-
Notifications
You must be signed in to change notification settings - Fork 556
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
chore: Update release candidate #5186
Commits on Mar 11, 2024
-
chore(ci): switch to small go image (#5099)
* chore(ci): switch to small go image Context: p95 duration for this job over the last 90 days is 2m 17s Solution: Switch from 2.3Gb image to generic 513mb image. Fetching the `bastiandoetsch209/cli-build` image can increase the Job time by ~60 seconds if the image is not cached. ``` Warning: No authentication provided, using CircleCI credentials for pulls from Docker Hub. image cache not found on this host, downloading bastiandoetsch209/cli-build:20240214-145818 … bastiandoetsch209/cli-build:20240214-145818: using image bastiandoetsch209/cli-build@sha256:1504fdbb34f02aab15475c3eacf8c0fc82be83059cda435b91327e43a98cb863 pull stats: download 2.279GiB in 23.682s (98.54MiB/s), extract 2.31GiB in 58.549s (40.39MiB/s) ``` Even pipelines run within minutes of each other do not necessarily hit the same image cache. The caching layer at use here is entirely opaque to me, but the observed affects are that the `Spin up environment` step can take either 0 or 60 seconds. Switching to one of the Circle CI provided images which also tend to be smaller could help here. Perhaps the inscrutable image caching is more likely to be optimised for their own images. * chore(ci): removes unused dep to speed up feedback cycle i The test-go job has dependency on the artifacts generated as part of the prepare-build job. Running this asap to reduce time to results.
Configuration menu - View commit details
-
Copy full SHA for d9f0491 - Browse repository at this point
Copy the full SHA d9f0491View commit details
Commits on Mar 12, 2024
-
test: explicitly state project version (#5108)
As of Composer v2.7.2 the tool will emit an error if the version has not been defined on the root composer.json https://github.com/composer/composer/releases/tag/2.7.2
Configuration menu - View commit details
-
Copy full SHA for 1981628 - Browse repository at this point
Copy the full SHA 1981628View commit details -
Configuration menu - View commit details
-
Copy full SHA for f7eb5b4 - Browse repository at this point
Copy the full SHA f7eb5b4View commit details -
chore(ci): experiments in parallelism (#5097)
Windows is the slowest test run, a problem made worse by the time consuming build process that runs before it. Perhaps a short term workaround until we have time to optimise the build step is to increase the number of shards.
Configuration menu - View commit details
-
Copy full SHA for aaa1074 - Browse repository at this point
Copy the full SHA aaa1074View commit details -
chore: enforce pr title formatting (#5111)
* fix: validate PR title * chore: introduce linting for GitHub PR titles * chore: update node for danger job * chore: attempt at tracking edits to PRs
Configuration menu - View commit details
-
Copy full SHA for 0cb4c26 - Browse repository at this point
Copy the full SHA 0cb4c26View commit details
Commits on Mar 13, 2024
-
fix: fix add support for dev/alpha/beta/rc python versions (#5106)
* fix: add support for development python versions * test: explicitly state project version (#5108) As of Composer v2.7.2 the tool will emit an error if the version has not been defined on the root composer.json https://github.com/composer/composer/releases/tag/2.7.2 * chore: introduce script to help create release (#5107) --------- Co-authored-by: Luke Watts <luke@snyk.io>
Configuration menu - View commit details
-
Copy full SHA for bd6351a - Browse repository at this point
Copy the full SHA bd6351aView commit details -
docs: synchronizing help from snyk/user-docs (#5063)
Co-authored-by: Avishagp <noreply@snyk.io>
Configuration menu - View commit details
-
Copy full SHA for ade5860 - Browse repository at this point
Copy the full SHA ade5860View commit details -
Configuration menu - View commit details
-
Copy full SHA for 93b4fcb - Browse repository at this point
Copy the full SHA 93b4fcbView commit details -
docs: synchronizing README from GitBook (#5114)
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Configuration menu - View commit details
-
Copy full SHA for 9445c90 - Browse repository at this point
Copy the full SHA 9445c90View commit details
Commits on Mar 14, 2024
-
feat: support -dverbose argument when testing maven projects #5117
- feat: support verbose for maven Support passing -Dverbose to resolve omitted dependencies using maven-dependency-plugin. When verbose is being used execute a specific version of the maven-dependency-plugin. This is becuase on lower version of this plugin outputType=dot is not supported, and it will output a tree. When verbose is on skip pruning and ensure all dependency lines are traversed fully, using breadth first, first in wins for version resolution. - fix: record and use visited dependency information In preparation for supporting -Dverbose the breadth first search needs to retain previously visited dependency information. At the moment we record whether a dependency has been seen (true/false) based on the maven graph node id. This id contains the dependency version. For example 'com.example:my-app:jar:jdk8:1.2.3:compile'. However when maven is determining whether a dependency has already been seen only four properties are used: * groupId * artifactId * type * classifier (optional) These are the properties that uniquely identify a dependency in Maven. Changing visited to be keyed by these four properties instead. In addition we then record the parsed dependency for these visited dependencies so that we can use that information when adding and connecting the dep-graph nodes. The effect is that if a duplicate node is found, the previously visited version is preferred regardless of what the duplicate node is set to. This doesn't really effect the current implementation because maven-dependency-plugin hides duplicates. Another PR will start to support -Dverbose where this becomes important that we select the effective version being resolved by Maven.
Configuration menu - View commit details
-
Copy full SHA for 1ef091f - Browse repository at this point
Copy the full SHA 1ef091fView commit details
Commits on Mar 15, 2024
-
Configuration menu - View commit details
-
Copy full SHA for 2b37539 - Browse repository at this point
Copy the full SHA 2b37539View commit details
Commits on Mar 18, 2024
-
chore(ci): add script to install dev tools on macos (#5059)
* chore: add a simple script to install dev tools * chore: use Brewfile
Configuration menu - View commit details
-
Copy full SHA for c903102 - Browse repository at this point
Copy the full SHA c903102View commit details -
Configuration menu - View commit details
-
Copy full SHA for c9cc908 - Browse repository at this point
Copy the full SHA c9cc908View commit details
Commits on Mar 19, 2024
-
chore: introduce script to create release (#5116)
* chore: create create-release script to create/update release branches * chore: push patch branch in create-release.sh * chore: can dry-run create-release.sh
Configuration menu - View commit details
-
Copy full SHA for cd8eb6c - Browse repository at this point
Copy the full SHA cd8eb6cView commit details
Commits on Mar 20, 2024
-
Configuration menu - View commit details
-
Copy full SHA for 74c864e - Browse repository at this point
Copy the full SHA 74c864eView commit details -
Configuration menu - View commit details
-
Copy full SHA for 57fac5c - Browse repository at this point
Copy the full SHA 57fac5cView commit details
Commits on Mar 21, 2024
-
chore: add go entry point for
snyk code test
(#5121)* chore: allow unknown flags for code test * chore(dep): bump gaf to latest * chore: introduce go entry point for snyk code test * test: switch to validating output against previous run --------- Co-authored-by: Peter Schäfer <101886095+PeterSchafer@users.noreply.github.com>
Configuration menu - View commit details
-
Copy full SHA for 9419e14 - Browse repository at this point
Copy the full SHA 9419e14View commit details
Commits on Mar 22, 2024
-
fix: Fix handling of large json data when writing to file via --json …
…[CLI-73] (#5093) * fix: Support large json data structures via --json --------- Co-authored-by: Peter Schäfer <101886095+PeterSchafer@users.noreply.github.com>
Configuration menu - View commit details
-
Copy full SHA for c0d401c - Browse repository at this point
Copy the full SHA c0d401cView commit details -
Configuration menu - View commit details
-
Copy full SHA for c55af61 - Browse repository at this point
Copy the full SHA c55af61View commit details
Commits on Mar 25, 2024
-
feat: support CycloneDX v1.5 (#5123)
- Updated `snyk sbom` to accept CycloneDX 1.5 - Updated `snyk container sbom` to accept CycloneDX 1.5 Co-authored-by: Paul Rosca <paul.rosca@snyk.io>
Configuration menu - View commit details
-
Copy full SHA for b22b166 - Browse repository at this point
Copy the full SHA b22b166View commit details -
Configuration menu - View commit details
-
Copy full SHA for 7c25fdb - Browse repository at this point
Copy the full SHA 7c25fdbView commit details -
docs: synchronizing help from snyk/user-docs (#5135)
Co-authored-by: PeterSchafer <noreply@snyk.io>
Configuration menu - View commit details
-
Copy full SHA for 6aca5db - Browse repository at this point
Copy the full SHA 6aca5dbView commit details -
Configuration menu - View commit details
-
Copy full SHA for eee1ec5 - Browse repository at this point
Copy the full SHA eee1ec5View commit details
Commits on Mar 26, 2024
-
Configuration menu - View commit details
-
Copy full SHA for a4b4dbb - Browse repository at this point
Copy the full SHA a4b4dbbView commit details -
test: refactor to introduce helper to determine port (#5137)
* refactor: mark less recommended path as deprecated * chore: introduce test helper to isolate port selection * refactor: switch to using helper to determine port We need to know about the port ahead of time so that we can use it in our configuration. This supports iterating on fixed ports to random ports so we can support running in parallel and ensure no collision between our tests. * chore: apply formatting
Configuration menu - View commit details
-
Copy full SHA for 3607eb3 - Browse repository at this point
Copy the full SHA 3607eb3View commit details
Commits on Mar 28, 2024
-
chore(deps): upgrade jest to latest (#5112)
* chore(deps): upgrade jest to latest * test: update snapshot
Configuration menu - View commit details
-
Copy full SHA for 8438281 - Browse repository at this point
Copy the full SHA 8438281View commit details -
test: migrate code tests to acceptance (#5139)
* test: migrate code tests to acceptance * test: succeed testing with correct exit code - with sarif oputput and no markdown * test: track analytics are called added * test: should fail - when server returns error codes * test: Always calls code-client with url coming from sastSettings * chore: address lint issues
Configuration menu - View commit details
-
Copy full SHA for 1b5266d - Browse repository at this point
Copy the full SHA 1b5266dView commit details
Commits on Mar 29, 2024
-
Configuration menu - View commit details
-
Copy full SHA for 2011b90 - Browse repository at this point
Copy the full SHA 2011b90View commit details -
docs: synchronizing help from snyk/user-docs (#5144)
Co-authored-by: Avishagp <noreply@snyk.io>
Configuration menu - View commit details
-
Copy full SHA for 3711b70 - Browse repository at this point
Copy the full SHA 3711b70View commit details
Commits on Apr 2, 2024
-
chore: ignore tap files when formatting (#5143)
These files are not tracked by git and result in a noticeable lag in prettier whilst they are being processed. See here for an example of the ~4.5second delay caused by prettier. ``` .tap/coverage/01fec6e5-492e-4f01-baa6-69022efbebfc.json 15ms .tap/coverage/05a96cf2-7cea-4e31-8d82-745c88fbd122.json 224ms .tap/coverage/093b21d5-b8a4-4dd1-9815-e669729363b2.json 80ms .tap/coverage/4c57c24d-61e9-41d8-912a-8944b9e3dd85.json 15ms .tap/coverage/51be6d29-8498-42b5-b648-4331a8cc1620.json 2430ms .tap/coverage/77a86007-79d2-403a-9fd0-0099176628eb.json 58ms .tap/coverage/ad188bc4-8e9f-42ed-bdbb-febdf9e2fd70.json 2213ms .tap/coverage/e3b30972-2569-41f3-a2f0-0b516524c56e.json 56ms .tap/coverage/e4e079ea-f384-434c-8a8f-430f6bda7501.json 16ms .tap/coverage/ec4b832d-d31c-40b7-8657-48b874219100.json 18ms .tap/coverage/f47299fe-8a09-46ac-99f8-33209e0bb687.json 5ms .tap/processinfo/01fec6e5-492e-4f01-baa6-69022efbebfc.json 4ms .tap/processinfo/05a96cf2-7cea-4e31-8d82-745c88fbd122.json 5ms .tap/processinfo/093b21d5-b8a4-4dd1-9815-e669729363b2.json 4ms .tap/processinfo/4c57c24d-61e9-41d8-912a-8944b9e3dd85.json 3ms .tap/processinfo/51be6d29-8498-42b5-b648-4331a8cc1620.json 5ms .tap/processinfo/77a86007-79d2-403a-9fd0-0099176628eb.json 4ms .tap/processinfo/ad188bc4-8e9f-42ed-bdbb-febdf9e2fd70.json 5ms .tap/processinfo/e3b30972-2569-41f3-a2f0-0b516524c56e.json 4ms .tap/processinfo/e4e079ea-f384-434c-8a8f-430f6bda7501.json 3ms .tap/processinfo/ec4b832d-d31c-40b7-8657-48b874219100.json 4ms .tap/processinfo/f47299fe-8a09-46ac-99f8-33209e0bb687.json 3ms ```
Configuration menu - View commit details
-
Copy full SHA for e3925cc - Browse repository at this point
Copy the full SHA e3925ccView commit details
Commits on Apr 3, 2024
-
Configuration menu - View commit details
-
Copy full SHA for e06a383 - Browse repository at this point
Copy the full SHA e06a383View commit details -
Configuration menu - View commit details
-
Copy full SHA for 84b5e8b - Browse repository at this point
Copy the full SHA 84b5e8bView commit details -
Configuration menu - View commit details
-
Copy full SHA for f645bbe - Browse repository at this point
Copy the full SHA f645bbeView commit details
Commits on Apr 4, 2024
-
Configuration menu - View commit details
-
Copy full SHA for 6b96473 - Browse repository at this point
Copy the full SHA 6b96473View commit details -
feat: upgrade snyk-iac-test to v0.51.3 (#5127)
Upgrade snyk-iac-test to v0.51.3. Changes: - Print scan URL to debug output after uploading report. - Fix panic on invalid arm input - Minor fixes in Policy-Engine
Configuration menu - View commit details
-
Copy full SHA for 0fd8fa6 - Browse repository at this point
Copy the full SHA 0fd8fa6View commit details
Commits on Apr 8, 2024
-
Configuration menu - View commit details
-
Copy full SHA for 08647f2 - Browse repository at this point
Copy the full SHA 08647f2View commit details
Commits on Apr 9, 2024
-
Configuration menu - View commit details
-
Copy full SHA for 1e51948 - Browse repository at this point
Copy the full SHA 1e51948View commit details -
feat: bump language server protocol version to 11 [IDE-236] (#5156)
This safe-guards and enforces that global ignores functionality has the necessary commands available.
