Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package osv-scanner for openSUSE:Factory checked in at 2024-03-17 22:14:39 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/osv-scanner (Old) and /work/SRC/openSUSE:Factory/.osv-scanner.new.1905 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "osv-scanner" Sun Mar 17 22:14:39 2024 rev:17 rq:1158389 version:1.7.0 Changes: -------- --- /work/SRC/openSUSE:Factory/osv-scanner/osv-scanner.changes 2024-01-31 23:55:44.909315833 +0100 +++ /work/SRC/openSUSE:Factory/.osv-scanner.new.1905/osv-scanner.changes 2024-03-17 22:14:52.685913746 +0100 @@ -1,0 +2,67 @@ +Fri Mar 15 21:49:28 UTC 2024 - opensuse_buildserv...@ojkastl.de + +- BuildRequire go 1.21.8 to follow upstream +- Update to version 1.7.0: + * Update changelog for v1.7.0 (#843) + * Merge docs to main (#842) + * Replace stereoscope with using go-containerregistry directly + (#836) + * Rename relaxer and suggester (#839) + * Update deps (#841) + * Downgrade go.mod (#833) + * chore(deps): update workflows (#835) + * Add more guided remediation known issues re: vulnerabilitiy + counting (#840) + * Guided Remediation Docs (#827) + * test: automatically cleanup test zip server (#834) + * chore(deps): lock file maintenance (#822) + * fix(deps): update osv-scanner minor (#807) + * ci: remove unneeded `setup-go` step and pin + `actions/download-artifact` (#786) + * Dont traverse gitignored dirs for gitignore files (#797) + * test: make `createTestDir` a general test utility (#832) + * Maximum severity rating for each Group object in JSON output + (#805) + * Automated Updates: add a simple Maven registry API client + (#837) + * Automated Updates: only append dependencies with property to + original requirements (#823) + * chore(deps): update dependency github-pages to v231 (#821) + * chore(deps): update workflows to v4 (major) (#784) + * chore(deps): update workflows (#806) + * Added a switch for using cached local db in test to improve + speed (#826) + * Remove version from the binary name. (#831) + * Automated Updates: suggest property patches to update for Maven + (#824) + * refactor: replace usage of deprecated function (#829) + * chore: don't ignore `fixtures` directory (#825) + * Align GoVulncheck Go version with go.mod (#818) + * Guided Remediation: Compute Dev dependencies in in-place + parsing (#816) + * Automated Updates: add ManifestIO for Maven (#813) + * Update suggester package name (#817) + * Automated Updates: add version suggester for Maven (#815) + * Guided remediation: Interactive mode TUI (#811) + * Proof of Concept of container scanning (#808) + * Guided Remediation: non-interactive mode (#798) + * Update main with the new docs updates. (#810) + * Add user agent to deps.dev requests (#804) + * chore(deps): update golang:alpine docker digest to 8e96e6c + (#793) + * fix(deps): update osv-scanner minor (#794) + * chore(deps): update dependency github-pages to v230 (#796) + * chore(deps): update workflows (#795) + * Start setting up guided remediation subcommand (#792) + * Guided Remediation: Compute in-place updates (#789) + * Guided Remediation: Add `package-lock.json` LockfileIO (#785) + * add new spdx identifiers (#788) + * chore(deps-dev): Bump nokogiri from 1.15.5 to 1.16.2 in /docs + (#787) + * chore(deps): update workflows (#783) + * fix(deps): update osv-scanner minor (#782) + * Guided Remediation: add npm registry clients & `.npmrc` parsing + (#778) + * Fix tests (#780) + +------------------------------------------------------------------- Old: ---- osv-scanner-1.6.2.obscpio New: ---- osv-scanner-1.7.0.obscpio ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ osv-scanner.spec ++++++ --- /var/tmp/diff_new_pack.XQYhuJ/_old 2024-03-17 22:14:53.633948426 +0100 +++ /var/tmp/diff_new_pack.XQYhuJ/_new 2024-03-17 22:14:53.633948426 +0100 @@ -19,14 +19,14 @@ %define __arch_install_post export NO_BRP_STRIP_DEBUG=true Name: osv-scanner -Version: 1.6.2 +Version: 1.7.0 Release: 0 Summary: Vulnerability scanner written in Go License: Apache-2.0 URL: https://github.com/google/osv-scanner Source: osv-scanner-%{version}.tar.gz Source1: vendor.tar.gz -BuildRequires: go >= 1.19 +BuildRequires: go1.21 >= 1.21.8 %description Use OSV-Scanner to find existing vulnerabilities affecting your project's dependencies. ++++++ _service ++++++ --- /var/tmp/diff_new_pack.XQYhuJ/_old 2024-03-17 22:14:53.661949450 +0100 +++ /var/tmp/diff_new_pack.XQYhuJ/_new 2024-03-17 22:14:53.665949596 +0100 @@ -3,8 +3,8 @@ <param name="url">https://github.com/google/osv-scanner</param> <param name="scm">git</param> <param name="exclude">.git</param> - <param name="revision">v1.6.2</param> - <param name="match-tag">v1.6.2</param> + <param name="revision">v1.7.0</param> + <param name="match-tag">v1.7.0</param> <param name="versionformat">@PARENT_TAG@</param> <param name="changesgenerate">enable</param> <param name="versionrewrite-pattern">v(.*)</param> ++++++ _servicedata ++++++ --- /var/tmp/diff_new_pack.XQYhuJ/_old 2024-03-17 22:14:53.685950328 +0100 +++ /var/tmp/diff_new_pack.XQYhuJ/_new 2024-03-17 22:14:53.689950474 +0100 @@ -1,6 +1,6 @@ <servicedata> <service name="tar_scm"> <param name="url">https://github.com/google/osv-scanner</param> - <param name="changesrevision">5b4066c7351b045a433b1fe3554260c6f06b7237</param></service></servicedata> + <param name="changesrevision">037c3543ac60359190459b10fbb5331568b4c8f5</param></service></servicedata> (No newline at EOF) ++++++ osv-scanner-1.6.2.obscpio -> osv-scanner-1.7.0.obscpio ++++++ /work/SRC/openSUSE:Factory/osv-scanner/osv-scanner-1.6.2.obscpio /work/SRC/openSUSE:Factory/.osv-scanner.new.1905/osv-scanner-1.7.0.obscpio differ: char 49, line 1 ++++++ osv-scanner.obsinfo ++++++ --- /var/tmp/diff_new_pack.XQYhuJ/_old 2024-03-17 22:14:53.721951645 +0100 +++ /var/tmp/diff_new_pack.XQYhuJ/_new 2024-03-17 22:14:53.725951791 +0100 @@ -1,5 +1,5 @@ name: osv-scanner -version: 1.6.2 -mtime: 1706671865 -commit: 5b4066c7351b045a433b1fe3554260c6f06b7237 +version: 1.7.0 +mtime: 1709697778 +commit: 037c3543ac60359190459b10fbb5331568b4c8f5 ++++++ vendor.tar.gz ++++++ /work/SRC/openSUSE:Factory/osv-scanner/vendor.tar.gz /work/SRC/openSUSE:Factory/.osv-scanner.new.1905/vendor.tar.gz differ: char 5, line 1
