add delete evidence by subject endpoint call #1158

mnsboev · 2025-08-10T12:08:47Z

All tests passed. If this feature is not already covered by the tests, I added new tests.
All static analysis checks passed.
This pull request is on the dev branch.
I used gofmt for formatting the code before submitting the pull request.

Description:
This PR is the part of the two PRs which introduce a new command for the jf evd CLI tool that allows users to delete evidence based on specific criteria. The new delete command resolves the subject and facilitates the deletion of evidence using its name.

jfrog-cli-artifactory PR: jfrog/jfrog-cli-artifactory#123

The command uses the same subject definition as create and verify commands.
The output of help command:

Name:
  jf evd delete-evidence -  Delete evidence associated with a specified subject by evidence name. 

Usage:
  jf evd delete-evidence [command options] --evidence-name=<value>
  
Options:
  --access-token              [Optional] JFrog access token.
  --build-name                [Optional] Build name.
  --build-number              [Optional] Build number.
  --evidence-name             [Mandatory] Evidence file name.
  --package-name              [Optional] Package name.
  --package-repo-name         [Optional] Package repository Name.
  --package-version           [Optional] Package version.
  --project                   [Optional] Project key associated with the created evidence.
  --release-bundle            [Optional] Release Bundle name.
  --release-bundle-version    [Optional] Release Bundle version.
  --server-id                 [Optional] Server ID configured using the config command.
  --subject-repo-path         [Optional] Full path to some subject location.
  --url                       [Optional] JFrog Platform URL.
  --user                      [Optional] JFrog username

Example of call:
jf evd delete --release-bundle mishas_bundle --release-bundle-version 45 --evidence-name release-bundle-signature-1753360796034-204c2ab4.json

# Conflicts: # .github/workflows/analysis.yml # go.mod # go.sum # utils/utils.go # xray/services/scan.go # xray/services/scan_test.go

# Conflicts: # utils/utils.go

* Auto approve/merge dependabot PRs * Mark all issues as staled

)

Bumps the go group with 5 updates: | Package | From | To | | --- | --- | --- | | [github.com/ProtonMail/go-crypto](https://github.com/ProtonMail/go-crypto) | `1.1.6` | `1.3.0` | | [github.com/forPelevin/gomoji](https://github.com/forPelevin/gomoji) | `1.3.0` | `1.3.1` | | [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) | `5.14.0` | `5.16.2` | | [github.com/stretchr/testify](https://github.com/stretchr/testify) | `1.10.0` | `1.11.1` | | [golang.org/x/crypto](https://github.com/golang/crypto) | `0.36.0` | `0.37.0` | Updates `github.com/ProtonMail/go-crypto` from 1.1.6 to 1.3.0 - [Release notes](https://github.com/ProtonMail/go-crypto/releases) - [Commits](ProtonMail/go-crypto@v1.1.6...v1.3.0) Updates `github.com/forPelevin/gomoji` from 1.3.0 to 1.3.1 - [Release notes](https://github.com/forPelevin/gomoji/releases) - [Commits](forPelevin/gomoji@v1.3.0...v1.3.1) Updates `github.com/go-git/go-git/v5` from 5.14.0 to 5.16.2 - [Release notes](https://github.com/go-git/go-git/releases) - [Commits](go-git/go-git@v5.14.0...v5.16.2) Updates `github.com/stretchr/testify` from 1.10.0 to 1.11.1 - [Release notes](https://github.com/stretchr/testify/releases) - [Commits](stretchr/testify@v1.10.0...v1.11.1) Updates `golang.org/x/crypto` from 0.36.0 to 0.37.0 - [Commits](golang/crypto@v0.36.0...v0.37.0) --- updated-dependencies: - dependency-name: github.com/ProtonMail/go-crypto dependency-version: 1.3.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go - dependency-name: github.com/forPelevin/gomoji dependency-version: 1.3.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: go - dependency-name: github.com/go-git/go-git/v5 dependency-version: 5.16.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go - dependency-name: github.com/stretchr/testify dependency-version: 1.11.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go - dependency-name: golang.org/x/crypto dependency-version: 0.37.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

…#1231) Bumps the go group with 1 update: [golang.org/x/crypto](https://github.com/golang/crypto). Updates `golang.org/x/crypto` from 0.37.0 to 0.42.0 - [Commits](golang/crypto@v0.37.0...v0.42.0) --- updated-dependencies: - dependency-name: golang.org/x/crypto dependency-version: 0.42.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Add support for apptrust manager and getApplicationDetail API * Add Get Application Promotion API * Add ApptrustServiceManagerInterface for mockable testing

) * RTDEV-63005 - Support generate key-pair using jfrog cli evd. * RTDEV-63005 - Support generate key-pair using jfrog cli evd. * RTDEV-63005 - Support generate key-pair using jfrog cli evd. * RTDEV-63005 - Support generate key-pair using jfrog cli evd. * RTDEV-63005 - Support generate key-pair using jfrog cli evd. * RTDEV-63005 - Support generate key-pair using jfrog cli evd.

