From a516d096094597efc8148327cb1e74712a88556b Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Fran=C3=A7ois=20Chastanet?= Date: Thu, 7 Dec 2023 21:59:05 +0100 Subject: [PATCH] fixed megalinter reported issues --- .checkov.yml | 2 + .cspell.json | 15 ++++++- .cspell/bash.txt | 4 ++ .cspell/loremIpsum.txt | 40 +++++++++++++++++++ .github/workflows/docsify-gh-pages.yml | 1 + .github/workflows/lint-test.yml | 1 + .github/workflows/precommit-autoupdate.yml | 1 + .../set-github-status-on-pr-approved.yml | 1 + .lycheeignore | 15 +++++++ .mega-linter.yml | 8 +--- kics.config | 2 + src/_binaries/DbImport/dbImport.bats | 1 - trivy.yaml | 5 +++ 13 files changed, 88 insertions(+), 8 deletions(-) create mode 100644 .checkov.yml create mode 100644 .cspell/loremIpsum.txt create mode 100644 .lycheeignore create mode 100644 kics.config create mode 100644 trivy.yaml diff --git a/.checkov.yml b/.checkov.yml new file mode 100644 index 00000000..f0bf6caf --- /dev/null +++ b/.checkov.yml @@ -0,0 +1,2 @@ +skip-path: + - vendor diff --git a/.cspell.json b/.cspell.json index e0c72000..b74bbc80 100644 --- a/.cspell.json +++ b/.cspell.json @@ -27,19 +27,32 @@ "words": ["megalinter", "oxsecurity"], "dictionaryDefinitions": [ {"name": "bashCustom", "path": ".cspell/bash.txt"}, + {"name": "loremIpsum", "path": ".cspell/loremIpsum.txt"}, {"name": "config", "path": ".cspell/config.txt"}, {"name": "softwares", "path": ".cspell/softwares.txt"}, {"name": "readme", "path": ".cspell/readme.txt"}, {"name": "dirColors", "path": ".cspell/dirColors.txt"}, {"name": "plantUml", "path": ".cspell/plantUml.txt"} ], - "dictionaries": ["bash", "bashCustom", "config", "softwares", "plantUml"], + "dictionaries": [ + "bash", + "bashCustom", + "config", + "softwares", + "plantUml", + "loremIpsum" + ], "languageSettings": [ { "languageId": "dirColors", "locale": "*", "dictionaries": ["dirColors"] }, + { + "languageId": "loremIpsum", + "locale": "*", + "dictionaries": ["loremIpsum"] + }, { "languageId": "bashCustom", "locale": "*", diff --git a/.cspell/bash.txt b/.cspell/bash.txt index 9fe0c70f..04d67560 100644 --- a/.cspell/bash.txt +++ b/.cspell/bash.txt @@ -118,3 +118,7 @@ ppassword DELIMS Facadesh Scriptsh +noargs +exitcode +Datash +installsh diff --git a/.cspell/loremIpsum.txt b/.cspell/loremIpsum.txt new file mode 100644 index 00000000..1419caab --- /dev/null +++ b/.cspell/loremIpsum.txt @@ -0,0 +1,40 @@ +Lorem +ipsum +dolor +sit +amet +consectetur +adipiscing +elit +Maecenas +vel +eros +id +ipsum +lobortis +cursus +id +dignissim +turpis +Nam +pretium +placerat +nulla +in +posuere +Mauris +libero +purus +aliquet +et +commodo +quis +semper +sit +amet +sapien +Curabitur +condimentum +finibus +abitur +fini diff --git a/.github/workflows/docsify-gh-pages.yml b/.github/workflows/docsify-gh-pages.yml index ce9005ba..7c786cba 100644 --- a/.github/workflows/docsify-gh-pages.yml +++ b/.github/workflows/docsify-gh-pages.yml @@ -1,4 +1,5 @@ --- +# kics-scan disable=555ab8f9-2001-455e-a077-f2d0f41e2fb9 # build and deploy Docsify site to GitHub Pages name: Deploy Docsify diff --git a/.github/workflows/lint-test.yml b/.github/workflows/lint-test.yml index 46e17bd8..07b508c9 100644 --- a/.github/workflows/lint-test.yml +++ b/.github/workflows/lint-test.yml @@ -1,4 +1,5 @@ --- +# kics-scan disable=555ab8f9-2001-455e-a077-f2d0f41e2fb9 # Lint the code base and launch unit test at each push or pull request name: Lint and test on: # yamllint disable-line rule:truthy diff --git a/.github/workflows/precommit-autoupdate.yml b/.github/workflows/precommit-autoupdate.yml index 57ccc591..e66e4db0 100644 --- a/.github/workflows/precommit-autoupdate.yml +++ b/.github/workflows/precommit-autoupdate.yml @@ -1,4 +1,5 @@ --- +# kics-scan disable=555ab8f9-2001-455e-a077-f2d0f41e2fb9 # Check if precommit packages need to be updated and create PR if this is the case name: Pre-commit auto-update on: diff --git a/.github/workflows/set-github-status-on-pr-approved.yml b/.github/workflows/set-github-status-on-pr-approved.yml index d732c3a1..fa00d283 100644 --- a/.github/workflows/set-github-status-on-pr-approved.yml +++ b/.github/workflows/set-github-status-on-pr-approved.yml @@ -1,4 +1,5 @@ --- +# kics-scan disable=555ab8f9-2001-455e-a077-f2d0f41e2fb9 # set git commit status when PR is approved name: Set PR approved git status on: diff --git a/.lycheeignore b/.lycheeignore new file mode 100644 index 00000000..2b8a17b1 --- /dev/null +++ b/.lycheeignore @@ -0,0 +1,15 @@ +http://localhost* +file://pages/Commands.md +s3://s3server/exports +https://github.com/sharkdp/fd/releases/download/v@version@/fd_@version@_amd64.deb* +https://github.com/sharkdp/bat/releases/download/v@version@/bat_@version@_amd64.deb* +https://github.com/koalaman/shellcheck/releases/download/v@version@/shellcheck-v@version@.linux.x86_64.tar.xz* +https://github.com/hadolint/hadolint/releases/download/v@version@/hadolint-Linux-x86_64* +https://github.com/kubernetes-sigs/kind/releases/download/v@version@/kind-linux-amd64* +https://github.com/Blacksmoke16/oq/releases/download/v@version@/oq-v@version@-/* +https://github.com/kubernetes/minikube/releases/download/v@version@/minikube-linux-amd64* +https://github.com/docker/compose/releases/download/v@version@/docker-compose* +https://github.com/plantuml/plantuml/releases/download/v@version@/plantuml-@version@.jar* +https://github.com/docker/docker-credential-helpers/releases/download/v@version@/docker-credential-wincred-v@version@.windows* +https://github.com/Versent/saml2aws/releases/download/v@version@/saml2aws_@version@_linux_amd64.tar.gz +https://github.com/fchastanet/bash-tools/tree/master/src/_binaries* diff --git a/.mega-linter.yml b/.mega-linter.yml index f6b0033e..b1f13524 100644 --- a/.mega-linter.yml +++ b/.mega-linter.yml @@ -1,6 +1,6 @@ --- # Configuration file for MegaLinter -# See all available variables at https://oxsecurity.github.io/megalinter/configuration/ and in linters documentation +# See all available variables at https://megalinter.io/latest/configuration/ and in linters documentation APPLY_FIXES: all # all, none, or list of linter keys # ENABLE: # If you use ENABLE variable, all other languages/formats/tooling-formats will be disabled by default @@ -95,11 +95,7 @@ JAVASCRIPT_DEFAULT_STYLE: prettier JAVASCRIPT_ES_CONFIG_FILE: .eslintrc.js JAVASCRIPT_ES_FILTER_REGEX_EXCLUDE: (report/) -JSON_JSONLINT_FILTER_REGEX_EXCLUDE: | - (?x)( - ^\.vscode/(settings|launch)\.json| - ^conf/\.vscode/settings\.json - ) +JSON_JSONLINT_FILTER_REGEX_EXCLUDE: (.vscode/) MARKDOWN_MARKDOWN_LINK_CHECK_FILTER_REGEX_EXCLUDE: (report) diff --git a/kics.config b/kics.config new file mode 100644 index 00000000..07532ee4 --- /dev/null +++ b/kics.config @@ -0,0 +1,2 @@ +exclude-paths: + - "vendor/" diff --git a/src/_binaries/DbImport/dbImport.bats b/src/_binaries/DbImport/dbImport.bats index c8b72c00..ab293fc8 100755 --- a/src/_binaries/DbImport/dbImport.bats +++ b/src/_binaries/DbImport/dbImport.bats @@ -173,7 +173,6 @@ function Database::dbImport::remote_db_fully_functional_from_mysql { #@test export BASH_FRAMEWORK_ENV_FILEPATH="${BATS_TEST_DIRNAME}/testsData/.env" run "${binDir}/dbImport" --verbose -f default.local fromDb toDb 2>&1 - unstub_all assert_output --partial "Import database duration : " assert_output --partial "begin insert emptyTable" assert_output --partial "begin insert dataTable" diff --git a/trivy.yaml b/trivy.yaml new file mode 100644 index 00000000..d9f30ab7 --- /dev/null +++ b/trivy.yaml @@ -0,0 +1,5 @@ +scan: + # Same as '--skip-dirs' + # Default is empty + skip-dirs: + - vendor/