Skip to content

Commit 628d5cb

Browse files
crazy-maxcrazy-max
committed
dockerfile: update govulncheck to v1.1.4
Signed-off-by: CrazyMax <[email protected]>
1 parent 7841a73 commit 628d5cb

File tree

1 file changed

+1
-7
lines changed

1 file changed

+1
-7
lines changed

hack/dockerfiles/govulncheck.Dockerfile

Lines changed: 1 addition & 7 deletions
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
# syntax=docker/dockerfile:1
22

33
ARG GO_VERSION=1.24
4-
ARG GOVULNCHECK_VERSION=v1.1.3
4+
ARG GOVULNCHECK_VERSION=v1.1.4
55
ARG FORMAT="text"
66

77
FROM golang:${GO_VERSION}-alpine AS base
@@ -18,12 +18,6 @@ RUN --mount=type=bind,target=. <<EOT
1818
set -ex
1919
mkdir /out
2020
govulncheck -format ${FORMAT} ./... | tee /out/govulncheck.out
21-
if [ "${FORMAT}" = "sarif" ]; then
22-
# Make sure "results" field is defined in SARIF output otherwise GitHub Code Scanning
23-
# will fail when uploading report with "Invalid SARIF. Missing 'results' array in run."
24-
# Relates to https://github.com/golang/vuln/blob/ffdef74cc44d7eb71931d8d414c478b966812488/internal/sarif/sarif.go#L69
25-
jq '(.runs[] | select(.results == null) | .results) |= []' /out/govulncheck.out | tee >(sponge /out/govulncheck.out)
26-
fi
2721
EOT
2822

2923
FROM scratch AS output

0 commit comments

Comments
 (0)