New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[WFLY-18073] Add the OWASP dependency-check plugin to the WildFly build. #17686
Commits on Feb 9, 2024
-
Configuration menu - View commit details
-
Copy full SHA for 71d0344 - Browse repository at this point
Copy the full SHA 71d0344View commit details -
[WFLY-18073] Add a supression file and start by excluding ApacheDS as…
… only used for tests.
Configuration menu - View commit details
-
Copy full SHA for 1d8884e - Browse repository at this point
Copy the full SHA 1d8884eView commit details -
Configuration menu - View commit details
-
Copy full SHA for d3dbd10 - Browse repository at this point
Copy the full SHA d3dbd10View commit details -
Configuration menu - View commit details
-
Copy full SHA for 939696e - Browse repository at this point
Copy the full SHA 939696eView commit details -
Configuration menu - View commit details
-
Copy full SHA for 56195a1 - Browse repository at this point
Copy the full SHA 56195a1View commit details -
Configuration menu - View commit details
-
Copy full SHA for e91589f - Browse repository at this point
Copy the full SHA e91589fView commit details -
Configuration menu - View commit details
-
Copy full SHA for 98721fe - Browse repository at this point
Copy the full SHA 98721feView commit details -
[WFLY-18073] Supress CVE-2023-35116 as FasterXML dispute that this is…
… a vulnerability.
Configuration menu - View commit details
-
Copy full SHA for 5688437 - Browse repository at this point
Copy the full SHA 5688437View commit details -
[WFLY-18073] This module is the Elytron security integration with Res…
…tEasy so don't associate with the RestEasy CPE.
Configuration menu - View commit details
-
Copy full SHA for de46a49 - Browse repository at this point
Copy the full SHA de46a49View commit details -
[WFLY-18073] Supressing CVE-2020-1732, we have compensated for this b…
…y associating the CallbackHandler with a ThreadLocal.
Configuration menu - View commit details
-
Copy full SHA for 9f090a5 - Browse repository at this point
Copy the full SHA 9f090a5View commit details -
Configuration menu - View commit details
-
Copy full SHA for 3dd1d53 - Browse repository at this point
Copy the full SHA 3dd1d53View commit details -
[WFLY-18073] Supress CVE-2016-2141 when reported against jgroups-aws …
…as this applies to the top level jgroups project. This is not a CPE supression as CVEs raised against this artefact could use a similar CPE.
Configuration menu - View commit details
-
Copy full SHA for f755360 - Browse repository at this point
Copy the full SHA f755360View commit details
Commits on Feb 14, 2024
-
Configuration menu - View commit details
-
Copy full SHA for 34147d4 - Browse repository at this point
Copy the full SHA 34147d4View commit details -
Configuration menu - View commit details
-
Copy full SHA for 241d14b - Browse repository at this point
Copy the full SHA 241d14bView commit details -
[WFLY-18073] Supress CVE-2021-41973 for mina-core as this comes in vi…
…a ApacheDS for testing.
Configuration menu - View commit details
-
Copy full SHA for eaf8d1b - Browse repository at this point
Copy the full SHA eaf8d1bView commit details -
Configuration menu - View commit details
-
Copy full SHA for dfa23f1 - Browse repository at this point
Copy the full SHA dfa23f1View commit details -
Configuration menu - View commit details
-
Copy full SHA for 0ea95f2 - Browse repository at this point
Copy the full SHA 0ea95f2View commit details -
Configuration menu - View commit details
-
Copy full SHA for 1b7eb4a - Browse repository at this point
Copy the full SHA 1b7eb4aView commit details
Commits on Mar 4, 2024
-
Configuration menu - View commit details
-
Copy full SHA for 798dac4 - Browse repository at this point
Copy the full SHA 798dac4View commit details -
Configuration menu - View commit details
-
Copy full SHA for 5018221 - Browse repository at this point
Copy the full SHA 5018221View commit details -
Configuration menu - View commit details
-
Copy full SHA for e0f3eb6 - Browse repository at this point
Copy the full SHA e0f3eb6View commit details -
[WFLY-18073] Supress CVE-2024-25710 and CVE-2024-26308 as commons-com…
…press is a test dependency via testcontainer.
Configuration menu - View commit details
-
Copy full SHA for 375cdb4 - Browse repository at this point
Copy the full SHA 375cdb4View commit details -
[WFLY-18073] Supress the OTel CVEs as these are against other compone…
…nts such as Python and Go.
Configuration menu - View commit details
-
Copy full SHA for 6387d4d - Browse repository at this point
Copy the full SHA 6387d4dView commit details -
[WFLY-18073] Supress CPE cpe:2.3:a:linux_audit_project:linux_audit:2.…
…3.1:*:*:*:*:*:*:* as this is a bad match for Elytron.
Configuration menu - View commit details
-
Copy full SHA for cc31ca9 - Browse repository at this point
Copy the full SHA cc31ca9View commit details -
[WFLY-18073] Set of Rest Easy supressions that relate to RestEasy ite…
…self not these separate projects.
Configuration menu - View commit details
-
Copy full SHA for f33627e - Browse repository at this point
Copy the full SHA f33627eView commit details -
Configuration menu - View commit details
-
Copy full SHA for dcfd1f2 - Browse repository at this point
Copy the full SHA dcfd1f2View commit details -
Configuration menu - View commit details
-
Copy full SHA for a94fc5f - Browse repository at this point
Copy the full SHA a94fc5fView commit details -
[WFLY-18073] wildfly-plugins-core is not WildFly and not WildFly Core…
… so add supressions.
Configuration menu - View commit details
-
Copy full SHA for ebf3246 - Browse repository at this point
Copy the full SHA ebf3246View commit details -
[WFLY-18073] The Galleon Plugins transformer artifact should not matc…
…h cpe redhat:wildfly.
Configuration menu - View commit details
-
Copy full SHA for ea06db8 - Browse repository at this point
Copy the full SHA ea06db8View commit details -
Configuration menu - View commit details
-
Copy full SHA for 63c966f - Browse repository at this point
Copy the full SHA 63c966fView commit details -
Configuration menu - View commit details
-
Copy full SHA for cedb66a - Browse repository at this point
Copy the full SHA cedb66aView commit details -
Configuration menu - View commit details
-
Copy full SHA for e203bef - Browse repository at this point
Copy the full SHA e203befView commit details -
Configuration menu - View commit details
-
Copy full SHA for 7b3d618 - Browse repository at this point
Copy the full SHA 7b3d618View commit details
Commits on Mar 8, 2024
-
[WFLY-18073] Ignore CVE-2021-20293 for two reasons:
1. It is not matched against the correct components. 2. It was decided this is not a CVE and is the user's responsibility.
Configuration menu - View commit details
-
Copy full SHA for 7d85cd5 - Browse repository at this point
Copy the full SHA 7d85cd5View commit details
Commits on Mar 15, 2024
-
[WFLY-18073] This CVE should not be matching against resteasy-spring,
the affected functionality has also been removed from RestEasy already.
Configuration menu - View commit details
-
Copy full SHA for 529d77d - Browse repository at this point
Copy the full SHA 529d77dView commit details