-
Gabriela Gutierrez committed with GitHub 1 year ago1 parent 110e3522
-
skipped 260 lines 261 261 { 262 262 name: "npm packages without verification", 263 263 filename: "./testdata/.github/workflows/github-workflow-pkg-managers.yaml", 264 - warns: 36, 264 + warns: 46, 265 265 }, 266 266 } 267 267 for _, tt := range tests { skipped 289 lines 557 557 endLine: 42, 558 558 t: checker.DependencyUseTypePipCommand, 559 559 }, 560 + { 561 + snippet: "pip install --no-deps -e hg+https://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package", 562 + startLine: 46, 563 + endLine: 46, 564 + t: checker.DependencyUseTypePipCommand, 565 + }, 566 + { 567 + snippet: "pip install --no-deps -e svn+https://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package", 568 + startLine: 47, 569 + endLine: 47, 570 + t: checker.DependencyUseTypePipCommand, 571 + }, 572 + { 573 + snippet: "pip install --no-deps -e bzr+https://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package", 574 + startLine: 48, 575 + endLine: 48, 576 + t: checker.DependencyUseTypePipCommand, 577 + }, 578 + { 579 + snippet: "pip install --no-deps -e git+https://github.com/username/repo.git", 580 + startLine: 49, 581 + endLine: 49, 582 + t: checker.DependencyUseTypePipCommand, 583 + }, 584 + { 585 + snippet: "pip install --no-deps -e git+https://github.com/username/repo.git#egg=package", 586 + startLine: 50, 587 + endLine: 50, 588 + t: checker.DependencyUseTypePipCommand, 589 + }, 590 + { 591 + snippet: "pip install --no-deps -e git+https://github.com/username/[email protected]", 592 + startLine: 51, 593 + endLine: 51, 594 + t: checker.DependencyUseTypePipCommand, 595 + }, 596 + { 597 + snippet: "pip install --no-deps -e git+https://github.com/username/[email protected]#egg=package", 598 + startLine: 52, 599 + endLine: 52, 600 + t: checker.DependencyUseTypePipCommand, 601 + }, 602 + { 603 + snippet: "pip install -e git+https://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package", 604 + startLine: 60, 605 + endLine: 60, 606 + t: checker.DependencyUseTypePipCommand, 607 + }, 608 + { 609 + snippet: "pip install --no-deps -e . git+https://github.com/username/repo.git", 610 + startLine: 61, 611 + endLine: 61, 612 + t: checker.DependencyUseTypePipCommand, 613 + }, 614 + { 615 + snippet: "python -m pip install --no-deps -e git+https://github.com/username/repo.git", 616 + startLine: 64, 617 + endLine: 64, 618 + t: checker.DependencyUseTypePipCommand, 619 + }, 560 620 }, 561 621 }, 562 622 { skipped 136 lines 699 759 endLine: 31, 700 760 t: checker.DependencyUseTypeChocoCommand, 701 761 }, 762 + { 763 + snippet: "pip install --no-deps -e hg+https://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package", 764 + startLine: 38, 765 + endLine: 38, 766 + t: checker.DependencyUseTypePipCommand, 767 + }, 768 + { 769 + snippet: "pip install --no-deps -e svn+https://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package", 770 + startLine: 39, 771 + endLine: 39, 772 + t: checker.DependencyUseTypePipCommand, 773 + }, 774 + { 775 + snippet: "pip install --no-deps -e bzr+https://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package", 776 + startLine: 40, 777 + endLine: 40, 778 + t: checker.DependencyUseTypePipCommand, 779 + }, 780 + { 781 + snippet: "pip install --no-deps -e git+https://github.com/username/repo.git", 782 + startLine: 41, 783 + endLine: 41, 784 + t: checker.DependencyUseTypePipCommand, 785 + }, 786 + { 787 + snippet: "pip install --no-deps -e git+https://github.com/username/repo.git#egg=package", 788 + startLine: 42, 789 + endLine: 42, 790 + t: checker.DependencyUseTypePipCommand, 791 + }, 792 + { 793 + snippet: "pip install --no-deps -e git+https://github.com/username/[email protected]", 794 + startLine: 43, 795 + endLine: 43, 796 + t: checker.DependencyUseTypePipCommand, 797 + }, 798 + { 799 + snippet: "pip install --no-deps -e git+https://github.com/username/[email protected]#egg=package", 800 + startLine: 44, 801 + endLine: 44, 802 + t: checker.DependencyUseTypePipCommand, 803 + }, 804 + { 805 + snippet: "pip install -e git+https://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package", 806 + startLine: 52, 807 + endLine: 52, 808 + t: checker.DependencyUseTypePipCommand, 809 + }, 810 + { 811 + snippet: "pip install --no-deps -e . git+https://github.com/username/repo.git", 812 + startLine: 53, 813 + endLine: 53, 814 + t: checker.DependencyUseTypePipCommand, 815 + }, 816 + { 817 + snippet: "python -m pip install --no-deps -e git+https://github.com/username/repo.git", 818 + startLine: 56, 819 + endLine: 56, 820 + t: checker.DependencyUseTypePipCommand, 821 + }, 702 822 }, 703 823 }, 704 824 } skipped 146 lines 851 971 { 852 972 name: "pkg managers", 853 973 filename: "./testdata/Dockerfile-pkg-managers", 854 - warns: 47, 974 + warns: 57, 855 975 }, 856 976 { 857 977 name: "download with some python", skipped 111 lines 969 1089 { 970 1090 name: "pkg managers", 971 1091 filename: "./testdata/script-pkg-managers", 972 - warns: 43, 1092 + warns: 53, 973 1093 }, 974 1094 { 975 1095 name: "invalid shell script", skipped 299 lines -
-
skipped 90 lines 91 91 - name: 92 92 run: /bin/pip3 install -X -H somepkg 93 93 - name: 94 + run: pip install --no-deps --editable . 95 + - name: 96 + run: pip install --no-deps -e . 97 + - name: 98 + run: pip install --no-deps -e hg+https://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 99 + - name: 100 + run: pip install --no-deps -e svn+https://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 101 + - name: 102 + run: pip install --no-deps -e bzr+https://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 103 + - name: 104 + run: pip install --no-deps -e git+https://github.com/username/repo.git 105 + - name: 106 + run: pip install --no-deps -e git+https://github.com/username/repo.git#egg=package 107 + - name: 108 + run: pip install --no-deps -e git+https://github.com/username/[email protected] 109 + - name: 110 + run: pip install --no-deps -e git+https://github.com/username/[email protected]#egg=package 111 + - name: 112 + run: pip install --no-deps -e git+https://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567 113 + - name: 114 + run: pip install --no-deps -e git+https://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 115 + - name: 116 + run: pip install --no-deps -e git+https://github.com/username/repo@0123456789abcdef0123456789abcdef01234567#egg=package 117 + - name: 118 + run: pip install --no-deps -e git+http://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 119 + - name: 120 + run: pip install --no-deps -e git+ssh://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 121 + - name: 122 + run: pip install --no-deps -e git+git://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 123 + - name: 124 + run: pip install --no-deps -e git://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 125 + - name: 126 + run: pip install -e git+https://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 127 + - name: 128 + run: pip install --no-deps -e . git+https://github.com/username/repo.git 129 + - name: 130 + run: pip install --no-deps -e . git+https://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 131 + - name: 94 132 run: python -m notpip -X bla 95 133 - name: 96 134 run: python2.7 -m pip install -X -H somepkg 'some-ther==1.2.3' 'somebla<3.4.5' skipped 11 lines 108 146 run: python -m pip install 'some-pkg==1.2.3' 109 147 - name: 110 148 run: python -m pip install 'some-pkg>1.2.3' 149 + - name: 150 + run: python -m pip install --no-deps -e git+https://github.com/username/repo.git 151 + - name: 152 + run: python -m pip install --no-deps -e git+https://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 111 153 - name: 112 154 run: pip3 install -r bla-requirements.txt --require-hashes && pip3 install --require-hashes -r bla-requirements.txt 113 155 - name: skipped 9 lines -
skipped 39 lines 40 40 # pip install -r requirements.txt -i https://pypi.doubanio.com/simple --trusted-host pypi.doubanio.com || \ 41 41 RUN bla && \ 42 42 pip install -r requirements.txt 43 + 44 + RUN pip install --no-deps --editable . 45 + RUN pip install --no-deps -e . 46 + RUN pip install --no-deps -e hg+https://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 47 + RUN pip install --no-deps -e svn+https://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 48 + RUN pip install --no-deps -e bzr+https://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 49 + RUN pip install --no-deps -e git+https://github.com/username/repo.git 50 + RUN pip install --no-deps -e git+https://github.com/username/repo.git#egg=package 51 + RUN pip install --no-deps -e git+https://github.com/username/[email protected] 52 + RUN pip install --no-deps -e git+https://github.com/username/[email protected]#egg=package 53 + RUN pip install --no-deps -e git+https://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567 54 + RUN pip install --no-deps -e git+https://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 55 + RUN pip install --no-deps -e git+https://github.com/username/repo@0123456789abcdef0123456789abcdef01234567#egg=package 56 + RUN pip install --no-deps -e git+http://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 57 + RUN pip install --no-deps -e git+ssh://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 58 + RUN pip install --no-deps -e git+git://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 59 + RUN pip install --no-deps -e git://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 60 + RUN pip install -e git+https://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 61 + RUN pip install --no-deps -e . git+https://github.com/username/repo.git 62 + RUN pip install --no-deps -e . git+https://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 63 + 64 + RUN python -m pip install --no-deps -e git+https://github.com/username/repo.git 65 + RUN python -m pip install --no-deps -e git+https://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package -
skipped 60 lines 61 61 RUN pip3 install somepkg==1.2.3 62 62 RUN /bin/pip3 install -X -H somepkg 63 63 64 + RUN pip install --no-deps --editable . 65 + RUN pip install --no-deps -e . 66 + RUN pip install --no-deps -e hg+https://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 67 + RUN pip install --no-deps -e svn+https://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 68 + RUN pip install --no-deps -e bzr+https://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 69 + RUN pip install --no-deps -e git+https://github.com/username/repo.git 70 + RUN pip install --no-deps -e git+https://github.com/username/repo.git#egg=package 71 + RUN pip install --no-deps -e git+https://github.com/username/[email protected] 72 + RUN pip install --no-deps -e git+https://github.com/username/[email protected]#egg=package 73 + RUN pip install --no-deps -e git+https://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567 74 + RUN pip install --no-deps -e git+https://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 75 + RUN pip