Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bandit default config file #1051

Merged
merged 5 commits into from
Dec 1, 2021
Merged

Bandit default config file #1051

merged 5 commits into from
Dec 1, 2021

Conversation

llaville
Copy link
Collaborator

@llaville llaville commented Dec 1, 2021

Fixes #679

Proposed Changes

  1. TEMPLATES/.bandit.yml was generated with bandit 1.7.1 bandit-config-generator --show-defaults command
  2. remove default parameters (config and version getters)

Readiness Checklist

Author/Contributor

  • If documentation is needed for this change, has that been included in this pull request

Reviewing Maintainer

  • Label as breaking if this is a large fundamental change
  • Label as either automation, bug, documentation, enhancement, infrastructure, or performance

@nvuillam
Copy link
Member

nvuillam commented Dec 1, 2021

MegaLinter status: ⚠️ WARNING

Descriptor Linter Files Fixed Errors Elapsed time
✅ BASH bash-exec 6 0 0.2s
✅ BASH shellcheck 6 0 0.43s
✅ BASH shfmt 6 0 0 0.2s
✅ COPYPASTE jscpd yes no 1.79s
✅ CREDENTIALS secretlint yes no 3.66s
✅ DOCKERFILE dockerfilelint 1 0 0.23s
✅ DOCKERFILE hadolint 1 0 0.6s
✅ GIT git_diff yes no 0.02s
✅ JSON eslint-plugin-jsonc 20 0 0 1.9s
✅ JSON jsonlint 19 0 4.52s
✅ JSON v8r 20 0 12.51s
✅ MARKDOWN markdownlint 197 2 0 4.25s
✅ MARKDOWN markdown-link-check 197 0 45.94s
✅ MARKDOWN markdown-table-formatter 197 2 0 4.32s
✅ OPENAPI spectral 1 0 1.03s
⚠️ PYTHON bandit 143 64 2.17s
✅ PYTHON black 143 0 0 2.41s
✅ PYTHON flake8 143 0 2.13s
✅ PYTHON isort 143 0 0 0.33s
✅ PYTHON mypy 143 0 56.12s
✅ PYTHON pylint 143 0 17.57s
✅ SPELL cspell 468 0 24.8s
✅ SPELL misspell 313 2 0 0.27s
✅ XML xmllint 2 0 0.04s
✅ YAML prettier 77 0 0 2.92s
✅ YAML v8r 20 0 20.86s
✅ YAML yamllint 78 0 1.32s

See errors details in artifact MegaLinter reports on GitHub Action page

You could have the same capabilities but better runtime performances if you use a MegaLinter flavor:

@nvuillam
Copy link
Member

nvuillam commented Dec 1, 2021

Now I solved the CI issues, it should be ok :) ( i just updated your branch with main branch )

@CAM-Gerlach
Copy link

Thanks! As mentioned on #679 , I can test this on r-spacex/submanager#11 as soon as this hits megalinter/megalinter:beta. Also, happy to contribute help/guidance on the bandit errors identified in mega-linter's own code base, if that's an issue here (I assume you want a clean mega-linter run of mega-linter itself?)

@nvuillam
Copy link
Member

nvuillam commented Dec 1, 2021

Thanks! As mentioned on #679 , I can test this on r-spacex/submanager#11 as soon as this hits megalinter/megalinter:beta. Also, happy to contribute help/guidance on the bandit errors identified in mega-linter's own code base, if that's an issue here (I assume you want a clean mega-linter run of mega-linter itself?)

To be honest, when I installed bandit there were so many errors that I made them not blocking because I didn't have one week to solve them :D

But happy to accept any PR solving that :) (for my defense, MegaLinter is my HelloWorld in python, that i learned just for this project ^^ )

@codecov-commenter
Copy link

Codecov Report

Merging #1051 (aec8095) into main (952d332) will increase coverage by 0.03%.
The diff coverage is n/a.

Impacted file tree graph

@@            Coverage Diff             @@
##             main    #1051      +/-   ##
==========================================
+ Coverage   88.09%   88.12%   +0.03%     
==========================================
  Files         138      138              
  Lines        3309     3309              
==========================================
+ Hits         2915     2916       +1     
+ Misses        394      393       -1     
Impacted Files Coverage Δ
megalinter/reporters/UpdatedSourcesReporter.py 89.18% <0.00%> (+2.70%) ⬆️

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 952d332...aec8095. Read the comment docs.

@nvuillam nvuillam merged commit 6078df7 into main Dec 1, 2021
@nvuillam nvuillam deleted the bandit_config branch December 1, 2021 21:18
nvuillam added a commit that referenced this pull request Dec 4, 2021
* [automation] Auto-update linters version, help and documentation (#1038)

* Implement new linter PHPLint (#1037)

* add new phplint linter (see #1031)

* use composer global install for overture/phplint

* update changelog

* fix feature #1043 (#1044)

* Add @babel/eslint-parser as dependency for eslint (#1045)

* [automation] Auto-update linters version, help and documentation (#1046)

* [automation] Auto-update linters version, help and documentation + @babel-core

* Add @babel-core dependency

* Use node.js LTS and not nodejs-current

* Downgrade v8r version

* Fix arm test case

* Fix again arm test case

* [automation] Auto-update linters version, help and documentation

* Build

* [automation] Auto-update linters version, help and documentation (#1050)

* [automation] Auto-update linters version, help and documentation (#1052)

* [automation] Auto-update linters version, help and documentation

* Update doc for gitlab MegaLinter config

* Bandit default config file (#1051)

* remove default parameters

* add default bandit configfile built with bandit-config-generator command

* update changelog

* update bandit doc page

Co-authored-by: Nicolas Vuillamy <[email protected]>

* Try again ktlint auto-upgrade (#976)

* [automation] Auto-update linters version, help and documentation (#1055)

* [automation] Auto-update linters version, help and documentation (#1056)

* Docs & links (#1058)

* Update stale config

* Fix getting linter version of npm plugin. (#804)

* [automation] Auto-update linters version, help and documentation (#1059)

* Fix doc

* [automation] Auto-update linters version, help and documentation (#1065)

* [automation] Auto-update linters version, help and documentation (#1067)

* build

Co-authored-by: Laurent Laville <[email protected]>
nvuillam added a commit that referenced this pull request Dec 5, 2021
* [automation] Auto-update linters version, help and documentation (#1038)

* Implement new linter PHPLint (#1037)

* add new phplint linter (see #1031)

* use composer global install for overture/phplint

* update changelog

* fix feature #1043 (#1044)

* Add @babel/eslint-parser as dependency for eslint (#1045)

* [automation] Auto-update linters version, help and documentation (#1046)

* [automation] Auto-update linters version, help and documentation + @babel-core

* Add @babel-core dependency

* Use node.js LTS and not nodejs-current

* Downgrade v8r version

* Fix arm test case

* Fix again arm test case

* [automation] Auto-update linters version, help and documentation

* Build

* [automation] Auto-update linters version, help and documentation (#1050)

* [automation] Auto-update linters version, help and documentation (#1052)

* [automation] Auto-update linters version, help and documentation

* Update doc for gitlab MegaLinter config

* Bandit default config file (#1051)

* remove default parameters

* add default bandit configfile built with bandit-config-generator command

* update changelog

* update bandit doc page

Co-authored-by: Nicolas Vuillamy <[email protected]>

* Try again ktlint auto-upgrade (#976)

* [automation] Auto-update linters version, help and documentation (#1055)

* [automation] Auto-update linters version, help and documentation (#1056)

* Docs & links (#1058)

* Update stale config

* Fix getting linter version of npm plugin. (#804)

* [automation] Auto-update linters version, help and documentation (#1059)

* Fix doc

* [automation] Auto-update linters version, help and documentation (#1065)

* [automation] Auto-update linters version, help and documentation (#1067)

* SARIF for gitleaks

* Sarif python test class v0

* Lint fix + changelog

* SARIF support for trivy

* Accelerate and fix internal tests

* Fix SARIF files

* Fix trivy sarif args

* [automation] Auto-update linters version, help and documentation (#1072)

* Fix SarifReporter

* Better handling of SARIF error management

* Fix SARIF default file name use

quick build

* Fix sarif reporter exception management

* Variabilize default release

* Improve runtime perfs when FLAVOR_SUGGESTIONS: false (#1073)

* Improve runtime perfs when FLAVOR_SUGGESTIONS: false

* [MegaLinter] Apply linters fixes

* Fix how to get MEGALINTER_FLAVOR

* Fix ignore flavor suggestion test class

Co-authored-by: nvuillam <[email protected]>

* Build

Co-authored-by: Laurent Laville <[email protected]>
Co-authored-by: nvuillam <[email protected]>
nvuillam added a commit that referenced this pull request Jan 15, 2022
)

* [automation] Auto-update linters version, help and documentation

* Disable Github Status reporter

* Breaking change: GITHUB_STATUS_REPORTER disabled by default

* Breaking change: set PRINT_ALL_FILES default to false

* Deploy V6 image (#1035)

* QuickFix CI job

* New flavor Security (#1036)

* Java PMD v0

* Java Pmd v0.01

* Working Java + pmd :)

* changelog + doc

* Genedate doc + manage offline mode

* changelog

* Bring back referring linters

* Fix build

* Automate update of changelog when new release (v0)

* Do not create commit & tag with npm version

* Move markdown formatting

* .md

* PMD install commands

* More pmd descriptor infos + build

* Fix megalinter errors

* Fix PMD install commands + build

* [MegaLinter] Apply linters fixes

* Hardcode some licenses

* [MegaLinter] Apply linters fixes

* Add gitleaks

* Build with gitleaks

* Gitleaks fixes

* changelog

* New descriptor: repository

TODO: deprecate git and credentials

* New descriptor "repository"

* Add Goodcheck


Goodcheck updates

* Fix PMD

* Fix PMD

* [MegaLinter] Apply linters fixes

* Fix pmd installation

* Typo

* wget --quiet

* Add trivy

* Build v6-alpha flavors

* Remove git & credentials descriptors + upgrade python base image

* Upgrade python

* New flavor Security v0

* Fix ansible-lint install

* Deploy v6-alpha documentation

* Fix test class

quick build

* Disable java pmd

* Downgrade python version

* SARIF v0

* Update descriptor JSON schema + retries for sgerrand url

* Add SARIF output for checkov

* Add SARIF output for eslint

* [automation] Auto-update linters version, help and documentation (#1038)

* Fix gitleaks

* Build

* Do not skip build if failed

* Do not test SARIF when SARIF is not active on a linter

* Update ansible install

* Fix goodcheck tests

* Fix markdown-table-formatter

* Fix trivy command

* Fix checkov test case + manage default sarif output file

* use MegaLinter beta for now

* Update CI for new default report folder

+ Manage {{REPORT_FOLDER}} in CLI variables

* Exit code 1 for trivy

* Fix replace_vars definition

* Do not run test mega-linter-runner when docker build failed

* Fix replace_vars

* Downgrade v8r version

* Fix arm test case

* build

* Fix again arm test case

* Fix makedirs for report folder

* Rename default report folder into megalinter-reports

* Fix gitleaks

* Try again gitleaks

* Fix last errors

* Fix internal lint errors

Co-authored-by: nvuillam <[email protected]>

* v6-alpha for github action

* Adapt CI for v6-alpha. (#1062)

* Fix own MegaLinter errors (#1063)

* Fix own MegaLinter errors

* Do not use secretlint on report folder

* Fix gitleaks own config

* Use regexes in gitleaks toml config file

* grmblmblm

* try with paths

* Regex to gather gitleaks errors

* Make gitleaks non blocking

* Update gitleaks descriptor

* Debug gitleaks (#1068)

* Debug gitleaks

* Remove LinkedIn ID gitleaks check

* Ignore .gitleaks.toml files

* Update security flavor + toml gitleaks update to use regexes

* Try again...

* Fix gitleaks config (use regexes in paths)

* Update default .gitleaks.toml files

* Clean dev variables

* Build

* Retrofit latest v5 updates into v6 (#1070)

* [automation] Auto-update linters version, help and documentation (#1038)

* Implement new linter PHPLint (#1037)

* add new phplint linter (see #1031)

* use composer global install for overture/phplint

* update changelog

* fix feature #1043 (#1044)

* Add @babel/eslint-parser as dependency for eslint (#1045)

* [automation] Auto-update linters version, help and documentation (#1046)

* [automation] Auto-update linters version, help and documentation + @babel-core

* Add @babel-core dependency

* Use node.js LTS and not nodejs-current

* Downgrade v8r version

* Fix arm test case

* Fix again arm test case

* [automation] Auto-update linters version, help and documentation

* Build

* [automation] Auto-update linters version, help and documentation (#1050)

* [automation] Auto-update linters version, help and documentation (#1052)

* [automation] Auto-update linters version, help and documentation

* Update doc for gitlab MegaLinter config

* Bandit default config file (#1051)

* remove default parameters

* add default bandit configfile built with bandit-config-generator command

* update changelog

* update bandit doc page

Co-authored-by: Nicolas Vuillamy <[email protected]>

* Try again ktlint auto-upgrade (#976)

* [automation] Auto-update linters version, help and documentation (#1055)

* [automation] Auto-update linters version, help and documentation (#1056)

* Docs & links (#1058)

* Update stale config

* Fix getting linter version of npm plugin. (#804)

* [automation] Auto-update linters version, help and documentation (#1059)

* Fix doc

* [automation] Auto-update linters version, help and documentation (#1065)

* [automation] Auto-update linters version, help and documentation (#1067)

* build

Co-authored-by: Laurent Laville <[email protected]>

* SARIF for gitleaks (#1069)

* SARIF for gitleaks

* Sarif python test class v0

* Lint fix + changelog

* Generate security flavor

* SARIF support for trivy (#1071)

* [automation] Auto-update linters version, help and documentation (#1038)

* Implement new linter PHPLint (#1037)

* add new phplint linter (see #1031)

* use composer global install for overture/phplint

* update changelog

* fix feature #1043 (#1044)

* Add @babel/eslint-parser as dependency for eslint (#1045)

* [automation] Auto-update linters version, help and documentation (#1046)

* [automation] Auto-update linters version, help and documentation + @babel-core

* Add @babel-core dependency

* Use node.js LTS and not nodejs-current

* Downgrade v8r version

* Fix arm test case

* Fix again arm test case

* [automation] Auto-update linters version, help and documentation

* Build

* [automation] Auto-update linters version, help and documentation (#1050)

* [automation] Auto-update linters version, help and documentation (#1052)

* [automation] Auto-update linters version, help and documentation

* Update doc for gitlab MegaLinter config

* Bandit default config file (#1051)

* remove default parameters

* add default bandit configfile built with bandit-config-generator command

* update changelog

* update bandit doc page

Co-authored-by: Nicolas Vuillamy <[email protected]>

* Try again ktlint auto-upgrade (#976)

* [automation] Auto-update linters version, help and documentation (#1055)

* [automation] Auto-update linters version, help and documentation (#1056)

* Docs & links (#1058)

* Update stale config

* Fix getting linter version of npm plugin. (#804)

* [automation] Auto-update linters version, help and documentation (#1059)

* Fix doc

* [automation] Auto-update linters version, help and documentation (#1065)

* [automation] Auto-update linters version, help and documentation (#1067)

* SARIF for gitleaks

* Sarif python test class v0

* Lint fix + changelog

* SARIF support for trivy

* Accelerate and fix internal tests

* Fix SARIF files

* Fix trivy sarif args

* [automation] Auto-update linters version, help and documentation (#1072)

* Fix SarifReporter

* Better handling of SARIF error management

* Fix SARIF default file name use

quick build

* Fix sarif reporter exception management

* Variabilize default release

* Improve runtime perfs when FLAVOR_SUGGESTIONS: false (#1073)

* Improve runtime perfs when FLAVOR_SUGGESTIONS: false

* [MegaLinter] Apply linters fixes

* Fix how to get MEGALINTER_FLAVOR

* Fix ignore flavor suggestion test class

Co-authored-by: nvuillam <[email protected]>

* Build

Co-authored-by: Laurent Laville <[email protected]>
Co-authored-by: nvuillam <[email protected]>

* V6/popularity - Display github stars in all linters documentation (#1075)

* Add popularity

* Update descriptors to add linter_repo when missing

* FLAVOR_SUGGESTIONS:false to improve perfs

* Build

* Enhance documentation (#1078)

* Popularity column in all tables

* More badges in linters list doc

* cspell

* Fix sarif test case (#1079)

* Fix sarif test case

* Fix hardcoded reporter folder name in test case

* Remove dockerfilelint (#1080)

* Remove dockerfilelint

* changelog

* Upgrade to AWS cfn-lint (#1085)

* Upgrade to AWS cfn-lint

* Build

* Add SARIF management for cfn-lint

* Add cfn-lint example SARIF output file

* SARIF management for Hadolint (#1089)

* SARIF management for Hadolint

* Update .gitleaks.toml to ignore .mypy_cache folder

* Catch SARIF error

* Upgrade hadolint to 2.8.0-alpine

* SARIF for checkstyle (#1093)

* SARIF for ktlint (#1095)

* SARIF for all eslint uses (#1094)

* SARIF management for go revive (#1092)

* SARIF management for go revive

* fix descriptor

quick build

* SARIF Management for PHP PSALM (#1096)

* Build doc

* More SARIF examples

* V6/docker standalone linters (#1099)

* Build unique linters dockerfiles

* Dockerfiles for unique linters + Improve perfs

* CI to build standalone images

* Fix CI

* Matrix jobs: do not fail other jobs if one fails

* Manage docker build --squash

* Add test cases to "only" docker images

* No codecov call when not running all tests

* Create output sarif folder when SARIF is from stdout

* Remove useless python packages for ML runtime

* Remove pytest-cov pytest-timeout from runtime image

* Optimize Until dotenv linter

* gcc in all dockerfiles + go for actionlint

* Add libffi-dev in all Docker images

* Add make

* add bash

* add musl-dev

* Fix linters install

* gnugpg for php

* Automate node & ruby-dev installation if packages are used in install

* Fix dotnet install

* More preset variables on single-linter docker images

* typo

* typo2

* Add ruby-bundler for gem packages

* Remove PHP_BUILTIN as it has been replaced by PHP_PHPLINT

* Fix descriptors and test class

* Improve CI perfs for only-linters build

* More fixes

* Fix kotlin install

* Fix raku install

* Fix R

* Fix scala

* Fix TSX

* Fix Vb .NET

* Build

* Linters page

* rollback raku

* Fix terraform_fmt & rollback raku

* Try fix rakudo

* Fix duplicate ARG and FROM in dockerfile

* Fix python lint err

* Disable lint_all_other_linters_files=true if in SINGLE_LINTER mode

* lint fix

* Reduce docker layers

* Reduce again the list of docker build steps

* Do not keep text logs if not wanted + linter delete SARIF files

* Fix CI

* Fix SARIF test case

* Disable deprecated test case

* Terrascan SARIF management (#1103)

* Terrascan SARIF management

* tflint SARIF management

* Fix terrascan args

* cspell

* MegaLinter server (#1106)

* PHP version switch (#1083)

* fixe issue #1060

* fix hadolint error DL3059

* [automation] Auto-update linters version, help and documentation (#1088)

* [automation] Auto-update linters version, help and documentation

* Increase trivy timeout

* [automation] Auto-update linters version, help and documentation (#1091)

* Release MegaLinter v5.3.0

* [automation] Auto-update linters version, help and documentation (#1097)

* Fix CHANGELOG

* [automation] Auto-update linters version, help and documentation (#1098)

* [automation] Auto-update linters version, help and documentation (#1100)

* [automation] Auto-update linters version, help and documentation (#1101)

* [automation] Auto-update linters version, help and documentation (#1104)

* KEEP_ALIVE_MEGALINTER v0

* openssh

* Build standalone linters only for linters managing SARIF

* Entrypoint

* Entrypoint: exit when test cases called

* Add openrc

* Try another way

https://github.com/danielguerra69/alpine-sshd

* Startup lines at the end

* Test simple case with password

* rhaaaa

* Remove ssh stuff as we loose env variables

* Server v0

* Server v0

* Add workspace argument

* Expose on port 80

* Manage running processes

* try debug flask

* debug mode for server

* v0 ?

* Fix server for report file name

* SARIF in http response

* [automation] Auto-update linters version, help and documentation (#1107)

* [automation] Auto-update linters version, help and documentation (#1109)

* [automation] Auto-update linters version, help and documentation (#1113)

* Bring back ssh

* Set env variables for all users

* [automation] Auto-update linters version, help and documentation (#1114)

* [automation] Auto-update linters version, help and documentation (#1116)

* [automation] Auto-update linters version, help and documentation (#1117)

* new SSH way with tmux

* Build

* Allow PWD auth for testing

* [automation] Auto-update linters version, help and documentation (#1118)

* [automation] Auto-update linters version, help and documentation (#1121)

* Release MegaLinter v5.4.0

* [automation] Auto-update linters version, help and documentation (#1122)

* [automation] Auto-update linters version, help and documentation (#1123)

* [automation] Auto-update linters version, help and documentation (#1124)

* [automation] Auto-update linters version, help and documentation (#1129)

* [clj-kondo] update docs and version to 2021.12.19 (#1126)

Co-authored-by: nvuillam <[email protected]>

* fix "MegaLinter vs Super-Linter" link in README (#1130)

Co-authored-by: Nicolas Vuillamy <[email protected]>

* Move ssh management to entrypoint

* QuickFix

* try again

* Stop docker container if entrypoint fails

* Sh in container

* alias for megalinger when running in server mode (#1133)

makes running megalinter in server mode easier

* aliases

* Build

* tmux_exec

* Build !

* [automation] Auto-update linters version, help and documentation (#1131)

* gha

* motd

* build

* -input and -output v0

* Use argparse

* Use parse_known_args

* config.set

* [automation] Auto-update linters version, help and documentation (#1135)

* DOCKER_DEFAULT_WORKSPACE_DIR & absolue path for --input argument

* introduce shell script to convenience running from ssh (#1137)

* Create megalinter_tmux

* Update build.py

* Build

Co-authored-by: nvuillam <[email protected]>

* Use --input

* Fix --input + CI

* CI for Inbar (create branch named v6_inbar )

* [automation] Auto-update linters version, help and documentation (#1138)

* [automation] Auto-update linters version, help and documentation (#1141)

* [automation] Auto-update linters version, help and documentation (#1142)

* Release MegaLinter v5.5.0

* V6 inbar (#1143)

* capture std is optional

capture std is optional

* improve megalinter_tmux script

add verbosity as an optional flag, improve some messages, add comments, fix script name in examples

* Bash file as executable

* Fix shellcheck issue https://github.com/koalaman/shellcheck/wiki/SC2124

* Python & Dockerfiles lint errors

* cspell

* Build

* Ignore tmux_exec for bash controlling

* pylint err

* cspell

Co-authored-by: Laurent Laville <[email protected]>
Co-authored-by: John Practicalli <[email protected]>
Co-authored-by: Adam Ralph <[email protected]>
Co-authored-by: Inbar <[email protected]>

* V6 semgrep (#1147)

* Add semgrep

* Manage cli_config_default_value

* Manage case when SARIF output is only the last sdout line

* Add python test files for semgrep

* semgrep --error

* use regex to extract json

* Use find / rfind instead of regex

* fix

* fix crash

* reverse does not have a return value

* Fix sarif_default_output_file process

* Check SARIF consistency in test classes

* Fix position to extract JSON from stdout

* position again

* Remove SARIF file from previous runs

* Stupid typo + remove aggregate SARIF if pre-existing ^^

* changelog

* Fix lint errors + descriptor json schema

* Build doc

* Automatically select security rulesets for semgrep (#1148)

* Automatically select security rulesets for semgrep

* Test classes for semgrep security rulesets

* Do not overwrite test class if already existing

* semgrep check failure

* Any v6- and v6_ branch generates standalone linters

* lint fixes

* document additional megalinter semgrep config vars

* build

* SARIF enhancements (and trivy failed attempts) (#1150)

* More general info in sarif

* Fix trivy install for SARIF

* Build

* Force sarif template path + upgrade trivy version

* fix wget call

* try chmod on sarif template

* typo

* trivy

* Add devskim (#1152)

* devskim v0

* devskim bad example

* Fix number of errors count

* fix & Build doc

* changelog

* cspell

* Fix CI

* cspell

* Fix trivy ?

* fix trivy ? (2)

* Try fix gitleaks (#1157)

* Try fix gitleaks

* trivy

* Workaround until next version of trivy

* build

* Revert "Try fix gitleaks"

This reverts commit e7c1be6.

* Remove default gitleaks use + --no-git

* --no-git back

* SARIF for npm-groovy-lint (#1158)

* SARIF for npm-groovy-lint

* Fix GroovyLinter custom class

* Factorize

* Manage dynamic --no-git presence for gitleaks (#1162)

* Manage dynamic --no-git presence for gitleaks

* lint fix

* Test upload SARIF to github

* Retrieve licenses

* Fix mixed config file + env variables config

* Link to licenses

* Update links to licenses

* Fixes

* fix lint err

* [MegaLinter] Apply linters fixes

Co-authored-by: nvuillam <[email protected]>
Co-authored-by: Laurent Laville <[email protected]>
Co-authored-by: John Practicalli <[email protected]>
Co-authored-by: Adam Ralph <[email protected]>
Co-authored-by: Inbar <[email protected]>
nvuillam added a commit that referenced this pull request Jan 22, 2022
* PHP version switch (#1083)

* fixe issue #1060

* fix hadolint error DL3059

* [automation] Auto-update linters version, help and documentation (#1088)

* [automation] Auto-update linters version, help and documentation

* Increase trivy timeout

* [automation] Auto-update linters version, help and documentation (#1091)

* Release MegaLinter v5.3.0

* [automation] Auto-update linters version, help and documentation (#1097)

* Fix CHANGELOG

* [automation] Auto-update linters version, help and documentation (#1098)

* [automation] Auto-update linters version, help and documentation (#1100)

* [automation] Auto-update linters version, help and documentation (#1101)

* [automation] Auto-update linters version, help and documentation (#1104)

* [automation] Auto-update linters version, help and documentation (#1107)

* [automation] Auto-update linters version, help and documentation (#1109)

* [automation] Auto-update linters version, help and documentation (#1113)

* [automation] Auto-update linters version, help and documentation (#1114)

* [automation] Auto-update linters version, help and documentation (#1116)

* [automation] Auto-update linters version, help and documentation (#1117)

* [automation] Auto-update linters version, help and documentation (#1118)

* [automation] Auto-update linters version, help and documentation (#1121)

* Release MegaLinter v5.4.0

* [automation] Auto-update linters version, help and documentation (#1122)

* [automation] Auto-update linters version, help and documentation (#1123)

* [automation] Auto-update linters version, help and documentation (#1124)

* [automation] Auto-update linters version, help and documentation (#1129)

* [clj-kondo] update docs and version to 2021.12.19 (#1126)

Co-authored-by: nvuillam <[email protected]>

* fix "MegaLinter vs Super-Linter" link in README (#1130)

Co-authored-by: Nicolas Vuillamy <[email protected]>

* [automation] Auto-update linters version, help and documentation (#1131)

* [automation] Auto-update linters version, help and documentation (#1135)

* [automation] Auto-update linters version, help and documentation (#1138)

* [automation] Auto-update linters version, help and documentation (#1141)

* [automation] Auto-update linters version, help and documentation (#1142)

* Release MegaLinter v5.5.0

* Increase node.js --max-old-space-size to 8192  (#1149)

* Increase node.js --max-old-space-size to 8192

* Build

* [automation] Auto-update linters version, help and documentation (#1144)

* trivy

* [automation] Auto-update linters version, help and documentation (#1151)

* [automation] Auto-update linters version, help and documentation

* cspell

* [automation] Auto-update linters version, help and documentation (#1155)

* [automation] Auto-update linters version, help and documentation (#1156)

* [automation] Auto-update linters version, help and documentation

* trivy

* [automation] Auto-update linters version, help and documentation (#1159)

* [automation] Auto-update linters version, help and documentation (#1161)

* Upgrade clj-kondo (#1165)

* [automation] Auto-update linters version, help and documentation (#1164)

* [automation] Auto-update linters version, help and documentation (#1167)

* [automation] Auto-update linters version, help and documentation (#1170)

* Retrieve licenses for documentation + fix config file + env issue (#1168)

* [automation] Auto-update linters version, help and documentation

* Disable Github Status reporter

* Breaking change: GITHUB_STATUS_REPORTER disabled by default

* Breaking change: set PRINT_ALL_FILES default to false

* Deploy V6 image (#1035)

* QuickFix CI job

* New flavor Security (#1036)

* Java PMD v0

* Java Pmd v0.01

* Working Java + pmd :)

* changelog + doc

* Genedate doc + manage offline mode

* changelog

* Bring back referring linters

* Fix build

* Automate update of changelog when new release (v0)

* Do not create commit & tag with npm version

* Move markdown formatting

* .md

* PMD install commands

* More pmd descriptor infos + build

* Fix megalinter errors

* Fix PMD install commands + build

* [MegaLinter] Apply linters fixes

* Hardcode some licenses

* [MegaLinter] Apply linters fixes

* Add gitleaks

* Build with gitleaks

* Gitleaks fixes

* changelog

* New descriptor: repository

TODO: deprecate git and credentials

* New descriptor "repository"

* Add Goodcheck


Goodcheck updates

* Fix PMD

* Fix PMD

* [MegaLinter] Apply linters fixes

* Fix pmd installation

* Typo

* wget --quiet

* Add trivy

* Build v6-alpha flavors

* Remove git & credentials descriptors + upgrade python base image

* Upgrade python

* New flavor Security v0

* Fix ansible-lint install

* Deploy v6-alpha documentation

* Fix test class

quick build

* Disable java pmd

* Downgrade python version

* SARIF v0

* Update descriptor JSON schema + retries for sgerrand url

* Add SARIF output for checkov

* Add SARIF output for eslint

* [automation] Auto-update linters version, help and documentation (#1038)

* Fix gitleaks

* Build

* Do not skip build if failed

* Do not test SARIF when SARIF is not active on a linter

* Update ansible install

* Fix goodcheck tests

* Fix markdown-table-formatter

* Fix trivy command

* Fix checkov test case + manage default sarif output file

* use MegaLinter beta for now

* Update CI for new default report folder

+ Manage {{REPORT_FOLDER}} in CLI variables

* Exit code 1 for trivy

* Fix replace_vars definition

* Do not run test mega-linter-runner when docker build failed

* Fix replace_vars

* Downgrade v8r version

* Fix arm test case

* build

* Fix again arm test case

* Fix makedirs for report folder

* Rename default report folder into megalinter-reports

* Fix gitleaks

* Try again gitleaks

* Fix last errors

* Fix internal lint errors

Co-authored-by: nvuillam <[email protected]>

* v6-alpha for github action

* Adapt CI for v6-alpha. (#1062)

* Fix own MegaLinter errors (#1063)

* Fix own MegaLinter errors

* Do not use secretlint on report folder

* Fix gitleaks own config

* Use regexes in gitleaks toml config file

* grmblmblm

* try with paths

* Regex to gather gitleaks errors

* Make gitleaks non blocking

* Update gitleaks descriptor

* Debug gitleaks (#1068)

* Debug gitleaks

* Remove LinkedIn ID gitleaks check

* Ignore .gitleaks.toml files

* Update security flavor + toml gitleaks update to use regexes

* Try again...

* Fix gitleaks config (use regexes in paths)

* Update default .gitleaks.toml files

* Clean dev variables

* Build

* Retrofit latest v5 updates into v6 (#1070)

* [automation] Auto-update linters version, help and documentation (#1038)

* Implement new linter PHPLint (#1037)

* add new phplint linter (see #1031)

* use composer global install for overture/phplint

* update changelog

* fix feature #1043 (#1044)

* Add @babel/eslint-parser as dependency for eslint (#1045)

* [automation] Auto-update linters version, help and documentation (#1046)

* [automation] Auto-update linters version, help and documentation + @babel-core

* Add @babel-core dependency

* Use node.js LTS and not nodejs-current

* Downgrade v8r version

* Fix arm test case

* Fix again arm test case

* [automation] Auto-update linters version, help and documentation

* Build

* [automation] Auto-update linters version, help and documentation (#1050)

* [automation] Auto-update linters version, help and documentation (#1052)

* [automation] Auto-update linters version, help and documentation

* Update doc for gitlab MegaLinter config

* Bandit default config file (#1051)

* remove default parameters

* add default bandit configfile built with bandit-config-generator command

* update changelog

* update bandit doc page

Co-authored-by: Nicolas Vuillamy <[email protected]>

* Try again ktlint auto-upgrade (#976)

* [automation] Auto-update linters version, help and documentation (#1055)

* [automation] Auto-update linters version, help and documentation (#1056)

* Docs & links (#1058)

* Update stale config

* Fix getting linter version of npm plugin. (#804)

* [automation] Auto-update linters version, help and documentation (#1059)

* Fix doc

* [automation] Auto-update linters version, help and documentation (#1065)

* [automation] Auto-update linters version, help and documentation (#1067)

* build

Co-authored-by: Laurent Laville <[email protected]>

* SARIF for gitleaks (#1069)

* SARIF for gitleaks

* Sarif python test class v0

* Lint fix + changelog

* Generate security flavor

* SARIF support for trivy (#1071)

* [automation] Auto-update linters version, help and documentation (#1038)

* Implement new linter PHPLint (#1037)

* add new phplint linter (see #1031)

* use composer global install for overture/phplint

* update changelog

* fix feature #1043 (#1044)

* Add @babel/eslint-parser as dependency for eslint (#1045)

* [automation] Auto-update linters version, help and documentation (#1046)

* [automation] Auto-update linters version, help and documentation + @babel-core

* Add @babel-core dependency

* Use node.js LTS and not nodejs-current

* Downgrade v8r version

* Fix arm test case

* Fix again arm test case

* [automation] Auto-update linters version, help and documentation

* Build

* [automation] Auto-update linters version, help and documentation (#1050)

* [automation] Auto-update linters version, help and documentation (#1052)

* [automation] Auto-update linters version, help and documentation

* Update doc for gitlab MegaLinter config

* Bandit default config file (#1051)

* remove default parameters

* add default bandit configfile built with bandit-config-generator command

* update changelog

* update bandit doc page

Co-authored-by: Nicolas Vuillamy <[email protected]>

* Try again ktlint auto-upgrade (#976)

* [automation] Auto-update linters version, help and documentation (#1055)

* [automation] Auto-update linters version, help and documentation (#1056)

* Docs & links (#1058)

* Update stale config

* Fix getting linter version of npm plugin. (#804)

* [automation] Auto-update linters version, help and documentation (#1059)

* Fix doc

* [automation] Auto-update linters version, help and documentation (#1065)

* [automation] Auto-update linters version, help and documentation (#1067)

* SARIF for gitleaks

* Sarif python test class v0

* Lint fix + changelog

* SARIF support for trivy

* Accelerate and fix internal tests

* Fix SARIF files

* Fix trivy sarif args

* [automation] Auto-update linters version, help and documentation (#1072)

* Fix SarifReporter

* Better handling of SARIF error management

* Fix SARIF default file name use

quick build

* Fix sarif reporter exception management

* Variabilize default release

* Improve runtime perfs when FLAVOR_SUGGESTIONS: false (#1073)

* Improve runtime perfs when FLAVOR_SUGGESTIONS: false

* [MegaLinter] Apply linters fixes

* Fix how to get MEGALINTER_FLAVOR

* Fix ignore flavor suggestion test class

Co-authored-by: nvuillam <[email protected]>

* Build

Co-authored-by: Laurent Laville <[email protected]>
Co-authored-by: nvuillam <[email protected]>

* V6/popularity - Display github stars in all linters documentation (#1075)

* Add popularity

* Update descriptors to add linter_repo when missing

* FLAVOR_SUGGESTIONS:false to improve perfs

* Build

* Enhance documentation (#1078)

* Popularity column in all tables

* More badges in linters list doc

* cspell

* Fix sarif test case (#1079)

* Fix sarif test case

* Fix hardcoded reporter folder name in test case

* Remove dockerfilelint (#1080)

* Remove dockerfilelint

* changelog

* Upgrade to AWS cfn-lint (#1085)

* Upgrade to AWS cfn-lint

* Build

* Add SARIF management for cfn-lint

* Add cfn-lint example SARIF output file

* SARIF management for Hadolint (#1089)

* SARIF management for Hadolint

* Update .gitleaks.toml to ignore .mypy_cache folder

* Catch SARIF error

* Upgrade hadolint to 2.8.0-alpine

* SARIF for checkstyle (#1093)

* SARIF for ktlint (#1095)

* SARIF for all eslint uses (#1094)

* SARIF management for go revive (#1092)

* SARIF management for go revive

* fix descriptor

quick build

* SARIF Management for PHP PSALM (#1096)

* Build doc

* More SARIF examples

* V6/docker standalone linters (#1099)

* Build unique linters dockerfiles

* Dockerfiles for unique linters + Improve perfs

* CI to build standalone images

* Fix CI

* Matrix jobs: do not fail other jobs if one fails

* Manage docker build --squash

* Add test cases to "only" docker images

* No codecov call when not running all tests

* Create output sarif folder when SARIF is from stdout

* Remove useless python packages for ML runtime

* Remove pytest-cov pytest-timeout from runtime image

* Optimize Until dotenv linter

* gcc in all dockerfiles + go for actionlint

* Add libffi-dev in all Docker images

* Add make

* add bash

* add musl-dev

* Fix linters install

* gnugpg for php

* Automate node & ruby-dev installation if packages are used in install

* Fix dotnet install

* More preset variables on single-linter docker images

* typo

* typo2

* Add ruby-bundler for gem packages

* Remove PHP_BUILTIN as it has been replaced by PHP_PHPLINT

* Fix descriptors and test class

* Improve CI perfs for only-linters build

* More fixes

* Fix kotlin install

* Fix raku install

* Fix R

* Fix scala

* Fix TSX

* Fix Vb .NET

* Build

* Linters page

* rollback raku

* Fix terraform_fmt & rollback raku

* Try fix rakudo

* Fix duplicate ARG and FROM in dockerfile

* Fix python lint err

* Disable lint_all_other_linters_files=true if in SINGLE_LINTER mode

* lint fix

* Reduce docker layers

* Reduce again the list of docker build steps

* Do not keep text logs if not wanted + linter delete SARIF files

* Fix CI

* Fix SARIF test case

* Disable deprecated test case

* Terrascan SARIF management (#1103)

* Terrascan SARIF management

* tflint SARIF management

* Fix terrascan args

* cspell

* MegaLinter server (#1106)

* PHP version switch (#1083)

* fixe issue #1060

* fix hadolint error DL3059

* [automation] Auto-update linters version, help and documentation (#1088)

* [automation] Auto-update linters version, help and documentation

* Increase trivy timeout

* [automation] Auto-update linters version, help and documentation (#1091)

* Release MegaLinter v5.3.0

* [automation] Auto-update linters version, help and documentation (#1097)

* Fix CHANGELOG

* [automation] Auto-update linters version, help and documentation (#1098)

* [automation] Auto-update linters version, help and documentation (#1100)

* [automation] Auto-update linters version, help and documentation (#1101)

* [automation] Auto-update linters version, help and documentation (#1104)

* KEEP_ALIVE_MEGALINTER v0

* openssh

* Build standalone linters only for linters managing SARIF

* Entrypoint

* Entrypoint: exit when test cases called

* Add openrc

* Try another way

https://github.com/danielguerra69/alpine-sshd

* Startup lines at the end

* Test simple case with password

* rhaaaa

* Remove ssh stuff as we loose env variables

* Server v0

* Server v0

* Add workspace argument

* Expose on port 80

* Manage running processes

* try debug flask

* debug mode for server

* v0 ?

* Fix server for report file name

* SARIF in http response

* [automation] Auto-update linters version, help and documentation (#1107)

* [automation] Auto-update linters version, help and documentation (#1109)

* [automation] Auto-update linters version, help and documentation (#1113)

* Bring back ssh

* Set env variables for all users

* [automation] Auto-update linters version, help and documentation (#1114)

* [automation] Auto-update linters version, help and documentation (#1116)

* [automation] Auto-update linters version, help and documentation (#1117)

* new SSH way with tmux

* Build

* Allow PWD auth for testing

* [automation] Auto-update linters version, help and documentation (#1118)

* [automation] Auto-update linters version, help and documentation (#1121)

* Release MegaLinter v5.4.0

* [automation] Auto-update linters version, help and documentation (#1122)

* [automation] Auto-update linters version, help and documentation (#1123)

* [automation] Auto-update linters version, help and documentation (#1124)

* [automation] Auto-update linters version, help and documentation (#1129)

* [clj-kondo] update docs and version to 2021.12.19 (#1126)

Co-authored-by: nvuillam <[email protected]>

* fix "MegaLinter vs Super-Linter" link in README (#1130)

Co-authored-by: Nicolas Vuillamy <[email protected]>

* Move ssh management to entrypoint

* QuickFix

* try again

* Stop docker container if entrypoint fails

* Sh in container

* alias for megalinger when running in server mode (#1133)

makes running megalinter in server mode easier

* aliases

* Build

* tmux_exec

* Build !

* [automation] Auto-update linters version, help and documentation (#1131)

* gha

* motd

* build

* -input and -output v0

* Use argparse

* Use parse_known_args

* config.set

* [automation] Auto-update linters version, help and documentation (#1135)

* DOCKER_DEFAULT_WORKSPACE_DIR & absolue path for --input argument

* introduce shell script to convenience running from ssh (#1137)

* Create megalinter_tmux

* Update build.py

* Build

Co-authored-by: nvuillam <[email protected]>

* Use --input

* Fix --input + CI

* CI for Inbar (create branch named v6_inbar )

* [automation] Auto-update linters version, help and documentation (#1138)

* [automation] Auto-update linters version, help and documentation (#1141)

* [automation] Auto-update linters version, help and documentation (#1142)

* Release MegaLinter v5.5.0

* V6 inbar (#1143)

* capture std is optional

capture std is optional

* improve megalinter_tmux script

add verbosity as an optional flag, improve some messages, add comments, fix script name in examples

* Bash file as executable

* Fix shellcheck issue https://github.com/koalaman/shellcheck/wiki/SC2124

* Python & Dockerfiles lint errors

* cspell

* Build

* Ignore tmux_exec for bash controlling

* pylint err

* cspell

Co-authored-by: Laurent Laville <[email protected]>
Co-authored-by: John Practicalli <[email protected]>
Co-authored-by: Adam Ralph <[email protected]>
Co-authored-by: Inbar <[email protected]>

* V6 semgrep (#1147)

* Add semgrep

* Manage cli_config_default_value

* Manage case when SARIF output is only the last sdout line

* Add python test files for semgrep

* semgrep --error

* use regex to extract json

* Use find / rfind instead of regex

* fix

* fix crash

* reverse does not have a return value

* Fix sarif_default_output_file process

* Check SARIF consistency in test classes

* Fix position to extract JSON from stdout

* position again

* Remove SARIF file from previous runs

* Stupid typo + remove aggregate SARIF if pre-existing ^^

* changelog

* Fix lint errors + descriptor json schema

* Build doc

* Automatically select security rulesets for semgrep (#1148)

* Automatically select security rulesets for semgrep

* Test classes for semgrep security rulesets

* Do not overwrite test class if already existing

* semgrep check failure

* Any v6- and v6_ branch generates standalone linters

* lint fixes

* document additional megalinter semgrep config vars

* build

* SARIF enhancements (and trivy failed attempts) (#1150)

* More general info in sarif

* Fix trivy install for SARIF

* Build

* Force sarif template path + upgrade trivy version

* fix wget call

* try chmod on sarif template

* typo

* trivy

* Add devskim (#1152)

* devskim v0

* devskim bad example

* Fix number of errors count

* fix & Build doc

* changelog

* cspell

* Fix CI

* cspell

* Fix trivy ?

* fix trivy ? (2)

* Try fix gitleaks (#1157)

* Try fix gitleaks

* trivy

* Workaround until next version of trivy

* build

* Revert "Try fix gitleaks"

This reverts commit e7c1be6.

* Remove default gitleaks use + --no-git

* --no-git back

* SARIF for npm-groovy-lint (#1158)

* SARIF for npm-groovy-lint

* Fix GroovyLinter custom class

* Factorize

* Manage dynamic --no-git presence for gitleaks (#1162)

* Manage dynamic --no-git presence for gitleaks

* lint fix

* Test upload SARIF to github

* Retrieve licenses

* Fix mixed config file + env variables config

* Link to licenses

* Update links to licenses

* Fixes

* fix lint err

* [MegaLinter] Apply linters fixes

Co-authored-by: nvuillam <[email protected]>
Co-authored-by: Laurent Laville <[email protected]>
Co-authored-by: John Practicalli <[email protected]>
Co-authored-by: Adam Ralph <[email protected]>
Co-authored-by: Inbar <[email protected]>

* [automation] Auto-update linters version, help and documentation (#1171)

* [automation] Auto-update linters version, help and documentation

* [MegaLinter] Apply linters fixes

Co-authored-by: nvuillam <[email protected]>

* [automation] Auto-update linters version, help and documentation (#1174)

* Fix call to npm-groovy-lint (#1177)

* Fix npm-groovy-lint call

#1176

* [MegaLinter] Apply linters fixes

Co-authored-by: nvuillam <[email protected]>

* lint fix

* lint fix (2)

* Make python linters play nice with each other (#1182)

* Make Flake8 play nice with Black

* Change black comment example

* Make pylint play nice with Black

* Make flake8 pass

Co-authored-by: Sam Chorlton <>

* Upgrade clj-kondo (#1181)

* Bump cljkondo/clj-kondo from 2022.01.13-alpine to 2022.01.15-alpine

Bumps cljkondo/clj-kondo from 2022.01.13-alpine to 2022.01.15-alpine.

---
updated-dependencies:
- dependency-name: cljkondo/clj-kondo
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <[email protected]>

* [automation] Auto-update linters version, help and documentation

* upgrade clj-kondo

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Fix wrong status in reports when DISABLE_ERRORS is used (#1184)

* Bump peter-evans/create-pull-request from 3.11.0 to 3.12.0

Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request) from 3.11.0 to 3.12.0.
- [Release notes](https://github.com/peter-evans/create-pull-request/releases)
- [Commits](peter-evans/create-pull-request@v3.11.0...v3.12.0)

---
updated-dependencies:
- dependency-name: peter-evans/create-pull-request
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>

* Bump actions/setup-node from 2.4.1 to 2.5.1

Bumps [actions/setup-node](https://github.com/actions/setup-node) from 2.4.1 to 2.5.1.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](actions/setup-node@v2.4.1...v2.5.1)

---
updated-dependencies:
- dependency-name: actions/setup-node
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>

* Bump shelljs from 0.8.4 to 0.8.5 in /mega-linter-runner

Bumps [shelljs](https://github.com/shelljs/shelljs) from 0.8.4 to 0.8.5.
- [Release notes](https://github.com/shelljs/shelljs/releases)
- [Changelog](https://github.com/shelljs/shelljs/blob/master/CHANGELOG.md)
- [Commits](shelljs/shelljs@v0.8.4...v0.8.5)

---
updated-dependencies:
- dependency-name: shelljs
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>

* Fix wrong status in reports when DISABLE_ERRORS is used

* [automation] Auto-update linters version, help and documentation

* Fix wrong status in reports when DISABLE_ERRORS is used

* Test cases fixes

* fix test class

* [MegaLinter] Apply linters fixes

quick build

* Fix test class

quick build

* Fix test class

quick build

* Update checkov & kics tests

quick build

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: nvuillam <[email protected]>

* CHANGELOG

* Release MegaLinter v5.6.0

* Build

* fix lint

* Fix dockerfile + build

* fix changelog

Co-authored-by: Laurent Laville <[email protected]>
Co-authored-by: John Practicalli <[email protected]>
Co-authored-by: Adam Ralph <[email protected]>
Co-authored-by: nvuillam <[email protected]>
Co-authored-by: Inbar <[email protected]>
Co-authored-by: Sam Chorlton <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
nvuillam added a commit that referenced this pull request Apr 23, 2022
* PHP version switch (#1083)

* fixe issue #1060

* fix hadolint error DL3059

* [automation] Auto-update linters version, help and documentation (#1088)

* [automation] Auto-update linters version, help and documentation

* Increase trivy timeout

* [automation] Auto-update linters version, help and documentation (#1091)

* Release MegaLinter v5.3.0

* [automation] Auto-update linters version, help and documentation (#1097)

* Fix CHANGELOG

* [automation] Auto-update linters version, help and documentation (#1098)

* [automation] Auto-update linters version, help and documentation (#1100)

* [automation] Auto-update linters version, help and documentation (#1101)

* [automation] Auto-update linters version, help and documentation (#1104)

* [automation] Auto-update linters version, help and documentation (#1107)

* [automation] Auto-update linters version, help and documentation (#1109)

* [automation] Auto-update linters version, help and documentation (#1113)

* [automation] Auto-update linters version, help and documentation (#1114)

* [automation] Auto-update linters version, help and documentation (#1116)

* [automation] Auto-update linters version, help and documentation (#1117)

* [automation] Auto-update linters version, help and documentation (#1118)

* [automation] Auto-update linters version, help and documentation (#1121)

* Release MegaLinter v5.4.0

* [automation] Auto-update linters version, help and documentation (#1122)

* [automation] Auto-update linters version, help and documentation (#1123)

* [automation] Auto-update linters version, help and documentation (#1124)

* [automation] Auto-update linters version, help and documentation (#1129)

* [clj-kondo] update docs and version to 2021.12.19 (#1126)

Co-authored-by: nvuillam <[email protected]>

* fix "MegaLinter vs Super-Linter" link in README (#1130)

Co-authored-by: Nicolas Vuillamy <[email protected]>

* [automation] Auto-update linters version, help and documentation (#1131)

* [automation] Auto-update linters version, help and documentation (#1135)

* [automation] Auto-update linters version, help and documentation (#1138)

* [automation] Auto-update linters version, help and documentation (#1141)

* [automation] Auto-update linters version, help and documentation (#1142)

* Release MegaLinter v5.5.0

* Increase node.js --max-old-space-size to 8192  (#1149)

* Increase node.js --max-old-space-size to 8192

* Build

* [automation] Auto-update linters version, help and documentation (#1144)

* trivy

* [automation] Auto-update linters version, help and documentation (#1151)

* [automation] Auto-update linters version, help and documentation

* cspell

* [automation] Auto-update linters version, help and documentation (#1155)

* [automation] Auto-update linters version, help and documentation (#1156)

* [automation] Auto-update linters version, help and documentation

* trivy

* [automation] Auto-update linters version, help and documentation (#1159)

* [automation] Auto-update linters version, help and documentation (#1161)

* Upgrade clj-kondo (#1165)

* [automation] Auto-update linters version, help and documentation (#1164)

* [automation] Auto-update linters version, help and documentation (#1167)

* [automation] Auto-update linters version, help and documentation (#1170)

* Retrieve licenses for documentation + fix config file + env issue (#1168)

* [automation] Auto-update linters version, help and documentation

* Disable Github Status reporter

* Breaking change: GITHUB_STATUS_REPORTER disabled by default

* Breaking change: set PRINT_ALL_FILES default to false

* Deploy V6 image (#1035)

* QuickFix CI job

* New flavor Security (#1036)

* Java PMD v0

* Java Pmd v0.01

* Working Java + pmd :)

* changelog + doc

* Genedate doc + manage offline mode

* changelog

* Bring back referring linters

* Fix build

* Automate update of changelog when new release (v0)

* Do not create commit & tag with npm version

* Move markdown formatting

* .md

* PMD install commands

* More pmd descriptor infos + build

* Fix megalinter errors

* Fix PMD install commands + build

* [MegaLinter] Apply linters fixes

* Hardcode some licenses

* [MegaLinter] Apply linters fixes

* Add gitleaks

* Build with gitleaks

* Gitleaks fixes

* changelog

* New descriptor: repository

TODO: deprecate git and credentials

* New descriptor "repository"

* Add Goodcheck


Goodcheck updates

* Fix PMD

* Fix PMD

* [MegaLinter] Apply linters fixes

* Fix pmd installation

* Typo

* wget --quiet

* Add trivy

* Build v6-alpha flavors

* Remove git & credentials descriptors + upgrade python base image

* Upgrade python

* New flavor Security v0

* Fix ansible-lint install

* Deploy v6-alpha documentation

* Fix test class

quick build

* Disable java pmd

* Downgrade python version

* SARIF v0

* Update descriptor JSON schema + retries for sgerrand url

* Add SARIF output for checkov

* Add SARIF output for eslint

* [automation] Auto-update linters version, help and documentation (#1038)

* Fix gitleaks

* Build

* Do not skip build if failed

* Do not test SARIF when SARIF is not active on a linter

* Update ansible install

* Fix goodcheck tests

* Fix markdown-table-formatter

* Fix trivy command

* Fix checkov test case + manage default sarif output file

* use MegaLinter beta for now

* Update CI for new default report folder

+ Manage {{REPORT_FOLDER}} in CLI variables

* Exit code 1 for trivy

* Fix replace_vars definition

* Do not run test mega-linter-runner when docker build failed

* Fix replace_vars

* Downgrade v8r version

* Fix arm test case

* build

* Fix again arm test case

* Fix makedirs for report folder

* Rename default report folder into megalinter-reports

* Fix gitleaks

* Try again gitleaks

* Fix last errors

* Fix internal lint errors

Co-authored-by: nvuillam <[email protected]>

* v6-alpha for github action

* Adapt CI for v6-alpha. (#1062)

* Fix own MegaLinter errors (#1063)

* Fix own MegaLinter errors

* Do not use secretlint on report folder

* Fix gitleaks own config

* Use regexes in gitleaks toml config file

* grmblmblm

* try with paths

* Regex to gather gitleaks errors

* Make gitleaks non blocking

* Update gitleaks descriptor

* Debug gitleaks (#1068)

* Debug gitleaks

* Remove LinkedIn ID gitleaks check

* Ignore .gitleaks.toml files

* Update security flavor + toml gitleaks update to use regexes

* Try again...

* Fix gitleaks config (use regexes in paths)

* Update default .gitleaks.toml files

* Clean dev variables

* Build

* Retrofit latest v5 updates into v6 (#1070)

* [automation] Auto-update linters version, help and documentation (#1038)

* Implement new linter PHPLint (#1037)

* add new phplint linter (see #1031)

* use composer global install for overture/phplint

* update changelog

* fix feature #1043 (#1044)

* Add @babel/eslint-parser as dependency for eslint (#1045)

* [automation] Auto-update linters version, help and documentation (#1046)

* [automation] Auto-update linters version, help and documentation + @babel-core

* Add @babel-core dependency

* Use node.js LTS and not nodejs-current

* Downgrade v8r version

* Fix arm test case

* Fix again arm test case

* [automation] Auto-update linters version, help and documentation

* Build

* [automation] Auto-update linters version, help and documentation (#1050)

* [automation] Auto-update linters version, help and documentation (#1052)

* [automation] Auto-update linters version, help and documentation

* Update doc for gitlab MegaLinter config

* Bandit default config file (#1051)

* remove default parameters

* add default bandit configfile built with bandit-config-generator command

* update changelog

* update bandit doc page

Co-authored-by: Nicolas Vuillamy <[email protected]>

* Try again ktlint auto-upgrade (#976)

* [automation] Auto-update linters version, help and documentation (#1055)

* [automation] Auto-update linters version, help and documentation (#1056)

* Docs & links (#1058)

* Update stale config

* Fix getting linter version of npm plugin. (#804)

* [automation] Auto-update linters version, help and documentation (#1059)

* Fix doc

* [automation] Auto-update linters version, help and documentation (#1065)

* [automation] Auto-update linters version, help and documentation (#1067)

* build

Co-authored-by: Laurent Laville <[email protected]>

* SARIF for gitleaks (#1069)

* SARIF for gitleaks

* Sarif python test class v0

* Lint fix + changelog

* Generate security flavor

* SARIF support for trivy (#1071)

* [automation] Auto-update linters version, help and documentation (#1038)

* Implement new linter PHPLint (#1037)

* add new phplint linter (see #1031)

* use composer global install for overture/phplint

* update changelog

* fix feature #1043 (#1044)

* Add @babel/eslint-parser as dependency for eslint (#1045)

* [automation] Auto-update linters version, help and documentation (#1046)

* [automation] Auto-update linters version, help and documentation + @babel-core

* Add @babel-core dependency

* Use node.js LTS and not nodejs-current

* Downgrade v8r version

* Fix arm test case

* Fix again arm test case

* [automation] Auto-update linters version, help and documentation

* Build

* [automation] Auto-update linters version, help and documentation (#1050)

* [automation] Auto-update linters version, help and documentation (#1052)

* [automation] Auto-update linters version, help and documentation

* Update doc for gitlab MegaLinter config

* Bandit default config file (#1051)

* remove default parameters

* add default bandit configfile built with bandit-config-generator command

* update changelog

* update bandit doc page

Co-authored-by: Nicolas Vuillamy <[email protected]>

* Try again ktlint auto-upgrade (#976)

* [automation] Auto-update linters version, help and documentation (#1055)

* [automation] Auto-update linters version, help and documentation (#1056)

* Docs & links (#1058)

* Update stale config

* Fix getting linter version of npm plugin. (#804)

* [automation] Auto-update linters version, help and documentation (#1059)

* Fix doc

* [automation] Auto-update linters version, help and documentation (#1065)

* [automation] Auto-update linters version, help and documentation (#1067)

* SARIF for gitleaks

* Sarif python test class v0

* Lint fix + changelog

* SARIF support for trivy

* Accelerate and fix internal tests

* Fix SARIF files

* Fix trivy sarif args

* [automation] Auto-update linters version, help and documentation (#1072)

* Fix SarifReporter

* Better handling of SARIF error management

* Fix SARIF default file name use

quick build

* Fix sarif reporter exception management

* Variabilize default release

* Improve runtime perfs when FLAVOR_SUGGESTIONS: false (#1073)

* Improve runtime perfs when FLAVOR_SUGGESTIONS: false

* [MegaLinter] Apply linters fixes

* Fix how to get MEGALINTER_FLAVOR

* Fix ignore flavor suggestion test class

Co-authored-by: nvuillam <[email protected]>

* Build

Co-authored-by: Laurent Laville <[email protected]>
Co-authored-by: nvuillam <[email protected]>

* V6/popularity - Display github stars in all linters documentation (#1075)

* Add popularity

* Update descriptors to add linter_repo when missing

* FLAVOR_SUGGESTIONS:false to improve perfs

* Build

* Enhance documentation (#1078)

* Popularity column in all tables

* More badges in linters list doc

* cspell

* Fix sarif test case (#1079)

* Fix sarif test case

* Fix hardcoded reporter folder name in test case

* Remove dockerfilelint (#1080)

* Remove dockerfilelint

* changelog

* Upgrade to AWS cfn-lint (#1085)

* Upgrade to AWS cfn-lint

* Build

* Add SARIF management for cfn-lint

* Add cfn-lint example SARIF output file

* SARIF management for Hadolint (#1089)

* SARIF management for Hadolint

* Update .gitleaks.toml to ignore .mypy_cache folder

* Catch SARIF error

* Upgrade hadolint to 2.8.0-alpine

* SARIF for checkstyle (#1093)

* SARIF for ktlint (#1095)

* SARIF for all eslint uses (#1094)

* SARIF management for go revive (#1092)

* SARIF management for go revive

* fix descriptor

quick build

* SARIF Management for PHP PSALM (#1096)

* Build doc

* More SARIF examples

* V6/docker standalone linters (#1099)

* Build unique linters dockerfiles

* Dockerfiles for unique linters + Improve perfs

* CI to build standalone images

* Fix CI

* Matrix jobs: do not fail other jobs if one fails

* Manage docker build --squash

* Add test cases to "only" docker images

* No codecov call when not running all tests

* Create output sarif folder when SARIF is from stdout

* Remove useless python packages for ML runtime

* Remove pytest-cov pytest-timeout from runtime image

* Optimize Until dotenv linter

* gcc in all dockerfiles + go for actionlint

* Add libffi-dev in all Docker images

* Add make

* add bash

* add musl-dev

* Fix linters install

* gnugpg for php

* Automate node & ruby-dev installation if packages are used in install

* Fix dotnet install

* More preset variables on single-linter docker images

* typo

* typo2

* Add ruby-bundler for gem packages

* Remove PHP_BUILTIN as it has been replaced by PHP_PHPLINT

* Fix descriptors and test class

* Improve CI perfs for only-linters build

* More fixes

* Fix kotlin install

* Fix raku install

* Fix R

* Fix scala

* Fix TSX

* Fix Vb .NET

* Build

* Linters page

* rollback raku

* Fix terraform_fmt & rollback raku

* Try fix rakudo

* Fix duplicate ARG and FROM in dockerfile

* Fix python lint err

* Disable lint_all_other_linters_files=true if in SINGLE_LINTER mode

* lint fix

* Reduce docker layers

* Reduce again the list of docker build steps

* Do not keep text logs if not wanted + linter delete SARIF files

* Fix CI

* Fix SARIF test case

* Disable deprecated test case

* Terrascan SARIF management (#1103)

* Terrascan SARIF management

* tflint SARIF management

* Fix terrascan args

* cspell

* MegaLinter server (#1106)

* PHP version switch (#1083)

* fixe issue #1060

* fix hadolint error DL3059

* [automation] Auto-update linters version, help and documentation (#1088)

* [automation] Auto-update linters version, help and documentation

* Increase trivy timeout

* [automation] Auto-update linters version, help and documentation (#1091)

* Release MegaLinter v5.3.0

* [automation] Auto-update linters version, help and documentation (#1097)

* Fix CHANGELOG

* [automation] Auto-update linters version, help and documentation (#1098)

* [automation] Auto-update linters version, help and documentation (#1100)

* [automation] Auto-update linters version, help and documentation (#1101)

* [automation] Auto-update linters version, help and documentation (#1104)

* KEEP_ALIVE_MEGALINTER v0

* openssh

* Build standalone linters only for linters managing SARIF

* Entrypoint

* Entrypoint: exit when test cases called

* Add openrc

* Try another way

https://github.com/danielguerra69/alpine-sshd

* Startup lines at the end

* Test simple case with password

* rhaaaa

* Remove ssh stuff as we loose env variables

* Server v0

* Server v0

* Add workspace argument

* Expose on port 80

* Manage running processes

* try debug flask

* debug mode for server

* v0 ?

* Fix server for report file name

* SARIF in http response

* [automation] Auto-update linters version, help and documentation (#1107)

* [automation] Auto-update linters version, help and documentation (#1109)

* [automation] Auto-update linters version, help and documentation (#1113)

* Bring back ssh

* Set env variables for all users

* [automation] Auto-update linters version, help and documentation (#1114)

* [automation] Auto-update linters version, help and documentation (#1116)

* [automation] Auto-update linters version, help and documentation (#1117)

* new SSH way with tmux

* Build

* Allow PWD auth for testing

* [automation] Auto-update linters version, help and documentation (#1118)

* [automation] Auto-update linters version, help and documentation (#1121)

* Release MegaLinter v5.4.0

* [automation] Auto-update linters version, help and documentation (#1122)

* [automation] Auto-update linters version, help and documentation (#1123)

* [automation] Auto-update linters version, help and documentation (#1124)

* [automation] Auto-update linters version, help and documentation (#1129)

* [clj-kondo] update docs and version to 2021.12.19 (#1126)

Co-authored-by: nvuillam <[email protected]>

* fix "MegaLinter vs Super-Linter" link in README (#1130)

Co-authored-by: Nicolas Vuillamy <[email protected]>

* Move ssh management to entrypoint

* QuickFix

* try again

* Stop docker container if entrypoint fails

* Sh in container

* alias for megalinger when running in server mode (#1133)

makes running megalinter in server mode easier

* aliases

* Build

* tmux_exec

* Build !

* [automation] Auto-update linters version, help and documentation (#1131)

* gha

* motd

* build

* -input and -output v0

* Use argparse

* Use parse_known_args

* config.set

* [automation] Auto-update linters version, help and documentation (#1135)

* DOCKER_DEFAULT_WORKSPACE_DIR & absolue path for --input argument

* introduce shell script to convenience running from ssh (#1137)

* Create megalinter_tmux

* Update build.py

* Build

Co-authored-by: nvuillam <[email protected]>

* Use --input

* Fix --input + CI

* CI for Inbar (create branch named v6_inbar )

* [automation] Auto-update linters version, help and documentation (#1138)

* [automation] Auto-update linters version, help and documentation (#1141)

* [automation] Auto-update linters version, help and documentation (#1142)

* Release MegaLinter v5.5.0

* V6 inbar (#1143)

* capture std is optional

capture std is optional

* improve megalinter_tmux script

add verbosity as an optional flag, improve some messages, add comments, fix script name in examples

* Bash file as executable

* Fix shellcheck issue https://github.com/koalaman/shellcheck/wiki/SC2124

* Python & Dockerfiles lint errors

* cspell

* Build

* Ignore tmux_exec for bash controlling

* pylint err

* cspell

Co-authored-by: Laurent Laville <[email protected]>
Co-authored-by: John Practicalli <[email protected]>
Co-authored-by: Adam Ralph <[email protected]>
Co-authored-by: Inbar <[email protected]>

* V6 semgrep (#1147)

* Add semgrep

* Manage cli_config_default_value

* Manage case when SARIF output is only the last sdout line

* Add python test files for semgrep

* semgrep --error

* use regex to extract json

* Use find / rfind instead of regex

* fix

* fix crash

* reverse does not have a return value

* Fix sarif_default_output_file process

* Check SARIF consistency in test classes

* Fix position to extract JSON from stdout

* position again

* Remove SARIF file from previous runs

* Stupid typo + remove aggregate SARIF if pre-existing ^^

* changelog

* Fix lint errors + descriptor json schema

* Build doc

* Automatically select security rulesets for semgrep (#1148)

* Automatically select security rulesets for semgrep

* Test classes for semgrep security rulesets

* Do not overwrite test class if already existing

* semgrep check failure

* Any v6- and v6_ branch generates standalone linters

* lint fixes

* document additional megalinter semgrep config vars

* build

* SARIF enhancements (and trivy failed attempts) (#1150)

* More general info in sarif

* Fix trivy install for SARIF

* Build

* Force sarif template path + upgrade trivy version

* fix wget call

* try chmod on sarif template

* typo

* trivy

* Add devskim (#1152)

* devskim v0

* devskim bad example

* Fix number of errors count

* fix & Build doc

* changelog

* cspell

* Fix CI

* cspell

* Fix trivy ?

* fix trivy ? (2)

* Try fix gitleaks (#1157)

* Try fix gitleaks

* trivy

* Workaround until next version of trivy

* build

* Revert "Try fix gitleaks"

This reverts commit e7c1be65c9dadc585cdea4c1302d75146d3acf8e.

* Remove default gitleaks use + --no-git

* --no-git back

* SARIF for npm-groovy-lint (#1158)

* SARIF for npm-groovy-lint

* Fix GroovyLinter custom class

* Factorize

* Manage dynamic --no-git presence for gitleaks (#1162)

* Manage dynamic --no-git presence for gitleaks

* lint fix

* Test upload SARIF to github

* Retrieve licenses

* Fix mixed config file + env variables config

* Link to licenses

* Update links to licenses

* Fixes

* fix lint err

* [MegaLinter] Apply linters fixes

Co-authored-by: nvuillam <[email protected]>
Co-authored-by: Laurent Laville <[email protected]>
Co-authored-by: John Practicalli <[email protected]>
Co-authored-by: Adam Ralph <[email protected]>
Co-authored-by: Inbar <[email protected]>

* [automation] Auto-update linters version, help and documentation (#1171)

* [automation] Auto-update linters version, help and documentation

* [MegaLinter] Apply linters fixes

Co-authored-by: nvuillam <[email protected]>

* [automation] Auto-update linters version, help and documentation (#1174)

* Fix call to npm-groovy-lint (#1177)

* Fix npm-groovy-lint call

https://github.com/megalinter/megalinter/issues/1176

* [MegaLinter] Apply linters fixes

Co-authored-by: nvuillam <[email protected]>

* lint fix

* lint fix (2)

* Make python linters play nice with each other (#1182)

* Make Flake8 play nice with Black

* Change black comment example

* Make pylint play nice with Black

* Make flake8 pass

Co-authored-by: Sam Chorlton <>

* Upgrade clj-kondo (#1181)

* Bump cljkondo/clj-kondo from 2022.01.13-alpine to 2022.01.15-alpine

Bumps cljkondo/clj-kondo from 2022.01.13-alpine to 2022.01.15-alpine.

---
updated-dependencies:
- dependency-name: cljkondo/clj-kondo
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <[email protected]>

* [automation] Auto-update linters version, help and documentation

* upgrade clj-kondo

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Fix wrong status in reports when DISABLE_ERRORS is used (#1184)

* Bump peter-evans/create-pull-request from 3.11.0 to 3.12.0

Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request) from 3.11.0 to 3.12.0.
- [Release notes](https://github.com/peter-evans/create-pull-request/releases)
- [Commits](https://github.com/peter-evans/create-pull-request/compare/v3.11.0...v3.12.0)

---
updated-dependencies:
- dependency-name: peter-evans/create-pull-request
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>

* Bump actions/setup-node from 2.4.1 to 2.5.1

Bumps [actions/setup-node](https://github.com/actions/setup-node) from 2.4.1 to 2.5.1.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v2.4.1...v2.5.1)

---
updated-dependencies:
- dependency-name: actions/setup-node
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>

* Bump shelljs from 0.8.4 to 0.8.5 in /mega-linter-runner

Bumps [shelljs](https://github.com/shelljs/shelljs) from 0.8.4 to 0.8.5.
- [Release notes](https://github.com/shelljs/shelljs/releases)
- [Changelog](https://github.com/shelljs/shelljs/blob/master/CHANGELOG.md)
- [Commits](https://github.com/shelljs/shelljs/compare/v0.8.4...v0.8.5)

---
updated-dependencies:
- dependency-name: shelljs
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>

* Fix wrong status in reports when DISABLE_ERRORS is used

* [automation] Auto-update linters version, help and documentation

* Fix wrong status in reports when DISABLE_ERRORS is used

* Test cases fixes

* fix test class

* [MegaLinter] Apply linters fixes

quick build

* Fix test class

quick build

* Fix test class

quick build

* Update checkov & kics tests

quick build

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: nvuillam <[email protected]>

* CHANGELOG

* Release MegaLinter v5.6.0

* Fix v5 doc deployment (#1192)

https://github.com/megalinter/megalinter/issues/1190

* Bump node-fetch from 2.6.6 to 2.6.7 in /mega-linter-runner (#1193)

Bumps [node-fetch](https://github.com/node-fetch/node-fetch) from 2.6.6 to 2.6.7.
- [Release notes](https://github.com/node-fetch/node-fetch/releases)
- [Changelog](https://github.com/node-fetch/node-fetch/blob/main/docs/CHANGELOG.md)
- [Commits](https://github.com/node-fetch/node-fetch/compare/v2.6.6...v2.6.7)

---
updated-dependencies:
- dependency-name: node-fetch
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* QuickFix doc generation

* QuickFix doc generation (2)

* [automation] Auto-update linters version, help and documentation (#1194)

* Gitlab comment reporter (#732)

* Gitlab comment reporter

* remove pip requests package downgrade

* typo

* lint fixes

* Build

* Build

* Use CI_SERVER_URL

* Use more constant variables

* Retrofit upgrades from v5

* Alternative way to find merge request id

* Update reporters

* Debug traces

* Fixes

* fix log

* Manage MEGALINTER_ACCESS_TOKEN

quick build

* Quick build push step

quick build push

* Update doc & var name

quick build push

* Remove development logs

* Update doc

* Update & build doc

* Doc & build

* CI job instead of CI Action

* Lint fixes

* [automation] Auto-update linters version, help and documentation (#1195)

* [automation] Auto-update linters version, help and documentation

* [MegaLinter] Apply linters fixes

* QuickFix Gitlab  comments reporter

quick build push

Co-authored-by: nvuillam <[email protected]>

* Fix Gitlab comment reporter when MR not found (#1197)

* QuickFix Gitlab Comments reporter for self-hosted instances

* [automation] Auto-update linters version, help and documentation (#1198)

* [automation] Auto-update linters version, help and documentation

* QuickFix lint

* [automation] Auto-update linters version, help and documentation (#1201)

* [automation] Auto-update linters version, help and documentation

* Fix sqlfluff bug

* Add configuration file option for SQLFluff (#1200)

* Add configuration file for SQLFluff

* Correct config file name

* Update megalinter/descriptors/sql.megalinter-descriptor.yml

Co-authored-by: nvuillam <[email protected]>

* Fix Github auth on Azure Pipelines (#1202)

* Fix Github auth on Azure Pipelines

Fix issue when using `VALIDATE_ALL_CODEBASE: false` on Azure Pipelines by defining auth header in CI env variable GIT_AUTHORIZATION_BEARER ([#1125](https://github.com/megalinter/megalinter/issues/1125))

* [MegaLinter] Apply linters fixes

* Update doc for Azure

Co-authored-by: nvuillam <[email protected]>

* Add compatibility for prettier (#1209)

Co-authored-by: Sam Chorlton <>

* [automation] Auto-update linters version, help and documentation (#1203)

* [automation] Auto-update linters version, help and documentation

* Remove downgrade of sqlfluff

https://github.com/megalinter/megalinter/pull/1200

* Use .gitignore as .secretlintignore when necessary (#1210)

* Use .gitignore as .secretlintignore when necessary

* [MegaLinter] Apply linters fixes

Co-authored-by: nvuillam <[email protected]>

* Fix tflint initialization (#1204)

* Fix tflint initialization

Fix tflint initialization so it uses configuration file when defined ([#1134](https://github.com/megalinter/megalinter/issues/1134))

* changelog

* Fix python lint errors

* [automation] Auto-update linters version, help and documentation (#1211)

* Undo rubocop downgrade (#1214)

* Fix Gitlab comment reporter (#1215)

* Fix Gitlab comment reporter

* Update Gitlab documentation with gif tutorial

* Lint fix

* Improve linter perfs & logs (#1217)

* [automation] Auto-update linters version, help and documentation

* [MegaLinter] Apply linters fixes

* HTMLHint config to count errors + test method

* Use list_of_files mode with htmlhint

* changelog

* ShellCheck: cli_lint_mode: list_of_files to improve perfs

* shfmt ci_lint_mode: list_of_files + regex count

quick build push

* Update test case for markdown-link-check

quick build push

* test (TODO: remove after)

* Fix lint error

quick build push

* cpplint: Display correct number of errors in logs

quick build push

* Count actionlint errors

quick build push

* Count errors perlcritic

quick build push

* Count chktex errors

quick build push

* Enhance test class error message

quick build push

* Let's not test TAP anymore

* Update test case files

quick build push

* Fix perlcritic test case

quick build push

* Fix python test cases

quick build push

* Fix perlcritic regex count

quick build push

* Fix SF test cases

quick build push

* Fix shell test case

quick build push

* Bash exec doc

* Fix doc

Fixes https://github.com/megalinter/megalinter/issues/1212

* Fix salesforce config

quick build push

* Fix mypy test case

quick build push

* Update mypy ref url

quick build push

* Revert "test (TODO: remove after)"

This reverts commit 2dfd39edd1666e85ed28373f36475df5c5c63ccf.

* Build

quick build

* [MegaLinter] Apply linters fixes

quick build

Co-authored-by: nvuillam <[email protected]>

* Use apk to install shfmt

* Downgrade snakemake

* Downgrade snakemake (#1218)

* Downgrade snakemake

* Downgrade snakefmt

* [automation] Auto-update linters version, help and documentation (#1219)

* [automation] Auto-update linters version, help and documentation

* Update GHA template

* Change snakemake install method then Build

* [MegaLinter] Apply linters fixes

Co-authored-by: nvuillam <[email protected]>

* [automation] Auto-update linters version, help and documentation (#1222)

* Order changelog

* Release MegaLinter v5.7.0

* Update .cspell default config (#1226)

* Improve performances (#1227)

* stylelint: list_of_files

* standard: list_of_files

* markdown-link-check: list_of_files

* Upgrade link ref

* [automation] Auto-update linters version, help and documentation (#1225)

* [automation] Auto-update linters version, help and documentation (#1230)

* Manage before_exit() & clean git repo (#1232)

Fixes https://github.com/megalinter/megalinter/issues/1125
quick build push

* [automation] Auto-update linters version, help and documentation (#1233)

* [automation] Auto-update linters version, help and documentation (#1235)

* [automation] Auto-update linters version, help and documentation (#1238)

* Auto-upgrade pip + temporary disable snakemake + fix gitlab error message (#1236)

* Auto-upgrade pip

* Manage disable linter + disable snakefmt

* Undowngrade snakemake + build

* Fix upgrade pip & lint fix

* Lint fix

* [MegaLinter] Apply linters fixes

* Fix build

* [MegaLinter] Apply linters fixes

* Fix gitlab token error labels

* Disable snakemake test.

Co-authored-by: nvuillam <[email protected]>

* [automation] Auto-update linters version, help and documentation (#1240)

* Release MegaLinter v5.7.1

* Animated gif for assisted configuration

* [automation] Auto-update linters version, help and documentation (#1241)

* [automation] Auto-update linters version, help and documentation (#1242)

* [automation] Auto-update linters version, help and documentation (#1243)

* Fix GitlabCommentReporter raise unhandled exception if no merge request has been found (#1247)

* [automation] Auto-update linters version, help and documentation (#1245)

* Doc images (#1251)

* Bump peter-evans/create-pull-request from 3.12.0 to 3.12.1

Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request) from 3.12.0 to 3.12.1.
- [Release notes](https://github.com/peter-evans/create-pull-request/releases)
- [Commits](https://github.com/peter-evans/create-pull-request/compare/v3.12.0...v3.12.1)

---
updated-dependencies:
- dependency-name: peter-evans/create-pull-request
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>

* cspell + sample ML users

* animated gifs

* Build.

* changelog

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Add publish artifact task in azure pipeline doc

* [automation] Auto-update linters version, help and documentation (#1250)

* [automation] Auto-update linters version, help and documentation

* cspell

* Manage Gitlab certificate (#1249)

* Manage gitlab certificate

* Build

* Manage GITLAB_CUSTOM_CERTIFICATE

quick build push

* Fix python issue

quick build push

* Error msg doc

* [MegaLinter] Apply linters fixes

* Update config json schema

quick build push

Co-authored-by: nvuillam <[email protected]>

* Allow Eslint with config in package.json #1205 (#1206)

* Allow Eslint with config in package.json #1205

* Allow to check prop existence in active_only_if_file_found

* Lint fix

Co-authored-by: nvuillam <[email protected]>

* [automation] Auto-update linters version, help and documentation (#1253)

* [automation] Auto-update linters version, help and documentation

* [MegaLinter] Apply linters fixes

Co-authored-by: nvuillam <[email protected]>

* Gitlab reporter doc

* cspell

* Avoid storing copies of files in layer for kubeval, shellcheck, and misspell (#1229)

* Avoid storing copy in layer for kubeval, shellcheck, misspell

The copies are removed in the layer by immediatly deleting the files in the same `RUN` command. The LICENSE files are kept.

* Apply changes in descriptors to Dockerfiles

* Improve call of ansible-lint (#1255)

* Allow Eslint with config in package.json #1205

* Allow to check prop existence in active_only_if_file_found

* Lint fix

* Fix ansible-lint test cases

quick build push

* [MegaLinter] Apply linters fixes

* Fix ansible test cases (2)

* Fix ansible test cases (2)

quick build push

* Fix call to ansible-lint

* Build

* Install ansible-lint using pip

* Update ansible-lint test cases

* Count errors & update ansible-lint test cases

* [MegaLinter] Apply linters fixes

* Move .ansible-lint at the good location

Co-authored-by: Vitalii Tverdokhlib <[email protected]>
Co-authored-by: nvuillam <[email protected]>

* changelog

* [automation] Auto-update linters version, help and documentation (#1257)

* Fix suggestion to use proper variable name (#1261)

* Fix suggestion to use proper variable name

* Update CHANGELOG.md

* [automation] Auto-update linters version, help and documentation (#1260)

* [automation] Auto-update linters version, help and documentation (#1263)

* Update mkdocs.yml

* [automation] Auto-update linters version, help and documentation (#1271)

* [automation] Auto-update linters version, help and documentation (#1272)

* [automation] Auto-update linters version, help and documentation

* more users

* Terrascan: cli_lint_mode = project  (#1274)

* Terrascan: cli_lint_mode = project

* terrascan: config arg name & config file name

* trivy

* [automation] Auto-update linters version, help and documentation (#1273)

* [automation] Auto-update linters version, help and documentation (#1278)

* [automation] Auto-update linters version, help and documentation (#1280)

* Release MegaLinter v5.8.0

* trivy

* [automation] Auto-update linters version, help and documentation (#1284)

* [automation] Auto-update linters version, help and documentation

* trivy

* Use latest npm version (#1276)

* Use latest npm

* Build

* WORKDIR /

* trivy

* Generate JSON schema HTML doc when bash build.sh --doc is called (#1289)

* Generate JSON schema HTML doc when bash build.sh --doc is called

* changelog

* [MegaLinter] Apply linters fixes

Co-authored-by: nvuillam <[email protected]>

* Upgrade clj-kondo to cljkondo/clj-kondo:2022.02.09-alpine (#1281)

* more users

* Upgrade clj-kondo to cljkondo/clj-kondo:2022.02.09-alpine

* rubocop: remove `--force-exclusion` from auto-added parameters (#1290)

Fixes https://github.com/megalinter/megalinter/issues/302

* New linter: kubeconform (#1285)

* New linter: kubeconform

* kubeconform: Fix launch cmd

* kubeconform: fix spelling

* kubeconform: fix error count

* kubeconform: fix regex

* kubeconfirm: adding bad files to test counts

* Force rebuild

* Rollback license update !

* Remove JSON schema HTML doc from build.py

* Recommended extensions for MegaLinter contribution (#1291)

* Bump actions/github-script from 5 to 6

Bumps [actions/github-script](https://github.com/actions/github-script) from 5 to 6.
- [Release notes](https://github.com/actions/github-script/releases)
- [Commits](https://github.com/actions/github-script/compare/v5...v6)

---
updated-dependencies:
- dependency-name: actions/github-script
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>

* Add recommended VsCode extensions for MegaLinter development

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* [automation] Auto-update linters version, help and documentation (#1294)

* [automation] Auto-update linters version, help and documentation

* [MegaLinter] Apply linters fixes

* trivy

Co-authored-by: nvuillam <[email protected]>

* [automation] Auto-update linters version, help and documentation (#1295)

* [automation] Auto-update linters version, help and documentation

* lint

* Add shell script linters to ci_light flavor (#1299)

* Add shell script linters to ci_light flavor

Use-case: many of my Docker-related projects have glue shell scripts (e.g., `/entrypoint.sh`) that are added to images (e.g., `COPY entrypoint.sh /`) that are run when the image is run (e.g., `ENTRYPOINT ["/entrypoint.sh"]`) and I would like to have them scanned without having to pull down the full scanner.

* Add sh linters to ci_light flavor + build

Co-authored-by: nvuillam <[email protected]>

* [automation] Auto-update linters version, help and documentation (#1300)

* [automation] Auto-update linters version, help and documentation (#1302)

* [automation] Auto-update linters version, help and documentation (#1303)

* Switch from jdk8 to jdk11 (#1309)

* Terrascan init as pre-command (#1311)

* [automation] Auto-update linters version, help and documentation

* terrascan init as pre-command

* [MegaLinter] Apply linters fixes

Co-authored-by: nvuillam <[email protected]>

* Reactivate snakefmt (#1312)

* [automation] Auto-update linters version, help and documentation

* [automation] Auto-update linters version, help and documentation (#1315)

* [automation] Auto-update linters version, help and documentation (#1318)

* [automation] Auto-update linters version, help and documentation (#1319)

* [automation] Auto-update linters version, help and documentation (#1320)

* [automation] Auto-update linters version, help and documentation (#1322)

* [automation] Auto-update linters version, help and documentation (#1323)

* [automation] Auto-update linters version, help and documentation (#1325)

* [automation] Auto-update linters version, help and documentation (#1326)

* [automation] Auto-update linters version, help and documentation

* Users & fix

* [automation] Auto-update linters version, help and documentation

* [automation] Auto-update linters version, help and documentation (#1327)

* [automation] Auto-update linters version, help and documentation (#1328)

* [automation] Auto-update linters version, help and documentation (#1329)

* Update SQLFluff default config with latest options (#1331)

* Update SQLFluff default config for 0.11.0

* Sync with latest

* [automation] Auto-update linters version, help and documentation (#1330)

* [automation] Auto-update linters version, help and documentation (#1332)

* [automation] Auto-update linters version, help and documentation (#1333)

* [automation] Auto-update linters version, help and documentation

* Fix ansible-lint test case

* [automation] Auto-update linters version, help and documentation (#1335)

* [automation] Auto-update linters version, help and documentation (#1336)

* Upgrade hadolint (#1338)

* Upgrade hadolint

* hadolint config

* [automation] Auto-update linters version, help and documentation (#1339)

* Add article

* Doc

* doc

* [automation] Auto-update linters version, help and documentation (#1342)

* Release MegaLinter v5.10.0

* [automation] Auto-update linters version, help and documentation (#1343)

* [automation] Auto-update linters version, help and documentation (#1344)

* [automation] Auto-update linters version, help and documentation

* cspell

* [automation] Auto-update linters version, help and documentation (#1346)

* [automation] Auto-update linters version, help and documentation (#1349)

* [automation] Auto-update linters version, help and documentation

* trivy

* [automation] Auto-update linters version, help and documentation (#1351)

* [automation] Auto-update linters version, help and documentation

* Disable rstfmt

* pylint

* Github Comment Reporter: Use a html comment to mark the comment (#1356)

This replaces the old method, which looked for the "see error details" link,
but that link was not always present in comments.

The comment records the current workflow and jobid, so multiple mega-linters
can comment on the same PR without colliding.

Co-authored-by: Nicolas Vuillamy <[email protected]>

* [MegaLinter] Apply linters fixes (#1357)

quick build

Co-authored-by: nvuillam <[email protected]>

* Display plugin url in MegaLinter output logs + quick fixes (#1358)

* Display plugin url in MegaLinter output logs

* [MegaLinter] Apply linters fixes

* Add tflint-aws plugin installation to match new version of tflint

* Fix glibc public key download

* downgrade tflint

* fix sgerrand url

Co-authored-by: nvuillam <[email protected]>

* Improve the comment marker format (#1359)

Instead of just joining the workflow name and jobid without spacing,
encapsulate both in quotes and give them a `workflow=` and `jobid=` prefix to
aid debugging.

Co-authored-by: Nicolas Vuillamy <[email protected]>

* [automation] Auto-update linters version, help and documentation (#1362)

* Doc: jenkins script to upload artifacts (#1363)

* Doc: jenkins script to upload artifacts

* changelog

* [automation] Auto-update linters version, help and documentation (#1366)

* Bump minimist from 1.2.5 to 1.2.6 in /mega-linter-runner

Bumps [minimist](https://github.com/substack/minimist) from 1.2.5 to 1.2.6.
- [Release notes](https://github.com/substack/minimist/releases)
- [Commits](https://github.com/substack/minimist/compare/1.2.5...1.2.6)

---
updated-dependencies:
- dependency-name: minimist
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>

* [automation] Auto-update linters version, help and documentation

* fix mypy test case

* [automation] Auto-update linters version, help and documentation

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Upgrade hadolint (#1370)

* Bump hadolint/hadolint from v2.9.1-alpine to v2.9.3-alpine

Bumps hadolint/hadolint from v2.9.1-alpine to v2.9.3-alpine.

---
updated-dependencies:
- dependency-name: hadolint/hadolint
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <[email protected]>

* Upgrade hadolint

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* markdown-links-check: allow 203 as valid return code (#1369)

* [automation] Auto-update linters version, help and documentation (#1371)

* [automation] Auto-update linters version, help and documentation (#1375)

* User stats (#1377)

* [automation] Auto-update linters version, help and documentation

* Disable rstfmt

* Order MegaLinter users

* pylint

* Updated github users

* All users page generation

* Articles section

* build doc

* More users

* More users

* cspell config

* [automation] Auto-update linters version, help and documentation (#1381)

* Update doc

* [automation] Auto-update linters version, help and documentation (#1382)

* [automation] Auto-update linters version, help and documentation (#1384)

* Fix `no override and no default toolchain set` when lint rust with clippy via github-action (#1385)

FIX #975

* [automation] Auto-update linters version, help and documentation (#1387)

* [automation] Auto-update linters version, help and documentation

* [MegaLinter] Apply linters fixes

Co-authored-by: nvuillam <[email protected]>

* [automation] Auto-update linters version, help and documentation (#1388)

* Manage dependencies & upgrade clj-kondo & hadolint (#1396)

* Bump actions/setup-python from 2 to 3.1.1

Bumps [actions/setup-python](https://github.com/actions/setup-python) from 2 to 3.1.1.
- [Release notes](https://github.com/actions/setup-python/releases)
- [Commits](https://github.com/actions/setup-python/compare/v2...v3.1.1)

---
updated-dependencies:
- dependency-name: actions/setup-python
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>

* Bump actions/upload-artifact from 2 to 3

Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 2 to 3.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](https://github.com/actions/upload-artifact/compare/v2...v3)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>

* Bump cljkondo/clj-kondo from 2022.02.09-alpine to 2022.04.08-alpine

Bumps cljkondo/clj-kondo from 2022.02.09-alpine to 2022.04.08-alpine.

---
updated-dependencies:
- dependency-name: cljkondo/clj-kondo
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <[email protected]>

* Bump actions/checkout from 2.4.0 to 3.0.0

Bumps [actions/checkout](https://github.com/actions/checkout) from 2.4.0 to 3.0.0.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v2.4.0...v3.0.0)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>

* Bump actions/stale from 4 to 5

Bumps [actions/stale](https://github.com/actions/stale) from 4 to 5.
- [Release notes](https://github.com/actions/stale/releases)
- [Changelog](https://github.com/actions/stale/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/stale/compare/v4...v5)

---
updated-dependencies:
- dependency-name: actions/stale
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>

* [automation] Auto-update linters version, help and documentation

* Upgrade clj-kondo and hadolint, + fix sqlfluff test case

* Fix clj-kondo test case for new version

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* [automation] Auto-update linters version, help and documentation (#1391)

* [automation] Auto-update linters version, help and documentation (#1400)

* create cspell report dirs if required (#1399)

* fix(cspell): Create config dirs if missing

If a cspell config is located in some directory we need to create the same tree under the `report` dir

* docs(CHANGELOG): added fix note

Co-authored-by: Nicolas Vuillamy <[email protected]>

* [automation] Auto-update linters version, help and documentation (#1401)

* Release MegaLinter v5.11.0

* [automation] Auto-update linters version, help and documentation (#1405)

* Manage FAIL_IF_UPDATED_SOURCES option (#1410)

* Bump actions/setup-python from 3.1.1 to 3.1.2

Bumps [actions/setup-python](https://github.com/actions/setup-python) from 3.1.1 to 3.1.2.
- [Release notes](https://github.com/actions/setup-python/releases)
- [Commits](https://github.com/actions/setup-python/compare/v3.1.1...v3.1.2)

---
updated-dependencies:
- dependency-name: actions/setup-python
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>

* Manage FAIL_IF_UPDATED_SOURCES option

* [MegaLinter] Apply linters fixes

* Bump actions/checkout from 3.0.0 to 3.0.1

Bumps [actions/checkout](https://github.com/actions/checkout) from 3.0.0 to 3.0.1.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v3.0.0...v3.0.1)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>

* Fix git issue

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: nvuillam <[email protected]>

* QuickFix

* Try fix Git CVE issue for own linting (#1415)

* Try fix Git CVE issue

* Try again fix git issue

* Fix CI

* Allow git generic safe directory

As we are supposed to trust the machine and repo we use MegaLinter on

* Dynamic add git safe.directory (#1417)

* Dynamic add git safe.directory

quick build

* Test auto-update too

* [automation] Auto-update linters version, help and documentation

* Quickfix json schema FAIL_IF_UPDATED_SOURCES

* Upgrade multiple dependencies (#1419)

* Bump pascalgn/automerge-action from 0.14.3 to 0.15.2

Bumps [pascalgn/automerge-action](https://github.com/pascalgn/automerge-action) from 0.14.3 to 0.15.2.
- [Release notes](https://github.com/pascalgn/automerge-action/releases)
- [Commits](https://github.com/pascalgn/automerge-action/compare/v0.14.3...v0.15.2)

---
updated-dependencies:
- dependency-name: pascalgn/automerge-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>

* Bump peter-evans/create-pull-request from 3 to 4.0.1

Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request) from 3 to 4.0.1.
- [Release notes](https://github.com/peter-evans/create-pull-request/releases)
- [Commits](https://github.com/peter-evans/create-pull-request/compare/v3...v4.0.1)

---
updated-dependencies:
- dependency-name: peter-evans/create-pull-request
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>

* Bump terraform-linters/tflint from v0.34.1 to v0.35.0

Bumps terraform-linters/tflint from v0.34.1 to v0.35.0.

---
updated-dependencies:
- dependency-name: terraform-linters/tflint
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <[email protected]>

* Bump actions/setup-node from 2.5.1 to 3.1.1

Bumps [actions/setup-node](https://github.com/actions/setup-node) from 2.5.1 to 3.1.1.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v2.5.1...v3.1.1)

---
updated-dependencies:
- dependency-name: actions/setup-node
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>

* upgrade tflint

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* [automation] Auto-update linters version, help and documentation (#1424)

* [automation] Auto-update linters version, help and documentation (#1429)

* [automation] Auto-update linters version, help and documentation

* Update .trivyignore

* [automation] Auto-update linters version, help and documentation (#1431)

* [automation] Auto-update linters version, help and documentation (#1432)

* Release MegaLinter v5.12.0

* Fixes

* fixes

* git safe.directory in ox called SH

* test cases

* Fix JS

* Fixes

Co-authored-by: Laurent Laville <[email protected]>
Co-authored-by: John Practicalli <[email protected]>
Co-authored-by: Adam Ralph <[email protected]>
Co-authored-by: nvuillam <[email protected]>
Co-authored-by: Inbar <[email protected]>
Co-authored-by: Sam Chorlton <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Barry Pollard <[email protected]>
Co-authored-by: IM <[email protected]>
Co-authored-by: Vitalii Tverdokhlib <[email protected]>
Co-authored-by: Edouard Choinière <[email protected]>
Co-authored-by: Benoît Bleuzé <[email protected]>
Co-authored-by: Yann Jouanique <[email protected]>
Co-authored-by: Wes Dean <[email protected]>
Co-authored-by: Martijn Pieters <[email protected]>
Co-authored-by: Martijn Pieters <[email protected]>
Co-authored-by: David Bernard <[email protected]>
Co-authored-by: Andrew Sheridan <[email protected]>
nvuillam added a commit that referenced this pull request Jul 10, 2022
* [automation] Auto-update linters version, help and documentation

* Disable Github Status reporter

* Breaking change: GITHUB_STATUS_REPORTER disabled by default

* Breaking change: set PRINT_ALL_FILES default to false

* Deploy V6 image (#1035)

* QuickFix CI job

* New flavor Security (#1036)

* Java PMD v0

* Java Pmd v0.01

* Working Java + pmd :)

* changelog + doc

* Genedate doc + manage offline mode

* changelog

* Bring back referring linters

* Fix build

* Automate update of changelog when new release (v0)

* Do not create commit & tag with npm version

* Move markdown formatting

* .md

* PMD install commands

* More pmd descriptor infos + build

* Fix megalinter errors

* Fix PMD install commands + build

* [MegaLinter] Apply linters fixes

* Hardcode some licenses

* [MegaLinter] Apply linters fixes

* Add gitleaks

* Build with gitleaks

* Gitleaks fixes

* changelog

* New descriptor: repository

TODO: deprecate git and credentials

* New descriptor "repository"

* Add Goodcheck


Goodcheck updates

* Fix PMD

* Fix PMD

* [MegaLinter] Apply linters fixes

* Fix pmd installation

* Typo

* wget --quiet

* Add trivy

* Build v6-alpha flavors

* Remove git & credentials descriptors + upgrade python base image

* Upgrade python

* New flavor Security v0

* Fix ansible-lint install

* Deploy v6-alpha documentation

* Fix test class

quick build

* Disable java pmd

* Downgrade python version

* SARIF v0

* Update descriptor JSON schema + retries for sgerrand url

* Add SARIF output for checkov

* Add SARIF output for eslint

* [automation] Auto-update linters version, help and documentation (#1038)

* Fix gitleaks

* Build

* Do not skip build if failed

* Do not test SARIF when SARIF is not active on a linter

* Update ansible install

* Fix goodcheck tests

* Fix markdown-table-formatter

* Fix trivy command

* Fix checkov test case + manage default sarif output file

* use MegaLinter beta for now

* Update CI for new default report folder

+ Manage {{REPORT_FOLDER}} in CLI variables

* Exit code 1 for trivy

* Fix replace_vars definition

* Do not run test mega-linter-runner when docker build failed

* Fix replace_vars

* Downgrade v8r version

* Fix arm test case

* build

* Fix again arm test case

* Fix makedirs for report folder

* Rename default report folder into megalinter-reports

* Fix gitleaks

* Try again gitleaks

* Fix last errors

* Fix internal lint errors

Co-authored-by: nvuillam <[email protected]>

* v6-alpha for github action

* Adapt CI for v6-alpha. (#1062)

* Fix own MegaLinter errors (#1063)

* Fix own MegaLinter errors

* Do not use secretlint on report folder

* Fix gitleaks own config

* Use regexes in gitleaks toml config file

* grmblmblm

* try with paths

* Regex to gather gitleaks errors

* Make gitleaks non blocking

* Update gitleaks descriptor

* Debug gitleaks (#1068)

* Debug gitleaks

* Remove LinkedIn ID gitleaks check

* Ignore .gitleaks.toml files

* Update security flavor + toml gitleaks update to use regexes

* Try again...

