Merge pull request #30 from ohkinozomu/staticcheck-action

adityasaky · web-flow · commit 309cc875916c · 2022-12-24T11:01:02.000-05:00
Add staticcheck-action
diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
@@ -26,3 +26,12 @@ jobs:
       run: |
         GO111MODULE=off go get github.com/mattn/goveralls
         $(go env GOPATH)/bin/goveralls -coverprofile=profile.cov -service=github
+  staticcheck:
+    name: "Run staticcheck"
+    runs-on: ubuntu-latest
+    steps:
+    - name: Checkout code
+      uses: actions/checkout@v3
+    - uses: dominikh/staticcheck-action@v1.2.0
+      with:
+        version: "2022.1"
diff --git a/dsse/sign_test.go b/dsse/sign_test.go
@@ -114,8 +114,8 @@ func (n errsigner) Public() crypto.PublicKey {
 
 type errverifier int
 
-var errVerify = fmt.Errorf("Accepted signatures do not match threshold, Found: 0, Expected 1")
-var errThreshold = fmt.Errorf("Invalid threshold")
+var errVerify = fmt.Errorf("accepted signatures do not match threshold, Found: 0, Expected 1")
+var errThreshold = fmt.Errorf("invalid threshold")
 
 func (n errverifier) Sign(data []byte) ([]byte, error) {
 	return data, nil
@@ -417,6 +417,7 @@ func TestVerifyMultipleProviderThreshold(t *testing.T) {
 	var ns nilsigner
 	var null nullsigner
 	signer, err := NewMultiEnvelopeSigner(2, ns, null)
+	assert.Nil(t, err)
 	env, err := signer.SignPayload(payloadType, []byte(payload))
 	assert.Nil(t, err, "sign failed")
 
diff --git a/dsse/verify.go b/dsse/verify.go
@@ -104,11 +104,11 @@ func (ev *EnvelopeVerifier) Verify(e *Envelope) ([]AcceptedKey, error) {
 
 	// Sanity if with some reflect magic this happens.
 	if ev.threshold <= 0 || ev.threshold > len(ev.providers) {
-		return nil, errors.New("Invalid threshold")
+		return nil, errors.New("invalid threshold")
 	}
 
 	if len(usedKeyids) < ev.threshold {
-		return acceptedKeys, errors.New(fmt.Sprintf("Accepted signatures do not match threshold, Found: %d, Expected %d", len(acceptedKeys), ev.threshold))
+		return acceptedKeys, fmt.Errorf("accepted signatures do not match threshold, Found: %d, Expected %d", len(acceptedKeys), ev.threshold)
 	}
 
 	return acceptedKeys, nil
@@ -121,7 +121,7 @@ func NewEnvelopeVerifier(v ...Verifier) (*EnvelopeVerifier, error) {
 func NewMultiEnvelopeVerifier(threshold int, p ...Verifier) (*EnvelopeVerifier, error) {
 
 	if threshold <= 0 || threshold > len(p) {
-		return nil, errors.New("Invalid threshold")
+		return nil, errors.New("invalid threshold")
 	}
 
 	ev := EnvelopeVerifier{

Original file line number	Diff line number	Diff line change
`@@ -104,11 +104,11 @@ func (ev EnvelopeVerifier) Verify(e Envelope) ([]AcceptedKey, error) {`
`104`	`104`
`105`	`105`	`// Sanity if with some reflect magic this happens.`
`106`	`106`	`if ev.threshold <= 0 \|\| ev.threshold > len(ev.providers) {`
`107`		`- return nil, errors.New("Invalid threshold")`
	`107`	`+ return nil, errors.New("invalid threshold")`
`108`	`108`	`}`
`109`	`109`
`110`	`110`	`if len(usedKeyids) < ev.threshold {`
`111`		`- return acceptedKeys, errors.New(fmt.Sprintf("Accepted signatures do not match threshold, Found: %d, Expected %d", len(acceptedKeys), ev.threshold))`
	`111`	`+ return acceptedKeys, fmt.Errorf("accepted signatures do not match threshold, Found: %d, Expected %d", len(acceptedKeys), ev.threshold)`
`112`	`112`	`}`
`113`	`113`
`114`	`114`	`return acceptedKeys, nil`
`@@ -121,7 +121,7 @@ func NewEnvelopeVerifier(v ...Verifier) (*EnvelopeVerifier, error) {`
`121`	`121`	`func NewMultiEnvelopeVerifier(threshold int, p ...Verifier) (*EnvelopeVerifier, error) {`
`122`	`122`
`123`	`123`	`if threshold <= 0 \|\| threshold > len(p) {`
`124`		`- return nil, errors.New("Invalid threshold")`
	`124`	`+ return nil, errors.New("invalid threshold")`
`125`	`125`	`}`
`126`	`126`
`127`	`127`	`ev := EnvelopeVerifier{`