Refactor go package updater by eranturgeman · Pull Request #1063 · jfrog/frogbot

eranturgeman · 2026-02-16T11:42:42Z

All tests passed. If this feature is not already covered by the tests, I added new tests.
This pull request is on the dev branch.
I used gofmt for formatting the code before submitting the pull request.
Update documentation about new features / new supported technologies

This PR refactors Golang package updater:

detects all manifests to be fixed
fix each vulnerable dependency occurrence in all identified locations (and rollback to valid state if fails)
tidy go.sum and vendor if necessary (if exists in remote)

Co-authored-by: Cursor <cursoragent@cursor.com>

…r-go-package-updater

…ors and locations

…r-go-package-updater

This reverts commit 8f4a8be.

github-actions · 2026-02-16T12:04:36Z

🐸 JFrog Frogbot

packageupdaters/commonpackageupdater_test.go

orto17 · 2026-02-17T07:44:51Z

packageupdaters/commonpackageupdater_test.go

-				scanDetails:        scanDetails,
-				fixSupported:       true,
-				descriptorsToCheck: []string{GoPackageDescriptor},
+				vulnDetails:               createVulnerabilityDetails(techutils.Go, "golang.org/x/crypto", "", "0.0.0-20201216223049-8b5274cf687f", false, "go.mod"),


dont we want to move all the go tests to gopackagehandler_test ?

eranturgeman and others added 5 commits February 12, 2026 10:08

Applying new updater to Golang

caa8227

Co-authored-by: Cursor <cursoragent@cursor.com>

Merge branch 'v3_er' of https://github.com/jfrog/frogbot into refacto…

c32bf61

…r-go-package-updater

Golang updater fixes before addressing 3 issues wil multiple descript…

2eadb6b

…ors and locations

Merge branch 'v3_er' of https://github.com/jfrog/frogbot into refacto…

74964af

…r-go-package-updater

Refactor Golang package updater

1037154

eranturgeman requested a review from orto17 February 16, 2026 11:42

eranturgeman added safe to test Approve running integration tests on a pull request improvement Automatically generated release notes labels Feb 16, 2026

eranturgeman requested a deployment to frogbot February 16, 2026 11:42 — with GitHub Actions Waiting

github-actions bot removed the safe to test Approve running integration tests on a pull request label Feb 16, 2026

eranturgeman added 3 commits February 16, 2026 13:52

removed unused fields from CommonPackageUpdater

8f4a8be

Revert "removed unused fields from CommonPackageUpdater"

53c2d33

This reverts commit 8f4a8be.

removed unused fields from CommonPackageUpdater

9449713

eranturgeman deployed to frogbot February 16, 2026 11:55 — with GitHub Actions Active

eranturgeman added the safe to test Approve running integration tests on a pull request label Feb 16, 2026

github-actions bot removed the safe to test Approve running integration tests on a pull request label Feb 16, 2026

orto17 reviewed Feb 17, 2026

View reviewed changes

packageupdaters/commonpackageupdater_test.go Show resolved Hide resolved

orto17 reviewed Feb 17, 2026

View reviewed changes

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Refactor go package updater#1063

Refactor go package updater#1063
eranturgeman wants to merge 8 commits intojfrog:v3_erfrom
eranturgeman:refactor-go-package-updater

eranturgeman commented Feb 16, 2026

Uh oh!

github-actions bot commented Feb 16, 2026

Uh oh!

Uh oh!

orto17 Feb 17, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

Conversation

eranturgeman commented Feb 16, 2026

Uh oh!

github-actions bot commented Feb 16, 2026

Uh oh!

Uh oh!

orto17 Feb 17, 2026

Choose a reason for hiding this comment

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants