Skip to content

freedesktop: switch to git-checkout#76896

Merged
EyeCantCU merged 1 commit into
wolfi-dev:mainfrom
cjwatson:git-checkout-freedesktop
Jan 8, 2026
Merged

freedesktop: switch to git-checkout#76896
EyeCantCU merged 1 commit into
wolfi-dev:mainfrom
cjwatson:git-checkout-freedesktop

freedesktop: switch to git-checkout

76efd6f
Select commit
Loading
Failed to load commit list.
Octo STS / staging-autofix completed Dec 29, 2025 in 0s

Pull request does not have the "staging-autofix" label

ci-cve-scan

The build failed because a CVE scan, running in 'fail-any' mode, detected vulnerabilities. Specifically, CVE-2024-11586 was found in multiple PulseAudio-related packages for both aarch64 and x86_64 architectures.

❌ Other error
Command:
CVE Scan
Diagnostic:
CVE scan failed: This check is running in fail-any mode and will fail because CVEs were found.
Log Snippets:
This section explicitly states the reason for the failure: CVEs were found and the scan is configured to fail in such cases.
### CVE Scan Results (mode: fail-any)

⚠️ CVEs Found (fail-any mode)

This check is running in fail-any mode and will fail because CVEs were found.


This is an example of a package found to have the CVE, indicating the specific vulnerability and affected component.
#### aarch64/libpulse-17.0-r5.apk
└── 📄 /.PKGINFO
        📦 libpulse 17.0-r5 (apk)
            Medium CVE-2024-11586

```</pre>
</details>
<br>
<details>
<summary><i>Another example showing the same CVE affecting a different PulseAudio-related package on a different architecture.</i></summary>
<pre style="overflow-x: auto; white-space: nowrap;">#### x86_64/pulseaudio-17.0-r5.apk


└── 📄 /.PKGINFO
📦 pulseaudio 17.0-r5 (apk)
Medium CVE-2024-11586

</details>
<br>
</td></tr>
</table>

<!--staging-autofix-status-->
<!--
{
  "observedGeneration": "76efd6fe5c200839bc2062b31502cecf4d09db51",
  "status": "completed",
  "conclusion": "neutral",
  "details": {
    "checkRunAnalyses": {
      "59110459075": {
        "name": "ci-cve-scan",
        "details_url": "https://octo-sts.dev",
        "analysis": {
          "summary": "The build failed because a CVE scan, running in 'fail-any' mode, detected vulnerabilities. Specifically, CVE-2024-11586 was found in multiple PulseAudio-related packages for both aarch64 and x86_64 architectures.",
          "failures": [
            {
              "type": "other",
              "error_message": "CVE scan failed: This check is running in fail-any mode and will fail because CVEs were found.",
              "context": [
                {
                  "content": "### CVE Scan Results (mode: fail-any)\n\n\n### ⚠️ CVEs Found (fail-any mode)\n\n\nThis check is running in fail-any mode and will fail because CVEs were found.",
                  "why_relevant": "This section explicitly states the reason for the failure: CVEs were found and the scan is configured to fail in such cases."
                },
                {
                  "content": "#### aarch64/libpulse-17.0-r5.apk\n\n\n```\n└── 📄 /.PKGINFO\n        📦 libpulse 17.0-r5 (apk)\n            Medium CVE-2024-11586\n\n```",
                  "why_relevant": "This is an example of a package found to have the CVE, indicating the specific vulnerability and affected component."
                },
                {
                  "content": "#### x86_64/pulseaudio-17.0-r5.apk\n\n\n```\n└── 📄 /.PKGINFO\n        📦 pulseaudio 17.0-r5 (apk)\n            Medium CVE-2024-11586\n\n```",
                  "why_relevant": "Another example showing the same CVE affecting a different PulseAudio-related package on a different architecture."
                }
              ],
              "failing_command": "CVE Scan",
              "severity": "error"
            }
          ]
        }
      }
    }
  }
}
-->
<!--/staging-autofix-status-->