Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

GitHub Action Workflow for OSS Scanning #294

Merged
merged 2 commits into from
Jul 27, 2023
Merged

GitHub Action Workflow for OSS Scanning #294

merged 2 commits into from
Jul 27, 2023

Conversation

araj-px
Copy link
Contributor

@araj-px araj-px commented Jul 12, 2023

What this PR does / why we need it: GitHub Action Workflow for OSS Scanning

Which issue(s) this PR fixes (optional)
Closes #

Special notes for your reviewer:

@github-actions
Copy link

OSS Scan Results:

Title Severity Package Name CVEs Fix version Introduced

Total issues: 0

@github-actions
Copy link

License Evaluation Results:

Title Package Name Package Version Severity License Info Introduced
MPL-2.0 license github.com/hashicorp/errwrap 1.1.0 medium MPL-2.0 ['github.com/portworx/kdmp@0.0.0', 'github.com/libopenstorage/stork/drivers/volume/portworx@#72cf75320066', 'github.com/libopenstorage/stork/pkg/snapshot/controllers@#72cf75320066', 'github.com/hashicorp/go-multierror@1.1.1', 'github.com/hashicorp/errwrap@1.1.0']
MPL-2.0 license github.com/hashicorp/go-multierror 1.1.1 medium MPL-2.0 ['github.com/portworx/kdmp@0.0.0', 'github.com/libopenstorage/stork/drivers/volume/portworx@#72cf75320066', 'github.com/libopenstorage/stork/pkg/snapshot/controllers@#72cf75320066', 'github.com/hashicorp/go-multierror@1.1.1']
MPL-2.0 license github.com/hashicorp/go-version 1.6.0 medium MPL-2.0 ['github.com/portworx/kdmp@0.0.0', 'github.com/hashicorp/go-version@1.6.0']
MPL-2.0 license github.com/hashicorp/go-version 1.6.0 medium MPL-2.0 ['github.com/portworx/kdmp@0.0.0', 'github.com/libopenstorage/stork/pkg/version@#72cf75320066', 'github.com/hashicorp/go-version@1.6.0']
MPL-2.0 license github.com/hashicorp/go-version 1.6.0 medium MPL-2.0 ['github.com/portworx/kdmp@0.0.0', 'github.com/libopenstorage/stork/drivers/volume/portworx@#72cf75320066', 'github.com/hashicorp/go-version@1.6.0']
MPL-2.0 license github.com/hashicorp/go-version 1.6.0 medium MPL-2.0 ['github.com/portworx/kdmp@0.0.0', 'github.com/libopenstorage/stork/pkg/k8sutils@#72cf75320066', 'github.com/libopenstorage/stork/pkg/version@#72cf75320066', 'github.com/hashicorp/go-version@1.6.0']
MPL-2.0 license github.com/hashicorp/go-version 1.6.0 medium MPL-2.0 ['github.com/portworx/kdmp@0.0.0', 'github.com/libopenstorage/stork/pkg/resourcecollector@#72cf75320066', 'github.com/libopenstorage/stork/pkg/version@#72cf75320066', 'github.com/hashicorp/go-version@1.6.0']
MPL-2.0 license github.com/hashicorp/go-version 1.6.0 medium MPL-2.0 ['github.com/portworx/kdmp@0.0.0', 'github.com/libopenstorage/stork/drivers/volume/csi@#72cf75320066', 'github.com/libopenstorage/stork/pkg/version@#72cf75320066', 'github.com/hashicorp/go-version@1.6.0']
MPL-2.0 license github.com/hashicorp/go-version 1.6.0 medium MPL-2.0 ['github.com/portworx/kdmp@0.0.0', 'github.com/libopenstorage/stork/drivers/volume@#72cf75320066', 'github.com/libopenstorage/stork/pkg/k8sutils@#72cf75320066', 'github.com/libopenstorage/stork/pkg/version@#72cf75320066', 'github.com/hashicorp/go-version@1.6.0']
MPL-2.0 license github.com/hashicorp/go-version 1.6.0 medium MPL-2.0 ['github.com/portworx/kdmp@0.0.0', 'github.com/libopenstorage/stork/drivers/volume/aws@#72cf75320066', 'github.com/libopenstorage/stork/pkg/k8sutils@#72cf75320066', 'github.com/libopenstorage/stork/pkg/version@#72cf75320066', 'github.com/hashicorp/go-version@1.6.0']
MPL-2.0 license github.com/hashicorp/go-version 1.6.0 medium MPL-2.0 ['github.com/portworx/kdmp@0.0.0', 'github.com/libopenstorage/stork/drivers/volume/azure@#72cf75320066', 'github.com/libopenstorage/stork/pkg/k8sutils@#72cf75320066', 'github.com/libopenstorage/stork/pkg/version@#72cf75320066', 'github.com/hashicorp/go-version@1.6.0']
