chore: fix dependabot alerts (#4048)

* chore: fix dependabot alerts

Signed-off-by: Ramkumar Chinchani <rchincha.dev@gmail.com>

* chore: fix dependabot alerts

Signed-off-by: Ramkumar Chinchani <rchincha.dev@gmail.com>

* chore: fix dependabot alerts

Signed-off-by: Ramkumar Chinchani <rchincha.dev@gmail.com>

* chore: fix golangci-lint findings from CI

Signed-off-by: Ramkumar Chinchani <rchincha.dev@gmail.com>

* chore: fix golangci-lint gosec warnings

Signed-off-by: Ramkumar Chinchani <rchincha.dev@gmail.com>

* chore: update code to use slices package and address gosec linting issues

Signed-off-by: Ramkumar Chinchani <rchincha.dev@gmail.com>

* build: fix makefile target

Signed-off-by: Ramkumar Chinchani <rchincha.dev@gmail.com>

* chore: update tests to use context in HTTP requests and add gosec annotations

Signed-off-by: Ramkumar Chinchani <rchincha.dev@gmail.com>

* chore: update tests to use context in HTTP requests

Signed-off-by: Ramkumar Chinchani <rchincha.dev@gmail.com>

* chore: update tests to use context in HTTP requests

Signed-off-by: Ramkumar Chinchani <rchincha.dev@gmail.com>

* chore: update tests to use context in HTTP requests

Signed-off-by: Ramkumar Chinchani <rchincha.dev@gmail.com>

* chore: update tests to use context in HTTP requests

Signed-off-by: Ramkumar Chinchani <rchincha.dev@gmail.com>

* chore: bump zui version

Signed-off-by: Ramkumar Chinchani <rchincha.dev@gmail.com>

* chore: update test helpers and improve security settings in tests

Signed-off-by: Ramkumar Chinchani <rchincha.dev@gmail.com>

* chore: add gosec linting directive for test path construction

Signed-off-by: Ramkumar Chinchani <rchincha.dev@gmail.com>

---------

Signed-off-by: Ramkumar Chinchani <rchincha.dev@gmail.com>

pkg/cli/client/client_test.go

@@ -110,10 +110,12 @@ func TestTLSWithAuth(t *testing.T) {
 			// Client certs are resolved under $HOME; isolate from the real home directory.
 			home := os.Getenv("HOME")
 			destCertsDir := filepath.Join(home, certsDir1)
+			//nolint:gosec // test path is tempdir-scoped via HOME override
 			err := os.MkdirAll(destCertsDir, 0o755)
 			So(err, ShouldBeNil)
 
 			// Write CA certificate to client certs directory (needed for server verification)
+			//nolint:gosec // test path is tempdir-scoped via HOME override
 			err = os.WriteFile(filepath.Join(destCertsDir, "ca.crt"), caCertPEM, 0o600)
 			So(err, ShouldBeNil)
 
@@ -150,10 +152,12 @@ func TestTLSWithAuth(t *testing.T) {
 			// Ensure certificates are in the HOME directory that makeConfigFile set
 			home = os.Getenv("HOME")
 			destCertsDir = filepath.Join(home, certsDir1)
+			//nolint:gosec // test path is tempdir-scoped via HOME override
 			err = os.MkdirAll(destCertsDir, 0o755)
 			So(err, ShouldBeNil)
 
 			// Write CA certificate to client certs directory (needed for server verification)
+			//nolint:gosec // test path is tempdir-scoped via HOME override
 			err = os.WriteFile(filepath.Join(destCertsDir, "ca.crt"), caCertPEM, 0o600)
 			So(err, ShouldBeNil)
 
@@ -257,10 +261,12 @@ func TestTLSWithoutAuth(t *testing.T) {
 			home := os.Getenv("HOME")
 			destCertsDir := filepath.Join(home, certsDir1)
 
+			//nolint:gosec // test path is tempdir-scoped via HOME override
 			err := os.MkdirAll(destCertsDir, 0o755)
 			So(err, ShouldBeNil)
 
 			// Write CA certificate to client certs directory (needed for server verification)
+			//nolint:gosec // test path is tempdir-scoped via HOME override
 			err = os.WriteFile(filepath.Join(destCertsDir, "ca.crt"), caCertPEM, 0o600)
 			So(err, ShouldBeNil)
 

pkg/cli/client/service.go

@@ -8,6 +8,7 @@ import (
 	"fmt"
 	"io"
 	"net/url"
+	"slices"
 	"strconv"
 	"strings"
 	"sync"
@@ -1411,7 +1412,7 @@ func (service *searchService) getRepos(ctx context.Context, config SearchConfig,
 	} else {
 		// Iterate in reverse order
 		repos := catalog.Repositories
-		for i := len(repos) - 1; i >= 0; i-- {
+		for i := range slices.Backward(repos) {
 			fmt.Fprintln(config.ResultWriter, repos[i])
 		}
 	}