Skip to content

fix: don't print vulnerable paths count for docker tests #252

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
karniwl merged 2 commits into from
Oct 23, 2018
Merged

fix: don't print vulnerable paths count for docker tests #252

karniwl merged 2 commits into from
Oct 23, 2018

Conversation

@karniwl
Copy link
Contributor

@karniwl karniwl commented Oct 21, 2018
edited
Loading

  • Ready for review
  • Follows CONTRIBUTING rules
  • Reviewed by Snyk internal team

What does this PR do?

Removes display of number of vulnerable paths for docker, since currently the count is inaccurate for several reasons:

  1. the trees are trimmed quite aggressively in snyk-docker-plugin to reduce size.
  2. for rpm & apk based images, we don't differentiate between packages installed manually vs. transitives that were installed automatically.

What are the relevant tickets?

Jira ticket SC-6459

@karniwl karniwl self-assigned this Oct 21, 2018
@CLAassistant
Copy link

CLAassistant commented Oct 21, 2018
edited
Loading

CLA assistant check
All committers have signed the CLA.

@michael-go
Copy link
Contributor

michael-go commented Oct 21, 2018
edited
Loading

this better be a fix: commit, rather than feat: .

and please note that the commit message appears later in the Release Notes (https://github.com/snyk/snyk/releases) so maybe reword with:
fix: don't print vulnerable paths count for docker tests

and we better give a reason in the PR body to why we do it. Maybe can just say it's because right now the count is not accurate for several reasons:

  1. the trees are trimmed quite aggressively in snyk-docker-plugin to reduce size
  2. for rpm & apk based images, we don't differentiate between packages installed manually vs. transitives that were installed automatically

darmalovan
darmalovan reviewed Oct 21, 2018
View reviewed changes
darmalovan
darmalovan reviewed Oct 21, 2018
View reviewed changes
@karniwl karniwl force-pushed the feat/rm-num-of-vuln-paths branch from a3d613a to 2aedc08 Compare October 22, 2018 11:18
@karniwl karniwl force-pushed the feat/rm-num-of-vuln-paths branch from 2aedc08 to eb06722 Compare October 22, 2018 11:22
@karniwl karniwl changed the title feat: remove number of vulnerable paths for docker fix: don't print vulnerable paths count for docker tests Oct 22, 2018
@karniwl karniwl merged commit be98a50 into master Oct 23, 2018
@karniwl karniwl deleted the feat/rm-num-of-vuln-paths branch October 23, 2018 09:47
@snyksec
Copy link

snyksec commented Oct 23, 2018

🎉 This PR is included in version 1.104.2 🎉

The release is available on:

Your semantic-release bot 📦🚀

@jonesjim jonesjim mentioned this pull request Oct 1, 2022
Open
@florinMiro florinMiro mentioned this pull request Jan 20, 2023
Closed
@snyk-bot snyk-bot mentioned this pull request Feb 11, 2023
Open
@joeshope joeshope mentioned this pull request Oct 10, 2024
Open
@snyk-io snyk-io bot mentioned this pull request Oct 10, 2024
Open
@matanel-snyk matanel-snyk mentioned this pull request Oct 10, 2024
Open
@claireksnyk claireksnyk mentioned this pull request Oct 10, 2024
Open
@AliceSof AliceSof mentioned this pull request Oct 11, 2024
Open
@nkasmarsik20 nkasmarsik20 mentioned this pull request Oct 11, 2024
Open
@cvaidas cvaidas mentioned this pull request Oct 11, 2024
Open
@matrix-compute matrix-compute mentioned this pull request Oct 12, 2024
Open
@McTearLabs McTearLabs mentioned this pull request Oct 12, 2024
Open
@AliceSof AliceSof mentioned this pull request Oct 15, 2024
Open
@yaseenaljamal yaseenaljamal mentioned this pull request Oct 16, 2024
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@michael-go michael-go Awaiting requested review from michael-go

@orkamara orkamara Awaiting requested review from orkamara

1 more reviewer

@darmalovan darmalovan darmalovan approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

@karniwl karniwl

Labels

released

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

6 participants

@karniwl @CLAassistant @michael-go @snyksec @darmalovan