Git-Mirrors/constellation
1
0
Fork 0
mirror of https://github.com/edgelesssys/constellation.git synced 2024-09-20 00:06:21 +00:00
Code Issues Packages Projects Releases Wiki Activity
909bfb9274
constellation/bazel/ci/govulncheck.sh.in
Paul Meyer f108ff8539
bazel: add govulncheck to //:check target (#1512) 
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
2023-03-27 13:35:51 +02:00

34 lines
700 B
Bash
Raw Blame History

#!/usr/bin/env bash
lib=$(realpath @@BASE_LIB@@) || exit 1
go=$(realpath @@GO@@) || exit 1
govulncheck=$(realpath @@GOVULNCHECK@@) || exit 1
# shellcheck source=../sh/lib.bash
if ! source "${lib}"; then
echo "Error: could not find import"
exit 1
fi
cd "${BUILD_WORKSPACE_DIRECTORY}" || exit 1
submodules=$(${go} list -f '{{.Dir}}' -m)
PATH=$(dirname "${go}"):${PATH}
err=0
echo "Scanning Go vulnerability DB for knwon vulnerabilities in modules:"
for mod in ${submodules}; do
echo " ${mod}"
echo -n " "
${govulncheck} "${mod}/..." |
tail -n 2 | # Providing some nice output...
tr '\n' ' ' |
sed s/" your code and"// &&
printf "\n" ||
err=$?
done
exit "${err}"
Reference in New Issue View Git Blame Copy Permalink