Skip to content

Quiet git worktree add in hack/verify-govulncheck.sh #132153

New issue
New issue
Open
#132172
Open
Quiet git worktree add in hack/verify-govulncheck.sh#132153
#132172
Assignees
vekarpovgal-dahan
Labels
good first issueDenotes an issue ready for a new contributor, according to the "help wanted" guidelines.help wantedDenotes an issue that needs help from a contributor. Must meet "help wanted" guidelines.sig/securityCategorizes an issue or PR as relevant to SIG Security.triage/acceptedIndicates an issue or PR is ready to be actively worked on.
@tabbysable

Description

@tabbysable
tabbysable
opened on Jun 6, 2025

govulncheck is used to compare before-and-after states of pull requests so that contributors and reviewers can tell:

  • does their PR introduce more known vulnerabilities into Kubernetes
  • Does their PR remove known vulnerabilities from Kubernetes

They currently need to inspect the logs in order to find this information. Those logs are messy because of status messages emitted by git worktree add. An example is here.

It would be nice to quiet that status text, so that the govulncheck logs can be more easily found and inspected.

/sig security

Metadata

Metadata

Assignees

Labels

good first issueDenotes an issue ready for a new contributor, according to the "help wanted" guidelines.help wantedDenotes an issue that needs help from a contributor. Must meet "help wanted" guidelines.sig/securityCategorizes an issue or PR as relevant to SIG Security.triage/acceptedIndicates an issue or PR is ready to be actively worked on.

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions