Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

v0.1.6 release #143

Merged
merged 24 commits into from
Mar 22, 2024
Merged

v0.1.6 release #143

merged 24 commits into from
Mar 22, 2024

Conversation

xopham
Copy link
Contributor

@xopham xopham commented Mar 22, 2024

xopham and others added 24 commits February 28, 2024 19:22
@xopham
test: initial unit testing
aae609f 
fix
@xopham
ci: unit test coverage reporter
c8e7e38
@xopham
ci: skip checkov docker healthcheck check
f2e723d
@dependabot @xopham
update: bump the gh-actions-packages group with 4 updates
d419041 
Bumps the gh-actions-packages group with 4 updates: [github/codeql-action](https://github.com/github/codeql-action), [bridgecrewio/checkov-action](https://github.com/bridgecrewio/checkov-action), [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) and [docker/build-push-action](https://github.com/docker/build-push-action).


Updates `github/codeql-action` from 3.24.4 to 3.24.5
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](github/codeql-action@e2e140a...47b3d88)

Updates `bridgecrewio/checkov-action` from 12.2676.0 to 12.2680.0
- [Release notes](https://github.com/bridgecrewio/checkov-action/releases)
- [Commits](bridgecrewio/checkov-action@9420002...ac86ea7)

Updates `docker/setup-buildx-action` from 2.4.1 to 3.1.0
- [Release notes](https://github.com/docker/setup-buildx-action/releases)
- [Commits](docker/setup-buildx-action@f03ac48...0d103c3)

Updates `docker/build-push-action` from 4.0.0 to 5.1.0
- [Release notes](https://github.com/docker/build-push-action/releases)
- [Commits](docker/build-push-action@3b5e802...4a13e50)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: gh-actions-packages
- dependency-name: bridgecrewio/checkov-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: gh-actions-packages
- dependency-name: docker/setup-buildx-action
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: gh-actions-packages
- dependency-name: docker/build-push-action
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: gh-actions-packages
...

Signed-off-by: dependabot[bot] <[email protected]>
@xopham
ci: skip coverage comments for non-PRs and in case of non-required
6141ad7
@xopham
feat: improved admission response format
9ce9ca5
@xopham
feat: secure handling of k8s api configmap response
6a352b0 
fix

fix
@xopham
test: add full testing
9f35777 
fix
@xopham
ci: fail ci on failed unit test
3125cfb 
fix: previous

fix: permissions

fix
@dependabot @xopham
update: bump the gh-actions-packages group with 3 updates
ea4caff 
Bumps the gh-actions-packages group with 3 updates: [github/codeql-action](https://github.com/github/codeql-action), [bridgecrewio/checkov-action](https://github.com/bridgecrewio/checkov-action) and [stackrox/kube-linter-action](https://github.com/stackrox/kube-linter-action).


Updates `github/codeql-action` from 3.24.5 to 3.24.6
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](github/codeql-action@47b3d88...8a470fd)

Updates `bridgecrewio/checkov-action` from 12.2680.0 to 12.2681.0
- [Release notes](https://github.com/bridgecrewio/checkov-action/releases)
- [Commits](bridgecrewio/checkov-action@ac86ea7...ab6d297)

Updates `stackrox/kube-linter-action` from 1.0.4 to 1.0.5
- [Release notes](https://github.com/stackrox/kube-linter-action/releases)
- [Commits](stackrox/kube-linter-action@ca0d55b...5792edc)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: gh-actions-packages
- dependency-name: bridgecrewio/checkov-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: gh-actions-packages
- dependency-name: stackrox/kube-linter-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: gh-actions-packages
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot
update: bump the pip-packages group with 4 updates (#117)
e8b63f2
@dependabot
update: bump the gh-actions-packages group with 8 updates (#134)
5342d92
@dependabot
update: bump the pip-packages group with 4 updates (#131)
2dacce7
@xopham
docs: initial system design
931fe93
@xopham
feat: add autofix via mutation
5efbaa2 
fix

build: bla

fix

fix

fix

fix test
@xopham
feat: add mutating webhook
182ac5e
@xopham
ci: autofix integration tests
5218471
@xopham
docs: improve design layout
db24af8
@xopham
test: add build-tester and unittest to makefile
2b43a13
@xopham
update: bump semgr8s version
f2c69ff
@xopham
refactor: modularize file management
4781d78
@dependabot
update: bump the gh-actions-packages group with 3 updates (#140)
b7d791a
@dependabot
update: bump the pip-packages group with 3 updates (#139)
d3d7d7e
@dependabot
update: bump the gh-actions-packages group with 1 update (#142)
2e0f506
github-advanced-security[bot]
github-advanced-security bot found potential problems Mar 22, 2024
View reviewed changes
.github/workflows/.reusable-ci.yml
@@ -127,6 +127,9 @@
unit-test:
uses: ./.github/workflows/.reusable-unit-test.yml
needs: [conditionals]
permissions:
checks: write

