Skip to content

Guard EvidenceSupport support type validation#3663

Open
FlorianPfaff wants to merge 2 commits into
mainfrom
chatgpt-evidence-support-validation-fix
Open

Guard EvidenceSupport support type validation#3663
FlorianPfaff wants to merge 2 commits into
mainfrom
chatgpt-evidence-support-validation-fix

Conversation

@FlorianPfaff

Copy link
Copy Markdown
Owner

Summary

  • Validate EvidenceSupport.support_type is a string before checking membership in the allowed support-type set.
  • Convert unhashable invalid values such as lists into the documented ValueError path instead of leaking TypeError.
  • Add a focused regression test for list-valued evidence support input.

Validation

  • Inspected the final main..chatgpt-evidence-support-validation-fix diff: 2 files changed, +14/-1.
  • Local full test execution was not possible in this sandbox because direct GitHub cloning is unavailable here; the added test exercises the previously crashing path directly.

@github-actions

github-actions Bot commented Jul 2, 2026

Copy link
Copy Markdown
Contributor

MegaLinter analysis: Success

Descriptor Linter Files Fixed Errors Warnings Elapsed time
✅ COPYPASTE jscpd yes no no 77.24s
✅ JSON prettier 7 0 0 0 1.07s
✅ JSON v8r 7 0 0 4.94s
✅ MARKDOWN markdownlint 68 0 0 0 1.75s
✅ MARKDOWN markdown-table-formatter 68 0 0 0 0.9s
✅ PYTHON black 1193 30 0 0 68.55s
✅ PYTHON isort 1193 58 0 0 7.25s
✅ REPOSITORY checkov yes no no 49.28s
✅ REPOSITORY gitleaks yes no no 10.52s
✅ REPOSITORY git_diff yes no no 0.21s
✅ REPOSITORY secretlint yes no no 37.02s
✅ REPOSITORY syft yes no no 3.61s
✅ REPOSITORY trivy-sbom yes no no 10.69s
✅ REPOSITORY trufflehog yes no no 21.07s
✅ YAML prettier 11 0 0 0 0.75s
✅ YAML v8r 11 0 0 12.06s
✅ YAML yamllint 11 0 0 0.59s

Notices

📣 MegaLinter 9.5.0 is out! Discover the new features and security recommendations in the release announcement. (Skip this info by defining SECURITY_SUGGESTIONS: false)

See detailed reports in MegaLinter artifacts

Your project could benefit from a custom flavor, which would allow you to run only the linters you need, and thus improve runtime performances. (Skip this info by defining FLAVOR_SUGGESTIONS: false)

  • Documentation: Custom Flavors
  • Command: npx mega-linter-runner@9.5.0 --custom-flavor-setup --custom-flavor-linters PYTHON_BLACK,PYTHON_ISORT,COPYPASTE_JSCPD,JSON_V8R,JSON_PRETTIER,MARKDOWN_MARKDOWNLINT,MARKDOWN_MARKDOWN_TABLE_FORMATTER,REPOSITORY_CHECKOV,REPOSITORY_GIT_DIFF,REPOSITORY_GITLEAKS,REPOSITORY_SECRETLINT,REPOSITORY_SYFT,REPOSITORY_TRIVY_SBOM,REPOSITORY_TRUFFLEHOG,YAML_PRETTIER,YAML_YAMLLINT,YAML_V8R

MegaLinter is graciously provided by OX Security
Show us your support by starring ⭐ the repository

@FlorianPfaff FlorianPfaff enabled auto-merge (squash) July 2, 2026 08:33
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant