Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(spark): pin osv-scanner to v.1.9.2 #324

Merged
merged 1 commit into from
Jan 31, 2025
Merged

chore(spark): pin osv-scanner to v.1.9.2 #324

merged 1 commit into from
Jan 31, 2025

Conversation

andrew-coleman
Copy link
Contributor

@andrew-coleman andrew-coleman commented Jan 31, 2025
edited
Loading

The ghcr.io/google/osv-scanner:latest docker image was updated to v2.0.0-beta1.
This breaks the build with the error:
Failed to parse SBOM "/bom.json" with error: could not determine extractor suitable to this file

This commit pins the image tag to last working release v1.9.2

@andrew-coleman andrew-coleman marked this pull request as draft January 31, 2025 09:27
@andrew-coleman andrew-coleman force-pushed the test branch 2 times, most recently from 32ad2fa to ba64206 Compare January 31, 2025 10:04
@andrew-coleman andrew-coleman marked this pull request as ready for review January 31, 2025 10:07
@andrew-coleman andrew-coleman changed the title chore(spark): trigger PR build chore(spark): pin osv-scanner to v.1.9.2 Jan 31, 2025
@andrew-coleman andrew-coleman marked this pull request as draft January 31, 2025 14:49
@andrew-coleman andrew-coleman force-pushed the test branch 4 times, most recently from 235875e to ef13871 Compare January 31, 2025 15:31
@andrew-coleman
chore: pin osv-scanner
0f3f705 
The `ghcr.io/google/osv-scanner:latest` docker image was updated to `v2.0.0-beta1`.
This breaks the build with the error:
`Failed to parse SBOM "/bom.json" with error: could not determine extractor suitable to this file`

This commit pins the image tag to last working release `v1.9.2`

Signed-off-by: Andrew Coleman <andrew_coleman@uk.ibm.com>
andrew-coleman
andrew-coleman commented Jan 31, 2025
View reviewed changes
.github/workflows/pr.yml
@@ -130,7 +130,9 @@ jobs:
- name: Install GraalVM native image
run: gu install native-image
- name: Build with Gradle
run: gradle nativeImage
run: |
ln -s isthmus-cli/proxies.json
Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The macos builder is failing because it is looking in the wrong directory for this file. Not sure why, but to work around the problem, I've added a symlink to where it's looking. Just to get the build going again pending a 'proper' fix

@andrew-coleman andrew-coleman marked this pull request as ready for review January 31, 2025 16:08
@EpsilonPrime EpsilonPrime merged commit 2c53e66 into substrait-io:main Jan 31, 2025
13 checks passed
@andrew-coleman andrew-coleman deleted the test branch February 3, 2025 07:30
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@EpsilonPrime EpsilonPrime EpsilonPrime approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@andrew-coleman @EpsilonPrime