From 124aac5a910496606db33f3688010309d780e5f4 Mon Sep 17 00:00:00 2001 From: Nicolas Vuillamy Date: Wed, 16 Oct 2024 21:04:50 +0200 Subject: [PATCH] [automation] Auto-update linters version, help and documentation (#4147) * [automation] Auto-update linters version, help and documentation * [MegaLinter] Apply linters fixes * Trivy: handle retry if `failed to download Java DB` is detected * [MegaLinter] Apply linters fixes --------- Co-authored-by: nvuillam --- .automation/generated/linter-helps.json | 28 ++++++++-------- .automation/generated/linter-versions.json | 6 ++-- .trivyignore | 4 +++ CHANGELOG.md | 4 +++ docs/all_linters.md | 6 ++-- docs/descriptors/kubernetes_kubescape.md | 2 +- docs/descriptors/python_pyright.md | 2 +- docs/descriptors/repository_checkov.md | 6 ++-- .../salesforce_lightning_flow_scanner.md | 2 +- .../salesforce_sfdx_scanner_apex.md | 4 +-- .../salesforce_sfdx_scanner_aura.md | 2 +- .../salesforce_sfdx_scanner_lwc.md | 4 +-- docs/descriptors/snakemake_snakemake.md | 12 +++---- docs/used-by-stats.md | 32 +++++++++---------- megalinter/linters/TrivyLinter.py | 4 ++- megalinter/reporters/AzureCommentReporter.py | 4 +-- 16 files changed, 65 insertions(+), 57 deletions(-) diff --git a/.automation/generated/linter-helps.json b/.automation/generated/linter-helps.json index f5886884f2d..f63aef33b2c 100644 --- a/.automation/generated/linter-helps.json +++ b/.automation/generated/linter-helps.json @@ -789,7 +789,7 @@ " [--secrets-scan-file-type SECRETS_SCAN_FILE_TYPE]", " [--enable-secret-scan-all-files]", " [--block-list-secret-scan BLOCK_LIST_SECRET_SCAN]", - " [--summary-position {bottom,top}]", + " [--summary-position {top,bottom}]", " [--skip-resources-without-violations] [--deep-analysis]", " [--no-fail-on-crash] [--mask MASK] [--scan-secrets-history]", " [--secrets-history-timeout SECRETS_HISTORY_TIMEOUT]", @@ -1102,7 +1102,7 @@ " --block-list-secret-scan BLOCK_LIST_SECRET_SCAN", " List of files to filter out from the secret scanner", " [env var: CKV_SECRETS_SCAN_BLOCK_LIST]", - " --summary-position {bottom,top}", + " --summary-position {top,bottom}", " Chose whether the summary will be appended on top", " (before the checks results) or on bottom (after check", " results), default is on top.", @@ -3473,7 +3473,7 @@ " completion Generate autocompletion script", " config Handle cached configurations", " delete Delete configurations in Kubescape SaaS version", - " download Download framework,artifacts,attack-tracks,controls-inputs,exceptions,control", + " download Download controls-inputs,exceptions,control,framework,artifacts,attack-tracks", " fix Fix misconfiguration in files", " help Help about any command", " list List frameworks/controls will list the supported frameworks and controls", @@ -3520,7 +3520,7 @@ " --version version for kubeval" ], "lightning-flow-scanner": [ - "(node:1741) [DEP0040] DeprecationWarning: The `punycode` module is deprecated. Please use a userland alternative instead.", + "(node:1742) [DEP0040] DeprecationWarning: The `punycode` module is deprecated. Please use a userland alternative instead.", "(Use `node --trace-deprecation ...` to show where the warning was created)", "Find and fix potential bugs in Salesforce flows.", "", @@ -8086,7 +8086,7 @@ "@typescript-eslint/unbound-method typescript Best Practices Best Practices eslint-typescript" ], "sfdx-scanner-apex": [ - "(node:1753) [DEP0040] DeprecationWarning: The `punycode` module is deprecated. Please use a userland alternative instead.", + "(node:1754) [DEP0040] DeprecationWarning: The `punycode` module is deprecated. Please use a userland alternative instead.", "(Use `node --trace-deprecation ...` to show where the warning was created)", "Scan a codebase with all the rules in the registry, or use parameters to filter the rules based on rulename, category, or ruleset.", "", @@ -8141,7 +8141,7 @@ "COMMANDS", " scanner run dfa Scan codebase with all DFA rules by default.", "", - "(node:1765) [DEP0040] DeprecationWarning: The `punycode` module is deprecated. Please use a userland alternative instead.", + "(node:1766) [DEP0040] DeprecationWarning: The `punycode` module is deprecated. Please use a userland alternative instead.", "(Use `node --trace-deprecation ...` to show where the warning was created)", "Warning: We're continually improving Salesforce Code Analyzer. Tell us what you think! Give feedback at https://research.net/r/SalesforceCA", " name languages categories rulesets [dep] engine is dfa is pilot", @@ -8417,7 +8417,7 @@ "COMMANDS", " scanner run dfa Scan codebase with all DFA rules by default.", "", - "(node:1959) [DEP0040] DeprecationWarning: The `punycode` module is deprecated. Please use a userland alternative instead.", + "(node:1960) [DEP0040] DeprecationWarning: The `punycode` module is deprecated. Please use a userland alternative instead.", "(Use `node --trace-deprecation ...` to show where the warning was created)", "Warning: We're continually improving Salesforce Code Analyzer. Tell us what you think! Give feedback at https://research.net/r/SalesforceCA", " name languages categories rulesets [dep] engine is dfa is pilot", @@ -8638,7 +8638,7 @@ " UnimplementedTypeRule apex Performance sfge N N" ], "sfdx-scanner-lwc": [ - "(node:2141) [DEP0040] DeprecationWarning: The `punycode` module is deprecated. Please use a userland alternative instead.", + "(node:2142) [DEP0040] DeprecationWarning: The `punycode` module is deprecated. Please use a userland alternative instead.", "(Use `node --trace-deprecation ...` to show where the warning was created)", "Scan a codebase with all the rules in the registry, or use parameters to filter the rules based on rulename, category, or ruleset.", "", @@ -8693,7 +8693,7 @@ "COMMANDS", " scanner run dfa Scan codebase with all DFA rules by default.", "", - "(node:2153) [DEP0040] DeprecationWarning: The `punycode` module is deprecated. Please use a userland alternative instead.", + "(node:2154) [DEP0040] DeprecationWarning: The `punycode` module is deprecated. Please use a userland alternative instead.", "(Use `node --trace-deprecation ...` to show where the warning was created)", "Warning: We're continually improving Salesforce Code Analyzer. Tell us what you think! Give feedback at https://research.net/r/SalesforceCA", " name languages categories rulesets [dep] engine is dfa is pilot", @@ -9054,7 +9054,7 @@ " [--d3dag] [--summary] [--detailed-summary] [--archive FILE]", " [--cleanup-metadata FILE [FILE ...]] [--cleanup-shadow]", " [--skip-script-cleanup] [--unlock]", - " [--list-changes {code,input,params}] [--list-input-changes]", + " [--list-changes {input,params,code}] [--list-input-changes]", " [--list-params-changes] [--list-untracked]", " [--delete-all-output | --delete-temp-output]", " [--keep-incomplete] [--drop-metadata] [--version]", @@ -9098,7 +9098,7 @@ " [--scheduler-solver-path SCHEDULER_SOLVER_PATH]", " [--deploy-sources QUERY CHECKSUM]", " [--target-jobs TARGET_JOBS [TARGET_JOBS ...]]", - " [--mode {remote,subprocess,default}]", + " [--mode {default,remote,subprocess}]", " [--report-html-path VALUE]", " [--report-html-stylesheet-path VALUE]", " [targets ...]", @@ -9556,7 +9556,7 @@ " (default: False)", " --unlock Remove a lock on the working directory. (default:", " False)", - " --list-changes {code,input,params}, --lc {code,input,params}", + " --list-changes {input,params,code}, --lc {input,params,code}", " List all output files for which the given items (code,", " input, params) have changed since creation.", " --list-input-changes, --li", @@ -9785,7 +9785,7 @@ " contain a working snakemake installation that is", " compatible with (or ideally the same as) the currently", " running version. (default:", - " snakemake/snakemake:v8.23.0)", + " snakemake/snakemake:v8.23.1)", " --immediate-submit, --is", " Immediately submit all jobs to the cluster instead of", " waiting for present input files. This will fail,", @@ -9907,7 +9907,7 @@ " --target-jobs TARGET_JOBS [TARGET_JOBS ...]", " Internal use only: Target particular jobs by", " RULE:WILDCARD1=VALUE,WILDCARD2=VALUE,...", - " --mode {remote,subprocess,default}", + " --mode {default,remote,subprocess}", " Internal use only: Set execution mode of Snakemake.", " (default: default)", "", diff --git a/.automation/generated/linter-versions.json b/.automation/generated/linter-versions.json index e2542f3208a..f6812051972 100644 --- a/.automation/generated/linter-versions.json +++ b/.automation/generated/linter-versions.json @@ -8,7 +8,7 @@ "black": "24.10.0", "cfn-lint": "1.16.1", "checkmake": "0.2.0", - "checkov": "3.2.266", + "checkov": "3.2.267", "checkstyle": "10.18.2", "chktex": "1.7.8", "clang-format": "17.0.6", @@ -76,7 +76,7 @@ "psalm": "Psalm.5.26.1@", "puppet-lint": "4.2.4", "pylint": "3.3.1", - "pyright": "1.1.384", + "pyright": "1.1.385", "raku": "2020.10", "remark-lint": "14.0.2", "revive": "1.4.0", @@ -98,7 +98,7 @@ "shellcheck": "0.10.0", "shfmt": "3.9.0", "snakefmt": "0.10.2", - "snakemake": "8.23.0", + "snakemake": "8.23.1", "spectral": "6.13.1", "sql-lint": "1.0.0", "sqlfluff": "3.2.4", diff --git a/.trivyignore b/.trivyignore index 59507b8d0b7..eb401369c76 100644 --- a/.trivyignore +++ b/.trivyignore @@ -32,6 +32,10 @@ CVE-2023-45283 CVE-2023-49569 CVE-2023-49568 +# node +# json-path +CVE-2024-21534 + # python CVE-2024-6232 CVE-2024-7592 diff --git a/CHANGELOG.md b/CHANGELOG.md index 5642d3e0f8e..cd6dc263260 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -17,6 +17,7 @@ Note: Can be used with `oxsecurity/megalinter@beta` in your GitHub Action mega-l - Linters enhancements - Fixes + - Trivy: handle retry if `failed to download Java DB` is detected - Reporters - Fix AzureCommentReporter not adding comments to PR on 2024-10-15 @@ -42,6 +43,9 @@ Note: Can be used with `oxsecurity/megalinter@beta` in your GitHub Action mega-l - [gitleaks](https://github.com/gitleaks/gitleaks) from 8.20.1 to **8.21.0** on 2024-10-15 - [syft](https://github.com/anchore/syft) from 1.14.0 to **1.14.1** on 2024-10-15 - [rubocop](https://rubocop.org/) from 1.66.1 to **1.67.0** on 2024-10-15 + - [pyright](https://github.com/Microsoft/pyright) from 1.1.384 to **1.1.385** on 2024-10-16 + - [checkov](https://www.checkov.io/) from 3.2.266 to **3.2.267** on 2024-10-16 + - [snakemake](https://snakemake.readthedocs.io/en/stable/) from 8.23.0 to **8.23.1** on 2024-10-16 ## [v8.1.0] - 2024-10-13 diff --git a/docs/all_linters.md b/docs/all_linters.md index 6302e59dcbd..8cd318e972a 100644 --- a/docs/all_linters.md +++ b/docs/all_linters.md @@ -14,7 +14,7 @@ | [**black**](https://github.com/psf/black){target=_blank} | 24.10.0 | [MIT](licenses/black.md) | [![GitHub stars](https://img.shields.io/github/stars/psf/black?cacheSeconds=3600)](https://github.com/psf/black){target=_blank} | [PYTHON](descriptors/python_black.md) | :white_circle: | [Repository](https://github.com/psf/black){target=_blank} | | [**cfn-lint**](https://github.com/aws-cloudformation/cfn-lint){target=_blank} | 1.16.1 | [MIT-0](licenses/cfn-lint.md) | [![GitHub stars](https://img.shields.io/github/stars/aws-cloudformation/cfn-lint?cacheSeconds=3600)](https://github.com/aws-cloudformation/cfn-lint){target=_blank} | [CLOUDFORMATION](descriptors/cloudformation_cfn_lint.md) | :white_circle: | [Repository](https://github.com/aws-cloudformation/cfn-lint){target=_blank} | | [**checkmake**](https://github.com/mrtazz/checkmake){target=_blank} | 0.2.0 | [MIT](licenses/checkmake.md) | [![GitHub stars](https://img.shields.io/github/stars/mrtazz/checkmake?cacheSeconds=3600)](https://github.com/mrtazz/checkmake){target=_blank} | [MAKEFILE](descriptors/makefile_checkmake.md) | :white_circle: | [Repository](https://github.com/mrtazz/checkmake){target=_blank} | -| [**checkov**](https://github.com/bridgecrewio/checkov){target=_blank} | 3.2.266 | [Apache-2.0](licenses/checkov.md) | [![GitHub stars](https://img.shields.io/github/stars/bridgecrewio/checkov?cacheSeconds=3600)](https://github.com/bridgecrewio/checkov){target=_blank} | [REPOSITORY](descriptors/repository_checkov.md) | :no_entry_sign: | [Repository](https://github.com/bridgecrewio/checkov){target=_blank} | +| [**checkov**](https://github.com/bridgecrewio/checkov){target=_blank} | 3.2.267 | [Apache-2.0](licenses/checkov.md) | [![GitHub stars](https://img.shields.io/github/stars/bridgecrewio/checkov?cacheSeconds=3600)](https://github.com/bridgecrewio/checkov){target=_blank} | [REPOSITORY](descriptors/repository_checkov.md) | :no_entry_sign: | [Repository](https://github.com/bridgecrewio/checkov){target=_blank} | | [**checkstyle**](https://github.com/checkstyle/checkstyle){target=_blank} | 10.18.2 | [LGPL-2.1](licenses/checkstyle.md) | [![GitHub stars](https://img.shields.io/github/stars/checkstyle/checkstyle?cacheSeconds=3600)](https://github.com/checkstyle/checkstyle){target=_blank} | [JAVA](descriptors/java_checkstyle.md) | :heart: | [MegaLinter reference](https://checkstyle.org/index.html#Related_Tools_Active_Tools){target=_blank} | | [**chktex**](https://www.nongnu.org/chktex){target=_blank} | 1.7.8 | | | [LATEX](descriptors/latex_chktex.md) | :white_circle: | [Web Site](https://www.nongnu.org/chktex){target=_blank} | | [**clang-format**](https://github.com/llvm/llvm-project){target=_blank} | 17.0.6 | [Other](licenses/clang-format.md) | [![GitHub stars](https://img.shields.io/github/stars/llvm/llvm-project?cacheSeconds=3600)](https://github.com/llvm/llvm-project){target=_blank} | [C](descriptors/c_clang_format.md)
[CPP](descriptors/cpp_clang_format.md) | :white_circle: | [Repository](https://github.com/llvm/llvm-project){target=_blank} | @@ -77,7 +77,7 @@ | [**psalm**](https://github.com/vimeo/psalm){target=_blank} | Psalm.5.26.1@ | [MIT](licenses/psalm.md) | [![GitHub stars](https://img.shields.io/github/stars/vimeo/psalm?cacheSeconds=3600)](https://github.com/vimeo/psalm){target=_blank} | [PHP](descriptors/php_psalm.md) | :white_circle: | [Repository](https://github.com/vimeo/psalm){target=_blank} | | [**puppet-lint**](https://github.com/puppetlabs/puppet-lint){target=_blank} | 4.2.4 | [MIT](licenses/puppet-lint.md) | [![GitHub stars](https://img.shields.io/github/stars/puppetlabs/puppet-lint?cacheSeconds=3600)](https://github.com/puppetlabs/puppet-lint){target=_blank} | [PUPPET](descriptors/puppet_puppet_lint.md) | :white_circle: | [Repository](https://github.com/puppetlabs/puppet-lint){target=_blank} | | [**pylint**](https://github.com/pylint-dev/pylint){target=_blank} | 3.3.1 | [GPL-2.0](licenses/pylint.md) | [![GitHub stars](https://img.shields.io/github/stars/pylint-dev/pylint?cacheSeconds=3600)](https://github.com/pylint-dev/pylint){target=_blank} | [PYTHON](descriptors/python_pylint.md) | :white_circle: | [Repository](https://github.com/pylint-dev/pylint){target=_blank} | -| [**pyright**](https://github.com/microsoft/pyright){target=_blank} | 1.1.384 | [Other](licenses/pyright.md) | [![GitHub stars](https://img.shields.io/github/stars/microsoft/pyright?cacheSeconds=3600)](https://github.com/microsoft/pyright){target=_blank} | [PYTHON](descriptors/python_pyright.md) | :white_circle: | [Repository](https://github.com/microsoft/pyright){target=_blank} | +| [**pyright**](https://github.com/microsoft/pyright){target=_blank} | 1.1.385 | [Other](licenses/pyright.md) | [![GitHub stars](https://img.shields.io/github/stars/microsoft/pyright?cacheSeconds=3600)](https://github.com/microsoft/pyright){target=_blank} | [PYTHON](descriptors/python_pyright.md) | :white_circle: | [Repository](https://github.com/microsoft/pyright){target=_blank} | | [**raku**](https://github.com/rakudo/rakudo){target=_blank} | 2020.10 | [Artistic-2.0](licenses/raku.md) | [![GitHub stars](https://img.shields.io/github/stars/rakudo/rakudo?cacheSeconds=3600)](https://github.com/rakudo/rakudo){target=_blank} | [RAKU](descriptors/raku_raku.md) | :white_circle: | [Repository](https://github.com/rakudo/rakudo){target=_blank} | | [**remark-lint**](https://github.com/remarkjs/remark-lint){target=_blank} | 14.0.2 | [MIT](licenses/remark-lint.md) | [![GitHub stars](https://img.shields.io/github/stars/remarkjs/remark-lint?cacheSeconds=3600)](https://github.com/remarkjs/remark-lint){target=_blank} | [MARKDOWN](descriptors/markdown_remark_lint.md) | :white_circle: | [Repository](https://github.com/remarkjs/remark-lint){target=_blank} | | [**revive**](https://github.com/mgechev/revive){target=_blank} | 1.4.0 | [MIT](licenses/revive.md) | [![GitHub stars](https://img.shields.io/github/stars/mgechev/revive?cacheSeconds=3600)](https://github.com/mgechev/revive){target=_blank} | [GO](descriptors/go_revive.md) | :white_circle: | [Repository](https://github.com/mgechev/revive){target=_blank} | @@ -97,7 +97,7 @@ | [**shellcheck**](https://github.com/koalaman/shellcheck){target=_blank} | 0.10.0 | [GPL-3.0](licenses/shellcheck.md) | [![GitHub stars](https://img.shields.io/github/stars/koalaman/shellcheck?cacheSeconds=3600)](https://github.com/koalaman/shellcheck){target=_blank} | [BASH](descriptors/bash_shellcheck.md) | | [Repository](https://github.com/koalaman/shellcheck){target=_blank} | | [**shfmt**](https://github.com/mvdan/sh){target=_blank} | 3.9.0 | [BSD-3-Clause](licenses/shfmt.md) | [![GitHub stars](https://img.shields.io/github/stars/mvdan/sh?cacheSeconds=3600)](https://github.com/mvdan/sh){target=_blank} | [BASH](descriptors/bash_shfmt.md) | :no_entry_sign: | [Repository](https://github.com/mvdan/sh){target=_blank} | | [**snakefmt**](https://github.com/snakemake/snakefmt){target=_blank} | 0.10.2 | [MIT](licenses/snakefmt.md) | [![GitHub stars](https://img.shields.io/github/stars/snakemake/snakefmt?cacheSeconds=3600)](https://github.com/snakemake/snakefmt){target=_blank} | [SNAKEMAKE](descriptors/snakemake_snakefmt.md) | :white_circle: | [Repository](https://github.com/snakemake/snakefmt){target=_blank} | -| [**snakemake**](https://github.com/snakemake/snakemake){target=_blank} | 8.23.0 | [MIT](licenses/snakemake.md) | [![GitHub stars](https://img.shields.io/github/stars/snakemake/snakemake?cacheSeconds=3600)](https://github.com/snakemake/snakemake){target=_blank} | [SNAKEMAKE](descriptors/snakemake_snakemake.md) | :white_circle: | [Repository](https://github.com/snakemake/snakemake){target=_blank} | +| [**snakemake**](https://github.com/snakemake/snakemake){target=_blank} | 8.23.1 | [MIT](licenses/snakemake.md) | [![GitHub stars](https://img.shields.io/github/stars/snakemake/snakemake?cacheSeconds=3600)](https://github.com/snakemake/snakemake){target=_blank} | [SNAKEMAKE](descriptors/snakemake_snakemake.md) | :white_circle: | [Repository](https://github.com/snakemake/snakemake){target=_blank} | | [**spectral**](https://github.com/stoplightio/spectral){target=_blank} | 6.13.1 | [Apache-2.0](licenses/spectral.md) | [![GitHub stars](https://img.shields.io/github/stars/stoplightio/spectral?cacheSeconds=3600)](https://github.com/stoplightio/spectral){target=_blank} | [API](descriptors/api_spectral.md) | :white_circle: | [Repository](https://github.com/stoplightio/spectral){target=_blank} | | [**sqlfluff**](https://github.com/sqlfluff/sqlfluff){target=_blank} | 3.2.4 | [MIT](licenses/sqlfluff.md) | [![GitHub stars](https://img.shields.io/github/stars/sqlfluff/sqlfluff?cacheSeconds=3600)](https://github.com/sqlfluff/sqlfluff){target=_blank} | [SQL](descriptors/sql_sqlfluff.md) | :white_circle: | [Repository](https://github.com/sqlfluff/sqlfluff){target=_blank} | | [**standard**](https://github.com/standard/standard){target=_blank} | 17.1.2 | [MIT](licenses/standard.md) | [![GitHub stars](https://img.shields.io/github/stars/standard/standard?cacheSeconds=3600)](https://github.com/standard/standard){target=_blank} | [JAVASCRIPT](descriptors/javascript_standard.md) | :white_circle: | [Repository](https://github.com/standard/standard){target=_blank} | diff --git a/docs/descriptors/kubernetes_kubescape.md b/docs/descriptors/kubernetes_kubescape.md index a2d00c7f082..60ad008eb89 100644 --- a/docs/descriptors/kubernetes_kubescape.md +++ b/docs/descriptors/kubernetes_kubescape.md @@ -126,7 +126,7 @@ Available Commands: completion Generate autocompletion script config Handle cached configurations delete Delete configurations in Kubescape SaaS version - download Download framework,artifacts,attack-tracks,controls-inputs,exceptions,control + download Download controls-inputs,exceptions,control,framework,artifacts,attack-tracks fix Fix misconfiguration in files help Help about any command list List frameworks/controls will list the supported frameworks and controls diff --git a/docs/descriptors/python_pyright.md b/docs/descriptors/python_pyright.md index 158bb73aead..fe3d54dc885 100644 --- a/docs/descriptors/python_pyright.md +++ b/docs/descriptors/python_pyright.md @@ -19,7 +19,7 @@ If you don't use python static typing, you should disable this linter by adding ## pyright documentation -- Version in MegaLinter: **1.1.384** +- Version in MegaLinter: **1.1.385** - Visit [Official Web Site](https://github.com/Microsoft/pyright#readme){target=_blank} - See [How to configure pyright rules](https://github.com/microsoft/pyright/blob/main/docs/configuration.md){target=_blank} - See [How to disable pyright rules in files](https://github.com/microsoft/pyright/blob/main/docs/comments.md#file-level-type-controls){target=_blank} diff --git a/docs/descriptors/repository_checkov.md b/docs/descriptors/repository_checkov.md index e6702e4aee7..cbaa242df3c 100644 --- a/docs/descriptors/repository_checkov.md +++ b/docs/descriptors/repository_checkov.md @@ -15,7 +15,7 @@ description: How to use checkov (configure, ignore files, ignore errors, help & ## checkov documentation -- Version in MegaLinter: **3.2.266** +- Version in MegaLinter: **3.2.267** - Visit [Official Web Site](https://www.checkov.io/){target=_blank} - See [How to configure checkov rules](https://github.com/bridgecrewio/checkov#configuration-using-a-config-file){target=_blank} - If custom `.checkov.yml` config file isn't found, [.checkov.yml](https://github.com/oxsecurity/megalinter/tree/main/TEMPLATES/.checkov.yml){target=_blank} will be used @@ -135,7 +135,7 @@ usage: checkov [-h] [-v] [--support] [-d DIRECTORY] [--add-check] [--secrets-scan-file-type SECRETS_SCAN_FILE_TYPE] [--enable-secret-scan-all-files] [--block-list-secret-scan BLOCK_LIST_SECRET_SCAN] - [--summary-position {bottom,top}] + [--summary-position {top,bottom}] [--skip-resources-without-violations] [--deep-analysis] [--no-fail-on-crash] [--mask MASK] [--scan-secrets-history] [--secrets-history-timeout SECRETS_HISTORY_TIMEOUT] @@ -448,7 +448,7 @@ options: --block-list-secret-scan BLOCK_LIST_SECRET_SCAN List of files to filter out from the secret scanner [env var: CKV_SECRETS_SCAN_BLOCK_LIST] - --summary-position {bottom,top} + --summary-position {top,bottom} Chose whether the summary will be appended on top (before the checks results) or on bottom (after check results), default is on top. diff --git a/docs/descriptors/salesforce_lightning_flow_scanner.md b/docs/descriptors/salesforce_lightning_flow_scanner.md index ae7ba585155..3df55d0c355 100644 --- a/docs/descriptors/salesforce_lightning_flow_scanner.md +++ b/docs/descriptors/salesforce_lightning_flow_scanner.md @@ -90,7 +90,7 @@ sf flow:scan ### Help content ```shell -(node:1741) [DEP0040] DeprecationWarning: The `punycode` module is deprecated. Please use a userland alternative instead. +(node:1742) [DEP0040] DeprecationWarning: The `punycode` module is deprecated. Please use a userland alternative instead. (Use `node --trace-deprecation ...` to show where the warning was created) Find and fix potential bugs in Salesforce flows. diff --git a/docs/descriptors/salesforce_sfdx_scanner_apex.md b/docs/descriptors/salesforce_sfdx_scanner_apex.md index 8ca73a6379c..f5a0546ea91 100644 --- a/docs/descriptors/salesforce_sfdx_scanner_apex.md +++ b/docs/descriptors/salesforce_sfdx_scanner_apex.md @@ -94,7 +94,7 @@ sf scanner:run ### Help content ```shell -(node:1753) [DEP0040] DeprecationWarning: The `punycode` module is deprecated. Please use a userland alternative instead. +(node:1754) [DEP0040] DeprecationWarning: The `punycode` module is deprecated. Please use a userland alternative instead. (Use `node --trace-deprecation ...` to show where the warning was created) Scan a codebase with all the rules in the registry, or use parameters to filter the rules based on rulename, category, or ruleset. @@ -149,7 +149,7 @@ GLOBAL FLAGS COMMANDS scanner run dfa Scan codebase with all DFA rules by default. -(node:1765) [DEP0040] DeprecationWarning: The `punycode` module is deprecated. Please use a userland alternative instead. +(node:1766) [DEP0040] DeprecationWarning: The `punycode` module is deprecated. Please use a userland alternative instead. (Use `node --trace-deprecation ...` to show where the warning was created) Warning: We're continually improving Salesforce Code Analyzer. Tell us what you think! Give feedback at https://research.net/r/SalesforceCA name languages categories rulesets [dep] engine is dfa is pilot diff --git a/docs/descriptors/salesforce_sfdx_scanner_aura.md b/docs/descriptors/salesforce_sfdx_scanner_aura.md index 21beb147e1b..5b0f4a11220 100644 --- a/docs/descriptors/salesforce_sfdx_scanner_aura.md +++ b/docs/descriptors/salesforce_sfdx_scanner_aura.md @@ -145,7 +145,7 @@ GLOBAL FLAGS COMMANDS scanner run dfa Scan codebase with all DFA rules by default. -(node:1959) [DEP0040] DeprecationWarning: The `punycode` module is deprecated. Please use a userland alternative instead. +(node:1960) [DEP0040] DeprecationWarning: The `punycode` module is deprecated. Please use a userland alternative instead. (Use `node --trace-deprecation ...` to show where the warning was created) Warning: We're continually improving Salesforce Code Analyzer. Tell us what you think! Give feedback at https://research.net/r/SalesforceCA name languages categories rulesets [dep] engine is dfa is pilot diff --git a/docs/descriptors/salesforce_sfdx_scanner_lwc.md b/docs/descriptors/salesforce_sfdx_scanner_lwc.md index f07d99bc00c..78b0d539106 100644 --- a/docs/descriptors/salesforce_sfdx_scanner_lwc.md +++ b/docs/descriptors/salesforce_sfdx_scanner_lwc.md @@ -90,7 +90,7 @@ sf scanner:run ### Help content ```shell -(node:2141) [DEP0040] DeprecationWarning: The `punycode` module is deprecated. Please use a userland alternative instead. +(node:2142) [DEP0040] DeprecationWarning: The `punycode` module is deprecated. Please use a userland alternative instead. (Use `node --trace-deprecation ...` to show where the warning was created) Scan a codebase with all the rules in the registry, or use parameters to filter the rules based on rulename, category, or ruleset. @@ -145,7 +145,7 @@ GLOBAL FLAGS COMMANDS scanner run dfa Scan codebase with all DFA rules by default. -(node:2153) [DEP0040] DeprecationWarning: The `punycode` module is deprecated. Please use a userland alternative instead. +(node:2154) [DEP0040] DeprecationWarning: The `punycode` module is deprecated. Please use a userland alternative instead. (Use `node --trace-deprecation ...` to show where the warning was created) Warning: We're continually improving Salesforce Code Analyzer. Tell us what you think! Give feedback at https://research.net/r/SalesforceCA name languages categories rulesets [dep] engine is dfa is pilot diff --git a/docs/descriptors/snakemake_snakemake.md b/docs/descriptors/snakemake_snakemake.md index f116ba79158..e71cb9faadc 100644 --- a/docs/descriptors/snakemake_snakemake.md +++ b/docs/descriptors/snakemake_snakemake.md @@ -15,7 +15,7 @@ description: How to use snakemake (configure, ignore files, ignore errors, help ## snakemake documentation -- Version in MegaLinter: **8.23.0** +- Version in MegaLinter: **8.23.1** - Visit [Official Web Site](https://snakemake.readthedocs.io/en/stable/){target=_blank} [![snakemake - GitHub](https://gh-card.dev/repos/snakemake/snakemake.svg?fullname=)](https://github.com/snakemake/snakemake){target=_blank} @@ -132,7 +132,7 @@ usage: snakemake [-h] [--dry-run] [--profile PROFILE] [--d3dag] [--summary] [--detailed-summary] [--archive FILE] [--cleanup-metadata FILE [FILE ...]] [--cleanup-shadow] [--skip-script-cleanup] [--unlock] - [--list-changes {code,input,params}] [--list-input-changes] + [--list-changes {input,params,code}] [--list-input-changes] [--list-params-changes] [--list-untracked] [--delete-all-output | --delete-temp-output] [--keep-incomplete] [--drop-metadata] [--version] @@ -176,7 +176,7 @@ usage: snakemake [-h] [--dry-run] [--profile PROFILE] [--scheduler-solver-path SCHEDULER_SOLVER_PATH] [--deploy-sources QUERY CHECKSUM] [--target-jobs TARGET_JOBS [TARGET_JOBS ...]] - [--mode {remote,subprocess,default}] + [--mode {default,remote,subprocess}] [--report-html-path VALUE] [--report-html-stylesheet-path VALUE] [targets ...] @@ -634,7 +634,7 @@ UTILITIES: (default: False) --unlock Remove a lock on the working directory. (default: False) - --list-changes {code,input,params}, --lc {code,input,params} + --list-changes {input,params,code}, --lc {input,params,code} List all output files for which the given items (code, input, params) have changed since creation. --list-input-changes, --li @@ -863,7 +863,7 @@ REMOTE EXECUTION: contain a working snakemake installation that is compatible with (or ideally the same as) the currently running version. (default: - snakemake/snakemake:v8.23.0) + snakemake/snakemake:v8.23.1) --immediate-submit, --is Immediately submit all jobs to the cluster instead of waiting for present input files. This will fail, @@ -985,7 +985,7 @@ INTERNAL: --target-jobs TARGET_JOBS [TARGET_JOBS ...] Internal use only: Target particular jobs by RULE:WILDCARD1=VALUE,WILDCARD2=VALUE,... - --mode {remote,subprocess,default} + --mode {default,remote,subprocess} Internal use only: Set execution mode of Snakemake. (default: default) diff --git a/docs/used-by-stats.md b/docs/used-by-stats.md index 29defabd17a..0ee86bae508 100644 --- a/docs/used-by-stats.md +++ b/docs/used-by-stats.md @@ -3,20 +3,20 @@ [![Generated by github-dependents-info](https://img.shields.io/static/v1?label=Used%20by&message=2703&color=informational&logo=slickpic)](https://github.com/oxsecurity/megalinter/network/dependents) [![Generated by github-dependents-info](https://img.shields.io/static/v1?label=Used%20by%20(public)&message=2703&color=informational&logo=slickpic)](https://github.com/oxsecurity/megalinter/network/dependents) [![Generated by github-dependents-info](https://img.shields.io/static/v1?label=Used%20by%20(private)&message=-2703&color=informational&logo=slickpic)](https://github.com/oxsecurity/megalinter/network/dependents) -[![Generated by github-dependents-info](https://img.shields.io/static/v1?label=Used%20by%20(stars)&message=90267&color=informational&logo=slickpic)](https://github.com/oxsecurity/megalinter/network/dependents) +[![Generated by github-dependents-info](https://img.shields.io/static/v1?label=Used%20by%20(stars)&message=90285&color=informational&logo=slickpic)](https://github.com/oxsecurity/megalinter/network/dependents) | Repository | Stars | |:-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|------:| -|   [nektos](https://github.com/nektos) / [act](https://github.com/nektos/act) | 54574 | -|   [PRQL](https://github.com/PRQL) / [prql](https://github.com/PRQL/prql) | 9879 | -|   [dorssel](https://github.com/dorssel) / [usbipd-win](https://github.com/dorssel/usbipd-win) | 3617 | +|   [nektos](https://github.com/nektos) / [act](https://github.com/nektos/act) | 54584 | +|   [PRQL](https://github.com/PRQL) / [prql](https://github.com/PRQL/prql) | 9881 | +|   [dorssel](https://github.com/dorssel) / [usbipd-win](https://github.com/dorssel/usbipd-win) | 3619 | |   [IlanCosman](https://github.com/IlanCosman) / [tide](https://github.com/IlanCosman/tide) | 2932 | |   [stepancheg](https://github.com/stepancheg) / [rust-protobuf](https://github.com/stepancheg/rust-protobuf) | 2785 | -|   [privacyguides](https://github.com/privacyguides) / [privacyguides.org](https://github.com/privacyguides/privacyguides.org) | 2736 | -|   [PowerDNS-Admin](https://github.com/PowerDNS-Admin) / [PowerDNS-Admin](https://github.com/PowerDNS-Admin/PowerDNS-Admin) | 2448 | -|   [ever-co](https://github.com/ever-co) / [ever-gauzy](https://github.com/ever-co/ever-gauzy) | 2255 | +|   [privacyguides](https://github.com/privacyguides) / [privacyguides.org](https://github.com/privacyguides/privacyguides.org) | 