Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[improve][ci] Improve OWASP dependency checks #21817

Merged
merged 5 commits into from
Dec 29, 2023
Merged

[improve][ci] Improve OWASP dependency checks #21817

merged 5 commits into from
Dec 29, 2023

Conversation

lhotari
Copy link
Member

@lhotari lhotari commented Dec 28, 2023
edited
Loading

Motivation & Modifications

OWASP dependency check improvements:

  • restore checks for distribution/offloaders and distribution/io which were accidentially removed by [cleanup]Remove Trino/PrestoDB Pulsar plugin from main repo #21795
  • upgrade OWASP version to keep up-to-date
  • add suppression for false positive in jetty-servlets jar
  • scan branch-3.2
  • remove scanning of EOL branches branch-2.8 and branch-2.9

Documentation

  • doc
  • doc-required
  • doc-not-needed
  • doc-complete

@lhotari lhotari added this to the 3.3.0 milestone Dec 28, 2023
@lhotari lhotari self-assigned this Dec 28, 2023
@github-actions github-actions bot added the doc-not-needed Your PR changes do not impact docs label Dec 28, 2023
@lhotari lhotari changed the title [improve][CI] Improve OWASP dependency checks [improve][ci] Improve OWASP dependency checks Dec 28, 2023
@codecov-commenter
Copy link

Codecov Report

All modified and coverable lines are covered by tests ✅

Comparison is base (2d57624) 73.64% compared to head (0d407ed) 73.58%.
Report is 2 commits behind head on master.

Additional details and impacted files

Impacted file tree graph

@@             Coverage Diff              @@
##             master   #21817      +/-   ##
============================================
- Coverage     73.64%   73.58%   -0.07%     
+ Complexity    32300    32275      -25     
============================================
  Files          1858     1858              
  Lines        138040   138098      +58     
  Branches      15116    15135      +19     
============================================
- Hits         101660   101619      -41     
- Misses        28549    28611      +62     
- Partials       7831     7868      +37
Flag Coverage Δ
inttests 24.17% <ø> (-0.09%) ⬇️
systests 23.78% <ø> (-0.02%) ⬇️
unittests 72.86% <ø> (-0.07%) ⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

see 68 files with indirect coverage changes

@merlimat merlimat merged commit b6da1f5 into apache:master Dec 29, 2023
50 of 51 checks passed
@lhotari lhotari mentioned this pull request Dec 29, 2023
Merged
4 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@merlimat merlimat merlimat approved these changes

Assignees

@lhotari lhotari

Labels
doc-not-needed Your PR changes do not impact docs ready-to-test
Projects
None yet
Milestone
3.3.0
Development

Successfully merging this pull request may close these issues.
3 participants
@lhotari @codecov-commenter @merlimat