koplas
fc3837d655
Make json parsing more strict
Go / build (push) Waiting to run
Go / run_modver (push) Blocked by required conditions
2025-07-02 17:06:25 +02:00
Christoph Klassen
c833c00f84
Merge pull request #649 from gocsaf/url-join
...
generate-markdown / auto-update-readme (push) Has been cancelled
Go / build (push) Has been cancelled
Go / run_modver (push) Has been cancelled
Use JoinPath
2025-06-26 08:18:39 +02:00
Christoph Klassen
4066704c1a
Merge pull request #633 from gocsaf/check-prefix-url
...
generate-markdown / auto-update-readme (push) Waiting to run
Go / build (push) Waiting to run
Go / run_modver (push) Blocked by required conditions
Check if canonical url prefix is valid
2025-06-25 17:05:09 +02:00
Christoph Klassen
f154b78340
Merge pull request #652 from gocsaf/less_bloat
...
Feat: More explicitely handle which doc files are included in the dist
2025-06-25 15:37:45 +02:00
JanHoefelmeyer
d5778f0755
Merge pull request #647 from gocsaf/pmd-diagnostic
...
csaf_checker: Always generate report
2025-06-25 15:33:47 +02:00
JanHoefelmeyer
5d37dd1339
Move PMD error from logs to report.
Go / build (push) Has been cancelled
Go / run_modver (push) Has been cancelled
2025-06-25 09:31:50 +02:00
JanHoefelmeyer
d09db6635d
Fix: Assume most restrictive role to prevent false-positives
Go / build (push) Waiting to run
Go / run_modver (push) Blocked by required conditions
2025-06-24 17:24:08 +02:00
koplas
3f4fe5cf18
Also generate report when role is not available
2025-06-24 17:18:42 +02:00
JanHoefelmeyer
02d4931152
Fix: Return properly early
2025-06-24 17:06:55 +02:00
JanHoefelmeyer
9c62e89a23
Feat: More explicitely handle which doc files are included in the gnulinux dist
2025-06-24 14:34:44 +02:00
Christoph Klassen
062e145761
Merge pull request #650 from gocsaf/write-version
...
generate-markdown / auto-update-readme (push) Has been cancelled
Use folder name as version if git describe failed
2025-06-24 10:48:11 +02:00
koplas
36aab33de4
Use folder name as version if git describe failed
2025-06-20 16:50:13 +02:00
koplas
1098c6add0
Use correct base URL
Go / build (push) Has been cancelled
Go / run_modver (push) Has been cancelled
2025-06-20 16:37:37 +02:00
koplas
091854a248
Always generate report
...
Go / build (push) Has been cancelled
Go / run_modver (push) Has been cancelled
Closes #385
2025-06-20 14:24:05 +02:00
Christoph Klassen
ce886f138a
Merge pull request #648 from gocsaf/update-modver
...
generate-markdown / auto-update-readme (push) Has been cancelled
Update modver
2025-06-20 08:59:50 +02:00
koplas
6ac97810d0
Use JoinPath
...
This avoids issues where parts of the URL are discarded.
2025-06-19 15:11:45 +02:00
koplas
cb291bb81b
Update modver
2025-06-19 14:39:02 +02:00
Christoph Klassen
12cde3aa3c
Merge pull request #637 from gocsaf/api-break-action
...
generate-markdown / auto-update-readme (push) Has been cancelled
Go / build (push) Has been cancelled
Go / run_modver (push) Has been cancelled
Add semver breaking changes detection
2025-06-18 09:04:37 +02:00
Christoph Klassen
fa1861385a
Merge pull request #643 from gocsaf/jsonschema-upgrade
...
Upgrade jsonschema to v6
2025-06-18 08:51:06 +02:00
koplas
dcdbc5d49d
Add semver breaking changes detection
2025-06-13 18:50:57 +02:00
koplas
34705f3c6e
Address comments
Go / build (push) Has been cancelled
2025-06-13 11:01:43 +02:00
koplas
6955c4e37c
Upgrade node.js and format workflow file
2025-06-13 10:19:21 +02:00
koplas
fc64bf7165
Upgrade jsonschema to v6
2025-06-12 15:53:39 +02:00
JanHoefelmeyer
161ec1f15c
Merge pull request #635 from gocsaf/remove-golint-action
...
generate-markdown / auto-update-readme (push) Has been cancelled
Remove golint github action
2025-06-10 07:45:56 +02:00
Christoph Klassen
3ab00e8759
Remove golint github action
...
We use Revive already which is a replacement for golint and golint isn't maintained anyway.
2025-05-28 11:30:46 +02:00
koplas
91b5b4543e
Check if canonical url prefix is valid
2025-04-03 14:41:14 +02:00
Paul Schwabauer
2f599ab017
Fix aggregator URL handling ( #631 )
...
* Fix aggregator URL handling
Parts of the URL were not path escaped. This results in a wrong URL; if
the provider name contains characters that need to be escaped.
* Simplify JoinPath usage
2025-04-02 17:05:29 +02:00
JanHoefelmeyer
a05ba731dd
Merge pull request #629 from gocsaf/body-close
...
Avoid memory leak
2025-03-25 08:20:22 +01:00
koplas
2c5ef1fd5f
Avoid memory leak
...
Move `resp.Body.Close()` before check of status code.
Reported by @mgoetzegb here: https://github.com/gocsaf/csaf/pull/625#issuecomment-2744067770
2025-03-24 13:32:43 +01:00
Paul Schwabauer
0848143a0b
Update lint ( #626 )
...
* Update linter
* Format
* Fix lint
2025-03-19 09:39:07 +01:00
Paul Schwabauer
5709b14650
Extend structured logging usage in aggregator ( #622 )
...
* Extend structured logging usage in aggregator
* Use structured logging in advisories processor
* Remove unnecessary inner function
* Format
* Feat: Add verbose flag to example aggregator toml (in comment)
---------
Co-authored-by: JanHoefelmeyer <jan.hoefelmeyer@intevation.de>
2025-03-19 09:04:19 +01:00
JanHoefelmeyer
cf4cf7c6c1
Merge pull request #625 from gocsaf/close-body-downloader
...
Move advisory downloading to download context method
2025-03-17 11:59:52 +01:00
Sascha L. Teichmann
5437d8127a
Store downloader in context
2025-03-17 09:10:03 +01:00
Sascha L. Teichmann
a7821265ca
Move advisory downloading to download context method
2025-03-17 08:57:05 +01:00
JanHoefelmeyer
e916f19ee4
Merge pull request #624 from gocsaf/add-acao-header
...
feat: add access-control-allow-origin header
2025-03-14 17:38:59 +01:00
koplas
17f6a3ac7e
Fix inconsistent format
2025-03-14 10:26:19 +01:00
JanHoefelmeyer
8163f57851
Compare changes dates ( #609 )
...
* Feat: Compare dates in changes.csv to those within the files if existent
* Fix: remove debug output and fix typo
* Make map handling consistent
* Improve: refactor time extraction
* fix: some syntax fixes
* Small nits
* Fix: Check changes before stopping the scan of already tested advisories
* Revert "Fix: Check changes before stopping the scan of already tested advisories - bad way to solve the problem, can cause problems"
This reverts commit d38dc285cc
2025-03-14 10:05:56 +01:00
Bernhard Reiter
527fe71992
feat: set acao header
...
* adapt provider-setup.md to changes for the acao header.
2025-03-13 18:30:38 +01:00
Bernhard Reiter
4429dd6985
feat: add access-control-allow-origin header
...
.. for better access from web applications.
improve #479
2025-03-13 18:23:28 +01:00
JanHoefelmeyer
ed55b659b4
Merge pull request #621 from gocsaf/error-charset
...
Report error in checker if content type is not correct
2025-03-13 12:34:49 +01:00
koplas
534d6f049f
Add content-type error report test
2025-03-10 12:04:46 +01:00
koplas
3cfafa8263
Report error in checker if content type is not correct
...
Related: #606
2025-03-10 11:11:34 +01:00
Paul Schwabauer
3e16741ed5
Merge pull request #554 from gocsaf/sha-handling
...
Improve SHA* marking
2025-03-10 09:40:53 +01:00
Marcus Perlick
ec0c3f9c2c
Fix potential leak of HTTP response body in downloadJSON of csaf_aggregator ( #618 )
2025-03-10 09:24:49 +01:00
Paul Schwabauer
900dcede46
Merge pull request #619 from gocsaf/uploader-signed-docu
...
Add documentation for externally signed documents
2025-03-06 09:37:32 +01:00
Paul Schwabauer
24f9af7f26
Add documentation for externally signed documents
...
Closes #607
2025-03-05 09:55:11 +01:00
koplas
1d1c5698da
Merge branch 'main' into sha-handling
2025-03-05 09:41:29 +01:00
Paul Schwabauer
e91bdec201
Add example for iterating product id and product helper ( #617 )
...
* Add example for iterating product id and product helper
* simplify code a bit
* Remove newline
---------
Co-authored-by: Sascha L. Teichmann <sascha.teichmann@intevation.de>
2025-03-03 17:31:21 +01:00
JanHoefelmeyer
20fdffa5cc
Merge pull request #615 from gocsaf/dev-19
...
update runner for release to 22.04, other actions and go version, thus also newer glibc
2025-03-03 11:08:38 +01:00
koplas
3afa8d8b2e
Upgrade to artifact action v4
2025-02-25 15:41:11 +01:00
