Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add Anchore Go dependency security scanning #2181

Merged
merged 1 commit into from
Aug 18, 2022
Merged

Add Anchore Go dependency security scanning #2181

merged 1 commit into from
Aug 18, 2022

Conversation

dfarrell07
Copy link
Member

Scan Go dependencies for known vulnerabilities.

Run on PRs to gate on vulns negligible or higher.
Also run on merges to devel and release branches to report results on
the GitHub Code Scanning tab.

Ignore two false positives.

Relates-to: #794

Signed-off-by: Daniel Farrell [email protected]

@dfarrell07 dfarrell07 self-assigned this Aug 17, 2022
@dfarrell07 dfarrell07 requested a review from mkolesnik as a code owner August 17, 2022 19:18
@submariner-bot
Copy link
Contributor

🤖 Created branch: z_pr2181/dfarrell07/anchore_scan
🚀 Full E2E won't run until the "ready-to-test" label is applied. I will add it automatically once the PR has 2 approvals, or you can add it manually.

@dfarrell07
Add Anchore Go dependency security scanning
0d5b7a9 
Scan Go dependencies for known vulnerabilities.

Run on PRs to gate on vulns negligible or higher.
Also run on merges to devel and release branches to report results on
the GitHub Code Scanning tab.

Ignore two false positives.

Relates-to: submariner-io#794

Signed-off-by: Daniel Farrell <[email protected]>
@dfarrell07 dfarrell07 mentioned this pull request Aug 17, 2022
Closed
@submariner-bot submariner-bot added the ready-to-test When a PR is ready for full E2E testing label Aug 18, 2022
@skitt skitt merged commit fa43467 into submariner-io:devel Aug 18, 2022
@submariner-bot
Copy link
Contributor

🤖 Closed branches: [z_pr2181/dfarrell07/anchore_scan]

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@tpantelis tpantelis tpantelis approved these changes

@skitt skitt skitt approved these changes

@mkolesnik mkolesnik Awaiting requested review from mkolesnik mkolesnik is a code owner

@Oats87 Oats87 Awaiting requested review from Oats87 Oats87 is a code owner

@sridhargaddam sridhargaddam Awaiting requested review from sridhargaddam sridhargaddam is a code owner

Assignees

@dfarrell07 dfarrell07

Labels
ready-to-test When a PR is ready for full E2E testing
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@dfarrell07 @submariner-bot @skitt @tpantelis