Check failure

Code scanning / Scorecard

Token-Permissions High

score is 9: jobLevel 'checks' permission set to 'write'
Remediation tip: Visit https://app.stepsecurity.io/secureworkflow.
Tick the 'Restrict permissions for GITHUB_TOKEN'
Untick other options
NOTE: If you want to resolve multiple issues at once, you can visit https://app.stepsecurity.io/securerepo instead.
Click Remediation section below for further remediation help
.github/workflows/.reusable-unit-test.yml
@@ -1,6 +1,8 @@
name: unit-test

permissions: {}
permissions:
checks: write

Check failure

Code scanning / Scorecard

Token-Permissions High

score is 9: topLevel 'checks' permission set to 'write'
Remediation tip: Visit https://app.stepsecurity.io/secureworkflow.
Tick the 'Restrict permissions for GITHUB_TOKEN'
Untick other options
NOTE: If you want to resolve multiple issues at once, you can visit https://app.stepsecurity.io/securerepo instead.
Click Remediation section below for further remediation help
.github/workflows/nightly-build.yml
@@ -15,23 +15,23 @@
uses: ./.github/workflows/.reusable-ci.yml
permissions:
actions: read
checks: read
checks: write

Check failure

Code scanning / Scorecard

Token-Permissions High

score is 9: jobLevel 'checks' permission set to 'write'
Remediation tip: Visit https://app.stepsecurity.io/secureworkflow.
Tick the 'Restrict permissions for GITHUB_TOKEN'
Untick other options
NOTE: If you want to resolve multiple issues at once, you can visit https://app.stepsecurity.io/securerepo instead.
Click Remediation section below for further remediation help
.github/workflows/pr.yml
@@ -16,23 +16,23 @@
uses: ./.github/workflows/.reusable-ci.yml
permissions:
actions: read
checks: read
checks: write

Check failure

Code scanning / Scorecard

Token-Permissions High

score is 9: jobLevel 'checks' permission set to 'write'
Remediation tip: Visit https://app.stepsecurity.io/secureworkflow.
Tick the 'Restrict permissions for GITHUB_TOKEN'
Untick other options
NOTE: If you want to resolve multiple issues at once, you can visit https://app.stepsecurity.io/securerepo instead.
Click Remediation section below for further remediation help
.github/workflows/pr2main.yml
@@ -16,23 +16,23 @@
uses: ./.github/workflows/.reusable-ci.yml
permissions:
actions: read
checks: read
checks: write

Check failure

Code scanning / Scorecard

Token-Permissions High

score is 9: jobLevel 'checks' permission set to 'write'
Remediation tip: Visit https://app.stepsecurity.io/secureworkflow.
Tick the 'Restrict permissions for GITHUB_TOKEN'
Untick other options
NOTE: If you want to resolve multiple issues at once, you can visit https://app.stepsecurity.io/securerepo instead.
Click Remediation section below for further remediation help
.github/workflows/push.yml
@@ -17,23 +17,23 @@
uses: ./.github/workflows/.reusable-ci.yml
permissions:
actions: read
checks: read
checks: write

Check failure

Code scanning / Scorecard

Token-Permissions High

score is 9: jobLevel 'checks' permission set to 'write'
Remediation tip: Visit https://app.stepsecurity.io/secureworkflow.
Tick the 'Restrict permissions for GITHUB_TOKEN'
Untick other options
NOTE: If you want to resolve multiple issues at once, you can visit https://app.stepsecurity.io/securerepo instead.
Click Remediation section below for further remediation help
.github/workflows/tag.yml
@@ -16,23 +16,23 @@
uses: ./.github/workflows/.reusable-ci.yml
permissions:
actions: read
checks: read
checks: write

Check failure

Code scanning / Scorecard

Token-Permissions High

score is 9: jobLevel 'checks' permission set to 'write'
Remediation tip: Visit https://app.stepsecurity.io/secureworkflow.
Tick the 'Restrict permissions for GITHUB_TOKEN'
Untick other options
NOTE: If you want to resolve multiple issues at once, you can visit https://app.stepsecurity.io/securerepo instead.
Click Remediation section below for further remediation help
@github-actions GitHub Actions
Copy link

Dependency Review

The following issues were found:
  • ✅ 0 vulnerable package(s)
  • ✅ 0 package(s) with incompatible licenses
  • ✅ 0 package(s) with invalid SPDX license definitions
  • ⚠️ 7 package(s) with unknown licenses.
See the Details below.

Snapshot Warnings

⚠️: The number of snapshots compared for the base SHA (4) and the head SHA (1) do not match. You may see unexpected removals in the diff.
Consider enabling retry-on-snapshot-warnings. See the documentation for more information and troubleshooting advice.

License Issues

ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/usr/bin/python3.11

PackageVersionLicenseIssue Type
python3.11.8NullUnknown License

ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/bin/busybox

PackageVersionLicenseIssue Type
busybox1.36.1NullUnknown License

.github/workflows/.reusable-sast.yml

PackageVersionLicenseIssue Type
bridgecrewio/checkov-action06112e15bd63a2efc6b1655c67372c1737658fe7NullUnknown License

poetry.lock

PackageVersionLicenseIssue Type
jsonpointer2.4NullUnknown License
pymdown-extensions10.7.1NullUnknown License

ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/app/.venv/lib/python3.11/site-packages/face-22.0.0.dist-info/METADATA

PackageVersionLicenseIssue Type
face22.0.0NullUnknown License

ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/app/.venv/lib/python3.11/site-packages/jsonpointer-2.4.dist-info/METADATA

PackageVersionLicenseIssue Type
jsonpointer2.4NullUnknown License

OpenSSF Scorecard

Scorecard details
PackageVersionScoreDetails
actions/actions/checkout 9bb56186c3b09b4f86b1c65136769dd318469633 UnknownUnknown
actions/actions/checkout b4ffde65f46336ab88eb53be808477a3936bae11 UnknownUnknown
actions/actions/checkout 9bb56186c3b09b4f86b1c65136769dd318469633 UnknownUnknown
actions/actions/dependency-review-action 0fa40c3c10055986a88de3baa0d6ec17c5a894b3 UnknownUnknown
actions/github/codeql-action/upload-sarif 05963f47d870e2cb19a537396c1f668a348c7d8f UnknownUnknown
actions/actions/checkout b4ffde65f46336ab88eb53be808477a3936bae11 UnknownUnknown
actions/actions/dependency-review-action 9129d7d40b8c12c1ed0f60400d00c92d437adcce UnknownUnknown
actions/github/codeql-action/upload-sarif e2e140ad1441662206e8f97754b166877dfa1c73 UnknownUnknown
actions/actions/checkout 9bb56186c3b09b4f86b1c65136769dd318469633 UnknownUnknown
actions/actions/checkout b4ffde65f46336ab88eb53be808477a3936bae11 UnknownUnknown
actions/actions/checkout 9bb56186c3b09b4f86b1c65136769dd318469633 UnknownUnknown
actions/docker/login-action e92390c5fb421da1463c202d546fed0ec5c39f20 UnknownUnknown
actions/actions/checkout b4ffde65f46336ab88eb53be808477a3936bae11 UnknownUnknown
actions/docker/login-action 343f7c4344506bcbf9b4de18042ae17996df046d UnknownUnknown
actions/actions/checkout 9bb56186c3b09b4f86b1c65136769dd318469633 UnknownUnknown
actions/bridgecrewio/checkov-action 06112e15bd63a2efc6b1655c67372c1737658fe7 UnknownUnknown
actions/github/codeql-action/analyze 05963f47d870e2cb19a537396c1f668a348c7d8f UnknownUnknown
actions/github/codeql-action/init 05963f47d870e2cb19a537396c1f668a348c7d8f UnknownUnknown
actions/github/codeql-action/upload-sarif 05963f47d870e2cb19a537396c1f668a348c7d8f UnknownUnknown
actions/stackrox/kube-linter-action 5792edc6a03735d592b13c08201711327a935735 UnknownUnknown
actions/actions/checkout b4ffde65f46336ab88eb53be808477a3936bae11 UnknownUnknown
actions/bridgecrewio/checkov-action 94200023b0c8b45fdd614fe40f20d6d49915bff0 UnknownUnknown
actions/github/codeql-action/analyze e2e140ad1441662206e8f97754b166877dfa1c73 UnknownUnknown
actions/github/codeql-action/init e2e140ad1441662206e8f97754b166877dfa1c73 UnknownUnknown
actions/github/codeql-action/upload-sarif e2e140ad1441662206e8f97754b166877dfa1c73 UnknownUnknown
actions/stackrox/kube-linter-action ca0d55b925470deb5b04b556e6c4276ea94d03c3 UnknownUnknown
actions/actions/checkout 9bb56186c3b09b4f86b1c65136769dd318469633 UnknownUnknown
actions/anchore/sbom-action 9fece9e20048ca9590af301449208b2b8861333b UnknownUnknown
actions/docker/login-action e92390c5fb421da1463c202d546fed0ec5c39f20 UnknownUnknown
actions/actions/checkout b4ffde65f46336ab88eb53be808477a3936bae11 UnknownUnknown
actions/anchore/sbom-action b6a39da80722a2cb0ef5d197531764a89b5d48c3 UnknownUnknown
actions/docker/login-action 343f7c4344506bcbf9b4de18042ae17996df046d UnknownUnknown
actions/mishakav/pytest-coverage-comment a1fe18e2b00c64a765568e2edb9f1706eb8fc88b UnknownUnknown
actions/actions/checkout 9bb56186c3b09b4f86b1c65136769dd318469633 UnknownUnknown
actions/docker/build-push-action 2cdde995de11925a030ce8070c3d77a52ffcf1c0 UnknownUnknown
actions/docker/setup-buildx-action 2b51285047da1547ffb1b2203d8be4c0af6b1f20 UnknownUnknown
actions/mikepenz/action-junit-report 9379f0ccddcab154835d4e2487555ee79614fe95 UnknownUnknown
actions/actions/checkout b4ffde65f46336ab88eb53be808477a3936bae11 UnknownUnknown
actions/actions/setup-python 0a5c61591373683505ea898e09a3ea4f39ef2b9c UnknownUnknown
actions/codecov/codecov-action e0b68c6749509c5f83f984dd99a76a1c1a231044 UnknownUnknown
actions/snok/install-poetry 93ada01c735cc8a383ce0ce2ae205a21c415379b UnknownUnknown
pip/black 24.2.0 UnknownUnknown
pip/astroid 3.1.0 UnknownUnknown
pip/bandit 1.7.8 UnknownUnknown
pip/black 24.3.0 UnknownUnknown
pip/coverage 7.4.4 UnknownUnknown
pip/importlib-metadata 7.0.2 UnknownUnknown
pip/importlib-resources 6.3.0 UnknownUnknown
pip/jsonpatch 1.33 UnknownUnknown
pip/jsonpickle 3.0.3 UnknownUnknown
pip/jsonpointer 2.4 UnknownUnknown
pip/markdown 3.6 UnknownUnknown
pip/mkdocs-material 9.5.14 UnknownUnknown
pip/packaging 24.0 UnknownUnknown
pip/pylint 3.1.0 UnknownUnknown
pip/pymdown-extensions 10.7.1 UnknownUnknown
pip/pyparsing 3.1.2 UnknownUnknown
pip/pytest 8.1.1 UnknownUnknown
pip/pytest-cov 4.1.0 UnknownUnknown
pip/python-dateutil 2.9.0.post0 UnknownUnknown
pip/rich 13.7.1 UnknownUnknown
pip/rpds-py 0.18.0 UnknownUnknown
pip/semgrep 1.66.0 UnknownUnknown
pip/stevedore 5.2.0 UnknownUnknown
pip/tomlkit 0.12.4 UnknownUnknown
pip/typing-extensions 4.10.0 UnknownUnknown
pip/tzdata 2024.1 UnknownUnknown
pip/urllib3 2.2.1 UnknownUnknown
pip/wcmatch 8.5.1 UnknownUnknown
pip/zipp 3.18.1 UnknownUnknown
pip/astroid 3.0.3 UnknownUnknown
pip/bandit 1.7.7 UnknownUnknown
pip/importlib-metadata 7.0.1 UnknownUnknown
pip/importlib-resources 6.1.1 UnknownUnknown
pip/jsonpickle 3.0.2 UnknownUnknown
pip/markdown 3.5.2 UnknownUnknown
pip/mkdocs-material 9.5.10 UnknownUnknown
pip/packaging 23.2 UnknownUnknown
pip/pylint 3.0.3 UnknownUnknown
pip/pymdown-extensions 10.7 UnknownUnknown
pip/pyparsing 3.1.1 UnknownUnknown
pip/pytest 8.0.1 UnknownUnknown
pip/python-dateutil 2.8.2 UnknownUnknown
pip/rich 13.7.0 UnknownUnknown
pip/rpds-py 0.17.1 UnknownUnknown
pip/semgrep 1.62.0 UnknownUnknown
pip/stevedore 5.1.0 UnknownUnknown
pip/tomlkit 0.12.3 UnknownUnknown
pip/typing-extensions 4.9.0 UnknownUnknown
pip/tzdata 2023.4 UnknownUnknown
pip/urllib3 2.2.0 UnknownUnknown
pip/wcmatch 8.5 UnknownUnknown
pip/zipp 3.17.0 UnknownUnknown
pip/jsonpatch 1.33 UnknownUnknown
pip/semgrep 1.66.0 UnknownUnknown
pip/semgrep 1.62.0 UnknownUnknown
pip/jinja2 3.1.3 UnknownUnknown
pip/pyyaml 6.0.1 UnknownUnknown
pip/attrs 23.2.0 UnknownUnknown
pip/markupsafe 2.1.5 UnknownUnknown
pip/apscheduler 3.10.4 UnknownUnknown
pip/bracex 2.4 UnknownUnknown
pip/charset-normalizer 3.3.2 UnknownUnknown
pip/blinker 1.7.0 UnknownUnknown
pip/boltons 21.0.0 UnknownUnknown
pip/certifi 2024.2.2 UnknownUnknown
pip/click 8.1.7 UnknownUnknown
pip/click-option-group 0.5.6 UnknownUnknown
pip/defusedxml 0.7.1 UnknownUnknown
pip/colorama 0.4.6 UnknownUnknown
pip/exceptiongroup 1.2.0 UnknownUnknown
pip/idna 3.6 UnknownUnknown
pip/glom 22.1.0 UnknownUnknown
pip/gunicorn 21.2.0 UnknownUnknown
pip/flask 3.0.2 UnknownUnknown
pip/face 22.0.0 UnknownUnknown
pip/mdurl 0.1.2 UnknownUnknown
pip/markdown-it-py 3.0.0 UnknownUnknown
pip/jsonschema 4.21.1 UnknownUnknown
pip/itsdangerous 2.1.2 UnknownUnknown
pip/jsonschema-specifications 2023.12.1 UnknownUnknown
pip/peewee 3.17.1 UnknownUnknown
pip/pygments 2.17.2 UnknownUnknown
pip/referencing 0.33.0 UnknownUnknown
pip/packaging 23.2 UnknownUnknown
pip/pytz 2024.1 UnknownUnknown
pip/ruamel.yaml.clib 0.2.8 UnknownUnknown
pip/rpds-py 0.17.1 UnknownUnknown
pip/rich 13.7.0 UnknownUnknown
pip/requests 2.31.0 UnknownUnknown
pip/ruamel.yaml 0.17.40 UnknownUnknown
pip/setuptools 68.2.2 UnknownUnknown
pip/typing-extensions 4.9.0 UnknownUnknown
pip/six 1.16.0 UnknownUnknown
pip/tomli 2.0.1 UnknownUnknown
pip/semgrep 1.62.0 UnknownUnknown
