Commit graph

110 commits

Author SHA1 Message Date
Kovid Goyal
ff6a9faf2c
Install gslangValidator in CI 2026-07-01 10:45:59 +05:30
Kovid Goyal
749b3c48b6
Remove unused code 2026-06-30 23:04:22 +05:30
Kovid Goyal
81f467626c
Use same version of slang as bundled version in CI 2026-06-30 23:01:43 +05:30
Kovid Goyal
e008088b9f
Ensure slangc is available in CI 2026-06-28 08:59:49 +05:30
Kovid Goyal
135ba45c7e
Work on generating build tree for slang files 2026-06-28 08:54:36 +05:30
Kovid Goyal
5b4e3a12a1
Use the slangc binary instead trying to get the C++ extension working everywhere is too fragile 2026-06-28 08:54:36 +05:30
Kovid Goyal
0d5e61e7e6
Rationalize build/test/package cycle 2026-06-28 08:54:36 +05:30
Kovid Goyal
f9bc1c9fdf
DRYer 2026-06-28 08:54:35 +05:30
copilot-swe-agent[bot]
8d196d86ba
Use GITHUB_TOKEN for slang release API request to avoid rate limits 2026-06-28 08:54:35 +05:30
copilot-swe-agent[bot]
3b15d86b64
Address code review: use url=None, add TypeError comment 2026-06-28 08:54:35 +05:30
copilot-swe-agent[bot]
d8972f2f95
Implement install_slang_compiler() in ci.py 2026-06-28 08:54:35 +05:30
Kovid Goyal
e64663aa74
Stub for installation of slang on CI 2026-06-28 08:54:35 +05:30
copilot-swe-agent[bot]
bf7689b211
Enable ASAN for macOS CI builds in ci.py 2026-06-24 10:01:29 +05:30
Kovid Goyal
d369da2e04
... 2026-06-24 08:09:17 +05:30
Kovid Goyal
72c1ff6085
Ignore inapplicable CVE
Some checks are pending
CI / Linux (python=3.13 cc=clang sanitize=1) (push) Waiting to run
CI / Linux (python=3.11 cc=gcc sanitize=0) (push) Waiting to run
CI / Linux (python=3.12 cc=gcc sanitize=1) (push) Waiting to run
CI / Linux package (push) Waiting to run
CI / Bundle test (macos-latest) (push) Waiting to run
CI / Bundle test (ubuntu-latest) (push) Waiting to run
CI / macOS Brew (push) Waiting to run
CI / Test ./dev.sh and benchmark (push) Waiting to run
CodeQL / CodeQL-Build (actions, ubuntu-latest) (push) Waiting to run
CodeQL / CodeQL-Build (c, macos-latest) (push) Waiting to run
CodeQL / CodeQL-Build (c, ubuntu-latest) (push) Waiting to run
CodeQL / CodeQL-Build (go, ubuntu-latest) (push) Waiting to run
CodeQL / CodeQL-Build (python, ubuntu-latest) (push) Waiting to run
Depscan / Scan dependencies for vulnerabilities (push) Waiting to run
2026-06-06 18:53:13 +05:30
Kovid Goyal
2d9e243847
Ignore inappplicable CVE
Some checks are pending
CI / Linux (python=3.13 cc=clang sanitize=1) (push) Waiting to run
CI / Linux (python=3.11 cc=gcc sanitize=0) (push) Waiting to run
CI / Linux (python=3.12 cc=gcc sanitize=1) (push) Waiting to run
CI / Linux package (push) Waiting to run
CI / Bundle test (macos-latest) (push) Waiting to run
CI / Bundle test (ubuntu-latest) (push) Waiting to run
CI / macOS Brew (push) Waiting to run
CI / Test ./dev.sh and benchmark (push) Waiting to run
CodeQL / CodeQL-Build (actions, ubuntu-latest) (push) Waiting to run
CodeQL / CodeQL-Build (c, macos-latest) (push) Waiting to run
CodeQL / CodeQL-Build (c, ubuntu-latest) (push) Waiting to run
CodeQL / CodeQL-Build (go, ubuntu-latest) (push) Waiting to run
CodeQL / CodeQL-Build (python, ubuntu-latest) (push) Waiting to run
Depscan / Scan dependencies for vulnerabilities (push) Waiting to run
2026-06-06 06:12:03 +05:30
Kovid Goyal
a28abf1573
Ignore inapplicable CVE
Some checks are pending
CI / Linux (python=3.13 cc=clang sanitize=1) (push) Waiting to run
CI / Linux (python=3.11 cc=gcc sanitize=0) (push) Waiting to run
CI / Linux (python=3.12 cc=gcc sanitize=1) (push) Waiting to run
CI / Linux package (push) Waiting to run
CI / Bundle test (macos-latest) (push) Waiting to run
CI / Bundle test (ubuntu-latest) (push) Waiting to run
CI / macOS Brew (push) Waiting to run
CI / Test ./dev.sh and benchmark (push) Waiting to run
CodeQL / CodeQL-Build (actions, ubuntu-latest) (push) Waiting to run
CodeQL / CodeQL-Build (c, macos-latest) (push) Waiting to run
CodeQL / CodeQL-Build (c, ubuntu-latest) (push) Waiting to run
CodeQL / CodeQL-Build (go, ubuntu-latest) (push) Waiting to run
CodeQL / CodeQL-Build (python, ubuntu-latest) (push) Waiting to run
Depscan / Scan dependencies for vulnerabilities (push) Waiting to run
2026-05-13 15:03:17 +05:30
Kovid Goyal
3a598218d3
Flush streams and sleep before printing crash report 2026-04-19 21:25:08 +05:30
Kovid Goyal
5e8ca630d4
... 2026-04-14 17:39:04 +05:30
Kovid Goyal
27114c9703
DRYer 2026-04-06 11:28:12 +05:30
Kovid Goyal
79bde7f9a9
Ignore inapplicable CVE in python 2026-03-25 20:20:17 +05:30
Kovid Goyal
c57305addc
Ignore dependency CVEs against unreleased versions of deps 2026-03-20 10:45:08 +05:30
Kovid Goyal
1106ee8d10
Ignore CVE that's not an actual issue 2026-03-06 13:46:07 +05:30
Kovid Goyal
3839dcc082
Bump dependency for CVE 2026-02-07 14:41:17 +05:30
Kovid Goyal
0afe77ebc9
Ignore irrelevant CVE 2026-02-05 23:01:58 +05:30
Kovid Goyal
0267a02bb3
Ignore irrelevant python stdlib CVE 2026-02-03 14:48:30 +05:30
Kovid Goyal
cb53c41c7c
... 2026-01-28 09:40:15 +05:30
Kovid Goyal
ae36822837
Ignore a bunch of CVes in python that havent actually had their fixes released yet. 2026-01-23 19:07:02 +05:30
Kovid Goyal
e342f5ffab
Ignore inapplicable CVE in python stdlib 2026-01-16 19:13:16 +05:30
Kovid Goyal
8a10931f0e
Download grype from my own server
Far higher reliability than githubj;wq
2026-01-10 12:42:09 +05:30
Kovid Goyal
24b634ae1a
Nicer 403 error andling when downloading grype 2026-01-02 11:35:28 +05:30
Kovid Goyal
f39183bd6b
Ignore inapplicable CVE 2025-12-11 12:49:16 +05:30
Kovid Goyal
d87ba95d9c
Ignore CVE-2025-13836
We dont care about this DoS enough, so ignore until a new version of
python 3.12 s released with the fix. Not updating past Python 3.12 for
this DoS.
2025-12-04 15:10:26 +05:30
Kovid Goyal
5f90102413
Add support for RAR archive preview 2025-11-27 09:33:15 +05:30
Kovid Goyal
97b030edf7
Dont scan grype itself with grype 2025-11-02 15:41:01 +05:30
Kovid Goyal
d3ef27c2bc
Update grype db as part of install 2025-10-17 10:59:11 +05:30
Kovid Goyal
0bfcffbaed
Fix spurious CVE in dep detection 2025-10-11 13:23:33 +05:30
Kovid Goyal
3b0938e878
Run govulncheck on the binary and remove upload of SARIF to github as github doesnt like the SARIF govulncheck produces 2025-09-24 13:12:00 +05:30
Kovid Goyal
4771de3f95
Print out the govulncheck.sarif file in CI 2025-09-24 12:57:21 +05:30
Kovid Goyal
4ffacbbe80
Another try at running govulncheck 2025-09-24 12:50:06 +05:30
Kovid Goyal
3383675bb2
... 2025-09-23 16:15:34 +05:30
Kovid Goyal
4e240b94e1
explicitly close opened url 2025-09-22 12:30:53 +05:30
Kovid Goyal
53e2f00473
A fancier download_with_retry function 2025-09-22 12:28:48 +05:30
Kovid Goyal
a05a56e413
use a retry for all downloads in CI script 2025-09-22 12:16:41 +05:30
Kovid Goyal
92ee52b68c
Retry grype download on failure 2025-09-22 11:36:27 +05:30
Kovid Goyal
dfeef6df83
Ignore CVE that does not apply 2025-09-20 10:06:30 +05:30
Kovid Goyal
54368be554
Fix grype not scanning C deps that dont have CPEs 2025-09-18 09:22:28 +05:30
Kovid Goyal
c30f8cec46
... 2025-09-17 23:30:37 +05:30
Kovid Goyal
0eddbefda9
List vulnerabilities by CVE 2025-09-17 23:20:39 +05:30
Kovid Goyal
c4cb9cdbb7
Filter out another form of the same CVE 2025-09-17 23:14:40 +05:30