Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

🌱 Use osv-scanner workflow file instead of local workflow #676

Merged
merged 1 commit into from
Sep 10, 2024
Merged

🌱 Use osv-scanner workflow file instead of local workflow #676

merged 1 commit into from
Sep 10, 2024

Conversation

kashifest
Copy link
Member

@kashifest kashifest commented Sep 4, 2024
edited
Loading

the osv-scanner workflow currently is not producing any meaningful scan output. Manual check revealed it so perhaps not running properly. Changing the workflow it to use osv scanner's workflow (this is recommended way) instead of having own local workflow seems to have solved the issue. This PR updates the workflow accordingly.

@metal3-io-bot metal3-io-bot added the do-not-merge/work-in-progress Indicates that a PR should not merge because it is a work in progress. label Sep 4, 2024
@metal3-io-bot metal3-io-bot added the size/XS Denotes a PR that changes 0-9 lines, ignoring generated files. label Sep 4, 2024
@kashifest kashifest force-pushed the fix/osv-scanner-kashif branch from 512d1ed to e8bc6a4 Compare September 4, 2024 06:52
tuminoid
tuminoid reviewed Sep 4, 2024
View reviewed changes
.github/workflows/osv-scanner-scan.yml Outdated Show resolved Hide resolved
.github/workflows/osv-scanner-scan.yml Outdated Show resolved Hide resolved
@kashifest
Copy link
Member Author

@tuminoid please dont review it yet, this is WIP

@kashifest kashifest force-pushed the fix/osv-scanner-kashif branch from e8bc6a4 to 0f0f2ab Compare September 4, 2024 06:57
@tuminoid
Copy link
Member

tuminoid commented Sep 4, 2024

@tuminoid please dont review it yet, this is WIP

Sorry, was going thru a bunch of them, missed that note.

@kashifest
Copy link
Member Author

Sorry, was going thru a bunch of them, missed that note.

AH no need to be sorry, I meant I will push changes quite a few times here and also it has some test code currently. So no need to waste your energy yet 😄

@github-advanced-security
Copy link

This pull request sets up GitHub code scanning for this repository. Once the scans have completed and the checks have passed, the analysis results for this pull request branch will appear on this overview. Once you merge this pull request, the 'Security' tab will show more code scanning analysis results (for example, for the default branch). Depending on your configuration and choice of analysis tool, future pull requests will be annotated with code scanning analysis results. For more information about GitHub code scanning, check out the documentation.

@kashifest kashifest force-pushed the fix/osv-scanner-kashif branch from 0f0f2ab to 12b883a Compare September 9, 2024 06:30
@metal3-io-bot metal3-io-bot added size/L Denotes a PR that changes 100-499 lines, ignoring generated files. and removed size/XS Denotes a PR that changes 0-9 lines, ignoring generated files. labels Sep 9, 2024
@kashifest kashifest changed the title WIP: 🌱 Use osv-scanner workflow file instead of local workflow 🌱 Use osv-scanner workflow file instead of local workflow Sep 9, 2024
@metal3-io-bot metal3-io-bot removed the do-not-merge/work-in-progress Indicates that a PR should not merge because it is a work in progress. label Sep 9, 2024
@kashifest
Copy link
Member Author

@tuminoid PTAL now

tuminoid
tuminoid reviewed Sep 9, 2024
View reviewed changes
Copy link
Member

@tuminoid tuminoid left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think this should work. We'll get some false positives, but we can workaround that with another patch, as discussed.

/approve

@metal3-io-bot
Copy link
Contributor

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: tuminoid

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@metal3-io-bot metal3-io-bot added the approved Indicates a PR has been approved by an approver from all required OWNERS files. label Sep 9, 2024
@tuminoid
Copy link
Member

tuminoid commented Sep 9, 2024

/override metal3-centos-e2e-integration-test-main metal3-ubuntu-e2e-integration-test-main
GH action

@kashifest
Copy link
Member Author

/cc @Rozzii @Sunnatillo @mquhuy

@metal3-io-bot metal3-io-bot requested a review from Rozzii September 9, 2024 09:56
@mquhuy
Copy link
Member

mquhuy commented Sep 10, 2024

/lgtm

@metal3-io-bot metal3-io-bot added the lgtm Indicates that a PR is ready to be merged. label Sep 10, 2024
@mquhuy
Copy link
Member

mquhuy commented Sep 10, 2024

/override metal3-centos-e2e-integration-test-main
/override metal3-ubuntu-e2e-integration-test-main
Not related tests

@metal3-io-bot
Copy link
Contributor

@mquhuy: mquhuy unauthorized: /override is restricted to Repo administrators, approvers in top level OWNERS file.

In response to this:

/override metal3-centos-e2e-integration-test-main
/override metal3-ubuntu-e2e-integration-test-main
Not related tests

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

@tuminoid
Copy link
Member

/override metal3-centos-e2e-integration-test-main
/override metal3-ubuntu-e2e-integration-test-main

@metal3-io-bot
Copy link
Contributor

@tuminoid: Overrode contexts on behalf of tuminoid: metal3-centos-e2e-integration-test-main, metal3-ubuntu-e2e-integration-test-main

In response to this:

/override metal3-centos-e2e-integration-test-main
/override metal3-ubuntu-e2e-integration-test-main

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

@metal3-io-bot metal3-io-bot merged commit 323a90b into metal3-io:main Sep 10, 2024
22 checks passed
@metal3-io-bot metal3-io-bot deleted the fix/osv-scanner-kashif branch September 10, 2024 07:48
@kashifest kashifest restored the fix/osv-scanner-kashif branch September 17, 2024 10:13
@kashifest kashifest deleted the fix/osv-scanner-kashif branch September 17, 2024 10:13
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@tuminoid tuminoid tuminoid left review comments

@mquhuy mquhuy Awaiting requested review from mquhuy

@Sunnatillo Sunnatillo Awaiting requested review from Sunnatillo

@Rozzii Rozzii Awaiting requested review from Rozzii

Assignees
No one assigned
Labels
approved Indicates a PR has been approved by an approver from all required OWNERS files. lgtm Indicates that a PR is ready to be merged. size/L Denotes a PR that changes 100-499 lines, ignoring generated files.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@kashifest @tuminoid @metal3-io-bot @mquhuy