artin/sourcegraph
1
0
Fork 0
mirror of https://github.com/sourcegraph/sourcegraph.git synced 2026-02-06 19:21:50 +00:00
Code Issues Packages Projects Releases Wiki Activity
Code AI platform with Code Search & Cody
34,838 Commits 3,552 Branches 700 Tags 2.2 GiB
Go 59.6%
TypeScript 30.5%
Starlark 4%
SCSS 1.4%
PLpgSQL 1.4%
Other 2.7%
11e13d6583
Go to file
Keegan Carruthers-Smith 11e13d6583
gomod: update or vendor buildkit, docker, hostmatcher and saml to resolve CVEs (#60130) 
We had multiple CVEs reported for these dependencies. I don't think this
affected us in practice, but this is a step towards a clean scan from
trivy. I updated to the minimum version which supports the fix.

  go get github.com/moby/buildkit@v0.12.5
  go get github.com/docker/docker@v24.0.7
  go get -u github.com/crewjam/saml

In the case of code.gitea.io/gitea@v1.18.0/modules/hostmatcher we
couldn't update it due to lots of issues popping up in random
transitive dependencies. However, we don't depend on the whole gitea
project, rather just a tiny self contained package in it. So we vendor
it in.

Test Plan: CI and "trivy fs go.mod" reporting no issues.
2024-02-05 13:14:15 +02:00
.aspect Evaluation results snasphots (#58500) 2024-01-26 15:14:44 +00:00
.buildkite bazel: patches to allow use_default_shell_env for e2e testing (#59675) 2024-01-24 18:50:19 -08:00
.github More updates for deprecated src-cli command (#59633) 2024-01-18 09:52:42 +00:00
.vscode Remove App from codebase (#59115) 2023-12-21 01:07:05 +01:00
client Implement licensing changes for Sourcegraph 5.3 (#60046) 2024-02-05 11:58:58 +01:00
cmd gomod: update or vendor buildkit, docker, hostmatcher and saml to resolve CVEs (#60130) 2024-02-05 13:14:15 +02:00
dev gomod: update zoekt to fix several CVEs in dependencies (#60093) 2024-02-02 15:36:04 +00:00
doc gitserver: Remove CloneableLimiter (#59935) 2024-01-31 09:46:39 +01:00
docker-images highlighter: De-couple server code from highlighting (#60039) 2024-02-05 19:12:34 +08:00
internal gomod: update or vendor buildkit, docker, hostmatcher and saml to resolve CVEs (#60130) 2024-02-05 13:14:15 +02:00
lib lib/msp: implement OTEL_SDK_DISABLED (#60030) 2024-01-31 17:30:00 -08:00
migrations Search Results: Add telemetry for the new search result page UI (preview and filters panels) (#59985) 2024-01-31 12:15:16 -03:00
monitoring gitserver: Remove CloneableLimiter (#59935) 2024-01-31 09:46:39 +01:00
schema Enterprise attribution client refreshes on site config changes (#59944) 2024-02-01 09:02:10 +00:00
testing bazel: patches to allow use_default_shell_env for e2e testing (#59675) 2024-01-24 18:50:19 -08:00
third_party bazel: patches to allow use_default_shell_env for e2e testing (#59675) 2024-01-24 18:50:19 -08:00
third-party-licenses chore: update third-party licenses (#59370) 2024-01-08 10:12:45 +02:00
tools/release release: sourcegraph@5.2.3 (#58362) 2023-11-16 16:35:19 -05:00
ui/assets Revert "use vite for web builds (#58228)" (#59132) 2023-12-20 16:23:45 -03:00
wolfi-images Match chainguard's updated grafana versioning (#59906) 2024-01-29 12:26:42 +00:00
wolfi-packages Add resourcedetectionprocessor to OTEL (#60074) 2024-02-02 17:21:38 +00:00
.bazel_fix_commands.json bazel: add command sets that uses bazel under the hood (#48460) 2023-03-02 11:31:51 +01:00
.bazelignore bazel: reintroduce bazelignore entries for deleted directories (#59638) 2024-01-16 15:13:39 +00:00
.bazeliskrc chore: upgrade to Aspect CLI 5.8.19 (#59203) 2024-01-02 15:13:24 +01:00
.bazelrc bazel: updates for hermetic_cc_toolchain + zig bump (#59333) 2024-01-08 17:07:57 +00:00
.bazelversion ci/bazel: use bazel 7 (#58915) 2024-01-02 19:54:03 +01:00
.dockerignore use esbuild for client/web builds (#57365) 2023-10-23 10:59:06 -07:00
.editorconfig proto: Add editorconfig to ident using two spaces (#57281) 2023-10-03 00:39:42 +00:00
.eslintrc.js fix useProjectService TypeScript ESLint config (#58585) 2023-11-30 00:24:24 -08:00
.gitattributes github: show bazel diff again (#54719) 2023-07-07 16:43:45 +00:00
.gitignore ci: fix incorrect usage of target determinator (#59171) 2023-12-21 15:50:29 +00:00
.graphqlrc.yml Support multiple GraphQL schema files (#20077) 2021-04-19 14:35:49 +02:00
.hadolint.yaml bump comby version to 1.7.1 (#35830) 2022-05-20 20:12:01 -07:00
.mailmap mailmap: add entries for Eric and Renovate (#50966) 2023-04-25 09:42:22 +02:00
.mocharc.js reapply "switch from jest to vitest for faster, simpler tests (#57886)" (#58145) 2023-11-07 12:00:18 +02:00
.npmrc pnpm: remove update notifier message (#51630) 2023-05-10 08:53:39 +02:00
.percy.yml ci: percy defer snapshots upload (#54116) 2023-06-25 18:57:49 -07:00
.pre-commit-config.yaml add shellcheck & shfmt to pre-commit's pre-push hook (#59485) 2024-01-11 14:16:22 +00:00
.prettierignore svelte: Improve search stream handling wrt filters (#59765) 2024-01-31 15:59:34 +01:00
.stylelintignore rework plugin structure and implement frontside blogpost (#46883) 2023-02-15 11:49:51 +02:00
.stylelintrc.json web: drop bootstrap depenedency (#41401) 2022-09-07 03:11:26 -07:00
.swcrc use swc instead of babel for faster bazel typescript transpilation (#57912) 2023-11-02 22:49:03 -07:00
.tool-versions Dev tool: python script for text clustering based on local embeddings (#58691) 2023-12-04 09:27:14 -05:00
.trivyignore ci: ignore benign CVE-2021-43816 in prometheus (#31069) 2022-02-11 16:49:10 +00:00
BUILD.bazel sg: add commands to wrap common bazel generating commands (#59833) 2024-01-31 16:54:04 +00:00
CHANGELOG.md cody web: do not include ignored files in context (#59907) 2024-02-02 17:07:33 +02:00
CODENOTIFY nix: update pnpm hash (#51512) 2023-05-05 12:51:59 +00:00
CONTRIBUTING.md Update marketing website link in monorepo (#58449) 2023-12-01 22:22:34 +00:00
deps.bzl gomod: update or vendor buildkit, docker, hostmatcher and saml to resolve CVEs (#60130) 2024-02-05 13:14:15 +02:00
doc.go
docsite_run.sh Onboarding UI Fixes (#58788) 2023-12-07 14:27:16 +05:30
eslint-relative-formatter.js bazel: implement custom ESLint Bazel rule (#52062) 2023-05-22 04:05:45 -07:00
flake.lock nix: bump to bazel 7 (#59327) 2024-01-04 13:43:37 +00:00
flake.nix nix: patch bazel_7 with hardcoded bin paths (#59359) 2024-01-16 20:58:22 +00:00
gen.go Bump go-mockgen to include lenient type checking (#59397) 2024-01-08 21:20:24 +00:00
go.mod gomod: update or vendor buildkit, docker, hostmatcher and saml to resolve CVEs (#60130) 2024-02-05 13:14:15 +02:00
go.sum gomod: update or vendor buildkit, docker, hostmatcher and saml to resolve CVEs (#60130) 2024-02-05 13:14:15 +02:00
graphql-schema-linter.config.js Support multiple GraphQL schema files (#20077) 2021-04-19 14:35:49 +02:00
LICENSE relicense all paths other than MIT licensed code, client/cody*, jetbrains, VS code, and browser extension to enterprise (#53345) (#53345) 2023-06-13 10:28:11 -07:00
LICENSE.enterprise Update marketing website link in monorepo (#58449) 2023-12-01 22:22:34 +00:00
linter_deps.bzl build: add buildifier check to Aspect Workflows (#58566) 2023-11-27 14:58:01 +02:00
mockgen.temp.yaml gitserver: Move NewFileReader to rpc (#59919) 2024-01-29 12:17:15 +00:00
mockgen.test.yaml gitserver: Migrate Blame to rpc call (#59851) 2024-01-28 06:35:42 +01:00
mockgen.yaml mocks: Reorganize mock definitions into multiple files (#36967) 2022-06-27 20:59:16 +00:00
nogo_config.json grpc: example: tweak example package to show off new retry logic (#59218) 2023-12-22 16:20:49 -08:00
package.json cody web: do not include ignored files in context (#59907) 2024-02-02 17:07:33 +02:00
pnpm-lock.yaml cody web: do not include ignored files in context (#59907) 2024-02-02 17:07:33 +02:00
pnpm-workspace.yaml cody: development branch (#49761) 2023-03-23 20:41:11 +01:00
postcss.config.js extensibility: add featured extensions to registry (#21665) 2021-06-10 13:55:20 -04:00
prettier.config.js clean up Cody CSS to increase shareability and improve display in web app (#50279) 2023-04-03 12:29:05 -07:00
README.md Update marketing website link in monorepo (#58449) 2023-12-01 22:22:34 +00:00
renovate.json Require approval to run Renovate (#57608) 2023-10-18 20:36:53 +02:00
SECURITY.md
service-catalog.yaml lib/servicecatalog: init to distribute catalog (#46999) 2023-01-26 17:22:27 -08:00
sg.config.yaml build: Use scip-treesitter binary consistently (#59891) 2024-01-26 16:58:11 +08:00
sg.doctor.yaml sg: add doctor command to generate a diagnostics report (#58824) 2023-12-11 16:34:03 +00:00
shell.nix sg: add commands to wrap common bazel generating commands (#59833) 2024-01-31 16:54:04 +00:00
sonar-project.properties Revert "sonarscan: add property to allow old java version (#59575)" (#59595) 2024-01-15 16:12:27 +00:00
stamp_tags.bzl Switch to OCI/Wolfi based image (#52693) 2023-06-02 12:12:52 +02:00
tsconfig.base.json web: fix pnpm-lock issue (#47478) 2023-02-09 22:04:31 -08:00
tsconfig.json Vscode extension: Delete vscode extension package (#58023) 2023-10-31 18:39:30 -03:00
vitest.shared.ts code intel: Don't rely on URL polyfill to correctly parse git: URIs (#58258) 2023-11-17 19:32:46 +01:00
vitest.workspace.ts vitest: Fix workspace config wrt client/web/ (#58397) 2023-11-17 08:22:46 +00:00
WORKSPACE gomod: update or vendor buildkit, docker, hostmatcher and saml to resolve CVEs (#60130) 2024-02-05 13:14:15 +02:00

README.md

DocsContributingTwitterDiscord

Build status Scorecard Latest release Discord Contributors


Sourcegraph makes it easy to read, write, and fix code—even in big, complex codebases.

  • Code search: Search all of your repositories across all branches and all code hosts.
  • Code intelligence: Navigate code, find references, see code owners, trace history, and more.
  • Fix and refactor: Roll out large-scale changes to many repositories at once and track big migrations.

Getting started



Development

Refer to the Developing Sourcegraph guide to get started.

Documentation

The doc directory has additional documentation for developing and understanding Sourcegraph:

License

This repository contains primarily non-OSS-licensed files. See LICENSE.