Reimplementation of Orchestration, Scheduling, and Credential Management in Golang#567

Draft

yasithdev wants to merge 1 commit into

masterfrom

airavata-scheduler-golang

GitHub Advanced Security / CodeQL failed Oct 29, 2025 in 2s

15 new alerts including 1 critical severity security vulnerability

New alerts in code changed by this pull request

Security Alerts:

1 critical
14 high

Alerts not introduced by this pull request might have been detected because the code changes were too large.

See annotations below for details.

View all branch alerts.

Annotations

Check failure on line 749 in scheduler/adapters/compute_baremetal.go

Code scanning / CodeQL

Use of insecure HostKeyCallback implementation High

Configuring SSH ClientConfig with insecure HostKeyCallback implementation from

Check failure on line 864 in scheduler/adapters/compute_baremetal.go

Code scanning / CodeQL

Uncontrolled data used in path expression High

This path depends on a

Check failure on line 869 in scheduler/adapters/compute_baremetal.go

Code scanning / CodeQL

Command built from user-controlled sources Critical

This command depends on a

Check failure on line 871 in scheduler/adapters/compute_baremetal.go

Code scanning / CodeQL

Uncontrolled data used in path expression High

This path depends on a

Check failure on line 880 in scheduler/adapters/compute_baremetal.go

Code scanning / CodeQL

Uncontrolled data used in path expression High

This path depends on a

Check failure on line 921 in scheduler/adapters/compute_kubernetes.go

Code scanning / CodeQL

Uncontrolled data used in path expression High

This path depends on a

Check failure on line 928 in scheduler/adapters/compute_kubernetes.go

Code scanning / CodeQL

Uncontrolled data used in path expression High

This path depends on a

Check failure on line 937 in scheduler/adapters/compute_kubernetes.go

Code scanning / CodeQL

Uncontrolled data used in path expression High

This path depends on a

Check failure on line 311 in scheduler/adapters/compute_slurm.go

Code scanning / CodeQL

Uncontrolled data used in path expression High

This path depends on a

Check failure on line 699 in scheduler/adapters/compute_slurm.go

Code scanning / CodeQL

Use of insecure HostKeyCallback implementation High

Configuring SSH ClientConfig with insecure HostKeyCallback implementation from

Check failure on line 977 in scheduler/adapters/compute_slurm.go

Code scanning / CodeQL

Uncontrolled data used in path expression High

This path depends on a

Check failure on line 984 in scheduler/adapters/compute_slurm.go

Code scanning / CodeQL

Uncontrolled data used in path expression High

This path depends on a

Check failure on line 993 in scheduler/adapters/compute_slurm.go

Code scanning / CodeQL

Uncontrolled data used in path expression High

This path depends on a

Check failure on line 100 in scheduler/adapters/storage_sftp.go

Code scanning / CodeQL

Use of insecure HostKeyCallback implementation High

Configuring SSH ClientConfig with insecure HostKeyCallback implementation from

Check failure on line 654 in scheduler/cmd/cli/data.go

Code scanning / CodeQL

Arbitrary file access during archive extraction ("Zip Slip") High

Unsanitized archive entry, which may contain '..', is used in a

.
Unsanitized archive entry, which may contain '..', is used in a

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Reimplementation of Orchestration, Scheduling, and Credential Management in Golang#567