New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fix running executables with spaces in their paths in Windows #466

Merged

attiasas merged 2 commits into jfrog:master from attiasas:fix_win_JAS

Jan 25, 2024

Contributor

attiasas commented Jan 24, 2024 •

edited

All tests passed. If this feature is not already covered by the tests, I added new tests.

Update build-info version to 2.41.13

JAS scanners are not running on Windows machines where the user name has space in there name.
Updating build-info version to apply the fix for this issue: jfrog/build-info#777


          Update build-info version to 2.41.13

056052c

attiasas added the bug label

attiasas deployed to frogbot

January 24, 2024 12:57

— with

GitHub Actions Active

attiasas added the safe to test label

github-actions bot removed the safe to test label

attiasas requested review from asafgabai, Or-Geva and yahavi

January 24, 2024 13:02

attiasas changed the title ~~Update build-info version to 2.41.13~~ Fix running executables with spaces in their paths in Windows

asafgabai suggested changes

View reviewed changes

build.gradle

@@ @@ -48,7 +48,7 @@ repositories { @@
                   }
               }
-              def buildInfoVersion = '2.41.9'
+              def buildInfoVersion = '2.41.13'

Contributor

asafgabai Jan 24, 2024

Let's update the build-info version in ide-plugins-common too.


          Update plugins-common version to 2.3.6

a1856d3

attiasas had a problem deploying to frogbot

January 25, 2024 13:38

— with

GitHub Actions Failure

attiasas added the safe to test label

github-actions bot removed the safe to test label

github-actions bot commented Jan 25, 2024

📦 Vulnerable Dependencies

✍️ Summary

SEVERITY	CONTEXTUAL ANALYSIS	DIRECT DEPENDENCIES	IMPACTED DEPENDENCY	FIXED VERSIONS	CVES
Low	Undetermined	com.jfrog.ide:ide-plugins-common:2.3.6 com.jfrog.xray.client:xray-client-java:0.14.1 org.jfrog.buildinfo:build-info-client:2.41.13	org.jfrog.buildinfo:build-info-client 2.41.13	-	-
Low	Undetermined	com.jfrog.ide:ide-plugins-common:2.3.6	org.jfrog.buildinfo:build-info-extractor-go 2.41.13	-	-
Low	Undetermined	com.jfrog.ide:ide-plugins-common:2.3.6	org.jfrog.buildinfo:build-info-extractor-npm 2.41.13	-	-
Low	Undetermined	com.jfrog.ide:ide-plugins-common:2.3.6	org.jfrog.buildinfo:build-info-api 2.41.13	-	-
Low	Undetermined	com.jfrog.ide:ide-plugins-common:2.3.6 com.jfrog.xray.client:xray-client-java:0.14.1 org.jfrog.buildinfo:build-info-extractor:2.41.13	org.jfrog.buildinfo:build-info-extractor 2.41.13	-	-

🔬 Research Details

[ XRAY-589059 ] org.jfrog.buildinfo:build-info-client 2.41.13

Description:
This package may be vulnerable to the MavenGate attack

[ XRAY-589059 ] org.jfrog.buildinfo:build-info-extractor-go 2.41.13

Description:
This package may be vulnerable to the MavenGate attack

[ XRAY-589059 ] org.jfrog.buildinfo:build-info-extractor-npm 2.41.13

Description:
This package may be vulnerable to the MavenGate attack

[ XRAY-589059 ] org.jfrog.buildinfo:build-info-api 2.41.13

Description:
This package may be vulnerable to the MavenGate attack

[ XRAY-589059 ] org.jfrog.buildinfo:build-info-extractor 2.41.13

Description:
This package may be vulnerable to the MavenGate attack

🐸 JFrog Frogbot

attiasas merged commit 48b18c1 into jfrog:master

12 of 13 checks passed

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment