Bump golangci/golangci-lint-action from 6.1.1 to 6.2.0 (#1268)

dependabot[bot] · Daisuke Maki · web-flow · commit f25e76a7e359 · 2025-01-20T13:09:21.000+09:00
* Bump golangci/golangci-lint-action from 6.1.1 to 6.2.0 Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action) from 6.1.1 to 6.2.0. - [Release notes](https://github.com/golangci/golangci-lint-action/releases) - [Commits](golangci/golangci-lint-action@971e284...ec5d184) --- updated-dependencies: - dependency-name: golangci/golangci-lint-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * Appease linter * fix more instances of os.CreateTempDir * set p2c for newer jose * use t.Cleanup * remove parallel testing --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Daisuke Maki <lestrrat+github@github.com>
diff --git a/.github/workflows/lint.yml b/.github/workflows/lint.yml
@@ -9,7 +9,7 @@ jobs:
       - uses: actions/setup-go@0a12ed9d6a96ab950c8f026ed9f722fe0da7ef32 # v5.0.2
         with:
           go-version-file: "go.mod"
-      - uses: golangci/golangci-lint-action@971e284b6050e8a5849b72094c50ab08da042db8 # v6.1.1
+      - uses: golangci/golangci-lint-action@ec5d18412c0aeab7936cb16880d708ba2a64e1ae # v6.2.0
       - name: Run go vet
         run: |
           go vet ./...
diff --git a/internal/jose/jose.go b/internal/jose/jose.go
@@ -125,7 +125,7 @@ func Algorithms(ctx context.Context, t *testing.T) (*AlgorithmSet, error) {
 func GenerateJwk(ctx context.Context, t *testing.T, template string) (string, func(), error) {
 	t.Helper()
 
-	file, cleanup, err := jwxtest.CreateTempFile("jwx-jose-key-*.jwk")
+	file, cleanup, err := jwxtest.CreateTempFile(t.TempDir(), "jwx-jose-key-*.jwk")
 	if err != nil {
 		return "", nil, fmt.Errorf(`failed to create temporary file: %w`, err)
 	}
@@ -158,7 +158,7 @@ func EncryptJwe(ctx context.Context, t *testing.T, payload []byte, alg string, k
 
 	var pfile string
 	if len(payload) > 0 {
-		fn, pcleanup, perr := jwxtest.WriteFile("jwx-jose-payload-*", bytes.NewReader(payload))
+		fn, pcleanup, perr := jwxtest.WriteFile(t.TempDir(), "jwx-jose-payload-*", bytes.NewReader(payload))
 		if perr != nil {
 			return "", nil, fmt.Errorf(`failed to write payload to file: %w`, perr)
 		}
@@ -168,7 +168,7 @@ func EncryptJwe(ctx context.Context, t *testing.T, payload []byte, alg string, k
 		defer pcleanup()
 	}
 
-	ofile, ocleanup, oerr := jwxtest.CreateTempFile(`jwx-jose-key-*.jwe`)
+	ofile, ocleanup, oerr := jwxtest.CreateTempFile(t.TempDir(), `jwx-jose-key-*.jwe`)
 	if oerr != nil {
 		return "", nil, fmt.Errorf(`failed to create temporary file: %w`, oerr)
 	}
@@ -205,7 +205,7 @@ func DecryptJwe(ctx context.Context, t *testing.T, cfile, kfile string) ([]byte,
 func FmtJwe(ctx context.Context, t *testing.T, data []byte) ([]byte, error) {
 	t.Helper()
 
-	fn, pcleanup, perr := jwxtest.WriteFile("jwx-jose-fmt-data-*", bytes.NewReader(data))
+	fn, pcleanup, perr := jwxtest.WriteFile(t.TempDir(), "jwx-jose-fmt-data-*", bytes.NewReader(data))
 	if perr != nil {
 		return nil, fmt.Errorf(`failed to write data to file: %w`, perr)
 	}
@@ -237,7 +237,7 @@ func SignJws(ctx context.Context, t *testing.T, payload []byte, keyfile string,
 
 	var pfile string
 	if len(payload) > 0 {
-		fn, pcleanup, perr := jwxtest.WriteFile("jwx-jose-payload-*", bytes.NewReader(payload))
+		fn, pcleanup, perr := jwxtest.WriteFile(t.TempDir(), "jwx-jose-payload-*", bytes.NewReader(payload))
 		if perr != nil {
 			return "", nil, fmt.Errorf(`failed to write payload to file: %w`, perr)
 		}
@@ -247,7 +247,7 @@ func SignJws(ctx context.Context, t *testing.T, payload []byte, keyfile string,
 		defer pcleanup()
 	}
 
-	ofile, ocleanup, oerr := jwxtest.CreateTempFile(`jwx-jose-sig-*.jws`)
+	ofile, ocleanup, oerr := jwxtest.CreateTempFile(t.TempDir(), `jwx-jose-sig-*.jws`)
 	if oerr != nil {
 		return "", nil, fmt.Errorf(`failed to create temporary file: %w`, oerr)
 	}
diff --git a/internal/jwxtest/jwxtest.go b/internal/jwxtest/jwxtest.go
@@ -138,8 +138,8 @@ func GenerateX25519Jwk() (jwk.Key, error) {
 	return k, nil
 }
 
-func WriteFile(template string, src io.Reader) (string, func(), error) {
-	file, cleanup, err := CreateTempFile(template)
+func WriteFile(dir, template string, src io.Reader) (string, func(), error) {
+	file, cleanup, err := CreateTempFile(dir, template)
 	if err != nil {
 		return "", nil, fmt.Errorf(`failed to create temporary file: %w`, err)
 	}
@@ -156,14 +156,14 @@ func WriteFile(template string, src io.Reader) (string, func(), error) {
 	return file.Name(), cleanup, nil
 }
 
-func WriteJSONFile(template string, v interface{}) (string, func(), error) {
+func WriteJSONFile(dir, template string, v interface{}) (string, func(), error) {
 	var buf bytes.Buffer
 
 	enc := json.NewEncoder(&buf)
 	if err := enc.Encode(v); err != nil {
 		return "", nil, fmt.Errorf(`failed to encode object to JSON: %w`, err)
 	}
-	return WriteFile(template, &buf)
+	return WriteFile(dir, template, &buf)
 }
 
 func DumpFile(t *testing.T, file string) {
@@ -215,8 +215,8 @@ func DumpFile(t *testing.T, file string) {
 	t.Logf("=== END   %s (formatted JSON) ===", file)
 }
 
-func CreateTempFile(template string) (*os.File, func(), error) {
-	file, err := os.CreateTemp("", template)
+func CreateTempFile(dir, template string) (*os.File, func(), error) {
+	file, err := os.CreateTemp(dir, template)
 	if err != nil {
 		return nil, nil, fmt.Errorf(`failed to create temporary file: %w`, err)
 	}
@@ -277,7 +277,7 @@ func DecryptJweFile(ctx context.Context, file string, alg jwa.KeyEncryptionAlgor
 	return jwe.Decrypt(buf, jwe.WithKey(alg, rawkey))
 }
 
-func EncryptJweFile(ctx context.Context, payload []byte, keyalg jwa.KeyEncryptionAlgorithm, keyfile string, contentalg jwa.ContentEncryptionAlgorithm, compressalg jwa.CompressionAlgorithm) (string, func(), error) {
+func EncryptJweFile(ctx context.Context, dir string, payload []byte, keyalg jwa.KeyEncryptionAlgorithm, keyfile string, contentalg jwa.ContentEncryptionAlgorithm, compressalg jwa.CompressionAlgorithm) (string, func(), error) {
 	key, err := ParseJwkFile(ctx, keyfile)
 	if err != nil {
 		return "", nil, fmt.Errorf(`failed to parse keyfile %s: %w`, keyfile, err)
@@ -311,7 +311,7 @@ func EncryptJweFile(ctx context.Context, payload []byte, keyalg jwa.KeyEncryptio
 		return "", nil, fmt.Errorf(`failed to encrypt payload: %w`, err)
 	}
 
-	return WriteFile("jwx-test-*.jwe", bytes.NewReader(buf))
+	return WriteFile(dir, "jwx-test-*.jwe", bytes.NewReader(buf))
 }
 
 func VerifyJwsFile(ctx context.Context, file string, alg jwa.SignatureAlgorithm, jwkfile string) ([]byte, error) {
@@ -342,7 +342,7 @@ func VerifyJwsFile(ctx context.Context, file string, alg jwa.SignatureAlgorithm,
 	return jws.Verify(buf, jws.WithKey(alg, pubkey))
 }
 
-func SignJwsFile(ctx context.Context, payload []byte, alg jwa.SignatureAlgorithm, keyfile string) (string, func(), error) {
+func SignJwsFile(ctx context.Context, dir string, payload []byte, alg jwa.SignatureAlgorithm, keyfile string) (string, func(), error) {
 	key, err := ParseJwkFile(ctx, keyfile)
 	if err != nil {
 		return "", nil, fmt.Errorf(`failed to parse keyfile %s: %w`, keyfile, err)
@@ -353,5 +353,5 @@ func SignJwsFile(ctx context.Context, payload []byte, alg jwa.SignatureAlgorithm
 		return "", nil, fmt.Errorf(`failed to sign payload: %w`, err)
 	}
 
-	return WriteFile("jwx-test-*.jws", bytes.NewReader(buf))
+	return WriteFile(dir, "jwx-test-*.jws", bytes.NewReader(buf))
 }
diff --git a/jwe/jwe_test.go b/jwe/jwe_test.go
@@ -677,7 +677,7 @@ func TestGHIssue230(t *testing.T) {
 func TestReadFile(t *testing.T) {
 	const s = `eyJhbGciOiJSU0EtT0FFUCIsImVuYyI6IkEyNTZHQ00ifQ.OKOawDo13gRp2ojaHV7LFpZcgV7T6DVZKTyKOMTYUmKoTCVJRgckCL9kiMT03JGeipsEdY3mx_etLbbWSrFr05kLzcSr4qKAq7YN7e9jwQRb23nfa6c9d-StnImGyFDbSv04uVuxIp5Zms1gNxKKK2Da14B8S4rzVRltdYwam_lDp5XnZAYpQdb76FdIKLaVmqgfwX7XWRxv2322i-vDxRfqNzo_tETKzpVLzfiwQyeyPGLBIO56YJ7eObdv0je81860ppamavo35UgoRdbYaBcoh9QcfylQr66oc6vFWXRcZ_ZT2LawVCWTIy3brGPi6UklfCpIMfIjf7iGdXKHzg.48V1_ALb6US04U3b.5eym8TW_c8SuK0ltJ3rpYIzOeDQz7TALvtu6UG9oMo4vpzs9tX_EFShS8iB7j6jiSdiwkIr3ajwQzaBtQD_A.XFBoMYUZodetZdvTiFvSkQ`
 
-	f, err := os.CreateTemp("", "test-read-file-*.jwe")
+	f, err := os.CreateTemp(t.TempDir(), "test-read-file-*.jwe")
 	if !assert.NoError(t, err, `os.CreateTemp should succeed`) {
 		return
 	}
diff --git a/jws/jws_test.go b/jws/jws_test.go
@@ -863,7 +863,7 @@ func TestDecode_ES384Compact_NoSigTrim(t *testing.T) {
 func TestReadFile(t *testing.T) {
 	t.Parallel()
 
-	f, err := os.CreateTemp("", "test-read-file-*.jws")
+	f, err := os.CreateTemp(t.TempDir(), "test-read-file-*.jws")
 	require.NoError(t, err, `io.CreateTemp should succeed`)
 	defer f.Close()
 
diff --git a/jwt/jwt_test.go b/jwt/jwt_test.go
@@ -739,7 +739,7 @@ func TestSignTyp(t *testing.T) {
 func TestReadFile(t *testing.T) {
 	t.Parallel()
 
-	f, err := os.CreateTemp("", "test-read-file-*.jwt")
+	f, err := os.CreateTemp(t.TempDir(), "test-read-file-*.jwt")
 	if !assert.NoError(t, err, `os.CreateTemp should succeed`) {
 		return
 	}
diff --git a/jwx_test.go b/jwx_test.go
@@ -89,8 +89,6 @@ func TestDecoderSetting(t *testing.T) {
 
 // Test compatibility against `jose` tool
 func TestJoseCompatibility(t *testing.T) {
-	t.Parallel()
-
 	if testing.Short() {
 		t.Logf("Skipped during short tests")
 		return
@@ -101,8 +99,11 @@ func TestJoseCompatibility(t *testing.T) {
 		return
 	}
 
+	// latchset/jose uses a larger p2c count than we allow
+	jwe.Settings(jwe.WithMaxPBES2Count(32768))
+	t.Cleanup(func() { jwe.Settings(jwe.WithMaxPBES2Count(10000)) })
+
 	t.Run("jwk", func(t *testing.T) {
-		t.Parallel()
 		testcases := []struct {
 			Name      string
 			Raw       interface{}
@@ -140,8 +141,6 @@ func TestJoseCompatibility(t *testing.T) {
 		for _, tc := range testcases {
 			tc := tc
 			t.Run(tc.Name, func(t *testing.T) {
-				t.Parallel()
-
 				ctx, cancel := context.WithCancel(context.Background())
 				defer cancel()
 
@@ -173,8 +172,6 @@ func TestJoseCompatibility(t *testing.T) {
 		// In order to avoid doing this in an ad-hoc way, we're just going to
 		// ask our jose package for the algorithms that it supports, and generate
 		// the list dynamically
-
-		t.Parallel()
 		ctx, cancel := context.WithCancel(context.Background())
 		defer cancel()
 		set, err := jose.Algorithms(ctx, t)
@@ -233,7 +230,6 @@ func TestJoseCompatibility(t *testing.T) {
 		}
 	})
 	t.Run("jws", func(t *testing.T) {
-		t.Parallel()
 		tests := []jwa.SignatureAlgorithm{
 			jwa.ES256,
 			//jwa.ES256K,
@@ -253,7 +249,6 @@ func TestJoseCompatibility(t *testing.T) {
 		for _, test := range tests {
 			test := test
 			t.Run(test.String(), func(t *testing.T) {
-				t.Parallel()
 				ctx, cancel := context.WithCancel(context.Background())
 				defer cancel()
 				joseJwsInteropTest(ctx, test, t)
@@ -329,7 +324,7 @@ func joseInteropTest(ctx context.Context, spec interopTest, t *testing.T) {
 		}
 	})
 	t.Run("Encrypt with jwx, Decrypt with jose", func(t *testing.T) {
-		jwxCryptFile, jwxCryptCleanup, err := jwxtest.EncryptJweFile(ctx, expected, spec.alg, joseJwkFile, spec.enc, jwa.NoCompress)
+		jwxCryptFile, jwxCryptCleanup, err := jwxtest.EncryptJweFile(ctx, t.TempDir(), expected, spec.alg, joseJwkFile, spec.enc, jwa.NoCompress)
 		if !assert.NoError(t, err, `jwxtest.EncryptJweFile should succeed`) {
 			return
 		}
@@ -383,7 +378,7 @@ func joseJwsInteropTest(ctx context.Context, alg jwa.SignatureAlgorithm, t *test
 		}
 	})
 	t.Run("Sign with jwx, Verify with jose", func(t *testing.T) {
-		jwxCryptFile, jwxCryptCleanup, err := jwxtest.SignJwsFile(ctx, expected, alg, joseJwkFile)
+		jwxCryptFile, jwxCryptCleanup, err := jwxtest.SignJwsFile(ctx, t.TempDir(), expected, alg, joseJwkFile)
 		if !assert.NoError(t, err, `jwxtest.SignJwsFile should succeed`) {
 			return
 		}

Original file line number	Diff line number	Diff line change
`@@ -125,7 +125,7 @@ func Algorithms(ctx context.Context, t testing.T) (AlgorithmSet, error) {`
`125`	`125`	`func GenerateJwk(ctx context.Context, t *testing.T, template string) (string, func(), error) {`
`126`	`126`	`t.Helper()`
`127`	`127`
`128`		`- file, cleanup, err := jwxtest.CreateTempFile("jwx-jose-key-*.jwk")`
	`128`	`+ file, cleanup, err := jwxtest.CreateTempFile(t.TempDir(), "jwx-jose-key-*.jwk")`
`129`	`129`	`if err != nil {`
`130`	`130`	return "", nil, fmt.Errorf(`failed to create temporary file: %w`, err)
`131`	`131`	`}`
`@@ -158,7 +158,7 @@ func EncryptJwe(ctx context.Context, t *testing.T, payload []byte, alg string, k`
`158`	`158`
`159`	`159`	`var pfile string`
`160`	`160`	`if len(payload) > 0 {`
`161`		`- fn, pcleanup, perr := jwxtest.WriteFile("jwx-jose-payload-*", bytes.NewReader(payload))`
	`161`	`+ fn, pcleanup, perr := jwxtest.WriteFile(t.TempDir(), "jwx-jose-payload-*", bytes.NewReader(payload))`
`162`	`162`	`if perr != nil {`
`163`	`163`	return "", nil, fmt.Errorf(`failed to write payload to file: %w`, perr)
`164`	`164`	`}`
`@@ -168,7 +168,7 @@ func EncryptJwe(ctx context.Context, t *testing.T, payload []byte, alg string, k`
`168`	`168`	`defer pcleanup()`
`169`	`169`	`}`
`170`	`170`
`171`		- ofile, ocleanup, oerr := jwxtest.CreateTempFile(`jwx-jose-key-*.jwe`)
	`171`	+ ofile, ocleanup, oerr := jwxtest.CreateTempFile(t.TempDir(), `jwx-jose-key-*.jwe`)
`172`	`172`	`if oerr != nil {`
`173`	`173`	return "", nil, fmt.Errorf(`failed to create temporary file: %w`, oerr)
`174`	`174`	`}`
`@@ -205,7 +205,7 @@ func DecryptJwe(ctx context.Context, t *testing.T, cfile, kfile string) ([]byte,`
`205`	`205`	`func FmtJwe(ctx context.Context, t *testing.T, data []byte) ([]byte, error) {`
`206`	`206`	`t.Helper()`
`207`	`207`
`208`		`- fn, pcleanup, perr := jwxtest.WriteFile("jwx-jose-fmt-data-*", bytes.NewReader(data))`
	`208`	`+ fn, pcleanup, perr := jwxtest.WriteFile(t.TempDir(), "jwx-jose-fmt-data-*", bytes.NewReader(data))`
`209`	`209`	`if perr != nil {`
`210`	`210`	return nil, fmt.Errorf(`failed to write data to file: %w`, perr)
`211`	`211`	`}`
`@@ -237,7 +237,7 @@ func SignJws(ctx context.Context, t *testing.T, payload []byte, keyfile string,`
`237`	`237`
`238`	`238`	`var pfile string`
`239`	`239`	`if len(payload) > 0 {`
`240`		`- fn, pcleanup, perr := jwxtest.WriteFile("jwx-jose-payload-*", bytes.NewReader(payload))`
	`240`	`+ fn, pcleanup, perr := jwxtest.WriteFile(t.TempDir(), "jwx-jose-payload-*", bytes.NewReader(payload))`
`241`	`241`	`if perr != nil {`
`242`	`242`	return "", nil, fmt.Errorf(`failed to write payload to file: %w`, perr)
`243`	`243`	`}`
`@@ -247,7 +247,7 @@ func SignJws(ctx context.Context, t *testing.T, payload []byte, keyfile string,`
`247`	`247`	`defer pcleanup()`
`248`	`248`	`}`
`249`	`249`
`250`		- ofile, ocleanup, oerr := jwxtest.CreateTempFile(`jwx-jose-sig-*.jws`)
	`250`	+ ofile, ocleanup, oerr := jwxtest.CreateTempFile(t.TempDir(), `jwx-jose-sig-*.jws`)
`251`	`251`	`if oerr != nil {`
`252`	`252`	return "", nil, fmt.Errorf(`failed to create temporary file: %w`, oerr)
`253`	`253`	`}`
Original file line number	Diff line number	Diff line change
`@@ -138,8 +138,8 @@ func GenerateX25519Jwk() (jwk.Key, error) {`
`138`	`138`	`return k, nil`
`139`	`139`	`}`
`140`	`140`
`141`		`-func WriteFile(template string, src io.Reader) (string, func(), error) {`
`142`		`- file, cleanup, err := CreateTempFile(template)`
	`141`	`+func WriteFile(dir, template string, src io.Reader) (string, func(), error) {`
	`142`	`+ file, cleanup, err := CreateTempFile(dir, template)`
`143`	`143`	`if err != nil {`
`144`	`144`	return "", nil, fmt.Errorf(`failed to create temporary file: %w`, err)
`145`	`145`	`}`
`@@ -156,14 +156,14 @@ func WriteFile(template string, src io.Reader) (string, func(), error) {`
`156`	`156`	`return file.Name(), cleanup, nil`
`157`	`157`	`}`
`158`	`158`
`159`		`-func WriteJSONFile(template string, v interface{}) (string, func(), error) {`
	`159`	`+func WriteJSONFile(dir, template string, v interface{}) (string, func(), error) {`
`160`	`160`	`var buf bytes.Buffer`
`161`	`161`
`162`	`162`	`enc := json.NewEncoder(&buf)`
`163`	`163`	`if err := enc.Encode(v); err != nil {`
`164`	`164`	return "", nil, fmt.Errorf(`failed to encode object to JSON: %w`, err)
`165`	`165`	`}`
`166`		`- return WriteFile(template, &buf)`
	`166`	`+ return WriteFile(dir, template, &buf)`
`167`	`167`	`}`
`168`	`168`
`169`	`169`	`func DumpFile(t *testing.T, file string) {`
`@@ -215,8 +215,8 @@ func DumpFile(t *testing.T, file string) {`
`215`	`215`	`t.Logf("=== END %s (formatted JSON) ===", file)`
`216`	`216`	`}`
`217`	`217`
`218`		`-func CreateTempFile(template string) (*os.File, func(), error) {`
`219`		`- file, err := os.CreateTemp("", template)`
	`218`	`+func CreateTempFile(dir, template string) (*os.File, func(), error) {`
	`219`	`+ file, err := os.CreateTemp(dir, template)`
`220`	`220`	`if err != nil {`
`221`	`221`	return nil, nil, fmt.Errorf(`failed to create temporary file: %w`, err)
`222`	`222`	`}`
`@@ -277,7 +277,7 @@ func DecryptJweFile(ctx context.Context, file string, alg jwa.KeyEncryptionAlgor`
`277`	`277`	`return jwe.Decrypt(buf, jwe.WithKey(alg, rawkey))`
`278`	`278`	`}`
`279`	`279`
`280`		`-func EncryptJweFile(ctx context.Context, payload []byte, keyalg jwa.KeyEncryptionAlgorithm, keyfile string, contentalg jwa.ContentEncryptionAlgorithm, compressalg jwa.CompressionAlgorithm) (string, func(), error) {`
	`280`	`+func EncryptJweFile(ctx context.Context, dir string, payload []byte, keyalg jwa.KeyEncryptionAlgorithm, keyfile string, contentalg jwa.ContentEncryptionAlgorithm, compressalg jwa.CompressionAlgorithm) (string, func(), error) {`
`281`	`281`	`key, err := ParseJwkFile(ctx, keyfile)`
`282`	`282`	`if err != nil {`
`283`	`283`	return "", nil, fmt.Errorf(`failed to parse keyfile %s: %w`, keyfile, err)