* Fix gitleaks config (use regexes in paths)

* Update default .gitleaks.toml files

* Clean dev variables

* Build

* Retrofit latest v5 updates into v6 (#1070)

* [automation] Auto-update linters version, help and documentation (#1038)

* Implement new linter PHPLint (#1037)

* add new phplint linter (see #1031)

* use composer global install for overture/phplint

* update changelog

* fix feature #1043 (#1044)

* Add @babel/eslint-parser as dependency for eslint (#1045)

* [automation] Auto-update linters version, help and documentation (#1046)

* [automation] Auto-update linters version, help and documentation + @babel-core

* Add @babel-core dependency

* Use node.js LTS and not nodejs-current

* Downgrade v8r version

* Fix arm test case

* Fix again arm test case

* [automation] Auto-update linters version, help and documentation

* Build

* [automation] Auto-update linters version, help and documentation (#1050)

* [automation] Auto-update linters version, help and documentation (#1052)

* [automation] Auto-update linters version, help and documentation

* Update doc for gitlab MegaLinter config

* Bandit default config file (#1051)

* remove default parameters

* add default bandit configfile built with bandit-config-generator command

* update changelog

* update bandit doc page

Co-authored-by: Nicolas Vuillamy <[email protected]>

* Try again ktlint auto-upgrade (#976)

* [automation] Auto-update linters version, help and documentation (#1055)

* [automation] Auto-update linters version, help and documentation (#1056)

* Docs & links (#1058)

* Update stale config

* Fix getting linter version of npm plugin. (#804)

* [automation] Auto-update linters version, help and documentation (#1059)

* Fix doc

* [automation] Auto-update linters version, help and documentation (#1065)

* [automation] Auto-update linters version, help and documentation (#1067)

* build

Co-authored-by: Laurent Laville <[email protected]>

* SARIF for gitleaks (#1069)

* SARIF for gitleaks

* Sarif python test class v0

* Lint fix + changelog

* Generate security flavor

* SARIF support for trivy (#1071)

* [automation] Auto-update linters version, help and documentation (#1038)

* Implement new linter PHPLint (#1037)

* add new phplint linter (see #1031)

* use composer global install for overture/phplint

* update changelog

* fix feature #1043 (#1044)

* Add @babel/eslint-parser as dependency for eslint (#1045)

* [automation] Auto-update linters version, help and documentation (#1046)

* [automation] Auto-update linters version, help and documentation + @babel-core

* Add @babel-core dependency

* Use node.js LTS and not nodejs-current

* Downgrade v8r version

* Fix arm test case

* Fix again arm test case

* [automation] Auto-update linters version, help and documentation

* Build

* [automation] Auto-update linters version, help and documentation (#1050)

* [automation] Auto-update linters version, help and documentation (#1052)

* [automation] Auto-update linters version, help and documentation

* Update doc for gitlab MegaLinter config

* Bandit default config file (#1051)

* remove default parameters

* add default bandit configfile built with bandit-config-generator command

* update changelog

* update bandit doc page

Co-authored-by: Nicolas Vuillamy <[email protected]>

* Try again ktlint auto-upgrade (#976)

* [automation] Auto-update linters version, help and documentation (#1055)

* [automation] Auto-update linters version, help and documentation (#1056)

* Docs & links (#1058)

* Update stale config

* Fix getting linter version of npm plugin. (#804)

* [automation] Auto-update linters version, help and documentation (#1059)

* Fix doc

* [automation] Auto-update linters version, help and documentation (#1065)

* [automation] Auto-update linters version, help and documentation (#1067)

* SARIF for gitleaks

* Sarif python test class v0

* Lint fix + changelog

* SARIF support for trivy

* Accelerate and fix internal tests

* Fix SARIF files

* Fix trivy sarif args

* [automation] Auto-update linters version, help and documentation (#1072)

* Fix SarifReporter

* Better handling of SARIF error management

* Fix SARIF default file name use

quick build

* Fix sarif reporter exception management

* Variabilize default release

* Improve runtime perfs when FLAVOR_SUGGESTIONS: false (#1073)

* Improve runtime perfs when FLAVOR_SUGGESTIONS: false

* [MegaLinter] Apply linters fixes

* Fix how to get MEGALINTER_FLAVOR

* Fix ignore flavor suggestion test class

Co-authored-by: nvuillam <[email protected]>

* Build

Co-authored-by: Laurent Laville <[email protected]>
Co-authored-by: nvuillam <[email protected]>

* V6/popularity - Display github stars in all linters documentation (#1075)

* Add popularity

* Update descriptors to add linter_repo when missing

* FLAVOR_SUGGESTIONS:false to improve perfs

* Build

* Enhance documentation (#1078)

* Popularity column in all tables

* More badges in linters list doc

* cspell

* Fix sarif test case (#1079)

* Fix sarif test case

* Fix hardcoded reporter folder name in test case

* Remove dockerfilelint (#1080)

* Remove dockerfilelint

* changelog

* Upgrade to AWS cfn-lint (#1085)

* Upgrade to AWS cfn-lint

* Build

* Add SARIF management for cfn-lint

* Add cfn-lint example SARIF output file

* SARIF management for Hadolint (#1089)

* SARIF management for Hadolint

* Update .gitleaks.toml to ignore .mypy_cache folder

* Catch SARIF error

* Upgrade hadolint to 2.8.0-alpine

* SARIF for checkstyle (#1093)

* SARIF for ktlint (#1095)

* SARIF for all eslint uses (#1094)

* SARIF management for go revive (#1092)

* SARIF management for go revive

* fix descriptor

quick build

* SARIF Management for PHP PSALM (#1096)

* Build doc

* More SARIF examples

* V6/docker standalone linters (#1099)

* Build unique linters dockerfiles

* Dockerfiles for unique linters + Improve perfs

* CI to build standalone images

* Fix CI

* Matrix jobs: do not fail other jobs if one fails

* Manage docker build --squash

* Add test cases to "only" docker images

* No codecov call when not running all tests

* Create output sarif folder when SARIF is from stdout

* Remove useless python packages for ML runtime

* Remove pytest-cov pytest-timeout from runtime image

* Optimize Until dotenv linter

* gcc in all dockerfiles + go for actionlint

* Add libffi-dev in all Docker images

* Add make

* add bash

* add musl-dev

* Fix linters install

* gnugpg for php

* Automate node & ruby-dev installation if packages are used in install

* Fix dotnet install

* More preset variables on single-linter docker images

* typo

* typo2

* Add ruby-bundler for gem packages

* Remove PHP_BUILTIN as it has been replaced by PHP_PHPLINT

* Fix descriptors and test class

* Improve CI perfs for only-linters build

* More fixes

* Fix kotlin install

* Fix raku install

* Fix R

* Fix scala

* Fix TSX

* Fix Vb .NET

* Build

* Linters page

* rollback raku

* Fix terraform_fmt & rollback raku

* Try fix rakudo

* Fix duplicate ARG and FROM in dockerfile

* Fix python lint err

* Disable lint_all_other_linters_files=true if in SINGLE_LINTER mode

* lint fix

* Reduce docker layers

* Reduce again the list of docker build steps

* Do not keep text logs if not wanted + linter delete SARIF files

* Fix CI

* Fix SARIF test case

* Disable deprecated test case

* Terrascan SARIF management (#1103)

* Terrascan SARIF management

* tflint SARIF management

* Fix terrascan args

* cspell

* MegaLinter server (#1106)

* PHP version switch (#1083)

* fixe issue #1060

* fix hadolint error DL3059

* [automation] Auto-update linters version, help and documentation (#1088)

* [automation] Auto-update linters version, help and documentation

* Increase trivy timeout

* [automation] Auto-update linters version, help and documentation (#1091)

* Release MegaLinter v5.3.0

* [automation] Auto-update linters version, help and documentation (#1097)

* Fix CHANGELOG

* [automation] Auto-update linters version, help and documentation (#1098)

* [automation] Auto-update linters version, help and documentation (#1100)

* [automation] Auto-update linters version, help and documentation (#1101)

* [automation] Auto-update linters version, help and documentation (#1104)

* KEEP_ALIVE_MEGALINTER v0

* openssh

* Build standalone linters only for linters managing SARIF

* Entrypoint

* Entrypoint: exit when test cases called

* Add openrc

* Try another way

https://github.com/danielguerra69/alpine-sshd

* Startup lines at the end

* Test simple case with password

* rhaaaa

* Remove ssh stuff as we loose env variables

* Server v0

* Server v0

* Add workspace argument

* Expose on port 80

* Manage running processes

* try debug flask

* debug mode for server

* v0 ?

* Fix server for report file name

* SARIF in http response

* [automation] Auto-update linters version, help and documentation (#1107)

* [automation] Auto-update linters version, help and documentation (#1109)

* [automation] Auto-update linters version, help and documentation (#1113)

* Bring back ssh

* Set env variables for all users

* [automation] Auto-update linters version, help and documentation (#1114)

* [automation] Auto-update linters version, help and documentation (#1116)

* [automation] Auto-update linters version, help and documentation (#1117)

* new SSH way with tmux

* Build

* Allow PWD auth for testing

* [automation] Auto-update linters version, help and documentation (#1118)

* [automation] Auto-update linters version, help and documentation (#1121)

* Release MegaLinter v5.4.0

* [automation] Auto-update linters version, help and documentation (#1122)

* [automation] Auto-update linters version, help and documentation (#1123)

* [automation] Auto-update linters version, help and documentation (#1124)

* [automation] Auto-update linters version, help and documentation (#1129)

* [clj-kondo] update docs and version to 2021.12.19 (#1126)

Co-authored-by: nvuillam <[email protected]>

* fix "MegaLinter vs Super-Linter" link in README (#1130)

Co-authored-by: Nicolas Vuillamy <[email protected]>

* Move ssh management to entrypoint

* QuickFix

* try again

* Stop docker container if entrypoint fails

* Sh in container

* alias for megalinger when running in server mode (#1133)

makes running megalinter in server mode easier

* aliases

* Build

* tmux_exec

* Build !

* [automation] Auto-update linters version, help and documentation (#1131)

* gha

* motd

* build

* -input and -output v0

* Use argparse

* Use parse_known_args

* config.set

* [automation] Auto-update linters version, help and documentation (#1135)

* DOCKER_DEFAULT_WORKSPACE_DIR & absolue path for --input argument

* introduce shell script to convenience running from ssh (#1137)

* Create megalinter_tmux

* Update build.py

* Build

Co-authored-by: nvuillam <[email protected]>

* Use --input

* Fix --input + CI

* CI for Inbar (create branch named v6_inbar )

* [automation] Auto-update linters version, help and documentation (#1138)

* [automation] Auto-update linters version, help and documentation (#1141)

* [automation] Auto-update linters version, help and documentation (#1142)

* Release MegaLinter v5.5.0

* V6 inbar (#1143)

* capture std is optional

capture std is optional

* improve megalinter_tmux script

add verbosity as an optional flag, improve some messages, add comments, fix script name in examples

* Bash file as executable

* Fix shellcheck issue https://github.com/koalaman/shellcheck/wiki/SC2124

* Python & Dockerfiles lint errors

* cspell

* Build

* Ignore tmux_exec for bash controlling

* pylint err

* cspell

Co-authored-by: Laurent Laville <[email protected]>
Co-authored-by: John Practicalli <[email protected]>
Co-authored-by: Adam Ralph <[email protected]>
Co-authored-by: Inbar <[email protected]>

* V6 semgrep (#1147)

* Add semgrep

* Manage cli_config_default_value

* Manage case when SARIF output is only the last sdout line

* Add python test files for semgrep

* semgrep --error

* use regex to extract json

* Use find / rfind instead of regex

* fix

* fix crash

* reverse does not have a return value

* Fix sarif_default_output_file process

* Check SARIF consistency in test classes

* Fix position to extract JSON from stdout

* position again

* Remove SARIF file from previous runs

* Stupid typo + remove aggregate SARIF if pre-existing ^^

* changelog

* Fix lint errors + descriptor json schema

* Build doc

* Automatically select security rulesets for semgrep (#1148)

* Automatically select security rulesets for semgrep

* Test classes for semgrep security rulesets

* Do not overwrite test class if already existing

* semgrep check failure

* Any v6- and v6_ branch generates standalone linters

* lint fixes

* document additional megalinter semgrep config vars

* build

* SARIF enhancements (and trivy failed attempts) (#1150)

* More general info in sarif

* Fix trivy install for SARIF

* Build

* Force sarif template path + upgrade trivy version

* fix wget call

* try chmod on sarif template

* typo

* trivy

* Add devskim (#1152)

* devskim v0

* devskim bad example

* Fix number of errors count

* fix & Build doc

* changelog

* cspell

* Fix CI

* cspell

* Fix trivy ?

* fix trivy ? (2)

* Try fix gitleaks (#1157)

* Try fix gitleaks

* trivy

* Workaround until next version of trivy

* build

* Revert "Try fix gitleaks"

This reverts commit e7c1be65c9dadc585cdea4c1302d75146d3acf8e.

* Remove default gitleaks use + --no-git

* --no-git back

* SARIF for npm-groovy-lint (#1158)

* SARIF for npm-groovy-lint

* Fix GroovyLinter custom class

* Factorize

* Manage dynamic --no-git presence for gitleaks (#1162)

* Manage dynamic --no-git presence for gitleaks

* lint fix

* Retrofit v5 into v6 (#1189)

* PHP version switch (#1083)

* fixe issue #1060

* fix hadolint error DL3059

* [automation] Auto-update linters version, help and documentation (#1088)

* [automation] Auto-update linters version, help and documentation

* Increase trivy timeout

* [automation] Auto-update linters version, help and documentation (#1091)

* Release MegaLinter v5.3.0

* [automation] Auto-update linters version, help and documentation (#1097)

* Fix CHANGELOG

* [automation] Auto-update linters version, help and documentation (#1098)

* [automation] Auto-update linters version, help and documentation (#1100)

* [automation] Auto-update linters version, help and documentation (#1101)

* [automation] Auto-update linters version, help and documentation (#1104)

* [automation] Auto-update linters version, help and documentation (#1107)

* [automation] Auto-update linters version, help and documentation (#1109)

* [automation] Auto-update linters version, help and documentation (#1113)

* [automation] Auto-update linters version, help and documentation (#1114)

* [automation] Auto-update linters version, help and documentation (#1116)

* [automation] Auto-update linters version, help and documentation (#1117)

* [automation] Auto-update linters version, help and documentation (#1118)

* [automation] Auto-update linters version, help and documentation (#1121)

* Release MegaLinter v5.4.0

* [automation] Auto-update linters version, help and documentation (#1122)

* [automation] Auto-update linters version, help and documentation (#1123)

* [automation] Auto-update linters version, help and documentation (#1124)

* [automation] Auto-update linters version, help and documentation (#1129)

* [clj-kondo] update docs and version to 2021.12.19 (#1126)

Co-authored-by: nvuillam <[email protected]>

* fix "MegaLinter vs Super-Linter" link in README (#1130)

Co-authored-by: Nicolas Vuillamy <[email protected]>

* [automation] Auto-update linters version, help and documentation (#1131)

* [automation] Auto-update linters version, help and documentation (#1135)

* [automation] Auto-update linters version, help and documentation (#1138)

* [automation] Auto-update linters version, help and documentation (#1141)

* [automation] Auto-update linters version, help and documentation (#1142)

* Release MegaLinter v5.5.0

* Increase node.js --max-old-space-size to 8192  (#1149)

* Increase node.js --max-old-space-size to 8192

* Build

* [automation] Auto-update linters version, help and documentation (#1144)

* trivy

* [automation] Auto-update linters version, help and documentation (#1151)

* [automation] Auto-update linters version, help and documentation

* cspell

* [automation] Auto-update linters version, help and documentation (#1155)

* [automation] Auto-update linters version, help and documentation (#1156)

* [automation] Auto-update linters version, help and documentation

* trivy

* [automation] Auto-update linters version, help and documentation (#1159)

* [automation] Auto-update linters version, help and documentation (#1161)

* Upgrade clj-kondo (#1165)

* [automation] Auto-update linters version, help and documentation (#1164)

* [automation] Auto-update linters version, help and documentation (#1167)

* [automation] Auto-update linters version, help and documentation (#1170)

* Retrieve licenses for documentation + fix config file + env issue (#1168)

* [automation] Auto-update linters version, help and documentation

* Disable Github Status reporter

* Breaking change: GITHUB_STATUS_REPORTER disabled by default

* Breaking change: set PRINT_ALL_FILES default to false

* Deploy V6 image (#1035)

* QuickFix CI job

* New flavor Security (#1036)

* Java PMD v0

* Java Pmd v0.01

* Working Java + pmd :)

* changelog + doc

* Genedate doc + manage offline mode

* changelog

* Bring back referring linters

* Fix build

* Automate update of changelog when new release (v0)

* Do not create commit & tag with npm version

* Move markdown formatting

* .md

* PMD install commands

* More pmd descriptor infos + build

* Fix megalinter errors

* Fix PMD install commands + build

* [MegaLinter] Apply linters fixes

* Hardcode some licenses

* [MegaLinter] Apply linters fixes

* Add gitleaks

* Build with gitleaks

* Gitleaks fixes

* changelog

* New descriptor: repository

TODO: deprecate git and credentials

* New descriptor "repository"

* Add Goodcheck


Goodcheck updates

* Fix PMD

* Fix PMD

* [MegaLinter] Apply linters fixes

* Fix pmd installation

* Typo

* wget --quiet

* Add trivy

* Build v6-alpha flavors

* Remove git & credentials descriptors + upgrade python base image

* Upgrade python

* New flavor Security v0

* Fix ansible-lint install

* Deploy v6-alpha documentation

* Fix test class

quick build

* Disable java pmd

* Downgrade python version

* SARIF v0

* Update descriptor JSON schema + retries for sgerrand url

* Add SARIF output for checkov

* Add SARIF output for eslint

* [automation] Auto-update linters version, help and documentation (#1038)

* Fix gitleaks

* Build

* Do not skip build if failed

* Do not test SARIF when SARIF is not active on a linter

* Update ansible install

* Fix goodcheck tests

* Fix markdown-table-formatter

* Fix trivy command

* Fix checkov test case + manage default sarif output file

* use MegaLinter beta for now

* Update CI for new default report folder

+ Manage {{REPORT_FOLDER}} in CLI variables

* Exit code 1 for trivy

* Fix replace_vars definition

* Do not run test mega-linter-runner when docker build failed

* Fix replace_vars

* Downgrade v8r version

* Fix arm test case

* build

* Fix again arm test case

* Fix makedirs for report folder

* Rename default report folder into megalinter-reports

* Fix gitleaks

* Try again gitleaks

* Fix last errors

* Fix internal lint errors

Co-authored-by: nvuillam <[email protected]>

* v6-alpha for github action

* Adapt CI for v6-alpha. (#1062)

* Fix own MegaLinter errors (#1063)

* Fix own MegaLinter errors

* Do not use secretlint on report folder

* Fix gitleaks own config

* Use regexes in gitleaks toml config file

* grmblmblm

* try with paths

* Regex to gather gitleaks errors

* Make gitleaks non blocking

* Update gitleaks descriptor

* Debug gitleaks (#1068)

* Debug gitleaks

* Remove LinkedIn ID gitleaks check

* Ignore .gitleaks.toml files

* Update security flavor + toml gitleaks update to use regexes

* Try again...

* Fix gitleaks config (use regexes in paths)

* Update default .gitleaks.toml files

* Clean dev variables

* Build

* Retrofit latest v5 updates into v6 (#1070)

* [automation] Auto-update linters version, help and documentation (#1038)

* Implement new linter PHPLint (#1037)

* add new phplint linter (see #1031)

* use composer global install for overture/phplint

* update changelog

* fix feature #1043 (#1044)

* Add @babel/eslint-parser as dependency for eslint (#1045)

* [automation] Auto-update linters version, help and documentation (#1046)

* [automation] Auto-update linters version, help and documentation + @babel-core

* Add @babel-core dependency

* Use node.js LTS and not nodejs-current

* Downgrade v8r version

* Fix arm test case

* Fix again arm test case

* [automation] Auto-update linters version, help and documentation

* Build

* [automation] Auto-update linters version, help and documentation (#1050)

* [automation] Auto-update linters version, help and documentation (#1052)

* [automation] Auto-update linters version, help and documentation

* Update doc for gitlab MegaLinter config

* Bandit default config file (#1051)

* remove default parameters

* add default bandit configfile built with bandit-config-generator command

* update changelog

* update bandit doc page

Co-authored-by: Nicolas Vuillamy <[email protected]>

* Try again ktlint auto-upgrade (#976)

* [automation] Auto-update linters version, help and documentation (#1055)

* [automation] Auto-update linters version, help and documentation (#1056)

* Docs & links (#1058)

* Update stale config

* Fix getting linter version of npm plugin. (#804)

* [automation] Auto-update linters version, help and documentation (#1059)

* Fix doc

* [automation] Auto-update linters version, help and documentation (#1065)

* [automation] Auto-update linters version, help and documentation (#1067)

* build

Co-authored-by: Laurent Laville <[email protected]>

* SARIF for gitleaks (#1069)

* SARIF for gitleaks

* Sarif python test class v0

* Lint fix + changelog

* Generate security flavor

* SARIF support for trivy (#1071)

* [automation] Auto-update linters version, help and documentation (#1038)

* Implement new linter PHPLint (#1037)

* add new phplint linter (see #1031)

* use composer global install for overture/phplint

* update changelog

* fix feature #1043 (#1044)

* Add @babel/eslint-parser as dependency for eslint (#1045)

* [automation] Auto-update linters version, help and documentation (#1046)

* [automation] Auto-update linters version, help and documentation + @babel-core

* Add @babel-core dependency

* Use node.js LTS and not nodejs-current

* Downgrade v8r version

* Fix arm test case

* Fix again arm test case

* [automation] Auto-update linters version, help and documentation

* Build

* [automation] Auto-update linters version, help and documentation (#1050)

* [automation] Auto-update linters version, help and documentation (#1052)

* [automation] Auto-update linters version, help and documentation

* Update doc for gitlab MegaLinter config

* Bandit default config file (#1051)

* remove default parameters

* add default bandit configfile built with bandit-config-generator command

* update changelog

* update bandit doc page

Co-authored-by: Nicolas Vuillamy <[email protected]>

* Try again ktlint auto-upgrade (#976)

* [automation] Auto-update linters version, help and documentation (#1055)

* [automation] Auto-update linters version, help and documentation (#1056)

* Docs & links (#1058)

* Update stale config

* Fix getting linter version of npm plugin. (#804)

* [automation] Auto-update linters version, help and documentation (#1059)

* Fix doc

* [automation] Auto-update linters version, help and documentation (#1065)

* [automation] Auto-update linters version, help and documentation (#1067)

* SARIF for gitleaks

* Sarif python test class v0

* Lint fix + changelog

* SARIF support for trivy

* Accelerate and fix internal tests

* Fix SARIF files

* Fix trivy sarif args

* [automation] Auto-update linters version, help and documentation (#1072)

* Fix SarifReporter

* Better handling of SARIF error management

* Fix SARIF default file name use

quick build

* Fix sarif reporter exception management

* Variabilize default release

* Improve runtime perfs when FLAVOR_SUGGESTIONS: false (#1073)

* Improve runtime perfs when FLAVOR_SUGGESTIONS: false

* [MegaLinter] Apply linters fixes

* Fix how to get MEGALINTER_FLAVOR

* Fix ignore flavor suggestion test class

Co-authored-by: nvuillam <[email protected]>

* Build

Co-authored-by: Laurent Laville <[email protected]>
Co-authored-by: nvuillam <[email protected]>

* V6/popularity - Display github stars in all linters documentation (#1075)

* Add popularity

* Update descriptors to add linter_repo when missing

* FLAVOR_SUGGESTIONS:false to improve perfs

* Build

* Enhance documentation (#1078)

* Popularity column in all tables

* More badges in linters list doc

* cspell

* Fix sarif test case (#1079)

* Fix sarif test case

* Fix hardcoded reporter folder name in test case

* Remove dockerfilelint (#1080)

* Remove dockerfilelint

* changelog

* Upgrade to AWS cfn-lint (#1085)

* Upgrade to AWS cfn-lint

* Build

* Add SARIF management for cfn-lint

* Add cfn-lint example SARIF output file

* SARIF management for Hadolint (#1089)

* SARIF management for Hadolint

* Update .gitleaks.toml to ignore .mypy_cache folder

* Catch SARIF error

* Upgrade hadolint to 2.8.0-alpine

* SARIF for checkstyle (#1093)

* SARIF for ktlint (#1095)

* SARIF for all eslint uses (#1094)

* SARIF management for go revive (#1092)

* SARIF management for go revive

* fix descriptor

quick build

* SARIF Management for PHP PSALM (#1096)

* Build doc

* More SARIF examples

* V6/docker standalone linters (#1099)

* Build unique linters dockerfiles

* Dockerfiles for unique linters + Improve perfs

* CI to build standalone images

* Fix CI

* Matrix jobs: do not fail other jobs if one fails

* Manage docker build --squash

* Add test cases to "only" docker images

* No codecov call when not running all tests

* Create output sarif folder when SARIF is from stdout

* Remove useless python packages for ML runtime

* Remove pytest-cov pytest-timeout from runtime image

* Optimize Until dotenv linter

* gcc in all dockerfiles + go for actionlint

* Add libffi-dev in all Docker images

* Add make

* add bash

* add musl-dev

* Fix linters install

* gnugpg for php

* Automate node & ruby-dev installation if packages are used in install

* Fix dotnet install

* More preset variables on single-linter docker images

* typo

* typo2

* Add ruby-bundler for gem packages

* Remove PHP_BUILTIN as it has been replaced by PHP_PHPLINT

* Fix descriptors and test class

* Improve CI perfs for only-linters build

* More fixes

* Fix kotlin install

* Fix raku install

* Fix R

* Fix scala

* Fix TSX

* Fix Vb .NET

* Build

* Linters page

* rollback raku

* Fix terraform_fmt & rollback raku

* Try fix rakudo

* Fix duplicate ARG and FROM in dockerfile

* Fix python lint err

* Disable lint_all_other_linters_files=true if in SINGLE_LINTER mode

* lint fix

* Reduce docker layers

* Reduce again the list of docker build steps

* Do not keep text logs if not wanted + linter delete SARIF files

* Fix CI

* Fix SARIF test case

* Disable deprecated test case

* Terrascan SARIF management (#1103)

* Terrascan SARIF management

* tflint SARIF management

* Fix terrascan args

* cspell

* MegaLinter server (#1106)

* PHP version switch (#1083)

* fixe issue #1060

* fix hadolint error DL3059

* [automation] Auto-update linters version, help and documentation (#1088)

* [automation] Auto-update linters version, help and documentation

* Increase trivy timeout

* [automation] Auto-update linters version, help and documentation (#1091)

* Release MegaLinter v5.3.0

* [automation] Auto-update linters version, help and documentation (#1097)

* Fix CHANGELOG

* [automation] Auto-update linters version, help and documentation (#1098)

* [automation] Auto-update linters version, help and documentation (#1100)

* [automation] Auto-update linters version, help and documentation (#1101)

* [automation] Auto-update linters version, help and documentation (#1104)

* KEEP_ALIVE_MEGALINTER v0

* openssh

* Build standalone linters only for linters managing SARIF

* Entrypoint

* Entrypoint: exit when test cases called

* Add openrc

* Try another way

https://github.com/danielguerra69/alpine-sshd

* Startup lines at the end

* Test simple case with password

* rhaaaa

* Remove ssh stuff as we loose env variables

* Server v0

* Server v0

* Add workspace argument

* Expose on port 80

* Manage running processes

* try debug flask

* debug mode for server

* v0 ?

* Fix server for report file name

* SARIF in http response

* [automation] Auto-update linters version, help and documentation (#1107)

* [automation] Auto-update linters version, help and documentation (#1109)

* [automation] Auto-update linters version, help and documentation (#1113)

* Bring back ssh

* Set env variables for all users

* [automation] Auto-update linters version, help and documentation (#1114)

* [automation] Auto-update linters version, help and documentation (#1116)

* [automation] Auto-update linters version, help and documentation (#1117)

* new SSH way with tmux

* Build

* Allow PWD auth for testing

* [automation] Auto-update linters version, help and documentation (#1118)

* [automation] Auto-update linters version, help and documentation (#1121)

* Release MegaLinter v5.4.0

* [automation] Auto-update linters version, help and documentation (#1122)

* [automation] Auto-update linters version, help and documentation (#1123)

* [automation] Auto-update linters version, help and documentation (#1124)

* [automation] Auto-update linters version, help and documentation (#1129)

* [clj-kondo] update docs and version to 2021.12.19 (#1126)

Co-authored-by: nvuillam <[email protected]>

* fix "MegaLinter vs Super-Linter" link in README (#1130)

Co-authored-by: Nicolas Vuillamy <[email protected]>

* Move ssh management to entrypoint

* QuickFix

* try again

* Stop docker container if entrypoint fails

* Sh in container

* alias for megalinger when running in server mode (#1133)

makes running megalinter in server mode easier

* aliases

* Build

* tmux_exec

* Build !

* [automation] Auto-update linters version, help and documentation (#1131)

* gha

* motd

* build

* -input and -output v0

* Use argparse

* Use parse_known_args

* config.set

* [automation] Auto-update linters version, help and documentation (#1135)

* DOCKER_DEFAULT_WORKSPACE_DIR & absolue path for --input argument

* introduce shell script to convenience running from ssh (#1137)

* Create megalinter_tmux

* Update build.py

* Build

Co-authored-by: nvuillam <[email protected]>

* Use --input

* Fix --input + CI

* CI for Inbar (create branch named v6_inbar )

* [automation] Auto-update linters version, help and documentation (#1138)

* [automation] Auto-update linters version, help and documentation (#1141)

* [automation] Auto-update linters version, help and documentation (#1142)

* Release MegaLinter v5.5.0

* V6 inbar (#1143)

* capture std is optional

capture std is optional

* improve megalinter_tmux script

add verbosity as an optional flag, improve some messages, add comments, fix script name in examples

* Bash file as executable

* Fix shellcheck issue https://github.com/koalaman/shellcheck/wiki/SC2124

* Python & Dockerfiles lint errors

* cspell

* Build

* Ignore tmux_exec for bash controlling

* pylint err

* cspell

Co-authored-by: Laurent Laville <[email protected]>
Co-authored-by: John Practicalli <[email protected]>
Co-authored-by: Adam Ralph <[email protected]>
Co-authored-by: Inbar <[email protected]>

* V6 semgrep (#1147)

* Add semgrep

* Manage cli_config_default_value

* Manage case when SARIF output is only the last sdout line

* Add python test files for semgrep

* semgrep --error

* use regex to extract json

* Use find / rfind instead of regex

* fix

* fix crash

* reverse does not have a return value

* Fix sarif_default_output_file process

* Check SARIF consistency in test classes

* Fix position to extract JSON from stdout

* position again

* Remove SARIF file from previous runs

* Stupid typo + remove aggregate SARIF if pre-existing ^^

* changelog

* Fix lint errors + descriptor json schema

* Build doc

* Automatically select security rulesets for semgrep (#1148)

* Automatically select security rulesets for semgrep

* Test classes for semgrep security rulesets

* Do not overwrite test class if already existing

* semgrep check failure

* Any v6- and v6_ branch generates standalone linters

* lint fixes

* document additional megalinter semgrep config vars

* build

* SARIF enhancements (and trivy failed attempts) (#1150)

* More general info in sarif

* Fix trivy install for SARIF

* Build

* Force sarif template path + upgrade trivy version

* fix wget call

* try chmod on sarif template

* typo

* trivy

* Add devskim (#1152)

* devskim v0

* devskim bad example

* Fix number of errors count

* fix & Build doc

* changelog

* cspell

* Fix CI

* cspell

* Fix trivy ?

* fix trivy ? (2)

* Try fix gitleaks (#1157)

* Try fix gitleaks

* trivy

* Workaround until next version of trivy

* build

* Revert "Try fix gitleaks"

This reverts commit e7c1be65c9dadc585cdea4c1302d75146d3acf8e.

* Remove default gitleaks use + --no-git

* --no-git back

* SARIF for npm-groovy-lint (#1158)

* SARIF for npm-groovy-lint

* Fix GroovyLinter custom class

* Factorize

* Manage dynamic --no-git presence for gitleaks (#1162)

* Manage dynamic --no-git presence for gitleaks

* lint fix

* Test upload SARIF to github

* Retrieve licenses

* Fix mixed config file + env variables config

* Link to licenses

* Update links to licenses

* Fixes

* fix lint err

* [MegaLinter] Apply linters fixes

Co-authored-by: nvuillam <[email protected]>
Co-authored-by: Laurent Laville <[email protected]>
Co-authored-by: John Practicalli <[email protected]>
Co-authored-by: Adam Ralph <[email protected]>
Co-authored-by: Inbar <[email protected]>

* [automation] Auto-update linters version, help and documentation (#1171)

* [automation] Auto-update linters version, help and documentation

* [MegaLinter] Apply linters fixes

Co-authored-by: nvuillam <[email protected]>

* [automation] Auto-update linters version, help and documentation (#1174)

* Fix call to npm-groovy-lint (#1177)

* Fix npm-groovy-lint call

https://github.com/megalinter/megalinter/issues/1176

* [MegaLinter] Apply linters fixes

Co-authored-by: nvuillam <[email protected]>

* lint fix

* lint fix (2)

* Make python linters play nice with each other (#1182)

* Make Flake8 play nice with Black

* Change black comment example

* Make pylint play nice with Black

* Make flake8 pass

Co-authored-by: Sam Chorlton <>

* Upgrade clj-kondo (#1181)

* Bump cljkondo/clj-kondo from 2022.01.13-alpine to 2022.01.15-alpine

Bumps cljkondo/clj-kondo from 2022.01.13-alpine to 2022.01.15-alpine.

---
updated-dependencies:
- dependency-name: cljkondo/clj-kondo
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <[email protected]>

* [automation] Auto-update linters version, help and documentation

* upgrade clj-kondo

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Fix wrong status in reports when DISABLE_ERRORS is used (#1184)

* Bump peter-evans/create-pull-request from 3.11.0 to 3.12.0

Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request) from 3.11.0 to 3.12.0.
- [Release notes](https://github.com/peter-evans/create-pull-request/releases)
- [Commits](https://github.com/peter-evans/create-pull-request/compare/v3.11.0...v3.12.0)

---
updated-dependencies:
- dependency-name: peter-evans/create-pull-request
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>

* Bump actions/setup-node from 2.4.1 to 2.5.1

Bumps [actions/setup-node](https://github.com/actions/setup-node) from 2.4.1 to 2.5.1.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v2.4.1...v2.5.1)

---
updated-dependencies:
- dependency-name: actions/setup-node
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>

* Bump shelljs from 0.8.4 to 0.8.5 in /mega-linter-runner

Bumps [shelljs](https://github.com/shelljs/shelljs) from 0.8.4 to 0.8.5.
- [Release notes](https://github.com/shelljs/shelljs/releases)
- [Changelog](https://github.com/shelljs/shelljs/blob/master/CHANGELOG.md)
- [Commits](https://github.com/shelljs/shelljs/compare/v0.8.4...v0.8.5)

---
updated-dependencies:
- dependency-name: shelljs
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>

* Fix wrong status in reports when DISABLE_ERRORS is used

* [automation] Auto-update linters version, help and documentation

* Fix wrong status in reports when DISABLE_ERRORS is used

* Test cases fixes

* fix test class

* [MegaLinter] Apply linters fixes

quick build

* Fix test class

quick build

* Fix test class

quick build

* Update checkov & kics tests

quick build

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: nvuillam <[email protected]>

* CHANGELOG

* Release MegaLinter v5.6.0

* Build

* fix lint

* Fix dockerfile + build

* fix changelog

Co-authored-by: Laurent Laville <[email protected]>
Co-authored-by: John Practicalli <[email protected]>
Co-authored-by: Adam Ralph <[email protected]>
Co-authored-by: nvuillam <[email protected]>
Co-authored-by: Inbar <[email protected]>
Co-authored-by: Sam Chorlton <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Call terrascan in project mode, not file by file (#1191)

* Call terrascan in project mode, not file by file

* verbose results

* Several files for test case folders

* add path in args

* hack terrascan success test

* Add syft to MegaLinter + sarif archi updates (#1221)

* Syft V0

* Fix SyftLinter

* syft call

* cspell + debug

* change syft call

* More debug

* Do not test failure

* changelog & typos

* Fix json parsing

* Fix output SARIF format

* improve ssh server experience (#1259)

* improve ssh server experience

remove tmux and replace with env variable export/import
+build Dockerfile

* Format MD tables + upgrade build

* typo

Co-authored-by: nvuillam <[email protected]>

* Manage unique docker image name (#1262)

* Manage unique docker image name

* Fix condition

* typo

* fix

* Invert build order

* ALWAYS_BUILD argument

* fix

* fix

* Apply unique image name to v6_alpha

* Make unique tag name for all images (#1264)

* Make unique tag name for all images

* lint fix

* Apply to v6_alpha images

* Make unique tag name more visible (#1267)

* Make unique tag name more visible

* fix action

* New linter: Dustilock , detecting dependency injection (#1270)

* Dustilock v0

* Fixes

* Fix CI

* Manually build SARIF from output

* cspell

* Test case with python

* Factorize sarif schema & version

* Fix

* changelog

* ByPass failure test case

* Build with doc

* Update mkdocs config

* Retrofit v5 updates to v6-dev (#1306)

* Merge branch 'main' into v6_upgrade

* changelog conflicts merge

* Build

* Get upgraded versions file

* Build

* Add  "python-gitlab" in setup.py

* Build

* Use openjdk11

* Fix typo

* gitleaks test case

* Fix tflint standalone linter (#1334)

* Fix tflint standalone linter

* lint fixes

* ox installer (#1348)

* Add Ox ascii art (#1361)

* Add Ox ascii art

* cspell

* SARIF for secretlint

* Retrofit downgrade of tflint

* trivy

* test secretlint

* Fix gitleaks class (#1376)

* Improve gitleaks (#1383)

* Retrofit 5.11.2 + Git update (#1433)

* PHP version switch (#1083)

* fixe issue #1060

* fix hadolint error DL3059

* [automation] Auto-update linters version, help and documentation (#1088)

* [automation] Auto-update linters version, help and documentation

* Increase trivy timeout

* [automation] Auto-update linters version, help and documentation (#1091)

* Release MegaLinter v5.3.0

* [automation] Auto-update linters version, help and documentation (#1097)

* Fix CHANGELOG

* [automation] Auto-update linters version, help and documentation (#1098)

* [automation] Auto-update linters version, help and documentation (#1100)

* [automation] Auto-update linters version, help and documentation (#1101)

* [automation] Auto-update linters version, help and documentation (#1104)

* [automation] Auto-update linters version, help and documentation (#1107)

* [automation] Auto-update linters version, help and documentation (#1109)

* [automation] Auto-update linters version, help and documentation (#1113)

* [automation] Auto-update linters version, help and documentation (#1114)

* [automation] Auto-update linters version, help and documentation (#1116)

* [automation] Auto-update linters version, help and documentation (#1117)

* [automation] Auto-update linters version, help and documentation (#1118)

* [automation] Auto-update linters version, help and documentation (#1121)

* Release MegaLinter v5.4.0

* [automation] Auto-update linters version, help and documentation (#1122)

* [automation] Auto-update linters version, help and documentation (#1123)

* [automation] Auto-update linters version, help and documentation (#1124)

* [automation] Auto-update linters version, help and documentation (#1129)

* [clj-kondo] update docs and version to 2021.12.19 (#1126)

Co-authored-by: nvuillam <[email protected]>

* fix "MegaLinter vs Super-Linter" link in README (#1130)

Co-authored-by: Nicolas Vuillamy <[email protected]>

* [automation] Auto-update linters version, help and documentation (#1131)

* [automation] Auto-update linters version, help and documentation (#1135)

* [automation] Auto-update linters version, help and documentation (#1138)

* [automation] Auto-update linters version, help and documentation (#1141)

* [automation] Auto-update linters version, help and documentation (#1142)

* Release MegaLinter v5.5.0

* Increase node.js --max-old-space-size to 8192  (#1149)

* Increase node.js --max-old-space-size to 8192

* Build

* [automation] Auto-update linters version, help and documentation (#1144)

* trivy

* [automation] Auto-update linters version, help and documentation (#1151)

* [automation] Auto-update linters version, help and documentation

* cspell

* [automation] Auto-update linters version, help and documentation (#1155)

* [automation] Auto-update linters version, help and documentation (#1156)

* [automation] Auto-update linters version, help and documentation

* trivy

* [automation] Auto-update linters version, help and documentation (#1159)

* [automation] Auto-update linters version, help and documentation (#1161)

* Upgrade clj-kondo (#1165)

* [automation] Auto-update linters version, help and documentation (#1164)

* [automation] Auto-update linters version, help and documentation (#1167)

* [automation] Auto-update linters version, help and documentation (#1170)

* Retrieve licenses for documentation + fix config file + env issue (#1168)

* [automation] Auto-update linters version, help and documentation

* Disable Github Status reporter

* Breaking change: GITHUB_STATUS_REPORTER disabled by default

* Breaking change: set PRINT_ALL_FILES default to false

* Deploy V6 image (#1035)

* QuickFix CI job

* New flavor Security (#1036)

* Java PMD v0

* Java Pmd v0.01

* Working Java + pmd :)

* changelog + doc

* Genedate doc + manage offline mode

* changelog

* Bring back referring linters

* Fix build

* Automate update of changelog when new release (v0)

* Do not create commit & tag with npm version

* Move markdown formatting

* .md

* PMD install commands

* More pmd descriptor infos + build

* Fix megalinter errors

* Fix PMD install commands + build

* [MegaLinter] Apply linters fixes

* Hardcode some licenses

* [MegaLinter] Apply linters fixes

* Add gitleaks

* Build with gitleaks

* Gitleaks fixes

* changelog

* New descriptor: repository

TODO: deprecate git and credentials

* New descriptor "repository"

* Add Goodcheck


Goodcheck updates

* Fix PMD

* Fix PMD

* [MegaLinter] Apply linters fixes

* Fix pmd installation

* Typo

* wget --quiet

* Add trivy

* Build v6-alpha flavors

* Remove git & credentials descriptors + upgrade python base image

* Upgrade python

* New flavor Security v0

* Fix ansible-lint install

* Deploy v6-alpha documentation

* Fix test class

quick build

* Disable java pmd

* Downgrade python version

* SARIF v0

* Update descriptor JSON schema + retries for sgerrand url

* Add SARIF output for checkov

* Add SARIF output for eslint

* [automation] Auto-update linters version, help and documentation (#1038)

* Fix gitleaks

* Build

* Do not skip build if failed

* Do not test SARIF when SARIF is not active on a linter

* Update ansible install

* Fix goodcheck tests

* Fix markdown-table-formatter

* Fix trivy command

* Fix checkov test case + manage default sarif output file

* use MegaLinter beta for now

* Update CI for new default report folder

+ Manage {{REPORT_FOLDER}} in CLI variables

* Exit code 1 for trivy

* Fix replace_vars definition

* Do not run test mega-linter-runner when docker build failed

* Fix replace_vars

* Downgrade v8r version

* Fix arm test case

* build

* Fix again arm test case

* Fix makedirs for report folder

* Rename default report folder into megalinter-reports

* Fix gitleaks

* Try again gitleaks

* Fix last errors

* Fix internal lint errors

Co-authored-by: nvuillam <[email protected]>

* v6-alpha for github action

* Adapt CI for v6-alpha. (#1062)

* Fix own MegaLinter errors (#1063)

* Fix own MegaLinter errors

* Do not use secretlint on report folder

* Fix gitleaks own config

* Use regexes in gitleaks toml config file

* grmblmblm

* try with paths

* Regex to gather gitleaks errors

* Make gitleaks non blocking

* Update gitleaks descriptor

* Debug gitleaks (#1068)

* Debug gitleaks

* Remove LinkedIn ID gitleaks check

* Ignore .gitleaks.toml files

* Update security flavor + toml gitleaks update to use regexes

* Try again...

* Fix gitleaks config (use regexes in paths)

* Update default .gitleaks.toml files

* Clean dev variables

* Build

* Retrofit latest v5 updates into v6 (#1070)

* [automation] Auto-update linters version, help and documentation (#1038)

* Implement new linter PHPLint (#1037)

* add new phplint linter (see #1031)

* use composer global install for overture/phplint

* update changelog

* fix feature #1043 (#1044)

* Add @babel/eslint-parser as dependency for eslint (#1045)

* [automation] Auto-update linters version, help and documentation (#1046)

* [automation] Auto-update linters version, help and documentation + @babel-core

* Add @babel-core dependency

* Use node.js LTS and not nodejs-current

* Downgrade v8r version

* Fix arm test case

* Fix again arm test case

* [automation] Auto-update linters version, help and documentation

* Build

* [automation] Auto-update linters version, help and documentation (#1050)

* [automation] Auto-update linters version, help and documentation (#1052)

* [automation] Auto-update linters version, help and documentation

* Update doc for gitlab MegaLinter config

* Bandit default config file (#1051)

* remove default parameters

* add default bandit configfile built with bandit-config-generator command

* update changelog

* update bandit doc page

Co-authored-by: Nicolas Vuillamy <[email protected]>

* Try again ktlint auto-upgrade (#976)

* [automation] Auto-update linters version, help and documentation (#1055)

* [automation] Auto-update linters version, help and documentation (#1056)

* Docs & links (#1058)

* Update stale config

* Fix getting linter version of npm plugin. (#804)

* [automation] Auto-update linters version, help and documentation (#1059)

* Fix doc

* [automation] Auto-update linters version, help and documentation (#1065)

* [automation] Auto-update linters version, help and documentation (#1067)

* build

Co-authored-by: Laurent Laville <[email protected]>

* SARIF for gitleaks (#1069)

* SARIF for gitleaks

* Sarif python test class v0

* Lint fix + changelog

* Generate security flavor

* SARIF support for trivy (#1071)

* [automation] Auto-update linters version, help and documentation (#1038)

* Implement new linter PHPLint (#1037)

* add new phplint linter (see #1031)

* use composer global install for overture/phplint

* update changelog

* fix feature #1043 (#1044)

* Add @babel/eslint-parser as dependency for eslint (#1045)

* [automation] Auto-update linters version, help and documentation (#1046)

* [automation] Auto-update linters version, help and documentation + @babel-core

* Add @babel-core dependency

* Use node.js LTS and not nodejs-current

* Downgrade v8r version

* Fix arm test case

* Fix again arm test case

* [automation] Auto-update linters version, help and documentation

* Build

* [automation] Auto-update linters version, help and documentation (#1050)

* [automation] Auto-update linters version, help and documentation (#1052)

* [automation] Auto-update linters version, help and documentation

* Update doc for gitlab MegaLinter config

* Bandit default config file (#1051)

* remove default parameters

* add default bandit configfile built with bandit-config-generator command

* update changelog

* update bandit doc page

Co-authored-by: Nicolas Vuillamy <[email protected]>

* Try again ktlint auto-upgrade (#976)

* [automation] Auto-update linters version, help and documentation (#1055)

* [automation] Auto-update linters version, help and documentation (#1056)

* Docs & links (#1058)

* Update stale config

* Fix getting linter version of npm plugin. (#804)

* [automation] Auto-update linters version, help and documentation (#1059)

* Fix doc

* [automation] Auto-update linters version, help and documentation (#1065)

* [automation] Auto-update linters version, help and documentation (#1067)

* SARIF for gitleaks

* Sarif python test class v0

* Lint fix + changelog

* SARIF support for trivy

* Accelerate and fix internal tests

* Fix SARIF files

* Fix trivy sarif args

* [automation] Auto-update linters version, help and documentation (#1072)

* Fix SarifReporter

* Better handling of SARIF error management

* Fix SARIF default file name use

quick build

* Fix sarif reporter exception management

* Variabilize default release

* Improve runtime perfs when FLAVOR_SUGGESTIONS: false (#1073)

* Improve runtime perfs when FLAVOR_SUGGESTIONS: false

* [MegaLinter] Apply linters fixes

* Fix how to get MEGALINTER_FLAVOR

* Fix ignore flavor suggestion test class

Co-authored-by: nvuillam <[email protected]>

* Build

Co-authored-by: Laurent Laville <[email protected]>
Co-authored-by: nvuillam <[email protected]>

* V6/popularity - Display github stars in all linters documentation (#1075)

* Add popularity

* Update descriptors to add linter_repo when missing

* FLAVOR_SUGGESTIONS:false to improve perfs

* Build

* Enhance documentation (#1078)

* Popularity column in all tables

* More badges in linters list doc

* cspell

* Fix sarif test case (#1079)

* Fix sarif test case

* Fix hardcoded reporter folder name in test case

* Remove dockerfilelint (#1080)

* Remove dockerfilelint

* changelog

* Upgrade to AWS cfn-lint (#1085)

* Upgrade to AWS cfn-lint

* Build

* Add SARIF management for cfn-lint

* Add cfn-lint example SARIF output file

* SARIF management for Hadolint (#1089)

* SARIF management for Hadolint

* Update .gitleaks.toml to ignore .mypy_cache folder

* Catch SARIF error

* Upgrade hadolint to 2.8.0-alpine

* SARIF for checkstyle (#1093)

* SARIF for ktlint (#1095)

* SARIF for all eslint uses (#1094)

* SARIF management for go revive (#1092)

* SARIF management for go revive

* fix descriptor

quick build

* SARIF Management for PHP PSALM (#1096)

* Build doc

* More SARIF examples

* V6/docker standalone linters (#1099)

* Build unique linters dockerfiles

* Dockerfiles for unique linters + Improve perfs

* CI to build standalone images

* Fix CI

* Matrix jobs: do not fail other jobs if one fails

* Manage docker build --squash

* Add test cases to "only" docker images

* No codecov call when not running all tests

* Create output sarif folder when SARIF is from stdout

* Remove useless python packages for ML runtime

* Remove pytest-cov pytest-timeout from runtime image

* Optimize Until dotenv linter

* gcc in all dockerfiles + go for actionlint

* Add libffi-dev in all Docker images

* Add make

* add bash

* add musl-dev

* Fix linters install

* gnugpg for php

* Automate node & ruby-dev installation if packages are used in install

* Fix dotnet install

* More preset variables on single-linter docker images

* typo

* typo2

* Add ruby-bundler for gem packages

* Remove PHP_BUILTIN as it has been replaced by PHP_PHPLINT

* Fix descriptors and test class

* Improve CI perfs for only-linters build

* More fixes

* Fix kotlin install

* Fix raku install

* Fix R

* Fix scala

* Fix TSX

* Fix Vb .NET

* Build

* Linters page

* rollback raku

* Fix terraform_fmt & rollback raku

* Try fix rakudo

* Fix duplicate ARG and FROM in dockerfile

* Fix python lint err

* Disable lint_all_other_linters_files=true if in SINGLE_LINTER mode

* lint fix

* Reduce docker layers

* Reduce again the list of docker build steps

* Do not keep text logs if not wanted + linter delete SARIF files

* Fix CI

* Fix SARIF test case

* Disable deprecated test case

* Terrascan SARIF management (#1103)

* Terrascan SARIF management

* tflint SARIF management

* Fix terrascan args

* cspell

* MegaLinter server (#1106)

* PHP version switch (#1083)

* fixe issue #1060

* fix hadolint error DL3059

* [automation] Auto-update linters version, help and documentation (#1088)

* [automation] Auto-update linters version, help and documentation

* Increase trivy timeout

* [automation] Auto-update linters version, help and documentation (#1091)

* Release MegaLinter v5.3.0

* [automation] Auto-update linters version, help and documentation (#1097)

* Fix CHANGELOG

* [automation] Auto-update linters version, help and documentation (#1098)

* [automation] Auto-update linters version, help and documentation (#1100)

* [automation] Auto-update linters version, help and documentation (#1101)

* [automation] Auto-update linters version, help and documentation (#1104)

* KEEP_ALIVE_MEGALINTER v0

* openssh

* Build standalone linters only for linters managing SARIF

* Entrypoint

* Entrypoint: exit when test cases called

* Add openrc

* Try another way

https://github.com/danielguerra69/alpine-sshd

* Startup lines at the end

* Test simple case with password

* rhaaaa

* Remove ssh stuff as we loose env variables

* Server v0

* Server v0

* Add workspace argument

* Expose on port 80

* Manage running processes

* try debug flask

* debug mode for server

* v0 ?

* Fix server for report file name

* SARIF in http response

* [automation] Auto-update linters version, help and documentation (#1107)

* [automation] Auto-update linters version, help and documentation (#1109)

* [automation] Auto-update linters version, help and documentation (#1113)

* Bring back ssh

* Set env variables for all users

* [automation] Auto-update linters version, help and documentation (#1114)

* [automation] Auto-update linters version, help and documentation (#1116)

* [automation] Auto-update linters version, help and documentation (#1117)

* new SSH way with tmux

* Build

* Allow PWD auth for testing

* [automation] Auto-update linters version, help and documentation (#1118)

* [automation] Auto-update linters version, help and documentation (#1121)

* Release MegaLinter v5.4.0

* [automation] Auto-update linters version, help and documentation (#1122)

* [automation] Auto-update linters version, help and documentation (#1123)

* [automation] Auto-update linters version, help and documentation (#1124)

* [automation] Auto-update linters version, help and documentation (#1129)

* [clj-kondo] update docs and version to 2021.12.19 (#1126)

Co-authored-by: nvuillam <[email protected]>

* fix "MegaLinter vs Super-Linter" link in README (#1130)

Co-authored-by: Nicolas Vuillamy <[email protected]>

* Move ssh management to entrypoint

* QuickFix

* try again

* Stop docker container if entrypoint fails

* Sh in container

* alias for megalinger when running in server mode (#1133)

makes running megalinter in server mode easier

* aliases

* Build

* tmux_exec

* Build !

* [automation] Auto-update linters version, help and documentation (#1131)

* gha

* motd

* build

* -input and -output v0

* Use argparse

* Use parse_known_args

* config.set

* [automation] Auto-update linters version, help and documentation (#1135)

* DOCKER_DEFAULT_WORKSPACE_DIR & absolue path for --input argument

* introduce shell script to convenience running from ssh (#1137)

* Create megalinter_tmux

* Update build.py

* Build

Co-authored-by: nvuillam <[email protected]>

* Use --input

* Fix --input + CI

* CI for Inbar (create branch named v6_inbar )

* [automation] Auto-update linters version, help and documentation (#1138)

* [automation] Auto-update linters version, help and documentation (#1141)

* [automation] Auto-update linters version, help and documentation (#1142)

* Release MegaLinter v5.5.0

* V6 inbar (#1143)

* capture std is optional

capture std is optional

* improve megalinter_tmux script

add verbosity as an optional flag, improve some messages, add comments, fix script name in examples

* Bash file as executable

* Fix shellcheck issue https://github.com/koalaman/shellcheck/wiki/SC2124

* Python & Dockerfiles lint errors

* cspell

* Build

* Ignore tmux_exec for bash controlling

* pylint…
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

Add missing Bandit config file and rules path options
4 participants