Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat(packages): Add NeuVector Manager and CLI #16519

Merged
merged 1 commit into from Apr 9, 2024
Merged

feat(packages): Add NeuVector Manager and CLI #16519

merged 1 commit into from Apr 9, 2024

Conversation

EyeCantCU
Copy link
Member

Pre-review Checklist

For new package PRs only

  • This PR is marked as fixing a pre-existing package request bug
    • Alternatively, the PR is marked as related to a pre-existing package request bug, such as a dependency
  • REQUIRED - The package is available under an OSI-approved or FSF-approved license
  • REQUIRED - The version of the package is still receiving security updates
  • This PR links to the upstream project's support policy (e.g. endoflife.date)

@EyeCantCU
feat(packages): Add NeuVector Manager and CLI
4886d5c 
Signed-off-by: RJ Sampson <rj.sampson@chainguard.dev>
@github-actions GitHub Actions
Copy link
Contributor

github-actions bot commented Apr 9, 2024

Package neuvector-manager-5.3-cli: Click to expand/collapse

Package neuvector-manager-5.3-cli:

.PKGINFO metadata:

  (
  	"""
  	# Generated by melange v0.6.10-27-g550fae8
- 	pkgname = neuvector-manager-5.3
+ 	pkgname = neuvector-manager-5.3-cli
  	pkgver = 5.3.1-r0
  	arch = x86_64
- 	size = 59866249
+ 	size = 2227819
  	origin = neuvector-manager-5.3
- 	pkgdesc = NeuVector Security Center Admin Console.
+ 	pkgdesc = NeuVector Manager CLI
  	url = 
  	commit = 424ed2ebbf9793a9cb7f4586dc98ecd32a9fa6fb
  	license = Apache-2.0
- 	depend = openjdk-11-default-jvm
- 	provides = neuvector-manager=5.3.1-r0
- 	datahash = 2433b6ebd2b41f13939251173b899fd6aeb137da50ed4468d90f2b7462308d37
+ 	depend = py3-click
+ 	depend = py3-requests
+ 	depend = py3-six
+ 	depend = py3-urllib3
+ 	depend = python-3.12-base
+ 	depend = supervisor
+ 	provides = neuvector-manager-cli=5.3.1-r0
+ 	datahash = f27b6d6a2514dc134289dc4356178079c75233e8b869d372c37f655a9251811b
  	"""
  )

Added: /.PKGINFO
Added: /usr/share/neuvector-manager-cli/.venv/bin/Activate.ps1
Added: /usr/share/neuvector-manager-cli/.venv/bin/activate
Added: /usr/share/neuvector-manager-cli/.venv/bin/activate.csh
Added: /usr/share/neuvector-manager-cli/.venv/bin/activate.fish
Added: /usr/share/neuvector-manager-cli/.venv/bin/cli
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/init.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/admission.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/assessment.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/auth.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/bench.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/cli.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/client.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/cluster.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/compliance.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/controller.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/convers.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/diag.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/dlp.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/domain.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/enforcer.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/federation.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/file_access.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/group.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/host.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/log.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/main.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/multipart.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/output.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/policy.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/process.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/pwd_profile.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/registry.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/repository.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/role.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/scan.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/server.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/sigstore.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/system.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/utils.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/waf.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/workload.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/init.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/init.pyi
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/pycache/init.cpython-312.pyc
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/pycache/_cmp.cpython-312.pyc
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/pycache/_compat.cpython-312.pyc
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/pycache/_config.cpython-312.pyc
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/pycache/_funcs.cpython-312.pyc
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/pycache/_make.cpython-312.pyc
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/pycache/_next_gen.cpython-312.pyc
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/pycache/_version_info.cpython-312.pyc
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/pycache/converters.cpython-312.pyc
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/pycache/exceptions.cpython-312.pyc
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/pycache/filters.cpython-312.pyc
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/pycache/setters.cpython-312.pyc
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/pycache/validators.cpython-312.pyc
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/_cmp.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/_cmp.pyi
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/_compat.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/_config.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/_funcs.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/_make.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/_next_gen.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/_typing_compat.pyi
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/_version_info.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/_version_info.pyi
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/converters.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/converters.pyi
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/exceptions.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/exceptions.pyi
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/filters.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/filters.pyi
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/py.typed
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/setters.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/setters.pyi
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/validators.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/validators.pyi
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attrs/init.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attrs/init.pyi
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attrs/converters.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attrs/exceptions.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attrs/filters.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attrs/py.typed
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attrs/setters.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attrs/validators.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attrs-23.2.0.dist-info/INSTALLER
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attrs-23.2.0.dist-info/METADATA
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attrs-23.2.0.dist-info/RECORD
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attrs-23.2.0.dist-info/WHEEL
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attrs-23.2.0.dist-info/licenses/LICENSE
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/init.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/ansi.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/argparse_completer.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/argparse_custom.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/clipboard.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/cmd2.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/command_definition.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/constants.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/decorators.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/exceptions.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/history.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/parsing.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/plugin.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/py.typed
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/py_bridge.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/rl_utils.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/table_creator.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/transcript.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/utils.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2-2.4.3.dist-info/INSTALLER
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2-2.4.3.dist-info/LICENSE
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2-2.4.3.dist-info/METADATA
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2-2.4.3.dist-info/RECORD
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2-2.4.3.dist-info/REQUESTED
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2-2.4.3.dist-info/WHEEL
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2-2.4.3.dist-info/top_level.txt
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/prettytable/init.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/prettytable/colortable.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/prettytable/prettytable.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/prettytable/py.typed
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/prettytable-3.10.0.dist-info/INSTALLER
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/prettytable-3.10.0.dist-info/METADATA
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/prettytable-3.10.0.dist-info/RECORD
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/prettytable-3.10.0.dist-info/REQUESTED
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/prettytable-3.10.0.dist-info/WHEEL
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/prettytable-3.10.0.dist-info/licenses/LICENSE
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/pyperclip/init.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/pyperclip/main.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/pyperclip-1.8.2.dist-info/AUTHORS.txt
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/pyperclip-1.8.2.dist-info/INSTALLER
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/pyperclip-1.8.2.dist-info/LICENSE.txt
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/pyperclip-1.8.2.dist-info/METADATA
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/pyperclip-1.8.2.dist-info/RECORD
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/pyperclip-1.8.2.dist-info/WHEEL
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/pyperclip-1.8.2.dist-info/top_level.txt
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/wcwidth/init.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/wcwidth/table_vs16.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/wcwidth/table_wide.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/wcwidth/table_zero.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/wcwidth/unicode_versions.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/wcwidth/wcwidth.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/wcwidth-0.2.13.dist-info/INSTALLER
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/wcwidth-0.2.13.dist-info/LICENSE
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/wcwidth-0.2.13.dist-info/METADATA
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/wcwidth-0.2.13.dist-info/RECORD
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/wcwidth-0.2.13.dist-info/WHEEL
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/wcwidth-0.2.13.dist-info/top_level.txt
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/wcwidth-0.2.13.dist-info/zip-safe
Added: /usr/share/neuvector-manager-cli/.venv/pyvenv.cfg

Package neuvector-manager-5.3: Click to expand/collapse

Package neuvector-manager-5.3:

.PKGINFO metadata:

  (
  	"""
  	# Generated by melange v0.6.10-27-g550fae8
- 	pkgname = neuvector-manager-5.3
+ 	pkgname = neuvector-manager-5.3-cli
  	pkgver = 5.3.1-r0
  	arch = x86_64
- 	size = 59866249
+ 	size = 2227819
  	origin = neuvector-manager-5.3
- 	pkgdesc = NeuVector Security Center Admin Console.
+ 	pkgdesc = NeuVector Manager CLI
  	url = 
  	commit = 424ed2ebbf9793a9cb7f4586dc98ecd32a9fa6fb
  	license = Apache-2.0
- 	depend = openjdk-11-default-jvm
- 	provides = neuvector-manager=5.3.1-r0
- 	datahash = 2433b6ebd2b41f13939251173b899fd6aeb137da50ed4468d90f2b7462308d37
+ 	depend = py3-click
+ 	depend = py3-requests
+ 	depend = py3-six
+ 	depend = py3-urllib3
+ 	depend = python-3.12-base
+ 	depend = supervisor
+ 	provides = neuvector-manager-cli=5.3.1-r0
+ 	datahash = f27b6d6a2514dc134289dc4356178079c75233e8b869d372c37f655a9251811b
  	"""
  )

Added: /.PKGINFO
Added: /etc/neuvector/certs/ssl-cert.key
Added: /etc/neuvector/certs/ssl-cert.pem
Added: /usr/local/bin/admin-assembly-1.0.jar
Added: /usr/local/bin/support
Added: /usr/local/bin/support.py

bincapz found differences: Click to expand/collapse

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/utils.py

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
+2/MEDIUM exec/program executes another program: "subprocess.PIPE.
subprocess.Popen[str]"
+2/MEDIUM kernel/uname/get get system identification (platform.dist)
+2/MEDIUM process/multithreaded uses python threading
+1/LOW ref/site/url contains embedded HTTPS URLs: "https://stackoverflow.com/a/25959545/1956611"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/file_access.py

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
+2/MEDIUM ref/path/home peferences path within /home: "/home/"
+2/MEDIUM secrets/ssh accesses SSH configuration files and/or keys

Added: neuvector-manager-5.3/usr/local/bin/support

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
+2/MEDIUM ref/path/usr/local references paths within /usr/local: "/usr/local/bin/support.py"
+1/LOW ref/path/bin/su calls /bin/su: "/bin/su"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/log.py

Overall risk: 🔥 3/HIGH

RISK KEY DESCRIPTION
+3/HIGH evasion/base64/decode decodes base64 strings: "b64decode::$b64decode"
+1/LOW encoding/base64 supports base64 encoded strings

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/workload.py

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
+2/MEDIUM net/download downloads files
+2/MEDIUM ref/words/intercept references interception: "intercept"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/system.py

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
meta lang nodejs
+2/MEDIUM exec/program executes another program
+2/MEDIUM net/download downloads files
+2/MEDIUM net/upload uploads files
+2/MEDIUM net/url/request requests resources via URL
+1/LOW compression/gzip works with gzip files
+1/LOW fs/file/read reads files
+1/LOW ref/path/var references paths within /var: "/var/neuvector/nv_debug"
+1/LOW ref/words/password references a password: "password"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/history.py

Overall risk: ✅ 1/LOW

RISK KEY DESCRIPTION
+1/LOW encoding/json/decode jsondecode

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/controller.py

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
+2/MEDIUM net/download downloads files

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/table_creator.py

Overall risk: ✅ 1/LOW

RISK KEY DESCRIPTION
+1/LOW fs/file/read reads files

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/_make.py

Overall risk: 🔥 3/HIGH

RISK KEY DESCRIPTION
+3/HIGH techniques/code_eval evaluate code dynamically using eval(): "eval("
eval(bytecode,
eval(script,"
+2/MEDIUM process/chdir changes current working directory: "cd"
+1/LOW ref/site/url contains embedded HTTPS URLs: "python-attrs/attrs#102
python-attrs/attrs#136
python-attrs/attrs#428"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/prettytable/prettytable.py

Overall risk: ✅ 1/LOW

RISK KEY DESCRIPTION
+1/LOW ref/path/usr/bin references paths within /usr/bin: "/usr/bin/env"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/diag.py

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
+2/MEDIUM net/download downloads files
+1/LOW net/icmp iCMP (Internet Control Message Protocol), aka ping

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/auth.py

Overall risk: ✅ 1/LOW

RISK KEY DESCRIPTION
+1/LOW ref/words/password references a password: "Password
password"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/assessment.py

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
+2/MEDIUM net/url/request requests resources via URL

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/cli.py

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
+2/MEDIUM ref/site/http/dynamic uRL that is dynamically generated: "https://%s"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attrs/init.pyi

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
+2/MEDIUM evasion/lib_alias aliases core python library to an alternate name:
from attr import Attribute as Attribute
from attr import AttrsInstance as AttrsInstance
from attr import Factory as Factory
from attr import NOTHING as NOTHING
from attr import author as author
from attr import copyright as copyright
from attr import description as description
from attr import email as email
from attr import license as license
from attr import title as title
from attr import url as url
from attr import version as version
from attr import version_info as version_info
from attr import assoc as assoc
from attr import cmp_using as cmp_using
from attr import converters as converters
from attr import define as define
from attr import evolve as evolve
from attr import exceptions as exceptions
from attr import field as field
from attr import fields as fields
from attr import fields_dict as fields_dict
from attr import filters as filters
from attr import frozen as frozen
from attr import has as has
from attr import make_class as make_class
from attr import mutable as mutable
from attr import resolve_types as resolve_types
from attr import setters as setters
from attr import validate as validate
from attr import validators as validators

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/repository.py

Overall risk: ✅ 1/LOW

RISK KEY DESCRIPTION
+1/LOW ref/words/password references a password: "Password
password"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/server.py

Overall risk: ✅ 1/LOW

RISK KEY DESCRIPTION
+1/LOW ref/words/password references a password: "Password
password"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/federation.py

Overall risk: 🔥 3/HIGH

RISK KEY DESCRIPTION
+3/HIGH evasion/base64/decode decodes base64 strings: "b64decode::$b64decode"
+2/MEDIUM exec/shell_command execute a shell command
+1/LOW encoding/base64 supports base64 encoded strings

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/parsing.py

Overall risk: ✅ 1/LOW

RISK KEY DESCRIPTION
+1/LOW ref/site/url contains embedded HTTPS URLs: "https://docs.python.org/3/library/argparse.html"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/constants.py

Overall risk: ✅ 1/LOW

RISK KEY DESCRIPTION
+1/LOW ref/site/url contains embedded HTTPS URLs: "https://cmd2.readthedocs.io/en/latest/api/index.html"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/activate

Overall risk: ✅ 1/LOW

RISK KEY DESCRIPTION
+1/LOW ref/path/hidden possible hidden file path: "/home/build/.venv"

Added: neuvector-manager-5.3/usr/local/bin/support.py

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
+2/MEDIUM exec/shell_command execute a shell command
+2/MEDIUM net/http/post able to submit content via HTTP POST
+2/MEDIUM net/socket/connect initiate a connection on a socket
+2/MEDIUM net/url/request requests resources via URL
+2/MEDIUM ref/site/http/dynamic uRL that is dynamically generated: "https://%s"
+1/LOW compression/gzip works with gzip files
+1/LOW kernel/hostname/get gets the hostname of the machine
+1/LOW net/url handles URL strings
+1/LOW ref/path/usr/bin references paths within /usr/bin: "/usr/bin/python3"
+1/LOW ref/words/password references a password: "password"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/enforcer.py

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
+2/MEDIUM databases/mysql accesses MySQL databases
+2/MEDIUM databases/postgresql accesses PostgreSQL databases
+2/MEDIUM net/download downloads files
+2/MEDIUM ref/words/ddos references DDoS: "DDoS"
+1/LOW net/icmp iCMP (Internet Control Message Protocol), aka ping

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/utils.py

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
+2/MEDIUM net/ip/parse parses IP address (IPv4 or IPv6)

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/multipart.py

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
+2/MEDIUM net/http/cookies able to access HTTP resources using cookies
+2/MEDIUM net/http/form/upload upload content via HTTP form
+2/MEDIUM net/http/post able to submit content via HTTP POST
+2/MEDIUM net/upload uploads files
+2/MEDIUM net/url/encode encodes URL, likely to pass GET variables
+1/LOW net/url handles URL strings
+1/LOW ref/site/url contains embedded HTTP URLs: "http://bottle.paws.de/"

Added: neuvector-manager-5.3/usr/local/bin/admin-assembly-1.0.jar

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
meta lang c++
+2/MEDIUM fs/permission/modify modifies file permissions
+2/MEDIUM net/bpf bPF (Berkeley Packet Filter)
+2/MEDIUM net/http/cookies able to access HTTP resources using cookies
+2/MEDIUM process/chdir changes current working directory: "cd"
+2/MEDIUM ref/path/relative references and possibly executes relative path: "./fq
./wm
./zmp"
+2/MEDIUM ref/words/agent references an 'agent': "agent"
+2/MEDIUM ref/words/collection uses terms that reference data collection: "DataCollection"
+2/MEDIUM ref/words/intercept references interception: "interceptors"
+2/MEDIUM security_controls/linux/ufw interacts with the ufw firewall
+1/LOW crypto/aes supports AES (Advanced Encryption Standard)
+1/LOW fs/file/delete deletes files
+1/LOW net/dns/txt uses DNS TXT (text) records
+1/LOW net/http/request makes HTTP requests
+1/LOW ref/words/password references a password: "Password"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/cmd2.py

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
+2/MEDIUM exec/program executes another program
+2/MEDIUM kernel/uname/get get system identification (platform.dist)
+2/MEDIUM ref/path/home peferences path within /home: "/home/user/cmd2.py
/home/user/file.txt
/home/user/maps/
/home/user/program.c"
+2/MEDIUM shell/exec executes a shell: "/bin/sh as the shell"
+1/LOW encoding/json/decode jsondecode
+1/LOW env/SHELL users preferred SHELL path
+1/LOW env/TERM look up or override terminal settings
+1/LOW fs/file/read reads files
+1/LOW ref/site/url contains embedded HTTPS URLs: "https://github.com/python-cmd2/cmd2"
+1/LOW ref/words/password references a password: "password"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/registry.py

Overall risk: ✅ 1/LOW

RISK KEY DESCRIPTION
+1/LOW ref/words/password references a password: "Password
password"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/client.py

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
+2/MEDIUM exec/program executes another program
+2/MEDIUM net/download downloads files
+2/MEDIUM net/http/post able to submit content via HTTP POST
+2/MEDIUM net/socket/connect initiate a connection on a socket
+2/MEDIUM net/upload uploads files
+2/MEDIUM net/url/request requests resources via URL
+1/LOW fs/file/read reads files
+1/LOW net/url handles URL strings
+1/LOW ref/site/url contains embedded HTTPS URLs: "https://neuvector-svc-controller.neuvector"
+1/LOW ref/words/password references a password: "password"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/wcwidth/init.py

Overall risk: ✅ 1/LOW

RISK KEY DESCRIPTION
+1/LOW ref/site/url contains embedded HTTPS URLs: "https://github.com/jquast/wcwidth"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/validators.py

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
+2/MEDIUM ref/words/intercept references interception: "intercepted"
+1/LOW ref/site/url contains embedded HTTPS URLs: "https://zopeinterface.readthedocs.io/en/latest/"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/pwd_profile.py

Overall risk: ✅ 1/LOW

RISK KEY DESCRIPTION
+1/LOW ref/words/password references a password: "Password
password"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/_funcs.py

Overall risk: ✅ 1/LOW

RISK KEY DESCRIPTION
+1/LOW ref/site/url contains embedded HTTPS URLs: "python-attrs/attrs#251"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/init.pyi

Overall risk: ✅ 1/LOW

RISK KEY DESCRIPTION
+1/LOW ref/site/url contains embedded HTTPS URLs: "python/mypy#4236
python/typing#253"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/wcwidth/wcwidth.py

Overall risk: ✅ 1/LOW

RISK KEY DESCRIPTION
+1/LOW ref/site/url contains embedded HTTPS URLs: "https://github.com/jquast/wcwidth
nedbat/coveragepy#753"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/pyperclip/init.py

Overall risk: 🔥 3/HIGH

RISK KEY DESCRIPTION
+3/HIGH admin/package/install installs software using apt-get: "apt-get install wl-clipboard
apt-get install xclip
apt-get install xsel"
+2/MEDIUM evasion/lib_alias aliases core python library to an alternate name: "from shutil import which as _executable_exists"
+2/MEDIUM exec/program executes another program
+2/MEDIUM exec/shell_command execute a shell command
+2/MEDIUM ref/program/powershell powershell: "powershell"
+2/MEDIUM ref/program/sudo calls sudo: "sudo apt-get install wl-clipboard
sudo apt-get install xclip
sudo apt-get install xsel"
+2/MEDIUM ui/clipboard accesses macOS clipboard conetnts
+1/LOW fs/file/read reads files
+1/LOW ref/site/url contains embedded HTTPS URLs:
https://askubuntu.com/questions/697397/python3-is-not-supporting-gtk-modu
https://bugs.kde.org/show_bug.cgi?id=342874
asweigart/pyperclip#43
asweigart/pyperclip#55
https://pyperclip.readthedocs.io/en/latest/index.html
https://pypi.python.org/pypi/QtPy

@github-actions GitHub Actions
Copy link
Contributor

github-actions bot commented Apr 9, 2024

Package neuvector-manager-5.3: Click to expand/collapse

Package neuvector-manager-5.3:

.PKGINFO metadata:

  (
  	"""
  	# Generated by melange v0.6.10-27-g550fae8
- 	pkgname = neuvector-manager-5.3
+ 	pkgname = neuvector-manager-5.3-cli
  	pkgver = 5.3.1-r0
  	arch = x86_64
- 	size = 59866249
+ 	size = 2227819
  	origin = neuvector-manager-5.3
- 	pkgdesc = NeuVector Security Center Admin Console.
+ 	pkgdesc = NeuVector Manager CLI
  	url = 
  	commit = 9ea114c0d0b5c0b5ae37199af0965a56964adc36
  	license = Apache-2.0
- 	depend = openjdk-11-default-jvm
- 	provides = neuvector-manager=5.3.1-r0
- 	datahash = ad0849e15026cd296677c3afc5bcd12250319373a1dc1d88155d3ffd99d51dad
+ 	depend = py3-click
+ 	depend = py3-requests
+ 	depend = py3-six
+ 	depend = py3-urllib3
+ 	depend = python-3.12-base
+ 	depend = supervisor
+ 	provides = neuvector-manager-cli=5.3.1-r0
+ 	datahash = 54dfa80a349d0601a532b36e2fe481ec01a73d2376eb7cb0b2f68034b10729b5
  	"""
  )

Added: /.PKGINFO
Added: /etc/neuvector/certs/ssl-cert.key
Added: /etc/neuvector/certs/ssl-cert.pem
Added: /usr/local/bin/admin-assembly-1.0.jar
Added: /usr/local/bin/support
Added: /usr/local/bin/support.py

Package neuvector-manager-5.3-cli: Click to expand/collapse

Package neuvector-manager-5.3-cli:

.PKGINFO metadata:

  (
  	"""
  	# Generated by melange v0.6.10-27-g550fae8
- 	pkgname = neuvector-manager-5.3
+ 	pkgname = neuvector-manager-5.3-cli
  	pkgver = 5.3.1-r0
  	arch = x86_64
- 	size = 59866249
+ 	size = 2227819
  	origin = neuvector-manager-5.3
- 	pkgdesc = NeuVector Security Center Admin Console.
+ 	pkgdesc = NeuVector Manager CLI
  	url = 
  	commit = 9ea114c0d0b5c0b5ae37199af0965a56964adc36
  	license = Apache-2.0
- 	depend = openjdk-11-default-jvm
- 	provides = neuvector-manager=5.3.1-r0
- 	datahash = ad0849e15026cd296677c3afc5bcd12250319373a1dc1d88155d3ffd99d51dad
+ 	depend = py3-click
+ 	depend = py3-requests
+ 	depend = py3-six
+ 	depend = py3-urllib3
+ 	depend = python-3.12-base
+ 	depend = supervisor
+ 	provides = neuvector-manager-cli=5.3.1-r0
+ 	datahash = 54dfa80a349d0601a532b36e2fe481ec01a73d2376eb7cb0b2f68034b10729b5
  	"""
  )

Added: /.PKGINFO
Added: /usr/share/neuvector-manager-cli/.venv/bin/Activate.ps1
Added: /usr/share/neuvector-manager-cli/.venv/bin/activate
Added: /usr/share/neuvector-manager-cli/.venv/bin/activate.csh
Added: /usr/share/neuvector-manager-cli/.venv/bin/activate.fish
Added: /usr/share/neuvector-manager-cli/.venv/bin/cli
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/init.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/admission.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/assessment.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/auth.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/bench.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/cli.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/client.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/cluster.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/compliance.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/controller.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/convers.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/diag.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/dlp.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/domain.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/enforcer.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/federation.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/file_access.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/group.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/host.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/log.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/main.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/multipart.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/output.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/policy.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/process.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/pwd_profile.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/registry.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/repository.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/role.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/scan.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/server.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/sigstore.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/system.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/utils.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/waf.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/workload.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/init.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/init.pyi
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/pycache/init.cpython-312.pyc
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/pycache/_cmp.cpython-312.pyc
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/pycache/_compat.cpython-312.pyc
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/pycache/_config.cpython-312.pyc
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/pycache/_funcs.cpython-312.pyc
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/pycache/_make.cpython-312.pyc
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/pycache/_next_gen.cpython-312.pyc
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/pycache/_version_info.cpython-312.pyc
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/pycache/converters.cpython-312.pyc
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/pycache/exceptions.cpython-312.pyc
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/pycache/filters.cpython-312.pyc
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/pycache/setters.cpython-312.pyc
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/pycache/validators.cpython-312.pyc
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/_cmp.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/_cmp.pyi
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/_compat.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/_config.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/_funcs.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/_make.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/_next_gen.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/_typing_compat.pyi
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/_version_info.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/_version_info.pyi
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/converters.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/converters.pyi
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/exceptions.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/exceptions.pyi
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/filters.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/filters.pyi
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/py.typed
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/setters.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/setters.pyi
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/validators.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/validators.pyi
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attrs/init.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attrs/init.pyi
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attrs/converters.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attrs/exceptions.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attrs/filters.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attrs/py.typed
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attrs/setters.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attrs/validators.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attrs-23.2.0.dist-info/INSTALLER
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attrs-23.2.0.dist-info/METADATA
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attrs-23.2.0.dist-info/RECORD
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attrs-23.2.0.dist-info/WHEEL
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attrs-23.2.0.dist-info/licenses/LICENSE
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/init.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/ansi.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/argparse_completer.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/argparse_custom.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/clipboard.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/cmd2.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/command_definition.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/constants.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/decorators.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/exceptions.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/history.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/parsing.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/plugin.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/py.typed
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/py_bridge.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/rl_utils.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/table_creator.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/transcript.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/utils.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2-2.4.3.dist-info/INSTALLER
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2-2.4.3.dist-info/LICENSE
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2-2.4.3.dist-info/METADATA
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2-2.4.3.dist-info/RECORD
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2-2.4.3.dist-info/REQUESTED
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2-2.4.3.dist-info/WHEEL
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2-2.4.3.dist-info/top_level.txt
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/prettytable/init.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/prettytable/colortable.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/prettytable/prettytable.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/prettytable/py.typed
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/prettytable-3.10.0.dist-info/INSTALLER
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/prettytable-3.10.0.dist-info/METADATA
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/prettytable-3.10.0.dist-info/RECORD
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/prettytable-3.10.0.dist-info/REQUESTED
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/prettytable-3.10.0.dist-info/WHEEL
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/prettytable-3.10.0.dist-info/licenses/LICENSE
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/pyperclip/init.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/pyperclip/main.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/pyperclip-1.8.2.dist-info/AUTHORS.txt
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/pyperclip-1.8.2.dist-info/INSTALLER
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/pyperclip-1.8.2.dist-info/LICENSE.txt
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/pyperclip-1.8.2.dist-info/METADATA
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/pyperclip-1.8.2.dist-info/RECORD
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/pyperclip-1.8.2.dist-info/WHEEL
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/pyperclip-1.8.2.dist-info/top_level.txt
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/wcwidth/init.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/wcwidth/table_vs16.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/wcwidth/table_wide.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/wcwidth/table_zero.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/wcwidth/unicode_versions.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/wcwidth/wcwidth.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/wcwidth-0.2.13.dist-info/INSTALLER
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/wcwidth-0.2.13.dist-info/LICENSE
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/wcwidth-0.2.13.dist-info/METADATA
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/wcwidth-0.2.13.dist-info/RECORD
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/wcwidth-0.2.13.dist-info/WHEEL
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/wcwidth-0.2.13.dist-info/top_level.txt
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/wcwidth-0.2.13.dist-info/zip-safe
Added: /usr/share/neuvector-manager-cli/.venv/pyvenv.cfg

bincapz found differences: Click to expand/collapse

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/repository.py

Overall risk: ✅ 1/LOW

RISK KEY DESCRIPTION
+1/LOW ref/words/password references a password: "Password
password"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/workload.py

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
+2/MEDIUM net/download downloads files
+2/MEDIUM ref/words/intercept references interception: "intercept"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/pwd_profile.py

Overall risk: ✅ 1/LOW

RISK KEY DESCRIPTION
+1/LOW ref/words/password references a password: "Password
password"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/server.py

Overall risk: ✅ 1/LOW

RISK KEY DESCRIPTION
+1/LOW ref/words/password references a password: "Password
password"

Added: neuvector-manager-5.3/usr/local/bin/admin-assembly-1.0.jar

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
meta lang c++
+2/MEDIUM fs/permission/modify modifies file permissions
+2/MEDIUM net/bpf bPF (Berkeley Packet Filter)
+2/MEDIUM net/http/cookies able to access HTTP resources using cookies
+2/MEDIUM process/chdir changes current working directory: "cd"
+2/MEDIUM ref/path/relative references and possibly executes relative path: "./fq
./wm
./zmp"
+2/MEDIUM ref/words/agent references an 'agent': "agent"
+2/MEDIUM ref/words/collection uses terms that reference data collection: "DataCollection"
+2/MEDIUM ref/words/intercept references interception: "interceptors"
+2/MEDIUM security_controls/linux/ufw interacts with the ufw firewall
+1/LOW crypto/aes supports AES (Advanced Encryption Standard)
+1/LOW fs/file/delete deletes files
+1/LOW net/dns/txt uses DNS TXT (text) records
+1/LOW net/http/request makes HTTP requests
+1/LOW ref/words/password references a password: "Password"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/federation.py

Overall risk: 🔥 3/HIGH

RISK KEY DESCRIPTION
+3/HIGH evasion/base64/decode decodes base64 strings: "b64decode::$b64decode"
+2/MEDIUM exec/shell_command execute a shell command
+1/LOW encoding/base64 supports base64 encoded strings

