You are viewing a plain text version of this content. The canonical link for it is here.
Posted to notifications@skywalking.apache.org by ke...@apache.org on 2021/04/26 12:54:27 UTC
[skywalking] branch kezhenxu94-patch-1 created (now 5fdd49c)
This is an automated email from the ASF dual-hosted git repository.
kezhenxu94 pushed a change to branch kezhenxu94-patch-1
in repository https://gitbox.apache.org/repos/asf/skywalking.git.
at 5fdd49c Add shasum verification to Codecov Bash Uploader
This branch includes the following new commits:
new 5fdd49c Add shasum verification to Codecov Bash Uploader
The 1 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails. The revisions
listed as "add" were already present in the repository and have only
been added to this reference.
[skywalking] 01/01: Add shasum verification to Codecov Bash Uploader
Posted by ke...@apache.org.
This is an automated email from the ASF dual-hosted git repository.
kezhenxu94 pushed a commit to branch kezhenxu94-patch-1
in repository https://gitbox.apache.org/repos/asf/skywalking.git
commit 5fdd49cc1c4e1b2b5d7f39c25b8a826ef23cac62
Author: Zhenxu Ke <ke...@apache.org>
AuthorDate: Mon Apr 26 20:54:06 2021 +0800
Add shasum verification to Codecov Bash Uploader
According to https://about.codecov.io/security-update/
---
tools/coverage/report.sh | 11 ++++++++++-
1 file changed, 10 insertions(+), 1 deletion(-)
diff --git a/tools/coverage/report.sh b/tools/coverage/report.sh
index ce42944..fe4c5ae 100755
--- a/tools/coverage/report.sh
+++ b/tools/coverage/report.sh
@@ -41,4 +41,13 @@ for exec_data in "${JACOCO_HOME}"/*.exec; do
"${JACOCO_HOME}"/"$exec_data".exec
done
-bash <(curl -s https://codecov.io/bash) -X fix -f /tmp/report-*.xml || true
+# Download codecov bash uploader and verify the sha sums before using it.
+curl -s https://codecov.io/bash > codecov
+VERSION=$(grep -o 'VERSION=\"[0-9\.]*\"' codecov | cut -d'"' -f2)
+for i in 1 256 512
+do
+ shasum -a $i -c --ignore-missing <(curl -s "https://raw.githubusercontent.com/codecov/codecov-bash/${VERSION}/SHA${i}SUM") ||
+ shasum -a $i -c <(curl -s "https://raw.githubusercontent.com/codecov/codecov-bash/${VERSION}/SHA${i}SUM")
+done
+
+bash codecov -X fix -f /tmp/report-*.xml || true