Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

add input for specifying --file-mode #1509

Merged
merged 2 commits into from
Feb 18, 2025
Merged

add input for specifying --file-mode #1509

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
c118a7e
add input for specifying --file-mode
spencerschrock Feb 12, 2025
0d1c2ed
bump scorecard to v5.1.1
spencerschrock Feb 17, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion Makefile
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,5 +1,5 @@
# NOTE: Keep this in sync with go.mod for ossf/scorecard.
LDFLAGS=-X sigs.k8s.io/release-utils/version.gitVersion=v5.1.0 -X sigs.k8s.io/release-utils/version.gitCommit=b0143fc57d8d38748990027266de715052806f4b -w -extldflags \"-static\"
LDFLAGS=-X sigs.k8s.io/release-utils/version.gitVersion=v5.1.1 -X sigs.k8s.io/release-utils/version.gitCommit=cd152cb6742c5b8f2f3d2b5193b41d9c50905198 -w -extldflags \"-static\"

build: ## Runs go build on repo
# Run go build and generate scorecard executable
Expand Down
5 changes: 3 additions & 2 deletions README.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -135,10 +135,11 @@ First, [create a new file](https://docs.github.com/en/repositories/working-with-

| Name | Required | Description |
| ----- | -------- | ----------- |
| `result_file` | yes | The file that contains the results. |
| `result_format` | yes | The format in which to store the results [json \| sarif]. For GitHub's scanning dashboard, select `sarif`. |
| `results_file` | yes | The file that contains the results. |
| `results_format` | yes | The format in which to store the results [json \| sarif]. For GitHub's scanning dashboard, select `sarif`. |
| `repo_token` | no | PAT token with repository read access. Follow [these steps](/docs/authentication/fine-grained-auth-token.md) to create it. |
| `publish_results` | recommended | This will allow you to display a badge on your repository to show off your hard work. See details [here](#publishing-results).|
| `file_mode` | no | The method to fetch files from the repository: `archive` or `git` (default `archive`).

### Publishing Results
The Scorecard team runs a weekly scan of public GitHub repositories in order to track
Expand Down
5 changes: 5 additions & 0 deletions action.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -37,6 +37,11 @@ inputs:
required: false
default: false

file_mode:
description: "INPUT: Method to fetch files from GitHub"
required: false
default: archive

internal_publish_base_url:
description: "INPUT: Base URL for publishing results. Used for testing."
required: false
Expand Down
2 changes: 1 addition & 1 deletion go.mod
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -6,7 +6,7 @@ require (
github.com/caarlos0/env/v6 v6.10.1
github.com/google/go-cmp v0.6.0
github.com/google/go-github/v46 v46.0.0
github.com/ossf/scorecard/v5 v5.1.0
github.com/ossf/scorecard/v5 v5.1.1
github.com/sigstore/cosign/v2 v2.4.2
github.com/spf13/cobra v1.9.1
golang.org/x/net v0.35.0
Expand Down
4 changes: 2 additions & 2 deletions go.sum
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -642,8 +642,8 @@ github.com/opencontainers/image-spec v1.1.0 h1:8SG7/vwALn54lVB/0yZ/MMwhFrPYtpEHQ
github.com/opencontainers/image-spec v1.1.0/go.mod h1:W4s4sFTMaBeK1BQLXbG4AdM2szdn85PY75RI83NrTrM=
github.com/opentracing/opentracing-go v1.2.0 h1:uEJPy/1a5RIPAJ0Ov+OIO8OxWu77jEv+1B0VhjKrZUs=
github.com/opentracing/opentracing-go v1.2.0/go.mod h1:GxEUsuufX4nBwe+T+Wl9TAgYrxe9dPLANfrWvHYVTgc=
github.com/ossf/scorecard/v5 v5.1.0 h1:onGMdLkflcsc2OOLiqpdY1Y4RGWicK3V9/q6qGWLqP4=
github.com/ossf/scorecard/v5 v5.1.0/go.mod h1:LPrCMUyDZyEbJXgRDLWP6IKl9rPDooYY15T2FYMJxYY=
github.com/ossf/scorecard/v5 v5.1.1 h1:PbEs+JznKjwXyk9N1voOOwFqVNuFKfr0URNt9TBjLeo=
github.com/ossf/scorecard/v5 v5.1.1/go.mod h1:LPrCMUyDZyEbJXgRDLWP6IKl9rPDooYY15T2FYMJxYY=
github.com/owenrumney/go-sarif v1.1.1/go.mod h1:dNDiPlF04ESR/6fHlPyq7gHKmrM0sHUvAGjsoh8ZH0U=
github.com/owenrumney/go-sarif/v2 v2.3.3 h1:ubWDJcF5i3L/EIOER+ZyQ03IfplbSU1BLOE26uKQIIU=
github.com/owenrumney/go-sarif/v2 v2.3.3/go.mod h1:MSqMMx9WqlBSY7pXoOZWgEsVB4FDNfhcaXDA1j6Sr+w=
Expand Down
7 changes: 6 additions & 1 deletion internal/scorecard/scorecard.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -19,6 +19,7 @@ import (
"context"
"errors"
"fmt"
"strings"

"github.com/ossf/scorecard-action/options"
"github.com/ossf/scorecard/v5/clients"
Expand All @@ -35,7 +36,11 @@ func Run(opts *options.Options) (scorecard.Result, error) {
return scorecard.Result{}, fmt.Errorf("unable to create repo: %w", err)
}

result, err := scorecard.Run(context.Background(), repo)
var scOpts []scorecard.Option
if strings.EqualFold(opts.InputFileMode, "git") {
scOpts = append(scOpts, scorecard.WithFileModeGit())
}
result, err := scorecard.Run(context.Background(), repo, scOpts...)
if err != nil && !errors.Is(err, sce.ErrCheckRuntime) {
return scorecard.Result{}, fmt.Errorf("scorecard had an error: %w", err)
}
Expand Down
1 change: 1 addition & 0 deletions options/env.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -43,6 +43,7 @@ const (
EnvInputResultsFile = "INPUT_RESULTS_FILE"
EnvInputResultsFormat = "INPUT_RESULTS_FORMAT"
EnvInputPublishResults = "INPUT_PUBLISH_RESULTS"
EnvInputFileMode = "INPUT_FILE_MODE"
EnvInputInternalPublishBaseURL = "INPUT_INTERNAL_PUBLISH_BASE_URL"
)

Expand Down
1 change: 1 addition & 0 deletions options/options.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -77,6 +77,7 @@ type Options struct {
// Input parameters
InputResultsFile string `env:"INPUT_RESULTS_FILE"`
InputResultsFormat string `env:"INPUT_RESULTS_FORMAT"`
InputFileMode string `env:"INPUT_FILE_MODE"`

PublishResults bool
}
Expand Down
43 changes: 43 additions & 0 deletions options/options_test.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -48,6 +48,7 @@ func TestNew(t *testing.T) {
Local string
ChecksToRun []string
ShowDetails bool
FileMode string
}
tests := []struct {
name string
Expand All @@ -58,6 +59,7 @@ func TestNew(t *testing.T) {
resultsFile string
resultsFormat string
publishResults string
fileMode string
want fields
unsetResultsPath bool
unsetToken bool
Expand All @@ -71,6 +73,7 @@ func TestNew(t *testing.T) {
repo: testRepo,
resultsFormat: "sarif",
resultsFile: testResultsFile,
fileMode: options.FileModeArchive,
want: fields{
EnableSarif: true,
Format: formatSarif,
Expand All @@ -80,6 +83,7 @@ func TestNew(t *testing.T) {
LogLevel: options.DefaultLogLevel,
Repo: testRepo,
ShowDetails: true,
FileMode: options.FileModeArchive,
},
wantErr: false,
},
Expand All @@ -91,6 +95,7 @@ func TestNew(t *testing.T) {
repo: testRepo,
resultsFormat: "json",
resultsFile: testResultsFile,
fileMode: options.FileModeArchive,
want: fields{
EnableSarif: true,
Format: options.FormatJSON,
Expand All @@ -99,6 +104,29 @@ func TestNew(t *testing.T) {
LogLevel: options.DefaultLogLevel,
Repo: testRepo,
ShowDetails: true,
FileMode: options.FileModeArchive,
},
wantErr: false,
},
{
name: "SuccessFileModeGit",
githubEventPath: githubEventPathNonFork,
githubEventName: pushEvent,
githubRef: "refs/heads/main",
repo: testRepo,
resultsFormat: "sarif",
resultsFile: testResultsFile,
fileMode: options.FileModeGit,
want: fields{
EnableSarif: true,
Format: formatSarif,
PolicyFile: defaultScorecardPolicyFile,
ResultsFile: testResultsFile,
Commit: options.DefaultCommit,
LogLevel: options.DefaultLogLevel,
Repo: testRepo,
ShowDetails: true,
FileMode: options.FileModeGit,
},
wantErr: false,
},
Expand All @@ -110,6 +138,7 @@ func TestNew(t *testing.T) {
repo: testRepo,
resultsFormat: "json",
resultsFile: testResultsFile,
fileMode: options.FileModeArchive,
want: fields{
EnableSarif: true,
Format: options.FormatJSON,
Expand All @@ -118,6 +147,7 @@ func TestNew(t *testing.T) {
LogLevel: options.DefaultLogLevel,
Local: ".",
ShowDetails: true,
FileMode: options.FileModeArchive,
},
wantErr: false,
},
Expand All @@ -129,6 +159,7 @@ func TestNew(t *testing.T) {
repo: testRepo,
resultsFormat: "json",
resultsFile: testResultsFile,
fileMode: options.FileModeArchive,
want: fields{
EnableSarif: true,
Format: options.FormatJSON,
Expand All @@ -137,6 +168,7 @@ func TestNew(t *testing.T) {
LogLevel: options.DefaultLogLevel,
Repo: testRepo,
ShowDetails: true,
FileMode: options.FileModeArchive,
},
wantErr: false,
},
Expand All @@ -148,6 +180,7 @@ func TestNew(t *testing.T) {
repo: testRepo,
resultsFormat: "sarif",
resultsFile: testResultsFile,
fileMode: options.FileModeArchive,
want: fields{
EnableSarif: true,
Format: formatSarif,
Expand All @@ -157,6 +190,7 @@ func TestNew(t *testing.T) {
LogLevel: options.DefaultLogLevel,
Repo: testRepo,
ShowDetails: true,
FileMode: options.FileModeArchive,
},
unsetToken: true,
wantErr: true,
Expand All @@ -166,13 +200,15 @@ func TestNew(t *testing.T) {
githubEventPath: githubEventPathNonFork,
githubEventName: pushEvent,
githubRef: "refs/heads/main",
fileMode: options.FileModeArchive,
want: fields{
EnableSarif: true,
Format: formatSarif,
PolicyFile: defaultScorecardPolicyFile,
Commit: options.DefaultCommit,
LogLevel: options.DefaultLogLevel,
ShowDetails: true,
FileMode: options.FileModeArchive,
},
unsetResultsPath: true,
wantErr: true,
Expand All @@ -183,6 +219,7 @@ func TestNew(t *testing.T) {
githubEventName: pushEvent,
githubRef: "refs/heads/main",
resultsFile: "",
fileMode: options.FileModeArchive,
want: fields{
EnableSarif: true,
Format: formatSarif,
Expand All @@ -191,6 +228,7 @@ func TestNew(t *testing.T) {
Commit: options.DefaultCommit,
LogLevel: options.DefaultLogLevel,
ShowDetails: true,
FileMode: options.FileModeArchive,
},
wantErr: true,
},
Expand All @@ -202,6 +240,7 @@ func TestNew(t *testing.T) {
repo: testRepo,
resultsFormat: "sarif",
resultsFile: testResultsFile,
fileMode: options.FileModeArchive,
want: fields{
EnableSarif: true,
Format: formatSarif,
Expand All @@ -211,6 +250,7 @@ func TestNew(t *testing.T) {
LogLevel: options.DefaultLogLevel,
Repo: testRepo,
ShowDetails: true,
FileMode: options.FileModeArchive,
},
wantErr: true,
},
Expand Down Expand Up @@ -243,6 +283,8 @@ func TestNew(t *testing.T) {
os.Setenv(EnvInputResultsFormat, tt.resultsFormat)
defer os.Unsetenv(EnvInputResultsFormat)

t.Setenv(EnvInputFileMode, tt.fileMode)

if tt.unsetResultsPath {
os.Unsetenv(EnvInputResultsFile)
} else {
Expand All @@ -263,6 +305,7 @@ func TestNew(t *testing.T) {
Local: scOpts.Local,
ChecksToRun: scOpts.ChecksToRun,
ShowDetails: scOpts.ShowDetails,
FileMode: opts.InputFileMode,
}

if err != nil {
Expand Down
Loading