Via tools/pkgs, also pulling in Clang-built Linux
Update go.mod dependencies
Fix linter errors with new golangci-lint, modernize, use new()
Signed-off-by: Dmitrii Sharshakov <dmitry.sharshakov@siderolabs.com>
Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
Re-generate, fix new linting issues.
Update containerd library to the latest 2.2.1 to address the new cgroups
package import (via tools update).
Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
The needed changes for SBOM + VEX support have landed on main and are
available in the current Grype release.
Also rebase the Syft PR and use Syft 1.38.1 + deterministic/reproducible
SPDX SBOM generation patch.
Signed-off-by: Dmitrii Sharshakov <dmitry.sharshakov@siderolabs.com>
CoreDNS 1.13.0
Linux 6.17.4
Other go.mod dependencies, tools, Helm charts used in tests, etc.
Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
Move stuff into `tools/go.mod`.
Also fix linting issues on the way (updating golangci-lint).
Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
Add a CI job to build the current VEX file and scan SBOM.
This should enable automatic detection of new vulnerabilities once
information on them becomes available.
Signed-off-by: Dmitrii Sharshakov <dmitry.sharshakov@siderolabs.com>
Include all core packages into SBOM, make sure Talos is built with the
same Go versions as pkgs.
Signed-off-by: Dmitrii Sharshakov <dmitry.sharshakov@siderolabs.com>
