Accepting request 1199817 from devel:languages:go

- Update to version 2.21.2: * Update the github action to v2.21.2 (#1218) * Update the SARIF schema URL (#1217) * Update go version to 1.23.1 and 1.22.7 (#1216) * chore(deps): update all dependencies (#1215) * Update gosec version to v2.21.1 in github action (#1213) * Rollback the SARIF version to 2.1 since github doesn't support 2.2 (#1210) * Update gosec in github action to v2.21.0 (#1208) * Update cosign version to v2.4.0 in release github workflow (#1207) * Improvement the int conversion overflow logic to handle bound checks (#1194) * fix: G602 support for nested conditionals with bounds check (#1201) * Update go.mod to sue go 1.22.0 toolchain * chore(deps): update all dependencies * Make variable name more clear * Make variable names more explicity and reduce duplications * Fix formatting * Refactor to reduce some fuctions and variable names * Pass the value argument directly since is an interface * Added suggested changes * Added another test case in order to increase code coverage * Removed function parameter which is always the same * Formatting problems(CI was not passing) * Updated analyzer to use new way of initialization * Migrated the rule to the analyzers folder * Refractored code a little bit * Added new rule G407(hardcoded IV/nonce) * Fix conversion overflow false positive when using ParseUint * Add a build step to measure the scan perfomance * Fix conversion overflow false positives when they are checked or pre-determined * Update go.mod * chore(deps): update all dependencies * Fix false positive in conversion overflow check from uint8/int8 type * Disable staticcheck SA1019 rule * Update the golangci linters * Add more test to cover more use cases for G115 rule * Allow excluding analyzers globally (#1180) * Update to Go 1.23.0 (#1183) * chore(deps): update all dependencies (#1182) * Read the AI API key also from an environment variable (#1181) * Add support to generate auto fixes using LLM (AI) (#1177) * chore(deps): update all dependencies * chore(deps): update all dependencies * chore(deps): update all dependencies * chore(deps): update dependency babel-standalone to v7.24.10 * Resolve underlying type to detect overflows in type aliases * chore(deps): update dependency babel-standalone to v7.24.8 * Fix multifile ignores * Add -enable-audit cli flag * Update to go 1.22.5 and 1.21.12 * chore(deps): update all dependencies * Added more rules * Fixed coverage workflow * Fixed CI workflow * Minor changes * Split the G401 rule into two separate ones * Updated G401 corresponding CWE * chore(deps): update docker/build-push-action action to v6 * Update to go versions to 1.21.11 and 1.22.4 * chore(deps): update all dependencies * Fix nosec when applied to a block * Add more types to templates rule * Map the G115 rule to an CWE ID * chore(deps): update all dependencies * Update README with G115 rule description * Remove deprecated megacheck linter from golangci * Format imports * Update .gitignore * Add a new rule to detect integer overflow on integer types conversion * feat: add env var to override the Go version detection * Use the proper logic when disabling the go module version * Update the README with some details related to Go version used by the rules * Add an environment varialbe which disables the parsing of Go version from module file * chore(deps): update module github.com/onsi/ginkgo/v2 to v2.17.3 (forwarded request 1199812 from ph03nix) OBS-URL: https://build.opensuse.org/request/show/1199817 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/gosec?expand=0&rev=16
2024-09-10 19:13:58 +00:00 · 2024-09-10 19:13:58 +00:00 · a32e2a03fa
commit a32e2a03fa
parent fafc4989ab 68e7081560
8 changed files with 88 additions and 11 deletions
--- a/2
+++ b/2
@ -4,7 +4,7 @@
    <param name="filename">gosec</param>
    <param name="url">https://github.com/securego/gosec.git</param>
    <param name="scm">git</param>
-    <param name="version">v2.20</param>
+    <param name="version">v2.21.2</param>
    <param name="versionformat">@PARENT_TAG@</param>
    <param name="versionrewrite-pattern">v(.*)</param>
    <param name="versionrewrite-replacement">\1</param>
--- a/2
+++ b/2
@ -1,4 +1,4 @@
 <servicedata>
 <service name="tar_scm">
                <param name="url">https://github.com/securego/gosec.git</param>
-              <param name="changesrevision">40f29c8d4abf59af475a79f6aa0268c296319501</param></service></servicedata>
+              <param name="changesrevision">5f3194b581979e508b0ba1ee22f1f1f85a314e16</param></service></servicedata>
--- a/gosec-2.20.0.obscpio
+++ b/gosec-2.20.0.obscpio
@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:7078eb954f6862de1a0777dd13bb05b588d135dea2914a0ca6db1ffeff93fee4
-size 643084
--- a/gosec-2.21.2.obscpio
+++ b/gosec-2.21.2.obscpio
@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:6b10defe29bea117bc3aba36079f8354ba7a299a29ec580ffc41af0f3dcb3a1f
+size 770572
--- a/gosec.changes
+++ b/gosec.changes
@ -1,3 +1,80 @@
+-------------------------------------------------------------------
+Tue Sep 10 07:42:28 UTC 2024 - felix.niederwanger@suse.de
+
+- Update to version 2.21.2:
+  * Update the github action to v2.21.2 (#1218)
+  * Update the SARIF schema URL (#1217)
+  * Update go version to 1.23.1 and 1.22.7 (#1216)
+  * chore(deps): update all dependencies (#1215)
+  * Update gosec version to v2.21.1 in github action (#1213)
+  * Rollback the SARIF version to 2.1 since github doesn't support 2.2 (#1210)
+  * Update gosec in github action to v2.21.0 (#1208)
+  * Update cosign version to v2.4.0 in release github workflow (#1207)
+  * Improvement the int conversion overflow logic to handle bound checks (#1194)
+  * fix: G602 support for nested conditionals with bounds check (#1201)
+  * Update go.mod to sue go 1.22.0 toolchain
+  * chore(deps): update all dependencies
+  * Make variable name more clear
+  * Make variable names more explicity and reduce duplications
+  * Fix formatting
+  * Refactor to reduce some fuctions and variable names
+  * Pass the value argument directly since is an interface
+  * Added suggested changes
+  * Added another test case in order to increase code coverage
+  * Removed function parameter which is always the same
+  * Formatting problems(CI was not passing)
+  * Updated analyzer to use new way of initialization
+  * Migrated the rule to the analyzers folder
+  * Refractored code a little bit
+  * Added new rule G407(hardcoded IV/nonce)
+  * Fix conversion overflow false positive when using ParseUint
+  * Add a build step to measure the scan perfomance
+  * Fix conversion overflow false positives when they are checked or pre-determined
+  * Update go.mod
+  * chore(deps): update all dependencies
+  * Fix false positive in conversion overflow check from uint8/int8 type
+  * Disable staticcheck SA1019 rule
+  * Update the golangci linters
+  * Add more test to cover more use cases for G115 rule
+  * Allow excluding analyzers globally (#1180)
+  * Update to Go 1.23.0 (#1183)
+  * chore(deps): update all dependencies (#1182)
+  * Read the AI API key also from an environment variable (#1181)
+  * Add support to generate auto fixes using LLM (AI) (#1177)
+  * chore(deps): update all dependencies
+  * chore(deps): update all dependencies
+  * chore(deps): update all dependencies
+  * chore(deps): update dependency babel-standalone to v7.24.10
+  * Resolve underlying type to detect overflows in type aliases
+  * chore(deps): update dependency babel-standalone to v7.24.8
+  * Fix multifile ignores
+  * Add -enable-audit cli flag
+  * Update to go 1.22.5 and 1.21.12
+  * chore(deps): update all dependencies
+  * Added more rules
+  * Fixed coverage workflow
+  * Fixed CI workflow
+  * Minor changes
+  * Split the G401 rule into two separate ones
+  * Updated G401 corresponding CWE
+  * chore(deps): update docker/build-push-action action to v6
+  * Update to go versions to 1.21.11 and 1.22.4
+  * chore(deps): update all dependencies
+  * Fix nosec when applied to a block
+  * Add more types to templates rule
+  * Map the G115 rule to an CWE ID
+  * chore(deps): update all dependencies
+  * Update README with G115 rule description
+  * Remove deprecated megacheck linter from golangci
+  * Format imports
+  * Update .gitignore
+  * Add a new rule to detect integer overflow on integer types conversion
+  * feat: add env var to override the Go version detection
+  * Use the proper logic when disabling the go module version
+  * Update the README with some details related to Go version used by the rules
+  * Add an environment varialbe which disables the parsing of Go version from module file
+  * chore(deps): update module github.com/onsi/ginkgo/v2 to v2.17.3
+
 -------------------------------------------------------------------
 Thu May 16 08:20:50 UTC 2024 - felix.niederwanger@suse.de

--- a/gosec.obsinfo
+++ b/gosec.obsinfo
@ -1,4 +1,4 @@
 name: gosec
-version: 2.20.0
-mtime: 1715695036
-commit: 40f29c8d4abf59af475a79f6aa0268c296319501
+version: 2.21.2
+mtime: 1725891657
+commit: 5f3194b581979e508b0ba1ee22f1f1f85a314e16
--- a/gosec.spec
+++ b/gosec.spec
@ -17,7 +17,7 @@


 Name:           gosec
-Version:        2.20.0
+Version:        2.21.2
 Release:        0
 Summary:        CLI tool to scan the Go AST and SSA code representations for security problems
 License:        Apache-2.0
--- a/vendor.tar.gz
+++ b/vendor.tar.gz
@ -1,3 +1,3 @@
 version https://git-lfs.github.com/spec/v1
-oid sha256:6d7f9410d2dc2b0b81e58848221b1c01660b2a11142c3d982416d727584698e2
-size 4330350
+oid sha256:805a7fc0d75c03d85d7c8508c27716e67230d1ae93040d6b4e9e2d8c41bc8c34
+size 6783826