Skip to content

internal: add CVE check to release job as blocking #171

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 38 commits into from
Mar 5, 2025
Merged

internal: add CVE check to release job as blocking #171

merged 38 commits into from
Mar 5, 2025

Conversation

obs-gh-alexlew
Copy link
Collaborator

Description

internal: add CVE check to release job as blocking

Checklist

  • Created tests which fail without the change (if possible)
  • Extended the README / documentation, if necessary

obs-gh-mattcotter
obs-gh-mattcotter reviewed Mar 5, 2025
View reviewed changes
.github/workflows/vuln-check.yaml Outdated

distribution: goreleaser-pro
version: 2.4.4
args: build --snapshot --id=default --skip=validate
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Does the binary we need get built with --single-target? If so, we can skip other builds to save some cycles.

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

ill test that out, should be only a single target required

obs-gh-mattcotter
obs-gh-mattcotter approved these changes Mar 5, 2025
View reviewed changes
Copy link
Collaborator

@obs-gh-mattcotter obs-gh-mattcotter left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM!
This diff here fixes the go releaser failure fwiw:
https://github.com/observeinc/observe-agent/pull/172/files#diff-7326b55c062b0f46fe9e39aace0a25f4515cf206040fb91a6fd2cae839f5e826

@obs-gh-alexlew obs-gh-alexlew merged commit 8fffce9 into main Mar 5, 2025
8 checks passed
@obs-gh-alexlew obs-gh-alexlew deleted the alew/cve-action branch March 5, 2025 22:08
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@obs-gh-mattcotter obs-gh-mattcotter obs-gh-mattcotter approved these changes

Assignees

@obs-gh-mattcotter obs-gh-mattcotter

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@obs-gh-alexlew @obs-gh-mattcotter