Skip to content

ci: clean up OSV workflows #927

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 2 commits into
base: main
Choose a base branch
from
Open

ci: clean up OSV workflows #927

wants to merge 2 commits into from

Conversation

@bepri
Copy link
Member

@bepri bepri commented Jul 23, 2025

  • Have you followed the guidelines for contributing?
  • Have you signed the CLA?
  • Have you successfully run make lint && make test?

Fixes up the OSV scanner workflows moving forward by using the same arguments Snapcraft and Charmcraft use and removing a now-outdated config.

@bepri bepri self-assigned this Jul 23, 2025
@bepri bepri marked this pull request as ready for review July 23, 2025 22:29
@bepri bepri requested a review from tigarmo as a code owner July 23, 2025 22:29
@bepri bepri requested a review from a team July 23, 2025 22:29
upils
upils approved these changes Jul 24, 2025
View reviewed changes
Copy link
Contributor

@upils upils left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM.

Note: Looking at the logs, it seems that osv is still looking at requirements-noble.txt (see https://github.com/canonical/rockcraft/actions/runs/16480559838/job/46593493067?pr=927#step:6:11).
Also it appears we could maybe make the scanning faster (it is not really slow so that is a nitpick) by also excluding both tools/external and docs/sphinx-starter-pack submodules.

@bepri
Copy link
Member Author

bepri commented Jul 24, 2025

Interesting, it looks like this might've never worked because I can see it being scanned in Snapcraft as well: https://github.com/canonical/snapcraft/actions/runs/16484509318/job/46606446340#step:6:11

Looking at the workflow files though, I can't really tell why it wouldn't work. At least it isn't broken anymore, I guess?

lengau
lengau approved these changes Jul 24, 2025
View reviewed changes
Copy link
Collaborator

@lengau lengau left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks!

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@lengau lengau lengau approved these changes

@upils upils upils approved these changes

@tigarmo tigarmo Awaiting requested review from tigarmo tigarmo is a code owner

Assignees

@bepri bepri

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@bepri @lengau @upils