2737 | +|   [PowerDNS-Admin](https://github.com/PowerDNS-Admin) / [PowerDNS-Admin](https://github.com/PowerDNS-Admin/PowerDNS-Admin) | 2449 | +|   [ever-co](https://github.com/ever-co) / [ever-gauzy](https://github.com/ever-co/ever-gauzy) | 2256 | |   [microsoft](https://github.com/microsoft) / [code-with-engineering-playbook](https://github.com/microsoft/code-with-engineering-playbook) | 2236 | -|   [oxsecurity](https://github.com/oxsecurity) / [megalinter](https://github.com/oxsecurity/megalinter) | 1902 | +|   [oxsecurity](https://github.com/oxsecurity) / [megalinter](https://github.com/oxsecurity/megalinter) | 1903 | |   [meichthys](https://github.com/meichthys) / [foss_photo_libraries](https://github.com/meichthys/foss_photo_libraries) | 1855 | |   [cisagov](https://github.com/cisagov) / [ScubaGear](https://github.com/cisagov/ScubaGear) | 1607 | |   [Romanitho](https://github.com/Romanitho) / [Winget-AutoUpdate](https://github.com/Romanitho/Winget-AutoUpdate) | 1125 | @@ -53,7 +53,7 @@ |   [brettinternet](https://github.com/brettinternet) / [homeops](https://github.com/brettinternet/homeops) | 189 | |   [pantheon-systems](https://github.com/pantheon-systems) / [documentation](https://github.com/pantheon-systems/documentation) | 188 | |   [apigee](https://github.com/apigee) / [devrel](https://github.com/apigee/devrel) | 185 | -|   [MarketSquare](https://github.com/MarketSquare) / [robotframework-robocop](https://github.com/MarketSquare/robotframework-robocop) | 184 | +|   [MarketSquare](https://github.com/MarketSquare) / [robotframework-robocop](https://github.com/MarketSquare/robotframework-robocop) | 185 | |   [Uninett](https://github.com/Uninett) / [nav](https://github.com/Uninett/nav) | 182 | |   [szinn](https://github.com/szinn) / [k8s-homelab](https://github.com/szinn/k8s-homelab) | 181 | |   [newrelic](https://github.com/newrelic) / [newrelic-python-agent](https://github.com/newrelic/newrelic-python-agent) | 177 | @@ -67,7 +67,7 @@ |   [cbg-ethz](https://github.com/cbg-ethz) / [V-pipe](https://github.com/cbg-ethz/V-pipe) | 129 | |   [unixorn](https://github.com/unixorn) / [lima-xbar-plugin](https://github.com/unixorn/lima-xbar-plugin) | 116 | |   [practicalli](https://github.com/practicalli) / [spacemacs](https://github.com/practicalli/spacemacs) | 110 | -|   [AndreaPontrandolfo](https://github.com/AndreaPontrandolfo) / [sheriff](https://github.com/AndreaPontrandolfo/sheriff) | 107 | +|   [AndreaPontrandolfo](https://github.com/AndreaPontrandolfo) / [sheriff](https://github.com/AndreaPontrandolfo/sheriff) | 108 | |   [nvuillam](https://github.com/nvuillam) / [github-dependents-info](https://github.com/nvuillam/github-dependents-info) | 107 | |   [philips-software](https://github.com/philips-software) / [amp-devcontainer](https://github.com/philips-software/amp-devcontainer) | 104 | |   [Azure](https://github.com/Azure) / [ARO-RP](https://github.com/Azure/ARO-RP) | 101 | @@ -80,7 +80,7 @@ |   [rasa](https://github.com/rasa) / [scoops](https://github.com/rasa/scoops) | 81 | |   [ministryofjustice](https://github.com/ministryofjustice) / [aws-root-account](https://github.com/ministryofjustice/aws-root-account) | 80 | |   [hyperledger](https://github.com/hyperledger) / [identus-cloud-agent](https://github.com/hyperledger/identus-cloud-agent) | 79 | -|   [larivierec](https://github.com/larivierec) / [home-cluster](https://github.com/larivierec/home-cluster) | 78 | +|   [larivierec](https://github.com/larivierec) / [home-cluster](https://github.com/larivierec/home-cluster) | 79 | |   [npalm](https://github.com/npalm) / [action-docs](https://github.com/npalm/action-docs) | 76 | |   [oxsecurity](https://github.com/oxsecurity) / [codetotal](https://github.com/oxsecurity/codetotal) | 70 | |   [nvuillam](https://github.com/nvuillam) / [vscode-groovy-lint](https://github.com/nvuillam/vscode-groovy-lint) | 68 | @@ -117,11 +117,10 @@ |   [camaraproject](https://github.com/camaraproject) / [QualityOnDemand](https://github.com/camaraproject/QualityOnDemand) | 42 | |   [ruzickap](https://github.com/ruzickap) / [malware-cryptominer-container](https://github.com/ruzickap/malware-cryptominer-container) | 41 | |   [axeII](https://github.com/axeII) / [home-ops](https://github.com/axeII/home-ops) | 41 | +|   [AliceO2Group](https://github.com/AliceO2Group) / [O2Physics](https://github.com/AliceO2Group/O2Physics) | 40 | |   [nvuillam](https://github.com/nvuillam) / [node-java-caller](https://github.com/nvuillam/node-java-caller) | 40 | |   [MythicDrops](https://github.com/MythicDrops) / [MythicDrops](https://github.com/MythicDrops/MythicDrops) | 40 | |   [PowerDNS-Admin](https://github.com/PowerDNS-Admin) / [pda-next](https://github.com/PowerDNS-Admin/pda-next) | 40 | -|   [AliceO2Group](https://github.com/AliceO2Group) / [O2Physics](https://github.com/AliceO2Group/O2Physics) | 39 | -|   [whoisdsmith](https://github.com/whoisdsmith) / [VAULTSIDIAN](https://github.com/whoisdsmith/VAULTSIDIAN) | 39 | |   [leeter](https://github.com/leeter) / [WinMTR-refresh](https://github.com/leeter/WinMTR-refresh) | 38 | |   [tyriis](https://github.com/tyriis) / [home-ops](https://github.com/tyriis/home-ops) | 38 | |   [reefland](https://github.com/reefland) / [cri-purge](https://github.com/reefland/cri-purge) | 37 | @@ -334,6 +333,7 @@ |   [RunningMattress](https://github.com/RunningMattress) / [upm-test-package](https://github.com/RunningMattress/upm-test-package) | 5 | |   [jmuelbert](https://github.com/jmuelbert) / [jmbde-QT](https://github.com/jmuelbert/jmbde-QT) | 5 | |   [camaraproject](https://github.com/camaraproject) / [WebRTC](https://github.com/camaraproject/WebRTC) | 5 | +|   [issue-ops](https://github.com/issue-ops) / [docs](https://github.com/issue-ops/docs) | 5 | |   [issue-ops](https://github.com/issue-ops) / [labeler](https://github.com/issue-ops/labeler) | 5 | |   [issue-ops](https://github.com/issue-ops) / [parser](https://github.com/issue-ops/parser) | 5 | |   [nabondance](https://github.com/nabondance) / [Trailhead-Stats](https://github.com/nabondance/Trailhead-Stats) | 5 | @@ -373,7 +373,6 @@ |   [brandonmcclure](https://github.com/brandonmcclure) / [friendly-chainsaw](https://github.com/brandonmcclure/friendly-chainsaw) | 4 | |   [Bonial-International-GmbH](https://github.com/Bonial-International-GmbH) / [pod-image-swap-webhook](https://github.com/Bonial-International-GmbH/pod-image-swap-webhook) | 4 | |   [Jasstkn](https://github.com/Jasstkn) / [link-checker](https://github.com/Jasstkn/link-checker) | 4 | -|   [issue-ops](https://github.com/issue-ops) / [docs](https://github.com/issue-ops/docs) | 4 | |   [ncalteen](https://github.com/ncalteen) / [branch-enforcement](https://github.com/ncalteen/branch-enforcement) | 4 | |   [ncalteen](https://github.com/ncalteen) / [what-did-i-do](https://github.com/ncalteen/what-did-i-do) | 4 | |   [issue-ops](https://github.com/issue-ops) / [semver](https://github.com/issue-ops/semver) | 4 | @@ -1502,6 +1501,9 @@ |   [rciam](https://github.com/rciam) / [simplesamlphp-module-assurance](https://github.com/rciam/simplesamlphp-module-assurance) | 0 | |   [rciam](https://github.com/rciam) / [simplesamlphp-module-userid](https://github.com/rciam/simplesamlphp-module-userid) | 0 | |   [Teasel-Ian](https://github.com/Teasel-Ian) / [terraform](https://github.com/Teasel-Ian/terraform) | 0 | +|   [liblaf](https://github.com/liblaf) / [actions](https://github.com/liblaf/actions) | 0 | +|   [HealthDataInsight](https://github.com/HealthDataInsight) / [way_of_working-code_linting-hdi](https://github.com/HealthDataInsight/way_of_working-code_linting-hdi) | 0 | +|   [liblaf](https://github.com/liblaf) / [.github](https://github.com/liblaf/.github) | 0 | |   [agadecki](https://github.com/agadecki) / [malware-cryptominer-container](https://github.com/agadecki/malware-cryptominer-container) | 0 | |   [ONSdigital](https://github.com/ONSdigital) / [dis-wagtail](https://github.com/ONSdigital/dis-wagtail) | 0 | |   [HealthDataInsight](https://github.com/HealthDataInsight) / [way_of_working-changelog-keepachangelog](https://github.com/HealthDataInsight/way_of_working-changelog-keepachangelog) | 0 | @@ -1511,7 +1513,6 @@ |   [liblaf](https://github.com/liblaf) / [hello-megalinter](https://github.com/liblaf/hello-megalinter) | 0 | |   [lasseignelab](https://github.com/lasseignelab) / [capture](https://github.com/lasseignelab/capture) | 0 | |   [offsoc](https://github.com/offsoc) / [ever-gauzy](https://github.com/offsoc/ever-gauzy) | 0 | -|   [liblaf](https://github.com/liblaf) / [actions](https://github.com/liblaf/actions) | 0 | |   [liblaf](https://github.com/liblaf) / [pkg](https://github.com/liblaf/pkg) | 0 | |   [liblaf](https://github.com/liblaf) / [blog-next](https://github.com/liblaf/blog-next) | 0 | |   [liblaf](https://github.com/liblaf) / [obsidian](https://github.com/liblaf/obsidian) | 0 | @@ -1521,7 +1522,6 @@ |   [liblaf](https://github.com/liblaf) / [assets](https://github.com/liblaf/assets) | 0 | |   [liblaf](https://github.com/liblaf) / [rust-cli](https://github.com/liblaf/rust-cli) | 0 | |   [liblaf](https://github.com/liblaf) / [liblaf](https://github.com/liblaf/liblaf) | 0 | -|   [liblaf](https://github.com/liblaf) / [.github](https://github.com/liblaf/.github) | 0 | |   [liblaf](https://github.com/liblaf) / [resume](https://github.com/liblaf/resume) | 0 | |   [avarcorg](https://github.com/avarcorg) / [avarc-server](https://github.com/avarcorg/avarc-server) | 0 | |   [r-shcherbakov](https://github.com/r-shcherbakov) / [pipe-failure-detection](https://github.com/r-shcherbakov/pipe-failure-detection) | 0 | diff --git a/megalinter/linters/TrivyLinter.py b/megalinter/linters/TrivyLinter.py index 527d097eda8..3e40a34e90f 100644 --- a/megalinter/linters/TrivyLinter.py +++ b/megalinter/linters/TrivyLinter.py @@ -14,7 +14,9 @@ class TrivyLinter(Linter): def execute_lint_command(self, command): return_code, return_output = super().execute_lint_command(command) - if "TOOMANYREQUESTS" in return_output: + if ("TOOMANYREQUESTS" in return_output) or ( + "failed to download Java DB" in return_output + ): # Try 5 times if self.counter < 5: time.sleep(3.0) diff --git a/megalinter/reporters/AzureCommentReporter.py b/megalinter/reporters/AzureCommentReporter.py index 2c60221a163..da1eb6d975d 100644 --- a/megalinter/reporters/AzureCommentReporter.py +++ b/megalinter/reporters/AzureCommentReporter.py @@ -117,9 +117,7 @@ def produce_report(self): + "build/variables?view=azure-devops&tabs=yaml" ) repository_name = SYSTEM_PULLREQUEST_SOURCEREPOSITORYURI.split("/")[-1] - repository = git_client.get_repository( - repository_name - ) + repository = git_client.get_repository(repository_name) repository_id = repository # Look for existing MegaLinter thread