Accepting request 974964 from devel:languages:go

* Use build-linux target on x86_64 to include git tag and version (for `gosec -version`)
* Add additional build check (forwarded request 974534 from ph03nix)

OBS-URL: https://build.opensuse.org/request/show/974964
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/gosec?expand=0&rev=3

_service

@@ -12,5 +12,7 @@
     <param name="file">*.tar</param>
     <param name="compression">gz</param>
   </service>
-  <service name="go_modules" mode="disabled"/>
+  <service name="go_modules" mode="disabled">
+    <param name="compression">gz</param>
+  </service>
 </services>

gosec-2.10.0.tar.gz

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:24b1dfc49d9c1fc24b6d7d5e49ce55e6512e8bbcb1d2391d6b7bc009f7b3ae3d
-size 138227

gosec-2.11.0.tar.gz

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:21fc6d4f5181a601189c902ed91b1d6103a4a522ec4bac2a53593a98827b7217
+size 138629

gosec.changes

@@ -1,3 +1,14 @@
+-------------------------------------------------------------------
+Tue Mar 22 08:10:13 UTC 2022 - Felix Niederwanger <felix.niederwanger@suse.com>
+
+* Update to version 2.11.0
+
+- Enable Go 1.18 in the ci and release workflows
+- Fix the lint action after upgrade (#790)
+- chore(deps): update all dependencies (#789)
+- Add a recursive flag -r to skip specifying ./... path
+- Adds directory traversal for Http.Dir("/")
+
 -------------------------------------------------------------------
 Wed Mar  2 07:35:25 UTC 2022 - Felix Niederwanger <felix.niederwanger@suse.com>
 

gosec.spec

@@ -17,7 +17,7 @@
 
 
 Name:           gosec
-Version:        2.10.0
+Version:        2.11.0
 Release:        0
 Summary:        Golang security checker
 License:        Apache-2.0
@@ -25,20 +25,28 @@ URL:            https://github.com/securego/gosec
 Source:         gosec-%{version}.tar.gz
 Source1:        vendor.tar.gz
 BuildRequires:  golang-packaging
-BuildRequires:  go >= 1.11
+BuildRequires:  go >= 1.16
 %{go_nostrip}
 
 %description
-Inspects source code for security problems by scanning the Go AST.
+Inspects source code for security problems by scanning the go abstract syntax tree.
 
 %prep
 %autosetup -D -a 1
 
 %build
+# Native linux build includes version tags but currently works only on x86_64
+%ifarch x86_64
+GOFLAGS="-buildmode=pie" make build-linux
+%else
 GOFLAGS="-buildmode=pie" make build
+%endif
 
-# this check is not yet working
-#%%check
+%check
+# check if binary is working
+./gosec --version
+make sec
+# Not yet working because it wants to pull the latest ginkgo version from GitHub
 #make test
 
 %install

vendor.tar.gz

@@ -1,3 +1,3 @@
 version https://git-lfs.github.com/spec/v1
-oid sha256:dd454646e5d54cf88b637902743fe4d6be345b60e3f99bc0b6f128eb02e1aff3
-size 3114017
+oid sha256:ad50aae21ab165fd145515bda26a8f68013db84d09f74cd4eddaf51089442057
+size 3631488