Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

v1.0.0 release blockers #173

Open
2 of 5 tasks
tstromberg opened this issue Apr 29, 2024 · 5 comments
Open
2 of 5 tasks

v1.0.0 release blockers #173

tstromberg opened this issue Apr 29, 2024 · 5 comments

Comments

@tstromberg
Copy link
Collaborator

tstromberg commented Apr 29, 2024
edited

I think we should ship a v1.0.0 sooner rather than later, so I wanted to get an idea of what folks consider launch blockers. Here are my initial ideas:
@egibs
Copy link
Collaborator

egibs commented Apr 30, 2024
edited

transparent archive support (handle a directory of .tar.gz files)

This may work already; I'll test it out and get back to you.

Edit: Nope, I'll work on a PR!

@egibs egibs mentioned this issue Apr 30, 2024
Merged
@tstromberg
Copy link
Collaborator Author

Current stats for my macOS 14.4.1 test device, as measured with sudo go run . --stats /bin /sbin /usr/bin /usr/sbin /usr/libexec /opt/homebrew/bin /opt/homebrew/sbin:

Risk Level    Percentage Count/Total
2/MED             48.80% 1508/3090
1/LOW             36.25% 1120/3090
0/NONE            13.07% 404/3090
3/HIGH             1.78% 55/3090
4/CRIT             0.10% 3/3090

@tstromberg
Copy link
Collaborator Author

Looks like we're just above HIGH threshold on Fedora 38 (6.36%):

sudo $HOME/go/bin/bincapz --stats /bin /sbin /usr/bin /usr/sbin /usr/libexec/

@tstromberg
Copy link
Collaborator Author

I think we are probably there with wolfi false-positive rates. I only ran against the 'a*' packages due to #204 but the stats for them are:

0/NONE            37.82% 10093/26685                                                                                      
1/LOW             33.40% 8914/26685                                                                                       
2/MED             28.66% 7648/26685                                                                                       
3/HIGH             0.10% 26/26685                                                                                         
4/CRIT             0.01% 4/26685

@tstromberg
Copy link
Collaborator Author

tstromberg commented May 21, 2024
edited

I've cleared out the old criteria that we mostly met already, and narrowed it down to 3 final things:

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@tstromberg @egibs