Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Story #12533 Descriptive metadata for Collecte #1697

Merged
merged 6 commits into from
Apr 2, 2024
Merged

Story #12533 Descriptive metadata for Collecte #1697

merged 6 commits into from
Apr 2, 2024

Conversation

marob
Copy link
Contributor

@marob marob commented Mar 19, 2024
edited
Loading

Description

Metadata descriptives pour Collecte.

Corrige également le bug #12581

Type de changement:

  • Nouveau Code

  • Refactorisation de code

Tests:

Indiquer comment le code à été testé (manuel, environnement, TU, etc)

manuel

Migration:

Indiquer si les modifications apportées impliquent une migration sur l'existant et comment la faire

Checklist:

Sélectionner les éléments de la checklist

[ ] Mon code suit le style de code de ce projet.

[ ] J'ai commenté mon code, en particulier dans les classes et les méthodes difficile à comprendre.

[ ] J'ai fait les changements correspondant dans la documentation RAML.

[ ] J'ai fait les changements correspondant dans la documentation Métier.

[ ] J'ai fait les changements correspondant dans la documentation Technique.

[ ] J'ai rajouté les tests unitaires vérifiant mes fonctionnalités.

[ ] J'ai rajouté les tests de non régression vérifiant mes fonctionnalités.

[ ] Les tests unitaires nouveaux et existants passent avec succès localement.

[ ] Toutes les dépendances ont été mergées en priorité

Contributeur

VAS (Vitam Accessible en Service)

@marob marob force-pushed the story_12533_md_descriptives_collecte branch 2 times, most recently from 4bc576a to 718419d Compare March 20, 2024 17:50
@vitam-devops
Copy link
Collaborator

vitam-devops commented Mar 20, 2024
edited
Loading

Logo
Checkmarx One – Scan Summary & Details04771b90-3ef7-41ec-bfe3-953329097397

New Issues

Severity Issue Source File / Package Checkmarx Insight
HIGH CVE-2019-15599 Npm-tree-kill-1.2.1 Vulnerable Package
HIGH CVE-2020-28502 Npm-xmlhttprequest-ssl-1.5.5 Vulnerable Package
HIGH CVE-2020-36048 Npm-engine.io-3.2.1 Vulnerable Package
HIGH CVE-2020-36049 Npm-socket.io-parser-3.2.0 Vulnerable Package
HIGH CVE-2020-7660 Npm-serialize-javascript-1.9.1 Vulnerable Package
HIGH CVE-2020-7788 Npm-ini-1.3.5 Vulnerable Package
HIGH CVE-2021-31597 Npm-xmlhttprequest-ssl-1.5.5 Vulnerable Package
HIGH CVE-2022-2421 Npm-socket.io-parser-3.2.0 Vulnerable Package
MEDIUM CVE-2019-16769 Npm-serialize-javascript-1.9.1 Vulnerable Package
MEDIUM CVE-2020-15366 Npm-ajv-6.10.0 Vulnerable Package
MEDIUM CVE-2020-15366 Npm-ajv-5.5.2 Vulnerable Package
MEDIUM CVE-2020-28481 Npm-socket.io-2.1.1 Vulnerable Package
MEDIUM CVE-2020-7693 Npm-sockjs-0.3.19 Vulnerable Package
MEDIUM CVE-2021-23364 Npm-browserslist-4.5.5 Vulnerable Package
MEDIUM CVE-2022-21704 Npm-log4js-4.5.1 Vulnerable Package
MEDIUM CVE-2022-41940 Npm-engine.io-3.2.1 Vulnerable Package
MEDIUM SSRF /api/api-collect/collect-external/src/main/java/fr/gouv/vitamui/collect/external/server/rest/ArchiveUnitController.java: 95 Attack Vector
MEDIUM SSRF /api/api-collect/collect-external/src/main/java/fr/gouv/vitamui/collect/external/server/rest/ArchiveUnitController.java: 95 Attack Vector
MEDIUM SSRF /api/api-collect/collect-external/src/main/java/fr/gouv/vitamui/collect/external/server/rest/ArchiveUnitController.java: 86 Attack Vector
MEDIUM SSRF /api/api-collect/collect-external/src/main/java/fr/gouv/vitamui/collect/external/server/rest/ArchiveUnitController.java: 86 Attack Vector
MEDIUM SSRF /api/api-collect/collect-external/src/main/java/fr/gouv/vitamui/collect/external/server/rest/ArchiveUnitController.java: 66 Attack Vector
MEDIUM SSRF /api/api-collect/collect-external/src/main/java/fr/gouv/vitamui/collect/external/server/rest/ArchiveUnitController.java: 66 Attack Vector
MEDIUM SSRF /api/api-collect/collect-internal/src/main/java/fr/gouv/vitamui/collect/internal/server/rest/ArchiveUnitController.java: 93 Attack Vector
MEDIUM SSRF /api/api-collect/collect-internal/src/main/java/fr/gouv/vitamui/collect/internal/server/rest/ArchiveUnitController.java: 93 Attack Vector
MEDIUM SSRF /api/api-collect/collect-internal/src/main/java/fr/gouv/vitamui/collect/internal/server/rest/ArchiveUnitController.java: 67 Attack Vector
MEDIUM SSRF /api/api-collect/collect-internal/src/main/java/fr/gouv/vitamui/collect/internal/server/rest/ArchiveUnitController.java: 85 Attack Vector
MEDIUM SSRF /api/api-collect/collect-internal/src/main/java/fr/gouv/vitamui/collect/internal/server/rest/ArchiveUnitController.java: 85 Attack Vector
MEDIUM SSRF /api/api-collect/collect-internal/src/main/java/fr/gouv/vitamui/collect/internal/server/rest/ArchiveUnitController.java: 67 Attack Vector
LOW Logging of Sensitive Data /ansible.cfg: 1 To keep sensitive values out of logs, tasks that expose them need to be marked defining 'no_log' and setting to True
LOW Logging of Sensitive Data /ansible.cfg: 2 To keep sensitive values out of logs, tasks that expose them need to be marked defining 'no_log' and setting to True
LOW Logging of Sensitive Data /ansible.cfg: 2 To keep sensitive values out of logs, tasks that expose them need to be marked defining 'no_log' and setting to True

@marob marob force-pushed the story_12533_md_descriptives_collecte branch 4 times, most recently from d1b429c to 61b7969 Compare March 22, 2024 16:41
@marob marob marked this pull request as ready for review March 22, 2024 16:50
@marob marob added this to the IT 133 milestone Mar 22, 2024
@marob marob added enhancement New feature or request javascript Pull requests that update Javascript code java Pull requests that update Java code VAS VAS contribution labels Mar 22, 2024
@marob marob force-pushed the story_12533_md_descriptives_collecte branch 3 times, most recently from edf84a2 to a713d35 Compare March 25, 2024 09:06
@marob marob requested a review from bbenaissa March 25, 2024 14:06
@marob marob force-pushed the story_12533_md_descriptives_collecte branch from a713d35 to 5958fcb Compare March 27, 2024 16:35
@bbenaissa bbenaissa self-requested a review March 30, 2024 09:25
@marob marob force-pushed the story_12533_md_descriptives_collecte branch from 5958fcb to ebe6fca Compare April 2, 2024 08:51
@marob marob force-pushed the story_12533_md_descriptives_collecte branch from ebe6fca to a1f27f6 Compare April 2, 2024 09:05
@marob marob force-pushed the story_12533_md_descriptives_collecte branch from a1f27f6 to ccfda17 Compare April 2, 2024 09:33
@marob marob merged commit e3c9c71 into develop Apr 2, 2024
2 checks passed
@marob marob deleted the story_12533_md_descriptives_collecte branch April 2, 2024 11:09
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@bbenaissa bbenaissa bbenaissa approved these changes

@Regzox Regzox Regzox approved these changes

Assignees
No one assigned
Labels
enhancement New feature or request java Pull requests that update Java code javascript Pull requests that update Javascript code VAS VAS contribution
Projects
None yet
Milestone
IT 133
Development

Successfully merging this pull request may close these issues.
4 participants
@marob @vitam-devops @bbenaissa @Regzox