-
Notifications
You must be signed in to change notification settings - Fork 1.3k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
🌱 Add verify-govulncheck and verify-vulnerabilities targets and integrate to scan action #9144
Conversation
04a08f3
to
293781d
Compare
293781d
to
42b04d4
Compare
/hold Want to check if it works like this for submodules |
42b04d4
to
31e8bf7
Compare
/hold cancel We have to run it on a per-module base. Added all modules to |
31e8bf7
to
1d9bc7e
Compare
1d9bc7e
to
3d39d99
Compare
cf19c1c
to
742571c
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Just one nit otherwise lgtm from my side
/assign @vincepri |
…te to scan action
742571c
to
a13cca5
Compare
@vincepri : kindly asking for another look if you find some time :-) |
I'll merge it for now so we can get some experience. If there are further comments let's open a follow-up PR. I think there were no general objections /lgtm |
LGTM label has been added. Git tree hash: 48c20f9b67f8adef679a49b898fda363f337eff0
|
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: sbueringer The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
/cherry-pick release-1.5 |
/cherry-pick release-1.4 |
@chrischdi: #9144 failed to apply on top of branch "release-1.5":
In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
@chrischdi: #9144 failed to apply on top of branch "release-1.4":
In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
/area ci |
What this PR does / why we need it:
Adds:
verify-govulncheck
target, to scan the code viagovulncheck
verify-vulnerabilities
target which runs./hack/verify-vulnerabilities.sh
make verify-container-images
make verify-govulncheck
verify-vulnerabilities
in scan action instead ofverify-container-images
Which issue(s) this PR fixes (optional, in
fixes #<issue number>(, fixes #<issue_number>, ...)
format, will close the issue(s) when PR gets merged):Fixes #9091