Bumps the go group with 1 update: [github.com/CycloneDX/cyclonedx-go](https://github.com/CycloneDX/cyclonedx-go). Updates `github.com/CycloneDX/cyclonedx-go` from 0.9.2 to 0.9.3 - [Release notes](https://github.com/CycloneDX/cyclonedx-go/releases) - [Changelog](https://github.com/CycloneDX/cyclonedx-go/blob/master/.goreleaser.yml) - [Commits](CycloneDX/cyclonedx-go@v0.9.2...v0.9.3) --- updated-dependencies: - dependency-name: github.com/CycloneDX/cyclonedx-go dependency-version: 0.9.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: go ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

Bumps the go group with 3 updates: [github.com/forPelevin/gomoji](https://github.com/forPelevin/gomoji), [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) and [github.com/jfrog/build-info-go](https://github.com/jfrog/build-info-go). Updates `github.com/forPelevin/gomoji` from 1.3.1 to 1.4.0 - [Release notes](https://github.com/forPelevin/gomoji/releases) - [Commits](forPelevin/gomoji@v1.3.1...v1.4.0) Updates `github.com/go-git/go-git/v5` from 5.16.2 to 5.16.3 - [Release notes](https://github.com/go-git/go-git/releases) - [Commits](go-git/go-git@v5.16.2...v5.16.3) Updates `github.com/jfrog/build-info-go` from 1.11.0 to 1.12.0 - [Release notes](https://github.com/jfrog/build-info-go/releases) - [Changelog](https://github.com/jfrog/build-info-go/blob/main/RELEASE.md) - [Commits](jfrog/build-info-go@v1.11.0...v1.12.0) --- updated-dependencies: - dependency-name: github.com/forPelevin/gomoji dependency-version: 1.4.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go - dependency-name: github.com/go-git/go-git/v5 dependency-version: 5.16.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: go - dependency-name: github.com/jfrog/build-info-go dependency-version: 1.12.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

Added API related to JF stats command

* Addressed comments

* JGC-408 - Re-enable TestXrayWatch * Format code

Updating Display field value

) Bumps the go group with 1 update: [golang.org/x/term](https://github.com/golang/term). Updates `golang.org/x/term` from 0.35.0 to 0.36.0 - [Commits](golang/term@v0.35.0...v0.36.0) --- updated-dependencies: - dependency-name: golang.org/x/term dependency-version: 0.36.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

…#1244) Bumps the go group with 1 update: [golang.org/x/crypto](https://github.com/golang/crypto). Updates `golang.org/x/crypto` from 0.42.0 to 0.43.0 - [Commits](golang/crypto@v0.42.0...v0.43.0) --- updated-dependencies: - dependency-name: golang.org/x/crypto dependency-version: 0.43.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Added rbsearch command skelton

Added logic for group and versions API

github-actions · 2025-10-15T07:09:29Z

Thank you for your submission, we really appreciate it. Like many open-source projects, we ask that you all sign our Contributor License Agreement before we can accept your contribution. You can sign the CLA by just posting a Pull Request Comment same as the below format.

I have read the CLA Document and I hereby sign the CLA

13 out of 14 committers have signed the CLA.
✅ (omerzi)[https://github.com/omerzi]
✅ (eyalbe4)[https://github.com/eyalbe4]
✅ (sverdlov93)[https://github.com/sverdlov93]
✅ (talarian1)[https://github.com/talarian1]
✅ (yahavi)[https://github.com/yahavi]
✅ (RobiNino)[https://github.com/RobiNino]
✅ (attiasas)[https://github.com/attiasas]
✅ (EyalDelarea)[https://github.com/EyalDelarea]
✅ (eranturgeman)[https://github.com/eranturgeman]
✅ (eyalb4doc)[https://github.com/eyalb4doc]
✅ (bhanurp)[https://github.com/bhanurp]
✅ (ehl-jf)[https://github.com/ehl-jf]
✅ (BlasttS)[https://github.com/BlasttS]
❌ @remib
remib seems not to be a GitHub user. You need a GitHub account to be able to sign the CLA. If you have already a GitHub account, please add the email address used for this commit to your account.
_{You can retrigger this bot by commenting recheck in this Pull Request.}_{Posted by the CLA Assistant Lite bot.}

omerzi and others added 30 commits April 5, 2023 09:49

Promote version to 1.28.1 (jfrog#733)

a664ea4

Added the Frogbot badge to the README (jfrog#740)

