Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

csmock: implement --warning-rate-limit and --limit-msg-len #128

Merged
merged 4 commits into from
Oct 10, 2023
Merged

csmock: implement --warning-rate-limit and --limit-msg-len #128

merged 4 commits into from
Oct 10, 2023

Conversation

kdudka
Copy link
Member

@kdudka kdudka commented Oct 7, 2023

No description provided.

@kdudka kdudka requested a review from hanchuntao October 7, 2023 11:52
@kdudka kdudka self-assigned this Oct 7, 2023
github-advanced-security[bot]
github-advanced-security bot found potential problems Oct 7, 2023
View reviewed changes
py/csmock Fixed Show resolved Hide resolved
py/csmock Dismissed Show dismissed Hide dismissed
@kdudka kdudka changed the title Limit results csmock: implement --warning-rate-limit and --limit-msg-len Oct 7, 2023
kdudka added a commit to kdudka/csmock that referenced this pull request Oct 7, 2023
@kdudka
csmock --limit-msg-len: limit length of diagnostic messages
558ea1c 
... defaulting to 512 to avoid resource exhaustion on scans that
go wild.

Reproducer:
```
$ csmock -r rhel-7-x86_64 -f nss-util-3.90.0-1.el7_9.src.rpm -t gitleaks
```

Resolves: https://issues.redhat.com/browse/OSH-67
Closes: csutils#128
kdudka added a commit to kdudka/csmock that referenced this pull request Oct 7, 2023
@kdudka
csmock --limit-msg-len: limit length of diagnostic messages
c01f9d1 
... defaulting to 512 to avoid resource exhaustion on scans that
go wild.

Reproducer:
```
$ csmock -r rhel-7-x86_64 -f nss-util-3.90.0-1.el7_9.src.rpm -t gitleaks
```

Resolves: https://issues.redhat.com/browse/OSH-67
Closes: csutils#128
hanchuntao
hanchuntao reviewed Oct 8, 2023
View reviewed changes
py/csmock Show resolved Hide resolved
@hanchuntao
Copy link

LGTM

@hanchuntao hanchuntao self-requested a review October 9, 2023 05:48
kdudka added 4 commits October 10, 2023 10:37
@kdudka
csmock --embed-context: use f-strings to construct the filter command
818a181 
... and initialize `embed_context` in the `ScanProps` constructor
for consistency.  No change in behavior intended.

Related: https://issues.redhat.com/browse/OSH-67
@kdudka
csmock --warning-rate-limit: limit the amount of results
801cec2 
... defaulting to 1024 to avoid resource exhaustion on scans that
go wild.

Related: https://issues.redhat.com/browse/OSH-67
@kdudka
csmock: do not apply results limits twice
a108242 
If the `--embed-context` feature is enabled, available and successful,
there should be no reason to apply results limits again.  This is an
optimization that should not affect the results.

Related: https://issues.redhat.com/browse/OSH-67
@kdudka
csmock --limit-msg-len: limit length of diagnostic messages
e1a8936 
... defaulting to 512 to avoid resource exhaustion on scans that
go wild.

Reproducer:
```
$ csmock -r rhel-7-x86_64 -f nss-util-3.90.0-1.el7_9.src.rpm -t gitleaks
```

Resolves: https://issues.redhat.com/browse/OSH-67
Closes: csutils#128
@kdudka
Copy link
Member Author

kdudka commented Oct 10, 2023

@hanchuntao Thanks for review!

@kdudka kdudka merged commit e1a8936 into csutils:main Oct 10, 2023
2 of 42 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@hanchuntao hanchuntao hanchuntao approved these changes

Assignees

@kdudka kdudka

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@kdudka @hanchuntao