Bugs #12516: hide STATIC_ATTACHEMENT unit in collect archives list #1718

ebernard · 2024-03-26T14:13:19Z

Hide STATIC_ATTACHEMENT (sic) unit from archives list in the collect module.

vitam-devops · 2024-03-26T14:47:17Z

Checkmarx One – Scan Summary & Details – 6826607f-2179-480e-a70b-c470a141a2b2

New Issues

Issue	Source File / Package	Checkmarx Insight
CVE-2019-15599	Npm-tree-kill-1.2.1	Vulnerable Package
CVE-2020-28502	Npm-xmlhttprequest-ssl-1.5.5	Vulnerable Package
CVE-2020-36048	Npm-engine.io-3.2.1	Vulnerable Package
CVE-2020-36049	Npm-socket.io-parser-3.2.0	Vulnerable Package
CVE-2020-7660	Npm-serialize-javascript-1.9.1	Vulnerable Package
CVE-2020-7788	Npm-ini-1.3.5	Vulnerable Package
CVE-2021-31597	Npm-xmlhttprequest-ssl-1.5.5	Vulnerable Package
CVE-2022-2421	Npm-socket.io-parser-3.2.0	Vulnerable Package
CVE-2023-32695	Npm-socket.io-parser-3.2.0	Vulnerable Package
CVE-2019-16769	Npm-serialize-javascript-1.9.1	Vulnerable Package
CVE-2020-15366	Npm-ajv-6.10.0	Vulnerable Package
CVE-2020-15366	Npm-ajv-5.5.2	Vulnerable Package
CVE-2020-28481	Npm-socket.io-2.1.1	Vulnerable Package
CVE-2020-7693	Npm-sockjs-0.3.19	Vulnerable Package
CVE-2021-23364	Npm-browserslist-4.5.5	Vulnerable Package
CVE-2021-23495	Npm-karma-4.1.0	Vulnerable Package
CVE-2022-0437	Npm-karma-4.1.0	Vulnerable Package
CVE-2022-21704	Npm-log4js-4.5.1	Vulnerable Package
CVE-2022-41940	Npm-engine.io-3.2.1	Vulnerable Package

