You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
The new generic extractor uses gunzip() directly on the input stream. The original implementations in docker-archive/layer.ts and kaniko-archive/layer.ts used gunzip-maybe(). By switching to gunzip(), the code will now fail with a 'Z_DATA_ERROR' or 'header check' error if the provided archive is an uncompressed tarball, which is a common scenario for local development or certain CI exports.
The createGetImageIdFromManifest function catches all errors during ID extraction and throws a generic 'Failed to extract image ID' error. If config.extractImageId (which uses .split('.')[0]) is called on a null or undefined manifest.Config, the resulting TypeError is swallowed and replaced. While not a crash, it obscures the root cause (malformed manifest) during debugging.
}catch(err){thrownewError("Failed to extract image ID from archive manifest");}
📚 Repository Context Analyzed
This review considered 28 relevant code sections from 14 files (average relevance: 0.91)
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
ividalATSnyk
changed the title
What does this PR do?
Where should the reviewer start?
You can take a look at the generic extractor here.
How should this be manually tested?
You can test by running a scan via cli for a Kaniko or Docker Archive.
What are the relevant tickets?
Questions?
There may be a better method for testing manually, open to ideas!