Skip to content

chore: remove eqwalizer_support for Hex compatibility#20

Merged
Taure merged 2 commits into
mainfrom
chore/remove-eqwalizer-support
Mar 26, 2026
Merged

chore: remove eqwalizer_support for Hex compatibility#20
Taure merged 2 commits into
mainfrom
chore/remove-eqwalizer-support

Conversation

@Taure
Copy link
Copy Markdown
Owner

@Taure Taure commented Mar 26, 2026

Summary

  • Remove eqwalizer_support git_subdir dependency (Hex doesn't allow git deps)
  • Unwrap all eqwalizer:fix_me() calls to bare expressions
  • Remove all -eqwalizer({nowarn_function, ...}) test attributes
  • Fix ELP lint warnings (redundant wrappers, map syntax)

Test plan

  • rebar3 compile — clean
  • rebar3 xref — clean
  • rebar3 dialyzer — clean
  • elp lint — no diagnostics
  • rebar3 fmt --check — clean

Taure added 2 commits March 26, 2026 23:28
@Taure
chore: remove eqwalizer_support dependency for Hex compatibility
c3d8e0a 
eqwalizer_support is a git_subdir dep which Hex doesn't allow.
Unwrap all eqwalizer:fix_me() calls and remove -eqwalizer nowarn attrs.
@Taure
fix: resolve ELP lint warnings
6277caa 
Use fun refs instead of redundant wrappers, map syntax instead of maps:put.
@Taure Taure merged commit 653ecc5 into main Mar 26, 2026
2 checks passed
@github-actions
Copy link
Copy Markdown

github-actions Bot commented Mar 26, 2026

🟠 Code Coverage — 52.8%

634 of 1201 lines covered.

✅ ELP Lint

No diagnostics.

🔴 ELP eqWAlize — 179 errors

179 diagnostics found. See job logs for details.

ℹ️ 11 OTP CVEs auto-ignored (already fixed in running version)

These CVEs are patched in the installed OTP version but NVD data
has not been updated to reflect this. They are excluded from the
scan via an auto-generated .trivyignore.

CVE Details
CVE-2026-23943 Fixed in 28.4.1, running 28.4.1 — Pre-auth SSH DoS via unbounded zlib inflate
CVE-2026-23942 Fixed in 28.4.1, running 28.4.1 — SFTP root escape via component-agnostic prefix check in ssh_sftpd
CVE-2026-23941 Fixed in 28.4.1, running 28.4.1 — Request smuggling via first-wins Content-Length parsing in inets httpd
CVE-2026-21620 Fixed in 28.3.2, running 28.4.1 — TFTP Path Traversal
CVE-2016-1000107 Fixed in 28.0.4, running 28.4.1 — Httpd CGI Scripts Environment Variable Pollution AKA "httpoxy"
CVE-2025-58050 Fixed in 28.0.3, running 28.4.1 — Buffer Read Overflow on Regular Expressions with (*scs:) and (*ACCEPT)
CVE-2025-48038 Fixed in 28.0.3, running 28.4.1 — SSH Unverified File Handles can Cause Excessive Use of System Resources
CVE-2025-48039 Fixed in 28.0.3, running 28.4.1 — SSH Unverified Paths can Cause Excessive Use of System Resources
CVE-2025-48040 Fixed in 28.0.3, running 28.4.1 — SSH Malicious Key Exchange Messages may Lead to Excessive Resource Consumption
CVE-2025-48041 Fixed in 28.0.3, running 28.4.1 — SSH_FXP_OPENDIR may Lead to Exhaustion of File Handles
CVE-2025-4748 Fixed in 28.0.1, running 28.4.1 — Absolute Path in Zip Module

Taure added a commit that referenced this pull request Mar 26, 2026
@Taure
chore: disable eqWAlize CI check
a127670 
eqwalizer_support was removed in #20 for Hex compatibility.
Without it, eqWAlize reports expected type errors.
@Taure Taure mentioned this pull request Mar 26, 2026
Merged
1 task
Taure added a commit that referenced this pull request Mar 26, 2026
@Taure
chore: disable eqWAlize CI check (#21)
cc83cf7 
eqwalizer_support was removed in #20 for Hex compatibility.
Without it, eqWAlize reports expected type errors.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@Taure