install --no-deps -e git+https://github.com/username/repo@0123456789abcdef0123456789abcdef01234567#egg=package 76 + RUN pip install --no-deps -e git+http://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 77 + RUN pip install --no-deps -e git+ssh://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 78 + RUN pip install --no-deps -e git+git://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 79 + RUN pip install --no-deps -e git://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 80 + RUN pip install -e git+https://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 81 + RUN pip install --no-deps -e . git+https://github.com/username/repo.git 82 + RUN pip install --no-deps -e . git+https://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 83 + 64 84 RUN python -m notpip -X bla 65 85 66 86 RUN python2.7 -m pip install -X -H somepkg \ skipped 16 lines 83 103 RUN python -m pip install -r file 84 104 RUN python -m pip install 'some-pkg==1.2.3' 85 105 RUN python -m pip install 'some-pkg>1.2.3' 106 + 107 + RUN python -m pip install --no-deps -e git+https://github.com/username/repo.git 108 + RUN python -m pip install --no-deps -e git+https://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 86 109 87 110 RUN npm install typescript 88 111 RUN npm install -g typescript skipped 14 lines -
skipped 59 lines 60 60 pip3 install somepkg==1.2.3 61 61 /bin/pip3 install -X -H somepkg 62 62 63 + pip install --no-deps --editable . 64 + pip install --no-deps -e . 65 + pip install --no-deps -e hg+https://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 66 + pip install --no-deps -e svn+https://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 67 + pip install --no-deps -e bzr+https://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 68 + pip install --no-deps -e git+https://github.com/username/repo.git 69 + pip install --no-deps -e git+https://github.com/username/repo.git#egg=package 70 + pip install --no-deps -e git+https://github.com/username/[email protected] 71 + pip install --no-deps -e git+https://github.com/username/[email protected]#egg=package 72 + pip install --no-deps -e git+https://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567 73 + pip install --no-deps -e git+https://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 74 + pip install --no-deps -e git+https://github.com/username/repo@0123456789abcdef0123456789abcdef01234567#egg=package 75 + pip install --no-deps -e git+http://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 76 + pip install --no-deps -e git+ssh://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 77 + pip install --no-deps -e git+git://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 78 + pip install --no-deps -e git://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 79 + pip install -e git+https://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 80 + pip install --no-deps -e . git+https://github.com/username/repo.git 81 + pip install --no-deps -e . git+https://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 82 + 63 83 python -m notpip -X bla 64 84 65 85 python -m pip install -r file skipped 18 lines 84 104 'some-ther==1.2.3' \ 85 105 'somebla<3.4.5' 86 106 107 + python -m pip install --no-deps -e git+https://github.com/username/repo.git 108 + python -m pip install --no-deps -e git+https://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 87 109 88 110 npm install typescript 89 111 npm install -g typescript skipped 15 lines -
skipped 31 lines 32 32 choco install --requirechecksum 'some-package' 33 33 choco install --requirechecksums 'some-package' 34 34 choco install --require-checksums 'some-package' 35 + 36 + pip install --no-deps --editable . 37 + pip install --no-deps -e . 38 + pip install --no-deps -e hg+https://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 39 + pip install --no-deps -e svn+https://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 40 + pip install --no-deps -e bzr+https://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 41 + pip install --no-deps -e git+https://github.com/username/repo.git 42 + pip install --no-deps -e git+https://github.com/username/repo.git#egg=package 43 + pip install --no-deps -e git+https://github.com/username/[email protected] 44 + pip install --no-deps -e git+https://github.com/username/[email protected]#egg=package 45 + pip install --no-deps -e git+https://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567 46 + pip install --no-deps -e git+https://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 47 + pip install --no-deps -e git+https://github.com/username/repo@0123456789abcdef0123456789abcdef01234567#egg=package 48 + pip install --no-deps -e git+http://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 49 + pip install --no-deps -e git+ssh://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 50 + pip install --no-deps -e git+git://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 51 + pip install --no-deps -e git://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 52 + pip install -e git+https://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 53 + pip install --no-deps -e . git+https://github.com/username/repo.git 54 + pip install --no-deps -e . git+https://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package 55 + 56 + python -m pip install --no-deps -e git+https://github.com/username/repo.git 57 + python -m pip install --no-deps -e git+https://github.com/username/repo.git@0123456789abcdef0123456789abcdef01234567#egg=package