Age | Commit message (Collapse) | Author | Files | Lines |
|
Resolves a security issue around information disclosure. The
recommendation is to upgrade to this version for the fix.
Issue-ID: POLICY-1063
Change-Id: Idebb19d2c530b716a25aa91832c053e6b2d0ffce
Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
|
|
|
|
Fixes 2 security issues and brings the common property
value to the root pom.xml for easier management.
Issue-ID: POLICY-1063
Change-Id: I56e3318bdfae2d205c61a5ad7af70a79bd70dada
Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
|
|
To resolve security issue for 4.3.15.RELEASE and also
have a single place where the dependency is defined for
the sub-modules.
NOTE: 4.2.0.RELEASE is left alone in Policy SDK App
due to Portal SDK dependency.
Issue-ID: POLICY-1063
Change-Id: Ibdc464b16b4771faccb2c8c472efa7fbcbf3352c
Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
|
|
Change from oparent to policy/parent which inherit from
the latest oparent. The latest oparent has dependencyManagement
recommendations from the ONAP Security sub committee that
the policy team is adhering as part of the effort to consolidate
security work across projects.
Change-Id: I1a43fc5a04dbc8c4cb2b7bedbca67ad3e9dd120b
Issue-ID: INT-619
Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
|
|
Snapshot updated for Casablanca.
Change-Id: Ieb2c9a990c0f36f31c974038465e7d38aaa21e5d
Issue-ID: POLICY-875
Signed-off-by: liamfallon <liam.fallon@ericsson.com>
|
|
These reviews must be merged in order because of layering.
This review should be merged FOURTH.
Change-Id: Ifca8e33b79085a4032164b44dae3401f8179f5f6
Issue-ID: POLICY-844
Signed-off-by: liamfallon <liam.fallon@ericsson.com>
|
|
These reviews must be merged in order because of layering.
This review should be merged SECOND
Note: In order to get past the following layering problems, there
are temporary chages to the following POMs to temporarily use 1.2.1-SNAPSHOT
for those dependencies. They are
ONAP-PAP-REST/pom.xml
org.onap.policy.drools-applications.controlloop.common.policy-yaml
ONAP-PDP/pom.xml
org.onap.policy.drools-pdp.policy-endpoints
A separate review will be used to restore these dependencies to 1.2.2-SNAPSHOT
once the drools-pdp and drools-applications reviews are submitted and merged
PLD added version.properties
Issue-ID: POLICY-798
Change-Id: Id7e83f2ba12181c63cc8845b7eeccf2004d2bab9
Signed-off-by: liamfallon <liam.fallon@ericsson.com>
Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
Signed-off-by: liamfallon <liam.fallon@ericsson.com>
|
|
Forgot one place for hibernator and need to upgrade netty to
clear CLM issue.
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-2156
Issue-ID: POLICY-722
Change-Id: I741c47110af916c222f92329791217b0c3bc07df
Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
|
|
Upgrade to fix 3 security issues:
https://nvd.nist.gov/vuln/detail/CVE-2018-1270
https://nvd.nist.gov/vuln/detail/CVE-2016-9878
https://nvd.nist.gov/vuln/detail/CVE-2018-1271
Issue-ID: POLICY-722
Change-Id: Icfa5775905ad091dbe55eadfb4414c67abebc13a
Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
|
|
Issue-ID: POLICY-736
Change-Id: If5c959aa1c0a123c7fd9eee281e39e1d646b6b03
Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
|
|
Issue-ID: POLICY-507
Change-Id: I493233f8e0e90eaf24e9c09c7433c6fb9fadb268
Signed-off-by: bobbymander <bobby.mander@att.com>
|
|
Issue-ID: POLICY-600
Change-Id: I870317bbd125c6016818ec435ea7a406123c66c1
Signed-off-by: bobbymander <bobby.mander@att.com>
|
|
Will not clear any CLM issue but this for uses a version that is
using the latest lucene-queryparser. It is noted in the CVE for
lucene-queryparser that elasticsearch is not affected by the
issue. We will upgrade to keep up with the latest code.
Issue-ID: POLICY-507
Change-Id: I8580dbc704c48245faf298304b8aec76c9e773c4
Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
|
|
Move from github version to the onap version.
Issue-ID: POLICY-568
Change-Id: I30f91b07cb690e50e829c14725c1bf05a1f4200b
Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
|
|
This has some cleanup for overriding managed dependencies, a
duplicate entry for mariadb, unnecessary inclusion of older
EELF library, an upgrade of swagger tools to fix a security
issue and lastly an override of a depedency to clear a
security issue.
Issue-ID: POLICY-507
Change-Id: I8767f6edc37551c559010d96d350afdd5961f13d
Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
|
|
All found references to drools-applications module names
changed to new names
Issue-ID: POLICY-238
Change-Id: I3cd453c91194699434a71c1a12d2dcccfa5df234
Signed-off-by: liamfallon <liam.fallon@ericsson.com>
|
|
A bit of consolidation too - which could use a lot more work. These
were simple security upgrades for fixes identified by LF weekly LCM job.
Added some missing license headers.
Issue-ID: POLICY-507
Change-Id: If285b0f95d30a1084c9363bf6a41b48d52fb3aff
Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
|
|
Resolved the issue on updating the configuration files when
rename/clone/export/move actions are done through GUI.
Fixed the PolicyManagerServlet code.
Added test cases for newly added files.
Issue-ID: POLICY-609
Change-Id: I9d14f19fe20bbc0e3b3844f85d81f26e34bb26ec
Signed-off-by: rb7147 <rb7147@att.com>
|
|
|
|
Changed GroupId of dmaapClient deendency to
org.onap.dmaap.messagerouter.mirroragent.
Created a dmaap.version property in root pom and assigned it a value of
1.0.0.
Issue-ID: POLICY-370
Change-Id: I6846f930783a65e4fc0f5afb6b9f832a972477bb
Signed-off-by: Magnusen, Drew (dm741q) <dm741q@att.com>
|
|
Bump minor version in preparation for Amsterdam
branching.
Change-Id: I61e0ae91e3ece54ed09a88dad9b8dac173ccae07
Issue-ID: CIMAN-120
Signed-off-by: Jessica Wagantall <jwagantall@linuxfoundation.org>
|
|
Release 1.1.1, moving patch to 1.1.2
Issue-ID: POLICY-436
Change-Id: Iabde3e56c04c68ca966efde09b5780e6275cb8a8
Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
|
|
Releasing v1.1.0 so need to update to v1.1.1
Issue-ID: POLICY-436
Change-Id: Ic575e75d0321c3de2074f8e23d2d0bbd11f6a229
Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
|
|
Resolved the Blocker issue and removed snapshot version
Issue-ID: POLICY-406
Change-Id: I1ca4b32aca571610a3d50ae8a105fb45803fd002
Signed-off-by: rb7147 <rb7147@att.com>
|
|
changes to mysql connector to mariadb connector along with additional
Junits
Issue-Id: POLICY-219
Change-Id: I26ee1cf733d49d10fccbcd159fe8fc380120efbf
Signed-off-by: Tej, Tarun <tt3868@att.com>
|
|
Removed controlloopPolicy yaml sdk and asdc projects from policy/engine to
eliminate redundancy.
Issue-Id: POLICY-88
Change-Id: I9b87290cc27ba088424ecbb9d359a331527950fb
Signed-off-by: Tej, Tarun <tt3868@att.com>
|
|
Change-Id: I54072f6bcd388c0e05562614ee89b4ae7ad67004
Signed-off-by: Guo Ruijing <ruijing.guo@intel.com>
Signed-off-by: Pamela Dragosh <pdragosh@research.att.com>
|