From 11b2100d64cab5ebb2258215e0a877442905186e Mon Sep 17 00:00:00 2001
From: Daniel Patanin <Daniel.Patanin@iteratec.de>
Date: Mon, 25 Feb 2019 13:46:07 +0100
Subject: [PATCH 01/11] new module forr mozilla ssh scanner

---
 scb-scanprocesses/mozilla-ssh-process/pom.xml |  73 ++++++
 .../scanprocess/ProcessInitConfiguration.java |  34 +++
 .../src/main/resources/META-INF/processes.xml |  19 ++
 .../resources/bpmn/mozilla_ssh_process.bpmn   | 197 +++++++++++++++
 .../forms.mozilla_ssh/approve-results.html    | 123 ++++++++++
 .../forms.mozilla_ssh/configure-target.html   | 128 ++++++++++
 .../test/MozillaSshProcessTest.java           | 231 ++++++++++++++++++
 .../src/test/resources/camunda.cfg.xml        |  14 ++
 .../src/test/resources/logback-test.xml       |  27 ++
 scb-scanprocesses/pom.xml                     |   3 +-
 10 files changed, 848 insertions(+), 1 deletion(-)
 create mode 100644 scb-scanprocesses/mozilla-ssh-process/pom.xml
 create mode 100644 scb-scanprocesses/mozilla-ssh-process/src/main/java/io/securecodebox/scanprocess/ProcessInitConfiguration.java
 create mode 100644 scb-scanprocesses/mozilla-ssh-process/src/main/resources/META-INF/processes.xml
 create mode 100644 scb-scanprocesses/mozilla-ssh-process/src/main/resources/bpmn/mozilla_ssh_process.bpmn
 create mode 100644 scb-scanprocesses/mozilla-ssh-process/src/main/resources/forms.mozilla_ssh/approve-results.html
 create mode 100644 scb-scanprocesses/mozilla-ssh-process/src/main/resources/forms.mozilla_ssh/configure-target.html
 create mode 100644 scb-scanprocesses/mozilla-ssh-process/src/test/java/io/securecodebox/scanprocess/test/MozillaSshProcessTest.java
 create mode 100644 scb-scanprocesses/mozilla-ssh-process/src/test/resources/camunda.cfg.xml
 create mode 100644 scb-scanprocesses/mozilla-ssh-process/src/test/resources/logback-test.xml