Configuration menu - View commit details
-
Copy full SHA for fc41937 - Browse repository at this point
Copy the full SHA fc41937View commit details
Commits on Apr 12, 2024
-
Configuration menu - View commit details
-
Copy full SHA for 43c9acf - Browse repository at this point
Copy the full SHA 43c9acfView commit details
Commits on Apr 15, 2024
-
Configuration menu - View commit details
-
Copy full SHA for b55fbc8 - Browse repository at this point
Copy the full SHA b55fbc8View commit details -
Configuration menu - View commit details
-
Copy full SHA for 5fc3d59 - Browse repository at this point
Copy the full SHA 5fc3d59View commit details -
Configuration menu - View commit details
-
Copy full SHA for efb0488 - Browse repository at this point
Copy the full SHA efb0488View commit details -
feat: use workflow data to determine exit code errors
* feat: parse workflow data to determine errors * fix: switch to align with finalised schema * chore(deps): bump gaf to latest * test: refactor to support integration test * fix: introduce custom error for storing exit code * chore: adjust wording on json error * test: update to match new error * chore: remove file * chore(deps): update go-application-framework to latest * chore: reorder imports * chore: remove unused code * refactor: switch to structured test data * chore: fix formatting * chore: rename to include global prefix * fix: switch to content_type ref * chore: remove unused file * refactor: switch to exported type * refactor: introduce tests for displayError We want to ensure that nothing is displayed for the new Error being generated from TestSummary payload * test: switch to NewInMemory configuration * fix: display error logic to handle ExitCode errors * fix: broken import * test: remove defunct test --------- Co-authored-by: Peter Schäfer <101886095+PeterSchafer@users.noreply.github.com>
Configuration menu - View commit details
-
Copy full SHA for 51c717b - Browse repository at this point
Copy the full SHA 51c717bView commit details
Commits on Apr 16, 2024
-
Configuration menu - View commit details
-
Copy full SHA for 05cb9f5 - Browse repository at this point
Copy the full SHA 05cb9f5View commit details -
Configuration menu - View commit details
-
Copy full SHA for 5bd898e - Browse repository at this point
Copy the full SHA 5bd898eView commit details -
Configuration menu - View commit details
-
Copy full SHA for a8be764 - Browse repository at this point
Copy the full SHA a8be764View commit details -
Configuration menu - View commit details
-
Copy full SHA for 86484c9 - Browse repository at this point
Copy the full SHA 86484c9View commit details -
Configuration menu - View commit details
-
Copy full SHA for 5400c69 - Browse repository at this point
Copy the full SHA 5400c69View commit details
Commits on Apr 17, 2024
-
Configuration menu - View commit details
-
Copy full SHA for 7c88a44 - Browse repository at this point
Copy the full SHA 7c88a44View commit details -
Configuration menu - View commit details
-
Copy full SHA for 34bbc95 - Browse repository at this point
Copy the full SHA 34bbc95View commit details
Commits on Apr 18, 2024
-
Configuration menu - View commit details
-
Copy full SHA for 216af9c - Browse repository at this point
Copy the full SHA 216af9cView commit details -
feat: snyk woof ro language support and tests (#5166)
* feat: snyk woof ro language support and tests * chore: use jest table tests instead of forEach
Configuration menu - View commit details
-
Copy full SHA for ed2e754 - Browse repository at this point
Copy the full SHA ed2e754View commit details -
feat(sbom): Introduce experimental sbom test command (#5176)
* feat(sbom): Introduce experimental sbom test command --------- Co-authored-by: Tim Pickles <tim.pickles@snyk.io>
Configuration menu - View commit details
-
Copy full SHA for ea6293b - Browse repository at this point
Copy the full SHA ea6293bView commit details -
docs: synchronizing help from snyk/user-docs (#5179)
Co-authored-by: mcombuechen <noreply@snyk.io>
Configuration menu - View commit details
-
Copy full SHA for 77d8bfe - Browse repository at this point
Copy the full SHA 77d8bfeView commit details
Commits on Apr 19, 2024
-
chore(ci): Enable preview and stable deployments (#5178)
* chore(ci): enable stable release channels * chore: add release scripts to makefile * chore: add additional instructions to prepare-release * chore: run formatter after generating release notes * chore: remove unused variable * chore: ensure to use the correct version in release notes * chore: use correct version in create-release * chore: use long form of semver --coerce * chore: add comment on version cleanup
Configuration menu - View commit details
-
Copy full SHA for dcce4d4 - Browse repository at this point
Copy the full SHA dcce4d4View commit details -
Configuration menu - View commit details
-
Copy full SHA for e54b227 - Browse repository at this point
Copy the full SHA e54b227View commit details -
Configuration menu - View commit details
-
Copy full SHA for f18cbce - Browse repository at this point
Copy the full SHA f18cbceView commit details -
Configuration menu - View commit details
-
Copy full SHA for ca812c1 - Browse repository at this point
Copy the full SHA ca812c1View commit details