Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

refactor: replacing-check-with-scan #666

Open
wants to merge 2 commits into
base: main
Choose a base branch
from
Open

refactor: replacing-check-with-scan #666

wants to merge 2 commits into from

Conversation

germa89
Copy link
Contributor

@germa89 germa89 commented Jan 7, 2025
edited
Loading

As the title, using scan instead of check.

Close #641

Notes

I have keep the --output screen because... I guess otherwise it is not printed? Anyways, I'm not 100% sure on this. Feel free to remove it and keep the output to json only.
The || added to avoid failing on error.

safety scan --output screen --save-as json info_safety.json || echo "Running 'safety' failed."

@germa89 germa89 requested a review from a team as a code owner January 7, 2025 15:41
@ansys-reviewer-bot
Copy link
Contributor

Thanks for opening a Pull Request. If you want to perform a review write a comment saying:

@ansys-reviewer-bot review

@germa89 germa89 self-assigned this Jan 7, 2025
@germa89 germa89 requested a review from jorgepiloto January 7, 2025 15:41
@github-actions github-actions bot added the fix Pull requests related to resolving problems or errors label Jan 7, 2025
germa89
germa89 commented Jan 7, 2025
View reviewed changes
check-vulnerabilities/default_safety_policy.yaml
Comment on lines +3 to +8
scanning-settings:
max-depth: 6
exclude:
- "node_modules"
- "lib/other/**"
- "**/*.js"
Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Also, not sure if should add something else here. I thought about the venv folders, but presumable, those are covered below under the python section?

Anyway, if anyone have suggestions, I'm happy to heard them. :)

RobPasMue
RobPasMue requested changes Jan 7, 2025
View reviewed changes
Copy link
Member

@RobPasMue RobPasMue left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It's not as simple as it looks...

The output is different and thus affects A LOT the python files used to postprocess the data from bandit. I would prevent doing this change for now. I have a local branch where I was doing this... we can talk offline.

@germa89
Copy link
Contributor Author

germa89 commented Jan 7, 2025

It's not as simple as it looks...

The output is different and thus affects A LOT the python files used to postprocess the data from bandit. I would prevent doing this change for now. I have a local branch where I was doing this... we can talk offline.

Interesting... Yeah. I'm happy to help! Ping me tomorrow when available :)

@germa89
Copy link
Contributor Author

germa89 commented Jan 7, 2025

btw

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@RobPasMue RobPasMue RobPasMue requested changes

@jorgepiloto jorgepiloto Awaiting requested review from jorgepiloto

Requested changes must be addressed to merge this pull request.

Assignees

@germa89 germa89

Labels
fix Pull requests related to resolving problems or errors
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Use scan command in favor of check one for safety
2 participants
@germa89 @RobPasMue