Skip to content

Commit 8e262c3

Browse files
osv-robotosv-robot
authored
test: update snapshots (#2667)
The snapshots have changed, probably due to OSV advisories being changed. Please review the differences to make sure that they're expected!
1 parent 1a039c4 commit 8e262c3

File tree

3 files changed

+18
-18
lines changed

3 files changed

+18
-18
lines changed

cmd/osv-scanner/scan/image/__snapshots__/command_test.snap

Lines changed: 5 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -439,7 +439,7 @@ Scanning local image tarball "./testdata/test-ubuntu.tar"
439439
440440
441441
Container Scanning Result (Ubuntu 22.04.5 LTS) (Based on "ubuntu" image):
442-
Total 22 packages affected by 48 known vulnerabilities (3 Critical, 14 High, 25 Medium, 3 Low, 3 Unknown) from 1 ecosystem.
442+
Total 22 packages affected by 48 known vulnerabilities (3 Critical, 15 High, 25 Medium, 3 Low, 2 Unknown) from 1 ecosystem.
443443
24 vulnerabilities can be fixed.
444444
445445
@@ -488,7 +488,7 @@ Scanning local image tarball "./testdata/test-ubuntu.tar"
488488
489489
490490
Container Scanning Result (Ubuntu 22.04.5 LTS) (Based on "ubuntu" image):
491-
Total 22 packages affected by 48 known vulnerabilities (3 Critical, 14 High, 25 Medium, 3 Low, 3 Unknown) from 1 ecosystem.
491+
Total 22 packages affected by 48 known vulnerabilities (3 Critical, 15 High, 25 Medium, 3 Low, 2 Unknown) from 1 ecosystem.
492492
24 vulnerabilities can be fixed.
493493
494494
@@ -556,7 +556,7 @@ Scanning local image tarball "./testdata/test-ubuntu-with-packages.tar"
556556
557557
558558
Container Scanning Result (Ubuntu 22.04.5 LTS) (Based on "ubuntu" image):
559-
Total 22 packages affected by 48 known vulnerabilities (3 Critical, 14 High, 25 Medium, 3 Low, 3 Unknown) from 1 ecosystem.
559+
Total 22 packages affected by 48 known vulnerabilities (3 Critical, 15 High, 25 Medium, 3 Low, 2 Unknown) from 1 ecosystem.
560560
24 vulnerabilities can be fixed.
561561
562562
@@ -605,7 +605,7 @@ Scanning local image tarball "./testdata/test-java-full.tar"
605605
606606
607607
Container Scanning Result (Alpine Linux v3.21) (Based on "eclipse-temurin" image):
608-
Total 25 packages affected by 73 known vulnerabilities (4 Critical, 29 High, 35 Medium, 4 Low, 1 Unknown) from 2 ecosystems.
608+
Total 25 packages affected by 73 known vulnerabilities (3 Critical, 30 High, 35 Medium, 4 Low, 1 Unknown) from 2 ecosystems.
609609
73 vulnerabilities can be fixed.
610610
611611
@@ -849,7 +849,7 @@ Scanning local image tarball "./testdata/test-package-tracing.tar"
849849
850850
851851
Container Scanning Result (Alpine Linux v3.20) (Based on "alpine" image):
852-
Total 9 packages affected by 213 known vulnerabilities (2 Critical, 6 High, 11 Medium, 2 Low, 192 Unknown) from 2 ecosystems.
852+
Total 9 packages affected by 213 known vulnerabilities (1 Critical, 7 High, 11 Medium, 2 Low, 192 Unknown) from 2 ecosystems.
853853
213 vulnerabilities can be fixed.
854854
855855

cmd/osv-scanner/scan/source/__snapshots__/command_test.snap

Lines changed: 10 additions & 10 deletions
Original file line numberDiff line numberDiff line change
@@ -889,7 +889,7 @@ Scanned <rootdir>/testdata/sbom-insecure/with-duplicates.cdx.xml file and found
889889
Warning: plugin transitivedependency/pomxml can be risky when run on untrusted artifacts. Please ensure you trust the source code and artifacts before proceeding.
890890
Filtered 10 local/unscannable package/s from the scan.
891891

892-
Total 26 packages affected by 181 known vulnerabilities (21 Critical, 77 High, 56 Medium, 3 Low, 24 Unknown) from 4 ecosystems.
892+
Total 26 packages affected by 181 known vulnerabilities (20 Critical, 78 High, 56 Medium, 3 Low, 24 Unknown) from 4 ecosystems.
893893
11 vulnerabilities can be fixed.
894894

895895
+---------------------------------------+------+-----------+--------------------------------+------------------------------------+-----------------------------------+---------------------------------------------------------------------+
@@ -1011,7 +1011,7 @@ Total 26 packages affected by 181 known vulnerabilities (21 Critical, 77 High, 5
10111011
| https://osv.dev/DSA-5532-1 | 7.5 | Debian | openssl | 1.1.0l-1~deb9u5 | -- | testdata/sbom-insecure/postgres-stretch.cdx.xml |
10121012
| https://osv.dev/DSA-5764-1 | 7.5 | Debian | openssl | 1.1.0l-1~deb9u5 | -- | testdata/sbom-insecure/postgres-stretch.cdx.xml |
10131013
| https://osv.dev/DSA-6015-1 | 7.5 | Debian | openssl | 1.1.0l-1~deb9u5 | -- | testdata/sbom-insecure/postgres-stretch.cdx.xml |
1014-
| https://osv.dev/DSA-6113-1 | 9.8 | Debian | openssl | 1.1.0l-1~deb9u5 | -- | testdata/sbom-insecure/postgres-stretch.cdx.xml |
1014+
| https://osv.dev/DSA-6113-1 | 8.8 | Debian | openssl | 1.1.0l-1~deb9u5 | -- | testdata/sbom-insecure/postgres-stretch.cdx.xml |
10151015
| https://osv.dev/DEBIAN-CVE-2018-0732 | 7.5 | Debian | openssl | 1.1.0l-1~deb9u5 | -- | testdata/sbom-insecure/postgres-stretch.cdx.xml |
10161016
| https://osv.dev/DEBIAN-CVE-2018-0734 | 5.9 | Debian | openssl | 1.1.0l-1~deb9u5 | -- | testdata/sbom-insecure/postgres-stretch.cdx.xml |
10171017
| https://osv.dev/DEBIAN-CVE-2018-0735 | 5.9 | Debian | openssl | 1.1.0l-1~deb9u5 | -- | testdata/sbom-insecure/postgres-stretch.cdx.xml |
@@ -2133,7 +2133,7 @@ Filtered 8 vulnerabilities from output
21332133
testdata/osv-scanner-partial-ignores-config.toml has unused ignores:
21342134
- CVE-2019-5188
21352135

2136-
Total 24 packages affected by 175 known vulnerabilities (21 Critical, 72 High, 55 Medium, 3 Low, 24 Unknown) from 4 ecosystems.
2136+
Total 24 packages affected by 175 known vulnerabilities (20 Critical, 73 High, 55 Medium, 3 Low, 24 Unknown) from 4 ecosystems.
21372137
10 vulnerabilities can be fixed.
21382138

21392139
+---------------------------------------+------+-----------+--------------------------------+------------------------------------+-----------------------------------+---------------------------------------------------------------------+
@@ -2247,7 +2247,7 @@ Total 24 packages affected by 175 known vulnerabilities (21 Critical, 72 High, 5
22472247
| https://osv.dev/DSA-5532-1 | 7.5 | Debian | openssl | 1.1.0l-1~deb9u5 | -- | testdata/sbom-insecure/postgres-stretch.cdx.xml |
22482248
| https://osv.dev/DSA-5764-1 | 7.5 | Debian | openssl | 1.1.0l-1~deb9u5 | -- | testdata/sbom-insecure/postgres-stretch.cdx.xml |
22492249
| https://osv.dev/DSA-6015-1 | 7.5 | Debian | openssl | 1.1.0l-1~deb9u5 | -- | testdata/sbom-insecure/postgres-stretch.cdx.xml |
2250-
| https://osv.dev/DSA-6113-1 | 9.8 | Debian | openssl | 1.1.0l-1~deb9u5 | -- | testdata/sbom-insecure/postgres-stretch.cdx.xml |
2250+
| https://osv.dev/DSA-6113-1 | 8.8 | Debian | openssl | 1.1.0l-1~deb9u5 | -- | testdata/sbom-insecure/postgres-stretch.cdx.xml |
22512251
| https://osv.dev/DEBIAN-CVE-2018-0732 | 7.5 | Debian | openssl | 1.1.0l-1~deb9u5 | -- | testdata/sbom-insecure/postgres-stretch.cdx.xml |
22522252
| https://osv.dev/DEBIAN-CVE-2018-0734 | 5.9 | Debian | openssl | 1.1.0l-1~deb9u5 | -- | testdata/sbom-insecure/postgres-stretch.cdx.xml |
22532253
| https://osv.dev/DEBIAN-CVE-2018-0735 | 5.9 | Debian | openssl | 1.1.0l-1~deb9u5 | -- | testdata/sbom-insecure/postgres-stretch.cdx.xml |
@@ -2364,7 +2364,7 @@ Filtered 6 vulnerabilities from output
23642364
testdata/osv-scanner-partial-ignores-config.toml has unused ignores:
23652365
- CVE-2019-5188
23662366

2367-
Total 22 packages affected by 169 known vulnerabilities (19 Critical, 70 High, 53 Medium, 3 Low, 24 Unknown) from 3 ecosystems.
2367+
Total 22 packages affected by 169 known vulnerabilities (18 Critical, 71 High, 53 Medium, 3 Low, 24 Unknown) from 3 ecosystems.
23682368
10 vulnerabilities can be fixed.
23692369

23702370
+---------------------------------------+------+-----------+--------------------------------+------------------------------------+-----------------------------------+-------------------------------------------------+
@@ -2472,7 +2472,7 @@ Total 22 packages affected by 169 known vulnerabilities (19 Critical, 70 High, 5
24722472
| https://osv.dev/DSA-5532-1 | 7.5 | Debian | openssl | 1.1.0l-1~deb9u5 | -- | testdata/sbom-insecure/postgres-stretch.cdx.xml |
24732473
| https://osv.dev/DSA-5764-1 | 7.5 | Debian | openssl | 1.1.0l-1~deb9u5 | -- | testdata/sbom-insecure/postgres-stretch.cdx.xml |
24742474
| https://osv.dev/DSA-6015-1 | 7.5 | Debian | openssl | 1.1.0l-1~deb9u5 | -- | testdata/sbom-insecure/postgres-stretch.cdx.xml |
2475-
| https://osv.dev/DSA-6113-1 | 9.8 | Debian | openssl | 1.1.0l-1~deb9u5 | -- | testdata/sbom-insecure/postgres-stretch.cdx.xml |
2475+
| https://osv.dev/DSA-6113-1 | 8.8 | Debian | openssl | 1.1.0l-1~deb9u5 | -- | testdata/sbom-insecure/postgres-stretch.cdx.xml |
24762476
| https://osv.dev/DEBIAN-CVE-2018-0732 | 7.5 | Debian | openssl | 1.1.0l-1~deb9u5 | -- | testdata/sbom-insecure/postgres-stretch.cdx.xml |
24772477
| https://osv.dev/DEBIAN-CVE-2018-0734 | 5.9 | Debian | openssl | 1.1.0l-1~deb9u5 | -- | testdata/sbom-insecure/postgres-stretch.cdx.xml |
24782478
| https://osv.dev/DEBIAN-CVE-2018-0735 | 5.9 | Debian | openssl | 1.1.0l-1~deb9u5 | -- | testdata/sbom-insecure/postgres-stretch.cdx.xml |
@@ -4569,7 +4569,7 @@ Filtered 1 local/unscannable package/s from the scan.
45694569
Loaded Debian local db from <tempdir>/osv-scanner/Debian/all.zip
45704570
Loaded Go local db from <tempdir>/osv-scanner/Go/all.zip
45714571

4572-
Total 21 packages affected by 168 known vulnerabilities (18 Critical, 70 High, 53 Medium, 3 Low, 24 Unknown) from 2 ecosystems.
4572+
Total 21 packages affected by 168 known vulnerabilities (17 Critical, 71 High, 53 Medium, 3 Low, 24 Unknown) from 2 ecosystems.
45734573
11 vulnerabilities can be fixed.
45744574

45754575
+---------------------------------------+------+-----------+--------------------------------+------------------------------------+-----------------------------------+-------------------------------------------------+
@@ -4678,7 +4678,7 @@ Total 21 packages affected by 168 known vulnerabilities (18 Critical, 70 High, 5
46784678
| https://osv.dev/DSA-5532-1 | 7.5 | Debian | openssl | 1.1.0l-1~deb9u5 | -- | testdata/sbom-insecure/postgres-stretch.cdx.xml |
46794679
| https://osv.dev/DSA-5764-1 | 7.5 | Debian | openssl | 1.1.0l-1~deb9u5 | -- | testdata/sbom-insecure/postgres-stretch.cdx.xml |
46804680
| https://osv.dev/DSA-6015-1 | 7.5 | Debian | openssl | 1.1.0l-1~deb9u5 | -- | testdata/sbom-insecure/postgres-stretch.cdx.xml |
4681-
| https://osv.dev/DSA-6113-1 | 9.8 | Debian | openssl | 1.1.0l-1~deb9u5 | -- | testdata/sbom-insecure/postgres-stretch.cdx.xml |
4681+
| https://osv.dev/DSA-6113-1 | 8.8 | Debian | openssl | 1.1.0l-1~deb9u5 | -- | testdata/sbom-insecure/postgres-stretch.cdx.xml |
46824682
| https://osv.dev/DEBIAN-CVE-2018-0732 | 7.5 | Debian | openssl | 1.1.0l-1~deb9u5 | -- | testdata/sbom-insecure/postgres-stretch.cdx.xml |
46834683
| https://osv.dev/DEBIAN-CVE-2018-0734 | 5.9 | Debian | openssl | 1.1.0l-1~deb9u5 | -- | testdata/sbom-insecure/postgres-stretch.cdx.xml |
46844684
| https://osv.dev/DEBIAN-CVE-2018-0735 | 5.9 | Debian | openssl | 1.1.0l-1~deb9u5 | -- | testdata/sbom-insecure/postgres-stretch.cdx.xml |
@@ -4787,7 +4787,7 @@ Filtered 1 local/unscannable package/s from the scan.
47874787
Loaded Debian local db from <tempdir>/osv-scanner/Debian/all.zip
47884788
Loaded Go local db from <tempdir>/osv-scanner/Go/all.zip
47894789

4790-
Total 21 packages affected by 168 known vulnerabilities (18 Critical, 70 High, 53 Medium, 3 Low, 24 Unknown) from 2 ecosystems.
4790+
Total 21 packages affected by 168 known vulnerabilities (17 Critical, 71 High, 53 Medium, 3 Low, 24 Unknown) from 2 ecosystems.
47914791
11 vulnerabilities can be fixed.
47924792

47934793
+---------------------------------------+------+-----------+--------------------------------+------------------------------------+-----------------------------------+-------------------------------------------------+
@@ -4896,7 +4896,7 @@ Total 21 packages affected by 168 known vulnerabilities (18 Critical, 70 High, 5
48964896
| https://osv.dev/DSA-5532-1 | 7.5 | Debian | openssl | 1.1.0l-1~deb9u5 | -- | testdata/sbom-insecure/postgres-stretch.cdx.xml |
48974897
| https://osv.dev/DSA-5764-1 | 7.5 | Debian | openssl | 1.1.0l-1~deb9u5 | -- | testdata/sbom-insecure/postgres-stretch.cdx.xml |
48984898
| https://osv.dev/DSA-6015-1 | 7.5 | Debian | openssl | 1.1.0l-1~deb9u5 | -- | testdata/sbom-insecure/postgres-stretch.cdx.xml |
4899-
| https://osv.dev/DSA-6113-1 | 9.8 | Debian | openssl | 1.1.0l-1~deb9u5 | -- | testdata/sbom-insecure/postgres-stretch.cdx.xml |
4899+
| https://osv.dev/DSA-6113-1 | 8.8 | Debian | openssl | 1.1.0l-1~deb9u5 | -- | testdata/sbom-insecure/postgres-stretch.cdx.xml |
49004900
| https://osv.dev/DEBIAN-CVE-2018-0732 | 7.5 | Debian | openssl | 1.1.0l-1~deb9u5 | -- | testdata/sbom-insecure/postgres-stretch.cdx.xml |
49014901
| https://osv.dev/DEBIAN-CVE-2018-0734 | 5.9 | Debian | openssl | 1.1.0l-1~deb9u5 | -- | testdata/sbom-insecure/postgres-stretch.cdx.xml |
49024902
| https://osv.dev/DEBIAN-CVE-2018-0735 | 5.9 | Debian | openssl | 1.1.0l-1~deb9u5 | -- | testdata/sbom-insecure/postgres-stretch.cdx.xml |

cmd/osv-scanner/update/__snapshots__/command_test.snap

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -114,7 +114,7 @@ file not found: ./testdata/does_not_exist.xml
114114
<dependency>
115115
<groupId>com.fasterxml.jackson.core</groupId>
116116
<artifactId>jackson-core</artifactId>
117-
<version>2.21.1</version>
117+
<version>2.21.2</version>
118118
</dependency>
119119
<dependency>
120120
<groupId>junit</groupId>
@@ -185,7 +185,7 @@ file not found: ./testdata/does_not_exist.xml
185185
<dependency>
186186
<groupId>com.fasterxml.jackson.core</groupId>
187187
<artifactId>jackson-core</artifactId>
188-
<version>2.21.1</version>
188+
<version>2.21.2</version>
189189
</dependency>
190190
<dependency>
191191
<groupId>junit</groupId>
@@ -256,7 +256,7 @@ file not found: ./testdata/does_not_exist.xml
256256
<dependency>
257257
<groupId>com.fasterxml.jackson.core</groupId>
258258
<artifactId>jackson-core</artifactId>
259-
<version>2.21.1</version>
259+
<version>2.21.2</version>
260260
</dependency>
261261
<dependency>
262262
<groupId>junit</groupId>

0 commit comments

Comments
 (0)