diff --git a/scb-scanprocesses/mozilla-ssh-process/pom.xml b/scb-scanprocesses/mozilla-ssh-process/pom.xml
new file mode 100644
index 00000000..5cb8d55a
--- /dev/null
+++ b/scb-scanprocesses/mozilla-ssh-process/pom.xml
@@ -0,0 +1,73 @@
+
+        <!--
+          ~ /*
+          ~ * SecureCodeBox (SCB)
+          ~ * Copyright 2015-2018 iteratec GmbH
+          ~ *
+          ~ * Licensed under the Apache License, Version 2.0 (the "License");
+          ~ * you may not use this file except in compliance with the License.
+          ~ * You may obtain a copy of the License at
+          ~ *
+          ~ * 	http://www.apache.org/licenses/LICENSE-2.0
+          ~ *
+          ~ * Unless required by applicable law or agreed to in writing, software
+          ~ * distributed under the License is distributed on an "AS IS" BASIS,
+          ~ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+          ~ * See the License for the specific language governing permissions and
+          ~ * limitations under the License.
+          ~ */
+          -->
+
+<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+         xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
+    <modelVersion>4.0.0</modelVersion>
+
+    <parent>
+        <groupId>io.securecodebox.scanprocesses</groupId>
+        <artifactId>default-process-collection</artifactId>
+        <version>0.0.1-SNAPSHOT</version>
+    </parent>
+
+    <groupId>io.securecpdebox.scanprocesses</groupId>
+    <artifactId>mozilla-ssh-process</artifactId>
+    <version>1.0-SNAPSHOT</version>
+
+    <dependencies>
+        <dependency>
+            <groupId>io.securecodebox.core</groupId>
+            <artifactId>sdk</artifactId>
+            <version>${project.parent.version}</version>
+        </dependency>
+
+        <!-- Test Dependencies -->
+        <dependency>
+            <groupId>com.h2database</groupId>
+            <artifactId>h2</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>org.camunda.bpm.springboot</groupId>
+            <artifactId>camunda-bpm-spring-boot-starter-test</artifactId>
+            <scope>test</scope>
+        </dependency>
+        <dependency>
+            <groupId>org.camunda.bpm.extension.mockito</groupId>
+            <artifactId>camunda-bpm-mockito</artifactId>
+            <scope>test</scope>
+        </dependency>
+        <dependency>
+            <groupId>org.camunda.bpm.extension</groupId>
+            <artifactId>camunda-bpm-assert-scenario</artifactId>
+            <scope>test</scope>
+        </dependency>
+        <dependency>
+            <groupId>org.camunda.bpm.extension</groupId>
+            <artifactId>camunda-bpm-process-test-coverage</artifactId>
+            <scope>test</scope>
+        </dependency>
+        <dependency>
+            <groupId>org.camunda.bpm.extension</groupId>
+            <artifactId>camunda-bpm-assert</artifactId>
+        </dependency>
+    </dependencies>
+
+</project>
diff --git a/scb-scanprocesses/mozilla-ssh-process/src/main/java/io/securecodebox/scanprocess/ProcessInitConfiguration.java b/scb-scanprocesses/mozilla-ssh-process/src/main/java/io/securecodebox/scanprocess/ProcessInitConfiguration.java
new file mode 100644
index 00000000..a726d102
--- /dev/null
+++ b/scb-scanprocesses/mozilla-ssh-process/src/main/java/io/securecodebox/scanprocess/ProcessInitConfiguration.java
@@ -0,0 +1,34 @@
+/*
+ *
+ *  SecureCodeBox (SCB)
+ *  Copyright 2015-2018 iteratec GmbH
+ *
+ *  Licensed under the Apache License, Version 2.0 (the "License");
+ *  you may not use this file except in compliance with the License.
+ *  You may obtain a copy of the License at
+ *
+ *  	http://www.apache.org/licenses/LICENSE-2.0
+ *
+ *  Unless required by applicable law or agreed to in writing, software
+ *  distributed under the License is distributed on an "AS IS" BASIS,
+ *  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ *  See the License for the specific language governing permissions and
+ *  limitations under the License.
+ * /
+ */
+
+package io.securecodebox.scanprocess;
+
+import org.springframework.context.annotation.Configuration;
+
+/**
+ * The secureCodeBox by default only scans for components in the package io.securecodebox.scanprocess.
+ * <p>
+ * This configuration ensures that your defined package package also gets scanned, please don't move or remove this configuration.
+ *
+ * @author Rüdiger Heins - iteratec GmbH
+ * @since 09.05.18
+ */
+@Configuration
+public class ProcessInitConfiguration {
+}
diff --git a/scb-scanprocesses/mozilla-ssh-process/src/main/resources/META-INF/processes.xml b/scb-scanprocesses/mozilla-ssh-process/src/main/resources/META-INF/processes.xml
new file mode 100644
index 00000000..c7219e41
--- /dev/null
+++ b/scb-scanprocesses/mozilla-ssh-process/src/main/resources/META-INF/processes.xml
@@ -0,0 +1,19 @@
+<!--
+  ~ /*
+  ~ * SecureCodeBox (SCB)
+  ~ * Copyright 2015-2018 iteratec GmbH
+  ~ *
+  ~ * Licensed under the Apache License, Version 2.0 (the "License");
+  ~ * you may not use this file except in compliance with the License.
+  ~ * You may obtain a copy of the License at
+  ~ *
+  ~ * 	http://www.apache.org/licenses/LICENSE-2.0
+  ~ *
+  ~ * Unless required by applicable law or agreed to in writing, software
+  ~ * distributed under the License is distributed on an "AS IS" BASIS,
+  ~ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  ~ * See the License for the specific language governing permissions and
+  ~ * limitations under the License.
+  ~ */
+  -->
+
diff --git a/scb-scanprocesses/mozilla-ssh-process/src/main/resources/bpmn/mozilla_ssh_process.bpmn b/scb-scanprocesses/mozilla-ssh-process/src/main/resources/bpmn/mozilla_ssh_process.bpmn
new file mode 100644
index 00000000..ffa06a98
--- /dev/null
+++ b/scb-scanprocesses/mozilla-ssh-process/src/main/resources/bpmn/mozilla_ssh_process.bpmn
@@ -0,0 +1,197 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<bpmn:definitions xmlns:bpmn="http://www.omg.org/spec/BPMN/20100524/MODEL" xmlns:bpmndi="http://www.omg.org/spec/BPMN/20100524/DI" xmlns:di="http://www.omg.org/spec/DD/20100524/DI" xmlns:dc="http://www.omg.org/spec/DD/20100524/DC" xmlns:camunda="http://camunda.org/schema/1.0/bpmn" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" id="Definitions_1" targetNamespace="http://bpmn.io/schema/bpmn" exporter="Camunda Modeler" exporterVersion="1.12.0">
+  <bpmn:process id="ssh-process" name="ssh-scan Scan" isExecutable="true" camunda:versionTag="3" camunda:historyTimeToLive="30">
+    <bpmn:startEvent id="StartEvent_Configure" name="target configured" camunda:formKey="embedded:app:forms/default/configure-target.html">
+      <bpmn:extensionElements>
+        <camunda:executionListener delegateExpression="${checkForAutomatedRunListener}" event="start" />
+        <camunda:formData>
+          <camunda:formField id="DEFAULT_CONTEXT" type="string" defaultValue="${propertyValueProvider.defaultContext}" />
+          <camunda:formField id="DEFAULT_TARGET_NAME" type="string" defaultValue="${propertyValueProvider.defaultTargetName}" />
+          <camunda:formField id="DEFAULT_TARGET_LOCATION" type="string" defaultValue="${propertyValueProvider.defaultTargetLocation}" />
+          <camunda:formField id="DEFAULT_TARGET_URI" type="string" defaultValue="${propertyValueProvider.defaultTargetUri}" />
+        </camunda:formData>
+      </bpmn:extensionElements>
+      <bpmn:outgoing>SequenceFlow_TargetConfigured</bpmn:outgoing>
+    </bpmn:startEvent>
+    <bpmn:sequenceFlow id="SequenceFlow_TargetConfigured" sourceRef="StartEvent_Configure" targetRef="ServiceTask_DoScan" />
+    <bpmn:endEvent id="EndEvent_FinishedPortscan" name="SSH Scan finished">
+      <bpmn:incoming>SequenceFlow_SummaryCreated</bpmn:incoming>
+    </bpmn:endEvent>
+    <bpmn:sequenceFlow id="SequenceFlow_PortscanFinished" name="finished&#10;&#10;" sourceRef="ServiceTask_DoScan" targetRef="ExclusiveGateway_AutomatedFinish" />
+    <bpmn:sequenceFlow id="SequenceFlow_ResultReviewed" name="result reviewed" sourceRef="UserTask_ApproveResults" targetRef="ExclusiveGateway_ResultApproved" />
+    <bpmn:userTask id="UserTask_ApproveResults" name="Review scan results" camunda:formKey="embedded:app:forms/default/approve-results.html" camunda:candidateGroups="_securebox_admin, _securebox_productowner, _securebox_developer, approver">
+      <bpmn:extensionElements>
+        <camunda:formData />
+      </bpmn:extensionElements>
+      <bpmn:incoming>SequenceFlow_ManualFinish</bpmn:incoming>
+      <bpmn:outgoing>SequenceFlow_ResultReviewed</bpmn:outgoing>
+    </bpmn:userTask>
+    <bpmn:exclusiveGateway id="ExclusiveGateway_ResultApproved" name="Is scan result approved?">
+      <bpmn:incoming>SequenceFlow_ResultReviewed</bpmn:incoming>
+      <bpmn:outgoing>SequenceFlow_ResultApproved</bpmn:outgoing>
+      <bpmn:outgoing>SequenceFlow_ResultRejected</bpmn:outgoing>
+    </bpmn:exclusiveGateway>
+    <bpmn:sequenceFlow id="SequenceFlow_ResultApproved" name="result approved" sourceRef="ExclusiveGateway_ResultApproved" targetRef="ServiceTask_CreateSummary">
+      <bpmn:conditionExpression xsi:type="bpmn:tFormalExpression"><![CDATA[${PROCESS_RESULT_APPROVED == 'approved'}]]></bpmn:conditionExpression>
+    </bpmn:sequenceFlow>
+    <bpmn:exclusiveGateway id="ExclusiveGateway_AutomatedFinish" name="is automated run?">
+      <bpmn:incoming>SequenceFlow_PortscanFinished</bpmn:incoming>
+      <bpmn:outgoing>SequenceFlow_ManualFinish</bpmn:outgoing>
+      <bpmn:outgoing>SequenceFlow_AutomatedFinish</bpmn:outgoing>
+    </bpmn:exclusiveGateway>
+    <bpmn:sequenceFlow id="SequenceFlow_ManualFinish" name="manual finish&#10;&#10;" sourceRef="ExclusiveGateway_AutomatedFinish" targetRef="UserTask_ApproveResults">
+      <bpmn:conditionExpression xsi:type="bpmn:tFormalExpression">${PROCESS_AUTOMATED == false}</bpmn:conditionExpression>
+    </bpmn:sequenceFlow>
+    <bpmn:sequenceFlow id="SequenceFlow_AutomatedFinish" name="automated finish" sourceRef="ExclusiveGateway_AutomatedFinish" targetRef="ServiceTask_CreateSummary">
+      <bpmn:conditionExpression xsi:type="bpmn:tFormalExpression">${PROCESS_AUTOMATED == true}</bpmn:conditionExpression>
+    </bpmn:sequenceFlow>
+    <bpmn:serviceTask id="ServiceTask_DoScan" name="Run the scan" camunda:asyncBefore="true" camunda:type="external" camunda:topic="ssh-process">
+      <bpmn:extensionElements />
+      <bpmn:incoming>SequenceFlow_TargetConfigured</bpmn:incoming>
+      <bpmn:outgoing>SequenceFlow_PortscanFinished</bpmn:outgoing>
+    </bpmn:serviceTask>
+    <bpmn:sequenceFlow id="SequenceFlow_SummaryCreated" name="summary created" sourceRef="ServiceTask_CreateSummary" targetRef="EndEvent_FinishedPortscan" />
+    <bpmn:serviceTask id="ServiceTask_CreateSummary" name="Create Report Summary" camunda:asyncBefore="true" camunda:delegateExpression="${package_SummaryGeneratorDelegate}">
+      <bpmn:extensionElements />
+      <bpmn:incoming>SequenceFlow_ResultApproved</bpmn:incoming>
+      <bpmn:incoming>SequenceFlow_1i44eck</bpmn:incoming>
+      <bpmn:incoming>SequenceFlow_AutomatedFinish</bpmn:incoming>
+      <bpmn:outgoing>SequenceFlow_SummaryCreated</bpmn:outgoing>
+    </bpmn:serviceTask>
+    <bpmn:dataObjectReference id="DataObjectReference_0vhjx0n" name="PROCESS_FINDINGS" dataObjectRef="DataObject_0lpf2y8" />
+    <bpmn:dataObject id="DataObject_0lpf2y8" />
+    <bpmn:sequenceFlow id="SequenceFlow_ResultRejected" name="result rejected" sourceRef="ExclusiveGateway_ResultApproved" targetRef="DoesNothingTask">
+      <bpmn:conditionExpression xsi:type="bpmn:tFormalExpression"><![CDATA[${PROCESS_RESULT_APPROVED == 'disapproved'}]]></bpmn:conditionExpression>
+    </bpmn:sequenceFlow>
+    <bpmn:task id="DoesNothingTask" name="Does Nothing">
+      <bpmn:incoming>SequenceFlow_ResultRejected</bpmn:incoming>
+      <bpmn:outgoing>SequenceFlow_1i44eck</bpmn:outgoing>
+    </bpmn:task>
+    <bpmn:sequenceFlow id="SequenceFlow_1i44eck" sourceRef="DoesNothingTask" targetRef="ServiceTask_CreateSummary" />
+    <bpmn:textAnnotation id="TextAnnotation_0lm3esn">
+      <bpmn:text>results in a generic format</bpmn:text>
+    </bpmn:textAnnotation>
+    <bpmn:association id="Association_16qrr9w" sourceRef="DataObjectReference_0vhjx0n" targetRef="TextAnnotation_0lm3esn" />
+  </bpmn:process>
+  <bpmndi:BPMNDiagram id="BPMNDiagram_1">
+    <bpmndi:BPMNPlane id="BPMNPlane_1" bpmnElement="ssh-process">
+      <bpmndi:BPMNShape id="_BPMNShape_StartEvent_2" bpmnElement="StartEvent_Configure">
+        <dc:Bounds x="28" y="310" width="36" height="36" />
+        <bpmndi:BPMNLabel>
+          <dc:Bounds x="4" y="356" width="83" height="13" />
+        </bpmndi:BPMNLabel>
+      </bpmndi:BPMNShape>
+      <bpmndi:BPMNEdge id="SequenceFlow_093mevy_di" bpmnElement="SequenceFlow_TargetConfigured">
+        <di:waypoint x="64" y="328" />
+        <di:waypoint x="142" y="328" />
+        <bpmndi:BPMNLabel>
+          <dc:Bounds x="58" y="303" width="90" height="20" />
+        </bpmndi:BPMNLabel>
+      </bpmndi:BPMNEdge>
+      <bpmndi:BPMNShape id="EndEvent_07weexy_di" bpmnElement="EndEvent_FinishedPortscan">
+        <dc:Bounds x="1309" y="186" width="36" height="36" />
+        <bpmndi:BPMNLabel>
+          <dc:Bounds x="1357" y="197" width="90" height="12" />
+        </bpmndi:BPMNLabel>
+      </bpmndi:BPMNShape>
+      <bpmndi:BPMNEdge id="SequenceFlow_0kjlgbs_di" bpmnElement="SequenceFlow_PortscanFinished">
+        <di:waypoint x="242" y="328" />
+        <di:waypoint x="437" y="328" />
+        <bpmndi:BPMNLabel>
+          <dc:Bounds x="316" y="420" width="38" height="37" />
+        </bpmndi:BPMNLabel>
+      </bpmndi:BPMNEdge>
+      <bpmndi:BPMNEdge id="SequenceFlow_00fmvcb_di" bpmnElement="SequenceFlow_ResultReviewed">
+        <di:waypoint x="673" y="202" />
+        <di:waypoint x="760" y="204" />
+        <bpmndi:BPMNLabel>
+          <dc:Bounds x="794" y="176" width="74" height="12" />
+        </bpmndi:BPMNLabel>
+      </bpmndi:BPMNEdge>
+      <bpmndi:BPMNShape id="UserTask_0jv6ygb_di" bpmnElement="UserTask_ApproveResults">
+        <dc:Bounds x="573" y="164" width="100" height="80" />
+      </bpmndi:BPMNShape>
+      <bpmndi:BPMNShape id="ExclusiveGateway_0ukn4uh_di" bpmnElement="ExclusiveGateway_ResultApproved" isMarkerVisible="true">
+        <dc:Bounds x="760" y="179" width="50" height="50" />
+        <bpmndi:BPMNLabel>
+          <dc:Bounds x="752" y="239" width="65" height="25" />
+        </bpmndi:BPMNLabel>
+      </bpmndi:BPMNShape>
+      <bpmndi:BPMNEdge id="SequenceFlow_0gjifhk_di" bpmnElement="SequenceFlow_ResultApproved">
+        <di:waypoint x="810" y="204" />
+        <di:waypoint x="1077" y="204" />
+        <bpmndi:BPMNLabel>
+          <dc:Bounds x="999" y="150" width="76" height="13" />
+        </bpmndi:BPMNLabel>
+      </bpmndi:BPMNEdge>
+      <bpmndi:BPMNShape id="ExclusiveGateway_1bzno3f_di" bpmnElement="ExclusiveGateway_AutomatedFinish" isMarkerVisible="true">
+        <dc:Bounds x="437" y="303" width="50" height="50" />
+        <bpmndi:BPMNLabel>
+          <dc:Bounds x="497" y="322" width="89" height="12" />
+        </bpmndi:BPMNLabel>
+      </bpmndi:BPMNShape>
+      <bpmndi:BPMNEdge id="SequenceFlow_17bwrf0_di" bpmnElement="SequenceFlow_ManualFinish">
+        <di:waypoint x="462" y="303" />
+        <di:waypoint x="462" y="204" />
+        <di:waypoint x="573" y="204" />
+        <bpmndi:BPMNLabel>
+          <dc:Bounds x="379" y="246" width="65" height="37" />
+        </bpmndi:BPMNLabel>
+      </bpmndi:BPMNEdge>
+      <bpmndi:BPMNEdge id="SequenceFlow_0s3limw_di" bpmnElement="SequenceFlow_AutomatedFinish">
+        <di:waypoint x="462" y="353" />
+        <di:waypoint x="462" y="456" />
+        <di:waypoint x="1127" y="456" />
+        <di:waypoint x="1127" y="244" />
+        <bpmndi:BPMNLabel>
+          <dc:Bounds x="803" y="503" width="81" height="12" />
+        </bpmndi:BPMNLabel>
+      </bpmndi:BPMNEdge>
+      <bpmndi:BPMNShape id="ServiceTask_0pps66n_di" bpmnElement="ServiceTask_DoScan">
+        <dc:Bounds x="142" y="288" width="100" height="80" />
+      </bpmndi:BPMNShape>
+      <bpmndi:BPMNEdge id="SequenceFlow_150f8k2_di" bpmnElement="SequenceFlow_SummaryCreated">
+        <di:waypoint x="1177" y="204" />
+        <di:waypoint x="1309" y="204" />
+        <bpmndi:BPMNLabel>
+          <dc:Bounds x="1187" y="209" width="85" height="13" />
+        </bpmndi:BPMNLabel>
+      </bpmndi:BPMNEdge>
+      <bpmndi:BPMNShape id="ServiceTask_1foo790_di" bpmnElement="ServiceTask_CreateSummary">
+        <dc:Bounds x="1077" y="164" width="100" height="80" />
+      </bpmndi:BPMNShape>
+      <bpmndi:BPMNShape id="DataObjectReference_0vhjx0n_di" bpmnElement="DataObjectReference_0vhjx0n">
+        <dc:Bounds x="288" y="360" width="36" height="50" />
+        <bpmndi:BPMNLabel>
+          <dc:Bounds x="263" y="331" width="86" height="25" />
+        </bpmndi:BPMNLabel>
+      </bpmndi:BPMNShape>
+      <bpmndi:BPMNShape id="TextAnnotation_0lm3esn_di" bpmnElement="TextAnnotation_0lm3esn">
+        <dc:Bounds x="379" y="420" width="102" height="50" />
+      </bpmndi:BPMNShape>
+      <bpmndi:BPMNEdge id="Association_16qrr9w_di" bpmnElement="Association_16qrr9w">
+        <di:waypoint x="324" y="394" />
+        <di:waypoint x="379" y="420" />
+      </bpmndi:BPMNEdge>
+      <bpmndi:BPMNEdge id="SequenceFlow_1z0e6c0_di" bpmnElement="SequenceFlow_ResultRejected">
+        <di:waypoint x="785" y="179" />
+        <di:waypoint x="785" y="65" />
+        <di:waypoint x="995" y="65" />
+        <bpmndi:BPMNLabel>
+          <dc:Bounds x="849" y="96" width="70" height="13" />
+        </bpmndi:BPMNLabel>
+      </bpmndi:BPMNEdge>
+      <bpmndi:BPMNShape id="Task_1691u70_di" bpmnElement="DoesNothingTask">
+        <dc:Bounds x="995" y="25" width="100" height="80" />
+      </bpmndi:BPMNShape>
+      <bpmndi:BPMNEdge id="SequenceFlow_1i44eck_di" bpmnElement="SequenceFlow_1i44eck">
+        <di:waypoint x="1095" y="65" />
+        <di:waypoint x="1127" y="65" />
+        <di:waypoint x="1127" y="164" />
+        <bpmndi:BPMNLabel>
+          <dc:Bounds x="1066" y="43.5" width="90" height="13" />
+        </bpmndi:BPMNLabel>
+      </bpmndi:BPMNEdge>
+    </bpmndi:BPMNPlane>
+  </bpmndi:BPMNDiagram>
+</bpmn:definitions>
diff --git a/scb-scanprocesses/mozilla-ssh-process/src/main/resources/forms.mozilla_ssh/approve-results.html b/scb-scanprocesses/mozilla-ssh-process/src/main/resources/forms.mozilla_ssh/approve-results.html
new file mode 100644
index 00000000..45d2b9ab
--- /dev/null
+++ b/scb-scanprocesses/mozilla-ssh-process/src/main/resources/forms.mozilla_ssh/approve-results.html
@@ -0,0 +1,123 @@
+<!--
+  ~ /*
+  ~ * SecureCodeBox (SCB)
+  ~ * Copyright 2015-2018 iteratec GmbH
+  ~ *
+  ~ * Licensed under the Apache License, Version 2.0 (the "License");
+  ~ * you may not use this file except in compliance with the License.
+  ~ * You may obtain a copy of the License at
+  ~ *
+  ~ * 	http://www.apache.org/licenses/LICENSE-2.0
+  ~ *
+  ~ * Unless required by applicable law or agreed to in writing, software
+  ~ * distributed under the License is distributed on an "AS IS" BASIS,
+  ~ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  ~ * See the License for the specific language governing permissions and
+  ~ * limitations under the License.
+  ~ */
+  -->
+
+<form role="form" name="configure-reporting">
+
+    <script cam-script type="text/form-script">
+        camForm.on('form-loaded', function () {
+
+            camForm.variableManager.fetchVariable('PROCESS_CONTEXT');
+            camForm.variableManager.fetchVariable('PROCESS_TARGETS');
+            camForm.variableManager.fetchVariable('PROCESS_FINDINGS');
+            camForm.variableManager.fetchVariable('PROCESS_SCANNER_ID');
+        });
+
+        camForm.on('variables-restored', function () {
+            $scope.context = camForm.variableManager.variableValue('PROCESS_CONTEXT');
+
+            $scope.scannerId = camForm.variableManager.variableValue('PROCESS_SCANNER_ID');
+            $scope.scannerResult = JSON.parse(camForm.variableManager.variableValue('PROCESS_FINDINGS'));
+            $scope.scannerTargets = JSON.parse(camForm.variableManager.variableValue('PROCESS_TARGETS'));
+        });
+    </script>
+    <div ng-repeat="target in scannerTargets">
+        <h2>SSH scan results for "{{ target.name }}"</h2>
+
+        <div class="row">
+            <div class="col-xs-2"><label>Scanner Id:</label></div>
+            <div class="col-xs-10">{{ scannerId }}</div>
+        </div>
+        <div class="row">
+            <div class="col-xs-2"><label>Target Location:</label></div>
+            <div class="col-xs-10">{{ target.location }}</div>
+        </div>
+        <div class="row">
+            <div class="col-xs-2"><label>Business Context:</label></div>
+            <div class="col-xs-10">{{ context }}</div>
+        </div>
+        <div class="row">
+            <div class="col-xs-12">
+
+                <div class="well well-sm"
+                     style="color: inherit;">
+                    <table class="table table-striped">
+                        <tr>
+                            <th>Host:</th>
+                            <th>Name:</th>
+                            <th>Category:</th>
+                            <th>Severity:</th>
+                            <th>Reference:</th>
+                        </tr>
+                        <tr class="danger" ng-repeat="result in scannerResult">
+                            <td>{{ result.location }}</td>
+                            <td>{{ result.name }}</td>
+                            <td>{{ result.category }}</td>
+                            <td>
+                                <div ng-switch on="result.severity">
+                                <span class="label label-danger" ng-switch-when="HIGH">
+                                    <i aria-hidden="true"
+                                       class="glyphicon glyphicon-fire"></i>
+                                    {{ result.severity }}
+                                </span>
+
+                                    <span class="label label-warning" ng-switch-when="MEDIUM">
+                                    <i aria-hidden="true"
+                                       class="glyphicon glyphicon glyphicon-alert"></i>
+                                    {{ result.severity }}
+                                </span>
+
+                                    <span class="label label-primary" ng-switch-when="LOW">
+                                    <i aria-hidden="true"
+                                       class="glyphicon glyphicon-warning-sign"></i>
+                                    {{ result.severity }}
+                                </span>
+
+                                    <span class="label label-default" ng-switch-default>
+                                    <i aria-hidden="true"
+                                       class="glyphicon glyphicon-education"></i>
+                                    {{ result.severity }}
+                                </span>
+
+                            </td>
+                            <td> {{ result.reference.id }}
+                            </td>
+                        </tr>
+                    </table>
+                </div>
+            </div>
+
+        </div>
+    </div>
+    <h2>Approve Result</h2>
+    <!-- reporting configuration -->
+    <div class="form-group">
+        <label for="selectResultApproved">Approve Result</label>
+        <div id="selectResultApproved" class="controls">
+            <!--select box -->
+            <select required
+                    class="form-control"
+                    name="resultApproved"
+                    cam-variable-name="PROCESS_RESULT_APPROVED"
+                    cam-variable-type="String">
+                <option value="approved" checked>Approved (finished)</option>
+                <option value="disapproved">Not Approved (finished)</option>
+            </select>
+        </div>
+    </div>
+</form>
diff --git a/scb-scanprocesses/mozilla-ssh-process/src/main/resources/forms.mozilla_ssh/configure-target.html b/scb-scanprocesses/mozilla-ssh-process/src/main/resources/forms.mozilla_ssh/configure-target.html
new file mode 100644
index 00000000..0dd40bed
--- /dev/null
+++ b/scb-scanprocesses/mozilla-ssh-process/src/main/resources/forms.mozilla_ssh/configure-target.html
@@ -0,0 +1,128 @@
+<!--
+  ~ /*
+  ~ * SecureCodeBox (SCB)
+  ~ * Copyright 2015-2018 iteratec GmbH
+  ~ *
+  ~ * Licensed under the Apache License, Version 2.0 (the "License");
+  ~ * you may not use this file except in compliance with the License.
+  ~ * You may obtain a copy of the License at
+  ~ *
+  ~ * 	http://www.apache.org/licenses/LICENSE-2.0
+  ~ *
+  ~ * Unless required by applicable law or agreed to in writing, software
+  ~ * distributed under the License is distributed on an "AS IS" BASIS,
+  ~ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  ~ * See the License for the specific language governing permissions and
+  ~ * limitations under the License.
+  ~ */
+  -->
+
+<h2>Please configure the SSH Scan</h2>
+
+<form role="form" name="configure-target">
+
+    <script cam-script type="text/form-script">
+        camForm.on('form-loaded', function () {
+            camForm.variableManager.fetchVariable('DEFAULT_CONTEXT');
+            camForm.variableManager.fetchVariable('DEFAULT_TARGET_NAME');
+            camForm.variableManager.fetchVariable('DEFAULT_TARGET_LOCATION');
+            camForm.variableManager.fetchVariable('DEFAULT_TARGET_URI');
+        });
+
+        camForm.on('variables-fetched', function () {
+            $scope.context = camForm.variableManager.variableValue('DEFAULT_CONTEXT');
+
+            $scope.targetList = [{
+                name: camForm.variableManager.variableValue('DEFAULT_TARGET_NAME'),
+                location: camForm.variableManager.variableValue('DEFAULT_TARGET_LOCATION')
+            }];
+
+            $scope.addTarget = function () {
+                $scope.targetList.push({'name':'', 'location': ''});
+            };
+
+            $scope.checkForEnter = function ($event) {
+                if ($event.key === 'Enter') {
+                    $scope.addTarget();
+                    $event.stopPropagation();
+                    $event.preventDefault();
+                }
+            };
+        });
+
+        camForm.on('submit', function () {
+            camForm.variableManager.destroyVariable('PROCESS_TARGETS');
+            camForm.variableManager.createVariable({
+                name: 'PROCESS_TARGETS',
+                type: 'Object',
+                value: JSON.stringify($scope.targetList),
+                valueInfo: {
+                    serializationDataFormat: 'application/json',
+                    objectTypeName: 'java.lang.String'
+                }
+            });
+        });
+
+    </script>
+
+    <div class="row">
+
+        <div class="col-xs-12">
+            <h3>SSH scan Target</h3>
+
+            <!-- Target Hosts -->
+            <div class="form-group">
+                <div class="controls row form-group" ng-repeat="target in targetList track by $index">
+                    <div class="col-xs-5">
+                        <label>Target Name</label>
+                        <input required class="form-control"
+                               type="text"
+                               placeholder="Public Site Name"
+                               ng-minlength="2"
+                               ng-maxlength="30"
+                               ng-model="target.name"/>
+                    </div>
+                    <div class="col-xs-6">
+                        <label>Target Hosts</label>
+                        <input required class="form-control"
+                               type="text"
+                               placeholder="Hostname/IP address"
+                               ng-minlength="3"
+                               ng-maxlength="100"
+                               ng-model="target.location"
+                               ng-keydown="checkForEnter($event)"
+                        />
+                    </div>
+                    <div class="col-xs-1">
+                        <button class="btn btn-danger btn-lg"
+                                ng-click="targetList.splice($index, 1)"
+                                ng-disabled="targetList.length === 1"
+                                style="position: absolute; right: 15px; top: 0;">
+                            <span class="glyphicon glyphicon-trash"></span>
+                        </button>
+                    </div>
+                </div>
+                <button class="btn btn-primary" ng-click="addTarget()">Add Host</button>
+                <code class="hidden">{{ targetList }}</code>
+            </div>
+
+            <!-- Context (Project/Team/System...) -->
+            <div class="form-group">
+                <label for="inputContext">Business Context (Project/Team/System)</label>
+                <div class="controls">
+                    <input class="form-control"
+                           id="inputContext"
+                           cam-variable-type="String"
+                           cam-variable-name="PROCESS_CONTEXT"
+                           type="text"
+                           placeholder="Project/Team/System"
+                           ng-required="false"
+                           ng-maxlength="50"
+                           ng-model="context"
+                           name="context" />
+                </div>
+            </div>
+
+        </div>
+    </div>
+</form>
diff --git a/scb-scanprocesses/mozilla-ssh-process/src/test/java/io/securecodebox/scanprocess/test/MozillaSshProcessTest.java b/scb-scanprocesses/mozilla-ssh-process/src/test/java/io/securecodebox/scanprocess/test/MozillaSshProcessTest.java
new file mode 100644
index 00000000..b95f3145
--- /dev/null
+++ b/scb-scanprocesses/mozilla-ssh-process/src/test/java/io/securecodebox/scanprocess/test/MozillaSshProcessTest.java
@@ -0,0 +1,231 @@
+/*
+ *
+ *  SecureCodeBox (SCB)
+ *  Copyright 2015-2018 iteratec GmbH
+ *
+ *  Licensed under the Apache License, Version 2.0 (the "License");
+ *  you may not use this file except in compliance with the License.
+ *  You may obtain a copy of the License at
+ *
+ *  	http://www.apache.org/licenses/LICENSE-2.0
+ *
+ *  Unless required by applicable law or agreed to in writing, software
+ *  distributed under the License is distributed on an "AS IS" BASIS,
+ *  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ *  See the License for the specific language governing permissions and
+ *  limitations under the License.
+ * /
+ */
+
+package io.securecodebox.scanprocess.test;
+
+import io.securecodebox.constants.DefaultFields;
+import io.securecodebox.scanprocess.delegate.SummaryGeneratorDelegate;
+import org.camunda.bpm.engine.ExternalTaskService;
+import org.camunda.bpm.engine.delegate.DelegateTask;
+import org.camunda.bpm.engine.delegate.Expression;
+import org.camunda.bpm.engine.delegate.TaskListener;
+import org.camunda.bpm.engine.externaltask.LockedExternalTask;
+import org.camunda.bpm.engine.runtime.ProcessInstance;
+import org.camunda.bpm.engine.test.Deployment;
+import org.camunda.bpm.engine.test.ProcessEngineRule;
+import org.camunda.bpm.engine.test.mock.Mocks;
+import org.camunda.bpm.extension.process_test_coverage.junit.rules.TestCoverageProcessEngineRuleBuilder;
+import org.camunda.bpm.scenario.ProcessScenario;
+import org.camunda.bpm.scenario.Scenario;
+import org.camunda.bpm.scenario.delegate.ExternalTaskDelegate;
+import org.camunda.bpm.scenario.delegate.TaskDelegate;
+import org.junit.Before;
+import org.junit.ClassRule;
+import org.junit.Ignore;
+import org.junit.Rule;
+import org.junit.Test;
+import org.junit.runner.RunWith;
+import org.mockito.Mock;
+import org.mockito.Mockito;
+import org.mockito.MockitoAnnotations;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
+
+import java.util.HashMap;
+import java.util.List;
+import java.util.Map;
+
+import static org.camunda.bpm.engine.test.assertions.ProcessEngineTests.*;
+import static org.camunda.bpm.extension.mockito.CamundaMockito.autoMock;
+import static org.mockito.Mockito.when;
+
+/**
+ * This class tests the process execution of the Default-Process BPMN Model
+ * It verifies that each process task is called when it's supposed to be and
+ * delegation code is executed at the right time
+ * <p>
+ * The tests run in an own Camunda engine which is defined by the camunda.cfg.xml in the resources directory
+ * <p>
+ * The test cases use Camunda BPM's standard framework as well as the
+ * Camunda BPM Assert extension (<a href="https://github.com/camunda/camunda-bpm-assert")/>),
+ * camunda-bpm-mockito (<a href="https://github.com/camunda/camunda-bpm-mockito"/>)
+ * and the Camunda BPM Assert Scenario extension (<a href="https://github.com/camunda/camunda-bpm-assert-scenario"/>)
+ * <p>
+ * Furthermore this class also uses the Camunda BPM Process Test Coverage extension
+ * (<a href="https://github.com/camunda/camunda-bpm-process-test-coverage"/>).
+ * After the test is run we can examine the test coverage in the directory target/process-test-coverage
+ */
+
+@RunWith(SpringJUnit4ClassRunner.class)
+@Deployment(resources = "bpmn/mozilla_ssh_process.bpmn")
+
+@Ignore("Ignored until problems with camunda testing frameworks are handled. Introduces via update to camunda 7.10")
+public class MozillaSshProcessTest {
+
+    //Define the Process Activity IDs
+    private static final String PROCESS_ID = "ssh-process";
+    private static final String DO_SCAN_TASK_ID = "ServiceTask_DoScan";
+    private static final String CREATE_REPORT_TASK_ID = "ServiceTask_CreateSummary";
+    private static final String APPROVE_RESULTS_TASK_ID = "UserTask_ApproveResults";
+
+    private final Map<String, Object> defaultVariables = new HashMap<>();
+
+    @Rule
+    @ClassRule
+    public static ProcessEngineRule processEngineRule = TestCoverageProcessEngineRuleBuilder.create().build();
+
+    @Mock
+    private ProcessScenario process;
+
+    @Mock
+    SummaryGeneratorDelegate delegate;
+
+    /**
+     * Executed before every test-case
+     * In this method default variables for the process and a default behaviour for the mocks
+     * in the process are defined+
+     */
+    @Before
+    public void init() {
+
+        MockitoAnnotations.initMocks(this);
+
+        //Creating a map of default variables for the process
+        defaultVariables.put(DefaultFields.PROCESS_AUTOMATED.name(), true);
+        defaultVariables.put(DefaultFields.PROCESS_CONTEXT.name(), "BodgeIT");
+
+        /*
+        Mocking everything in the BPMN Model
+        This includes ExecutionListeners, TaskListeners, JavaDelegates, etc.
+        Simply stated: Everything, that's executable code
+
+        If you need to define custom behaviour for the Mocks you can do so by
+        registering Mocks with Camunda's method "Mocks.register(String key, Object value)".
+        Here the key describes a delegateExpression (as defined in BPMN model) and the value
+        describes the implementation of the code which should be executed
+        (Hint: You can put the real implementation as well as a fake one in there)
+
+        Note: Most of the mocking methods seem to work only in combination with delegateExpressions
+        but not with class definitions as delegate implementation.
+
+        If you have the path to your executable code (the class for delegate) as delegate implementation
+        then this guide is helpful:
+        https://blog.akquinet.de/2016/11/04/camunda-bpm-test-your-processes-based-on-plain-old-java-delegates/
+         */
+        autoMock("bpmn/mozilla_ssh_process.bpmn");
+
+        /*
+        Here we define a default behaviour for all the tasks in the BPMN model.
+        This behaviour can easily be overridden in test cases.
+
+        The code inside the "thenReturn(...)" method specifies what should happen when process execution
+        waits at the given task
+        As a default behaviour we just complete the task and move on to the next one without changing anything
+
+        Note that we have our own mock implementation in the last two when(...) statements.
+        This is because these tasks are external tasks which cannot be as easily completed as
+        ServiceTasks. They need an external worker to do so.
+         */
+        when(process.waitsAtUserTask(Mockito.anyString())).thenReturn(TaskDelegate::complete);
+        when(process.waitsAtServiceTask(Mockito.anyString())).thenReturn(ExternalTaskDelegate::complete);
+        when(process.waitsAtServiceTask(DO_SCAN_TASK_ID)).thenReturn(task -> startExternalMockProcess("ssh-process"));
+    }
+
+    @Test
+    public void testAutomatedStart_shouldPass() {
+
+        ProcessInstance processInstance = runtimeService().startProcessInstanceByKey(PROCESS_ID, defaultVariables);
+
+        assertThat(processInstance).isStarted();
+    }
+
+    @Test
+    public void testManualStartWithDefaultConfiguration_shouldPass() {
+        ProcessInstance processInstance = runtimeService().startProcessInstanceByKey(PROCESS_ID, defaultVariables);
+
+        assertThat(processInstance).isStarted();
+        assertThat(processInstance).isWaitingAt(DO_SCAN_TASK_ID);
+    }
+
+    @Test
+    public void testManualRunWithApprovedTestResults() {
+
+        Map<String, Object> variables = new HashMap<>(defaultVariables);
+        changeVariable(variables, DefaultFields.PROCESS_AUTOMATED.name(), false);
+
+        when(process.waitsAtUserTask(APPROVE_RESULTS_TASK_ID)).thenReturn(task -> {
+            variables.put(DefaultFields.PROCESS_RESULT_APPROVED.name(), "approved");
+            task.complete(variables);
+        });
+
+            /*
+            Here we register a custom mock.
+            The BPMN model TaskListener takes an injected field variable which cannot be mocked.
+            Therefore we create our own TaskListener with a dummy implementation and which also
+            holds the variable, that should be injected.
+            Then we register our TaskListener with "Mocks.register(...)" and it gets executed when the delegateExpression
+            is called.
+             */
+        Mocks.register("setFormUrlListener", new TaskListener() {
+
+            @Autowired
+            private Expression scanner_type;
+
+            @Override
+            public void notify(DelegateTask delegateTask) {
+            }
+        });
+
+        Scenario scenario = Scenario.run(process).startByKey(PROCESS_ID, variables).execute();
+
+        assertThat(scenario.instance(process)).isEnded();
+        assertThat(scenario.instance(process)).hasPassed(APPROVE_RESULTS_TASK_ID);
+        assertThat(scenario.instance(process)).variables()
+                .containsEntry(DefaultFields.PROCESS_RESULT_APPROVED.name(), "approved");
+    }
+
+    /**
+     * Executes an external process without doing anything in the task.
+     * In the first step the job is executed on the Camunda engine. Therefore the token for the
+     * provided topic gets pushed. Then an external service is called to pull the token and execute the task
+     *
+     * @param topic the topic for the external task
+     */
+    private void startExternalMockProcess(String topic) {
+
+        ExternalTaskService externalTaskService = processEngine().getExternalTaskService();
+        List<LockedExternalTask> lockedExternalTasks = externalTaskService.fetchAndLock(1, "worker")
+                .topic(topic, 5000L)
+                .execute();
+
+        assertThat(lockedExternalTasks.size()).isEqualTo(1);
+
+        LockedExternalTask task = lockedExternalTasks.get(0);
+        externalTaskService.complete(task.getId(), "worker");
+    }
+
+    private void changeVariable(Map<String, Object> variables, String key, Object value) {
+
+        if (variables.containsKey(key)) {
+            variables.remove(key);
+        }
+        variables.put(key, value);
+    }
+
+}
diff --git a/scb-scanprocesses/mozilla-ssh-process/src/test/resources/camunda.cfg.xml b/scb-scanprocesses/mozilla-ssh-process/src/test/resources/camunda.cfg.xml
new file mode 100644
index 00000000..d5e7d6f9
--- /dev/null
+++ b/scb-scanprocesses/mozilla-ssh-process/src/test/resources/camunda.cfg.xml
@@ -0,0 +1,14 @@
+<?xml version="1.0" encoding="UTF-8"?>
+
+<beans xmlns="http://www.springframework.org/schema/beans"
+       xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+       xsi:schemaLocation="http://www.springframework.org/schema/beans   http://www.springframework.org/schema/beans/spring-beans.xsd">
+
+    <!-- uses an h2 in-memory database for test execution -->
+    <bean id="processEngineConfiguration" class="org.camunda.bpm.extension.process_test_coverage.junit.rules.ProcessCoverageInMemProcessEngineConfiguration">
+
+        <!-- This property ensures that the JobExecutor isn't started and therefore
+             asynchronous tasks need to be called explicitly to run-->
+        <property name="jobExecutorActivate" value="false" />
+    </bean>
+</beans>
\ No newline at end of file
diff --git a/scb-scanprocesses/mozilla-ssh-process/src/test/resources/logback-test.xml b/scb-scanprocesses/mozilla-ssh-process/src/test/resources/logback-test.xml
new file mode 100644
index 00000000..81dcdbcd
--- /dev/null
+++ b/scb-scanprocesses/mozilla-ssh-process/src/test/resources/logback-test.xml
@@ -0,0 +1,27 @@
+<!--
+  ~ /*
+  ~ * SecureCodeBox (SCB)
+  ~ * Copyright 2015-2018 iteratec GmbH
+  ~ *
+  ~ * Licensed under the Apache License, Version 2.0 (the "License");
+  ~ * you may not use this file except in compliance with the License.
+  ~ * You may obtain a copy of the License at
+  ~ *
+  ~ * 	http://www.apache.org/licenses/LICENSE-2.0
+  ~ *
+  ~ * Unless required by applicable law or agreed to in writing, software
+  ~ * distributed under the License is distributed on an "AS IS" BASIS,
+  ~ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  ~ * See the License for the specific language governing permissions and
+  ~ * limitations under the License.
+  ~ */
+  -->
+
+<configuration debug="true">
+    <include resource="org/springframework/boot/logging/logback/base.xml" />
+
+
+    <root level="INFO">
+        <appender-ref ref="STDOUT" />
+    </root>
+</configuration>
diff --git a/scb-scanprocesses/pom.xml b/scb-scanprocesses/pom.xml
index 7c4d11c7..ec015bf0 100644
--- a/scb-scanprocesses/pom.xml
+++ b/scb-scanprocesses/pom.xml
@@ -23,6 +23,7 @@
         <module>combined-amass-nmap-process</module>
         <module>arachni-process</module>
         <module>subdomain-scanner-process</module>
+    <module>mozilla-ssh-process</module>
   </modules>
 
-</project>
+</project>
\ No newline at end of file

From f2bd230b3fd9311725fc7c4bccc1011ab67c6d4b Mon Sep 17 00:00:00 2001
From: Daniel Patanin <Daniel.Patanin@iteratec.de>
Date: Mon, 4 Mar 2019 15:31:24 +0100
Subject: [PATCH 02/11] Runable

---
 scb-scanprocesses/mozilla-ssh-process/pom.xml | 22 +------------------
 .../scanprocess/ProcessInitConfiguration.java |  2 ++
 .../src/main/resources/META-INF/processes.xml | 19 ----------------
 .../resources/bpmn/mozilla_ssh_process.bpmn   |  4 ++--
 .../forms.mozilla_ssh/approve-results.html    |  3 ++-
 5 files changed, 7 insertions(+), 43 deletions(-)

diff --git a/scb-scanprocesses/mozilla-ssh-process/pom.xml b/scb-scanprocesses/mozilla-ssh-process/pom.xml
index 5cb8d55a..bbeee5c0 100644
--- a/scb-scanprocesses/mozilla-ssh-process/pom.xml
+++ b/scb-scanprocesses/mozilla-ssh-process/pom.xml
@@ -1,23 +1,3 @@
-
-        <!--
-          ~ /*
-          ~ * SecureCodeBox (SCB)
-          ~ * Copyright 2015-2018 iteratec GmbH
-          ~ *
-          ~ * Licensed under the Apache License, Version 2.0 (the "License");
-          ~ * you may not use this file except in compliance with the License.
-          ~ * You may obtain a copy of the License at
-          ~ *
-          ~ * 	http://www.apache.org/licenses/LICENSE-2.0
-          ~ *
-          ~ * Unless required by applicable law or agreed to in writing, software
-          ~ * distributed under the License is distributed on an "AS IS" BASIS,
-          ~ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-          ~ * See the License for the specific language governing permissions and
-          ~ * limitations under the License.
-          ~ */
-          -->
-
 <project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
          xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
     <modelVersion>4.0.0</modelVersion>
@@ -28,7 +8,7 @@
         <version>0.0.1-SNAPSHOT</version>
     </parent>
 
-    <groupId>io.securecpdebox.scanprocesses</groupId>
+
     <artifactId>mozilla-ssh-process</artifactId>
     <version>1.0-SNAPSHOT</version>
 
diff --git a/scb-scanprocesses/mozilla-ssh-process/src/main/java/io/securecodebox/scanprocess/ProcessInitConfiguration.java b/scb-scanprocesses/mozilla-ssh-process/src/main/java/io/securecodebox/scanprocess/ProcessInitConfiguration.java
index a726d102..6912cde3 100644
--- a/scb-scanprocesses/mozilla-ssh-process/src/main/java/io/securecodebox/scanprocess/ProcessInitConfiguration.java
+++ b/scb-scanprocesses/mozilla-ssh-process/src/main/java/io/securecodebox/scanprocess/ProcessInitConfiguration.java
@@ -19,6 +19,7 @@
 
 package io.securecodebox.scanprocess;
 
+import org.springframework.context.annotation.ComponentScan;
 import org.springframework.context.annotation.Configuration;
 
 /**
@@ -29,6 +30,7 @@
  * @author Rüdiger Heins - iteratec GmbH
  * @since 09.05.18
  */
+@ComponentScan("io.securecodebox.scanprocesses")
 @Configuration
 public class ProcessInitConfiguration {
 }
diff --git a/scb-scanprocesses/mozilla-ssh-process/src/main/resources/META-INF/processes.xml b/scb-scanprocesses/mozilla-ssh-process/src/main/resources/META-INF/processes.xml
index c7219e41..e69de29b 100644
--- a/scb-scanprocesses/mozilla-ssh-process/src/main/resources/META-INF/processes.xml
+++ b/scb-scanprocesses/mozilla-ssh-process/src/main/resources/META-INF/processes.xml
@@ -1,19 +0,0 @@
-<!--
-  ~ /*
-  ~ * SecureCodeBox (SCB)
-  ~ * Copyright 2015-2018 iteratec GmbH
-  ~ *
-  ~ * Licensed under the Apache License, Version 2.0 (the "License");
-  ~ * you may not use this file except in compliance with the License.
-  ~ * You may obtain a copy of the License at
-  ~ *
-  ~ * 	http://www.apache.org/licenses/LICENSE-2.0
-  ~ *
-  ~ * Unless required by applicable law or agreed to in writing, software
-  ~ * distributed under the License is distributed on an "AS IS" BASIS,
-  ~ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-  ~ * See the License for the specific language governing permissions and
-  ~ * limitations under the License.
-  ~ */
-  -->
-
diff --git a/scb-scanprocesses/mozilla-ssh-process/src/main/resources/bpmn/mozilla_ssh_process.bpmn b/scb-scanprocesses/mozilla-ssh-process/src/main/resources/bpmn/mozilla_ssh_process.bpmn
index ffa06a98..678e7e15 100644
--- a/scb-scanprocesses/mozilla-ssh-process/src/main/resources/bpmn/mozilla_ssh_process.bpmn
+++ b/scb-scanprocesses/mozilla-ssh-process/src/main/resources/bpmn/mozilla_ssh_process.bpmn
@@ -1,6 +1,6 @@
 <?xml version="1.0" encoding="UTF-8"?>
 <bpmn:definitions xmlns:bpmn="http://www.omg.org/spec/BPMN/20100524/MODEL" xmlns:bpmndi="http://www.omg.org/spec/BPMN/20100524/DI" xmlns:di="http://www.omg.org/spec/DD/20100524/DI" xmlns:dc="http://www.omg.org/spec/DD/20100524/DC" xmlns:camunda="http://camunda.org/schema/1.0/bpmn" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" id="Definitions_1" targetNamespace="http://bpmn.io/schema/bpmn" exporter="Camunda Modeler" exporterVersion="1.12.0">
-  <bpmn:process id="ssh-process" name="ssh-scan Scan" isExecutable="true" camunda:versionTag="3" camunda:historyTimeToLive="30">
+  <bpmn:process id="ssh-process" name="SSH Scan" isExecutable="true" camunda:versionTag="3" camunda:historyTimeToLive="30">
     <bpmn:startEvent id="StartEvent_Configure" name="target configured" camunda:formKey="embedded:app:forms/default/configure-target.html">
       <bpmn:extensionElements>
         <camunda:executionListener delegateExpression="${checkForAutomatedRunListener}" event="start" />
@@ -45,7 +45,7 @@
     <bpmn:sequenceFlow id="SequenceFlow_AutomatedFinish" name="automated finish" sourceRef="ExclusiveGateway_AutomatedFinish" targetRef="ServiceTask_CreateSummary">
       <bpmn:conditionExpression xsi:type="bpmn:tFormalExpression">${PROCESS_AUTOMATED == true}</bpmn:conditionExpression>
     </bpmn:sequenceFlow>
-    <bpmn:serviceTask id="ServiceTask_DoScan" name="Run the scan" camunda:asyncBefore="true" camunda:type="external" camunda:topic="ssh-process">
+    <bpmn:serviceTask id="ServiceTask_DoScan" name="Run the scan" camunda:asyncBefore="true" camunda:type="external" camunda:topic="ssh_webserverscan">
       <bpmn:extensionElements />
       <bpmn:incoming>SequenceFlow_TargetConfigured</bpmn:incoming>
       <bpmn:outgoing>SequenceFlow_PortscanFinished</bpmn:outgoing>
diff --git a/scb-scanprocesses/mozilla-ssh-process/src/main/resources/forms.mozilla_ssh/approve-results.html b/scb-scanprocesses/mozilla-ssh-process/src/main/resources/forms.mozilla_ssh/approve-results.html
index 45d2b9ab..b864accb 100644
--- a/scb-scanprocesses/mozilla-ssh-process/src/main/resources/forms.mozilla_ssh/approve-results.html
+++ b/scb-scanprocesses/mozilla-ssh-process/src/main/resources/forms.mozilla_ssh/approve-results.html
@@ -54,6 +54,7 @@ <h2>SSH scan results for "{{ target.name }}"</h2>
         <div class="row">
             <div class="col-xs-12">
 
+                <div class="well well-sm"
                 <div class="well well-sm"
                      style="color: inherit;">
                     <table class="table table-striped">
@@ -93,7 +94,7 @@ <h2>SSH scan results for "{{ target.name }}"</h2>
                                        class="glyphicon glyphicon-education"></i>
                                     {{ result.severity }}
                                 </span>
-
+                                </div>
                             </td>
                             <td> {{ result.reference.id }}
                             </td>

From 8b14e090acafc4390a76b10fb22fa7b60a43ff71 Mon Sep 17 00:00:00 2001
From: Daniel Patanin <Daniel.Patanin@iteratec.de>
Date: Mon, 11 Mar 2019 12:38:35 +0100
Subject: [PATCH 03/11] minor changes

---
 Dockerfile                                                  | 1 +
 scb-engine/pom.xml                                          | 6 ++++++
 .../src/main/resources/forms/arachni/approve-results.html   | 2 +-
 3 files changed, 8 insertions(+), 1 deletion(-)

diff --git a/Dockerfile b/Dockerfile
index 4eeb0550..a7737952 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -20,6 +20,7 @@ COPY --from=builder ./scb-scanprocesses/combined-nmap-nikto-scanprocess/target/c
 COPY --from=builder ./scb-scanprocesses/sslyze-process/target/sslyze-process-0.0.1-SNAPSHOT.jar /scb-engine/lib/
 COPY --from=builder ./scb-scanprocesses/arachni-process/target/arachni-process-1.0-SNAPSHOT.jar /scb-engine/lib/
 COPY --from=builder ./scb-scanprocesses/subdomain-scanner-process/target/subdomain-scanner-process-1.0-SNAPSHOT.jar /scb-engine/lib/
+COPY --from=builder ./scb-scanprocesses/mozilla-ssh-process/target/mozilla-ssh-process-1.0-SNAPSHOT.jar /scb-engine/lib/
 
 COPY --from=builder ./scb-persistenceproviders/elasticsearch-persistenceprovider/target/elasticsearch-persistenceprovider-0.0.1-SNAPSHOT-jar-with-dependencies.jar /scb-engine/lib/
 COPY --from=builder ./scb-persistenceproviders/s3-persistenceprovider/target/s3-persistenceprovider-0.0.1-SNAPSHOT-jar-with-dependencies.jar /scb-engine/lib/
diff --git a/scb-engine/pom.xml b/scb-engine/pom.xml
index ca4e7ac8..47a3d83a 100644
--- a/scb-engine/pom.xml
+++ b/scb-engine/pom.xml
@@ -189,6 +189,12 @@
                     <version>0.0.1-SNAPSHOT</version>
                     <scope>runtime</scope>
                 </dependency>
+                <dependency>
+                    <groupId>io.securecodebox.scanprocesses</groupId>
+                    <artifactId>mozilla-ssh-process</artifactId>
+                    <version>1.0-SNAPSHOT</version>
+                    <scope>runtime</scope>
+                </dependency>
                 <dependency>
                     <groupId>io.securecodebox.persistenceproviders</groupId>
                     <artifactId>elasticsearch-persistenceprovider</artifactId>
diff --git a/scb-scanprocesses/arachni-process/src/main/resources/forms/arachni/approve-results.html b/scb-scanprocesses/arachni-process/src/main/resources/forms/arachni/approve-results.html
index b982553f..38311f4c 100644
--- a/scb-scanprocesses/arachni-process/src/main/resources/forms/arachni/approve-results.html
+++ b/scb-scanprocesses/arachni-process/src/main/resources/forms/arachni/approve-results.html
@@ -91,7 +91,7 @@ <h2>Portscan results for "{{ target.name }}"</h2>
                                        class="glyphicon glyphicon-education"></i>
                                     {{ result.severity }}
                                 </span>
-
+                                </div>
                             </td>
                             <td> {{ result.reference.id }}
                             </td>

From f7fd7c051753352655de7078782194ed2daa550f Mon Sep 17 00:00:00 2001
From: Daniel Patanin <Daniel.Patanin@iteratec.de>
Date: Mon, 18 Mar 2019 14:14:56 +0100
Subject: [PATCH 04/11] bpmn changes

---
 scb-scanprocesses/ssh-process/pom.xml         |  53 ++++
 .../scanprocess/ProcessInitConfiguration.java |  36 +++
 .../src/main/resources/META-INF/processes.xml |   0
 .../resources/bpmn/mozilla_ssh_process.bpmn   | 197 +++++++++++++++
 .../forms.mozilla_ssh/approve-results.html    | 122 +++++++++
 .../forms.mozilla_ssh/configure-target.html   | 128 ++++++++++
 .../test/MozillaSshProcessTest.java           | 231 ++++++++++++++++++
 .../src/test/resources/camunda.cfg.xml        |  14 ++
 .../src/test/resources/logback-test.xml       |  27 ++
 9 files changed, 808 insertions(+)
 create mode 100644 scb-scanprocesses/ssh-process/pom.xml
 create mode 100644 scb-scanprocesses/ssh-process/src/main/java/io/securecodebox/scanprocess/ProcessInitConfiguration.java
 create mode 100644 scb-scanprocesses/ssh-process/src/main/resources/META-INF/processes.xml
 create mode 100644 scb-scanprocesses/ssh-process/src/main/resources/bpmn/mozilla_ssh_process.bpmn
 create mode 100644 scb-scanprocesses/ssh-process/src/main/resources/forms.mozilla_ssh/approve-results.html
 create mode 100644 scb-scanprocesses/ssh-process/src/main/resources/forms.mozilla_ssh/configure-target.html
 create mode 100644 scb-scanprocesses/ssh-process/src/test/java/io/securecodebox/scanprocess/test/MozillaSshProcessTest.java
 create mode 100644 scb-scanprocesses/ssh-process/src/test/resources/camunda.cfg.xml
 create mode 100644 scb-scanprocesses/ssh-process/src/test/resources/logback-test.xml

diff --git a/scb-scanprocesses/ssh-process/pom.xml b/scb-scanprocesses/ssh-process/pom.xml
new file mode 100644
index 00000000..f8bc97da
--- /dev/null
+++ b/scb-scanprocesses/ssh-process/pom.xml
@@ -0,0 +1,53 @@
+<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+         xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
+    <modelVersion>4.0.0</modelVersion>
+
+    <parent>
+        <groupId>io.securecodebox.scanprocesses</groupId>
+        <artifactId>default-process-collection</artifactId>
+        <version>0.0.1-SNAPSHOT</version>
+    </parent>
+
+
+    <artifactId>ssh-process</artifactId>
+    <version>1.0-SNAPSHOT</version>
+
+    <dependencies>
+        <dependency>
+            <groupId>io.securecodebox.core</groupId>
+            <artifactId>sdk</artifactId>
+            <version>${project.parent.version}</version>
+        </dependency>
+
+        <!-- Test Dependencies -->
+        <dependency>
+            <groupId>com.h2database</groupId>
+            <artifactId>h2</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>org.camunda.bpm.springboot</groupId>
+            <artifactId>camunda-bpm-spring-boot-starter-test</artifactId>
+            <scope>test</scope>
+        </dependency>
+        <dependency>
+            <groupId>org.camunda.bpm.extension.mockito</groupId>
+            <artifactId>camunda-bpm-mockito</artifactId>
+            <scope>test</scope>
+        </dependency>
+        <dependency>
+            <groupId>org.camunda.bpm.extension</groupId>
+            <artifactId>camunda-bpm-assert-scenario</artifactId>
+            <scope>test</scope>
+        </dependency>
+        <dependency>
+            <groupId>org.camunda.bpm.extension</groupId>
+            <artifactId>camunda-bpm-process-test-coverage</artifactId>
+            <scope>test</scope>
+        </dependency>
+        <dependency>
+            <groupId>org.camunda.bpm.extension</groupId>
+            <artifactId>camunda-bpm-assert</artifactId>
+        </dependency>
+    </dependencies>
+
+</project>
diff --git a/scb-scanprocesses/ssh-process/src/main/java/io/securecodebox/scanprocess/ProcessInitConfiguration.java b/scb-scanprocesses/ssh-process/src/main/java/io/securecodebox/scanprocess/ProcessInitConfiguration.java
new file mode 100644
index 00000000..6912cde3
--- /dev/null
+++ b/scb-scanprocesses/ssh-process/src/main/java/io/securecodebox/scanprocess/ProcessInitConfiguration.java
@@ -0,0 +1,36 @@
+/*
+ *
+ *  SecureCodeBox (SCB)
+ *  Copyright 2015-2018 iteratec GmbH
+ *
+ *  Licensed under the Apache License, Version 2.0 (the "License");
+ *  you may not use this file except in compliance with the License.
+ *  You may obtain a copy of the License at
+ *
+ *  	http://www.apache.org/licenses/LICENSE-2.0
+ *
+ *  Unless required by applicable law or agreed to in writing, software
+ *  distributed under the License is distributed on an "AS IS" BASIS,
+ *  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ *  See the License for the specific language governing permissions and
+ *  limitations under the License.
+ * /
+ */
+
+package io.securecodebox.scanprocess;
+
+import org.springframework.context.annotation.ComponentScan;
+import org.springframework.context.annotation.Configuration;
+
+/**
+ * The secureCodeBox by default only scans for components in the package io.securecodebox.scanprocess.
+ * <p>
+ * This configuration ensures that your defined package package also gets scanned, please don't move or remove this configuration.
+ *
+ * @author Rüdiger Heins - iteratec GmbH
+ * @since 09.05.18
+ */
+@ComponentScan("io.securecodebox.scanprocesses")
+@Configuration
+public class ProcessInitConfiguration {
+}
diff --git a/scb-scanprocesses/ssh-process/src/main/resources/META-INF/processes.xml b/scb-scanprocesses/ssh-process/src/main/resources/META-INF/processes.xml
new file mode 100644
index 00000000..e69de29b
diff --git a/scb-scanprocesses/ssh-process/src/main/resources/bpmn/mozilla_ssh_process.bpmn b/scb-scanprocesses/ssh-process/src/main/resources/bpmn/mozilla_ssh_process.bpmn
new file mode 100644
index 00000000..da2b67e8
--- /dev/null
+++ b/scb-scanprocesses/ssh-process/src/main/resources/bpmn/mozilla_ssh_process.bpmn
@@ -0,0 +1,197 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<bpmn:definitions xmlns:bpmn="http://www.omg.org/spec/BPMN/20100524/MODEL" xmlns:bpmndi="http://www.omg.org/spec/BPMN/20100524/DI" xmlns:di="http://www.omg.org/spec/DD/20100524/DI" xmlns:dc="http://www.omg.org/spec/DD/20100524/DC" xmlns:camunda="http://camunda.org/schema/1.0/bpmn" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" id="Definitions_1" targetNamespace="http://bpmn.io/schema/bpmn" exporter="Camunda Modeler" exporterVersion="1.12.0">
+  <bpmn:process id="ssh-process" name="SSH Scan" isExecutable="true" camunda:versionTag="3" camunda:historyTimeToLive="30">
+    <bpmn:startEvent id="StartEvent_Configure" name="target configured" camunda:formKey="embedded:app:forms.mozilla_ssh/configure-target.html">
+      <bpmn:extensionElements>
+        <camunda:executionListener delegateExpression="${checkForAutomatedRunListener}" event="start" />
+        <camunda:formData>
+          <camunda:formField id="DEFAULT_CONTEXT" type="string" defaultValue="${propertyValueProvider.defaultContext}" />
+          <camunda:formField id="DEFAULT_TARGET_NAME" type="string" defaultValue="${propertyValueProvider.defaultTargetName}" />
+          <camunda:formField id="DEFAULT_TARGET_LOCATION" type="string" defaultValue="${propertyValueProvider.defaultTargetLocation}" />
+          <camunda:formField id="DEFAULT_TARGET_URI" type="string" defaultValue="${propertyValueProvider.defaultTargetUri}" />
+        </camunda:formData>
+      </bpmn:extensionElements>
+      <bpmn:outgoing>SequenceFlow_TargetConfigured</bpmn:outgoing>
+    </bpmn:startEvent>
+    <bpmn:sequenceFlow id="SequenceFlow_TargetConfigured" sourceRef="StartEvent_Configure" targetRef="ServiceTask_DoScan" />
+    <bpmn:endEvent id="EndEvent_FinishedPortscan" name="SSH Scan finished">
+      <bpmn:incoming>SequenceFlow_SummaryCreated</bpmn:incoming>
+    </bpmn:endEvent>
+    <bpmn:sequenceFlow id="SequenceFlow_PortscanFinished" name="finished&#10;&#10;" sourceRef="ServiceTask_DoScan" targetRef="ExclusiveGateway_AutomatedFinish" />
+    <bpmn:sequenceFlow id="SequenceFlow_ResultReviewed" name="result reviewed" sourceRef="UserTask_ApproveResults" targetRef="ExclusiveGateway_ResultApproved" />
+    <bpmn:userTask id="UserTask_ApproveResults" name="Review scan results" camunda:formKey="embedded:app:forms.mozilla_ssh/approve-results.html" camunda:candidateGroups="_securebox_admin, _securebox_productowner, _securebox_developer, approver">
+      <bpmn:extensionElements>
+        <camunda:formData />
+      </bpmn:extensionElements>
+      <bpmn:incoming>SequenceFlow_ManualFinish</bpmn:incoming>
+      <bpmn:outgoing>SequenceFlow_ResultReviewed</bpmn:outgoing>
+    </bpmn:userTask>
+    <bpmn:exclusiveGateway id="ExclusiveGateway_ResultApproved" name="Is scan result approved?">
+      <bpmn:incoming>SequenceFlow_ResultReviewed</bpmn:incoming>
+      <bpmn:outgoing>SequenceFlow_ResultApproved</bpmn:outgoing>
+      <bpmn:outgoing>SequenceFlow_ResultRejected</bpmn:outgoing>
+    </bpmn:exclusiveGateway>
+    <bpmn:sequenceFlow id="SequenceFlow_ResultApproved" name="result approved" sourceRef="ExclusiveGateway_ResultApproved" targetRef="ServiceTask_CreateSummary">
+      <bpmn:conditionExpression xsi:type="bpmn:tFormalExpression"><![CDATA[${PROCESS_RESULT_APPROVED == 'approved'}]]></bpmn:conditionExpression>
+    </bpmn:sequenceFlow>
+    <bpmn:exclusiveGateway id="ExclusiveGateway_AutomatedFinish" name="is automated run?">
+      <bpmn:incoming>SequenceFlow_PortscanFinished</bpmn:incoming>
+      <bpmn:outgoing>SequenceFlow_ManualFinish</bpmn:outgoing>
+      <bpmn:outgoing>SequenceFlow_AutomatedFinish</bpmn:outgoing>
+    </bpmn:exclusiveGateway>
+    <bpmn:sequenceFlow id="SequenceFlow_ManualFinish" name="manual finish&#10;&#10;" sourceRef="ExclusiveGateway_AutomatedFinish" targetRef="UserTask_ApproveResults">
+      <bpmn:conditionExpression xsi:type="bpmn:tFormalExpression">${PROCESS_AUTOMATED == false}</bpmn:conditionExpression>
+    </bpmn:sequenceFlow>
+    <bpmn:sequenceFlow id="SequenceFlow_AutomatedFinish" name="automated finish" sourceRef="ExclusiveGateway_AutomatedFinish" targetRef="ServiceTask_CreateSummary">
+      <bpmn:conditionExpression xsi:type="bpmn:tFormalExpression">${PROCESS_AUTOMATED == true}</bpmn:conditionExpression>
+    </bpmn:sequenceFlow>
+    <bpmn:serviceTask id="ServiceTask_DoScan" name="Run the scan" camunda:asyncBefore="true" camunda:type="external" camunda:topic="ssh_webserverscan">
+      <bpmn:extensionElements />
+      <bpmn:incoming>SequenceFlow_TargetConfigured</bpmn:incoming>
+      <bpmn:outgoing>SequenceFlow_PortscanFinished</bpmn:outgoing>
+    </bpmn:serviceTask>
+    <bpmn:sequenceFlow id="SequenceFlow_SummaryCreated" name="summary created" sourceRef="ServiceTask_CreateSummary" targetRef="EndEvent_FinishedPortscan" />
+    <bpmn:serviceTask id="ServiceTask_CreateSummary" name="Create Report Summary" camunda:asyncBefore="true" camunda:delegateExpression="${summaryGeneratorDelegate}">
+      <bpmn:extensionElements />
+      <bpmn:incoming>SequenceFlow_ResultApproved</bpmn:incoming>
+      <bpmn:incoming>SequenceFlow_1i44eck</bpmn:incoming>
+      <bpmn:incoming>SequenceFlow_AutomatedFinish</bpmn:incoming>
+      <bpmn:outgoing>SequenceFlow_SummaryCreated</bpmn:outgoing>
+    </bpmn:serviceTask>
+    <bpmn:dataObjectReference id="DataObjectReference_0vhjx0n" name="PROCESS_FINDINGS" dataObjectRef="DataObject_0lpf2y8" />
+    <bpmn:dataObject id="DataObject_0lpf2y8" />
+    <bpmn:sequenceFlow id="SequenceFlow_ResultRejected" name="result rejected" sourceRef="ExclusiveGateway_ResultApproved" targetRef="DoesNothingTask">
+      <bpmn:conditionExpression xsi:type="bpmn:tFormalExpression"><![CDATA[${PROCESS_RESULT_APPROVED == 'disapproved'}]]></bpmn:conditionExpression>
+    </bpmn:sequenceFlow>
+    <bpmn:task id="DoesNothingTask" name="Does Nothing">
+      <bpmn:incoming>SequenceFlow_ResultRejected</bpmn:incoming>
+      <bpmn:outgoing>SequenceFlow_1i44eck</bpmn:outgoing>
+    </bpmn:task>
+    <bpmn:sequenceFlow id="SequenceFlow_1i44eck" sourceRef="DoesNothingTask" targetRef="ServiceTask_CreateSummary" />
+    <bpmn:textAnnotation id="TextAnnotation_0lm3esn">
+      <bpmn:text>results in a generic format</bpmn:text>
+    </bpmn:textAnnotation>
+    <bpmn:association id="Association_16qrr9w" sourceRef="DataObjectReference_0vhjx0n" targetRef="TextAnnotation_0lm3esn" />
+  </bpmn:process>
+  <bpmndi:BPMNDiagram id="BPMNDiagram_1">
+    <bpmndi:BPMNPlane id="BPMNPlane_1" bpmnElement="ssh-process">
+      <bpmndi:BPMNShape id="_BPMNShape_StartEvent_2" bpmnElement="StartEvent_Configure">
+        <dc:Bounds x="28" y="310" width="36" height="36" />
+        <bpmndi:BPMNLabel>
+          <dc:Bounds x="4" y="356" width="83" height="13" />
+        </bpmndi:BPMNLabel>
+      </bpmndi:BPMNShape>
+      <bpmndi:BPMNEdge id="SequenceFlow_093mevy_di" bpmnElement="SequenceFlow_TargetConfigured">
+        <di:waypoint x="64" y="328" />
+        <di:waypoint x="142" y="328" />
+        <bpmndi:BPMNLabel>
+          <dc:Bounds x="58" y="303" width="90" height="20" />
+        </bpmndi:BPMNLabel>
+      </bpmndi:BPMNEdge>
+      <bpmndi:BPMNShape id="EndEvent_07weexy_di" bpmnElement="EndEvent_FinishedPortscan">
+        <dc:Bounds x="1309" y="186" width="36" height="36" />
+        <bpmndi:BPMNLabel>
+          <dc:Bounds x="1357" y="197" width="90" height="12" />
+        </bpmndi:BPMNLabel>
+      </bpmndi:BPMNShape>
+      <bpmndi:BPMNEdge id="SequenceFlow_0kjlgbs_di" bpmnElement="SequenceFlow_PortscanFinished">
+        <di:waypoint x="242" y="328" />
+        <di:waypoint x="437" y="328" />
+        <bpmndi:BPMNLabel>
+          <dc:Bounds x="316" y="420" width="38" height="37" />
+        </bpmndi:BPMNLabel>
+      </bpmndi:BPMNEdge>
+      <bpmndi:BPMNEdge id="SequenceFlow_00fmvcb_di" bpmnElement="SequenceFlow_ResultReviewed">
+        <di:waypoint x="673" y="202" />
+        <di:waypoint x="760" y="204" />
+        <bpmndi:BPMNLabel>
+          <dc:Bounds x="794" y="176" width="74" height="12" />
+        </bpmndi:BPMNLabel>
+      </bpmndi:BPMNEdge>
+      <bpmndi:BPMNShape id="UserTask_0jv6ygb_di" bpmnElement="UserTask_ApproveResults">
+        <dc:Bounds x="573" y="164" width="100" height="80" />
+      </bpmndi:BPMNShape>
+      <bpmndi:BPMNShape id="ExclusiveGateway_0ukn4uh_di" bpmnElement="ExclusiveGateway_ResultApproved" isMarkerVisible="true">
+        <dc:Bounds x="760" y="179" width="50" height="50" />
+        <bpmndi:BPMNLabel>
+          <dc:Bounds x="752" y="239" width="65" height="25" />
+        </bpmndi:BPMNLabel>
+      </bpmndi:BPMNShape>
+      <bpmndi:BPMNEdge id="SequenceFlow_0gjifhk_di" bpmnElement="SequenceFlow_ResultApproved">
+        <di:waypoint x="810" y="204" />
+        <di:waypoint x="1077" y="204" />
+        <bpmndi:BPMNLabel>
+          <dc:Bounds x="999" y="150" width="76" height="13" />
+        </bpmndi:BPMNLabel>
+      </bpmndi:BPMNEdge>
+      <bpmndi:BPMNShape id="ExclusiveGateway_1bzno3f_di" bpmnElement="ExclusiveGateway_AutomatedFinish" isMarkerVisible="true">
+        <dc:Bounds x="437" y="303" width="50" height="50" />
+        <bpmndi:BPMNLabel>
+          <dc:Bounds x="497" y="322" width="89" height="12" />
+        </bpmndi:BPMNLabel>
+      </bpmndi:BPMNShape>
+      <bpmndi:BPMNEdge id="SequenceFlow_17bwrf0_di" bpmnElement="SequenceFlow_ManualFinish">
+        <di:waypoint x="462" y="303" />
+        <di:waypoint x="462" y="204" />
+        <di:waypoint x="573" y="204" />
+        <bpmndi:BPMNLabel>
+          <dc:Bounds x="379" y="246" width="65" height="37" />
+        </bpmndi:BPMNLabel>
+      </bpmndi:BPMNEdge>
+      <bpmndi:BPMNEdge id="SequenceFlow_0s3limw_di" bpmnElement="SequenceFlow_AutomatedFinish">
+        <di:waypoint x="462" y="353" />
+        <di:waypoint x="462" y="456" />
+        <di:waypoint x="1127" y="456" />
+        <di:waypoint x="1127" y="244" />
+        <bpmndi:BPMNLabel>
+          <dc:Bounds x="803" y="503" width="81" height="12" />
+        </bpmndi:BPMNLabel>
+      </bpmndi:BPMNEdge>
+      <bpmndi:BPMNShape id="ServiceTask_0pps66n_di" bpmnElement="ServiceTask_DoScan">
+        <dc:Bounds x="142" y="288" width="100" height="80" />
+      </bpmndi:BPMNShape>
+      <bpmndi:BPMNEdge id="SequenceFlow_150f8k2_di" bpmnElement="SequenceFlow_SummaryCreated">
+        <di:waypoint x="1177" y="204" />
+        <di:waypoint x="1309" y="204" />
+        <bpmndi:BPMNLabel>
+          <dc:Bounds x="1187" y="209" width="85" height="13" />
+        </bpmndi:BPMNLabel>
+      </bpmndi:BPMNEdge>
+      <bpmndi:BPMNShape id="ServiceTask_1foo790_di" bpmnElement="ServiceTask_CreateSummary">
+        <dc:Bounds x="1077" y="164" width="100" height="80" />
+      </bpmndi:BPMNShape>
+      <bpmndi:BPMNShape id="DataObjectReference_0vhjx0n_di" bpmnElement="DataObjectReference_0vhjx0n">
+        <dc:Bounds x="288" y="360" width="36" height="50" />
+        <bpmndi:BPMNLabel>
+          <dc:Bounds x="263" y="331" width="86" height="25" />
+        </bpmndi:BPMNLabel>
+      </bpmndi:BPMNShape>
+      <bpmndi:BPMNShape id="TextAnnotation_0lm3esn_di" bpmnElement="TextAnnotation_0lm3esn">
+        <dc:Bounds x="379" y="420" width="102" height="50" />
+      </bpmndi:BPMNShape>
+      <bpmndi:BPMNEdge id="Association_16qrr9w_di" bpmnElement="Association_16qrr9w">
+        <di:waypoint x="324" y="394" />
+        <di:waypoint x="379" y="420" />
+      </bpmndi:BPMNEdge>
+      <bpmndi:BPMNEdge id="SequenceFlow_1z0e6c0_di" bpmnElement="SequenceFlow_ResultRejected">
+        <di:waypoint x="785" y="179" />
+        <di:waypoint x="785" y="65" />
+        <di:waypoint x="995" y="65" />
+        <bpmndi:BPMNLabel>
+          <dc:Bounds x="849" y="96" width="70" height="13" />
+        </bpmndi:BPMNLabel>
+      </bpmndi:BPMNEdge>
+      <bpmndi:BPMNShape id="Task_1691u70_di" bpmnElement="DoesNothingTask">
+        <dc:Bounds x="995" y="25" width="100" height="80" />
+      </bpmndi:BPMNShape>
+      <bpmndi:BPMNEdge id="SequenceFlow_1i44eck_di" bpmnElement="SequenceFlow_1i44eck">
+        <di:waypoint x="1095" y="65" />
+        <di:waypoint x="1127" y="65" />
+        <di:waypoint x="1127" y="164" />
+        <bpmndi:BPMNLabel>
+          <dc:Bounds x="1066" y="43.5" width="90" height="13" />
+        </bpmndi:BPMNLabel>
+      </bpmndi:BPMNEdge>
+    </bpmndi:BPMNPlane>
+  </bpmndi:BPMNDiagram>
+</bpmn:definitions>
diff --git a/scb-scanprocesses/ssh-process/src/main/resources/forms.mozilla_ssh/approve-results.html b/scb-scanprocesses/ssh-process/src/main/resources/forms.mozilla_ssh/approve-results.html
new file mode 100644
index 00000000..c58e7ed2
--- /dev/null
+++ b/scb-scanprocesses/ssh-process/src/main/resources/forms.mozilla_ssh/approve-results.html
@@ -0,0 +1,122 @@
+<!--
+  ~ /*
+  ~ * SecureCodeBox (SCB)
+  ~ * Copyright 2015-2018 iteratec GmbH
+  ~ *
+  ~ * Licensed under the Apache License, Version 2.0 (the "License");
+  ~ * you may not use this file except in compliance with the License.
+  ~ * You may obtain a copy of the License at
+  ~ *
+  ~ * 	http://www.apache.org/licenses/LICENSE-2.0
+  ~ *
+  ~ * Unless required by applicable law or agreed to in writing, software
+  ~ * distributed under the License is distributed on an "AS IS" BASIS,
+  ~ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  ~ * See the License for the specific language governing permissions and
+  ~ * limitations under the License.
+  ~ */
+  -->
+
+<form role="form" name="configure-reporting">
+
+    <script cam-script type="text/form-script">
+        camForm.on('form-loaded', function () {
+
+            camForm.variableManager.fetchVariable('PROCESS_CONTEXT');
+            camForm.variableManager.fetchVariable('PROCESS_TARGETS');
+            camForm.variableManager.fetchVariable('PROCESS_FINDINGS');
+            camForm.variableManager.fetchVariable('PROCESS_SCANNER_ID');
+        });
+
+        camForm.on('variables-restored', function () {
+            $scope.context = camForm.variableManager.variableValue('PROCESS_CONTEXT');
+
+            $scope.scannerId = camForm.variableManager.variableValue('PROCESS_SCANNER_ID');
+            $scope.scannerResult = JSON.parse(camForm.variableManager.variableValue('PROCESS_FINDINGS'));
+            $scope.scannerTargets = JSON.parse(camForm.variableManager.variableValue('PROCESS_TARGETS'));
+        });
+    </script>
+    <div ng-repeat="target in scannerTargets">
+        <h2>SSH scan results for "{{ target.name }}"</h2>
+
+        <div class="row">
+            <div class="col-xs-2"><label>Scanner Id:</label></div>
+            <div class="col-xs-10">{{ scannerId }}</div>
+        </div>
+        <div class="row">
+            <div class="col-xs-2"><label>Target Location:</label></div>
+            <div class="col-xs-10">{{ target.location }}</div>
+        </div>
+        <div class="row">
+            <div class="col-xs-2"><label>Business Context:</label></div>
+            <div class="col-xs-10">{{ context }}</div>
+        </div>
+        <blockquote>Scanner Results "{{ $scope.scannerResult }}"</blockquote>
+        <div class="row">
+            <div class="col-xs-12">
+                <div class="well well-sm"
+                     style="color: inherit;">
+                    <table class="table table-striped">
+                        <tr>
+                            <th>Host:</th>
+                            <th>Name:</th>
+                            <th>Category:</th>
+                            <th>Severity:</th>
+                            <th>Reference:</th>
+                        </tr>
+                        <tr class="danger" ng-repeat="result in scannerResult">
+                            <td>{{ result.location }}</td>
+                            <td>{{ result.name }}</td>
+                            <td>{{ result.category }}</td>
+                            <td>
+                                <div ng-switch on="result.severity">
+                                <span class="label label-danger" ng-switch-when="HIGH">
+                                    <i aria-hidden="true"
+                                       class="glyphicon glyphicon-fire"></i>
+                                    {{ result.severity }}
+                                </span>
+
+                                    <span class="label label-warning" ng-switch-when="MEDIUM">
+                                    <i aria-hidden="true"
+                                       class="glyphicon glyphicon glyphicon-alert"></i>
+                                    {{ result.severity }}
+                                </span>
+
+                                    <span class="label label-primary" ng-switch-when="LOW">
+                                    <i aria-hidden="true"
+                                       class="glyphicon glyphicon-warning-sign"></i>
+                                    {{ result.severity }}
+                                </span>
+
+                                    <span class="label label-default" ng-switch-default>
+                                    <i aria-hidden="true"
+                                       class="glyphicon glyphicon-education"></i>
+                                    {{ result.severity }}
+                                </span>
+                                </div>
+                            </td>
+                            <td> {{ result.reference.id }}
+                            </td>
+                        </tr>
+                    </table>
+                </div>
+            </div>
+        </div>
+    </div>
+    <h2>Approve Result</h2>
+    <!-- reporting configuration -->
+    <div class="form-group">
+        <label for="selectResultApproved">Approve Result</label>
+        <div id="selectResultApproved" class="controls">
+            <!--select box -->
+            <select required
+                    class="form-control"
+                    name="resultApproved"
+                    cam-variable-name="PROCESS_RESULT_APPROVED"
+                    cam-variable-type="String">
+                <option value="approved" checked>Approved (finished)</option>
+                <option value="disapproved">Not Approved (finished)</option>
+            </select>
+        </div>
+    </div>
+</form>
diff --git a/scb-scanprocesses/ssh-process/src/main/resources/forms.mozilla_ssh/configure-target.html b/scb-scanprocesses/ssh-process/src/main/resources/forms.mozilla_ssh/configure-target.html
new file mode 100644
index 00000000..0dd40bed
--- /dev/null
+++ b/scb-scanprocesses/ssh-process/src/main/resources/forms.mozilla_ssh/configure-target.html
@@ -0,0 +1,128 @@
+<!--
+  ~ /*
+  ~ * SecureCodeBox (SCB)
+  ~ * Copyright 2015-2018 iteratec GmbH
+  ~ *
+  ~ * Licensed under the Apache License, Version 2.0 (the "License");
+  ~ * you may not use this file except in compliance with the License.
+  ~ * You may obtain a copy of the License at
+  ~ *
+  ~ * 	http://www.apache.org/licenses/LICENSE-2.0
+  ~ *
+  ~ * Unless required by applicable law or agreed to in writing, software
+  ~ * distributed under the License is distributed on an "AS IS" BASIS,
+  ~ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  ~ * See the License for the specific language governing permissions and
+  ~ * limitations under the License.
+  ~ */
+  -->
+
+<h2>Please configure the SSH Scan</h2>
+
+<form role="form" name="configure-target">
+
+    <script cam-script type="text/form-script">
+        camForm.on('form-loaded', function () {
+            camForm.variableManager.fetchVariable('DEFAULT_CONTEXT');
+            camForm.variableManager.fetchVariable('DEFAULT_TARGET_NAME');
+            camForm.variableManager.fetchVariable('DEFAULT_TARGET_LOCATION');
+            camForm.variableManager.fetchVariable('DEFAULT_TARGET_URI');
+        });
+
+        camForm.on('variables-fetched', function () {
+            $scope.context = camForm.variableManager.variableValue('DEFAULT_CONTEXT');
+
+            $scope.targetList = [{
+                name: camForm.variableManager.variableValue('DEFAULT_TARGET_NAME'),
+                location: camForm.variableManager.variableValue('DEFAULT_TARGET_LOCATION')
+            }];
+
+            $scope.addTarget = function () {
+                $scope.targetList.push({'name':'', 'location': ''});
+            };
+
+            $scope.checkForEnter = function ($event) {
+                if ($event.key === 'Enter') {
+                    $scope.addTarget();
+                    $event.stopPropagation();
+                    $event.preventDefault();
+                }
+            };
+        });
+
+        camForm.on('submit', function () {
+            camForm.variableManager.destroyVariable('PROCESS_TARGETS');
+            camForm.variableManager.createVariable({
+                name: 'PROCESS_TARGETS',
+                type: 'Object',
+                value: JSON.stringify($scope.targetList),
+                valueInfo: {
+                    serializationDataFormat: 'application/json',
+                    objectTypeName: 'java.lang.String'
+                }
+            });
+        });
+
+    </script>
+
+    <div class="row">
+
+        <div class="col-xs-12">
+            <h3>SSH scan Target</h3>
+
+            <!-- Target Hosts -->
+            <div class="form-group">
+                <div class="controls row form-group" ng-repeat="target in targetList track by $index">
+                    <div class="col-xs-5">
+                        <label>Target Name</label>
+                        <input required class="form-control"
+                               type="text"
+                               placeholder="Public Site Name"
+                               ng-minlength="2"
+                               ng-maxlength="30"
+                               ng-model="target.name"/>
+                    </div>
+                    <div class="col-xs-6">
+                        <label>Target Hosts</label>
+                        <input required class="form-control"
+                               type="text"
+                               placeholder="Hostname/IP address"
+                               ng-minlength="3"
+                               ng-maxlength="100"
+                               ng-model="target.location"
+                               ng-keydown="checkForEnter($event)"
+                        />
+                    </div>
+                    <div class="col-xs-1">
+                        <button class="btn btn-danger btn-lg"
+                                ng-click="targetList.splice($index, 1)"
+                                ng-disabled="targetList.length === 1"
+                                style="position: absolute; right: 15px; top: 0;">
+                            <span class="glyphicon glyphicon-trash"></span>
+                        </button>
+                    </div>
+                </div>
+                <button class="btn btn-primary" ng-click="addTarget()">Add Host</button>
+                <code class="hidden">{{ targetList }}</code>
+            </div>
+
+            <!-- Context (Project/Team/System...) -->
+            <div class="form-group">
+                <label for="inputContext">Business Context (Project/Team/System)</label>
+                <div class="controls">
+                    <input class="form-control"
+                           id="inputContext"
+                           cam-variable-type="String"
+                           cam-variable-name="PROCESS_CONTEXT"
+                           type="text"
+                           placeholder="Project/Team/System"
+                           ng-required="false"
+                           ng-maxlength="50"
+                           ng-model="context"
+                           name="context" />
+                </div>
+            </div>
+
+        </div>
+    </div>
+</form>
diff --git a/scb-scanprocesses/ssh-process/src/test/java/io/securecodebox/scanprocess/test/MozillaSshProcessTest.java b/scb-scanprocesses/ssh-process/src/test/java/io/securecodebox/scanprocess/test/MozillaSshProcessTest.java
new file mode 100644
index 00000000..b95f3145
--- /dev/null
+++ b/scb-scanprocesses/ssh-process/src/test/java/io/securecodebox/scanprocess/test/MozillaSshProcessTest.java
@@ -0,0 +1,231 @@
+/*
+ *
+ *  SecureCodeBox (SCB)
+ *  Copyright 2015-2018 iteratec GmbH
+ *
+ *  Licensed under the Apache License, Version 2.0 (the "License");
+ *  you may not use this file except in compliance with the License.
+ *  You may obtain a copy of the License at
+ *
+ *  	http://www.apache.org/licenses/LICENSE-2.0
+ *
+ *  Unless required by applicable law or agreed to in writing, software
+ *  distributed under the License is distributed on an "AS IS" BASIS,
+ *  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ *  See the License for the specific language governing permissions and
+ *  limitations under the License.
+ * /
+ */
+
+package io.securecodebox.scanprocess.test;
+
+import io.securecodebox.constants.DefaultFields;
+import io.securecodebox.scanprocess.delegate.SummaryGeneratorDelegate;
+import org.camunda.bpm.engine.ExternalTaskService;
+import org.camunda.bpm.engine.delegate.DelegateTask;
+import org.camunda.bpm.engine.delegate.Expression;
+import org.camunda.bpm.engine.delegate.TaskListener;
+import org.camunda.bpm.engine.externaltask.LockedExternalTask;
+import org.camunda.bpm.engine.runtime.ProcessInstance;
+import org.camunda.bpm.engine.test.Deployment;
+import org.camunda.bpm.engine.test.ProcessEngineRule;
+import org.camunda.bpm.engine.test.mock.Mocks;
+import org.camunda.bpm.extension.process_test_coverage.junit.rules.TestCoverageProcessEngineRuleBuilder;
+import org.camunda.bpm.scenario.ProcessScenario;
+import org.camunda.bpm.scenario.Scenario;
+import org.camunda.bpm.scenario.delegate.ExternalTaskDelegate;
+import org.camunda.bpm.scenario.delegate.TaskDelegate;
+import org.junit.Before;
+import org.junit.ClassRule;
+import org.junit.Ignore;
+import org.junit.Rule;
+import org.junit.Test;
+import org.junit.runner.RunWith;
+import org.mockito.Mock;
+import org.mockito.Mockito;
+import org.mockito.MockitoAnnotations;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
+
+import java.util.HashMap;
+import java.util.List;
+import java.util.Map;
+
+import static org.camunda.bpm.engine.test.assertions.ProcessEngineTests.*;
+import static org.camunda.bpm.extension.mockito.CamundaMockito.autoMock;
+import static org.mockito.Mockito.when;
+
+/**
+ * This class tests the process execution of the Default-Process BPMN Model
+ * It verifies that each process task is called when it's supposed to be and
+ * delegation code is executed at the right time
+ * <p>
+ * The tests run in an own Camunda engine which is defined by the camunda.cfg.xml in the resources directory
+ * <p>
+ * The test cases use Camunda BPM's standard framework as well as the
+ * Camunda BPM Assert extension (<a href="https://github.com/camunda/camunda-bpm-assert")/>),
+ * camunda-bpm-mockito (<a href="https://github.com/camunda/camunda-bpm-mockito"/>)
+ * and the Camunda BPM Assert Scenario extension (<a href="https://github.com/camunda/camunda-bpm-assert-scenario"/>)
+ * <p>
+ * Furthermore this class also uses the Camunda BPM Process Test Coverage extension
+ * (<a href="https://github.com/camunda/camunda-bpm-process-test-coverage"/>).
+ * After the test is run we can examine the test coverage in the directory target/process-test-coverage
+ */
+
+@RunWith(SpringJUnit4ClassRunner.class)
+@Deployment(resources = "bpmn/mozilla_ssh_process.bpmn")
+
+@Ignore("Ignored until problems with camunda testing frameworks are handled. Introduces via update to camunda 7.10")
+public class MozillaSshProcessTest {
+
+    //Define the Process Activity IDs
+    private static final String PROCESS_ID = "ssh-process";
+    private static final String DO_SCAN_TASK_ID = "ServiceTask_DoScan";
+    private static final String CREATE_REPORT_TASK_ID = "ServiceTask_CreateSummary";
+    private static final String APPROVE_RESULTS_TASK_ID = "UserTask_ApproveResults";
+
+    private final Map<String, Object> defaultVariables = new HashMap<>();
+
+    @Rule
+    @ClassRule
+    public static ProcessEngineRule processEngineRule = TestCoverageProcessEngineRuleBuilder.create().build();
+
+    @Mock
+    private ProcessScenario process;
+
+    @Mock
+    SummaryGeneratorDelegate delegate;
+
+    /**
+     * Executed before every test-case
+     * In this method default variables for the process and a default behaviour for the mocks
+     * in the process are defined+
+     */
+    @Before
+    public void init() {
+
+        MockitoAnnotations.initMocks(this);
+
+        //Creating a map of default variables for the process
+        defaultVariables.put(DefaultFields.PROCESS_AUTOMATED.name(), true);
+        defaultVariables.put(DefaultFields.PROCESS_CONTEXT.name(), "BodgeIT");
+
+        /*
+        Mocking everything in the BPMN Model
+        This includes ExecutionListeners, TaskListeners, JavaDelegates, etc.
+        Simply stated: Everything, that's executable code
+
+        If you need to define custom behaviour for the Mocks you can do so by
+        registering Mocks with Camunda's method "Mocks.register(String key, Object value)".
+        Here the key describes a delegateExpression (as defined in BPMN model) and the value
+        describes the implementation of the code which should be executed
+        (Hint: You can put the real implementation as well as a fake one in there)
+
+        Note: Most of the mocking methods seem to work only in combination with delegateExpressions
+        but not with class definitions as delegate implementation.
+
+        If you have the path to your executable code (the class for delegate) as delegate implementation
+        then this guide is helpful:
+        https://blog.akquinet.de/2016/11/04/camunda-bpm-test-your-processes-based-on-plain-old-java-delegates/
+         */
+        autoMock("bpmn/mozilla_ssh_process.bpmn");
+
+        /*
+        Here we define a default behaviour for all the tasks in the BPMN model.
+        This behaviour can easily be overridden in test cases.
+
+        The code inside the "thenReturn(...)" method specifies what should happen when process execution
+        waits at the given task
+        As a default behaviour we just complete the task and move on to the next one without changing anything
+
+        Note that we have our own mock implementation in the last two when(...) statements.
+        This is because these tasks are external tasks which cannot be as easily completed as
+        ServiceTasks. They need an external worker to do so.
+         */
+        when(process.waitsAtUserTask(Mockito.anyString())).thenReturn(TaskDelegate::complete);
+        when(process.waitsAtServiceTask(Mockito.anyString())).thenReturn(ExternalTaskDelegate::complete);
+        when(process.waitsAtServiceTask(DO_SCAN_TASK_ID)).thenReturn(task -> startExternalMockProcess("ssh-process"));
+    }
+
+    @Test
+    public void testAutomatedStart_shouldPass() {
+
+        ProcessInstance processInstance = runtimeService().startProcessInstanceByKey(PROCESS_ID, defaultVariables);
+
+        assertThat(processInstance).isStarted();
+    }
+
+    @Test
+    public void testManualStartWithDefaultConfiguration_shouldPass() {
+        ProcessInstance processInstance = runtimeService().startProcessInstanceByKey(PROCESS_ID, defaultVariables);
+
+        assertThat(processInstance).isStarted();
+        assertThat(processInstance).isWaitingAt(DO_SCAN_TASK_ID);
+    }
+
+    @Test
+    public void testManualRunWithApprovedTestResults() {
+
+        Map<String, Object> variables = new HashMap<>(defaultVariables);
+        changeVariable(variables, DefaultFields.PROCESS_AUTOMATED.name(), false);
+
+        when(process.waitsAtUserTask(APPROVE_RESULTS_TASK_ID)).thenReturn(task -> {
+            variables.put(DefaultFields.PROCESS_RESULT_APPROVED.name(), "approved");
+            task.complete(variables);
+        });
+
+            /*
+            Here we register a custom mock.
+            The BPMN model TaskListener takes an injected field variable which cannot be mocked.
+            Therefore we create our own TaskListener with a dummy implementation and which also
+            holds the variable, that should be injected.
+            Then we register our TaskListener with "Mocks.register(...)" and it gets executed when the delegateExpression
+            is called.
+             */
+        Mocks.register("setFormUrlListener", new TaskListener() {
+
+            @Autowired
+            private Expression scanner_type;
+
+            @Override
+            public void notify(DelegateTask delegateTask) {
+            }
+        });
+
+        Scenario scenario = Scenario.run(process).startByKey(PROCESS_ID, variables).execute();
+
+        assertThat(scenario.instance(process)).isEnded();
+        assertThat(scenario.instance(process)).hasPassed(APPROVE_RESULTS_TASK_ID);
+        assertThat(scenario.instance(process)).variables()
+                .containsEntry(DefaultFields.PROCESS_RESULT_APPROVED.name(), "approved");
+    }
+
+    /**
+     * Executes an external process without doing anything in the task.
+     * In the first step the job is executed on the Camunda engine. Therefore the token for the
+     * provided topic gets pushed. Then an external service is called to pull the token and execute the task
+     *
+     * @param topic the topic for the external task
+     */
+    private void startExternalMockProcess(String topic) {
+
+        ExternalTaskService externalTaskService = processEngine().getExternalTaskService();
+        List<LockedExternalTask> lockedExternalTasks = externalTaskService.fetchAndLock(1, "worker")
+                .topic(topic, 5000L)
+                .execute();
+
+        assertThat(lockedExternalTasks.size()).isEqualTo(1);
+
+        LockedExternalTask task = lockedExternalTasks.get(0);
+        externalTaskService.complete(task.getId(), "worker");
+    }
+
+    private void changeVariable(Map<String, Object> variables, String key, Object value) {
+
+        if (variables.containsKey(key)) {
+            variables.remove(key);
+        }
+        variables.put(key, value);
+    }
+
+}
diff --git a/scb-scanprocesses/ssh-process/src/test/resources/camunda.cfg.xml b/scb-scanprocesses/ssh-process/src/test/resources/camunda.cfg.xml
new file mode 100644
index 00000000..d5e7d6f9
--- /dev/null
+++ b/scb-scanprocesses/ssh-process/src/test/resources/camunda.cfg.xml
@@ -0,0 +1,14 @@
+<?xml version="1.0" encoding="UTF-8"?>
+
+<beans xmlns="http://www.springframework.org/schema/beans"
+       xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+       xsi:schemaLocation="http://www.springframework.org/schema/beans   http://www.springframework.org/schema/beans/spring-beans.xsd">
+
+    <!-- uses an h2 in-memory database for test execution -->
+    <bean id="processEngineConfiguration" class="org.camunda.bpm.extension.process_test_coverage.junit.rules.ProcessCoverageInMemProcessEngineConfiguration">
+
+        <!-- This property ensures that the JobExecutor isn't started and therefore
+             asynchronous tasks need to be called explicitly to run-->
+        <property name="jobExecutorActivate" value="false" />
+    </bean>
+</beans>
\ No newline at end of file
diff --git a/scb-scanprocesses/ssh-process/src/test/resources/logback-test.xml b/scb-scanprocesses/ssh-process/src/test/resources/logback-test.xml
new file mode 100644
index 00000000..81dcdbcd
--- /dev/null
+++ b/scb-scanprocesses/ssh-process/src/test/resources/logback-test.xml
@@ -0,0 +1,27 @@
+<!--
+  ~ /*
+  ~ * SecureCodeBox (SCB)
+  ~ * Copyright 2015-2018 iteratec GmbH
+  ~ *
+  ~ * Licensed under the Apache License, Version 2.0 (the "License");
+  ~ * you may not use this file except in compliance with the License.
+  ~ * You may obtain a copy of the License at
+  ~ *
+  ~ * 	http://www.apache.org/licenses/LICENSE-2.0
+  ~ *
+  ~ * Unless required by applicable law or agreed to in writing, software
+  ~ * distributed under the License is distributed on an "AS IS" BASIS,
+  ~ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  ~ * See the License for the specific language governing permissions and
+  ~ * limitations under the License.
+  ~ */
+  -->
+
+<configuration debug="true">
+    <include resource="org/springframework/boot/logging/logback/base.xml" />
+
+
+    <root level="INFO">
+        <appender-ref ref="STDOUT" />
+    </root>
+</configuration>

From ae5fd6138f5405e5d74b0276225b385ad6c94257 Mon Sep 17 00:00:00 2001
From: Daniel Patanin <Daniel.Patanin@iteratec.de>
Date: Wed, 20 Mar 2019 12:57:42 +0100
Subject: [PATCH 05/11] Test commit

---
 Dockerfile                                    |   2 +-
 scb-engine/pom.xml                            |   2 +-
 .../src/main/resources/application-dev.yaml   |   2 +
 .../main/resources/bpmn/default_process.bpmn  |   2 +-
 scb-scanprocesses/mozilla-ssh-process/pom.xml |  53 ----
 .../scanprocess/ProcessInitConfiguration.java |  36 ---
 .../src/main/resources/META-INF/processes.xml |   0
 .../resources/bpmn/mozilla_ssh_process.bpmn   | 197 ---------------
 .../forms.mozilla_ssh/approve-results.html    | 124 ----------
 .../test/MozillaSshProcessTest.java           | 231 ------------------
 .../src/test/resources/camunda.cfg.xml        |  14 --
 .../src/test/resources/logback-test.xml       |  27 --
 scb-scanprocesses/pom.xml                     |   2 +-
 scb-scanprocesses/ssh-process/pom.xml         |   2 +-
 .../resources/bpmn/mozilla_ssh_process.bpmn   |   4 +-
 .../forms.mozilla_ssh/configure-target.html   | 128 ----------
 .../approve-results.html                      |   0
 .../forms.ssh}/configure-target.html          |   0
 .../delegate/SummaryGeneratorDelegate.java    |   1 -
 19 files changed, 9 insertions(+), 818 deletions(-)
 delete mode 100644 scb-scanprocesses/mozilla-ssh-process/pom.xml
 delete mode 100644 scb-scanprocesses/mozilla-ssh-process/src/main/java/io/securecodebox/scanprocess/ProcessInitConfiguration.java
 delete mode 100644 scb-scanprocesses/mozilla-ssh-process/src/main/resources/META-INF/processes.xml
 delete mode 100644 scb-scanprocesses/mozilla-ssh-process/src/main/resources/bpmn/mozilla_ssh_process.bpmn
 delete mode 100644 scb-scanprocesses/mozilla-ssh-process/src/main/resources/forms.mozilla_ssh/approve-results.html
 delete mode 100644 scb-scanprocesses/mozilla-ssh-process/src/test/java/io/securecodebox/scanprocess/test/MozillaSshProcessTest.java
 delete mode 100644 scb-scanprocesses/mozilla-ssh-process/src/test/resources/camunda.cfg.xml
 delete mode 100644 scb-scanprocesses/mozilla-ssh-process/src/test/resources/logback-test.xml
 delete mode 100644 scb-scanprocesses/ssh-process/src/main/resources/forms.mozilla_ssh/configure-target.html
 rename scb-scanprocesses/ssh-process/src/main/resources/{forms.mozilla_ssh => forms.ssh}/approve-results.html (100%)
 rename scb-scanprocesses/{mozilla-ssh-process/src/main/resources/forms.mozilla_ssh => ssh-process/src/main/resources/forms.ssh}/configure-target.html (100%)

diff --git a/Dockerfile b/Dockerfile
index a7737952..23ac0f3e 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -20,7 +20,7 @@ COPY --from=builder ./scb-scanprocesses/combined-nmap-nikto-scanprocess/target/c
 COPY --from=builder ./scb-scanprocesses/sslyze-process/target/sslyze-process-0.0.1-SNAPSHOT.jar /scb-engine/lib/
 COPY --from=builder ./scb-scanprocesses/arachni-process/target/arachni-process-1.0-SNAPSHOT.jar /scb-engine/lib/
 COPY --from=builder ./scb-scanprocesses/subdomain-scanner-process/target/subdomain-scanner-process-1.0-SNAPSHOT.jar /scb-engine/lib/
-COPY --from=builder ./scb-scanprocesses/mozilla-ssh-process/target/mozilla-ssh-process-1.0-SNAPSHOT.jar /scb-engine/lib/
+COPY --from=builder ./scb-scanprocesses/ssh-process/target/ssh-process-1.0-SNAPSHOT.jar /scb-engine/lib/
 
 COPY --from=builder ./scb-persistenceproviders/elasticsearch-persistenceprovider/target/elasticsearch-persistenceprovider-0.0.1-SNAPSHOT-jar-with-dependencies.jar /scb-engine/lib/
 COPY --from=builder ./scb-persistenceproviders/s3-persistenceprovider/target/s3-persistenceprovider-0.0.1-SNAPSHOT-jar-with-dependencies.jar /scb-engine/lib/
diff --git a/scb-engine/pom.xml b/scb-engine/pom.xml
index 7205d6e9..546dd88a 100644
--- a/scb-engine/pom.xml
+++ b/scb-engine/pom.xml
@@ -191,7 +191,7 @@
                 </dependency>
                 <dependency>
                     <groupId>io.securecodebox.scanprocesses</groupId>
-                    <artifactId>mozilla-ssh-process</artifactId>
+                    <artifactId>ssh-process</artifactId>
                     <version>1.0-SNAPSHOT</version>
                     <scope>runtime</scope>
                 </dependency>
diff --git a/scb-engine/src/main/resources/application-dev.yaml b/scb-engine/src/main/resources/application-dev.yaml
index ee8d05b0..f8651eb1 100644
--- a/scb-engine/src/main/resources/application-dev.yaml
+++ b/scb-engine/src/main/resources/application-dev.yaml
@@ -12,3 +12,5 @@ logging.level.io.securecodebox: DEBUG
 securecodebox.rest.user.scanner-default:
   user-id: defaultScanner
   password: scan
+
+securecodebox.persistence.elasticsearch.enabled: "true"
\ No newline at end of file
diff --git a/scb-scanprocesses/archetype-process/src/main/resources/archetype-resources/src/main/resources/bpmn/default_process.bpmn b/scb-scanprocesses/archetype-process/src/main/resources/archetype-resources/src/main/resources/bpmn/default_process.bpmn
index 6d2bc2e5..ca93f4aa 100644
--- a/scb-scanprocesses/archetype-process/src/main/resources/archetype-resources/src/main/resources/bpmn/default_process.bpmn
+++ b/scb-scanprocesses/archetype-process/src/main/resources/archetype-resources/src/main/resources/bpmn/default_process.bpmn
@@ -51,7 +51,7 @@
       <bpmn:outgoing>SequenceFlow_PortscanFinished</bpmn:outgoing>
     </bpmn:serviceTask>
     <bpmn:sequenceFlow id="SequenceFlow_SummaryCreated" name="summary created" sourceRef="ServiceTask_CreateSummary" targetRef="EndEvent_FinishedPortscan" />
-    <bpmn:serviceTask id="ServiceTask_CreateSummary" name="Create Report Summary" camunda:asyncBefore="true" camunda:delegateExpression="${dollar}{${component}_SummaryGeneratorDelegate}">
+    <bpmn:serviceTask id="ServiceTask_CreateSummary" name="Create Report Summary" camunda:asyncBefore="true" camunda:delegateExpression="${dollar}{${summaryGeneratorDelegate}">
       <bpmn:extensionElements />
       <bpmn:incoming>SequenceFlow_ResultApproved</bpmn:incoming>
       <bpmn:incoming>SequenceFlow_1i44eck</bpmn:incoming>
diff --git a/scb-scanprocesses/mozilla-ssh-process/pom.xml b/scb-scanprocesses/mozilla-ssh-process/pom.xml
deleted file mode 100644
index bbeee5c0..00000000
--- a/scb-scanprocesses/mozilla-ssh-process/pom.xml
+++ /dev/null
@@ -1,53 +0,0 @@
-<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
-         xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
-    <modelVersion>4.0.0</modelVersion>
-
-    <parent>
-        <groupId>io.securecodebox.scanprocesses</groupId>
-        <artifactId>default-process-collection</artifactId>
-        <version>0.0.1-SNAPSHOT</version>
-    </parent>
-
-
-    <artifactId>mozilla-ssh-process</artifactId>
-    <version>1.0-SNAPSHOT</version>
-
-    <dependencies>
-        <dependency>
-            <groupId>io.securecodebox.core</groupId>
-            <artifactId>sdk</artifactId>
-            <version>${project.parent.version}</version>
-        </dependency>
-
-        <!-- Test Dependencies -->
-        <dependency>
-            <groupId>com.h2database</groupId>
-            <artifactId>h2</artifactId>
-        </dependency>
-        <dependency>
-            <groupId>org.camunda.bpm.springboot</groupId>
-            <artifactId>camunda-bpm-spring-boot-starter-test</artifactId>
-            <scope>test</scope>
-        </dependency>
-        <dependency>
-            <groupId>org.camunda.bpm.extension.mockito</groupId>
-            <artifactId>camunda-bpm-mockito</artifactId>
-            <scope>test</scope>
-        </dependency>
-        <dependency>
-            <groupId>org.camunda.bpm.extension</groupId>
-            <artifactId>camunda-bpm-assert-scenario</artifactId>
-            <scope>test</scope>
-        </dependency>
-        <dependency>
-            <groupId>org.camunda.bpm.extension</groupId>
-            <artifactId>camunda-bpm-process-test-coverage</artifactId>
-            <scope>test</scope>
-        </dependency>
-        <dependency>
-            <groupId>org.camunda.bpm.extension</groupId>
-            <artifactId>camunda-bpm-assert</artifactId>
-        </dependency>
-    </dependencies>
-
-</project>
diff --git a/scb-scanprocesses/mozilla-ssh-process/src/main/java/io/securecodebox/scanprocess/ProcessInitConfiguration.java b/scb-scanprocesses/mozilla-ssh-process/src/main/java/io/securecodebox/scanprocess/ProcessInitConfiguration.java
deleted file mode 100644
index 6912cde3..00000000
--- a/scb-scanprocesses/mozilla-ssh-process/src/main/java/io/securecodebox/scanprocess/ProcessInitConfiguration.java
+++ /dev/null
@@ -1,36 +0,0 @@
-/*
- *
- *  SecureCodeBox (SCB)
- *  Copyright 2015-2018 iteratec GmbH
- *
- *  Licensed under the Apache License, Version 2.0 (the "License");
- *  you may not use this file except in compliance with the License.
- *  You may obtain a copy of the License at
- *
- *  	http://www.apache.org/licenses/LICENSE-2.0
- *
- *  Unless required by applicable law or agreed to in writing, software
- *  distributed under the License is distributed on an "AS IS" BASIS,
- *  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- *  See the License for the specific language governing permissions and
- *  limitations under the License.
- * /
- */
-
-package io.securecodebox.scanprocess;
-
-import org.springframework.context.annotation.ComponentScan;
-import org.springframework.context.annotation.Configuration;
-
-/**
- * The secureCodeBox by default only scans for components in the package io.securecodebox.scanprocess.
- * <p>
- * This configuration ensures that your defined package package also gets scanned, please don't move or remove this configuration.
- *
- * @author Rüdiger Heins - iteratec GmbH
- * @since 09.05.18
- */
-@ComponentScan("io.securecodebox.scanprocesses")
-@Configuration
-public class ProcessInitConfiguration {
-}
diff --git a/scb-scanprocesses/mozilla-ssh-process/src/main/resources/META-INF/processes.xml b/scb-scanprocesses/mozilla-ssh-process/src/main/resources/META-INF/processes.xml
deleted file mode 100644
index e69de29b..00000000
diff --git a/scb-scanprocesses/mozilla-ssh-process/src/main/resources/bpmn/mozilla_ssh_process.bpmn b/scb-scanprocesses/mozilla-ssh-process/src/main/resources/bpmn/mozilla_ssh_process.bpmn
deleted file mode 100644
index 678e7e15..00000000
--- a/scb-scanprocesses/mozilla-ssh-process/src/main/resources/bpmn/mozilla_ssh_process.bpmn
+++ /dev/null
@@ -1,197 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<bpmn:definitions xmlns:bpmn="http://www.omg.org/spec/BPMN/20100524/MODEL" xmlns:bpmndi="http://www.omg.org/spec/BPMN/20100524/DI" xmlns:di="http://www.omg.org/spec/DD/20100524/DI" xmlns:dc="http://www.omg.org/spec/DD/20100524/DC" xmlns:camunda="http://camunda.org/schema/1.0/bpmn" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" id="Definitions_1" targetNamespace="http://bpmn.io/schema/bpmn" exporter="Camunda Modeler" exporterVersion="1.12.0">
-  <bpmn:process id="ssh-process" name="SSH Scan" isExecutable="true" camunda:versionTag="3" camunda:historyTimeToLive="30">
-    <bpmn:startEvent id="StartEvent_Configure" name="target configured" camunda:formKey="embedded:app:forms/default/configure-target.html">
-      <bpmn:extensionElements>
-        <camunda:executionListener delegateExpression="${checkForAutomatedRunListener}" event="start" />
-        <camunda:formData>
-          <camunda:formField id="DEFAULT_CONTEXT" type="string" defaultValue="${propertyValueProvider.defaultContext}" />
-          <camunda:formField id="DEFAULT_TARGET_NAME" type="string" defaultValue="${propertyValueProvider.defaultTargetName}" />
-          <camunda:formField id="DEFAULT_TARGET_LOCATION" type="string" defaultValue="${propertyValueProvider.defaultTargetLocation}" />
-          <camunda:formField id="DEFAULT_TARGET_URI" type="string" defaultValue="${propertyValueProvider.defaultTargetUri}" />
-        </camunda:formData>
-      </bpmn:extensionElements>
-      <bpmn:outgoing>SequenceFlow_TargetConfigured</bpmn:outgoing>
-    </bpmn:startEvent>
-    <bpmn:sequenceFlow id="SequenceFlow_TargetConfigured" sourceRef="StartEvent_Configure" targetRef="ServiceTask_DoScan" />
-    <bpmn:endEvent id="EndEvent_FinishedPortscan" name="SSH Scan finished">
-      <bpmn:incoming>SequenceFlow_SummaryCreated</bpmn:incoming>
-    </bpmn:endEvent>
-    <bpmn:sequenceFlow id="SequenceFlow_PortscanFinished" name="finished&#10;&#10;" sourceRef="ServiceTask_DoScan" targetRef="ExclusiveGateway_AutomatedFinish" />
-    <bpmn:sequenceFlow id="SequenceFlow_ResultReviewed" name="result reviewed" sourceRef="UserTask_ApproveResults" targetRef="ExclusiveGateway_ResultApproved" />
-    <bpmn:userTask id="UserTask_ApproveResults" name="Review scan results" camunda:formKey="embedded:app:forms/default/approve-results.html" camunda:candidateGroups="_securebox_admin, _securebox_productowner, _securebox_developer, approver">
-      <bpmn:extensionElements>
-        <camunda:formData />
-      </bpmn:extensionElements>
-      <bpmn:incoming>SequenceFlow_ManualFinish</bpmn:incoming>
-      <bpmn:outgoing>SequenceFlow_ResultReviewed</bpmn:outgoing>
-    </bpmn:userTask>
-    <bpmn:exclusiveGateway id="ExclusiveGateway_ResultApproved" name="Is scan result approved?">
-      <bpmn:incoming>SequenceFlow_ResultReviewed</bpmn:incoming>
-      <bpmn:outgoing>SequenceFlow_ResultApproved</bpmn:outgoing>
-      <bpmn:outgoing>SequenceFlow_ResultRejected</bpmn:outgoing>
-    </bpmn:exclusiveGateway>
-    <bpmn:sequenceFlow id="SequenceFlow_ResultApproved" name="result approved" sourceRef="ExclusiveGateway_ResultApproved" targetRef="ServiceTask_CreateSummary">
-      <bpmn:conditionExpression xsi:type="bpmn:tFormalExpression"><![CDATA[${PROCESS_RESULT_APPROVED == 'approved'}]]></bpmn:conditionExpression>
-    </bpmn:sequenceFlow>
-    <bpmn:exclusiveGateway id="ExclusiveGateway_AutomatedFinish" name="is automated run?">
-      <bpmn:incoming>SequenceFlow_PortscanFinished</bpmn:incoming>
-      <bpmn:outgoing>SequenceFlow_ManualFinish</bpmn:outgoing>
-      <bpmn:outgoing>SequenceFlow_AutomatedFinish</bpmn:outgoing>
-    </bpmn:exclusiveGateway>
-    <bpmn:sequenceFlow id="SequenceFlow_ManualFinish" name="manual finish&#10;&#10;" sourceRef="ExclusiveGateway_AutomatedFinish" targetRef="UserTask_ApproveResults">
-      <bpmn:conditionExpression xsi:type="bpmn:tFormalExpression">${PROCESS_AUTOMATED == false}</bpmn:conditionExpression>
-    </bpmn:sequenceFlow>
-    <bpmn:sequenceFlow id="SequenceFlow_AutomatedFinish" name="automated finish" sourceRef="ExclusiveGateway_AutomatedFinish" targetRef="ServiceTask_CreateSummary">
-      <bpmn:conditionExpression xsi:type="bpmn:tFormalExpression">${PROCESS_AUTOMATED == true}</bpmn:conditionExpression>
-    </bpmn:sequenceFlow>
-    <bpmn:serviceTask id="ServiceTask_DoScan" name="Run the scan" camunda:asyncBefore="true" camunda:type="external" camunda:topic="ssh_webserverscan">
-      <bpmn:extensionElements />
-      <bpmn:incoming>SequenceFlow_TargetConfigured</bpmn:incoming>
-      <bpmn:outgoing>SequenceFlow_PortscanFinished</bpmn:outgoing>
-    </bpmn:serviceTask>
-    <bpmn:sequenceFlow id="SequenceFlow_SummaryCreated" name="summary created" sourceRef="ServiceTask_CreateSummary" targetRef="EndEvent_FinishedPortscan" />
-    <bpmn:serviceTask id="ServiceTask_CreateSummary" name="Create Report Summary" camunda:asyncBefore="true" camunda:delegateExpression="${package_SummaryGeneratorDelegate}">
-      <bpmn:extensionElements />
-      <bpmn:incoming>SequenceFlow_ResultApproved</bpmn:incoming>
-      <bpmn:incoming>SequenceFlow_1i44eck</bpmn:incoming>
-      <bpmn:incoming>SequenceFlow_AutomatedFinish</bpmn:incoming>
-      <bpmn:outgoing>SequenceFlow_SummaryCreated</bpmn:outgoing>
-    </bpmn:serviceTask>
-    <bpmn:dataObjectReference id="DataObjectReference_0vhjx0n" name="PROCESS_FINDINGS" dataObjectRef="DataObject_0lpf2y8" />
-    <bpmn:dataObject id="DataObject_0lpf2y8" />
-    <bpmn:sequenceFlow id="SequenceFlow_ResultRejected" name="result rejected" sourceRef="ExclusiveGateway_ResultApproved" targetRef="DoesNothingTask">
-      <bpmn:conditionExpression xsi:type="bpmn:tFormalExpression"><![CDATA[${PROCESS_RESULT_APPROVED == 'disapproved'}]]></bpmn:conditionExpression>
-    </bpmn:sequenceFlow>
-    <bpmn:task id="DoesNothingTask" name="Does Nothing">
-      <bpmn:incoming>SequenceFlow_ResultRejected</bpmn:incoming>
-      <bpmn:outgoing>SequenceFlow_1i44eck</bpmn:outgoing>
-    </bpmn:task>
-    <bpmn:sequenceFlow id="SequenceFlow_1i44eck" sourceRef="DoesNothingTask" targetRef="ServiceTask_CreateSummary" />
-    <bpmn:textAnnotation id="TextAnnotation_0lm3esn">
-      <bpmn:text>results in a generic format</bpmn:text>
-    </bpmn:textAnnotation>
-    <bpmn:association id="Association_16qrr9w" sourceRef="DataObjectReference_0vhjx0n" targetRef="TextAnnotation_0lm3esn" />
-  </bpmn:process>
-  <bpmndi:BPMNDiagram id="BPMNDiagram_1">
-    <bpmndi:BPMNPlane id="BPMNPlane_1" bpmnElement="ssh-process">
-      <bpmndi:BPMNShape id="_BPMNShape_StartEvent_2" bpmnElement="StartEvent_Configure">
-        <dc:Bounds x="28" y="310" width="36" height="36" />
-        <bpmndi:BPMNLabel>
-          <dc:Bounds x="4" y="356" width="83" height="13" />
-        </bpmndi:BPMNLabel>
-      </bpmndi:BPMNShape>
-      <bpmndi:BPMNEdge id="SequenceFlow_093mevy_di" bpmnElement="SequenceFlow_TargetConfigured">
-        <di:waypoint x="64" y="328" />
-        <di:waypoint x="142" y="328" />
-        <bpmndi:BPMNLabel>
-          <dc:Bounds x="58" y="303" width="90" height="20" />
-        </bpmndi:BPMNLabel>
-      </bpmndi:BPMNEdge>
-      <bpmndi:BPMNShape id="EndEvent_07weexy_di" bpmnElement="EndEvent_FinishedPortscan">
-        <dc:Bounds x="1309" y="186" width="36" height="36" />
-        <bpmndi:BPMNLabel>
-          <dc:Bounds x="1357" y="197" width="90" height="12" />
-        </bpmndi:BPMNLabel>
-      </bpmndi:BPMNShape>
-      <bpmndi:BPMNEdge id="SequenceFlow_0kjlgbs_di" bpmnElement="SequenceFlow_PortscanFinished">
-        <di:waypoint x="242" y="328" />
-        <di:waypoint x="437" y="328" />
-        <bpmndi:BPMNLabel>
-          <dc:Bounds x="316" y="420" width="38" height="37" />
-        </bpmndi:BPMNLabel>
-      </bpmndi:BPMNEdge>
-      <bpmndi:BPMNEdge id="SequenceFlow_00fmvcb_di" bpmnElement="SequenceFlow_ResultReviewed">
-        <di:waypoint x="673" y="202" />
-        <di:waypoint x="760" y="204" />
-        <bpmndi:BPMNLabel>
-          <dc:Bounds x="794" y="176" width="74" height="12" />
-        </bpmndi:BPMNLabel>
-      </bpmndi:BPMNEdge>
-      <bpmndi:BPMNShape id="UserTask_0jv6ygb_di" bpmnElement="UserTask_ApproveResults">
-        <dc:Bounds x="573" y="164" width="100" height="80" />
-      </bpmndi:BPMNShape>
-      <bpmndi:BPMNShape id="ExclusiveGateway_0ukn4uh_di" bpmnElement="ExclusiveGateway_ResultApproved" isMarkerVisible="true">
-        <dc:Bounds x="760" y="179" width="50" height="50" />
-        <bpmndi:BPMNLabel>
-          <dc:Bounds x="752" y="239" width="65" height="25" />
-        </bpmndi:BPMNLabel>
-      </bpmndi:BPMNShape>
-      <bpmndi:BPMNEdge id="SequenceFlow_0gjifhk_di" bpmnElement="SequenceFlow_ResultApproved">
-        <di:waypoint x="810" y="204" />
-        <di:waypoint x="1077" y="204" />
-        <bpmndi:BPMNLabel>
-          <dc:Bounds x="999" y="150" width="76" height="13" />
-        </bpmndi:BPMNLabel>
-      </bpmndi:BPMNEdge>
-      <bpmndi:BPMNShape id="ExclusiveGateway_1bzno3f_di" bpmnElement="ExclusiveGateway_AutomatedFinish" isMarkerVisible="true">
-        <dc:Bounds x="437" y="303" width="50" height="50" />
-        <bpmndi:BPMNLabel>
-          <dc:Bounds x="497" y="322" width="89" height="12" />
-        </bpmndi:BPMNLabel>
-      </bpmndi:BPMNShape>
-      <bpmndi:BPMNEdge id="SequenceFlow_17bwrf0_di" bpmnElement="SequenceFlow_ManualFinish">
-        <di:waypoint x="462" y="303" />
-        <di:waypoint x="462" y="204" />
-        <di:waypoint x="573" y="204" />
-        <bpmndi:BPMNLabel>
-          <dc:Bounds x="379" y="246" width="65" height="37" />
-        </bpmndi:BPMNLabel>
-      </bpmndi:BPMNEdge>
-      <bpmndi:BPMNEdge id="SequenceFlow_0s3limw_di" bpmnElement="SequenceFlow_AutomatedFinish">
-        <di:waypoint x="462" y="353" />
-        <di:waypoint x="462" y="456" />
-        <di:waypoint x="1127" y="456" />
-        <di:waypoint x="1127" y="244" />
-        <bpmndi:BPMNLabel>
-          <dc:Bounds x="803" y="503" width="81" height="12" />
-        </bpmndi:BPMNLabel>
-      </bpmndi:BPMNEdge>
-      <bpmndi:BPMNShape id="ServiceTask_0pps66n_di" bpmnElement="ServiceTask_DoScan">
-        <dc:Bounds x="142" y="288" width="100" height="80" />
-      </bpmndi:BPMNShape>
-      <bpmndi:BPMNEdge id="SequenceFlow_150f8k2_di" bpmnElement="SequenceFlow_SummaryCreated">
-        <di:waypoint x="1177" y="204" />
-        <di:waypoint x="1309" y="204" />
-        <bpmndi:BPMNLabel>
-          <dc:Bounds x="1187" y="209" width="85" height="13" />
-        </bpmndi:BPMNLabel>
-      </bpmndi:BPMNEdge>
-      <bpmndi:BPMNShape id="ServiceTask_1foo790_di" bpmnElement="ServiceTask_CreateSummary">
-        <dc:Bounds x="1077" y="164" width="100" height="80" />
-      </bpmndi:BPMNShape>
-      <bpmndi:BPMNShape id="DataObjectReference_0vhjx0n_di" bpmnElement="DataObjectReference_0vhjx0n">
-        <dc:Bounds x="288" y="360" width="36" height="50" />
-        <bpmndi:BPMNLabel>
-          <dc:Bounds x="263" y="331" width="86" height="25" />
-        </bpmndi:BPMNLabel>
-      </bpmndi:BPMNShape>
-      <bpmndi:BPMNShape id="TextAnnotation_0lm3esn_di" bpmnElement="TextAnnotation_0lm3esn">
-        <dc:Bounds x="379" y="420" width="102" height="50" />
-      </bpmndi:BPMNShape>
-      <bpmndi:BPMNEdge id="Association_16qrr9w_di" bpmnElement="Association_16qrr9w">
-        <di:waypoint x="324" y="394" />
-        <di:waypoint x="379" y="420" />
-      </bpmndi:BPMNEdge>
-      <bpmndi:BPMNEdge id="SequenceFlow_1z0e6c0_di" bpmnElement="SequenceFlow_ResultRejected">
-        <di:waypoint x="785" y="179" />
-        <di:waypoint x="785" y="65" />
-        <di:waypoint x="995" y="65" />
-        <bpmndi:BPMNLabel>
-          <dc:Bounds x="849" y="96" width="70" height="13" />
-        </bpmndi:BPMNLabel>
-      </bpmndi:BPMNEdge>
-      <bpmndi:BPMNShape id="Task_1691u70_di" bpmnElement="DoesNothingTask">
-        <dc:Bounds x="995" y="25" width="100" height="80" />
-      </bpmndi:BPMNShape>
-      <bpmndi:BPMNEdge id="SequenceFlow_1i44eck_di" bpmnElement="SequenceFlow_1i44eck">
-        <di:waypoint x="1095" y="65" />
-        <di:waypoint x="1127" y="65" />
-        <di:waypoint x="1127" y="164" />
-        <bpmndi:BPMNLabel>
-          <dc:Bounds x="1066" y="43.5" width="90" height="13" />
-        </bpmndi:BPMNLabel>
-      </bpmndi:BPMNEdge>
-    </bpmndi:BPMNPlane>
-  </bpmndi:BPMNDiagram>
-</bpmn:definitions>
diff --git a/scb-scanprocesses/mozilla-ssh-process/src/main/resources/forms.mozilla_ssh/approve-results.html b/scb-scanprocesses/mozilla-ssh-process/src/main/resources/forms.mozilla_ssh/approve-results.html
deleted file mode 100644
index b864accb..00000000
--- a/scb-scanprocesses/mozilla-ssh-process/src/main/resources/forms.mozilla_ssh/approve-results.html
+++ /dev/null
@@ -1,124 +0,0 @@
-<!--
-  ~ /*
-  ~ * SecureCodeBox (SCB)
-  ~ * Copyright 2015-2018 iteratec GmbH
-  ~ *
-  ~ * Licensed under the Apache License, Version 2.0 (the "License");
-  ~ * you may not use this file except in compliance with the License.
-  ~ * You may obtain a copy of the License at
-  ~ *
-  ~ * 	http://www.apache.org/licenses/LICENSE-2.0
-  ~ *
-  ~ * Unless required by applicable law or agreed to in writing, software
-  ~ * distributed under the License is distributed on an "AS IS" BASIS,
-  ~ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-  ~ * See the License for the specific language governing permissions and
-  ~ * limitations under the License.
-  ~ */
-  -->
-
-<form role="form" name="configure-reporting">
-
-    <script cam-script type="text/form-script">
-        camForm.on('form-loaded', function () {
-
-            camForm.variableManager.fetchVariable('PROCESS_CONTEXT');
-            camForm.variableManager.fetchVariable('PROCESS_TARGETS');
-            camForm.variableManager.fetchVariable('PROCESS_FINDINGS');
-            camForm.variableManager.fetchVariable('PROCESS_SCANNER_ID');
-        });
-
-        camForm.on('variables-restored', function () {
-            $scope.context = camForm.variableManager.variableValue('PROCESS_CONTEXT');
-
-            $scope.scannerId = camForm.variableManager.variableValue('PROCESS_SCANNER_ID');
-            $scope.scannerResult = JSON.parse(camForm.variableManager.variableValue('PROCESS_FINDINGS'));
-            $scope.scannerTargets = JSON.parse(camForm.variableManager.variableValue('PROCESS_TARGETS'));
-        });
-    </script>
-    <div ng-repeat="target in scannerTargets">
-        <h2>SSH scan results for "{{ target.name }}"</h2>
-
-        <div class="row">
-            <div class="col-xs-2"><label>Scanner Id:</label></div>
-            <div class="col-xs-10">{{ scannerId }}</div>
-        </div>
-        <div class="row">
-            <div class="col-xs-2"><label>Target Location:</label></div>
-            <div class="col-xs-10">{{ target.location }}</div>
-        </div>
-        <div class="row">
-            <div class="col-xs-2"><label>Business Context:</label></div>
-            <div class="col-xs-10">{{ context }}</div>
-        </div>
-        <div class="row">
-            <div class="col-xs-12">
-
-                <div class="well well-sm"
-                <div class="well well-sm"
-                     style="color: inherit;">
-                    <table class="table table-striped">
-                        <tr>
-                            <th>Host:</th>
-                            <th>Name:</th>
-                            <th>Category:</th>
-                            <th>Severity:</th>
-                            <th>Reference:</th>
-                        </tr>
-                        <tr class="danger" ng-repeat="result in scannerResult">
-                            <td>{{ result.location }}</td>
-                            <td>{{ result.name }}</td>
-                            <td>{{ result.category }}</td>
-                            <td>
-                                <div ng-switch on="result.severity">
-                                <span class="label label-danger" ng-switch-when="HIGH">
-                                    <i aria-hidden="true"
-                                       class="glyphicon glyphicon-fire"></i>
-                                    {{ result.severity }}
-                                </span>
-
-                                    <span class="label label-warning" ng-switch-when="MEDIUM">
-                                    <i aria-hidden="true"
-                                       class="glyphicon glyphicon glyphicon-alert"></i>
-                                    {{ result.severity }}
-                                </span>
-
-                                    <span class="label label-primary" ng-switch-when="LOW">
-                                    <i aria-hidden="true"
-                                       class="glyphicon glyphicon-warning-sign"></i>
-                                    {{ result.severity }}
-                                </span>
-
-                                    <span class="label label-default" ng-switch-default>
-                                    <i aria-hidden="true"
-                                       class="glyphicon glyphicon-education"></i>
-                                    {{ result.severity }}
-                                </span>
-                                </div>
-                            </td>
-                            <td> {{ result.reference.id }}
-                            </td>
-                        </tr>
-                    </table>
-                </div>
-            </div>
-
-        </div>
-    </div>
-    <h2>Approve Result</h2>
-    <!-- reporting configuration -->
-    <div class="form-group">
-        <label for="selectResultApproved">Approve Result</label>
-        <div id="selectResultApproved" class="controls">
-            <!--select box -->
-            <select required
-                    class="form-control"
-                    name="resultApproved"
-                    cam-variable-name="PROCESS_RESULT_APPROVED"
-                    cam-variable-type="String">
-                <option value="approved" checked>Approved (finished)</option>
-                <option value="disapproved">Not Approved (finished)</option>
-            </select>
-        </div>
-    </div>
-</form>
diff --git a/scb-scanprocesses/mozilla-ssh-process/src/test/java/io/securecodebox/scanprocess/test/MozillaSshProcessTest.java b/scb-scanprocesses/mozilla-ssh-process/src/test/java/io/securecodebox/scanprocess/test/MozillaSshProcessTest.java
deleted file mode 100644
index b95f3145..00000000
--- a/scb-scanprocesses/mozilla-ssh-process/src/test/java/io/securecodebox/scanprocess/test/MozillaSshProcessTest.java
+++ /dev/null
@@ -1,231 +0,0 @@
-/*
- *
- *  SecureCodeBox (SCB)
- *  Copyright 2015-2018 iteratec GmbH
- *
- *  Licensed under the Apache License, Version 2.0 (the "License");
- *  you may not use this file except in compliance with the License.
- *  You may obtain a copy of the License at
- *
- *  	http://www.apache.org/licenses/LICENSE-2.0
- *
- *  Unless required by applicable law or agreed to in writing, software
- *  distributed under the License is distributed on an "AS IS" BASIS,
- *  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- *  See the License for the specific language governing permissions and
- *  limitations under the License.
- * /
- */
-
-package io.securecodebox.scanprocess.test;
-
-import io.securecodebox.constants.DefaultFields;
-import io.securecodebox.scanprocess.delegate.SummaryGeneratorDelegate;
-import org.camunda.bpm.engine.ExternalTaskService;
-import org.camunda.bpm.engine.delegate.DelegateTask;
-import org.camunda.bpm.engine.delegate.Expression;
-import org.camunda.bpm.engine.delegate.TaskListener;
-import org.camunda.bpm.engine.externaltask.LockedExternalTask;
-import org.camunda.bpm.engine.runtime.ProcessInstance;
-import org.camunda.bpm.engine.test.Deployment;
-import org.camunda.bpm.engine.test.ProcessEngineRule;
-import org.camunda.bpm.engine.test.mock.Mocks;
-import org.camunda.bpm.extension.process_test_coverage.junit.rules.TestCoverageProcessEngineRuleBuilder;
-import org.camunda.bpm.scenario.ProcessScenario;
-import org.camunda.bpm.scenario.Scenario;
-import org.camunda.bpm.scenario.delegate.ExternalTaskDelegate;
-import org.camunda.bpm.scenario.delegate.TaskDelegate;
-import org.junit.Before;
-import org.junit.ClassRule;
-import org.junit.Ignore;
-import org.junit.Rule;
-import org.junit.Test;
-import org.junit.runner.RunWith;
-import org.mockito.Mock;
-import org.mockito.Mockito;
-import org.mockito.MockitoAnnotations;
-import org.springframework.beans.factory.annotation.Autowired;
-import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
-
-import java.util.HashMap;
-import java.util.List;
-import java.util.Map;
-
-import static org.camunda.bpm.engine.test.assertions.ProcessEngineTests.*;
-import static org.camunda.bpm.extension.mockito.CamundaMockito.autoMock;
-import static org.mockito.Mockito.when;
-
-/**
- * This class tests the process execution of the Default-Process BPMN Model
- * It verifies that each process task is called when it's supposed to be and
- * delegation code is executed at the right time
- * <p>
- * The tests run in an own Camunda engine which is defined by the camunda.cfg.xml in the resources directory
- * <p>
- * The test cases use Camunda BPM's standard framework as well as the
- * Camunda BPM Assert extension (<a href="https://github.com/camunda/camunda-bpm-assert")/>),
- * camunda-bpm-mockito (<a href="https://github.com/camunda/camunda-bpm-mockito"/>)
- * and the Camunda BPM Assert Scenario extension (<a href="https://github.com/camunda/camunda-bpm-assert-scenario"/>)
- * <p>
- * Furthermore this class also uses the Camunda BPM Process Test Coverage extension
- * (<a href="https://github.com/camunda/camunda-bpm-process-test-coverage"/>).
- * After the test is run we can examine the test coverage in the directory target/process-test-coverage
- */
-
-@RunWith(SpringJUnit4ClassRunner.class)
-@Deployment(resources = "bpmn/mozilla_ssh_process.bpmn")
-
-@Ignore("Ignored until problems with camunda testing frameworks are handled. Introduces via update to camunda 7.10")
-public class MozillaSshProcessTest {
-
-    //Define the Process Activity IDs
-    private static final String PROCESS_ID = "ssh-process";
-    private static final String DO_SCAN_TASK_ID = "ServiceTask_DoScan";
-    private static final String CREATE_REPORT_TASK_ID = "ServiceTask_CreateSummary";
-    private static final String APPROVE_RESULTS_TASK_ID = "UserTask_ApproveResults";
-
-    private final Map<String, Object> defaultVariables = new HashMap<>();
-
-    @Rule
-    @ClassRule
-    public static ProcessEngineRule processEngineRule = TestCoverageProcessEngineRuleBuilder.create().build();
-
-    @Mock
-    private ProcessScenario process;
-
-    @Mock
-    SummaryGeneratorDelegate delegate;
-
-    /**
-     * Executed before every test-case
-     * In this method default variables for the process and a default behaviour for the mocks
-     * in the process are defined+
-     */
-    @Before
-    public void init() {
-
-        MockitoAnnotations.initMocks(this);
-
-        //Creating a map of default variables for the process
-        defaultVariables.put(DefaultFields.PROCESS_AUTOMATED.name(), true);
-        defaultVariables.put(DefaultFields.PROCESS_CONTEXT.name(), "BodgeIT");
-
-        /*
-        Mocking everything in the BPMN Model
-        This includes ExecutionListeners, TaskListeners, JavaDelegates, etc.
-        Simply stated: Everything, that's executable code
-
-        If you need to define custom behaviour for the Mocks you can do so by
-        registering Mocks with Camunda's method "Mocks.register(String key, Object value)".
-        Here the key describes a delegateExpression (as defined in BPMN model) and the value
-        describes the implementation of the code which should be executed
-        (Hint: You can put the real implementation as well as a fake one in there)
-
-        Note: Most of the mocking methods seem to work only in combination with delegateExpressions
-        but not with class definitions as delegate implementation.
-
-        If you have the path to your executable code (the class for delegate) as delegate implementation
-        then this guide is helpful:
-        https://blog.akquinet.de/2016/11/04/camunda-bpm-test-your-processes-based-on-plain-old-java-delegates/
-         */
-        autoMock("bpmn/mozilla_ssh_process.bpmn");
-
-        /*
-        Here we define a default behaviour for all the tasks in the BPMN model.
-        This behaviour can easily be overridden in test cases.
-
-        The code inside the "thenReturn(...)" method specifies what should happen when process execution
-        waits at the given task
-        As a default behaviour we just complete the task and move on to the next one without changing anything
-
-        Note that we have our own mock implementation in the last two when(...) statements.
-        This is because these tasks are external tasks which cannot be as easily completed as
-        ServiceTasks. They need an external worker to do so.
-         */
-        when(process.waitsAtUserTask(Mockito.anyString())).thenReturn(TaskDelegate::complete);
-        when(process.waitsAtServiceTask(Mockito.anyString())).thenReturn(ExternalTaskDelegate::complete);
-        when(process.waitsAtServiceTask(DO_SCAN_TASK_ID)).thenReturn(task -> startExternalMockProcess("ssh-process"));
-    }
-
-    @Test
-    public void testAutomatedStart_shouldPass() {
-
-        ProcessInstance processInstance = runtimeService().startProcessInstanceByKey(PROCESS_ID, defaultVariables);
-
-        assertThat(processInstance).isStarted();
-    }
-
-    @Test
-    public void testManualStartWithDefaultConfiguration_shouldPass() {
-        ProcessInstance processInstance = runtimeService().startProcessInstanceByKey(PROCESS_ID, defaultVariables);
-
-        assertThat(processInstance).isStarted();
-        assertThat(processInstance).isWaitingAt(DO_SCAN_TASK_ID);
-    }
-
-    @Test
-    public void testManualRunWithApprovedTestResults() {
-
-        Map<String, Object> variables = new HashMap<>(defaultVariables);
-        changeVariable(variables, DefaultFields.PROCESS_AUTOMATED.name(), false);
-
-        when(process.waitsAtUserTask(APPROVE_RESULTS_TASK_ID)).thenReturn(task -> {
-            variables.put(DefaultFields.PROCESS_RESULT_APPROVED.name(), "approved");
-            task.complete(variables);
-        });
-
-            /*
-            Here we register a custom mock.
-            The BPMN model TaskListener takes an injected field variable which cannot be mocked.
-            Therefore we create our own TaskListener with a dummy implementation and which also
-            holds the variable, that should be injected.
-            Then we register our TaskListener with "Mocks.register(...)" and it gets executed when the delegateExpression
-            is called.
-             */
-        Mocks.register("setFormUrlListener", new TaskListener() {
-
-            @Autowired
-            private Expression scanner_type;
-
-            @Override
-            public void notify(DelegateTask delegateTask) {
-            }
-        });
-
-        Scenario scenario = Scenario.run(process).startByKey(PROCESS_ID, variables).execute();
-
-        assertThat(scenario.instance(process)).isEnded();
-        assertThat(scenario.instance(process)).hasPassed(APPROVE_RESULTS_TASK_ID);
-        assertThat(scenario.instance(process)).variables()
-                .containsEntry(DefaultFields.PROCESS_RESULT_APPROVED.name(), "approved");
-    }
-
-    /**
-     * Executes an external process without doing anything in the task.
-     * In the first step the job is executed on the Camunda engine. Therefore the token for the
-     * provided topic gets pushed. Then an external service is called to pull the token and execute the task
-     *
-     * @param topic the topic for the external task
-     */
-    private void startExternalMockProcess(String topic) {
-
-        ExternalTaskService externalTaskService = processEngine().getExternalTaskService();
-        List<LockedExternalTask> lockedExternalTasks = externalTaskService.fetchAndLock(1, "worker")
-                .topic(topic, 5000L)
-                .execute();
-
-        assertThat(lockedExternalTasks.size()).isEqualTo(1);
-
-        LockedExternalTask task = lockedExternalTasks.get(0);
-        externalTaskService.complete(task.getId(), "worker");
-    }
-
-    private void changeVariable(Map<String, Object> variables, String key, Object value) {
-
-        if (variables.containsKey(key)) {
-            variables.remove(key);
-        }
-        variables.put(key, value);
-    }
-
-}
diff --git a/scb-scanprocesses/mozilla-ssh-process/src/test/resources/camunda.cfg.xml b/scb-scanprocesses/mozilla-ssh-process/src/test/resources/camunda.cfg.xml
deleted file mode 100644
index d5e7d6f9..00000000
--- a/scb-scanprocesses/mozilla-ssh-process/src/test/resources/camunda.cfg.xml
+++ /dev/null
@@ -1,14 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-
-<beans xmlns="http://www.springframework.org/schema/beans"
-       xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
-       xsi:schemaLocation="http://www.springframework.org/schema/beans   http://www.springframework.org/schema/beans/spring-beans.xsd">
-
-    <!-- uses an h2 in-memory database for test execution -->
-    <bean id="processEngineConfiguration" class="org.camunda.bpm.extension.process_test_coverage.junit.rules.ProcessCoverageInMemProcessEngineConfiguration">
-
-        <!-- This property ensures that the JobExecutor isn't started and therefore
-             asynchronous tasks need to be called explicitly to run-->
-        <property name="jobExecutorActivate" value="false" />
-    </bean>
-</beans>
\ No newline at end of file
diff --git a/scb-scanprocesses/mozilla-ssh-process/src/test/resources/logback-test.xml b/scb-scanprocesses/mozilla-ssh-process/src/test/resources/logback-test.xml
deleted file mode 100644
index 81dcdbcd..00000000
--- a/scb-scanprocesses/mozilla-ssh-process/src/test/resources/logback-test.xml
+++ /dev/null
@@ -1,27 +0,0 @@
-<!--
-  ~ /*
-  ~ * SecureCodeBox (SCB)
-  ~ * Copyright 2015-2018 iteratec GmbH
-  ~ *
-  ~ * Licensed under the Apache License, Version 2.0 (the "License");
-  ~ * you may not use this file except in compliance with the License.
-  ~ * You may obtain a copy of the License at
-  ~ *
-  ~ * 	http://www.apache.org/licenses/LICENSE-2.0
-  ~ *
-  ~ * Unless required by applicable law or agreed to in writing, software
-  ~ * distributed under the License is distributed on an "AS IS" BASIS,
-  ~ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-  ~ * See the License for the specific language governing permissions and
-  ~ * limitations under the License.
-  ~ */
-  -->
-
-<configuration debug="true">
-    <include resource="org/springframework/boot/logging/logback/base.xml" />
-
-
-    <root level="INFO">
-        <appender-ref ref="STDOUT" />
-    </root>
-</configuration>
diff --git a/scb-scanprocesses/pom.xml b/scb-scanprocesses/pom.xml
index ec015bf0..4052be07 100644
--- a/scb-scanprocesses/pom.xml
+++ b/scb-scanprocesses/pom.xml
@@ -23,7 +23,7 @@
         <module>combined-amass-nmap-process</module>
         <module>arachni-process</module>
         <module>subdomain-scanner-process</module>
-    <module>mozilla-ssh-process</module>
+    <module>ssh-process</module>
   </modules>
 
