Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Align GoVulncheck Go version with go.mod #818

Merged
merged 6 commits into from
Feb 26, 2024
Merged

Align GoVulncheck Go version with go.mod #818

merged 6 commits into from
Feb 26, 2024

Conversation

hogo6002
Copy link
Contributor

@hogo6002 hogo6002 commented Feb 22, 2024
edited
Loading

GoVulncheck uses local installed GO version to determine vulnerabilities if the env GOVERSION is not defined.
Set the GOVERSION value to the one defined in go.mod.

detail: #679

@hogo6002 hogo6002 requested a review from another-rex February 22, 2024 05:02
@codecov-commenter
Copy link

codecov-commenter commented Feb 22, 2024
edited
Loading

Codecov Report

Attention: Patch coverage is 25.00000% with 6 lines in your changes are missing coverage. Please review.

Project coverage is 59.46%. Comparing base (ef3a2a4) to head (f71da79).
Report is 6 commits behind head on main.

Files Patch % Lines
internal/sourceanalysis/go.go 25.00% 6 Missing ⚠️
Additional details and impacted files 
@@             Coverage Diff             @@
##             main     #818       +/-   ##
===========================================
- Coverage   71.79%   59.46%   -12.33%     
===========================================
  Files         118      136       +18     
  Lines        8677    11162     +2485     
===========================================
+ Hits         6230     6638      +408     
- Misses       2078     4099     +2021     
- Partials      369      425       +56

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

oliverchang
oliverchang reviewed Feb 22, 2024
View reviewed changes
Copy link
Collaborator

@oliverchang oliverchang left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Is there a test we can add for this?

another-rex
another-rex requested changes Feb 23, 2024
View reviewed changes
Copy link
Collaborator

@another-rex another-rex left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks! Added some comments

pkg/osvscanner/osvscanner.go Outdated Show resolved Hide resolved
internal/sourceanalysis/go.go Outdated Show resolved Hide resolved
@hogo6002 hogo6002 requested a review from another-rex February 26, 2024 01:07
another-rex
another-rex approved these changes Feb 26, 2024
View reviewed changes
Copy link
Collaborator

@another-rex another-rex left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM, thanks!

internal/sourceanalysis/go.go Show resolved Hide resolved
@hogo6002 hogo6002 requested a review from oliverchang February 26, 2024 02:52
@hogo6002 hogo6002 merged commit 63d8b2a into google:main Feb 26, 2024
11 checks passed
@hogo6002 hogo6002 mentioned this pull request Feb 26, 2024
Closed
2 tasks
@BrewTestBot BrewTestBot mentioned this pull request Mar 6, 2024
Merged
spencerschrock added a commit to spencerschrock/scorecard that referenced this pull request Mar 6, 2024
@spencerschrock
use patched osv version
f05e75d 
see google/osv-scanner#818 for details

Signed-off-by: Spencer Schrock <[email protected]>
@sudo-bmitch sudo-bmitch mentioned this pull request Mar 8, 2024
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@spencerschrock spencerschrock spencerschrock left review comments

@another-rex another-rex another-rex approved these changes

@oliverchang oliverchang oliverchang approved these changes

@michaelkedar michaelkedar Awaiting requested review from michaelkedar

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@hogo6002 @codecov-commenter @oliverchang @spencerschrock @another-rex