Thanks to visit codestin.com
Credit goes to github.com

Skip to content

Extract zip archive with multiple entries #4283

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
wagoodman merged 2 commits into from
Oct 15, 2025
Merged

Extract zip archive with multiple entries #4283

wagoodman merged 2 commits into from
Oct 15, 2025

Conversation

@Rupikz
Copy link
Contributor

@Rupikz Rupikz commented Oct 14, 2025
edited by wagoodman
Loading

Description

Overwrite existing files during unpacking zip archive

Type of change

  • Bug fix (non-breaking change which fixes an issue)

Checklist:

  • I have added unit tests that cover changed behavior
  • I have tested my code in common scenarios and confirmed there are no regressions
  • I have added comments to my code, particularly in hard-to-understand sections

@wagoodman wagoodman added the bug Something isn't working label Oct 14, 2025
wagoodman
wagoodman reviewed Oct 14, 2025
View reviewed changes
syft/source/filesource/file_source.go Outdated
// when tar/zip files are extracted, if there are multiple entries at the same
// location, the last entry wins
// NOTE: this currently does not display any messages if an overwrite happens
if tar, tarOk := unarchiver.(*archiver.Tar); tarOk {
Copy link
Contributor

@wagoodman wagoodman Oct 14, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

nit: now that there are two cases this would be better as a type assertion switch case (non-blocking)

Copy link
Contributor Author

@Rupikz Rupikz Oct 15, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Done

@wagoodman wagoodman merged commit 065ac13 into anchore:main Oct 15, 2025
12 checks passed
@BrewTestBot BrewTestBot mentioned this pull request Oct 16, 2025
Merged
spiffcs added a commit that referenced this pull request Oct 22, 2025
@spiffcs
Merge branch 'main' into 4184-gguf-parser
3326ae4 
* main:
  chore(deps): update tools to latest versions (#4302)
  chore(deps): bump github.com/github/go-spdx/v2 from 2.3.3 to 2.3.4 (#4301)
  chore(deps): bump github/codeql-action from 4.30.8 to 4.30.9 (#4299)
  support universal (fat) mach-o binary files (#4278)
  chore(deps): bump sigstore/cosign-installer from 3.10.0 to 4.0.0 (#4296)
  chore(deps): bump anchore/sbom-action from 0.20.7 to 0.20.8 (#4297)
  convert posix path back to windows (#4285)
  Remove duplicate image source providers (#4289)
  chore(deps): bump anchore/sbom-action from 0.20.6 to 0.20.7 (#4293)
  feat: add option to fetch remote licenses for pnpm-lock.yaml files (#4286)
  Add PDM parser (#4234)
  chore(deps): update tools to latest versions (#4291)
  fix: panic during java archive maven resolution (#4290)
  Extract zip archive with multiple entries (#4283)
  chore: update to use old configuration on new cosign (#4287)
  chore(deps): update anchore dependencies (#4282)
  chore(deps): bump github.com/mholt/archives from 0.1.3 to 0.1.5 (#4280)
  add docs to configs (#4281)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@wagoodman wagoodman wagoodman approved these changes

Assignees

No one assigned

Labels

bug Something isn't working

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@Rupikz @wagoodman