pip/wcmatch 8.5 UnknownUnknown
pip/urllib3 2.2.0 UnknownUnknown
pip/tzlocal 5.2 UnknownUnknown
pip/werkzeug 3.0.1 UnknownUnknown
unknown/busybox 1.36.1 UnknownUnknown
pip/apscheduler 3.10.4 UnknownUnknown
pip/markupsafe 2.1.5 UnknownUnknown
pip/jinja2 3.1.3 UnknownUnknown
pip/pyyaml 6.0.1 UnknownUnknown
unknown/python 3.11.6 UnknownUnknown
pip/blinker 1.7.0 UnknownUnknown
pip/attrs 23.2.0 UnknownUnknown
pip/bracex 2.4 UnknownUnknown
pip/boltons 21.0.0 UnknownUnknown
pip/certifi 2024.2.2 UnknownUnknown
pip/click 8.1.7 UnknownUnknown
pip/charset-normalizer 3.3.2 UnknownUnknown
pip/click-option-group 0.5.6 UnknownUnknown
pip/defusedxml 0.7.1 UnknownUnknown
pip/colorama 0.4.6 UnknownUnknown
pip/flask 3.0.2 UnknownUnknown
pip/gunicorn 21.2.0 UnknownUnknown
pip/exceptiongroup 1.2.0 UnknownUnknown
pip/face 22.0.0 UnknownUnknown
pip/glom 22.1.0 UnknownUnknown
pip/idna 3.6 UnknownUnknown
pip/jsonpatch 1.33 UnknownUnknown
pip/jsonschema 4.21.1 UnknownUnknown
pip/jsonpointer 2.4 UnknownUnknown
pip/itsdangerous 2.1.2 UnknownUnknown
pip/peewee 3.17.1 UnknownUnknown
pip/markdown-it-py 3.0.0 UnknownUnknown
pip/packaging 24.0 UnknownUnknown
pip/jsonschema-specifications 2023.12.1 UnknownUnknown
pip/mdurl 0.1.2 UnknownUnknown
pip/pytz 2024.1 UnknownUnknown
pip/requests 2.31.0 UnknownUnknown
pip/pygments 2.17.2 UnknownUnknown
pip/referencing 0.33.0 UnknownUnknown
pip/rich 13.7.1 UnknownUnknown
pip/rpds-py 0.18.0 UnknownUnknown
pip/ruamel.yaml 0.17.40 UnknownUnknown
pip/ruamel.yaml.clib 0.2.8 UnknownUnknown
pip/semgrep 1.66.0 UnknownUnknown
pip/setuptools 68.2.2 UnknownUnknown
pip/tomli 2.0.1 UnknownUnknown
pip/tzlocal 5.2 UnknownUnknown
pip/typing-extensions 4.10.0 UnknownUnknown
pip/urllib3 2.2.1 UnknownUnknown
pip/six 1.16.0 UnknownUnknown
unknown/python 3.11.8 UnknownUnknown
unknown/busybox 1.36.1 UnknownUnknown
pip/werkzeug 3.0.1 UnknownUnknown
pip/wcmatch 8.5.1 UnknownUnknown
pip/apscheduler 3.10.4 UnknownUnknown
pip/markupsafe 2.1.5 UnknownUnknown
pip/blinker 1.7.0 UnknownUnknown
pip/jinja2 3.1.3 UnknownUnknown
pip/pyyaml 6.0.1 UnknownUnknown
pip/attrs 23.2.0 UnknownUnknown
pip/boltons 21.0.0 UnknownUnknown
pip/bracex 2.4 UnknownUnknown
pip/certifi 2024.2.2 UnknownUnknown
pip/charset-normalizer 3.3.2 UnknownUnknown
pip/click 8.1.7 UnknownUnknown
pip/colorama 0.4.6 UnknownUnknown
pip/face 22.0.0 UnknownUnknown
pip/exceptiongroup 1.2.0 UnknownUnknown
pip/defusedxml 0.7.1 UnknownUnknown
pip/click-option-group 0.5.6 UnknownUnknown
pip/itsdangerous 2.1.2 UnknownUnknown
pip/gunicorn 21.2.0 UnknownUnknown
pip/idna 3.6 UnknownUnknown
pip/flask 3.0.2 UnknownUnknown
pip/glom 22.1.0 UnknownUnknown
pip/packaging 23.2 UnknownUnknown
pip/markdown-it-py 3.0.0 UnknownUnknown
pip/jsonschema 4.21.1 UnknownUnknown
pip/mdurl 0.1.2 UnknownUnknown
pip/jsonschema-specifications 2023.12.1 UnknownUnknown
pip/requests 2.31.0 UnknownUnknown
pip/peewee 3.17.1 UnknownUnknown
pip/pygments 2.17.2 UnknownUnknown
pip/referencing 0.33.0 UnknownUnknown
pip/pytz 2024.1 UnknownUnknown
pip/semgrep 1.62.0 UnknownUnknown
pip/ruamel.yaml.clib 0.2.8 UnknownUnknown
pip/rich 13.7.0 UnknownUnknown
pip/ruamel.yaml 0.17.40 UnknownUnknown
pip/rpds-py 0.17.1 UnknownUnknown
pip/tzlocal 5.2 UnknownUnknown
pip/typing-extensions 4.9.0 UnknownUnknown
pip/six 1.16.0 UnknownUnknown
pip/tomli 2.0.1 UnknownUnknown
pip/setuptools 68.2.2 UnknownUnknown
unknown/python 3.11.8 UnknownUnknown
unknown/python 3.11.6 UnknownUnknown
unknown/busybox 1.36.1 UnknownUnknown
pip/wcmatch 8.5 UnknownUnknown
pip/werkzeug 3.0.1 UnknownUnknown
pip/urllib3 2.2.0 UnknownUnknown

Scanned Manifest Files

.github/workflows/.reusable-build.yml
.github/workflows/.reusable-compliance.yml
.github/workflows/.reusable-docs.yml
.github/workflows/.reusable-integration-test.yml
.github/workflows/.reusable-sast.yml
.github/workflows/.reusable-sca.yml
.github/workflows/.reusable-unit-test.yml
poetry.lock
pyproject.toml
ghcr.io/sse-secure-systems/semgr8s-test:sha-33b68da:/app/.venv/lib/python3.11/site-packages/Jinja2-3.1.3.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s-test:sha-33b68da:/app/.venv/lib/python3.11/site-packages/PyYAML-6.0.1.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s-test:sha-33b68da:/app/.venv/lib/python3.11/site-packages/attrs-23.2.0.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s-test:sha-33b68da:/app/.venv/lib/python3.11/site-packages/MarkupSafe-2.1.5.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s-test:sha-33b68da:/app/.venv/lib/python3.11/site-packages/APScheduler-3.10.4.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s-test:sha-33b68da:/app/.venv/lib/python3.11/site-packages/bracex-2.4.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s-test:sha-33b68da:/app/.venv/lib/python3.11/site-packages/charset_normalizer-3.3.2.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s-test:sha-33b68da:/app/.venv/lib/python3.11/site-packages/blinker-1.7.0.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s-test:sha-33b68da:/app/.venv/lib/python3.11/site-packages/boltons-21.0.0.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s-test:sha-33b68da:/app/.venv/lib/python3.11/site-packages/certifi-2024.2.2.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s-test:sha-33b68da:/app/.venv/lib/python3.11/site-packages/click-8.1.7.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s-test:sha-33b68da:/app/.venv/lib/python3.11/site-packages/click_option_group-0.5.6.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s-test:sha-33b68da:/app/.venv/lib/python3.11/site-packages/defusedxml-0.7.1.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s-test:sha-33b68da:/app/.venv/lib/python3.11/site-packages/colorama-0.4.6.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s-test:sha-33b68da:/app/.venv/lib/python3.11/site-packages/exceptiongroup-1.2.0.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s-test:sha-33b68da:/app/.venv/lib/python3.11/site-packages/idna-3.6.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s-test:sha-33b68da:/app/.venv/lib/python3.11/site-packages/glom-22.1.0.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s-test:sha-33b68da:/app/.venv/lib/python3.11/site-packages/gunicorn-21.2.0.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s-test:sha-33b68da:/app/.venv/lib/python3.11/site-packages/flask-3.0.2.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s-test:sha-33b68da:/app/.venv/lib/python3.11/site-packages/face-22.0.0.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s-test:sha-33b68da:/app/.venv/lib/python3.11/site-packages/mdurl-0.1.2.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s-test:sha-33b68da:/app/.venv/lib/python3.11/site-packages/markdown_it_py-3.0.0.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s-test:sha-33b68da:/app/.venv/lib/python3.11/site-packages/jsonschema-4.21.1.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s-test:sha-33b68da:/app/.venv/lib/python3.11/site-packages/itsdangerous-2.1.2.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s-test:sha-33b68da:/app/.venv/lib/python3.11/site-packages/jsonschema_specifications-2023.12.1.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s-test:sha-33b68da:/app/.venv/lib/python3.11/site-packages/peewee-3.17.1.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s-test:sha-33b68da:/app/.venv/lib/python3.11/site-packages/pygments-2.17.2.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s-test:sha-33b68da:/app/.venv/lib/python3.11/site-packages/referencing-0.33.0.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s-test:sha-33b68da:/app/.venv/lib/python3.11/site-packages/packaging-23.2.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s-test:sha-33b68da:/app/.venv/lib/python3.11/site-packages/pytz-2024.1.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s-test:sha-33b68da:/app/.venv/lib/python3.11/site-packages/ruamel.yaml.clib-0.2.8.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s-test:sha-33b68da:/app/.venv/lib/python3.11/site-packages/rpds_py-0.17.1.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s-test:sha-33b68da:/app/.venv/lib/python3.11/site-packages/rich-13.7.0.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s-test:sha-33b68da:/app/.venv/lib/python3.11/site-packages/requests-2.31.0.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s-test:sha-33b68da:/app/.venv/lib/python3.11/site-packages/ruamel.yaml-0.17.40.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s-test:sha-33b68da:/app/.venv/lib/python3.11/site-packages/setuptools-68.2.2.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s-test:sha-33b68da:/app/.venv/lib/python3.11/site-packages/typing_extensions-4.9.0.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s-test:sha-33b68da:/app/.venv/lib/python3.11/site-packages/six-1.16.0.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s-test:sha-33b68da:/app/.venv/lib/python3.11/site-packages/tomli-2.0.1.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s-test:sha-33b68da:/app/.venv/lib/python3.11/site-packages/semgrep-1.62.0.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s-test:sha-33b68da:/app/.venv/lib/python3.11/site-packages/wcmatch-8.5.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s-test:sha-33b68da:/app/.venv/lib/python3.11/site-packages/urllib3-2.2.0.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s-test:sha-33b68da:/app/.venv/lib/python3.11/site-packages/tzlocal-5.2.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s-test:sha-33b68da:/app/.venv/lib/python3.11/site-packages/werkzeug-3.0.1.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s-test:sha-33b68da:/bin/busybox
ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/app/.venv/lib/python3.11/site-packages/APScheduler-3.10.4.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/app/.venv/lib/python3.11/site-packages/MarkupSafe-2.1.5.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/app/.venv/lib/python3.11/site-packages/Jinja2-3.1.3.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/app/.venv/lib/python3.11/site-packages/PyYAML-6.0.1.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s-test:sha-33b68da:/usr/bin/python3.11
ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/app/.venv/lib/python3.11/site-packages/blinker-1.7.0.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/app/.venv/lib/python3.11/site-packages/attrs-23.2.0.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/app/.venv/lib/python3.11/site-packages/bracex-2.4.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/app/.venv/lib/python3.11/site-packages/boltons-21.0.0.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/app/.venv/lib/python3.11/site-packages/certifi-2024.2.2.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/app/.venv/lib/python3.11/site-packages/click-8.1.7.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/app/.venv/lib/python3.11/site-packages/charset_normalizer-3.3.2.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/app/.venv/lib/python3.11/site-packages/click_option_group-0.5.6.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/app/.venv/lib/python3.11/site-packages/defusedxml-0.7.1.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/app/.venv/lib/python3.11/site-packages/colorama-0.4.6.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/app/.venv/lib/python3.11/site-packages/flask-3.0.2.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/app/.venv/lib/python3.11/site-packages/gunicorn-21.2.0.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/app/.venv/lib/python3.11/site-packages/exceptiongroup-1.2.0.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/app/.venv/lib/python3.11/site-packages/face-22.0.0.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/app/.venv/lib/python3.11/site-packages/glom-22.1.0.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/app/.venv/lib/python3.11/site-packages/idna-3.6.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/app/.venv/lib/python3.11/site-packages/jsonpatch-1.33.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/app/.venv/lib/python3.11/site-packages/jsonschema-4.21.1.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/app/.venv/lib/python3.11/site-packages/jsonpointer-2.4.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/app/.venv/lib/python3.11/site-packages/itsdangerous-2.1.2.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/app/.venv/lib/python3.11/site-packages/peewee-3.17.1.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/app/.venv/lib/python3.11/site-packages/markdown_it_py-3.0.0.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/app/.venv/lib/python3.11/site-packages/packaging-24.0.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/app/.venv/lib/python3.11/site-packages/jsonschema_specifications-2023.12.1.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/app/.venv/lib/python3.11/site-packages/mdurl-0.1.2.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/app/.venv/lib/python3.11/site-packages/pytz-2024.1.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/app/.venv/lib/python3.11/site-packages/requests-2.31.0.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/app/.venv/lib/python3.11/site-packages/pygments-2.17.2.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/app/.venv/lib/python3.11/site-packages/referencing-0.33.0.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/app/.venv/lib/python3.11/site-packages/rich-13.7.1.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/app/.venv/lib/python3.11/site-packages/rpds_py-0.18.0.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/app/.venv/lib/python3.11/site-packages/ruamel.yaml-0.17.40.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/app/.venv/lib/python3.11/site-packages/ruamel.yaml.clib-0.2.8.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/app/.venv/lib/python3.11/site-packages/semgrep-1.66.0.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/app/.venv/lib/python3.11/site-packages/setuptools-68.2.2.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/app/.venv/lib/python3.11/site-packages/tomli-2.0.1.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/app/.venv/lib/python3.11/site-packages/tzlocal-5.2.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/app/.venv/lib/python3.11/site-packages/typing_extensions-4.10.0.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/app/.venv/lib/python3.11/site-packages/urllib3-2.2.1.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/app/.venv/lib/python3.11/site-packages/six-1.16.0.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/usr/bin/python3.11
ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/bin/busybox
ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/app/.venv/lib/python3.11/site-packages/werkzeug-3.0.1.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-2e0f506:/app/.venv/lib/python3.11/site-packages/wcmatch-8.5.1.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-aa4aff3:/app/.venv/lib/python3.11/site-packages/APScheduler-3.10.4.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-aa4aff3:/app/.venv/lib/python3.11/site-packages/MarkupSafe-2.1.5.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-aa4aff3:/app/.venv/lib/python3.11/site-packages/blinker-1.7.0.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-aa4aff3:/app/.venv/lib/python3.11/site-packages/Jinja2-3.1.3.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-aa4aff3:/app/.venv/lib/python3.11/site-packages/PyYAML-6.0.1.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-aa4aff3:/app/.venv/lib/python3.11/site-packages/attrs-23.2.0.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-aa4aff3:/app/.venv/lib/python3.11/site-packages/boltons-21.0.0.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-aa4aff3:/app/.venv/lib/python3.11/site-packages/bracex-2.4.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-aa4aff3:/app/.venv/lib/python3.11/site-packages/certifi-2024.2.2.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-aa4aff3:/app/.venv/lib/python3.11/site-packages/charset_normalizer-3.3.2.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-aa4aff3:/app/.venv/lib/python3.11/site-packages/click-8.1.7.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-aa4aff3:/app/.venv/lib/python3.11/site-packages/colorama-0.4.6.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-aa4aff3:/app/.venv/lib/python3.11/site-packages/face-22.0.0.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-aa4aff3:/app/.venv/lib/python3.11/site-packages/exceptiongroup-1.2.0.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-aa4aff3:/app/.venv/lib/python3.11/site-packages/defusedxml-0.7.1.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-aa4aff3:/app/.venv/lib/python3.11/site-packages/click_option_group-0.5.6.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-aa4aff3:/app/.venv/lib/python3.11/site-packages/itsdangerous-2.1.2.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-aa4aff3:/app/.venv/lib/python3.11/site-packages/gunicorn-21.2.0.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-aa4aff3:/app/.venv/lib/python3.11/site-packages/idna-3.6.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-aa4aff3:/app/.venv/lib/python3.11/site-packages/flask-3.0.2.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-aa4aff3:/app/.venv/lib/python3.11/site-packages/glom-22.1.0.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-aa4aff3:/app/.venv/lib/python3.11/site-packages/packaging-23.2.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-aa4aff3:/app/.venv/lib/python3.11/site-packages/markdown_it_py-3.0.0.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-aa4aff3:/app/.venv/lib/python3.11/site-packages/jsonschema-4.21.1.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-aa4aff3:/app/.venv/lib/python3.11/site-packages/mdurl-0.1.2.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-aa4aff3:/app/.venv/lib/python3.11/site-packages/jsonschema_specifications-2023.12.1.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-aa4aff3:/app/.venv/lib/python3.11/site-packages/requests-2.31.0.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-aa4aff3:/app/.venv/lib/python3.11/site-packages/peewee-3.17.1.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-aa4aff3:/app/.venv/lib/python3.11/site-packages/pygments-2.17.2.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-aa4aff3:/app/.venv/lib/python3.11/site-packages/referencing-0.33.0.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-aa4aff3:/app/.venv/lib/python3.11/site-packages/pytz-2024.1.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-aa4aff3:/app/.venv/lib/python3.11/site-packages/semgrep-1.62.0.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-aa4aff3:/app/.venv/lib/python3.11/site-packages/ruamel.yaml.clib-0.2.8.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-aa4aff3:/app/.venv/lib/python3.11/site-packages/rich-13.7.0.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-aa4aff3:/app/.venv/lib/python3.11/site-packages/ruamel.yaml-0.17.40.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-aa4aff3:/app/.venv/lib/python3.11/site-packages/rpds_py-0.17.1.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-aa4aff3:/app/.venv/lib/python3.11/site-packages/tzlocal-5.2.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-aa4aff3:/app/.venv/lib/python3.11/site-packages/typing_extensions-4.9.0.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-aa4aff3:/app/.venv/lib/python3.11/site-packages/six-1.16.0.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-aa4aff3:/app/.venv/lib/python3.11/site-packages/tomli-2.0.1.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-aa4aff3:/app/.venv/lib/python3.11/site-packages/setuptools-68.2.2.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-aa4aff3:/usr/bin/python3.11
ghcr.io/sse-secure-systems/semgr8s:sha-aa4aff3:/bin/busybox
ghcr.io/sse-secure-systems/semgr8s:sha-aa4aff3:/app/.venv/lib/python3.11/site-packages/wcmatch-8.5.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-aa4aff3:/app/.venv/lib/python3.11/site-packages/werkzeug-3.0.1.dist-info/METADATA
ghcr.io/sse-secure-systems/semgr8s:sha-aa4aff3:/app/.venv/lib/python3.11/site-packages/urllib3-2.2.0.dist-info/METADATA

@github-actions GitHub Actions
Copy link

Coverage

Coverage Report
FileStmtsMissCoverMissing
semgr8s
   __main__.py11110%5–22
   app.py74297%168–169
   k8s_api.py22291%43–44
   updater.py19289%34–35
TOTAL1781790% 

Tests Skipped Failures Errors Time
18 0 💤 0 ❌ 0 🔥 1.791s ⏱️

github-advanced-security[bot]
github-advanced-security bot found potential problems Mar 22, 2024
View reviewed changes
semgr8s/app.py
bytearray(json.dumps(patch), "utf-8")
).decode("utf-8")

return jsonify(review)

Check warning

Code scanning / CodeQL

Information exposure through an exception Medium

Stack trace information
Loading
flows to this location and may be exposed to an external user.
Stack trace information
Loading
flows to this location and may be exposed to an external user.
@xopham xopham merged commit 2e0f506 into main Mar 22, 2024
72 of 74 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@xopham