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/log.py

Overall risk: 🔥 3/HIGH

RISK KEY DESCRIPTION
+3/HIGH evasion/base64/decode decodes base64 strings: "b64decode::$b64decode"
+1/LOW encoding/base64 supports base64 encoded strings

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/activate

Overall risk: ✅ 1/LOW

RISK KEY DESCRIPTION
+1/LOW ref/path/hidden possible hidden file path: "/home/build/.venv"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/controller.py

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
+2/MEDIUM net/download downloads files

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attrs/init.pyi

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
+2/MEDIUM evasion/lib_alias aliases core python library to an alternate name:
from attr import Attribute as Attribute
from attr import AttrsInstance as AttrsInstance
from attr import Factory as Factory
from attr import NOTHING as NOTHING
from attr import author as author
from attr import copyright as copyright
from attr import description as description
from attr import email as email
from attr import license as license
from attr import title as title
from attr import url as url
from attr import version as version
from attr import version_info as version_info
from attr import assoc as assoc
from attr import cmp_using as cmp_using
from attr import converters as converters
from attr import define as define
from attr import evolve as evolve
from attr import exceptions as exceptions
from attr import field as field
from attr import fields as fields
from attr import fields_dict as fields_dict
from attr import filters as filters
from attr import frozen as frozen
from attr import has as has
from attr import make_class as make_class
from attr import mutable as mutable
from attr import resolve_types as resolve_types
from attr import setters as setters
from attr import validate as validate
from attr import validators as validators

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/utils.py

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
+2/MEDIUM exec/program executes another program: "subprocess.PIPE.
subprocess.Popen[str]"
+2/MEDIUM kernel/uname/get get system identification (platform.dist)
+2/MEDIUM process/multithreaded uses python threading
+1/LOW ref/site/url contains embedded HTTPS URLs: "https://stackoverflow.com/a/25959545/1956611"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/table_creator.py

Overall risk: ✅ 1/LOW

RISK KEY DESCRIPTION
+1/LOW fs/file/read reads files

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/parsing.py

Overall risk: ✅ 1/LOW

RISK KEY DESCRIPTION
+1/LOW ref/site/url contains embedded HTTPS URLs: "https://docs.python.org/3/library/argparse.html"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/constants.py

Overall risk: ✅ 1/LOW

RISK KEY DESCRIPTION
+1/LOW ref/site/url contains embedded HTTPS URLs: "https://cmd2.readthedocs.io/en/latest/api/index.html"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/wcwidth/wcwidth.py

Overall risk: ✅ 1/LOW

RISK KEY DESCRIPTION
+1/LOW ref/site/url contains embedded HTTPS URLs: "https://github.com/jquast/wcwidth
nedbat/coveragepy#753"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/client.py

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
+2/MEDIUM exec/program executes another program
+2/MEDIUM net/download downloads files
+2/MEDIUM net/http/post able to submit content via HTTP POST
+2/MEDIUM net/socket/connect initiate a connection on a socket
+2/MEDIUM net/upload uploads files
+2/MEDIUM net/url/request requests resources via URL
+1/LOW fs/file/read reads files
+1/LOW net/url handles URL strings
+1/LOW ref/site/url contains embedded HTTPS URLs: "https://neuvector-svc-controller.neuvector"
+1/LOW ref/words/password references a password: "password"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/diag.py

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
+2/MEDIUM net/download downloads files
+1/LOW net/icmp iCMP (Internet Control Message Protocol), aka ping

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/multipart.py

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
+2/MEDIUM net/http/cookies able to access HTTP resources using cookies
+2/MEDIUM net/http/form/upload upload content via HTTP form
+2/MEDIUM net/http/post able to submit content via HTTP POST
+2/MEDIUM net/upload uploads files
+2/MEDIUM net/url/encode encodes URL, likely to pass GET variables
+1/LOW net/url handles URL strings
+1/LOW ref/site/url contains embedded HTTP URLs: "http://bottle.paws.de/"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/_make.py

Overall risk: 🔥 3/HIGH

RISK KEY DESCRIPTION
+3/HIGH techniques/code_eval evaluate code dynamically using eval(): "eval("
eval(bytecode,
eval(script,"
+2/MEDIUM process/chdir changes current working directory: "cd"
+1/LOW ref/site/url contains embedded HTTPS URLs: "python-attrs/attrs#102
python-attrs/attrs#136
python-attrs/attrs#428"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/assessment.py

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
+2/MEDIUM net/url/request requests resources via URL

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/auth.py

Overall risk: ✅ 1/LOW

RISK KEY DESCRIPTION
+1/LOW ref/words/password references a password: "Password
password"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/wcwidth/init.py

Overall risk: ✅ 1/LOW

RISK KEY DESCRIPTION
+1/LOW ref/site/url contains embedded HTTPS URLs: "https://github.com/jquast/wcwidth"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/registry.py

Overall risk: ✅ 1/LOW

RISK KEY DESCRIPTION
+1/LOW ref/words/password references a password: "Password
password"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/pyperclip/init.py

Overall risk: 🔥 3/HIGH

RISK KEY DESCRIPTION
+3/HIGH admin/package/install installs software using apt-get: "apt-get install wl-clipboard
apt-get install xclip
apt-get install xsel"
+2/MEDIUM evasion/lib_alias aliases core python library to an alternate name: "from shutil import which as _executable_exists"
+2/MEDIUM exec/program executes another program
+2/MEDIUM exec/shell_command execute a shell command
+2/MEDIUM ref/program/powershell powershell: "powershell"
+2/MEDIUM ref/program/sudo calls sudo: "sudo apt-get install wl-clipboard
sudo apt-get install xclip
sudo apt-get install xsel"
+2/MEDIUM ui/clipboard accesses macOS clipboard conetnts
+1/LOW fs/file/read reads files
+1/LOW ref/site/url contains embedded HTTPS URLs:
https://askubuntu.com/questions/697397/python3-is-not-supporting-gtk-modu
https://bugs.kde.org/show_bug.cgi?id=342874
asweigart/pyperclip#43
asweigart/pyperclip#55
https://pyperclip.readthedocs.io/en/latest/index.html
https://pypi.python.org/pypi/QtPy

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/validators.py

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
+2/MEDIUM ref/words/intercept references interception: "intercepted"
+1/LOW ref/site/url contains embedded HTTPS URLs: "https://zopeinterface.readthedocs.io/en/latest/"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/history.py

Overall risk: ✅ 1/LOW

RISK KEY DESCRIPTION
+1/LOW encoding/json/decode jsondecode

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/system.py

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
meta lang nodejs
+2/MEDIUM exec/program executes another program
+2/MEDIUM net/download downloads files
+2/MEDIUM net/upload uploads files
+2/MEDIUM net/url/request requests resources via URL
+1/LOW compression/gzip works with gzip files
+1/LOW fs/file/read reads files
+1/LOW ref/path/var references paths within /var: "/var/neuvector/nv_debug"
+1/LOW ref/words/password references a password: "password"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/cmd2.py

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
+2/MEDIUM exec/program executes another program
+2/MEDIUM kernel/uname/get get system identification (platform.dist)
+2/MEDIUM ref/path/home peferences path within /home: "/home/user/cmd2.py
/home/user/file.txt
/home/user/maps/
/home/user/program.c"
+2/MEDIUM shell/exec executes a shell: "/bin/sh as the shell"
+1/LOW encoding/json/decode jsondecode
+1/LOW env/SHELL users preferred SHELL path
+1/LOW env/TERM look up or override terminal settings
+1/LOW fs/file/read reads files
+1/LOW ref/site/url contains embedded HTTPS URLs: "https://github.com/python-cmd2/cmd2"
+1/LOW ref/words/password references a password: "password"

Added: neuvector-manager-5.3/usr/local/bin/support.py

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
+2/MEDIUM exec/shell_command execute a shell command
+2/MEDIUM net/http/post able to submit content via HTTP POST
+2/MEDIUM net/socket/connect initiate a connection on a socket
+2/MEDIUM net/url/request requests resources via URL
+2/MEDIUM ref/site/http/dynamic uRL that is dynamically generated: "https://%s"
+1/LOW compression/gzip works with gzip files
+1/LOW kernel/hostname/get gets the hostname of the machine
+1/LOW net/url handles URL strings
+1/LOW ref/path/usr/bin references paths within /usr/bin: "/usr/bin/python3"
+1/LOW ref/words/password references a password: "password"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/init.pyi

Overall risk: ✅ 1/LOW

RISK KEY DESCRIPTION
+1/LOW ref/site/url contains embedded HTTPS URLs: "python/mypy#4236
python/typing#253"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/file_access.py

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
+2/MEDIUM ref/path/home peferences path within /home: "/home/"
+2/MEDIUM secrets/ssh accesses SSH configuration files and/or keys

Added: neuvector-manager-5.3/usr/local/bin/support

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
+2/MEDIUM ref/path/usr/local references paths within /usr/local: "/usr/local/bin/support.py"
+1/LOW ref/path/bin/su calls /bin/su: "/bin/su"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/enforcer.py

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
+2/MEDIUM databases/mysql accesses MySQL databases
+2/MEDIUM databases/postgresql accesses PostgreSQL databases
+2/MEDIUM net/download downloads files
+2/MEDIUM ref/words/ddos references DDoS: "DDoS"
+1/LOW net/icmp iCMP (Internet Control Message Protocol), aka ping

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/cli.py

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
+2/MEDIUM ref/site/http/dynamic uRL that is dynamically generated: "https://%s"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/utils.py

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
+2/MEDIUM net/ip/parse parses IP address (IPv4 or IPv6)

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/_funcs.py

Overall risk: ✅ 1/LOW

RISK KEY DESCRIPTION
+1/LOW ref/site/url contains embedded HTTPS URLs: "python-attrs/attrs#251"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/prettytable/prettytable.py

Overall risk: ✅ 1/LOW

RISK KEY DESCRIPTION
+1/LOW ref/path/usr/bin references paths within /usr/bin: "/usr/bin/env"

@github-actions GitHub Actions
Copy link
Contributor

github-actions bot commented Apr 9, 2024

Package neuvector-manager-5.3: Click to expand/collapse

Package neuvector-manager-5.3:

.PKGINFO metadata:

  (
  	"""
  	# Generated by melange v0.6.10-27-g550fae8
- 	pkgname = neuvector-manager-5.3
+ 	pkgname = neuvector-manager-5.3-cli
  	pkgver = 5.3.2-r0
  	arch = x86_64
- 	size = 59866249
+ 	size = 2227819
  	origin = neuvector-manager-5.3
- 	pkgdesc = NeuVector Security Center Admin Console.
+ 	pkgdesc = NeuVector Manager CLI
  	url = 
  	commit = 5c02cd68b91cf40a128c93dc4009af90c8230946
  	license = Apache-2.0
- 	depend = openjdk-11-default-jvm
- 	provides = neuvector-manager=5.3.2-r0
- 	datahash = df187e34990cac4029fad023bbda6bbdac637aaebaab4ec8923286bf6fe7fc2a
+ 	depend = py3-click
+ 	depend = py3-requests
+ 	depend = py3-six
+ 	depend = py3-urllib3
+ 	depend = python-3.12-base
+ 	depend = supervisor
+ 	provides = neuvector-manager-cli=5.3.2-r0
+ 	datahash = bd6fbc7cdcb41de652c85446478207cef5ed438db9635efe01c4abd735e0dc38
  	"""
  )

Added: /.PKGINFO
Added: /etc/neuvector/certs/ssl-cert.key
Added: /etc/neuvector/certs/ssl-cert.pem
Added: /usr/local/bin/admin-assembly-1.0.jar
Added: /usr/local/bin/support
Added: /usr/local/bin/support.py

Package neuvector-manager-5.3-cli: Click to expand/collapse

Package neuvector-manager-5.3-cli:

.PKGINFO metadata:

  (
  	"""
  	# Generated by melange v0.6.10-27-g550fae8
- 	pkgname = neuvector-manager-5.3
+ 	pkgname = neuvector-manager-5.3-cli
  	pkgver = 5.3.2-r0
  	arch = x86_64
- 	size = 59866249
+ 	size = 2227819
  	origin = neuvector-manager-5.3
- 	pkgdesc = NeuVector Security Center Admin Console.
+ 	pkgdesc = NeuVector Manager CLI
  	url = 
  	commit = 5c02cd68b91cf40a128c93dc4009af90c8230946
  	license = Apache-2.0
- 	depend = openjdk-11-default-jvm
- 	provides = neuvector-manager=5.3.2-r0
- 	datahash = df187e34990cac4029fad023bbda6bbdac637aaebaab4ec8923286bf6fe7fc2a
+ 	depend = py3-click
+ 	depend = py3-requests
+ 	depend = py3-six
+ 	depend = py3-urllib3
+ 	depend = python-3.12-base
+ 	depend = supervisor
+ 	provides = neuvector-manager-cli=5.3.2-r0
+ 	datahash = bd6fbc7cdcb41de652c85446478207cef5ed438db9635efe01c4abd735e0dc38
  	"""
  )

