-
Notifications
You must be signed in to change notification settings - Fork 184
/
Copy pathMakefile
88 lines (75 loc) · 2.11 KB
/
Makefile
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
.DEFAULT_GOAL := test
.PHONY: test_gotest
test_gotest:
go clean -testcache
go test -timeout=0 ./...
.PHONY: checks
checks: check_tools
@echo Checking correct formatting of files
@FMTOUT=$$(go fmt ./...); \
if [ -z $$FMTOUT ]; then\
echo "go fmt: OK";\
else \
echo "go fmt: problems in files:";\
echo $$FMTOUT;\
false;\
fi
@if GOVETOUT=$$(go vet ./... 2>&1); then\
echo "go vet: OK";\
else \
echo "go vet: problems in files:";\
echo "$$GOVETOUT";\
false;\
fi
@GOIMPORTSOUT=$$(goimports -l .); \
if [ -z "$$GOIMPORTSOUT" ]; then\
echo "goimports: OK";\
else \
echo "goimports: problems in files:";\
echo "$$GOIMPORTSOUT";\
false;\
fi
@STATICCHECKOUT=$$(staticcheck -go 1.22 -checks all ./...); \
if [ -z "$$STATICCHECKOUT" ]; then\
echo "staticcheck: OK";\
else \
echo "staticcheck: problems in files:";\
echo "$$STATICCHECKOUT";\
false;\
fi
@GOVULNCHECKOUT=$$(govulncheck ./...); \
if echo "$$GOVULNCHECKOUT" | grep -q "No vulnerabilities found"; then\
echo "govulncheck: OK";\
else \
echo "govulncheck:" >&2;\
echo "$$GOVULNCHECKOUT" >&2;\
false;\
fi
# gosec rule G115: Is exluded because there are int->uin64 conversions
# and the rule currently contains false positives
@GOSECOUT=$$(gosec -quiet -exclude=G115 ./...); \
if [ -z "$$GOSECOUT" ]; then\
echo "gosec: OK (excluding G115)";\
else \
echo "gosec: problems in files:";\
echo "$$GOSECOUT";\
false;\
fi
@echo Checking all local changes are committed
go mod tidy
out=`git status --porcelain`; echo "$$out"; [ -z "$$out" ]
.PHONY: test
test: test_gotest
.PHONY: ci_test
ci_test: checks test_gotest
EXECUTABLES = goimports staticcheck govulncheck gosec
.PHONY: get_tools
get_tools:
go install golang.org/x/tools/cmd/goimports@latest
go install honnef.co/go/tools/cmd/[email protected]
go install golang.org/x/vuln/cmd/govulncheck@latest
go install github.com/securego/gosec/v2/cmd/gosec@latest
.PHONY: check_tools
check_tools:
@$(foreach exec,$(EXECUTABLES),\
$(if $(shell which $(exec)),true,$(error "$(exec) not found in PATH, consider running `make get_tools`.")))