upstream/packer
1
0
Fork 0
mirror of https://github.com/hashicorp/packer.git synced 2026-04-29 02:02:06 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions 4

stricter version check for syft

Browse source
This commit is contained in:
Anurag Sharma 2026-03-23 15:07:29 +05:30
parent be3138e78c
commit 30b154d238
1 changed files with 8 additions and 5 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

13
provisioner/hcp-sbom/provisioner.go
View file

@ -699,7 +699,10 @@ func (p *Provisioner) getLatestSyftVersion() string {
Timeout: 30 * time.Second,
}
// Paginate through releases to find latest v1.x
// Compile regex to match v1.x.x format (e.g., v1.0.0, v1.42.2, v1.100.25)
v1Pattern := regexp.MustCompile(`^v1\.\d+\.\d+$`)
// Paginate through releases to find latest v1.x.x
page := 1
perPage := 100
@ -750,10 +753,10 @@ func (p *Provisioner) getLatestSyftVersion() string {
}
_ = resp.Body.Close()
// Look for latest v1.x release
// Look for latest v1.x.x release using regex
for _, release := range releases {
if strings.HasPrefix(release.TagName, "v1.") {
log.Printf("[INFO] Found latest Syft v1.x version: %s", release.TagName)
if v1Pattern.MatchString(release.TagName) {
log.Printf("[INFO] Found latest Syft v1.x.x version: %s", release.TagName)
return release.TagName
}
}
@ -766,7 +769,7 @@ func (p *Provisioner) getLatestSyftVersion() string {
page++
}
log.Printf("[WARN] No Syft v1.x release found in paginated results")
log.Printf("[WARN] No Syft v1.x.x release found in paginated results")
return ""
}