Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

poutine 0.12.0 #175638

Merged
merged 2 commits into from
Jun 26, 2024
Merged

poutine 0.12.0 #175638

merged 2 commits into from
Jun 26, 2024

Conversation

BrewTestBot
Copy link
Member

Created by brew bump


Created with brew bump-formula-pr.

release notes
# Changelog for `poutine` v0.12.0 🚀

New Features 🌟

  • Quiet Mode: Added a new --quiet option to minimize output verbosity during scans, helping streamline outputs for automated processes. (#134)
  • Security Rule: Introduced the unverified_script_exec rule to detect potentially unsafe script executions in CI environments. (#129)

Improvements 🔧

  • Custom References: Enhanced the analyze_repo command to accept custom references, enabling more precise analysis across different repo states. (#131)
  • Homebrew Integration: Updated documentation to refer to the new Homebrew core formula, simplifying installation processes. (#124)
  • Open Policy Agent (OPA): Exposed new JSON marshalling options in OPA, enhancing flexibility in policy definitions. (#133)

Fixes 🛠️

  • Dependency Handling: Improved error avoidance by preventing a second Rego compilation during JSON format operations. (#132)

Dependency Updates ⬆️

  • Retryable HTTP: Bumped github.com/hashicorp/go-retryablehttp to leverage enhancements in retry logic and error handling. (#135)

Release process changes 🔧

  • Release Process: Updated .goreleaser.yaml and removed reference to local tap. (#136), (#128)

Contributions 🤝

  • Thanks to all contributors for continuing to improve poutine, ensuring it remains a robust tool for securing CI pipelines.

Full Changelog 📜

For a detailed diff of everything new and updated, see the full changelog.

@github-actions github-actions bot added go Go use is a significant feature of the PR or issue bump-formula-pr PR was created using `brew bump-formula-pr` labels Jun 26, 2024
@fproulx-boostsecurity
Copy link
Contributor

That's strange @chenrui333. I know the delta of changes we did boostsecurityio/poutine@v0.11.0...v0.12.0 and our test suite passes, I just test locally the same command as in the test :-/ I'm puzzled.

@fproulx-boostsecurity
Copy link
Contributor

Looks like it's a bug in our code... probably will need to call 0.12.0 dead on arrival and cut 0.13.0. I'm checking with my colleagues....

@chenrui333
Copy link
Member

yeah, sounds good, gonna rerun across the board to see how it looks like

@chenrui333 chenrui333 added the CI-no-fail-fast Continue CI tests despite failing GitHub Actions matrix builds. label Jun 26, 2024
poutine: update test

Signed-off-by: Rui Chen <[email protected]>
@chenrui333 chenrui333 force-pushed the bump-poutine-0.12.0 branch from a0727d3 to 6203355 Compare June 26, 2024 03:23
@chenrui333
Copy link
Member

it is because of missing config file.

@chenrui333 chenrui333 removed the CI-no-fail-fast Continue CI tests despite failing GitHub Actions matrix builds. label Jun 26, 2024
@chenrui333 chenrui333 requested a review from a team June 26, 2024 11:50
Copy link
Contributor

🤖 An automated task has requested bottles to be published to this PR.

@github-actions github-actions bot added the CI-published-bottle-commits The commits for the built bottles have been pushed to the PR branch. label Jun 26, 2024
@BrewTestBot BrewTestBot enabled auto-merge June 26, 2024 12:23
@BrewTestBot BrewTestBot added this pull request to the merge queue Jun 26, 2024
Merged via the queue into master with commit 3acb71a Jun 26, 2024
14 checks passed
@BrewTestBot BrewTestBot deleted the bump-poutine-0.12.0 branch June 26, 2024 12:29
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
bump-formula-pr PR was created using `brew bump-formula-pr` CI-published-bottle-commits The commits for the built bottles have been pushed to the PR branch. go Go use is a significant feature of the PR or issue
Projects
None yet
Development

Successfully merging this pull request may close these issues.

5 participants