Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(harbor): Setup version stream for 2.10 #16129

Merged
merged 1 commit into from
Apr 1, 2024
Merged

chore(harbor): Setup version stream for 2.10 #16129

merged 1 commit into from
Apr 1, 2024

Conversation

EyeCantCU
Copy link
Member

  • Pin to 2.10
  • Rename harbor-core to harbor to simplify packaging for version streams
  • Withdraw non-versioned harbor

For new version streams

  • The upstream project actually supports multiple concurrent versions.
  • Any subpackages include the version string in their package name (e.g. name: ${{package.name}}-compat)
  • The package (and subpackages) provides: logical unversioned forms of the package (e.g. nodejs, nodejs-lts)

@EyeCantCU
chore(harbor): Setup version stream for 2.10
c89f5a7 
- Pin to 2.10
- Rename harbor-core to harbor to simplify packaging for version streams
- Withdraw non-versioned harbor

Signed-off-by: RJ Sampson <rj.sampson@chainguard.dev>
@github-actions GitHub Actions
Copy link
Contributor

github-actions bot commented Apr 1, 2024

Package harbor-2.10-jobservice: Click to expand/collapse

Package harbor-2.10-jobservice:
Added: /.PKGINFO
Added: /usr/bin/harbor-jobservice

Package harbor-2.10-portal: Click to expand/collapse

Package harbor-2.10-portal:
Added: /.PKGINFO
Added: /usr/share/nginx/html/1258.afb6367f114d0d88.js
Added: /usr/share/nginx/html/1653.1f5567d886b73afc.js
Added: /usr/share/nginx/html/1683.136563970cd0fd15.js
Added: /usr/share/nginx/html/2079.fd0f6568a232105b.js
Added: /usr/share/nginx/html/2789.e3bdd5f7452a2056.js
Added: /usr/share/nginx/html/2914.f5bb47976a370ea7.js
Added: /usr/share/nginx/html/3031.b707cc19f29fd705.js
Added: /usr/share/nginx/html/3204.585822ab7c82eabf.js
Added: /usr/share/nginx/html/3274.0198fd8eea34daa1.js
Added: /usr/share/nginx/html/3322.4402085913684103.js
Added: /usr/share/nginx/html/3651.1068219fd24c960e.js
Added: /usr/share/nginx/html/3664.eebf3564c283b660.js
Added: /usr/share/nginx/html/3751.cbde41d679daa5eb.js
Added: /usr/share/nginx/html/3785.47bf997ad2c6dc7d.js
Added: /usr/share/nginx/html/3rdpartylicenses.txt
Added: /usr/share/nginx/html/4529.3d0f9ac9062e1778.js
Added: /usr/share/nginx/html/4554.109c3b83fcfe0a4f.js
Added: /usr/share/nginx/html/4665.9fdcb7780b0842dc.js
Added: /usr/share/nginx/html/4771.c2cdabc0bc353a3e.js
Added: /usr/share/nginx/html/4812.a7ed33fe617730ca.js
Added: /usr/share/nginx/html/488.4fb0974f11ad58b4.js
Added: /usr/share/nginx/html/5070.062de1baeb2bd609.js
Added: /usr/share/nginx/html/5077.09438d825b4f750c.js
Added: /usr/share/nginx/html/5206.e907491daa7880a9.js
Added: /usr/share/nginx/html/5514.296fea282f12c0c5.js
Added: /usr/share/nginx/html/5691.435ce2a59790388c.js
Added: /usr/share/nginx/html/5738.88e55337743d3d99.js
Added: /usr/share/nginx/html/575.cebc430388c5a933.js
Added: /usr/share/nginx/html/5814.c68487fcaaae3037.js
Added: /usr/share/nginx/html/5817.e3be35a21c6bf7b6.js
Added: /usr/share/nginx/html/583.3be05dc663d97d04.js
Added: /usr/share/nginx/html/5834.0f034a8865a2fa2a.js
Added: /usr/share/nginx/html/6093.ab66451ff59a4176.js
Added: /usr/share/nginx/html/6149.0e5abcd8adce08e6.js
Added: /usr/share/nginx/html/6253.52dee94778778873.js
Added: /usr/share/nginx/html/6379.b57a7f2dcbbb8c9d.js
Added: /usr/share/nginx/html/6809.9238534a5156153f.js
Added: /usr/share/nginx/html/7215.b14bf4648bf7274b.js
Added: /usr/share/nginx/html/7922.b872a030a38cda25.js
Added: /usr/share/nginx/html/7939.4d52b00cbf1394c1.js
Added: /usr/share/nginx/html/795.fd1ee16523f75c32.js
Added: /usr/share/nginx/html/8244.8a4d04dfdbb4a930.js
Added: /usr/share/nginx/html/8343.93e2a2e5e0c1325b.js
Added: /usr/share/nginx/html/8787.b4e483ab9392f798.js
Added: /usr/share/nginx/html/8833.166f67533572b26d.js
Added: /usr/share/nginx/html/9546.af0a165002d12592.js
Added: /usr/share/nginx/html/9942.7bd3c4d96dd3ee9a.js
Added: /usr/share/nginx/html/LICENSE
Added: /usr/share/nginx/html/common.fbb4c0926a6170df.js
Added: /usr/share/nginx/html/dark-theme.css
Added: /usr/share/nginx/html/favicon.ico
Added: /usr/share/nginx/html/i18n/lang/de-de-lang.json
Added: /usr/share/nginx/html/i18n/lang/en-us-lang.json
Added: /usr/share/nginx/html/i18n/lang/es-es-lang.json
Added: /usr/share/nginx/html/i18n/lang/fr-fr-lang.json
Added: /usr/share/nginx/html/i18n/lang/pt-br-lang.json
Added: /usr/share/nginx/html/i18n/lang/tr-tr-lang.json
Added: /usr/share/nginx/html/i18n/lang/zh-cn-lang.json
Added: /usr/share/nginx/html/i18n/lang/zh-tw-lang.json
Added: /usr/share/nginx/html/images/artifact-chart.svg
Added: /usr/share/nginx/html/images/artifact-cnab.svg
Added: /usr/share/nginx/html/images/artifact-default.svg
Added: /usr/share/nginx/html/images/artifact-image.svg
Added: /usr/share/nginx/html/images/artifact-openpolicyagent.svg
Added: /usr/share/nginx/html/images/harbor-logo.svg
Added: /usr/share/nginx/html/images/helm-gray.svg
Added: /usr/share/nginx/html/images/kraken-logo-color.svg
Added: /usr/share/nginx/html/index.html
Added: /usr/share/nginx/html/light-theme.css
Added: /usr/share/nginx/html/main.4cef108c0f16930f.js
Added: /usr/share/nginx/html/polyfills.67cfd31b2752cc11.js
Added: /usr/share/nginx/html/runtime.34a7891c0831212e.js
Added: /usr/share/nginx/html/scripts.3846d86d42cdb753.js
Added: /usr/share/nginx/html/setting.json
Added: /usr/share/nginx/html/styles.75cb4562f0127450.css
Added: /usr/share/nginx/html/swagger-ui-index.html
Added: /usr/share/nginx/html/swagger-ui.bundle.js
Added: /usr/share/nginx/html/swagger-ui.bundle.js.LICENSE.txt
Added: /usr/share/nginx/html/swagger.json

Package harbor-2.10-portal-nginx-config: Click to expand/collapse

Package harbor-2.10-portal-nginx-config:
Added: /.PKGINFO
Added: /etc/nginx/fastcgi.conf
Added: /etc/nginx/fastcgi.conf.default
Added: /etc/nginx/fastcgi_params
Added: /etc/nginx/fastcgi_params.default
Added: /etc/nginx/koi-utf
Added: /etc/nginx/koi-win
Added: /etc/nginx/mime.types
Added: /etc/nginx/mime.types.default
Added: /etc/nginx/nginx.conf
Added: /etc/nginx/nginx.conf.default
Added: /etc/nginx/scgi_params
Added: /etc/nginx/scgi_params.default
Added: /etc/nginx/uwsgi_params
Added: /etc/nginx/uwsgi_params.default
Added: /etc/nginx/win-utf

Package harbor-2.10-registryctl: Click to expand/collapse

Package harbor-2.10-registryctl:
Added: /.PKGINFO
Added: /usr/bin/harbor-registryctl

Package harbor-2.10: Click to expand/collapse

Package harbor-2.10:
Added: /.PKGINFO
Added: /harbor/icons/chart.png
Added: /harbor/icons/cnab.png
Added: /harbor/icons/cosign.png
Added: /harbor/icons/default.png
Added: /harbor/icons/image.png
Added: /harbor/icons/notation.png
Added: /harbor/icons/nydus.png
Added: /harbor/icons/wasm.png
Added: /harbor/migrations/postgresql/0001_initial_schema.up.sql
Added: /harbor/migrations/postgresql/0002_1.7.0_schema.up.sql
Added: /harbor/migrations/postgresql/0003_add_replication_op_uuid.up.sql
Added: /harbor/migrations/postgresql/0004_1.8.0_schema.up.sql
Added: /harbor/migrations/postgresql/0005_1.8.2_schema.up.sql
Added: /harbor/migrations/postgresql/0010_1.9.0_schema.up.sql
Added: /harbor/migrations/postgresql/0011_1.9.1_schema.up.sql
Added: /harbor/migrations/postgresql/0012_1.9.4_schema.up.sql
Added: /harbor/migrations/postgresql/0015_1.10.0_schema.up.sql
Added: /harbor/migrations/postgresql/0030_2.0.0_schema.up.sql
Added: /harbor/migrations/postgresql/0031_2.0.3_schema.up.sql
Added: /harbor/migrations/postgresql/0040_2.1.0_schema.up.sql
Added: /harbor/migrations/postgresql/0041_2.1.4_schema.up.sql
Added: /harbor/migrations/postgresql/0050_2.2.0_schema.up.sql
Added: /harbor/migrations/postgresql/0051_2.2.1_schema.up.sql
Added: /harbor/migrations/postgresql/0052_2.2.2_schema.up.sql
Added: /harbor/migrations/postgresql/0053_2.2.3_schema.up.sql
Added: /harbor/migrations/postgresql/0060_2.3.0_schema.up.sql
Added: /harbor/migrations/postgresql/0061_2.3.4_schema.up.sql
Added: /harbor/migrations/postgresql/0070_2.4.0_schema.up.sql
Added: /harbor/migrations/postgresql/0071_2.4.2_schema.up.sql
Added: /harbor/migrations/postgresql/0080_2.5.0_schema.up.sql
Added: /harbor/migrations/postgresql/0081_2.5.2_schema.up.sql
Added: /harbor/migrations/postgresql/0082_2.5.3_schema.up.sql
Added: /harbor/migrations/postgresql/0090_2.6.0_schema.up.sql
Added: /harbor/migrations/postgresql/0091_2.6.2_schema.up.sql
Added: /harbor/migrations/postgresql/0100_2.7.0_schema.up.sql
Added: /harbor/migrations/postgresql/0110_2.8.0_schema.up.sql
Added: /harbor/migrations/postgresql/0111_2.8.1_schema.up.sql
Added: /harbor/migrations/postgresql/0120_2.9.0_schema.up.sql
Added: /harbor/migrations/postgresql/0130_2.10.0_schema.up.sql
Added: /harbor/views/404.tpl
Added: /harbor/views/reset-password-mail.tpl
Added: /usr/bin/harbor-core

bincapz found differences: Click to expand/collapse

Deleted: harbor-2.10-portal/usr/share/nginx/html/swagger-ui.bundle.js

RISK KEY DESCRIPTION
meta lang php
-3/HIGH combo/stealer/browser uses HTTP, archives, and references multiple browsers: "Chrome
Firefox
POST
http
zip"
-3/HIGH techniques/code_eval evaluate code dynamically using exec()
-2/MEDIUM data/embedded/base64/url contains base64 url: "aHR0cDovL::$http
h0dHA6Ly::$http
odHRwOi8v::$http"
-2/MEDIUM net/download downloads files
-2/MEDIUM net/fetch invokes curl: "curl cvpa dbp del diff dir dnsn ebp echo
curl microlight""
-2/MEDIUM net/http/cookies able to access HTTP resources using cookies
-2/MEDIUM net/http/form/upload upload content via HTTP form
-2/MEDIUM net/http/post able to submit content via HTTP POST
-2/MEDIUM net/upload uploads files
-2/MEDIUM net/url/encode encodes URL, likely to pass GET variables
-2/MEDIUM ref/program/powershell powershell: "powershell"
-1/LOW encoding/base64 supports base64 encoded strings
-1/LOW encoding/json/decode jsondecode
-1/LOW encoding/json/encode encodes JSON
-1/LOW fs/directory/remove uses libc functions to remove directories
-1/LOW fs/file/capabilities/set set file capabilities
-1/LOW fs/link/create may create hard file links
-1/LOW fs/mount mounts file systems
-1/LOW net/hostname/resolve resolves network host names
-1/LOW net/http/request makes HTTP requests
-1/LOW net/oauth2 supports OAuth2
-1/LOW ref/path/hidden possible hidden file path: "/csv/.test
/plain/.test
/xml/.test"
-1/LOW ref/site/url contains embedded HTTPS URLs:
https://example.com/dictionary/
highlightjs/highlight.js#2277
highlightjs/highlight.js#2534
highlightjs/highlight.js#2559
highlightjs/highlight.js#2844
https://github.com/zloirock/core-js/blob/v3.33.2/LICENSE
https://instagram.com/explore/tags/
https://json-schema.org/draft/2020-12/schema
https://petstore.swagger.io/v2/swagger.json
https://reactjs.org/docs/error-decoder.html?invariant=
https://reactjs.org/link/react-polyfills
https://redux.js.org/Errors?code=
https://soundcloud.com/
https://spdx.org/licenses/
https://spec.openapis.org/oas/3.1/dialect/base
https://swagger.io
https://twitter.com/hashtag/
https://validator.swagger.io/validator
https://www.facebook.com/hashtag/
https://www.tiktok.com/@
https://www.tiktok.com/tag/
-1/LOW ref/words/password references a password: "Password
password"

Deleted: harbor-2.10-portal/usr/share/nginx/html/1258.afb6367f114d0d88.js

RISK KEY DESCRIPTION
-2/MEDIUM net/http/post able to submit content via HTTP POST
-2/MEDIUM net/url/request requests resources via URL

Deleted: harbor-2.10-portal/usr/share/nginx/html/6379.b57a7f2dcbbb8c9d.js

RISK KEY DESCRIPTION
-2/MEDIUM net/http/post able to submit content via HTTP POST
-2/MEDIUM net/url/request requests resources via URL

Deleted: harbor-2.10-portal/usr/share/nginx/html/main.4cef108c0f16930f.js

RISK KEY DESCRIPTION
-2/MEDIUM net/download downloads files
-2/MEDIUM net/http/cookies able to access HTTP resources using cookies
-2/MEDIUM net/http/form/upload upload content via HTTP form
-2/MEDIUM net/http/post able to submit content via HTTP POST
-2/MEDIUM net/upload uploads files
-2/MEDIUM net/url/encode encodes URL, likely to pass GET variables
-2/MEDIUM net/url/request requests resources via URL
-2/MEDIUM ref/words/intercept references interception: "intercept"
-1/LOW encoding/json/decode jsondecode
-1/LOW encoding/json/encode encodes JSON
-1/LOW fs/file/delete deletes files
-1/LOW ref/site/url contains embedded HTTPS URLs: "https://g.co/ng/security"
-1/LOW ref/words/password references a password: "password"

Deleted: harbor-2.10-portal/usr/share/nginx/html/5814.c68487fcaaae3037.js

RISK KEY DESCRIPTION
-1/LOW encoding/json/decode jsondecode
-1/LOW encoding/json/encode encodes JSON

Deleted: harbor-2.10-portal/usr/share/nginx/html/4812.a7ed33fe617730ca.js

RISK KEY DESCRIPTION
-1/LOW encoding/json/decode jsondecode
-1/LOW encoding/json/encode encodes JSON

Deleted: harbor-2.10-portal/usr/share/nginx/html/common.fbb4c0926a6170df.js

RISK KEY DESCRIPTION
-2/MEDIUM exec/shell_command execute a shell command
-1/LOW encoding/json/encode encodes JSON

Deleted: harbor-2.10-portal/usr/share/nginx/html/1653.1f5567d886b73afc.js

RISK KEY DESCRIPTION
-2/MEDIUM exec/shell_command execute a shell command
-2/MEDIUM net/http/post able to submit content via HTTP POST
-2/MEDIUM net/url/request requests resources via URL
-1/LOW ref/words/password references a password: "password"

Deleted: harbor-2.10-portal/usr/share/nginx/html/5738.88e55337743d3d99.js

RISK KEY DESCRIPTION
-2/MEDIUM net/http/post able to submit content via HTTP POST
-2/MEDIUM net/url/request requests resources via URL

Deleted: harbor-2.10-portal/usr/share/nginx/html/8833.166f67533572b26d.js

RISK KEY DESCRIPTION
-1/LOW encoding/json/encode encodes JSON
-1/LOW fs/file/delete/forcibly forcibly deletes files using rm

Deleted: harbor-2.10-portal/usr/share/nginx/html/8787.b4e483ab9392f798.js

RISK KEY DESCRIPTION
-1/LOW fd/multiplex monitor multiple file descriptors

Deleted: harbor-2.10-portal/usr/share/nginx/html/3204.585822ab7c82eabf.js

RISK KEY DESCRIPTION
-1/LOW encoding/json/decode jsondecode

Deleted: harbor-2.10/usr/bin/harbor-core

RISK KEY DESCRIPTION
meta compiler go
meta lang c++
-3/HIGH ref/site/unusual unusual http hostname: "http://beego.vip/"
-2/MEDIUM archives/zip works with zip files
-2/MEDIUM combo/net/tunnel_proxy network tunnel proxy: "Proxy
TLS13
TLSVersion
crypto
proxy
socket
tunnel"
-2/MEDIUM data/embedded/html contains HTML content
-2/MEDIUM databases/mysql accesses MySQL databases
-2/MEDIUM databases/postgresql accesses PostgreSQL databases
-2/MEDIUM databases/sqlite accesses SQLite databases
-2/MEDIUM evasion/content/length/0 sets HTTP content length to zero
-2/MEDIUM exec/program executes another program
-2/MEDIUM exec/shell_echo uses the echo command to generate output
-2/MEDIUM fs/permission/chown changes file ownership
-2/MEDIUM fs/permission/modify modifies file permissions
-2/MEDIUM kernel/dev/block/device accesses raw generic block devices: "/dev/sda1"
-2/MEDIUM kernel/uname/get get system identification (os_release)
-2/MEDIUM net/dns/reverse looks up the reverse hostname for an IP
-2/MEDIUM net/download downloads files
-2/MEDIUM net/fetch executable calls fetch tool: "curl -v -X"
-2/MEDIUM net/http/cookies able to access HTTP resources using cookies
-2/MEDIUM net/http/post able to submit form content via HTTP POST
-2/MEDIUM net/ip/parse parses IP address (IPv4 or IPv6)
-2/MEDIUM net/mac/address retrieves network MAC address
-2/MEDIUM net/ntlm uses the Windows NTLM authentication scheme
-2/MEDIUM net/raw_sockets uses raw sockets
-2/MEDIUM net/upload uploads files
-2/MEDIUM net/url/encode encodes URL, likely to pass GET variables
-2/MEDIUM net/url/request requests resources via URL
-2/MEDIUM ref/extensions/office references multiple Office file extensions (possible exfil): "docm
docx
eml
ppam
ppt
xlsx"
-2/MEDIUM ref/path/etc/hosts references /etc/hosts: "/etc/hosts"
-2/MEDIUM ref/path/usr/local references paths within /usr/local: "/usr/local/share/mime/globs2mime"
-2/MEDIUM ref/site/http/dynamic uRL that is dynamically generated: "http://%sListen
http://%sdefaultVal
https://%s/auth/tokenmissing
https://%serror"
-2/MEDIUM ref/words/agent references an 'agent': "agentClientUDPParams
agentEndpointConfig
agentJan
agentPUBLIC
agentUploader
agent_host
agent_port
agentkeep
agents
http_user_agent
niltrace_jaeger_agent"
-2/MEDIUM ref/words/intercept references interception: "interceptors"
-2/MEDIUM ref/words/server_address references a 'server address', possible C2 client: "dserverAddressByClientCIDRsdeletionGracePer
preconditionsserverAddressincludeObjectlabelSelectorfie"
-1/LOW compression/gzip works with gzip files
-1/LOW crypto/aes supports AES (Advanced Encryption Standard)
-1/LOW crypto/ecdsa uses the Go crypto/ecdsa library
-1/LOW crypto/ed25519 elliptic curve algorithm used by TLS and SSH
-1/LOW crypto/tls tls
-1/LOW data/embedded/pem/test_key contains TESTING KEY directive
-1/LOW encoding/base64 supports base64 encoded strings
-1/LOW encoding/json supports JSON encoded objects
-1/LOW encoding/json/decode jsondecode
-1/LOW encoding/json/encode encodes JSON
-1/LOW env/USER uSER
-1/LOW fs/directory/list uses Go functions to list a directory
-1/LOW fs/directory/remove uses libc functions to remove directories
-1/LOW fs/file/delete deletes files
-1/LOW fs/file/read reads files
-1/LOW fs/file/times/set change file timestamps with nanosecond precision
-1/LOW fs/link/read read value of a symbolic link
-1/LOW fs/mount mounts file systems
-1/LOW fs/watch monitors filesystem events
-1/LOW kernel/cpu/info gets number of processors
-1/LOW kernel/hostname/get gets the hostname of the machine
-1/LOW kernel/netlink communicate with kernel services
-1/LOW kernel/seccomp operate on Secure Computing state of the process
-1/LOW net/dns uses DNS (Domain Name Service)
-1/LOW net/dns/txt uses DNS TXT (text) records
-1/LOW net/grpc uses the gRPC Remote Procedure Call framework
-1/LOW net/hostname/resolve uses Go to resolve network hosts
-1/LOW net/http/accept/encoding able to decode multiple forms of HTTP responses (example: gzip)
-1/LOW net/http/auth makes HTTP requests with basic authentication
-1/LOW net/http/request makes HTTP requests
-1/LOW net/http2 uses the HTTP/2 protocol
-1/LOW net/http_proxy able to use an HTTP proxy that requires authentication
-1/LOW net/ip/multicast/send send data to multiple nodes simultaneously
-1/LOW net/oauth2 supports OAuth2
-1/LOW net/sendfile transfer data between file descriptors
-1/LOW net/socket/listen listen on a socket
-1/LOW net/socket/local/address get local address of connected socket
-1/LOW net/socket/peer/address get peer address of connected socket
-1/LOW net/socket/receive receive a message from a socket
-1/LOW net/socket/send send a message to a socket
-1/LOW net/udp/receive listens for UDP responses
-1/LOW net/udp/send sends UDP packets
-1/LOW net/url handles URL strings
-1/LOW process/groupid/set set real and effective group ID of process
-1/LOW process/groups/set set group access list
-1/LOW ref/path/etc references paths within /etc:
/etc/apache/mime.typesgzip
/etc/ceph/keyring.
/etc/ceph/user.secret
/etc/core/ca/ca.crt/systeminfo/getcer
/etc/core/keymetric
/etc/core/private
/etc/group
/etc/hostsgetsockoptnetlinkrib
/etc/httpd/conf/mime.typesmime
/etc/machine-id/etc/os-releaseexporti
/etc/mime.types
/etc/nsswitch.confinvalid
/etc/os-releaseexporting
/etc/passwd
/etc/pki/ca-trust/extracted/pem/tls-c
/etc/pki/tls/cacert.peminvalid
/etc/pki/tls/certs/ca-bundle.crtx
/etc/protocolsunknown
/etc/resolv.confnon-
/etc/servicesdal
/etc/ssl/ca-bundle.pemx
/etc/ssl/cert.peminvalid
/etc/ssl/certs/ca-certificates.crtadd
/etc/zoneinfoparsing
-1/LOW ref/path/etc/resolv.conf accesses DNS resolver configuration: "/etc/resolv.conf"
-1/LOW ref/path/var references paths within /var:
/var/lib/dbus/machine-idoidc
/var/lib/dbus/machine-idparentbased_traceidratioselect
/var/run/logquota.warnedscan.stoppedunmarshal
/var/run/postgresqlinvalid
/var/run/syslogartifact.pulledartifact.pushed/scan/%s/reportInternal
-1/LOW ref/site/url contains embedded HTTPS URLs:
https://127.0.0.1
https://192.168.1.2
https://access.redhat.com/documentation/en-us/red_hat_subscription_manage
https://accounts.google.comgetting
https://acme-v02.api.letsencrypt.org/directorytable
https://asia.gcr.io.tencentcloudcr.comCreateInstanceToken/preheats/
https://cdn.jsdelivr.net/npm/redoc/bundles/redoc.standalone.jsError
https://en.wikipedia.org/wiki/Cron.ClusterTrustBundleList
https://en.wikipedia.org/wiki/List_of_tz_database_time_zones.
https://eu.gcr.iojfrog-artifactoryDescribeInstances
https://examples.k8s.io/mysql-cinder-pd/README.mdA
https://examples.k8s.io/mysql-cinder-pd/README.mdContainer
https://examples.k8s.io/mysql-cinder-pd/README.mdList
https://examples.k8s.io/mysql-cinder-pd/README.mdPersistentVolume
https://examples.k8s.io/mysql-cinder-pd/README.mdaction
https://examples.k8s.io/mysql-cinder-pd/README.mdnodeTopology
https://examples.k8s.io/volumes/cephfs/README.md
https://examples.k8s.io/volumes/glusterfs/README.mdIf
https://examples.k8s.io/volumes/iscsi/README.mdResource
https://examples.k8s.io/volumes/rbd/README.mdrules
https://examples.k8s.io/volumes/storageos/README.md
https://fonts.googleapis.com/css?family=Montserrat
https://gcr.iosimple-defaultDescribeImagesnot
https://git.k8s.io/community/contributors/devel/sig-architecture/api-conv
https://git.k8s.io/enhancements/keps/sig-network/580-pod-readiness-gatesT
https://git.k8s.io/enhancements/keps/sig-node/281-dynamic-kubelet-configu
https://git.k8s.io/enhancements/keps/sig-node/585-runtime-classaddresses
https://git.k8s.io/enhancements/keps/sig-node/585-runtime-classallocateLo
https://git.k8s.io/enhancements/keps/sig-node/688-pod-overhead/README.mdR
https://git.k8s.io/enhancements/keps/sig-node/688-pod-overhead/README.mdn
https://github.com/OAI/OpenAPI-Specification/blob/master/versions/2.0.md
https://github.com/alibaba/Dragonflyno
https://github.com/aliyun/alibaba-cloud-sdk-go/issues
https://github.com/beego/beego/v2/blob/master/orm/models_fields.go
https://github.com/google/cel-spec
https://github.com/grpc/grpc/blob/master/doc/health-checking.md
https://github.com/kubernetes-sigs/windows-gmsa
https://github.com/kubernetes/apiserver/blob/master/pkg/authentication/us
kubernetes/kubernetes#108255.
https://github.com/opencontainers/runtime-spec/blob/master/config.md
https://github.com/otan/gopgkrb5cannot
https://github.com/uber/kraken/blob/master/assets/kraken-logo-color.svgGe
https://github.com/uber/krakenproto
https://golang.org/pkg/unicode/
https://host01.comLDAP_GROUP_BASE_DNPOSTGRESQL_SSLMODETRACE_SERVICE_NAMET
https://hub.docker.com/v2/users/login/failed
https://hub.docker.comProcessing
https://issue.k8s.io/106267Namespace
https://issues.k8s.io/61966Path
https://k8s.io/docs/reference/access-authn-authz/certificate-signing-requ
https://kubernetes-csi.github.io/docs/ephemeral-local-volumes.html
https://kubernetes.io/docs/concepts/architecture/garbage-collection/
https://kubernetes.io/docs/concepts/architecture/nodes/
https://kubernetes.io/docs/concepts/configuration/assign-pod-node/The
https://kubernetes.io/docs/concepts/configuration/manage-resources-contai
https://kubernetes.io/docs/concepts/configuration/secret/
https://kubernetes.io/docs/concepts/configuration/secretID
https://kubernetes.io/docs/concepts/configuration/secretName
https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/
https://kubernetes.io/docs/concepts/containers/images.regarding
https://kubernetes.io/docs/concepts/containers/images/
https://kubernetes.io/docs/concepts/containers/imagesOS
https://kubernetes.io/docs/concepts/containers/runtime-class/Standard
https://kubernetes.io/docs/concepts/nodes/node/
https://kubernetes.io/docs/concepts/overview/working-with-objects/annotat
https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/
https://kubernetes.io/docs/concepts/overview/working-with-objects/labelsT
https://kubernetes.io/docs/concepts/overview/working-with-objects/names/
https://kubernetes.io/docs/concepts/overview/working-with-objects/namespa
https://kubernetes.io/docs/concepts/policy/resource-quotas/List
https://kubernetes.io/docs/concepts/policy/resource-quotas/secretRef
https://kubernetes.io/docs/concepts/policy/resource-quotas/volumeName
https://kubernetes.io/docs/concepts/scheduling-eviction/pod-overhead/
https://kubernetes.io/docs/concepts/services-networking/service/An
https://kubernetes.io/docs/concepts/storage/persistent-volumes/
https://kubernetes.io/docs/concepts/storage/persistent-volumesItems
https://kubernetes.io/docs/concepts/storage/persistent-volumesfsType
https://kubernetes.io/docs/concepts/storage/volumesSpecifies
https://kubernetes.io/docs/concepts/workloads/controllers/cron-jobs/
https://kubernetes.io/docs/concepts/workloads/controllers/daemonset/Repre
https://kubernetes.io/docs/concepts/workloads/controllers/daemonset/glust
https://kubernetes.io/docs/concepts/workloads/controllers/daemonset/spec
https://kubernetes.io/docs/concepts/workloads/controllers/jobs-run-to-com
https://kubernetes.io/docs/concepts/workloads/controllers/replicationcont
https://kubernetes.io/docs/concepts/workloads/pods/init-containers/The
https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle/
https://kubernetes.io/docs/concepts/workloads/pods/pod-qos/
https://kubernetes.io/docs/reference/access-authn-authz/authentication/
https://kubernetes.io/docs/reference/using-api/api-concepts/
https://kubernetes.io/docs/reference/using-api/cel/
https://kubernetes.io/docs/tasks/access-application-cluster/create-extern
https://kubernetes.io/docs/tasks/administer-cluster/namespaces/Pod
https://kubernetes.io/docs/tasks/administer-cluster/namespaces/secretFile
https://kubernetes.io/docs/tasks/configure-pod-container/configure-servic
https://kubernetes.io/docs/tasks/configure-pod-container/security-context
https://kubernetes.io/docs/tasks/inject-data-application/define-command-a
https://opentelemetry.io/schemas/1.24.0Failed
https://opentelemetry.io/schemas/1.4.0id_token
https://pkg.go.dev/k8s.io/apiserver/pkg/cel/library
https://pr.k8s.io/79391
https://protobuf.dev/reference/go/faq
https://raw.githubusercontent.com/alibaba/Dragonfly/master/docs/images/lo
https://registry-1.docker.iologin
https://registry-internal.
https://registry-vpc.
https://registry.
https://tools.ietf.org/html/rfc1123
https://tools.ietf.org/html/rfc4648
https://tools.ietf.org/html/rfc5280
https://unpkg.com/rapidoc/dist/rapidoc-min.jscan
https://unpkg.com/swagger-ui-dist/favicon-16x16.pnghttps
https://unpkg.com/swagger-ui-dist/favicon-32x32.pngfailed
https://unpkg.com/swagger-ui-dist/swagger-ui-bundle.jsfailed
https://unpkg.com/swagger-ui-dist/swagger-ui-standalone-preset.js/project
https://unpkg.com/swagger-ui-dist/swagger-ui.css/projects/
https://us.gcr.iohttps
https://www.iana.org/assignments/service-names
https://www.rfc-editor.org/rfc/rfc6455
https://www.rfc-editor.org/rfc/rfc9113.html
-1/LOW ref/site/url/unusual contains HTTP hostname with unusual top-level domain: "http://beego.vip/"
-1/LOW ref/words/password references a password: "Password
password"
-1/LOW secrets/private_key private key

Deleted: harbor-2.10-portal/usr/share/nginx/html/3751.cbde41d679daa5eb.js

RISK KEY DESCRIPTION
-2/MEDIUM net/download downloads files
-2/MEDIUM net/url/request requests resources via URL
-1/LOW encoding/json/decode jsondecode
-1/LOW encoding/json/encode encodes JSON
-1/LOW ref/site/url contains embedded HTTPS URLs: "https://nvd.nist.gov/vuln/detail/
https://openid.net/connect/"
-1/LOW ref/words/password references a password: "password"

Deleted: harbor-2.10-portal/usr/share/nginx/html/575.cebc430388c5a933.js

RISK KEY DESCRIPTION
-2/MEDIUM net/url/request requests resources via URL

Deleted: harbor-2.10-portal/usr/share/nginx/html/2914.f5bb47976a370ea7.js

RISK KEY DESCRIPTION
-1/LOW ref/site/url contains embedded HTTPS URLs: "https://nvd.nist.gov/vuln/detail/"

Deleted: harbor-2.10-portal/usr/share/nginx/html/8343.93e2a2e5e0c1325b.js

RISK KEY DESCRIPTION
-2/MEDIUM net/download downloads files
-2/MEDIUM net/upload uploads files
-1/LOW encoding/json/decode jsondecode
-1/LOW encoding/json/encode encodes JSON
-1/LOW fd/multiplex monitor multiple file descriptors

Deleted: harbor-2.10-portal/usr/share/nginx/html/7215.b14bf4648bf7274b.js

RISK KEY DESCRIPTION
-2/MEDIUM net/download downloads files
-2/MEDIUM net/http/post able to submit content via HTTP POST
-2/MEDIUM net/upload uploads files
-2/MEDIUM net/url/request requests resources via URL
-1/LOW encoding/json/decode jsondecode
-1/LOW encoding/json/encode encodes JSON
-1/LOW fs/file/delete deletes files
-1/LOW ref/words/password references a password: "password"

Deleted: harbor-2.10-portal/usr/share/nginx/html/3785.47bf997ad2c6dc7d.js

RISK KEY DESCRIPTION
-2/MEDIUM net/http/post able to submit content via HTTP POST
-2/MEDIUM net/url/request requests resources via URL

Deleted: harbor-2.10-portal/usr/share/nginx/html/6149.0e5abcd8adce08e6.js

RISK KEY DESCRIPTION
-2/MEDIUM net/http/post able to submit content via HTTP POST
-2/MEDIUM net/url/request requests resources via URL

Deleted: harbor-2.10-portal/usr/share/nginx/html/4554.109c3b83fcfe0a4f.js

RISK KEY DESCRIPTION
-3/HIGH techniques/code_eval evaluate code dynamically using exec()
-2/MEDIUM net/http/post able to submit content via HTTP POST
-2/MEDIUM ref/words/agent references an 'agent': "agentStubMap"
-1/LOW encoding/json/encode encodes JSON
-1/LOW fd/multiplex monitor multiple file descriptors
-1/LOW ref/site/url contains embedded HTTPS URLs: "https://github.com/markedjs/marked.
https://marked.js.org/"

Deleted: harbor-2.10-portal/usr/share/nginx/html/5206.e907491daa7880a9.js

RISK KEY DESCRIPTION
-1/LOW encoding/json/encode encodes JSON

Deleted: harbor-2.10-portal/usr/share/nginx/html/3031.b707cc19f29fd705.js

RISK KEY DESCRIPTION
-2/MEDIUM net/url/request requests resources via URL
-1/LOW encoding/json/encode encodes JSON

Deleted: harbor-2.10-portal/usr/share/nginx/html/6253.52dee94778778873.js

RISK KEY DESCRIPTION
-2/MEDIUM net/http/post able to submit content via HTTP POST
-2/MEDIUM net/url/request requests resources via URL
-1/LOW encoding/json/encode encodes JSON

Deleted: harbor-2.10-portal/usr/share/nginx/html/3322.4402085913684103.js

RISK KEY DESCRIPTION
-1/LOW encoding/json/encode encodes JSON

Deleted: harbor-2.10-portal/usr/share/nginx/html/4771.c2cdabc0bc353a3e.js

RISK KEY DESCRIPTION
-2/MEDIUM net/http/post able to submit content via HTTP POST
-2/MEDIUM net/url/request requests resources via URL
-1/LOW encoding/json/decode jsondecode
-1/LOW encoding/json/encode encodes JSON
-1/LOW ref/site/url contains embedded HTTPS URLs: "https://github.com/goharbor/harbor/wiki/Reduce-job-queue-latency
https://goharbor.io/blog/harbor-1.10-release/"
-1/LOW ref/words/password references a password: "password"

Deleted: harbor-2.10-portal/usr/share/nginx/html/5817.e3be35a21c6bf7b6.js

RISK KEY DESCRIPTION
-2/MEDIUM net/download downloads files
-2/MEDIUM net/http/post able to submit content via HTTP POST
-2/MEDIUM net/url/request requests resources via URL
-1/LOW encoding/json/encode encodes JSON
-1/LOW ref/words/password references a password: "password"

