Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Require hashes for all pip installs #1871

Merged
merged 18 commits into from
Oct 9, 2024
Merged

Require hashes for all pip installs #1871

merged 18 commits into from
Oct 9, 2024

Conversation

damccorm
Copy link
Contributor

@damccorm damccorm commented Sep 16, 2024
edited
Loading

Continuation of #1912 to make our pip installs more secure. We should require hashes to make sure the underlying dependency doesn't move out from under us.

@codecov Codecov
Copy link

codecov bot commented Sep 16, 2024
edited
Loading

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 44.78%. Comparing base (d251720) to head (98443c6).
Report is 3 commits behind head on main.

Additional details and impacted files 
@@             Coverage Diff              @@
##               main    #1871      +/-   ##
============================================
- Coverage     44.79%   44.78%   -0.01%     
+ Complexity     3564     3562       -2     
============================================
  Files           832      832              
  Lines         49480    49480              
  Branches       5196     5196              
============================================
- Hits          22165    22161       -4     
- Misses        25669    25672       +3     
- Partials       1646     1647       +1
Components Coverage Δ
spanner-templates 65.55% <ø> (-0.01%) ⬇️
spanner-import-export 63.80% <ø> (-0.03%) ⬇️
spanner-live-forward-migration 74.86% <ø> (ø)
spanner-live-reverse-replication 75.55% <ø> (ø)
spanner-bulk-migration 84.20% <ø> (ø)

see 2 files with indirect coverage changes

@damccorm damccorm marked this pull request as ready for review October 7, 2024 17:26
@damccorm damccorm requested a review from Polber October 7, 2024 17:26
@damccorm damccorm requested a review from Polber October 9, 2024 17:05
@damccorm
Copy link
Contributor Author

damccorm commented Oct 9, 2024

postgressql failures are unrelated to this change, so I'm going to merge

@damccorm damccorm merged commit c0cf560 into main Oct 9, 2024
15 of 17 checks passed
@damccorm damccorm deleted the users/damccorm/requireHashes branch October 9, 2024 19:15
@Abacn Abacn mentioned this pull request Oct 12, 2024
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Polber Polber Polber approved these changes

Assignees
No one assigned
Labels
size/M
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@damccorm @Polber