SystemSh0cker/gocsaf
1
0
Fork 0
mirror of https://github.com/gocsaf/csaf.git synced 2025-12-22 05:40:11 +01:00
Code Issues Releases Activity Actions
1052 commits 13 branches 34 tags 8.5 MiB
Commit graph

1052 commits

This branch
This branch
All branches
Author SHA1 Message Date
Bernhard E. Reiter
84026b682d
Update README.md to exchange csaf.io until it is fixed 2025-01-28 17:41:54 +01:00
Christoph Klassen
ed22136d49
Merge pull request #599 from gocsaf/copy-license 
Add Apache 2.0 license to root folder
 2025-01-23 13:06:36 +01:00
Paul Schwabauer
8e5236a2b6
Merge pull request #602 from gocsaf/remote-validator-warn 
Warn if no remote validator was specified
 2025-01-23 12:40:20 +01:00
koplas
6e8c2ecc05
Check remote validator even if file validation fails 
This makes it consistent with the handling of schema
validation.
 2025-01-23 12:22:11 +01:00
Christoph Klassen
93c1a0b185
Merge pull request #611 from gocsaf/label-type 
Fix typo in error message
 2025-01-23 12:11:51 +01:00
koplas
59d2cef082
Fix typos 2025-01-23 11:53:57 +01:00
koplas
028f468d6f
Fix typo in error message 
Closes #608
 2025-01-23 10:32:13 +01:00
Paul Schwabauer
5907a391df
Merge pull request #605 from gocsaf/dev-17 
fix: Content-Type header for JSON responses (minor)
 2025-01-17 19:11:49 +01:00
koplas
8fc7f5bfad
Make documentation more explicit 2025-01-07 12:23:40 +01:00
Bernhard Reiter
95ff418a27
fix: Content-Type header for JSON responses 
* Remove `charset=utf-8` parameter, which is not allowed
     for JSON, according to rfc8259.
 2024-12-18 08:55:48 +01:00
koplas
bc5d149f74 Use exit code 1 for general errors, fix documentation 2024-12-16 19:28:24 +01:00
koplas
df65ad13cb
Fix: return correct exit code 2024-12-10 10:13:42 +01:00
Sascha L. Teichmann
16e86051c5 Be more precise about exit codes. 2024-12-04 14:27:24 +01:00
koplas
938ceb872a Return exit code based on validation result 2024-12-04 13:54:38 +01:00
koplas
57953e495f Warn if no remote validator was specified 2024-12-04 13:23:57 +01:00
ncsc-ie-devs
1daaed2c51
ensure HTTP requests use proxy env vars (#597) 
* fix: ensure HTTP requests use proxy env vars

Updated all instances of `http.Transport` to include the `Proxy` field set to `http.ProxyFromEnvironment`. This ensures that the application respects proxy configuration defined by the `HTTP_PROXY`, `HTTPS_PROXY`, and `NO_PROXY` environment variables.

### Changes:
- Modified `http.Transport` initialization across the codebase to use:
  ```go
  Proxy: http.ProxyFromEnvironment
  ```
- Ensured TLS configurations remain intact by preserving `TLSClientConfig`.

### Why:
- Previously, HTTP requests bypassed proxy settings due to missing configuration in the transport layer.
- This fix enables compatibility with proxied environments, aligning with standard Go behavior.

### Impact:
- All HTTP and HTTPS traffic now adheres to proxy settings.
- Domains listed in `NO_PROXY` bypass the proxy as expected.

### Verification:
- Tested with proxy environment variables set (`HTTP_PROXY`, `HTTPS_PROXY`).
- Verified requests route through the proxy and `NO_PROXY` works as intended.

* reformat with fmt

---------

Co-authored-by: Cormac Doherty <cormac.doherty@ncsc.gov.ie>
 2024-12-02 11:42:54 +01:00
JanHoefelmeyer
18af28f475
Merge pull request #600 from gocsaf/docs-proxy-for-2 
fix docs link to standard
 2024-12-02 10:41:57 +01:00
Bernhard Reiter
b8a98033bf
fix docs link to standard 2024-11-28 15:58:20 +01:00
JanHoefelmeyer
678f232a9a
Merge pull request #593 from gocsaf/add-upload-permission 
Add required upload permissions
 2024-11-27 10:04:06 +01:00
JanHoefelmeyer
2435abe3e1
Merge pull request #594 from gocsaf/update_go_3rd_party_libs_2024_11_22 
Update Go 3rd party libs
 2024-11-26 08:23:18 +01:00
JanHoefelmeyer
3dc84f3537
Merge pull request #598 from gocsaf/docs-readme-12 
Update README.md that go paths can be adjusted
 2024-11-26 07:08:57 +01:00
koplas
a167bf65ad
Add Apache 2.0 license to root folder 
This allows other programs like google/licensecheck to correctly
detect the license. This is required to display the documentation
in `pkg.go.dev`.
 2024-11-25 14:27:56 +01:00
Bernhard Reiter
b2180849e9
Update README.md that go paths can be adjusted 2024-11-25 09:38:13 +01:00
Sascha L. Teichmann
9495d8b1c3 Update Go 3rd party libs 2024-11-22 16:10:54 +01:00
koplas
f6d7589fde Add required upload permissions 2024-11-22 15:58:41 +01:00
JanHoefelmeyer
fe4f01d062
fix: Link to file was not working (#592) 2024-11-22 14:52:56 +01:00
JanHoefelmeyer
01645f5559 Fix: Update downloader docs 2024-11-21 14:55:41 +01:00
Bernhard Reiter
1e3504c753 improve Makefile improvement 2024-11-15 19:54:00 +01:00
Bernhard Reiter
ace8aeaf98 fix: build-in version for release tags 
* Change Makefile to remove the leading `v` from the git tag
   in the case of release tags. Previously this was only done for
   pre-release git tags.
 2024-11-15 19:54:00 +01:00
JanHoefelmeyer
3e9b5e1ebb
Merge pull request #584 from gocsaf/dev-12 
improve test setup scripts by adding missing package
 2024-11-05 09:22:35 +01:00
Bernhard Reiter
e8706e5eb9 feat: perform go path repo move 
* Change the go module path
   from github.com/csaf-poc/csaf_distribution to github.com/gocsaf/csaf.
 * Rename archive for release tarballs.
 * Adjust testing scripts and documentation.
 2024-11-04 13:20:47 +01:00
Bernhard Reiter
ffadad38c6
improve test setupscript by adding missing zip 
Add zip as packages to be installed in preparation as
 the `make dist` target uses it.
 2024-10-30 15:53:22 +01:00
JanHoefelmeyer
91207f2b7b
Merge pull request #581 from gocsaf/repomove-alert 
docs: add link update alert to README.md
 2024-10-30 12:24:29 +01:00
JanHoefelmeyer
1c860a1ab2
Update README.md: Fix: typo 2024-10-30 11:22:24 +01:00
Bernhard E. Reiter
1aad5331d2
Update README.md 
reformat a bit
 2024-10-30 11:15:31 +01:00
Sascha L. Teichmann
7aa95c03ca
fix: bring aggregator schema to errata01 (#583) 2024-10-30 11:03:18 +01:00
Bernhard E. Reiter
6ebe7f5f5d
Update repo move alert in README.md 
use a better phrasing
 2024-10-30 10:53:15 +01:00
Bernhard E. Reiter
bf057e2fa8
Update repo move alert in README.md 
HTML links can be adjusted right now, go module paths will have to wait a bit.
 2024-10-30 10:51:38 +01:00
Bernhard E. Reiter
bdd8aa0a94
Update README.md 2024-10-29 09:50:26 +01:00
Bernhard E. Reiter
18e2e35e7c
Update README.md with link update alert 2024-10-29 09:49:27 +01:00
Paul Schwabauer
f7dc3f5ec7
Use .test TLD for integration setup (#577) 
.local is reserved for local-area networks, and .localhost is reserved for loopback devices. Using .test allows easier usage for different test setups.

 * https://www.rfc-editor.org/rfc/rfc2606#section-2 defines the "test." top level domain and "localhost.".
* https://www.rfc-editor.org/rfc/rfc6761.html#section-6.2 explains how different implementations can use "test.".
 2024-09-29 09:08:01 +02:00
JanHoefelmeyer
a70a04e169
Merge pull request #573 from csaf-poc/go122 
Upgrade to go v1.22
 2024-09-26 11:13:30 +02:00
koplas
f36c96e798
Upgrade to go v1.22 
Closes #570
 2024-09-12 13:45:59 +02:00
4echow
c148a18dba docs:: fix miner typo in csaf_downloader.md 2024-09-12 10:09:34 +02:00
JanHoefelmeyer
464e88b530
Merge pull request #571 from csaf-poc/fingerprint-no-breaking 
Improve PGP fingerprint handling
 2024-09-09 11:51:09 +02:00
Bernhard Reiter
5231b3386b
docs: improve code comment (minor) 2024-09-07 09:58:14 +02:00
koplas
c2e24f7bbb Remove check for empty fingerprint 
The schema validation already catches this error and this check will
never run.
 2024-09-06 18:21:25 +02:00
JanHoefelmeyer
108c2f5508
Merge pull request #553 from csaf-poc/user-agent 
Use a default user agent
 2024-08-09 14:28:29 +02:00
koplas
9037574d96
Improve PGP fingerprint handling 
Warn if no fingerprint is specified and give more details, if
fingerprint comparison fails.

Closes #555
 2024-08-08 12:42:19 +02:00
JanHoefelmeyer
8feddc70e1 feat: no longer require to be root user to call setup scripts 2024-08-05 16:41:55 +02:00