Deleted: harbor-2.10-portal/usr/share/nginx/html/6809.9238534a5156153f.js

RISK KEY DESCRIPTION
-2/MEDIUM net/url/request requests resources via URL

Deleted: harbor-2.10-portal/usr/share/nginx/html/488.4fb0974f11ad58b4.js

RISK KEY DESCRIPTION
-2/MEDIUM net/http/post able to submit content via HTTP POST
-2/MEDIUM net/url/request requests resources via URL
-1/LOW ref/words/password references a password: "password"

Deleted: harbor-2.10-portal/usr/share/nginx/html/6093.ab66451ff59a4176.js

RISK KEY DESCRIPTION
-1/LOW encoding/json/encode encodes JSON

Deleted: harbor-2.10-portal/usr/share/nginx/html/2079.fd0f6568a232105b.js

RISK KEY DESCRIPTION
-2/MEDIUM net/http/post able to submit content via HTTP POST
-2/MEDIUM net/url/request requests resources via URL

Deleted: harbor-2.10-portal/usr/share/nginx/html/9546.af0a165002d12592.js

RISK KEY DESCRIPTION
-1/LOW encoding/json/decode jsondecode
-1/LOW ref/site/url contains embedded HTTPS URLs: "https://github.com/goharbor/harbor"
-1/LOW ref/words/password references a password: "password"

Deleted: harbor-2.10-portal/usr/share/nginx/html/3664.eebf3564c283b660.js

RISK KEY DESCRIPTION
-2/MEDIUM exec/shell_command execute a shell command
-2/MEDIUM net/http/post able to submit content via HTTP POST
-2/MEDIUM net/url/request requests resources via URL

Deleted: harbor-2.10-portal/usr/share/nginx/html/8244.8a4d04dfdbb4a930.js

RISK KEY DESCRIPTION
-2/MEDIUM net/url/request requests resources via URL

Deleted: harbor-2.10-portal/usr/share/nginx/html/polyfills.67cfd31b2752cc11.js

RISK KEY DESCRIPTION
-3/HIGH techniques/code_eval evaluate code dynamically using exec()
-2/MEDIUM ref/words/intercept references interception: "interceptCurrZone
interceptDlgt
interceptZS"
-1/LOW encoding/json/encode encodes JSON
-1/LOW process/create create a new child process using fork

Deleted: harbor-2.10-portal/usr/share/nginx/html/3274.0198fd8eea34daa1.js

RISK KEY DESCRIPTION
-2/MEDIUM net/download downloads files
-2/MEDIUM net/url/request requests resources via URL

Deleted: harbor-2.10-portal/usr/share/nginx/html/5691.435ce2a59790388c.js

RISK KEY DESCRIPTION
-1/LOW encoding/json/encode encodes JSON
-1/LOW ref/words/password references a password: "password"

Deleted: harbor-2.10-portal/usr/share/nginx/html/4665.9fdcb7780b0842dc.js

RISK KEY DESCRIPTION
-2/MEDIUM net/http/post able to submit content via HTTP POST
-2/MEDIUM net/url/request requests resources via URL

Deleted: harbor-2.10-portal/usr/share/nginx/html/9942.7bd3c4d96dd3ee9a.js

RISK KEY DESCRIPTION
-1/LOW ref/words/password references a password: "password"

Deleted: harbor-2.10-portal/usr/share/nginx/html/583.3be05dc663d97d04.js

RISK KEY DESCRIPTION
-2/MEDIUM net/http/post able to submit content via HTTP POST
-2/MEDIUM net/url/request requests resources via URL

Deleted: harbor-2.10-portal/usr/share/nginx/html/5514.296fea282f12c0c5.js

RISK KEY DESCRIPTION
-3/HIGH techniques/code_eval evaluate code dynamically using exec()
-2/MEDIUM ref/path/relative references and possibly executes relative path: "./artifacts-tab
./info-tab"
-2/MEDIUM shell/exec executes a shell: "/bin/sh -c""
-1/LOW encoding/base64 supports base64 encoded strings
-1/LOW encoding/json/encode encodes JSON
-1/LOW net/hostname/resolve resolves network host names
-1/LOW ref/site/url contains embedded HTTP URLs: "http://www.w3.org/2000/svg"

Deleted: harbor-2.10-registryctl/usr/bin/harbor-registryctl

RISK KEY DESCRIPTION
meta compiler go
meta lang c++
-2/MEDIUM archives/zip works with zip files
-2/MEDIUM data/embedded/html contains HTML content
-2/MEDIUM databases/mysql accesses MySQL databases
-2/MEDIUM databases/postgresql accesses PostgreSQL databases
-2/MEDIUM databases/sqlite accesses SQLite databases
-2/MEDIUM evasion/content/length/0 sets HTTP content length to zero
-2/MEDIUM exec/program executes another program
-2/MEDIUM exec/shell_echo uses the echo command to generate output
-2/MEDIUM fs/permission/chown changes file ownership
-2/MEDIUM fs/permission/modify modifies file permissions
-2/MEDIUM kernel/uname/get get system identification (os_release)
-2/MEDIUM net/dns/reverse looks up the reverse hostname for an IP
-2/MEDIUM net/http/cookies able to access HTTP resources using cookies
-2/MEDIUM net/http/post able to submit form content via HTTP POST
-2/MEDIUM net/ip/parse parses IP address (IPv4 or IPv6)
-2/MEDIUM net/mac/address retrieves network MAC address
-2/MEDIUM net/raw_sockets uses raw sockets
-2/MEDIUM net/upload uploads files
-2/MEDIUM net/url/encode encodes URL, likely to pass GET variables
-2/MEDIUM net/url/request requests resources via URL
-2/MEDIUM ref/path/etc/hosts references /etc/hosts: "/etc/hosts"
-2/MEDIUM ref/path/usr/local references paths within /usr/local: "/usr/local/share/mime/globs2mime"
-2/MEDIUM ref/words/agent references an 'agent': "agentClientUDPParams
agentEndpointConfig
agentUploader
agent_host
agent_port
agentdelete
agentkeep
jaeger_agent
user_agent"
-1/LOW compression/gzip works with gzip files
-1/LOW crypto/aes supports AES (Advanced Encryption Standard)
-1/LOW crypto/ecdsa uses the Go crypto/ecdsa library
-1/LOW crypto/ed25519 elliptic curve algorithm used by TLS and SSH
-1/LOW crypto/tls tls
-1/LOW encoding/base64 supports base64 encoded strings
-1/LOW encoding/json supports JSON encoded objects
-1/LOW encoding/json/decode jsondecode
-1/LOW encoding/json/encode encodes JSON
-1/LOW env/USER uSER
-1/LOW fs/directory/create creates directories
-1/LOW fs/directory/list uses Go functions to list a directory
-1/LOW fs/directory/remove uses libc functions to remove directories
-1/LOW fs/file/delete deletes files
-1/LOW fs/file/read reads files
-1/LOW fs/link/read read value of a symbolic link
-1/LOW fs/watch monitors filesystem events
-1/LOW kernel/cpu/info gets number of processors
-1/LOW kernel/hostname/get gets the hostname of the machine
-1/LOW kernel/netlink communicate with kernel services
-1/LOW net/dns uses DNS (Domain Name Service)
-1/LOW net/dns/txt uses DNS TXT (text) records
-1/LOW net/grpc uses the gRPC Remote Procedure Call framework
-1/LOW net/hostname/resolve uses Go to resolve network hosts
-1/LOW net/http/accept/encoding able to decode multiple forms of HTTP responses (example: gzip)
-1/LOW net/http/auth makes HTTP requests with basic authentication
-1/LOW net/http/request makes HTTP requests
-1/LOW net/http2 uses the HTTP/2 protocol
-1/LOW net/http_proxy able to use an HTTP proxy that requires authentication
-1/LOW net/sendfile transfer data between file descriptors
-1/LOW net/socket/listen listen on a socket
-1/LOW net/socket/local/address get local address of connected socket
-1/LOW net/socket/peer/address get peer address of connected socket
-1/LOW net/socket/receive receive a message from a socket
-1/LOW net/socket/send send a message to a socket
-1/LOW net/udp/receive listens for UDP responses
-1/LOW net/udp/send sends UDP packets
-1/LOW net/url handles URL strings
-1/LOW process/groups/set set group access list
-1/LOW ref/path/etc references paths within /etc:
/etc/apache/mime.typesgzip
/etc/group
/etc/hostsgetsockoptnetlinkribsetsock
/etc/httpd/conf/mime.typesmime
/etc/machine-id/etc/os-releaseexporti
/etc/mime.types
/etc/nsswitch.confinvalid
/etc/os-releaseexporting
/etc/passwd
/etc/pki/ca-trust/extracted/pem/tls-c
/etc/pki/tls/cacert.peminvalid
/etc/pki/tls/certs/ca-bundle.crtx
/etc/pki/tls/certsdontfreezetheworldt
/etc/protocolsunknown
/etc/resolv.confnon-
/etc/services
/etc/ssl/ca-bundle.pemx
/etc/ssl/cert.peminvalid
/etc/ssl/certs/ca-certificates.crtadd
/etc/ssl/certsuser
/etc/zoneinfoparsing
-1/LOW ref/path/etc/resolv.conf accesses DNS resolver configuration: "/etc/resolv.conf"
-1/LOW ref/path/var references paths within /var: "/var/lib/dbus/machine-idnistec
/var/lib/dbus/machine-idparentbased_traceidratiotag
/var/lib/registry%q"
-1/LOW ref/site/url contains embedded HTTPS URLs:
https://api.loganalytics.iohttps
https://api.loganalytics.usservicebus.chinacloudapi.cndocuments.microsoft
https://batch.chinacloudapi.cn/mysql.database.chinacloudapi.cnhttps
https://batch.cloudapi.de/mysql.database.cloudapi.decloudapp.microsoftazu
https://batch.core.usgovcloudapi.net/https
https://batch.core.windows.net/https
https://cosmos.azure.comawssdk.client.LogRequestCredentialsEndpointErrora
https://database.chinacloudapi.cn/AWS_CONTAINER_CREDENTIALS_FULL_URIIgnor
https://database.cloudapi.de/request
https://database.usgovcloudapi.net/failed
https://database.windows.net/postgres.database.cloudapi.dehttps
https://datalake.azure.net/https
https://dev.azuresynapse.nethttps
https://dev.azuresynapse.usgovcloudapi.netincorrect
https://gallery.azure.com/https
https://gallery.chinacloudapi.cn/mariadb.database.chinacloudapi.cnhttps
https://gallery.cloudapi.de/mariadb.database.cloudapi.defailed
https://gallery.usgovcloudapi.net/mariadb.database.usgovcloudapi.netdev.a
https://github.com/beego/beego/v2/blob/master/orm/models_fields.go
https://graph.chinacloudapi.cn/https
https://graph.cloudapi.de/https
https://graph.microsoft.com/https
https://graph.microsoft.us/https
https://graph.windows.net/mariadb.database.azure.comhttps
https://host01.comLDAP_GROUP_BASE_DNPOSTGRESQL_SSLMODETRACE_SERVICE_NAMET
https://ip-ranges.amazonaws.com/ip-ranges.jsonNo
https://login.chinacloudapi.cn/https
https://login.microsoftonline.com/https
https://login.microsoftonline.de/AWS_CONTAINER_AUTHORIZATION_TOKENfailed
https://login.microsoftonline.us/https
https://manage.chinacloudapi.com/https
https://manage.chinacloudapi.com/publishsettings/indexhttps
https://manage.microsoftazure.de/publishsettings/indexuuid
https://manage.windowsazure.com/https
https://manage.windowsazure.com/publishsettings/indexX-Amz-Copy-Source-Se
https://manage.windowsazure.us/https
https://manage.windowsazure.us/publishsettings/indexevent
https://managedhsm.azure.net/https
https://managedhsm.azure.netservicebus.usgovcloudapi.nethttps
https://management.azure.com/https
https://management.chinacloudapi.cn/https
https://management.core.chinacloudapi.cn/https
https://management.core.cloudapi.de/6ba7b810-9dad-11d1-80b4-00c04fd430c86
https://management.core.usgovcloudapi.net/https
https://management.core.windows.net/https
https://management.microsoftazure.de/awsdk.client.LogResponse.ResponseBod
https://management.usgovcloudapi.net/https
https://microsoftgraph.chinacloudapi.cn/operator
https://microsoftgraph.chinacloudapi.cnwrong
https://opentelemetry.io/schemas/1.24.0Failed
https://opentelemetry.io/schemas/1.4.011102230246251565404236316680908203
https://ossrdbms-aad.database.chinacloudapi.cninvalid
https://ossrdbms-aad.database.cloudapi.deinvalid
https://ossrdbms-aad.database.usgovcloudapi.netinvalid
https://ossrdbms-aad.database.windows.nethttps
https://protobuf.dev/reference/go/faq
https://redirectuploadIdversionsSTANDARDtenantid
https://servicebus.azure.net/https
https://servicebus.chinacloudapi.cn/https
https://servicebus.cloudapi.de/https
https://servicebus.usgovcloudapi.net/https
https://servicebus.windows.net/https
https://storage.azure.com/database.usgovcloudapi.netcloudapp.usgovcloudap
https://vault.azure.cn/vault.microsoftazure.deunexpected
https://vault.azure.cnazuretrafficmanager.deservicebus.cloudapi.deAZUREUS
https://vault.azure.net/mysql.database.azure.comhttps
https://vault.azure.netusgovtrafficmanager.netvault.usgovcloudapi.nethttp
https://vault.microsoftazure.de/uuid
https://vault.microsoftazure.deuuid
https://vault.usgovcloudapi.net/mysql.database.usgovcloudapi.nethttp
https://vault.usgovcloudapi.nethttps
-1/LOW ref/words/password references a password: "Password
password"
-1/LOW secrets/private_key private key

Deleted: harbor-2.10-portal/usr/share/nginx/html/3651.1068219fd24c960e.js

RISK KEY DESCRIPTION
-1/LOW ref/words/password references a password: "password"

Deleted: harbor-2.10-portal/usr/share/nginx/html/scripts.3846d86d42cdb753.js

RISK KEY DESCRIPTION
-3/HIGH techniques/code_eval evaluate code dynamically using exec()
-2/MEDIUM net/download downloads files
-2/MEDIUM net/upload uploads files
-2/MEDIUM ref/ip hardcoded IP address:
18.28.28.28
31.78.94.94
32.71.92.92
34.23.69.43
36.61.67.67
36.61.72.72
41.27.83.52
43.19.84.41
43.43.87.85
44.21.87.33
56.24.81.81
58.49.65.94
72.86.88.88
82.77.79.79
85.88.91.91
91.88.87.87
91.88.88.88
-2/MEDIUM ref/program/powershell powershell: "powershell"
-1/LOW encoding/json/decode jsondecode
-1/LOW encoding/json/encode encodes JSON
-1/LOW fs/file/delete deletes files
-1/LOW ref/site/url contains embedded HTTPS URLs: "https://github.com/markedjs/marked.
https://marked.js.org/"

Deleted: harbor-2.10-jobservice/usr/bin/harbor-jobservice

RISK KEY DESCRIPTION
meta compiler go
meta lang c++
-2/MEDIUM archives/zip works with zip files
-2/MEDIUM data/embedded/html contains HTML content
-2/MEDIUM databases/mysql accesses MySQL databases
-2/MEDIUM databases/postgresql accesses PostgreSQL databases
-2/MEDIUM databases/sqlite accesses SQLite databases
-2/MEDIUM evasion/content/length/0 sets HTTP content length to zero
-2/MEDIUM exec/program executes another program
-2/MEDIUM exec/shell_echo uses the echo command to generate output
-2/MEDIUM fs/permission/chown changes file ownership
-2/MEDIUM fs/permission/modify modifies file permissions
-2/MEDIUM kernel/uname/get get system identification (os_release)
-2/MEDIUM net/dns/reverse looks up the reverse hostname for an IP
-2/MEDIUM net/download downloads files
-2/MEDIUM net/http/cookies able to access HTTP resources using cookies
-2/MEDIUM net/http/post able to submit content via HTTP POST
-2/MEDIUM net/ip/parse parses IP address (IPv4 or IPv6)
-2/MEDIUM net/mac/address retrieves network MAC address
-2/MEDIUM net/raw_sockets uses raw sockets
-2/MEDIUM net/upload uploads files
-2/MEDIUM net/url/encode encodes URL, likely to pass GET variables
-2/MEDIUM net/url/request requests resources via URL
-2/MEDIUM ref/path/etc/hosts references /etc/hosts: "/etc/hosts"
-2/MEDIUM ref/path/usr/local references paths within /usr/local: "/usr/local/share/mime/globs2mime"
-2/MEDIUM ref/words/agent references an 'agent': "agentClientUDPParams
agentEndpointConfig
agentUploader
agent_host
agent_port
agentkeep
hook_agent
jaeger_agent
user_agent"
-2/MEDIUM ref/words/intercept references interception: "interceptors"
-1/LOW compression/gzip works with gzip files
-1/LOW crypto/aes supports AES (Advanced Encryption Standard)
-1/LOW crypto/ecdsa uses the Go crypto/ecdsa library
-1/LOW crypto/ed25519 elliptic curve algorithm used by TLS and SSH
-1/LOW crypto/tls tls
-1/LOW data/embedded/pem/test_key contains TESTING KEY directive
-1/LOW encoding/base64 supports base64 encoded strings
-1/LOW encoding/csv works with CSV (comma separated value) files
-1/LOW encoding/json supports JSON encoded objects
-1/LOW encoding/json/decode jsondecode
-1/LOW encoding/json/encode encodes JSON
-1/LOW env/USER uSER
-1/LOW fs/directory/list uses Go functions to list a directory
-1/LOW fs/directory/remove uses libc functions to remove directories
-1/LOW fs/file/delete deletes files
-1/LOW fs/file/read reads files
-1/LOW fs/link/read read value of a symbolic link
-1/LOW fs/mount mounts file systems
-1/LOW fs/watch monitors filesystem events
-1/LOW kernel/cpu/info gets number of processors
-1/LOW kernel/hostname/get gets the hostname of the machine
-1/LOW kernel/netlink communicate with kernel services
-1/LOW net/dns uses DNS (Domain Name Service)
-1/LOW net/dns/txt uses DNS TXT (text) records
-1/LOW net/grpc uses the gRPC Remote Procedure Call framework
-1/LOW net/hostname/resolve uses Go to resolve network hosts
-1/LOW net/http/accept/encoding able to decode multiple forms of HTTP responses (example: gzip)
-1/LOW net/http/auth makes HTTP requests with basic authentication
-1/LOW net/http/request makes HTTP requests
-1/LOW net/http2 uses the HTTP/2 protocol
-1/LOW net/http_proxy able to use an HTTP proxy that requires authentication
-1/LOW net/oauth2 supports OAuth2
-1/LOW net/sendfile transfer data between file descriptors
-1/LOW net/socket/listen listen on a socket
-1/LOW net/socket/local/address get local address of connected socket
-1/LOW net/socket/peer/address get peer address of connected socket
-1/LOW net/socket/receive receive a message from a socket
-1/LOW net/socket/send send a message to a socket
-1/LOW net/udp/receive listens for UDP responses
-1/LOW net/udp/send sends UDP packets
-1/LOW net/url handles URL strings
-1/LOW ref/path/etc references paths within /etc:
/etc/apache/mime.typesgzip
/etc/core/keymetric
/etc/group
/etc/hostsgetsockoptnetlinkrib
/etc/httpd/conf/mime.typesmime
/etc/machine-id/etc/os-releaseexporti
/etc/mime.types
/etc/nsswitch.confinvalid
/etc/os-releaseexporting
/etc/passwd
/etc/pki/ca-trust/extracted/pem/tls-c
/etc/pki/tls/cacert.peminvalid
/etc/pki/tls/certs/ca-bundle.crtx
/etc/pki/tls/certsbufio
/etc/protocolsunknown
/etc/resolv.confnon-
/etc/services.
/etc/ssl/ca-bundle.pemx
/etc/ssl/cert.peminvalid
/etc/ssl/certs/ca-certificates.crtadd
/etc/ssl/certsbad
/etc/zoneinfoparsing
-1/LOW ref/path/etc/resolv.conf accesses DNS resolver configuration: "/etc/resolv.conf"
-1/LOW ref/path/var references paths within /var:
/var/lib/dbus/machine-idparentbased_traceidratiounexpected
/var/lib/dbus/machine-idx509
/var/run/logarchitectureDEPENDENCIESharbor_labelcontent_typex-sdk-cli
/var/run/postgresqlinvalid
/var/run/syslogcannot
-1/LOW ref/site/url contains embedded HTTPS URLs:
https://127.0.0.1
https://LC_CTYPEErrorMapRequiredobjectIDDurationfunctionEndpointtrace_idp
https://asia.gcr.io.tencentcloudcr.comCreateInstanceTokeninvalid
https://eu.gcr.iojfrog-artifactoryDescribeInstances
https://gcr.iosimple-defaultDescribeImages
https://ghcr.iodocker-registryTC3-HMAC-SHA256CreateNamespace
https://github.com/alibaba/Dragonflyfailed
https://github.com/aliyun/alibaba-cloud-sdk-go/issues
https://github.com/beego/beego/v2/blob/master/orm/models_fields.go
https://github.com/otan/gopgkrb5ID-
https://github.com/uber/kraken/blob/master/assets/kraken-logo-color.svg
https://github.com/uber/krakenunsupported
https://host01.comLDAP_GROUP_BASE_DNPOSTGRESQL_SSLMODETRACE_SERVICE_NAMET
https://hub.docker.com/v2/users/login/failed
https://hub.docker.comProcessing
https://opentelemetry.io/schemas/1.24.0Failed
https://opentelemetry.io/schemas/1.4.0non-positive
https://protobuf.dev/reference/go/faq
https://raw.githubusercontent.com/alibaba/Dragonfly/master/docs/images/lo
https://registry-1.docker.iologin
https://registry-internal.
https://registry-vpc.
https://registry.
https://us.gcr.iohttps
-1/LOW ref/words/password references a password: "Password
password"
-1/LOW secrets/private_key private key
-1/LOW service/stop service stop

@EyeCantCU EyeCantCU merged commit db9a438 into main Apr 1, 2024
8 checks passed
@EyeCantCU EyeCantCU deleted the harbor-2.10 branch April 1, 2024 16:46
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@debasishbsws debasishbsws debasishbsws approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@EyeCantCU @debasishbsws