0b22cb3

Merge remote-tracking branch 'upstream/dev' into masterupstream

93d1ee0

# Conflicts: # .github/workflows/analysis.yml # go.mod # go.sum # utils/utils.go # xray/services/scan.go # xray/services/scan_test.go

Merge remote-tracking branch 'origin/dev'

60012f0

Merge branch 'dev'

72340a7

Merge remote-tracking branch 'origin/dev'

3c0e410

Merge remote-tracking branch 'origin/dev'

7dd161b

Merge remote-tracking branch 'origin/dev'

88f4c5c

Merge branch 'master' into dev

21b99ad

Promoted version to 1.29.1

b71c280

Merge branch 'dev'

8f7755c

Merge branch 'dev'

e6ba583

Merge branch 'dev'

b624428

Merge branch 'master' into dev

da0c018

Promoted version to 1.31.1

f750025

Merge remote-tracking branch 'origin/dev'

e1d57bd

# Conflicts: # utils/utils.go

Merge branch 'dev'

886ff5f

Promoted version to 1.31.3

b1ae836

Merge branch 'dev'

df38e23

Merge branch 'dev'

46b7fb9

Resolve conflicts

5f58723

Merge branch 'dev'

080ef1a

Merge branch 'dev'

7c244c5

Merge branch 'master' into dev

6d1c9e7

Merge remote-tracking branch 'origin/dev'

b3d917f

Merge remote-tracking branch 'upstream/dev'

3be412b

Merge branch 'dev'

fa697b5

Merge remote-tracking branch 'origin/dev'

7b2943f

Merge remote-tracking branch 'jfrog-prod/dev'

15552e7

Merge remote-tracking branch 'origin/dev'

9684938

ehl-jf and others added 26 commits September 19, 2025 09:07

Fine tune tests trigger (jfrog#1219)

13f152d

Fine tune tests trigger (jfrog#1220)

60102fd

Fine tune tests trigger (jfrog#1221)

136d1ec

Fine tune tests trigger (jfrog#1222)

e94b09f

Use main branches for jfrog dependencies (jfrog#1223)

6c1a3b3

Auto approve/merge dependabot PRs (jfrog#1224)

e64346e

* Auto approve/merge dependabot PRs * Mark all issues as staled

Update jfrog dependencies to master branch on dependabot PRs (jfrog#1226

0c3c0a2

)

Add JFrog dependencies update workflow (jfrog#1227)

ce357c1

Fix dependencies update workflow (jfrog#1228)

382ba09

Fix dependabot auto merge workflow (jfrog#1229)

f088d5b

Add support for apptrust manager (jfrog#1197)

6393859

* Add support for apptrust manager and getApplicationDetail API * Add Get Application Promotion API * Add ApptrustServiceManagerInterface for mockable testing

Align VCS params (jfrog#1232)

756731f

Added API related to JF stats command (jfrog#1189)

0189b74

Added API related to JF stats command

Addressed comments (jfrog#1239)

3a3f6f5

* Addressed comments

JGC-408 - Re-enable TestXrayWatch (jfrog#1237)

26fa4eb

* JGC-408 - Re-enable TestXrayWatch * Format code

Feature/rteco 381 fetch statistics (jfrog#1240)

4ca43b3

Updating Display field value

Added rbsearch command skelton (jfrog#1245)

19199bb

* Added rbsearch command skelton

Feature/rteco 456 implement groups api amnd versions ap is (jfrog#1246)

ef0fe83

Added logic for group and versions API

add delete evidence by subject endpoint call

cce824d

mnsboev force-pushed the delete-evidence-command branch from 0227b5a to cce824d Compare October 15, 2025 07:09

mnsboev had a problem deploying to frogbot October 15, 2025 07:09 — with GitHub Actions Failure

mnsboev closed this Oct 15, 2025

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

add delete evidence by subject endpoint call #1158

add delete evidence by subject endpoint call #1158

Uh oh!

mnsboev commented Aug 10, 2025 •

edited

Loading

Uh oh!

github-actions bot commented Oct 15, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

18 participants

add delete evidence by subject endpoint call #1158

add delete evidence by subject endpoint call #1158

Uh oh!

Conversation

mnsboev commented Aug 10, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

github-actions bot commented Oct 15, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

18 participants

mnsboev commented Aug 10, 2025 •

edited

Loading