Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

🌱 update osv-scanner to v2.0.0 #943

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

🌱 update osv-scanner to v2.0.0 #943

wants to merge 1 commit into from

Conversation

tuminoid
Copy link
Member

Update osv-scanner to v2.0.0 in verify-release.sh and in the workflow as well.

Make osv-scanner report any vulnerabilities found into Slack channel.

@metal3-io-bot metal3-io-bot requested review from mquhuy and Rozzii March 21, 2025 11:21
@metal3-io-bot
Copy link
Contributor

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by:
Once this PR has been reviewed and has the lgtm label, please ask for approval from tuminoid. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@metal3-io-bot metal3-io-bot added the size/M Denotes a PR that changes 30-99 lines, ignoring generated files. label Mar 21, 2025
@tuminoid
Copy link
Member Author

Cherry-pick of metal3-io/cluster-api-provider-metal3#2433, so until that is merged, we
/hold
this one.

@metal3-io-bot metal3-io-bot added the do-not-merge/hold Indicates that a PR should not merge because someone has issued a /hold command. label Mar 21, 2025
@tuminoid
update osv-scanner to v2.0.0
cd7dc66 
Update osv-scanner to v2.0.0 in verify-release.sh and in the
workflow as well.

Make osv-scanner report any vulnerabilities found into Slack channel.

Signed-off-by: Tuomo Tanskanen <[email protected]>
@tuminoid tuminoid force-pushed the tuomo/update-osv-scanner-v2 branch from b430f50 to cd7dc66 Compare March 21, 2025 11:32
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@mquhuy mquhuy Awaiting requested review from mquhuy

@Rozzii Rozzii Awaiting requested review from Rozzii

Assignees
No one assigned
Labels
do-not-merge/hold Indicates that a PR should not merge because someone has issued a /hold command. size/M Denotes a PR that changes 30-99 lines, ignoring generated files.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@tuminoid @metal3-io-bot