mirror of
https://github.com/ossf/scorecard.git
synced 2024-09-17 11:57:12 +03:00
update (#1926)
This commit is contained in:
parent
399d9974e4
commit
af7f865b9d
@ -332,13 +332,13 @@ type CIIBestPracticesData struct {
|
||||
}
|
||||
|
||||
// DangerousWorkflowType represents a type of dangerous workflow.
|
||||
type DangerousWorkflowType int
|
||||
type DangerousWorkflowType string
|
||||
|
||||
const (
|
||||
// DangerousWorkflowScriptInjection represents a script injection.
|
||||
DangerousWorkflowScriptInjection DangerousWorkflowType = iota
|
||||
DangerousWorkflowScriptInjection DangerousWorkflowType = "scriptInjection"
|
||||
// DangerousWorkflowUntrustedCheckout represents an untrusted checkout.
|
||||
DangerousWorkflowUntrustedCheckout
|
||||
DangerousWorkflowUntrustedCheckout DangerousWorkflowType = "untrustedCheckout"
|
||||
)
|
||||
|
||||
// DangerousWorkflowData contains raw results
|
||||
@ -350,8 +350,8 @@ type DangerousWorkflowData struct {
|
||||
// DangerousWorkflow represents a dangerous workflow.
|
||||
type DangerousWorkflow struct {
|
||||
Job *WorkflowJob
|
||||
File File
|
||||
Type DangerousWorkflowType
|
||||
File File
|
||||
}
|
||||
|
||||
// WorkflowJob reprresents a workflow job.
|
||||
|
@ -16,7 +16,6 @@ package pkg
|
||||
|
||||
import (
|
||||
"encoding/json"
|
||||
"errors"
|
||||
"fmt"
|
||||
"io"
|
||||
"time"
|
||||
@ -28,8 +27,6 @@ import (
|
||||
// TODO: add a "check" field to all results so that they can be linked to a check.
|
||||
// TODO(#1874): Add a severity field in all results.
|
||||
|
||||
var errorInvalidType = errors.New("invalid type")
|
||||
|
||||
// Flat JSON structure to hold raw results.
|
||||
type jsonScorecardRawResult struct {
|
||||
Date string `json:"date"`
|
||||
@ -167,13 +164,6 @@ type jsonLicense struct {
|
||||
// TODO: add fields, like type of license, etc.
|
||||
}
|
||||
|
||||
type dangerousPatternType string
|
||||
|
||||
const (
|
||||
patternUntrustedCheckout dangerousPatternType = "untrustedCheckout"
|
||||
patternScriptInjection dangerousPatternType = "scriptInjection"
|
||||
)
|
||||
|
||||
type jsonWorkflow struct {
|
||||
Job *jsonWorkflowJob `json:"job"`
|
||||
File *jsonFile `json:"file"`
|
||||
@ -242,6 +232,7 @@ func (r *jsonScorecardRawResult) addFuzzingRawResults(fd *checker.FuzzingData) e
|
||||
return nil
|
||||
}
|
||||
|
||||
//nolint:unparam
|
||||
func (r *jsonScorecardRawResult) addDangerousWorkflowRawResults(df *checker.DangerousWorkflowData) error {
|
||||
r.Results.Workflows = []jsonWorkflow{}
|
||||
for _, e := range df.Workflows {
|
||||
@ -250,6 +241,7 @@ func (r *jsonScorecardRawResult) addDangerousWorkflowRawResults(df *checker.Dang
|
||||
Path: e.File.Path,
|
||||
Offset: int(e.File.Offset),
|
||||
},
|
||||
Type: string(e.Type),
|
||||
}
|
||||
if e.File.Snippet != "" {
|
||||
v.File.Snippet = &e.File.Snippet
|
||||
@ -261,15 +253,6 @@ func (r *jsonScorecardRawResult) addDangerousWorkflowRawResults(df *checker.Dang
|
||||
}
|
||||
}
|
||||
|
||||
switch e.Type {
|
||||
case checker.DangerousWorkflowUntrustedCheckout:
|
||||
v.Type = string(patternUntrustedCheckout)
|
||||
case checker.DangerousWorkflowScriptInjection:
|
||||
v.Type = string(patternScriptInjection)
|
||||
default:
|
||||
return fmt.Errorf("%w: %d", errorInvalidType, e.Type)
|
||||
}
|
||||
|
||||
r.Results.Workflows = append(r.Results.Workflows, v)
|
||||
}
|
||||
|
||||
|
Loading…
Reference in New Issue
Block a user