cli icon indicating copy to clipboard operation
cli copied to clipboard
verified publisher icon dependabot

golang scans fail with x509 TLS errors

Open sblatnick opened this issue 1 year ago • 1 comments

Every time we scan a Go repo using dependabot/cli, we get many failures with:

proxy | 2024/08/06 17:45:57 [374] GET [https://golang.org:443/x/tools?go-get=1](https://golang.org/x/tools?go-get=1)
  proxy | 2024/08/06 17:45:57 [118] WARN: Cannot read TLS response from mitm'd server tls: failed to verify certificate: x509: certificate signed by unknown authority

This is running in a docker-in-docker image running in our network as part of a Jenkins job. I can't reproduce this issue in the same image locally.

sblatnick avatar Aug 14 '24 20:08 sblatnick

I also face similar issue with in the corporate network, I’m using gradle in our case.

g-sudheer avatar Sep 30 '24 13:09 g-sudheer

Corporate networks sometime require the use of custom certificates. The Dependabot CLI has a --proxy-cert option which takes the path to said cert and copies it into the container which should fix the issue.

jakecoffman avatar May 06 '25 19:05 jakecoffman