Skip to content

Commit ca49ffa

Browse files
qinqonqinqon
committed
security: Bump go.mod to make snyk happy
Signed-off-by: Enrique Llorente <[email protected]>
1 parent 129b149 commit ca49ffa

File tree

4,270 files changed

+347585
-182104
lines changed

Some content is hidden

Large Commits have some content hidden by default. Use the searchbox below for content that may be hidden.

4,270 files changed

+347585
-182104
lines changed

.github/workflows/security.yml

Lines changed: 21 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,21 @@
1+
name: Check and report security issues
2+
on:
3+
push:
4+
pull_request:
5+
branches: [ main ]
6+
jobs:
7+
security:
8+
runs-on: ubuntu-latest
9+
steps:
10+
- uses: actions/checkout@master
11+
- name: Run Snyk to check for vulnerabilities
12+
uses: snyk/actions/golang@master
13+
continue-on-error: true # To make sure that SARIF upload gets called
14+
env:
15+
SNYK_TOKEN: ${{ secrets.SNYK }}
16+
with:
17+
args: --sarif-file-output=snyk.sarif
18+
- name: Upload result to GitHub Code Scanning
19+
uses: github/codeql-action/upload-sarif@v3
20+
with:
21+
sarif_file: snyk.sarif

.golangci.yml

Lines changed: 8 additions & 8 deletions
Original file line numberDiff line numberDiff line change
@@ -5,7 +5,7 @@ linters-settings:
55
lines: 100
66
statements: 50
77
gci:
8-
local-prefixes: github.com/nmstate/nmpolicy
8+
prefix: github.com/nmstate/nmpolicy
99
goconst:
1010
min-len: 2
1111
min-occurrences: 3
@@ -32,16 +32,16 @@ linters-settings:
3232
goheader:
3333
template-path: hack/header.tpl
3434
goimports:
35-
local-prefixes: github.com/nmstate/nmpolicy
36-
gomnd:
35+
prefix: github.com/nmstate/nmpolicy
36+
mnd:
3737
# don't include the "operation" and "assign"
3838
checks:
3939
- argument
4040
- case
4141
- condition
4242
- return
4343
govet:
44-
check-shadowing: true
44+
shadow: true
4545
lll:
4646
line-length: 140
4747
maligned:
@@ -61,13 +61,13 @@ issues:
6161
# Exclude some linters from running on tests files.
6262
- path: test/
6363
linters:
64-
- gomnd
64+
- mnd
6565
- dupl
6666
- gocritic
6767
- path: _test.go
6868
linters:
6969
- unparam
70-
- gomnd
70+
- mnd
7171
- dupl
7272
- gocritic
7373

@@ -78,7 +78,7 @@ linters:
7878
- dogsled
7979
- dupl
8080
#- errcheck
81-
- exportloopref
81+
- copyloopvar
8282
- exhaustive
8383
- funlen
8484
#- gochecknoinits
@@ -88,7 +88,7 @@ linters:
8888
- gofmt
8989
- goheader
9090
- goimports
91-
- gomnd
91+
- mnd
9292
- goprintffuncname
9393
- gosec
9494
- gosimple

Makefile

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -72,7 +72,7 @@ KUBECTL ?= ./cluster/kubectl.sh
7272
OPERATOR_SDK_VERSION ?= 1.21.0
7373

7474
GINKGO = GOFLAGS=-mod=mod go run github.com/onsi/ginkgo/v2/[email protected]
75-
CONTROLLER_GEN = GOFLAGS=-mod=mod go run sigs.k8s.io/controller-tools/cmd/controller-gen@v0.15.0
75+
CONTROLLER_GEN = GOFLAGS=-mod=mod go run sigs.k8s.io/controller-tools/cmd/controller-gen@v0.17.1
7676
OPM = hack/opm.sh
7777

7878
LOCAL_REGISTRY ?= registry:5000

api/go.mod

Lines changed: 22 additions & 24 deletions
Original file line numberDiff line numberDiff line change
@@ -1,38 +1,36 @@
11
module github.com/nmstate/kubernetes-nmstate/api
22

3-
go 1.20
3+
go 1.23.5
44

55
require (
6-
github.com/onsi/ginkgo/v2 v2.9.7
7-
github.com/onsi/gomega v1.27.8
8-
k8s.io/api v0.26.3
9-
k8s.io/apimachinery v0.27.4
10-
sigs.k8s.io/controller-runtime v0.14.6
11-
sigs.k8s.io/yaml v1.3.0
6+
github.com/onsi/ginkgo/v2 v2.21.0
7+
github.com/onsi/gomega v1.35.1
8+
k8s.io/api v0.31.0
9+
k8s.io/apimachinery v0.31.0
10+
sigs.k8s.io/controller-runtime v0.19.3
11+
sigs.k8s.io/yaml v1.4.0
1212
)
1313

14-
require github.com/rogpeppe/go-internal v1.11.0 // indirect
15-
1614
require (
17-
github.com/go-logr/logr v1.2.4 // indirect
18-
github.com/go-task/slim-sprig v0.0.0-20230315185526-52ccab3ef572 // indirect
15+
github.com/fxamacker/cbor/v2 v2.7.0 // indirect
16+
github.com/go-logr/logr v1.4.2 // indirect
17+
github.com/go-task/slim-sprig/v3 v3.0.0 // indirect
1918
github.com/gogo/protobuf v1.3.2 // indirect
20-
github.com/google/go-cmp v0.5.9 // indirect
21-
github.com/google/gofuzz v1.1.0 // indirect
22-
github.com/google/pprof v0.0.0-20210720184732-4bb14d4b1be1 // indirect
19+
github.com/google/go-cmp v0.6.0 // indirect
20+
github.com/google/gofuzz v1.2.0 // indirect
21+
github.com/google/pprof v0.0.0-20241029153458-d1b30febd7db // indirect
2322
github.com/json-iterator/go v1.1.12 // indirect
2423
github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect
2524
github.com/modern-go/reflect2 v1.0.2 // indirect
26-
golang.org/x/net v0.17.0 // indirect
27-
golang.org/x/sys v0.13.0 // indirect
28-
golang.org/x/text v0.13.0 // indirect
29-
golang.org/x/tools v0.9.3 // indirect
30-
gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c // indirect
25+
github.com/x448/float16 v0.8.4 // indirect
26+
golang.org/x/net v0.30.0 // indirect
27+
golang.org/x/sys v0.26.0 // indirect
28+
golang.org/x/text v0.19.0 // indirect
29+
golang.org/x/tools v0.26.0 // indirect
3130
gopkg.in/inf.v0 v0.9.1 // indirect
32-
gopkg.in/yaml.v2 v2.4.0 // indirect
3331
gopkg.in/yaml.v3 v3.0.1 // indirect
34-
k8s.io/klog/v2 v2.90.1 // indirect
35-
k8s.io/utils v0.0.0-20230209194617-a36077c30491 // indirect
36-
sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd // indirect
37-
sigs.k8s.io/structured-merge-diff/v4 v4.2.3 // indirect
32+
k8s.io/klog/v2 v2.130.1 // indirect
33+
k8s.io/utils v0.0.0-20241104100929-3ea5e8cea738 // indirect
34+
sigs.k8s.io/json v0.0.0-20241010143419-9aa6b5e7a4b3 // indirect
35+
sigs.k8s.io/structured-merge-diff/v4 v4.4.2 // indirect
3836
)

0 commit comments

Comments
 (0)