Gitiles
Code Review Sign In
gerrit.nordix.org / onap / integration / 45d5c7a8853f5b25dbb9b6b8a99846d68a199468
commit45d5c7a8853f5b25dbb9b6b8a99846d68a199468[log] [tgz]
authorPawel Wieczorek <p.wieczorek2@samsung.com>Fri Feb 07 12:59:32 2020 +0100
committerBartek Grzybowski <b.grzybowski@partner.samsung.com>Wed Mar 25 13:08:24 2020 +0000
tree5712db946834b9368f80206b7e49d01a52c2d0a3
parent3d0d6a9a7fc64e42c36c31ff7f371b562ec691f1 [diff]
Increase verifiability of security checks

This patch introduces a series of patches that will provide tools which
will succeed current security check scripts. Its two main reasons are:

* increasing tools verifiability by providing internal tests,
* improving "expected failure" support by suppressing carefully selected
  set of special cases.

Each tool will use following directory structure (generated with
"tree -a --charset=ascii" command):

.
`-- check_module
    |-- Dockerfile
    |-- .dockerignore
    |-- .gitignore
    |-- go.mod
    |-- main.go
    |-- Makefile
    |-- README
    |-- README.rst -> README
    `-- submodule
        |-- submodule.go
        `-- submodule_test.go

This will allow using Go Modules mechanism within its limitations [1]
for "non-go-get-able modules" [2][3][4] - also in case of separating
code into several modules used by multiple "check modules", e.g.

.
|-- common
|   |-- common.go
|   |-- common_test.go
|   `-- go.mod
`-- check_module
    |-- go.mod
    `-- ...

It would require migration from separate Dockerfiles to a single one
(multi-stage), though.

Provided Makefiles are intended to simplify local development
(Docker-less building) and container images preparation. READMEs clarify
utility requirements and usage - file without extension is for VCS
reference, symlink for proper syntax rendering.

[1] https://github.com/golang/go/wiki/Modules#is-it-possible-to-add-a-module-to-a-multi-module-repository
[2] https://github.com/golang/go/wiki/Modules#can-i-work-entirely-outside-of-vcs-on-my-local-filesystem
[3] https://github.com/golang/go/issues/26645#issuecomment-408572701
[4] https://www.dim13.org/go-get-cgit

Issue-ID: SECCOM-261
Change-Id: I48eeeda66bd5570d249e96e101e431e6bab75cb3
Signed-off-by: Pawel Wieczorek <p.wieczorek2@samsung.com>
2 files changed
tree: 5712db946834b9368f80206b7e49d01a52c2d0a3
  1. bootstrap/
  2. deployment/
  3. docs/
  4. documentation/
  5. S3Ptools/
  6. test/
  7. version-manifest/
  8. .coafile
  9. .gitattributes
  10. .gitignore
  11. .gitreview
  12. .readthedocs.yaml
  13. .yamllint
  14. INFO.yaml
  15. README.md
  16. tox.ini
  17. version.properties
README.md

ONAP Integration

Description

Responsible for the integration framework / automated tools, code and scripts, best practice guidance related to cross-project Continuous System Integration Testing (CSIT), and delivery of the ONAP project.

See https://wiki.onap.org/display/DW/Integration+Project for additional details.

Sub-projects

See respective directories for additional details about each sub-project.