Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Upgrade to Go 1.21.13 #1349

Closed
wants to merge 4 commits into from
Closed

Upgrade to Go 1.21.13 #1349

wants to merge 4 commits into from

Conversation

lzap
Copy link
Collaborator

@lzap lzap commented Sep 23, 2024

Dependa bots latest update gosec is complaining about old Go version, let’s bump it:

#1348

Also bumping some dependencies too.

@codecov Codecov
Copy link

codecov bot commented Sep 23, 2024
edited
Loading

Codecov Report

All modified and coverable lines are covered by tests ✅

Files with missing lines Coverage Δ
internal/clients/composer/openapi.v2.gen.go 22.05% <ø> (ø)
internal/v1/api.go 47.98% <ø> (ø)

@ezr-ondrej
Copy link
Collaborator

gosec has some new rules apparently... just to make file perms explicit it seems.

@lzap
Copy link
Collaborator Author

lzap commented Sep 24, 2024

Yeah I was already looking into it yesterday but got disturbed. Let’s see...

@croissanne
Copy link
Member

croissanne commented Sep 24, 2024
edited
Loading

Is this version already in ubi-9? 21.10 is in ubi9

ezr-ondrej
ezr-ondrej reviewed Sep 24, 2024
View reviewed changes
cmd/oscap/main.go Outdated
@@ -233,7 +233,7 @@ func generateJson(dir, datastreamDistro, profileDescription, profile string) {
}
// hack to add an empty line at the end of the file for nicer diffs
bArray = append(bArray, '\n')
err = os.WriteFile(path.Join(dir, "customizations.json"), bArray, os.ModePerm)
err = os.WriteFile(path.Join(dir, "customizations.json"), bArray, 0640)
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Lets just disable the rule here? sounds bit too strict and seems it might be tricky to verify 0600 would work as well here.

Copy link
Collaborator Author

@lzap lzap Sep 24, 2024
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@croissanne can you comment? I am not sure what this does, shall I set 666 here? this looks like some kind of generator where 600 should be fine I guess.

@lzap
Copy link
Collaborator Author

lzap commented Sep 24, 2024

So it now passes with 0600 for customization, should be fine according to @croissanne

Tho there is a snag on CI:

go: go.mod requires go >= 1.21.13 (running go 1.21.11; GOTOOLCHAIN=local)

@lzap
Copy link
Collaborator Author

lzap commented Sep 24, 2024

Ok I mixed two problems together accidentally. What I am trying to solve is this problem:

github.com/oapi-codegen/oapi-codegen/[email protected] requires go >= 1.21.13 (running go 1.21.9; ../../../go.mod sets toolchain go1.21.9)

This is unrelated to that, I am closing this for now, gosec is a separate issue that will be solved once Go toolchain is updated later on.

@lzap lzap closed this Sep 24, 2024
@lzap lzap deleted the go1.21.9 branch September 24, 2024 11:46
@ezr-ondrej ezr-ondrej mentioned this pull request Sep 24, 2024
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@ezr-ondrej ezr-ondrej ezr-ondrej left review comments

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@lzap @ezr-ondrej @croissanne