Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package govulncheck for openSUSE:Factory checked in at 2024-07-17 15:15:07 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/govulncheck (Old) and /work/SRC/openSUSE:Factory/.govulncheck.new.17339 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "govulncheck" Wed Jul 17 15:15:07 2024 rev:9 rq:1188076 version:1.1.3 Changes: -------- --- /work/SRC/openSUSE:Factory/govulncheck/govulncheck.changes 2024-06-07 15:04:42.978722566 +0200 +++ /work/SRC/openSUSE:Factory/.govulncheck.new.17339/govulncheck.changes 2024-07-17 15:15:55.411764800 +0200 @@ -1,0 +2,35 @@ +Wed Jul 17 03:29:15 UTC 2024 - Jeff Kowalczyk <jkowalc...@suse.com> + +- Update to version 1.1.3: + * internal/openvex: update handler test + * LICENSE: update per Google Legal + * internal/vulncheck: add warning message for ancient binaries + * all: remove build restrictions requiring go1.18 + * cmd/govulncheck: clarify unsafe/reflection limitations + * cmd/govulncheck: update docs for old Go binaries + * internal/openvex: omit vulns with no findings + * cmd/govulncheck/integration: adjust k8s expectations + * all: remove skipIfShort + * all: remove unnecessary test lines for staticcheck + * internal/vulncheck: avoid recomputing if module is known + * go.mod: update golang.org/x dependencies + * internal/buildinfo: add support for ancient Go binaries + * internal/goversion: comment out a printing line + * internal/goversion: add package as copy of rsc.io/goversion/version + * cmd/govulncheck: remove line about go version requirements + * internal/vulncheck: improve documentation + * internal/vulncheck: use module info when looking for symbols + * internal/vulncheck: handle symbols ending with . + * cmd/govulncheck/integration: make expectation check more robust + * all: require go1.21 +- Packaging improvements: + * Build PIE with pattern that may become recommended procedure: + %%ifnarch ppc64 GOFLAGS="-buildmode=pie" %%endif go build + A go toolchain buildmode default config would be preferable + but none exist at this time. + * Update to BuildRequires: golang(API) >= 1.21 matching go.mod + * Use name macro where applicable to normalize common lines + across Go app packages. Also makes renaming binary easier when + required to handle package name conflict. + +------------------------------------------------------------------- Old: ---- govulncheck-1.1.2.tar.gz New: ---- govulncheck-1.1.3.tar.gz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ govulncheck.spec ++++++ --- /var/tmp/diff_new_pack.2d3Jl9/_old 2024-07-17 15:15:55.935783988 +0200 +++ /var/tmp/diff_new_pack.2d3Jl9/_new 2024-07-17 15:15:55.935783988 +0200 @@ -17,7 +17,7 @@ Name: govulncheck -Version: 1.1.2 +Version: 1.1.3 Release: 0 Summary: CLI tool to report known CVE vulnerabilities in Go source code and binaries License: Apache-2.0 AND BSD-3-Clause @@ -25,7 +25,7 @@ URL: https://github.com/golang/vuln Source: %{name}-%{version}.tar.gz Source1: vendor.tar.gz -BuildRequires: golang(API) >= 1.18 +BuildRequires: golang(API) >= 1.21 %description govulncheck is a CLI tool to report known vulnerabilities that affect Go code. It uses static analysis of source code or a binary's symbol table to narrow down reports to only those that could affect the application. @@ -36,9 +36,10 @@ %autosetup -a 1 %build -go build \ - -buildmode=pie \ - ./cmd/govulncheck +%ifnarch ppc64 +export GOFLAGS="-buildmode=pie" +%endif +go build ./cmd/%{name} %check # execute the binary as a basic check ++++++ _service ++++++ --- /var/tmp/diff_new_pack.2d3Jl9/_old 2024-07-17 15:15:55.971785306 +0200 +++ /var/tmp/diff_new_pack.2d3Jl9/_new 2024-07-17 15:15:55.975785453 +0200 @@ -3,7 +3,7 @@ <param name="url">https://github.com/golang/vuln.git</param> <param name="scm">git</param> <param name="exclude">.git</param> - <param name="revision">v1.1.2</param> + <param name="revision">v1.1.3</param> <param name="versionformat">@PARENT_TAG@</param> <param name="changesgenerate">enable</param> <param name="versionrewrite-pattern">v(.*)</param> ++++++ _servicedata ++++++ --- /var/tmp/diff_new_pack.2d3Jl9/_old 2024-07-17 15:15:55.995786184 +0200 +++ /var/tmp/diff_new_pack.2d3Jl9/_new 2024-07-17 15:15:55.999786331 +0200 @@ -1,6 +1,6 @@ <servicedata> <service name="tar_scm"> <param name="url">https://github.com/golang/vuln.git</param> - <param name="changesrevision">3740f5cb12a3f93b18dbe200c4bcb6256f8586e2</param></service></servicedata> + <param name="changesrevision">4ea4418106cea3bb2c9aa098527c924e9e1fbbb4</param></service></servicedata> (No newline at EOF) ++++++ govulncheck-1.1.2.tar.gz -> govulncheck-1.1.3.tar.gz ++++++ ++++ 1948 lines of diff (skipped) ++++++ vendor.tar.gz ++++++ ++++ 2107 lines of diff (skipped)
