Skip to content

fix(template): add to dissallowed functions#4848

Merged
brandtkeller merged 3 commits intomainfrom
template_dissallowed_functions
Apr 24, 2026
Merged

fix(template): add to dissallowed functions#4848
brandtkeller merged 3 commits intomainfrom
template_dissallowed_functions

Conversation

@brandtkeller
Copy link
Copy Markdown
Member

@brandtkeller brandtkeller commented Apr 24, 2026

Description

This PR removes the sprig function getHostByName as it creates additional avenues for unintentional network calls for which Zarf would want to protect against on all operations.

Related Issue

No related issue

Checklist before merging

@brandtkeller
fix(template): add to dissallowed functions
6ad5ba9 
Signed-off-by: Brandt Keller <brandt.keller@defenseunicorns.com>
@brandtkeller
chore(docs): update code docs
96bac4e 
Signed-off-by: Brandt Keller <brandt.keller@defenseunicorns.com>
@brandtkeller brandtkeller self-assigned this Apr 24, 2026
@brandtkeller brandtkeller requested review from a team as code owners April 24, 2026 13:45
@netlify
Copy link
Copy Markdown

netlify Bot commented Apr 24, 2026
edited
Loading

Deploy Preview for zarf-docs canceled.

Name Link
🔨 Latest commit fa9f4f1
🔍 Latest deploy log https://app.netlify.com/projects/zarf-docs/deploys/69eb872da69e4500083e1619

@codecov
Copy link
Copy Markdown

codecov Bot commented Apr 24, 2026
edited
Loading

Codecov Report

✅ All modified and coverable lines are covered by tests.

Files with missing lines Coverage Δ
src/internal/template/template.go 80.79% <100.00%> (+0.21%) ⬆️
🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
  • 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

AustinAbro321
AustinAbro321 previously approved these changes Apr 24, 2026
View reviewed changes
@AustinAbro321
Copy link
Copy Markdown
Member

AustinAbro321 commented Apr 24, 2026

Not sure why test-site is only failing now, but we were using http:// instead of https:// which was causing it to not get filtered by our regex. We should be fine to change it to https://

@brandtkeller brandtkeller enabled auto-merge April 24, 2026 15:05
@brandtkeller
chore(docs): update slack url
fa9f4f1 
Signed-off-by: Brandt Keller <brandt.keller@defenseunicorns.com>
@brandtkeller brandtkeller added this pull request to the merge queue Apr 24, 2026
Merged via the queue into main with commit cedec4d Apr 24, 2026
43 checks passed
@brandtkeller brandtkeller deleted the template_dissallowed_functions branch April 24, 2026 16:03
@github-project-automation github-project-automation Bot moved this to Done in Zarf Apr 24, 2026
@zarf-release-please zarf-release-please Bot mentioned this pull request Apr 22, 2026
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@AustinAbro321 AustinAbro321 AustinAbro321 approved these changes

Assignees

@brandtkeller brandtkeller

Labels

None yet

Projects

Zarf
Status: Done

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@brandtkeller @AustinAbro321