovate[bot]
54f56c7d6a
chore(deps): update all dependencies ( #922 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2023-02-06 14:16:49 +01:00
Cosmin Cojocar
df14837174
Update to Go 1.20 and fix unit tests ( #923 )
...
* Fix unit tests for Go 1.20
* Update to Go 1.20 in the build scripts
* Remove support for 1.18 in the build
* Fix the golangci lint version according to Go version used
* Fix golangci version string
* Fix gci linter warning
* Remove golint in favour of golangci
2023-02-06 14:15:05 +01:00
Cosmin Cojocar
b4270dd020
Update Go to latest version ( #920 )
2023-01-31 10:00:24 +01:00
bean.zhang
a624254e39
Update hardcoded_credentials.go fix: adaper equal expr which const value at left ( #917 )
...
* Update hardcoded_credentials.go
adaper equal expr which const value at left.
```
if "Tr0ub4dour_UPL&&LOlo" == pwd
```
* Update hardcoded_credentials.go
check ident not equal nil
* adapter const == key hardcoded, add testcases
2023-01-31 09:52:37 +01:00
('o mo)y-˜
9432e676a8
Fix github latest URL ( #918 )
2023-01-30 11:30:08 +01:00
张祖建
e85e1a7234
Fix github release url ( #916 )
2023-01-30 09:32:09 +01:00
renovate[bot]
7dcb8c7436
chore(deps): update module github.com/onsi/ginkgo/v2 to v2.7.0 ( #914 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2023-01-16 09:16:37 +01:00