Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Don't save SecurityCommandResults obj as a file #256

Merged
merged 1 commit into from
Dec 15, 2024

Conversation

attiasas
Copy link
Contributor

@attiasas attiasas commented Dec 1, 2024

  • The pull request is targeting the dev branch.
  • The code has been validated to compile successfully by running go vet ./....
  • The code has been formatted properly using go fmt ./....
  • All static analysis checks passed.
  • All tests have passed. If this feature is not already covered by the tests, new tests have been added.
  • Updated the Contributing page / ReadMe page / CI Workflow files if needed.
  • All changes are detailed at the description. if not already covered at JFrog Documentation, new documentation have been added.

We used to save full scan results if we run a security command in table format.
The object that we saved could be changed in future versions. this PR removes saving this object, it will only log the object in DEBUG log

@attiasas attiasas added ignore for release Automatically generated release notes safe to test Approve running integration tests on a pull request labels Dec 1, 2024
@attiasas attiasas requested a review from eyalk007 December 1, 2024 13:21
@github-actions github-actions bot removed the safe to test Approve running integration tests on a pull request label Dec 1, 2024
Copy link

github-actions bot commented Dec 1, 2024

👍 Frogbot scanned this pull request and did not find any new security issues.


Copy link

github-actions bot commented Dec 1, 2024

Merging this branch will not change overall coverage

Impacted Packages Coverage Δ 🤖
github.com/jfrog/jfrog-cli-security/utils/results/output 0.00% (ø)

Coverage by file

Changed files (no unit tests)

Changed File Coverage Δ Total Covered Missed 🤖
github.com/jfrog/jfrog-cli-security/utils/results/output/resultwriter.go 0.00% (ø) 0 0 0

Please note that the "Total", "Covered", and "Missed" counts above refer to code statements instead of lines of code. The value in brackets refers to the test coverage of that file in the old version of the code.

Copy link
Contributor

@eyalk007 eyalk007 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks good.
Just make sure with the PM that it is in fact ignore for release

@attiasas attiasas merged commit 857bca8 into jfrog:dev Dec 15, 2024
50 of 53 checks passed
@attiasas attiasas deleted the remove_save_full_result_obj branch December 15, 2024 09:22
@alexanderjohn
Copy link

There are teams out there that relied on that output json file and with this code removal, the scan task now needs to run twice. One for output, and one for json output.

The previous change to include CI=false flag also negatively impacted our workflow. That one was however a less invasive change.

@ns-dfarino
Copy link

We also had tooling that depended on that file being written.

I'd like to have the option to re-enable the previous behavior.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
ignore for release Automatically generated release notes
Projects
None yet
Development

Successfully merging this pull request may close these issues.

5 participants