Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package gosec for openSUSE:Factory checked in at 2026-03-04 21:07:43 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/gosec (Old) and /work/SRC/openSUSE:Factory/.gosec.new.561 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "gosec" Wed Mar 4 21:07:43 2026 rev:32 rq:1336200 version:2.24.7 Changes: -------- --- /work/SRC/openSUSE:Factory/gosec/gosec.changes 2026-02-27 17:14:26.351375916 +0100 +++ /work/SRC/openSUSE:Factory/.gosec.new.561/gosec.changes 2026-03-04 21:08:21.976254114 +0100 @@ -1,0 +2,23 @@ +Mon Mar 02 07:33:42 UTC 2026 - Felix Niederwanger <[email protected]> + +- Update to version 2.24.7: + * Ignore nosec comments in action integration workflow to generate some warnings (#1573) + * Add a workflow for action integration test (#1571) + * fix(sarif): avoid invalid null relationships in SARIF output (#1569) + * chore: migrate gosec container image references to GHCR (#1567) + * Update gorelease to use the latest cosign bundle argument (#1565) + * Migrate goreleaser to use the proper cosign arguments (#1564) + * Update the cosing to version v3.0.5 (#1563) + * fix(release): use existing cosign-installer action version (#1562) + * chore(prompts): add skill and prompt to update supported Go versions (#1561) + * chore(prompts): add action version update skill and prompt (#1560) + * fix(analyzers): avoid SSA dependency cycle blowups in issue #1555 paths (#1559) + * Add a SKILL and PROMPT for fixing a GitHub issue (#1558) + * Add a SKILL and PROMPT for generating rules with AI (#1557) + * fix(G120): prevent hang-like analysis blowup in wrapper protection checks (#1556) + * fix(G705): eliminate false positive when guard type cannot be resolved (#1554) + * Remove gcmurphy from funding list + * Extend the release workflow to push the container images also to GHCR + * Update to gosec to v2.24.0 in the action and fix the docker image signing (#1552) + +------------------------------------------------------------------- Old: ---- gosec-2.24.0.obscpio New: ---- gosec-2.24.7.obscpio ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ gosec.spec ++++++ --- /var/tmp/diff_new_pack.hvwuZx/_old 2026-03-04 21:08:23.000296554 +0100 +++ /var/tmp/diff_new_pack.hvwuZx/_new 2026-03-04 21:08:23.000296554 +0100 @@ -17,7 +17,7 @@ Name: gosec -Version: 2.24.0 +Version: 2.24.7 Release: 0 Summary: CLI tool to scan the Go AST and SSA code representations for security problems License: Apache-2.0 ++++++ _service ++++++ --- /var/tmp/diff_new_pack.hvwuZx/_old 2026-03-04 21:08:23.052298709 +0100 +++ /var/tmp/diff_new_pack.hvwuZx/_new 2026-03-04 21:08:23.056298874 +0100 @@ -4,7 +4,7 @@ <param name="filename">gosec</param> <param name="url">https://github.com/securego/gosec.git</param> <param name="scm">git</param> - <param name="revision">v2.24.0</param> + <param name="revision">v2.24.7</param> <param name="match-tag">v*</param> <param name="versionformat">@PARENT_TAG@</param> <param name="versionrewrite-pattern">v(.*)</param> ++++++ _servicedata ++++++ --- /var/tmp/diff_new_pack.hvwuZx/_old 2026-03-04 21:08:23.084300035 +0100 +++ /var/tmp/diff_new_pack.hvwuZx/_new 2026-03-04 21:08:23.088300202 +0100 @@ -1,6 +1,6 @@ <servicedata> <service name="tar_scm"> <param name="url">https://github.com/securego/gosec.git</param> - <param name="changesrevision">271492bcd930ef72dfb9d00e5bb9544b3b407fb5</param></service></servicedata> + <param name="changesrevision">bb17e422fc34bf4c0a2e5cab9d07dc45a68c040c</param></service></servicedata> (No newline at EOF) ++++++ build.specials.obscpio ++++++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/.gitignore new/.gitignore --- old/.gitignore 1970-01-01 01:00:00.000000000 +0100 +++ new/.gitignore 2025-02-13 15:25:36.000000000 +0100 @@ -0,0 +1,3 @@ +.osc +/gosec +/gosec-*.*.*.tar.xz ++++++ gosec-2.24.0.obscpio -> gosec-2.24.7.obscpio ++++++ ++++ 4891 lines of diff (skipped) ++++++ gosec.obsinfo ++++++ --- /var/tmp/diff_new_pack.hvwuZx/_old 2026-03-04 21:08:23.616322084 +0100 +++ /var/tmp/diff_new_pack.hvwuZx/_new 2026-03-04 21:08:23.624322416 +0100 @@ -1,5 +1,5 @@ name: gosec -version: 2.24.0 -mtime: 1772189468 -commit: 271492bcd930ef72dfb9d00e5bb9544b3b407fb5 +version: 2.24.7 +mtime: 1772358177 +commit: bb17e422fc34bf4c0a2e5cab9d07dc45a68c040c ++++++ vendor.tar.xz ++++++