Added: /.PKGINFO
Added: /usr/share/neuvector-manager-cli/.venv/bin/Activate.ps1
Added: /usr/share/neuvector-manager-cli/.venv/bin/activate
Added: /usr/share/neuvector-manager-cli/.venv/bin/activate.csh
Added: /usr/share/neuvector-manager-cli/.venv/bin/activate.fish
Added: /usr/share/neuvector-manager-cli/.venv/bin/cli
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/init.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/admission.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/assessment.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/auth.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/bench.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/cli.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/client.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/cluster.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/compliance.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/controller.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/convers.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/diag.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/dlp.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/domain.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/enforcer.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/federation.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/file_access.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/group.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/host.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/log.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/main.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/multipart.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/output.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/policy.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/process.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/pwd_profile.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/registry.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/repository.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/role.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/scan.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/server.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/sigstore.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/system.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/utils.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/waf.py
Added: /usr/share/neuvector-manager-cli/.venv/bin/prog/workload.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/init.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/init.pyi
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/pycache/init.cpython-312.pyc
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/pycache/_cmp.cpython-312.pyc
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/pycache/_compat.cpython-312.pyc
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/pycache/_config.cpython-312.pyc
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/pycache/_funcs.cpython-312.pyc
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/pycache/_make.cpython-312.pyc
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/pycache/_next_gen.cpython-312.pyc
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/pycache/_version_info.cpython-312.pyc
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/pycache/converters.cpython-312.pyc
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/pycache/exceptions.cpython-312.pyc
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/pycache/filters.cpython-312.pyc
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/pycache/setters.cpython-312.pyc
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/pycache/validators.cpython-312.pyc
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/_cmp.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/_cmp.pyi
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/_compat.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/_config.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/_funcs.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/_make.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/_next_gen.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/_typing_compat.pyi
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/_version_info.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/_version_info.pyi
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/converters.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/converters.pyi
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/exceptions.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/exceptions.pyi
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/filters.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/filters.pyi
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/py.typed
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/setters.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/setters.pyi
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/validators.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/validators.pyi
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attrs/init.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attrs/init.pyi
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attrs/converters.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attrs/exceptions.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attrs/filters.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attrs/py.typed
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attrs/setters.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attrs/validators.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attrs-23.2.0.dist-info/INSTALLER
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attrs-23.2.0.dist-info/METADATA
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attrs-23.2.0.dist-info/RECORD
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attrs-23.2.0.dist-info/WHEEL
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attrs-23.2.0.dist-info/licenses/LICENSE
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/init.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/ansi.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/argparse_completer.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/argparse_custom.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/clipboard.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/cmd2.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/command_definition.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/constants.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/decorators.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/exceptions.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/history.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/parsing.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/plugin.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/py.typed
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/py_bridge.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/rl_utils.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/table_creator.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/transcript.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/utils.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2-2.4.3.dist-info/INSTALLER
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2-2.4.3.dist-info/LICENSE
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2-2.4.3.dist-info/METADATA
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2-2.4.3.dist-info/RECORD
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2-2.4.3.dist-info/REQUESTED
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2-2.4.3.dist-info/WHEEL
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2-2.4.3.dist-info/top_level.txt
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/prettytable/init.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/prettytable/colortable.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/prettytable/prettytable.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/prettytable/py.typed
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/prettytable-3.10.0.dist-info/INSTALLER
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/prettytable-3.10.0.dist-info/METADATA
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/prettytable-3.10.0.dist-info/RECORD
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/prettytable-3.10.0.dist-info/REQUESTED
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/prettytable-3.10.0.dist-info/WHEEL
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/prettytable-3.10.0.dist-info/licenses/LICENSE
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/pyperclip/init.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/pyperclip/main.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/pyperclip-1.8.2.dist-info/AUTHORS.txt
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/pyperclip-1.8.2.dist-info/INSTALLER
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/pyperclip-1.8.2.dist-info/LICENSE.txt
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/pyperclip-1.8.2.dist-info/METADATA
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/pyperclip-1.8.2.dist-info/RECORD
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/pyperclip-1.8.2.dist-info/WHEEL
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/pyperclip-1.8.2.dist-info/top_level.txt
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/wcwidth/init.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/wcwidth/table_vs16.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/wcwidth/table_wide.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/wcwidth/table_zero.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/wcwidth/unicode_versions.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/wcwidth/wcwidth.py
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/wcwidth-0.2.13.dist-info/INSTALLER
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/wcwidth-0.2.13.dist-info/LICENSE
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/wcwidth-0.2.13.dist-info/METADATA
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/wcwidth-0.2.13.dist-info/RECORD
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/wcwidth-0.2.13.dist-info/WHEEL
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/wcwidth-0.2.13.dist-info/top_level.txt
Added: /usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/wcwidth-0.2.13.dist-info/zip-safe
Added: /usr/share/neuvector-manager-cli/.venv/pyvenv.cfg

bincapz found differences: Click to expand/collapse

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/pwd_profile.py

Overall risk: ✅ 1/LOW

RISK KEY DESCRIPTION
+1/LOW ref/words/password references a password: "Password
password"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/cli.py

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
+2/MEDIUM ref/site/http/dynamic uRL that is dynamically generated: "https://%s"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/constants.py

Overall risk: ✅ 1/LOW

RISK KEY DESCRIPTION
+1/LOW ref/site/url contains embedded HTTPS URLs: "https://cmd2.readthedocs.io/en/latest/api/index.html"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/log.py

Overall risk: 🔥 3/HIGH

RISK KEY DESCRIPTION
+3/HIGH evasion/base64/decode decodes base64 strings: "b64decode::$b64decode"
+1/LOW encoding/base64 supports base64 encoded strings

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/utils.py

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
+2/MEDIUM exec/program executes another program: "subprocess.PIPE.
subprocess.Popen[str]"
+2/MEDIUM kernel/uname/get get system identification (platform.dist)
+2/MEDIUM process/multithreaded uses python threading
+1/LOW ref/site/url contains embedded HTTPS URLs: "https://stackoverflow.com/a/25959545/1956611"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/table_creator.py

Overall risk: ✅ 1/LOW

RISK KEY DESCRIPTION
+1/LOW fs/file/read reads files

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/history.py

Overall risk: ✅ 1/LOW

RISK KEY DESCRIPTION
+1/LOW encoding/json/decode jsondecode

Added: neuvector-manager-5.3/usr/local/bin/support

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
+2/MEDIUM ref/path/usr/local references paths within /usr/local: "/usr/local/bin/support.py"
+1/LOW ref/path/bin/su calls /bin/su: "/bin/su"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/client.py

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
+2/MEDIUM exec/program executes another program
+2/MEDIUM net/download downloads files
+2/MEDIUM net/http/post able to submit content via HTTP POST
+2/MEDIUM net/socket/connect initiate a connection on a socket
+2/MEDIUM net/upload uploads files
+2/MEDIUM net/url/request requests resources via URL
+1/LOW fs/file/read reads files
+1/LOW net/url handles URL strings
+1/LOW ref/site/url contains embedded HTTPS URLs: "https://neuvector-svc-controller.neuvector"
+1/LOW ref/words/password references a password: "password"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/system.py

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
meta lang nodejs
+2/MEDIUM exec/program executes another program
+2/MEDIUM net/download downloads files
+2/MEDIUM net/upload uploads files
+2/MEDIUM net/url/request requests resources via URL
+1/LOW compression/gzip works with gzip files
+1/LOW fs/file/read reads files
+1/LOW ref/path/var references paths within /var: "/var/neuvector/nv_debug"
+1/LOW ref/words/password references a password: "password"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/multipart.py

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
+2/MEDIUM net/http/cookies able to access HTTP resources using cookies
+2/MEDIUM net/http/form/upload upload content via HTTP form
+2/MEDIUM net/http/post able to submit content via HTTP POST
+2/MEDIUM net/upload uploads files
+2/MEDIUM net/url/encode encodes URL, likely to pass GET variables
+1/LOW net/url handles URL strings
+1/LOW ref/site/url contains embedded HTTP URLs: "http://bottle.paws.de/"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/file_access.py

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
+2/MEDIUM ref/path/home peferences path within /home: "/home/"
+2/MEDIUM secrets/ssh accesses SSH configuration files and/or keys

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/_make.py

Overall risk: 🔥 3/HIGH

RISK KEY DESCRIPTION
+3/HIGH techniques/code_eval evaluate code dynamically using eval(): "eval("
eval(bytecode,
eval(script,"
+2/MEDIUM process/chdir changes current working directory: "cd"
+1/LOW ref/site/url contains embedded HTTPS URLs: "python-attrs/attrs#102
python-attrs/attrs#136
python-attrs/attrs#428"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/utils.py

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
+2/MEDIUM net/ip/parse parses IP address (IPv4 or IPv6)

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/repository.py

Overall risk: ✅ 1/LOW

RISK KEY DESCRIPTION
+1/LOW ref/words/password references a password: "Password
password"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/workload.py

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
+2/MEDIUM net/download downloads files
+2/MEDIUM ref/words/intercept references interception: "intercept"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/parsing.py

Overall risk: ✅ 1/LOW

RISK KEY DESCRIPTION
+1/LOW ref/site/url contains embedded HTTPS URLs: "https://docs.python.org/3/library/argparse.html"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/diag.py

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
+2/MEDIUM net/download downloads files
+1/LOW net/icmp iCMP (Internet Control Message Protocol), aka ping

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/wcwidth/init.py

Overall risk: ✅ 1/LOW

RISK KEY DESCRIPTION
+1/LOW ref/site/url contains embedded HTTPS URLs: "https://github.com/jquast/wcwidth"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/enforcer.py