 </project>
\ No newline at end of file
diff --git a/scb-scanprocesses/ssh-process/pom.xml b/scb-scanprocesses/ssh-process/pom.xml
index f8bc97da..9b1d9897 100644
--- a/scb-scanprocesses/ssh-process/pom.xml
+++ b/scb-scanprocesses/ssh-process/pom.xml
@@ -8,7 +8,7 @@
         <version>0.0.1-SNAPSHOT</version>
     </parent>
 
-
+    <groupId>io.securecodebox.scanprocesses</groupId>
     <artifactId>ssh-process</artifactId>
     <version>1.0-SNAPSHOT</version>
 
diff --git a/scb-scanprocesses/ssh-process/src/main/resources/bpmn/mozilla_ssh_process.bpmn b/scb-scanprocesses/ssh-process/src/main/resources/bpmn/mozilla_ssh_process.bpmn
index da2b67e8..ef222bab 100644
--- a/scb-scanprocesses/ssh-process/src/main/resources/bpmn/mozilla_ssh_process.bpmn
+++ b/scb-scanprocesses/ssh-process/src/main/resources/bpmn/mozilla_ssh_process.bpmn
@@ -1,7 +1,7 @@
 <?xml version="1.0" encoding="UTF-8"?>
 <bpmn:definitions xmlns:bpmn="http://www.omg.org/spec/BPMN/20100524/MODEL" xmlns:bpmndi="http://www.omg.org/spec/BPMN/20100524/DI" xmlns:di="http://www.omg.org/spec/DD/20100524/DI" xmlns:dc="http://www.omg.org/spec/DD/20100524/DC" xmlns:camunda="http://camunda.org/schema/1.0/bpmn" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" id="Definitions_1" targetNamespace="http://bpmn.io/schema/bpmn" exporter="Camunda Modeler" exporterVersion="1.12.0">
   <bpmn:process id="ssh-process" name="SSH Scan" isExecutable="true" camunda:versionTag="3" camunda:historyTimeToLive="30">
-    <bpmn:startEvent id="StartEvent_Configure" name="target configured" camunda:formKey="embedded:app:forms.mozilla_ssh/configure-target.html">
+    <bpmn:startEvent id="StartEvent_Configure" name="target configured" camunda:formKey="embedded:app:forms/ssh/configure-target.html">
       <bpmn:extensionElements>
         <camunda:executionListener delegateExpression="${checkForAutomatedRunListener}" event="start" />
         <camunda:formData>
@@ -19,7 +19,7 @@
     </bpmn:endEvent>
     <bpmn:sequenceFlow id="SequenceFlow_PortscanFinished" name="finished&#10;&#10;" sourceRef="ServiceTask_DoScan" targetRef="ExclusiveGateway_AutomatedFinish" />
     <bpmn:sequenceFlow id="SequenceFlow_ResultReviewed" name="result reviewed" sourceRef="UserTask_ApproveResults" targetRef="ExclusiveGateway_ResultApproved" />
-    <bpmn:userTask id="UserTask_ApproveResults" name="Review scan results" camunda:formKey="embedded:app:forms.mozilla_ssh/approve-results.html" camunda:candidateGroups="_securebox_admin, _securebox_productowner, _securebox_developer, approver">
+    <bpmn:userTask id="UserTask_ApproveResults" name="Review scan results" camunda:formKey="embedded:app:forms/ssh/approve-results.html" camunda:candidateGroups="_securebox_admin, _securebox_productowner, _securebox_developer, approver">
       <bpmn:extensionElements>
         <camunda:formData />
       </bpmn:extensionElements>
diff --git a/scb-scanprocesses/ssh-process/src/main/resources/forms.mozilla_ssh/configure-target.html b/scb-scanprocesses/ssh-process/src/main/resources/forms.mozilla_ssh/configure-target.html
deleted file mode 100644
index 0dd40bed..00000000
--- a/scb-scanprocesses/ssh-process/src/main/resources/forms.mozilla_ssh/configure-target.html
+++ /dev/null
@@ -1,128 +0,0 @@
-<!--
-  ~ /*
-  ~ * SecureCodeBox (SCB)
-  ~ * Copyright 2015-2018 iteratec GmbH
-  ~ *
-  ~ * Licensed under the Apache License, Version 2.0 (the "License");
-  ~ * you may not use this file except in compliance with the License.
-  ~ * You may obtain a copy of the License at
-  ~ *
-  ~ * 	http://www.apache.org/licenses/LICENSE-2.0
-  ~ *
-  ~ * Unless required by applicable law or agreed to in writing, software
-  ~ * distributed under the License is distributed on an "AS IS" BASIS,
-  ~ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-  ~ * See the License for the specific language governing permissions and
-  ~ * limitations under the License.
-  ~ */
-  -->
-
-<h2>Please configure the SSH Scan</h2>
-
-<form role="form" name="configure-target">
-
-    <script cam-script type="text/form-script">
-        camForm.on('form-loaded', function () {
-            camForm.variableManager.fetchVariable('DEFAULT_CONTEXT');
-            camForm.variableManager.fetchVariable('DEFAULT_TARGET_NAME');
-            camForm.variableManager.fetchVariable('DEFAULT_TARGET_LOCATION');
-            camForm.variableManager.fetchVariable('DEFAULT_TARGET_URI');
-        });
-
-        camForm.on('variables-fetched', function () {
-            $scope.context = camForm.variableManager.variableValue('DEFAULT_CONTEXT');
-
-            $scope.targetList = [{
-                name: camForm.variableManager.variableValue('DEFAULT_TARGET_NAME'),
-                location: camForm.variableManager.variableValue('DEFAULT_TARGET_LOCATION')
-            }];
-
-            $scope.addTarget = function () {
-                $scope.targetList.push({'name':'', 'location': ''});
-            };
-
-            $scope.checkForEnter = function ($event) {
-                if ($event.key === 'Enter') {
-                    $scope.addTarget();
-                    $event.stopPropagation();
-                    $event.preventDefault();
-                }
-            };
-        });
-
-        camForm.on('submit', function () {
-            camForm.variableManager.destroyVariable('PROCESS_TARGETS');
-            camForm.variableManager.createVariable({
-                name: 'PROCESS_TARGETS',
-                type: 'Object',
-                value: JSON.stringify($scope.targetList),
-                valueInfo: {
-                    serializationDataFormat: 'application/json',
-                    objectTypeName: 'java.lang.String'
-                }
-            });
-        });
-
-    </script>
-
-    <div class="row">
-
-        <div class="col-xs-12">
-            <h3>SSH scan Target</h3>
-
-            <!-- Target Hosts -->
-            <div class="form-group">
-                <div class="controls row form-group" ng-repeat="target in targetList track by $index">
-                    <div class="col-xs-5">
-                        <label>Target Name</label>
-                        <input required class="form-control"
-                               type="text"
-                               placeholder="Public Site Name"
-                               ng-minlength="2"
-                               ng-maxlength="30"
-                               ng-model="target.name"/>
-                    </div>
-                    <div class="col-xs-6">
-                        <label>Target Hosts</label>
-                        <input required class="form-control"
-                               type="text"
-                               placeholder="Hostname/IP address"
-                               ng-minlength="3"
-                               ng-maxlength="100"
-                               ng-model="target.location"
-                               ng-keydown="checkForEnter($event)"
-                        />
-                    </div>
-                    <div class="col-xs-1">
-                        <button class="btn btn-danger btn-lg"
-                                ng-click="targetList.splice($index, 1)"
-                                ng-disabled="targetList.length === 1"
-                                style="position: absolute; right: 15px; top: 0;">
-                            <span class="glyphicon glyphicon-trash"></span>
-                        </button>
-                    </div>
-                </div>
-                <button class="btn btn-primary" ng-click="addTarget()">Add Host</button>
-                <code class="hidden">{{ targetList }}</code>
-            </div>
-
-            <!-- Context (Project/Team/System...) -->
-            <div class="form-group">
-                <label for="inputContext">Business Context (Project/Team/System)</label>
-                <div class="controls">
-                    <input class="form-control"
-                           id="inputContext"
-                           cam-variable-type="String"
-                           cam-variable-name="PROCESS_CONTEXT"
-                           type="text"
-                           placeholder="Project/Team/System"
-                           ng-required="false"
-                           ng-maxlength="50"
-                           ng-model="context"
-                           name="context" />
-                </div>
-            </div>
-
-        </div>
-    </div>
-</form>
diff --git a/scb-scanprocesses/ssh-process/src/main/resources/forms.mozilla_ssh/approve-results.html b/scb-scanprocesses/ssh-process/src/main/resources/forms.ssh/approve-results.html
similarity index 100%
rename from scb-scanprocesses/ssh-process/src/main/resources/forms.mozilla_ssh/approve-results.html
rename to scb-scanprocesses/ssh-process/src/main/resources/forms.ssh/approve-results.html
diff --git a/scb-scanprocesses/mozilla-ssh-process/src/main/resources/forms.mozilla_ssh/configure-target.html b/scb-scanprocesses/ssh-process/src/main/resources/forms.ssh/configure-target.html
similarity index 100%
rename from scb-scanprocesses/mozilla-ssh-process/src/main/resources/forms.mozilla_ssh/configure-target.html
rename to scb-scanprocesses/ssh-process/src/main/resources/forms.ssh/configure-target.html
diff --git a/scb-sdk/src/main/java/io/securecodebox/scanprocess/delegate/SummaryGeneratorDelegate.java b/scb-sdk/src/main/java/io/securecodebox/scanprocess/delegate/SummaryGeneratorDelegate.java
index 2ebbecc8..a460b1b7 100644
--- a/scb-sdk/src/main/java/io/securecodebox/scanprocess/delegate/SummaryGeneratorDelegate.java
+++ b/scb-sdk/src/main/java/io/securecodebox/scanprocess/delegate/SummaryGeneratorDelegate.java
@@ -54,7 +54,6 @@ public class SummaryGeneratorDelegate implements JavaDelegate {
 
     @Override
     public void execute(DelegateExecution delegateExecution) {
-
         List<Finding> findings = new LinkedList<>(ProcessVariableHelper.readListFromValue(
                 (String) delegateExecution.getVariable(DefaultFields.PROCESS_FINDINGS.name()), Finding.class));
         removeDuplicates(findings);

From bd7080db2815a1164c1c1e89e84a4a8e7b5f138c Mon Sep 17 00:00:00 2001
From: Daniel Patanin <Daniel.Patanin@iteratec.de>
Date: Wed, 20 Mar 2019 13:24:43 +0100
Subject: [PATCH 06/11] fixed forms directory

---
 .../main/resources/{forms.ssh => forms/ssh}/approve-results.html  | 0
 .../main/resources/{forms.ssh => forms/ssh}/configure-target.html | 0
 2 files changed, 0 insertions(+), 0 deletions(-)
 rename scb-scanprocesses/ssh-process/src/main/resources/{forms.ssh => forms/ssh}/approve-results.html (100%)
 rename scb-scanprocesses/ssh-process/src/main/resources/{forms.ssh => forms/ssh}/configure-target.html (100%)

diff --git a/scb-scanprocesses/ssh-process/src/main/resources/forms.ssh/approve-results.html b/scb-scanprocesses/ssh-process/src/main/resources/forms/ssh/approve-results.html
similarity index 100%
rename from scb-scanprocesses/ssh-process/src/main/resources/forms.ssh/approve-results.html
rename to scb-scanprocesses/ssh-process/src/main/resources/forms/ssh/approve-results.html
diff --git a/scb-scanprocesses/ssh-process/src/main/resources/forms.ssh/configure-target.html b/scb-scanprocesses/ssh-process/src/main/resources/forms/ssh/configure-target.html
similarity index 100%
rename from scb-scanprocesses/ssh-process/src/main/resources/forms.ssh/configure-target.html
rename to scb-scanprocesses/ssh-process/src/main/resources/forms/ssh/configure-target.html

From ab5b6ef0db0cb2679e9fd95ebfbe759fdd7e9259 Mon Sep 17 00:00:00 2001
From: Daniel Patanin <Daniel.Patanin@iteratec.de>
Date: Mon, 25 Mar 2019 09:59:54 +0100
Subject: [PATCH 07/11] Fix forms naming issue

---
 .../src/main/resources/forms/ssh/approve-results.html            | 1 -
 .../src/main/resources/forms/ssh/configure-target.html           | 1 -
 2 files changed, 2 deletions(-)

diff --git a/scb-scanprocesses/ssh-process/src/main/resources/forms/ssh/approve-results.html b/scb-scanprocesses/ssh-process/src/main/resources/forms/ssh/approve-results.html
index c58e7ed2..8e18ecae 100644
--- a/scb-scanprocesses/ssh-process/src/main/resources/forms/ssh/approve-results.html
+++ b/scb-scanprocesses/ssh-process/src/main/resources/forms/ssh/approve-results.html
@@ -51,7 +51,6 @@ <h2>SSH scan results for "{{ target.name }}"</h2>
             <div class="col-xs-2"><label>Business Context:</label></div>
             <div class="col-xs-10">{{ context }}</div>
         </div>
-        <blockquote>Scanner Results "{{ $scope.scannerResult }}"</blockquote>
         <div class="row">
             <div class="col-xs-12">
                 <div class="well well-sm"
diff --git a/scb-scanprocesses/ssh-process/src/main/resources/forms/ssh/configure-target.html b/scb-scanprocesses/ssh-process/src/main/resources/forms/ssh/configure-target.html
index 0dd40bed..383ad225 100644
--- a/scb-scanprocesses/ssh-process/src/main/resources/forms/ssh/configure-target.html
+++ b/scb-scanprocesses/ssh-process/src/main/resources/forms/ssh/configure-target.html
@@ -51,7 +51,6 @@ <h2>Please configure the SSH Scan</h2>
         });
 
         camForm.on('submit', function () {
-            camForm.variableManager.destroyVariable('PROCESS_TARGETS');
             camForm.variableManager.createVariable({
                 name: 'PROCESS_TARGETS',
                 type: 'Object',

From 707537079fd9f85a3ee3b72ee7b6292db42677f4 Mon Sep 17 00:00:00 2001
From: Jannik Hollenbach <Jannik.Hollenbach@iteratec.de>
Date: Wed, 10 Apr 2019 14:58:22 +0200
Subject: [PATCH 08/11] Added description to result display

---
 .../src/main/resources/forms/ssh/approve-results.html        | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/scb-scanprocesses/ssh-process/src/main/resources/forms/ssh/approve-results.html b/scb-scanprocesses/ssh-process/src/main/resources/forms/ssh/approve-results.html
index 8e18ecae..051bdfd0 100644
--- a/scb-scanprocesses/ssh-process/src/main/resources/forms/ssh/approve-results.html
+++ b/scb-scanprocesses/ssh-process/src/main/resources/forms/ssh/approve-results.html
@@ -59,6 +59,7 @@ <h2>SSH scan results for "{{ target.name }}"</h2>
                         <tr>
                             <th>Host:</th>
                             <th>Name:</th>
+                            <th>Description:</th>
                             <th>Category:</th>
                             <th>Severity:</th>
                             <th>Reference:</th>
@@ -66,6 +67,7 @@ <h2>SSH scan results for "{{ target.name }}"</h2>
                         <tr class="danger" ng-repeat="result in scannerResult">
                             <td>{{ result.location }}</td>
                             <td>{{ result.name }}</td>
+                            <td>{{ result.description }}</td>
                             <td>{{ result.category }}</td>
                             <td>
                                 <div ng-switch on="result.severity">
@@ -94,8 +96,7 @@ <h2>SSH scan results for "{{ target.name }}"</h2>
                                 </span>
                                 </div>
                             </td>
-                            <td> {{ result.reference.id }}
-                            </td>
+                            <td>{{ result.reference.id }}</td>
                         </tr>
                     </table>
                 </div>

From e57015a97c20b5f2d48df375ab95eca8c474cfe1 Mon Sep 17 00:00:00 2001
From: Jannik Hollenbach <Jannik.Hollenbach@iteratec.de>
Date: Wed, 17 Apr 2019 09:37:13 +0200
Subject: [PATCH 09/11] Accept "/" in nmap target locations to support slash
 ranges

---
 .../resources/forms/nmap/configure-port-scanner-target.html     | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/scb-scanprocesses/nmap-process/src/main/resources/forms/nmap/configure-port-scanner-target.html b/scb-scanprocesses/nmap-process/src/main/resources/forms/nmap/configure-port-scanner-target.html
index c5e1ddd2..65812953 100644
--- a/scb-scanprocesses/nmap-process/src/main/resources/forms/nmap/configure-port-scanner-target.html
+++ b/scb-scanprocesses/nmap-process/src/main/resources/forms/nmap/configure-port-scanner-target.html
@@ -97,7 +97,7 @@ <h3>Portscan Target</h3>
                                ng-minlength="2"
                                ng-maxlength="256"
                                ng-model="target.location"
-                               ng-pattern="/^(([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9\-]*[a-zA-Z0-9])\.)*([A-Za-z0-9]|[A-Za-z0-9][A-Za-z0-9\-]*[A-Za-z0-9])$/"
+                               ng-pattern="/^(([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9\-]*[a-zA-Z0-9])\.)*([A-Za-z0-9]|[A-Za-z0-9][A-Za-z0-9\-\/]*[A-Za-z0-9])$/"
                                ng-keydown="checkForEnter($event)"
                         />
                     </div>

From fb03bf7d70e93a40859111a05f4daa347d177e16 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Wed, 24 Apr 2019 07:11:04 +0000
Subject: [PATCH 10/11] fix: pom.xml to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORKSECURITY-174111
---
 pom.xml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/pom.xml b/pom.xml
index 6970ff7b..cb8ef41b 100644
--- a/pom.xml
+++ b/pom.xml
@@ -60,7 +60,7 @@
         <camunda.spring.boot.starter.version>3.2.0</camunda.spring.boot.starter.version>
         <!-- END IMPORTANT -->
 
-        <spring-boot.version>2.1.2.RELEASE</spring-boot.version>
+        <spring-boot.version>2.1.4.RELEASE</spring-boot.version>
         <swagger-version>2.9.0</swagger-version>
         <project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
     </properties>

From 3d9f1ba075f53a69148ed4aa32d159c887442ff1 Mon Sep 17 00:00:00 2001
From: Jannik Hollenbach <Jannik.Hollenbach@iteratec.de>
Date: Wed, 24 Apr 2019 14:51:35 +0200
Subject: [PATCH 11/11] Suppresses CVE-2019-0232, only relevant for windows
 systems

---
 dependency-check-suppression.xml | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/dependency-check-suppression.xml b/dependency-check-suppression.xml
index 26b693ba..55143e31 100644
--- a/dependency-check-suppression.xml
+++ b/dependency-check-suppression.xml
@@ -38,5 +38,12 @@
         <cve>CVE-2016-5425</cve>
     </suppress>
 
+    <!--
+    The issue CVE-2019-0232 seems to only affect Windows Systems. The engine isn' intended run run windows.
+        -->
+    <suppress>
+        <cve>CVE-2019-0232</cve>
+    </suppress>
+
 
 </suppressions>