From Fedora Project Wiki

(Add initial documentation)
 
m (Remove `--nowait` option from examples)
Line 11: Line 11:
==== Examples: ====
==== Examples: ====


* <code>mock-build</code> performs a full scan on the package: <code>osh-cli mock-build --config="fedora-39-x86_64" --nvr units-2.22-6.fc39 --nowait</code>
* <code>mock-build</code> performs a full scan on the package: <code>osh-cli mock-build --config="fedora-39-x86_64" --nvr units-2.22-6.fc39</code>


* <code>version-diff-build</code> performs a differential scan between two different version of packages: <code>osh-cli version-diff-build --config=fedora-39-x86_64 --brew-build units-2.22-6.fc39 --base-config=fedora-39-x86_64 --base-brew-build units-2.21-5.fc37 --nowait</code>
* <code>version-diff-build</code> performs a differential scan between two different version of packages: <code>osh-cli version-diff-build --config=fedora-39-x86_64 --brew-build units-2.22-6.fc39 --base-config=fedora-39-x86_64 --base-brew-build units-2.21-5.fc37</code>


* <code>diff-build</code> performs a differntial scan with the downstream patches: <code>osh-cli diff-build --config="fedora-39-x86_64" --nvr units-2.22-6.fc39 --nowait</code>
* <code>diff-build</code> performs a differntial scan with the downstream patches: <code>osh-cli diff-build --config="fedora-39-x86_64" --nvr units-2.22-6.fc39</code>

Revision as of 12:30, 16 April 2024

OpenScanHub

OpenScanHub is a service that runs various static analyzers on RPM packages. OpenScanHub by default uses Cppcheck, ShellCheck, the static analyzers embedded in GCC and Clang, and the find-unicode-control tool. Other tools for static (and dynamic) analysis can be enabled on demand while submitting an OpenScanHub task.

How to use it?

This service can be accessed at https://openscanhub.fedoraproject.org/. The easiest way to run an OpenScanHub scan is to submit a scan through create new scan form.

Alternatively, you can install the command line client by running: dnf install -y osh-client

Examples:

  • mock-build performs a full scan on the package: osh-cli mock-build --config="fedora-39-x86_64" --nvr units-2.22-6.fc39
  • version-diff-build performs a differential scan between two different version of packages: osh-cli version-diff-build --config=fedora-39-x86_64 --brew-build units-2.22-6.fc39 --base-config=fedora-39-x86_64 --base-brew-build units-2.21-5.fc37
  • diff-build performs a differntial scan with the downstream patches: osh-cli diff-build --config="fedora-39-x86_64" --nvr units-2.22-6.fc39
Retrieved from "https://fedoraproject.org/w/index.php?title=OpenScanHub&oldid=707466"