`@@ -311,7 +311,7 @@ func EncryptJweFile(ctx context.Context, payload []byte, keyalg jwa.KeyEncryptio`
`311`	`311`	return "", nil, fmt.Errorf(`failed to encrypt payload: %w`, err)
`312`	`312`	`}`
`313`	`313`
`314`		`- return WriteFile("jwx-test-*.jwe", bytes.NewReader(buf))`
	`314`	`+ return WriteFile(dir, "jwx-test-*.jwe", bytes.NewReader(buf))`
`315`	`315`	`}`
`316`	`316`
`317`	`317`	`func VerifyJwsFile(ctx context.Context, file string, alg jwa.SignatureAlgorithm, jwkfile string) ([]byte, error) {`
`@@ -342,7 +342,7 @@ func VerifyJwsFile(ctx context.Context, file string, alg jwa.SignatureAlgorithm,`
`342`	`342`	`return jws.Verify(buf, jws.WithKey(alg, pubkey))`
`343`	`343`	`}`
`344`	`344`
`345`		`-func SignJwsFile(ctx context.Context, payload []byte, alg jwa.SignatureAlgorithm, keyfile string) (string, func(), error) {`
	`345`	`+func SignJwsFile(ctx context.Context, dir string, payload []byte, alg jwa.SignatureAlgorithm, keyfile string) (string, func(), error) {`
`346`	`346`	`key, err := ParseJwkFile(ctx, keyfile)`
`347`	`347`	`if err != nil {`
`348`	`348`	return "", nil, fmt.Errorf(`failed to parse keyfile %s: %w`, keyfile, err)
`@@ -353,5 +353,5 @@ func SignJwsFile(ctx context.Context, payload []byte, alg jwa.SignatureAlgorithm`
`353`	`353`	return "", nil, fmt.Errorf(`failed to sign payload: %w`, err)
`354`	`354`	`}`
`355`	`355`
`356`		`- return WriteFile("jwx-test-*.jws", bytes.NewReader(buf))`
	`356`	`+ return WriteFile(dir, "jwx-test-*.jws", bytes.NewReader(buf))`
`357`	`357`	`}`
Original file line number	Diff line number	Diff line change
`@@ -677,7 +677,7 @@ func TestGHIssue230(t *testing.T) {`
`677`	`677`	`func TestReadFile(t *testing.T) {`
`678`	`678`	const s = `eyJhbGciOiJSU0EtT0FFUCIsImVuYyI6IkEyNTZHQ00ifQ.OKOawDo13gRp2ojaHV7LFpZcgV7T6DVZKTyKOMTYUmKoTCVJRgckCL9kiMT03JGeipsEdY3mx_etLbbWSrFr05kLzcSr4qKAq7YN7e9jwQRb23nfa6c9d-StnImGyFDbSv04uVuxIp5Zms1gNxKKK2Da14B8S4rzVRltdYwam_lDp5XnZAYpQdb76FdIKLaVmqgfwX7XWRxv2322i-vDxRfqNzo_tETKzpVLzfiwQyeyPGLBIO56YJ7eObdv0je81860ppamavo35UgoRdbYaBcoh9QcfylQr66oc6vFWXRcZ_ZT2LawVCWTIy3brGPi6UklfCpIMfIjf7iGdXKHzg.48V1_ALb6US04U3b.5eym8TW_c8SuK0ltJ3rpYIzOeDQz7TALvtu6UG9oMo4vpzs9tX_EFShS8iB7j6jiSdiwkIr3ajwQzaBtQD_A.XFBoMYUZodetZdvTiFvSkQ`
`679`	`679`
`680`		`- f, err := os.CreateTemp("", "test-read-file-*.jwe")`
	`680`	`+ f, err := os.CreateTemp(t.TempDir(), "test-read-file-*.jwe")`
`681`	`681`	if !assert.NoError(t, err, `os.CreateTemp should succeed`) {
`682`	`682`	`return`
`683`	`683`	`}`
Original file line number	Diff line number	Diff line change
`@@ -739,7 +739,7 @@ func TestSignTyp(t *testing.T) {`
`739`	`739`	`func TestReadFile(t *testing.T) {`
`740`	`740`	`t.Parallel()`
`741`	`741`
`742`		`- f, err := os.CreateTemp("", "test-read-file-*.jwt")`
	`742`	`+ f, err := os.CreateTemp(t.TempDir(), "test-read-file-*.jwt")`
`743`	`743`	if !assert.NoError(t, err, `os.CreateTemp should succeed`) {
`744`	`744`	`return`
`745`	`745`	`}`