-
Notifications
You must be signed in to change notification settings - Fork 4.6k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Export CVE data is inaccurate #17184
Comments
@prahaladdarkin Please have a look at this |
@YangJiao0817 I tried to reproduce the above issue with the following images: Could this be an issue with the |
@prahaladdarkin goharbor/notary-server-photon:v2.5.3:
|
@YangJiao0817 referring to the attached CSV file image for image For the As a part of the fix for issue #17188, package versions are now being included within the CSV report and this inclusion should help resolve the observation mentioned in the current issue |
Closes: * CVE Data Export API IDOR issue * goharbor#17199 * goharbor#17193 * goharbor#17188 * goharbor#17184 Signed-off-by: prahaladdarkin <prahaladd@vmware.com>
Closes: * CVE Data Export API IDOR issue * goharbor#17199 * goharbor#17193 * goharbor#17188 * goharbor#17184 Signed-off-by: prahaladdarkin <prahaladd@vmware.com>
Closes: * CVE Data Export API IDOR issue * goharbor#17199 * goharbor#17193 * goharbor#17188 * goharbor#17184 Signed-off-by: prahaladdarkin <prahaladd@vmware.com>
Fixed within #17232 (under review). |
Closes: * CVE Data Export API IDOR issue * goharbor#17199 * goharbor#17193 * goharbor#17188 * goharbor#17184 Signed-off-by: prahaladdarkin <prahaladd@vmware.com>
Closes: * CVE Data Export API IDOR issue * goharbor#17199 * goharbor#17193 * goharbor#17188 * goharbor#17184 Signed-off-by: prahaladdarkin <prahaladd@vmware.com>
…rbor#17232) Closes: * CVE Data Export API IDOR issue * goharbor#17199 * goharbor#17193 * goharbor#17188 * goharbor#17184 Signed-off-by: prahaladdarkin <prahaladd@vmware.com>
…rbor#17232) Closes: * CVE Data Export API IDOR issue * goharbor#17199 * goharbor#17193 * goharbor#17188 * goharbor#17184 Signed-off-by: prahaladdarkin <prahaladd@vmware.com> Signed-off-by: Stephan Hohn <stephan.hohn@tech11.com>
Expected behavior and actual behavior:
Expected:The exported CVE data is consistent with the UI page
Actual:The exported CVE data is inconsistent with the UI page.Package column displayed incorrectly.Missing CVE data
Steps to reproduce the problem:
docker push domain/test02/goharbor/harbor-portal:v2.5.3
docker push domain/test02/goharbor/notary-server-photon:v2.5.3
UI page Projects<test02<goharbor/notary-server-photon
Package column is not consistent with UI page, there are curl and curl-libs in UI page, only curl-libs in CSV file.
UI page has 8 records in curl + curl-libs and 7 records in CSV file.
Versions:
The text was updated successfully, but these errors were encountered: