| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
Java8 exceptions for MOD/NiFI components (upstream
NiFiproject still on java8)
Python2 exception to remove false positive for dcae-cloudify
dcae-cloudify-manager upstream base image includes both python3
and python2; underlying processes/plugins are run under python3
base (since Honolulu release)
Once DCAE transformation to helm is completed, this container
will be deprecated (target J release)
Change-Id: Iaa8266e949191d5336c3a9cf7a62e0e6c738cf7b
Signed-off-by: vv770d <vv770d@att.com>
Issue-ID: DCAEGEN2-2737
Issue-ID: DCAEGEN2-2736
|
|
for the nonssl_check, there is a light GO processing parsing the
xfail file
the comments at the end of a line are wrongly interprated
and the xfail file is not loaded
so 30277 # comment
is wrong
it shall be
so 30277
we can modify either the processing or the waiver file..
the waiver file change is trivial
Test succesfuly executed on daily
shoudl lead to a full 100% next time on security test on master
(istanbul candidate)
Issue-ID: TEST-360
Signed-off-by: morganrol <morgan.richomme@orange.com>
Change-Id: If67d295d6f1a84e3261468fa80c0c0342e564773
|
|
add waivers for containers
the version test scans the java and python version
the expected versions are the ones indicated in the
ref seccom reco yaml file
waiver may be granted for
- unmaintained components
- upstream components
- filebeat dockers
Issue-ID: TEST-360
Signed-off-by: morganrol <morgan.richomme@orange.com>
Change-Id: Ia3bb82712d2ef01a6eea03c5a499fb2abca7f529
|
|
Add waivers for:
1) root pods
- etcd seen as upstream components
2)limits
- esr unmaintained
Issue-ID: TEST-360
Signed-off-by: morganrol <morgan.richomme@orange.com>
Change-Id: I2e4af19aab66a25f3aa41ae75cf19c4844053ed7
|
|
aaf is still needed but not maintained
it means that the probably to fix the issue is around 0
Add a waiver for security test
Issue-ID: INT-1955
Signed-off-by: morganrol <morgan.richomme@orange.com>
Change-Id: I8db4ccfd5d4898f8cb66a7663467b331f8b131e4
|
|
waiver requested for the so and so-etsi-sol003-adapter pods
There is a work in progress for introducing the ingress controller for the ssl connection in oom/so
Issue-ID: SO-3724
Signed-off-by: seshukm <seshu.kumar.m@huawei.com>
Change-Id: I8e9b557b3a926cb7792c8516dd6ed24d4291d3b1
|
|
ROOT
dcae-cloudify has upstream base image dependency to run as root.
Once DCAE transformation to helm is completed, this container
will be deprecated (target J release)
Java8 exceptions for MOD/NiFI components (upstream NiFiproject still on java8)
Exceptions approved by SECCOM on 06/29/21 meeting
Change-Id: I9de0d51fc526c910ffad202df16e967c716e9ab0
Signed-off-by: Vijay Venkatesh Kumar <vv770d@att.com>
Issue-ID: DCAEGEN2-2736
Issue-ID: DCAEGEN2-2424
|
|
Only upstream waivers are kept for the security tests
Issue-ID: INT-1921
Signed-off-by: morganrol <morgan.richomme@orange.com>
Change-Id: I6982ce4e51591a781e92e8dd9073170640a241b3
|
|
set waiver list for
- unlimited
- root
- nossl
exclude testing and upstream components
Issue-ID: TEST-330
Signed-off-by: morganrol <morgan.richomme@orange.com>
Change-Id: Ie1f2bc73a10f81751910268c73e00e4e271fc153
|
|
Change-Id: I51ccefb6993122014cbc25cb18847de5af355760
Signed-off-by: vv770d <vv770d@att.com>
Issue-ID: DCAEGEN2-2494
Issue-ID: DCAEGEN2-2427
Issue-ID: DCAEGEN2-2428
|
|
Issue-ID: TEST-304
Signed-off-by: mrichomme <morgan.richomme@orange.com>
Change-Id: I0bebe6a5497300e024a71c40e7935d85d9bed9ab
|
|
as usual, new dev cycle, reset all the waivers for the different security tests
Issue-ID: INT-1824
Signed-off-by: mrichomme <morgan.richomme@orange.com>
Change-Id: I60495b0c2cd3cf4dd512073bec3416893833b56c
|
|
Common consul chart has been fixed so there is no reason to keep
consul exception.
Additionally MSB is not using our common consul template which was
assumed in MSB-518 so they should fix that also.
Issue-ID: REQ-362
Signed-off-by: Krzysztof Opasiak <k.opasiak@samsung.com>
Change-Id: Ic23450b58d19c68d1198f641fca3f867c74aa544
|
|
Issue-ID: INT-1716
Signed-off-by: mrichomme <morgan.richomme@orange.com>
Change-Id: I2e9642fe2402ab15f6215be463f2430491798ea2
|
|
Issue-ID: DCAEGEN2-2449
Signed-off-by: mrichomme <morgan.richomme@orange.com>
Change-Id: I9b63def0f8f4a994e989ce82c9159e2274f64c7d
|
|
Issue-ID: DCAEGEN2-2424
Signed-off-by: mrichomme <morgan.richomme@orange.com>
Change-Id: I48610d2278fb44983b073502238c8abee2986ef2
|
|
component is in maintenance for guilin
Issue-ID: MUSIC-609
Signed-off-by: mrichomme <morgan.richomme@orange.com>
Change-Id: I0fbf7465db7d73bec9c9c91a712db9426e71c42f
|
|
All waivers have been successfully migrated to this repository which is
intended as a single source of truth for SECCOM exceptions.
This patch removes disabled (commented out) exceptions to make waiver
lists more readable. All historical data remains intact by being kept in
VCS change history.
Issue-ID: INT-1695
Change-Id: Icec72acfd0eda6c8762525ad27feb626caf3ac48
Signed-off-by: Pawel Wieczorek <p.wieczorek2@samsung.com>
|
|
Issue-ID: AAI-3175
Signed-off-by: mrichomme <morgan.richomme@orange.com>
Change-Id: I042ecca02ecd852666cb7ee692685385dade4011
Signed-off-by: mrichomme <morgan.richomme@orange.com>
|
|
Issue-ID: INT-1722
Signed-off-by: mrichomme <morgan.richomme@orange.com>
Change-Id: I9a0e7611ff5b36f159c0fffcde503099a75356c0
|
|
Issue-ID: INT-1710
Change-Id: I66da1203ecd5baf2ee17196218f88a272a2899b4
Signed-off-by: Pawel Wieczorek <p.wieczorek2@samsung.com>
|
|
The waivers are in different locations, the idea is
to centralize all the waivers in the same place
Issue-ID: INT-1710
Signed-off-by: mrichomme <morgan.richomme@orange.com>
Change-Id: I25ad8ce6f14bb5fd9672139406eb6d3a0720eebb
|
vv770d
morganrol
seshukm
Krzysztof Opasiak
Pawel Wieczorek