From d07ab55ee1a6a48e96d077690c15a844722c2688 Mon Sep 17 00:00:00 2001 From: egibs <20933572+egibs@users.noreply.github.com> Date: Fri, 15 May 2026 17:18:03 -0500 Subject: [PATCH 1/4] chore: add make to containerized Jobs Signed-off-by: egibs <20933572+egibs@users.noreply.github.com> --- .github/workflows/fuzz.yaml | 2 +- .github/workflows/go-tests.yaml | 4 ++-- .github/workflows/style.yaml | 2 +- .github/workflows/third-party.yaml | 2 +- 4 files changed, 5 insertions(+), 5 deletions(-) diff --git a/.github/workflows/fuzz.yaml b/.github/workflows/fuzz.yaml index 02eb5c2db..ad13a9cd0 100644 --- a/.github/workflows/fuzz.yaml +++ b/.github/workflows/fuzz.yaml @@ -121,7 +121,7 @@ jobs: - name: Install dependencies run: | apk update - apk add curl findutils git gnutar ${{ env.GO_RELEASE }} nodejs upx xz yara-x~${{ env.YARA_X_RELEASE }} + apk add curl findutils git gnutar ${{ env.GO_RELEASE }} make nodejs upx xz yara-x~${{ env.YARA_X_RELEASE }} - name: Checkout code uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 diff --git a/.github/workflows/go-tests.yaml b/.github/workflows/go-tests.yaml index c7888ace7..dbb44e5e0 100644 --- a/.github/workflows/go-tests.yaml +++ b/.github/workflows/go-tests.yaml @@ -41,7 +41,7 @@ jobs: - name: Install dependencies run: | apk update - apk add curl findutils git gnutar ${{ env.GO_RELEASE }} nodejs upx xz yara-x~${{ env.YARA_X_RELEASE }} + apk add curl findutils git gnutar ${{ env.GO_RELEASE }} make nodejs upx xz yara-x~${{ env.YARA_X_RELEASE }} - name: Checkout code uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 @@ -92,7 +92,7 @@ jobs: - name: Install dependencies run: | apk update - apk add curl findutils git gnutar ${{ env.GO_RELEASE }} nodejs upx xz yara-x~${{ env.YARA_X_RELEASE }} + apk add curl findutils git gnutar ${{ env.GO_RELEASE }} make nodejs upx xz yara-x~${{ env.YARA_X_RELEASE }} - name: Checkout code uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 diff --git a/.github/workflows/style.yaml b/.github/workflows/style.yaml index 6354884c9..426eacb34 100644 --- a/.github/workflows/style.yaml +++ b/.github/workflows/style.yaml @@ -147,7 +147,7 @@ jobs: - name: Install dependencies run: | apk update - apk add curl findutils git ${{ env.GO_RELEASE }} nodejs yara-x~${{ env.YARA_X_RELEASE }} + apk add curl findutils git ${{ env.GO_RELEASE }} make nodejs yara-x~${{ env.YARA_X_RELEASE }} - name: Checkout code uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 diff --git a/.github/workflows/third-party.yaml b/.github/workflows/third-party.yaml index f84dbd70f..b8b883d68 100644 --- a/.github/workflows/third-party.yaml +++ b/.github/workflows/third-party.yaml @@ -40,7 +40,7 @@ jobs: - name: Install dependencies run: | apk update - apk add bash curl findutils gh git gnutar ${{ env.GO_RELEASE }} nodejs perl upx xz yara-x~${{ env.YARA_X_RELEASE }} + apk add bash curl findutils gh git gnutar ${{ env.GO_RELEASE }} make nodejs perl upx xz yara-x~${{ env.YARA_X_RELEASE }} - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 - name: Trust repository run: git config --global --add safe.directory "${GITHUB_WORKSPACE}" From fc1b467720b0799fe5daa2497d226bbf312e5608 Mon Sep 17 00:00:00 2001 From: egibs <20933572+egibs@users.noreply.github.com> Date: Fri, 15 May 2026 17:28:25 -0500 Subject: [PATCH 2/4] set CGO_ENABLED=1 Signed-off-by: egibs <20933572+egibs@users.noreply.github.com> --- .github/workflows/codeql.yaml | 1 + .github/workflows/fuzz.yaml | 1 + .github/workflows/go-tests.yaml | 1 + .github/workflows/style.yaml | 1 + .github/workflows/third-party.yaml | 3 ++- 5 files changed, 6 insertions(+), 1 deletion(-) diff --git a/.github/workflows/codeql.yaml b/.github/workflows/codeql.yaml index e4f0b03e0..ad7529598 100644 --- a/.github/workflows/codeql.yaml +++ b/.github/workflows/codeql.yaml @@ -11,6 +11,7 @@ on: - cron: "35 23 * * 0" env: + CGO_ENABLED: "1" CODEQL_EXTRACTOR_GO_BUILD_TRACING: "on" YARA_X_RELEASE: "1.16.0" diff --git a/.github/workflows/fuzz.yaml b/.github/workflows/fuzz.yaml index 95d8e618e..0fa6469e5 100644 --- a/.github/workflows/fuzz.yaml +++ b/.github/workflows/fuzz.yaml @@ -30,6 +30,7 @@ on: - "180m" env: + CGO_ENABLED: "1" GO_RELEASE: "go-1.26" YARA_X_RELEASE: "1.16.0" diff --git a/.github/workflows/go-tests.yaml b/.github/workflows/go-tests.yaml index d65458c5f..29c7e36f9 100644 --- a/.github/workflows/go-tests.yaml +++ b/.github/workflows/go-tests.yaml @@ -12,6 +12,7 @@ on: - "main" env: + CGO_ENABLED: "1" GO_RELEASE: "go-1.26" YARA_X_RELEASE: "1.16.0" diff --git a/.github/workflows/style.yaml b/.github/workflows/style.yaml index 382ebe441..9bce52923 100644 --- a/.github/workflows/style.yaml +++ b/.github/workflows/style.yaml @@ -4,6 +4,7 @@ name: Code Style env: + CGO_ENABLED: "1" GO_RELEASE: "go-1.26" YARA_X_RELEASE: "1.16.0" diff --git a/.github/workflows/third-party.yaml b/.github/workflows/third-party.yaml index 1555b6478..ccdde76f6 100644 --- a/.github/workflows/third-party.yaml +++ b/.github/workflows/third-party.yaml @@ -9,6 +9,7 @@ on: - cron: "0 */12 * * *" env: + CGO_ENABLED: "1" GO_RELEASE: "go-1.26" YARA_X_RELEASE: "1.16.0" @@ -36,7 +37,7 @@ jobs: contents: write id-token: write pull-requests: write - steps:https://github.com/chainguard-dev/malcontent/pull/1521/conflict?name=.github%252Fworkflows%252Fthird-party.yaml&ancestor_oid=f84dbd70f97e41fd06ce7bcd87f2f29b97aaf8a1&base_oid=b8b883d6843d3880ba2db913f84e977b957d536e&head_oid=7c682f895d662285ce339438d9b801d1e0973a14 + steps: - name: Install dependencies run: | apk update From 366488d0466c15149dad33c60fc035b7e229aeaa Mon Sep 17 00:00:00 2001 From: egibs <20933572+egibs@users.noreply.github.com> Date: Fri, 15 May 2026 17:30:04 -0500 Subject: [PATCH 3/4] add gcc Signed-off-by: egibs <20933572+egibs@users.noreply.github.com> --- .github/workflows/fuzz.yaml | 2 +- .github/workflows/go-tests.yaml | 4 ++-- .github/workflows/style.yaml | 2 +- .github/workflows/third-party.yaml | 2 +- 4 files changed, 5 insertions(+), 5 deletions(-) diff --git a/.github/workflows/fuzz.yaml b/.github/workflows/fuzz.yaml index 0fa6469e5..a85e50a68 100644 --- a/.github/workflows/fuzz.yaml +++ b/.github/workflows/fuzz.yaml @@ -126,7 +126,7 @@ jobs: - name: Install dependencies run: | apk update - apk add curl findutils git gnutar "${GO_RELEASE}" make nodejs upx xz "yara-x~${YARA_X_RELEASE}" + apk add curl findutils gcc git gnutar "${GO_RELEASE}" make nodejs upx xz "yara-x~${YARA_X_RELEASE}" - name: Checkout code uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 diff --git a/.github/workflows/go-tests.yaml b/.github/workflows/go-tests.yaml index 29c7e36f9..ce88349b3 100644 --- a/.github/workflows/go-tests.yaml +++ b/.github/workflows/go-tests.yaml @@ -42,7 +42,7 @@ jobs: - name: Install dependencies run: | apk update - apk add curl findutils git gnutar "${GO_RELEASE}" make nodejs upx xz "yara-x~${YARA_X_RELEASE}" + apk add curl findutils gcc git gnutar "${GO_RELEASE}" make nodejs upx xz "yara-x~${YARA_X_RELEASE}" - name: Checkout code uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 @@ -93,7 +93,7 @@ jobs: - name: Install dependencies run: | apk update - apk add curl findutils git gnutar "${GO_RELEASE}" make nodejs upx xz "yara-x~${YARA_X_RELEASE}" + apk add curl findutils gcc git gnutar "${GO_RELEASE}" make nodejs upx xz "yara-x~${YARA_X_RELEASE}" - name: Checkout code uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 diff --git a/.github/workflows/style.yaml b/.github/workflows/style.yaml index 9bce52923..be32f13ca 100644 --- a/.github/workflows/style.yaml +++ b/.github/workflows/style.yaml @@ -189,7 +189,7 @@ jobs: - name: Install dependencies run: | apk update - apk add curl findutils git "${GO_RELEASE}" make nodejs "yara-x~${YARA_X_RELEASE}" + apk add curl findutils gcc git "${GO_RELEASE}" make nodejs "yara-x~${YARA_X_RELEASE}" - name: Checkout code uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 diff --git a/.github/workflows/third-party.yaml b/.github/workflows/third-party.yaml index ccdde76f6..5d2ea0973 100644 --- a/.github/workflows/third-party.yaml +++ b/.github/workflows/third-party.yaml @@ -41,7 +41,7 @@ jobs: - name: Install dependencies run: | apk update - apk add bash curl findutils gh git gnutar "${GO_RELEASE}"} make nodejs perl upx xz "yara-x~${YARA_X_RELEASE}" + apk add bash curl findutils gcc gh git gnutar "${GO_RELEASE}"} make nodejs perl upx xz "yara-x~${YARA_X_RELEASE}" - uses: chainguard-dev/actions/setup-gitsign@c69a264ec2a5934c3186c618f368fc1c86f16cff # main - name: Set up Octo-STS uses: octo-sts/action@f603d3be9d8dd9871a265776e625a27b00effe05 # v1.1.1 From 621c97cb8b5dfbcebec48838b960c01b631601e4 Mon Sep 17 00:00:00 2001 From: egibs <20933572+egibs@users.noreply.github.com> Date: Fri, 15 May 2026 17:32:06 -0500 Subject: [PATCH 4/4] add pkgconf Signed-off-by: egibs <20933572+egibs@users.noreply.github.com> --- .github/workflows/fuzz.yaml | 2 +- .github/workflows/go-tests.yaml | 4 ++-- .github/workflows/style.yaml | 2 +- .github/workflows/third-party.yaml | 2 +- 4 files changed, 5 insertions(+), 5 deletions(-) diff --git a/.github/workflows/fuzz.yaml b/.github/workflows/fuzz.yaml index a85e50a68..7534d100d 100644 --- a/.github/workflows/fuzz.yaml +++ b/.github/workflows/fuzz.yaml @@ -126,7 +126,7 @@ jobs: - name: Install dependencies run: | apk update - apk add curl findutils gcc git gnutar "${GO_RELEASE}" make nodejs upx xz "yara-x~${YARA_X_RELEASE}" + apk add curl findutils gcc git gnutar "${GO_RELEASE}" make nodejs pkgconf upx xz "yara-x~${YARA_X_RELEASE}" - name: Checkout code uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 diff --git a/.github/workflows/go-tests.yaml b/.github/workflows/go-tests.yaml index ce88349b3..83a29429e 100644 --- a/.github/workflows/go-tests.yaml +++ b/.github/workflows/go-tests.yaml @@ -42,7 +42,7 @@ jobs: - name: Install dependencies run: | apk update - apk add curl findutils gcc git gnutar "${GO_RELEASE}" make nodejs upx xz "yara-x~${YARA_X_RELEASE}" + apk add curl findutils gcc git gnutar "${GO_RELEASE}" make nodejs pkgconf upx xz "yara-x~${YARA_X_RELEASE}" - name: Checkout code uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 @@ -93,7 +93,7 @@ jobs: - name: Install dependencies run: | apk update - apk add curl findutils gcc git gnutar "${GO_RELEASE}" make nodejs upx xz "yara-x~${YARA_X_RELEASE}" + apk add curl findutils gcc git gnutar "${GO_RELEASE}" make nodejs pkgconf upx xz "yara-x~${YARA_X_RELEASE}" - name: Checkout code uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 diff --git a/.github/workflows/style.yaml b/.github/workflows/style.yaml index be32f13ca..f7d57b5ff 100644 --- a/.github/workflows/style.yaml +++ b/.github/workflows/style.yaml @@ -189,7 +189,7 @@ jobs: - name: Install dependencies run: | apk update - apk add curl findutils gcc git "${GO_RELEASE}" make nodejs "yara-x~${YARA_X_RELEASE}" + apk add curl findutils gcc git "${GO_RELEASE}" make nodejs pkgconf "yara-x~${YARA_X_RELEASE}" - name: Checkout code uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 diff --git a/.github/workflows/third-party.yaml b/.github/workflows/third-party.yaml index 5d2ea0973..5a8c33b45 100644 --- a/.github/workflows/third-party.yaml +++ b/.github/workflows/third-party.yaml @@ -41,7 +41,7 @@ jobs: - name: Install dependencies run: | apk update - apk add bash curl findutils gcc gh git gnutar "${GO_RELEASE}"} make nodejs perl upx xz "yara-x~${YARA_X_RELEASE}" + apk add bash curl findutils gcc gh git gnutar "${GO_RELEASE}"} make nodejs perl pkgconf upx xz "yara-x~${YARA_X_RELEASE}" - uses: chainguard-dev/actions/setup-gitsign@c69a264ec2a5934c3186c618f368fc1c86f16cff # main - name: Set up Octo-STS uses: octo-sts/action@f603d3be9d8dd9871a265776e625a27b00effe05 # v1.1.1