Enable gosec for static application security testing

gardener / gardener-extension-shoot-rsyslog-relp

Other

0 stars 15 forks source link

Enable gosec for static application security testing #189

Closed Kostov6 closed 3 days ago

Kostov6 commented 3 weeks ago

How to categorize this PR?

/area compliance /kind enhancement

What this PR does / why we need it: This PR enables gosec following https://github.com/gardener/gardener-extension-shoot-lakom-service/pull/116/commits/03080233488e028663ae36ff1be631f241585579 and https://github.com/gardener/gardener-extension-shoot-lakom-service/pull/116/commits/61d3bd174c972f837633f32eb10f925537b1eb65

fixes https://github.com/gardener/gardener-extension-shoot-rsyslog-relp/issues/186

Release note:

`gosec` is made available for SAST(static application security testing), it can be run with `make sast` or `make sast-report`, but is also incorporated in the `verify` and `verify-extended` makefile targets.

gardener-ci-robot commented 1 week ago

The Gardener project currently lacks enough active contributors to adequately respond to all PRs. This bot triages PRs according to the following rules:

After 15d of inactivity, lifecycle/stale is applied
After 15d of inactivity since lifecycle/stale was applied, lifecycle/rotten is applied
After 7d of inactivity since lifecycle/rotten was applied, the PR is closed

You can:

Mark this PR as fresh with /remove-lifecycle stale
Mark this PR as rotten with /lifecycle rotten
Close this PR with /close

/lifecycle stale

ialidzhikov commented 1 week ago

/remove-lifecycle stale

plkokanov commented 4 days ago

Generally /lgtm but we need to merge https://github.com/gardener/gardener-extension-shoot-rsyslog-relp/pull/196 first

plkokanov commented 3 days ago

/retest

plkokanov commented 3 days ago

/lgtm /approve

gardener-prow[bot] commented 3 days ago

LGTM label has been added.

Git tree hash: 53dab23a8d9354066ca78e92277aafc41a59dfb6

gardener-prow[bot] commented 3 days ago

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: plkokanov

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files: - ~~[OWNERS](https://github.com/gardener/gardener-extension-shoot-rsyslog-relp/blob/main/OWNERS)~~ [plkokanov] Approvers can indicate their approval by writing `/approve` in a comment Approvers can cancel approval by writing `/approve cancel` in a comment