MPL-2.0 license github.com/hashicorp/go-version 1.6.0 medium MPL-2.0 ['github.com/portworx/kdmp@0.0.0', 'github.com/libopenstorage/stork/drivers/volume/kdmp@#72cf75320066', 'github.com/libopenstorage/stork/pkg/k8sutils@#72cf75320066', 'github.com/libopenstorage/stork/pkg/version@#72cf75320066', 'github.com/hashicorp/go-version@1.6.0']
MPL-2.0 license github.com/hashicorp/go-version 1.6.0 medium MPL-2.0 ['github.com/portworx/kdmp@0.0.0', 'github.com/libopenstorage/stork/drivers/volume/gcp@#72cf75320066', 'github.com/libopenstorage/stork/pkg/k8sutils@#72cf75320066', 'github.com/libopenstorage/stork/pkg/version@#72cf75320066', 'github.com/hashicorp/go-version@1.6.0']
MPL-2.0 license github.com/hashicorp/go-version 1.6.0 medium MPL-2.0 ['github.com/portworx/kdmp@0.0.0', 'github.com/libopenstorage/stork/drivers/volume/portworx@#72cf75320066', 'github.com/libopenstorage/stork/pkg/snapshot/controllers@#72cf75320066', 'github.com/libopenstorage/stork/pkg/version@#72cf75320066', 'github.com/hashicorp/go-version@1.6.0']
MPL-2.0 license github.com/hashicorp/go-version 1.6.0 medium MPL-2.0 ['github.com/portworx/kdmp@0.0.0', 'github.com/libopenstorage/stork/pkg/snapshotter@#72cf75320066', 'github.com/libopenstorage/stork/pkg/k8sutils@#72cf75320066', 'github.com/libopenstorage/stork/pkg/version@#72cf75320066', 'github.com/hashicorp/go-version@1.6.0']
MPL-2.0 license github.com/hashicorp/go-version 1.6.0 medium MPL-2.0 ['github.com/portworx/kdmp@0.0.0', 'github.com/libopenstorage/stork/pkg/applicationmanager/controllers@#72cf75320066', 'github.com/libopenstorage/stork/drivers/volume/kdmp@#72cf75320066', 'github.com/libopenstorage/stork/pkg/k8sutils@#72cf75320066', 'github.com/libopenstorage/stork/pkg/version@#72cf75320066', 'github.com/hashicorp/go-version@1.6.0']
Unknown license github.com/portworx/kdmp 0.0.0 high Unknown ['github.com/portworx/kdmp@0.0.0']
Unknown license github.com/rancher/wrangler/pkg/name 1.1.0 high Unknown ['github.com/portworx/kdmp@0.0.0', 'github.com/libopenstorage/stork/pkg/applicationmanager/controllers@#72cf75320066', 'github.com/libopenstorage/stork/pkg/platform/rancher@#72cf75320066', 'github.com/rancher/rancher/pkg/client/generated/management/v3@#a67566517525', 'github.com/rancher/norman/types@#275a3e921940', 'github.com/rancher/wrangler/pkg/name@1.1.0']
Unknown license github.com/rancher/wrangler/pkg/name 1.1.0 high Unknown ['github.com/portworx/kdmp@0.0.0', 'github.com/libopenstorage/stork/drivers/volume/csi@#72cf75320066', 'github.com/libopenstorage/stork/pkg/applicationmanager/controllers@#72cf75320066', 'github.com/libopenstorage/stork/pkg/platform/rancher@#72cf75320066', 'github.com/rancher/rancher/pkg/client/generated/management/v3@#a67566517525', 'github.com/rancher/norman/types@#275a3e921940', 'github.com/rancher/wrangler/pkg/name@1.1.0']
Unknown license github.com/rancher/wrangler/pkg/name 1.1.0 high Unknown ['github.com/portworx/kdmp@0.0.0', 'github.com/libopenstorage/stork/drivers/volume/portworx@#72cf75320066', 'github.com/libopenstorage/stork/pkg/applicationmanager/controllers@#72cf75320066', 'github.com/libopenstorage/stork/pkg/platform/rancher@#72cf75320066', 'github.com/rancher/rancher/pkg/client/generated/management/v3@#a67566517525', 'github.com/rancher/norman/types@#275a3e921940', 'github.com/rancher/wrangler/pkg/name@1.1.0']

Total License Issues: 20

@px-kesavan
Copy link
Contributor

Merging it for oss scan integration

@px-kesavan px-kesavan merged commit c41af41 into master Jul 27, 2023
3 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@prashanthpx prashanthpx prashanthpx approved these changes

@prabhu-px prabhu-px Awaiting requested review from prabhu-px

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@araj-px @px-kesavan @prashanthpx