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
+2/MEDIUM databases/mysql accesses MySQL databases
+2/MEDIUM databases/postgresql accesses PostgreSQL databases
+2/MEDIUM net/download downloads files
+2/MEDIUM ref/words/ddos references DDoS: "DDoS"
+1/LOW net/icmp iCMP (Internet Control Message Protocol), aka ping

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/wcwidth/wcwidth.py

Overall risk: ✅ 1/LOW

RISK KEY DESCRIPTION
+1/LOW ref/site/url contains embedded HTTPS URLs: "https://github.com/jquast/wcwidth
nedbat/coveragepy#753"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/prettytable/prettytable.py

Overall risk: ✅ 1/LOW

RISK KEY DESCRIPTION
+1/LOW ref/path/usr/bin references paths within /usr/bin: "/usr/bin/env"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/validators.py

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
+2/MEDIUM ref/words/intercept references interception: "intercepted"
+1/LOW ref/site/url contains embedded HTTPS URLs: "https://zopeinterface.readthedocs.io/en/latest/"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/auth.py

Overall risk: ✅ 1/LOW

RISK KEY DESCRIPTION
+1/LOW ref/words/password references a password: "Password
password"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/_funcs.py

Overall risk: ✅ 1/LOW

RISK KEY DESCRIPTION
+1/LOW ref/site/url contains embedded HTTPS URLs: "python-attrs/attrs#251"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/registry.py

Overall risk: ✅ 1/LOW

RISK KEY DESCRIPTION
+1/LOW ref/words/password references a password: "Password
password"

Added: neuvector-manager-5.3/usr/local/bin/support.py

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
+2/MEDIUM exec/shell_command execute a shell command
+2/MEDIUM net/http/post able to submit content via HTTP POST
+2/MEDIUM net/socket/connect initiate a connection on a socket
+2/MEDIUM net/url/request requests resources via URL
+2/MEDIUM ref/site/http/dynamic uRL that is dynamically generated: "https://%s"
+1/LOW compression/gzip works with gzip files
+1/LOW kernel/hostname/get gets the hostname of the machine
+1/LOW net/url handles URL strings
+1/LOW ref/path/usr/bin references paths within /usr/bin: "/usr/bin/python3"
+1/LOW ref/words/password references a password: "password"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attrs/init.pyi

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
+2/MEDIUM evasion/lib_alias aliases core python library to an alternate name:
from attr import Attribute as Attribute
from attr import AttrsInstance as AttrsInstance
from attr import Factory as Factory
from attr import NOTHING as NOTHING
from attr import author as author
from attr import copyright as copyright
from attr import description as description
from attr import email as email
from attr import license as license
from attr import title as title
from attr import url as url
from attr import version as version
from attr import version_info as version_info
from attr import assoc as assoc
from attr import cmp_using as cmp_using
from attr import converters as converters
from attr import define as define
from attr import evolve as evolve
from attr import exceptions as exceptions
from attr import field as field
from attr import fields as fields
from attr import fields_dict as fields_dict
from attr import filters as filters
from attr import frozen as frozen
from attr import has as has
from attr import make_class as make_class
from attr import mutable as mutable
from attr import resolve_types as resolve_types
from attr import setters as setters
from attr import validate as validate
from attr import validators as validators

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/activate

Overall risk: ✅ 1/LOW

RISK KEY DESCRIPTION
+1/LOW ref/path/hidden possible hidden file path: "/home/build/.venv"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/federation.py

Overall risk: 🔥 3/HIGH

RISK KEY DESCRIPTION
+3/HIGH evasion/base64/decode decodes base64 strings: "b64decode::$b64decode"
+2/MEDIUM exec/shell_command execute a shell command
+1/LOW encoding/base64 supports base64 encoded strings

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/cmd2/cmd2.py

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
+2/MEDIUM exec/program executes another program
+2/MEDIUM kernel/uname/get get system identification (platform.dist)
+2/MEDIUM ref/path/home peferences path within /home: "/home/user/cmd2.py
/home/user/file.txt
/home/user/maps/
/home/user/program.c"
+2/MEDIUM shell/exec executes a shell: "/bin/sh as the shell"
+1/LOW encoding/json/decode jsondecode
+1/LOW env/SHELL users preferred SHELL path
+1/LOW env/TERM look up or override terminal settings
+1/LOW fs/file/read reads files
+1/LOW ref/site/url contains embedded HTTPS URLs: "https://github.com/python-cmd2/cmd2"
+1/LOW ref/words/password references a password: "password"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/pyperclip/init.py

Overall risk: 🔥 3/HIGH

RISK KEY DESCRIPTION
+3/HIGH admin/package/install installs software using apt-get: "apt-get install wl-clipboard
apt-get install xclip
apt-get install xsel"
+2/MEDIUM evasion/lib_alias aliases core python library to an alternate name: "from shutil import which as _executable_exists"
+2/MEDIUM exec/program executes another program
+2/MEDIUM exec/shell_command execute a shell command
+2/MEDIUM ref/program/powershell powershell: "powershell"
+2/MEDIUM ref/program/sudo calls sudo: "sudo apt-get install wl-clipboard
sudo apt-get install xclip
sudo apt-get install xsel"
+2/MEDIUM ui/clipboard accesses macOS clipboard conetnts
+1/LOW fs/file/read reads files
+1/LOW ref/site/url contains embedded HTTPS URLs:
https://askubuntu.com/questions/697397/python3-is-not-supporting-gtk-modu
https://bugs.kde.org/show_bug.cgi?id=342874
asweigart/pyperclip#43
asweigart/pyperclip#55
https://pyperclip.readthedocs.io/en/latest/index.html
https://pypi.python.org/pypi/QtPy

Added: neuvector-manager-5.3/usr/local/bin/admin-assembly-1.0.jar

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
meta lang c++
+2/MEDIUM fs/permission/modify modifies file permissions
+2/MEDIUM net/bpf bPF (Berkeley Packet Filter)
+2/MEDIUM net/http/cookies able to access HTTP resources using cookies
+2/MEDIUM process/chdir changes current working directory: "cd"
+2/MEDIUM ref/path/relative references and possibly executes relative path: "./fq
./wm
./zmp"
+2/MEDIUM ref/words/agent references an 'agent': "agent"
+2/MEDIUM ref/words/collection uses terms that reference data collection: "DataCollection"
+2/MEDIUM ref/words/intercept references interception: "interceptors"
+2/MEDIUM security_controls/linux/ufw interacts with the ufw firewall
+1/LOW crypto/aes supports AES (Advanced Encryption Standard)
+1/LOW fs/file/delete deletes files
+1/LOW net/dns/txt uses DNS TXT (text) records
+1/LOW net/http/request makes HTTP requests
+1/LOW ref/words/password references a password: "Password"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/server.py

Overall risk: ✅ 1/LOW

RISK KEY DESCRIPTION
+1/LOW ref/words/password references a password: "Password
password"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/lib/python3.12/site-packages/attr/init.pyi

Overall risk: ✅ 1/LOW

RISK KEY DESCRIPTION
+1/LOW ref/site/url contains embedded HTTPS URLs: "python/mypy#4236
python/typing#253"

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/assessment.py

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
+2/MEDIUM net/url/request requests resources via URL

Added: neuvector-manager-5.3-cli/usr/share/neuvector-manager-cli/.venv/bin/prog/controller.py

Overall risk: ✅ 2/MEDIUM

RISK KEY DESCRIPTION
+2/MEDIUM net/download downloads files

@jamonation jamonation merged commit b67d589 into main Apr 9, 2024
8 checks passed
@jamonation jamonation deleted the nv-manager branch April 9, 2024 21:10
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jamonation jamonation jamonation approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@EyeCantCU @jamonation