Skip to content

feat: Add cargoaudit extractor to artifacts #1770

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 5 commits into from
Apr 1, 2025
Merged

feat: Add cargoaudit extractor to artifacts #1770

merged 5 commits into from
Apr 1, 2025

Conversation

another-rex
Copy link
Collaborator

Enable the cargoaudit extractor in container scanning

@another-rex another-rex requested review from hogo6002 and cuixq March 31, 2025 00:07
@another-rex another-rex mentioned this pull request Mar 31, 2025
Merged
@codecov-commenter
Copy link

codecov-commenter commented Mar 31, 2025
edited
Loading

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 65.02%. Comparing base (72251a1) to head (e8a1110).
Report is 4 commits behind head on main.

Additional details and impacted files 
@@            Coverage Diff             @@
##             main    #1770      +/-   ##
==========================================
+ Coverage   64.93%   65.02%   +0.09%     
==========================================
  Files         163      163              
  Lines       15902    15943      +41     
==========================================
+ Hits        10326    10367      +41     
+ Misses       4899     4897       -2     
- Partials      677      679       +2

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
  • 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

cuixq
cuixq approved these changes Mar 31, 2025
View reviewed changes
docs/supported_languages_and_lockfiles.md Outdated
| Debian/Ubuntu dpkg/apt packages | `/var/lib/dpkg/status` |
| | |
| Go Binaries | `main-go` |
| Rust Binaries (With cargo-audit) | `main-rust-built-with-audit` |
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I would prefer with

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It is cargo-auditable, not cargo-audit. Those are different tools. The naming is confusing in retrospect, my bad 😅

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks for pointing it out! Fixed now.

@Shnatsel Shnatsel mentioned this pull request Mar 31, 2025
Closed
@another-rex another-rex merged commit a22536c into google:main Apr 1, 2025
14 checks passed
@BrewTestBot BrewTestBot mentioned this pull request Apr 3, 2025
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@cuixq cuixq cuixq approved these changes

@hogo6002 hogo6002 Awaiting requested review from hogo6002

+1 more reviewer

@Shnatsel Shnatsel Shnatsel left review comments

Reviewers whose approvals may not affect merge requirements
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@another-rex @codecov-commenter @Shnatsel @cuixq