Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[fix|sde-backend] : Postgres vulnerability CVE-2024-1597 fix #100

Merged
merged 6 commits into from
Feb 23, 2024
Merged

[fix|sde-backend] : Postgres vulnerability CVE-2024-1597 fix #100

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
6 commits
Select commit Hold shift + click to select a range
8580413
open api doc update
sachinargade123 Feb 21, 2024
a439c6a
Merge pull request #277 from catenax-ng/main
sachinargade123 Feb 21, 2024
27337e9
open-api.yaml fixed for kics
adityagajbhiye9 Feb 21, 2024
6b3c411
Postgres vulnerability CVE-2024-1597 fix
sachinargade123 Feb 21, 2024
b8e81f3
Update change log
sachinargade123 Feb 21, 2024
b342278
Update maxItems number for api specs
sachinargade123 Feb 21, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Jump to
Jump to file
Failed to load files.
Diff view
Diff view
5 changes: 5 additions & 0 deletions CHANGELOG.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2,6 +2,11 @@
All notable changes to this project will be documented in this file.
The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),

## [Unreleased]
### Fixed
- open api fix in sde-open-api.yml.
- Fixed Postgres vulnerability CVE-2024-1597.

## [2.3.5] - 2024-02-20

### Added
Expand Down
2 changes: 1 addition & 1 deletion DEPENDENCIES
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -101,7 +101,7 @@ maven/mavencentral/org.mockito/mockito-junit-jupiter/4.8.1, MIT, approved, clear
maven/mavencentral/org.objenesis/objenesis/3.2, Apache-2.0, approved, clearlydefined
maven/mavencentral/org.opentest4j/opentest4j/1.2.0, Apache-2.0, approved, clearlydefined
maven/mavencentral/org.ow2.asm/asm/9.3, BSD-3-Clause, approved, clearlydefined
maven/mavencentral/org.postgresql/postgresql/42.6.0, BSD-2-Clause AND Apache-2.0, approved, #9159
maven/mavencentral/org.postgresql/postgresql/42.7.2, BSD-2-Clause AND Apache-2.0, approved, #11681
maven/mavencentral/org.projectlombok/lombok/1.18.30, MIT AND LicenseRef-Public-Domain, approved, CQ23907
maven/mavencentral/org.skyscreamer/jsonassert/1.5.1, Apache-2.0, approved, clearlydefined
maven/mavencentral/org.slf4j/jul-to-slf4j/2.0.9, MIT, approved, #7698
Expand Down
1 change: 1 addition & 0 deletions modules/sde-core/pom.xml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -76,6 +76,7 @@
<dependency>
<groupId>org.postgresql</groupId>
<artifactId>postgresql</artifactId>
<version>42.7.2</version>
</dependency>
<dependency>
<groupId>org.springdoc</groupId>
Expand Down
33 changes: 33 additions & 0 deletions modules/sde-core/src/main/resources/sde-open-api.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -173,6 +173,7 @@ paths:
'*/*':
schema:
type: array
maxItems: 100
items:
type: string
post:
Expand All @@ -190,6 +191,7 @@ paths:
application/json:
schema:
type: array
maxItems: 100
items:
type: string
required: true
Expand Down Expand Up @@ -318,6 +320,7 @@ paths:
application/json:
schema:
type: array
maxItems: 100
items:
type: string
required: true
Expand All @@ -328,6 +331,7 @@ paths:
'*/*':
schema:
type: array
maxItems: 100
items:
$ref: '#/components/schemas/ConnectorInfo'
/{submodel}/public/{uuid}:
Expand Down Expand Up @@ -416,6 +420,7 @@ paths:
'*/*':
schema:
type: array
maxItems: 100
items:
type: string
/usecases:
Expand All @@ -430,6 +435,7 @@ paths:
'*/*':
schema:
type: array
maxItems: 100
items:
type: object
additionalProperties:
Expand Down Expand Up @@ -463,6 +469,7 @@ paths:
required: false
schema:
type: array
maxItems: 100
items:
type: string
responses:
Expand All @@ -472,6 +479,7 @@ paths:
'*/*':
schema:
type: array
maxItems: 100
items:
type: object
additionalProperties:
Expand Down Expand Up @@ -507,6 +515,7 @@ paths:
required: false
schema:
type: array
maxItems: 100
items:
type: string
responses:
Expand All @@ -516,6 +525,7 @@ paths:
'*/*':
schema:
type: array
maxItems: 100
items:
type: object
additionalProperties:
Expand Down Expand Up @@ -608,8 +618,10 @@ paths:
application/json:
schema:
type: array
maxItems: 100
items:
type: array
maxItems: 100
items:
type: string
/processing-report/{id}:
Expand Down Expand Up @@ -648,6 +660,7 @@ paths:
application/json:
schema:
type: array
maxItems: 100
items:
$ref: '#/components/schemas/ProcessFailureDetails'
/policy-hub/policy-types:
Expand All @@ -673,6 +686,7 @@ paths:
'*/*':
schema:
type: array
maxItems: 100
items:
$ref: '#/components/schemas/PolicyTypeResponse'
/policy-hub/policy-attributes:
Expand All @@ -687,6 +701,7 @@ paths:
'*/*':
schema:
type: array
maxItems: 100
items:
type: string
/ping:
Expand Down Expand Up @@ -731,6 +746,7 @@ paths:
'*/*':
schema:
type: array
maxItems: 100
items:
$ref: '#/components/schemas/LegalEntityResponse'
/getEDCPolicy:
Expand All @@ -744,6 +760,7 @@ paths:
required: true
schema:
type: array
maxItems: 100
items:
$ref: '#/components/schemas/QueryDataOfferRequest'
responses:
Expand Down Expand Up @@ -913,6 +930,7 @@ components:
type: string
value:
type: array
maxItems: 100
items:
type: string
SubmodelJsonRequest:
Expand All @@ -935,14 +953,17 @@ components:
type: string
access_policies:
type: array
maxItems: 100
items:
$ref: '#/components/schemas/Policies'
usage_policies:
type: array
maxItems: 100
items:
$ref: '#/components/schemas/Policies'
row_data:
type: array
maxItems: 100
items:
type: object
ConsumerRequest:
Expand All @@ -953,12 +974,14 @@ components:
properties:
offers:
type: array
maxItems: 100
items:
$ref: '#/components/schemas/Offer'
downloadDataAs:
type: string
usage_policies:
type: array
maxItems: 100
items:
$ref: '#/components/schemas/Policies'
Offer:
Expand Down Expand Up @@ -1024,6 +1047,7 @@ components:
- OR
constraints:
type: array
maxItems: 100
items:
$ref: '#/components/schemas/Constraint'
JsonNode:
Expand All @@ -1035,6 +1059,7 @@ components:
type: string
connectorEndpoint:
type: array
maxItems: 100
items:
type: string
UnifiedBpnValidationResponse:
Expand Down Expand Up @@ -1081,10 +1106,12 @@ components:
type: string
accessPolicies:
type: array
maxItems: 100
items:
$ref: '#/components/schemas/Policies'
usagePolicies:
type: array
maxItems: 100
items:
$ref: '#/components/schemas/Policies'
numberOfUpdatedItems:
Expand All @@ -1109,6 +1136,7 @@ components:
format: int64
items:
type: array
maxItems: 100
items:
$ref: '#/components/schemas/ProcessReport'
ProcessFailureDetails:
Expand Down Expand Up @@ -1137,16 +1165,19 @@ components:
type: string
type:
type: array
maxItems: 100
items:
type: string
description:
type: string
useCase:
type: array
maxItems: 100
items:
type: string
attribute:
type: array
maxItems: 100
items:
$ref: '#/components/schemas/PolicyAttributeResponse'
technicalEnforced:
Expand All @@ -1170,10 +1201,12 @@ components:
type: string
access_policies:
type: array
maxItems: 100
items:
$ref: '#/components/schemas/Policies'
usage_policies:
type: array
maxItems: 100
items:
$ref: '#/components/schemas/Policies'
QueryDataOfferRequest:
Expand Down