Fixed Issues

Severity	Issue	Source File / Package
	Missing User Instruction	/Dockerfile: 10
	Missing User Instruction	/Dockerfile: 10
	Missing User Instruction	/Dockerfile: 10
	Missing User Instruction	/Dockerfile: 11
	No New Privileges Not Set	/vitam-recette.yml: 54
	No New Privileges Not Set	/docker-compose.yml: 10
	No New Privileges Not Set	/vitam-recette.yml: 17
	No New Privileges Not Set	/vitam-dev.yml: 19
	Passwords And Secrets - Generic Password	/mongo_dev.yml: 37
	Passwords And Secrets - Generic Password	/mongo_cluster.yml: 11
	Passwords And Secrets - Generic Password	/mongo_cluster.yml: 34
	Passwords And Secrets - Generic Password	/Dockerfile: 67
	Passwords And Secrets - Password in URL	/mongo_dev.yml: 38
	Privileged Containers Enabled	/docker-compose.yml: 7
	Privileged Containers Enabled	/docker-compose.yml: 52
	Privileged Containers Enabled	/docker-compose.yml: 21
	Privileged Containers Enabled	/vitam-recette.yml: 14
	Privileged Containers Enabled	/vitam-recette.yml: 51
	Privileged Containers Enabled	/vitam-dev.yml: 16
	Volume Has Sensitive Host Directory	/docker-compose.yml: 9
	Volume Has Sensitive Host Directory	/vitam-dev.yml: 25
	Volume Has Sensitive Host Directory	/vitam-dev.yml: 27
	Volume Has Sensitive Host Directory	/docker-compose.yml: 26
	Volume Has Sensitive Host Directory	/vitam-recette.yml: 57
	Volume Has Sensitive Host Directory	/vitam-recette.yml: 20
	Volume Has Sensitive Host Directory	/docker-compose.yml: 25
	Volume Has Sensitive Host Directory	/vitam-dev.yml: 26
	Volume Has Sensitive Host Directory	/docker-compose.yml: 10
	Add Instead of Copy	/Dockerfile: 47
	Add Instead of Copy	/Dockerfile: 15
	Add Instead of Copy	/Dockerfile: 46
	Container Traffic Not Bound To Host Interface	/mongo_dev.yml: 12
	Container Traffic Not Bound To Host Interface	/vitam-dev.yml: 28
	Container Traffic Not Bound To Host Interface	/mongo_dev.yml: 29
	Container Traffic Not Bound To Host Interface	/vitam-recette.yml: 58
	Container Traffic Not Bound To Host Interface	/docker-compose.yml: 19
	Container Traffic Not Bound To Host Interface	/vitam-recette.yml: 21
	Container Traffic Not Bound To Host Interface	/docker-compose.yml: 38
	Container Traffic Not Bound To Host Interface	/docker-compose.yml: 7
	Container Traffic Not Bound To Host Interface	/mongo_cluster.yml: 16
	Container Traffic Not Bound To Host Interface	/mongo_cluster.yml: 60
	Container Traffic Not Bound To Host Interface	/mongo_cluster.yml: 39
	Container Traffic Not Bound To Host Interface	/jaeger-docker-compose.yml: 5
	Healthcheck Not Set	/docker-compose.yml: 49
	Healthcheck Not Set	/docker-compose.yml: 41
	Healthcheck Not Set	/mongo_cluster.yml: 49
	Healthcheck Not Set	/jaeger-docker-compose.yml: 3
	Healthcheck Not Set	/mongo_cluster.yml: 4
	Healthcheck Not Set	/vitam-recette.yml: 4
	Healthcheck Not Set	/docker-compose.yml: 17
	Healthcheck Not Set	/mongo_cluster.yml: 27
	Healthcheck Not Set	/docker-compose.yml: 4
	Healthcheck Not Set	/docker-compose.yml: 3
	Healthcheck Not Set	/vitam-dev.yml: 4
	Healthcheck Not Set	/docker-compose.yml: 4
	Healthcheck Not Set	/mongo_dev.yml: 25
	Healthcheck Not Set	/docker-compose.yml: 4
	Healthcheck Not Set	/docker-compose.yml: 27
	Healthcheck Not Set	/vitam-recette.yml: 41
	Healthcheck Not Set	/mongo_dev.yml: 4
	Healthcheck Not Set	/docker-compose.yml: 4
	Host Namespace is Shared	/vitam-recette.yml: 4
	Host Namespace is Shared	/docker-compose.yml: 41
	Host Namespace is Shared	/docker-compose.yml: 27
	Host Namespace is Shared	/mongo_dev.yml: 4
	Host Namespace is Shared	/mongo_cluster.yml: 27
	Host Namespace is Shared	/docker-compose.yml: 17
	Host Namespace is Shared	/docker-compose.yml: 4
	Host Namespace is Shared	/docker-compose.yml: 4
	Host Namespace is Shared	/mongo_cluster.yml: 49
	Host Namespace is Shared	/vitam-recette.yml: 41
	Host Namespace is Shared	/docker-compose.yml: 49
	Host Namespace is Shared	/mongo_dev.yml: 25
	Host Namespace is Shared	/docker-compose.yml: 4
	Host Namespace is Shared	/vitam-dev.yml: 4
	Host Namespace is Shared	/mongo_cluster.yml: 4
	Host Namespace is Shared	/docker-compose.yml: 4
	Host Namespace is Shared	/jaeger-docker-compose.yml: 3
	Host Namespace is Shared	/docker-compose.yml: 3
	Image Version Not Explicit	/Dockerfile: 11
	Memory Not Limited	/docker-compose.yml: 4
	Memory Not Limited	/mongo_dev.yml: 25
	Memory Not Limited	/docker-compose.yml: 17
	Memory Not Limited	/docker-compose.yml: 4
	Memory Not Limited	/vitam-recette.yml: 41
	Memory Not Limited	/mongo_cluster.yml: 49
	Memory Not Limited	/docker-compose.yml: 27
	Memory Not Limited	/docker-compose.yml: 49
	Memory Not Limited	/mongo_cluster.yml: 4
	Memory Not Limited	/mongo_dev.yml: 4
	Memory Not Limited	/docker-compose.yml: 3
	Memory Not Limited	/docker-compose.yml: 41
	Memory Not Limited	/vitam-recette.yml: 4
	Memory Not Limited	/jaeger-docker-compose.yml: 3
	Memory Not Limited	/docker-compose.yml: 4
	Memory Not Limited	/vitam-dev.yml: 4
	Memory Not Limited	/docker-compose.yml: 4
	Memory Not Limited	/mongo_cluster.yml: 27
	Networks Not Set	/docker-compose.yml: 3
	Networks Not Set	/docker-compose.yml: 4
	Networks Not Set	/docker-compose.yml: 4
	Networks Not Set	/docker-compose.yml: 4
	Networks Not Set	/jaeger-docker-compose.yml: 3
	Networks Not Set	/vitam-dev.yml: 4
	Networks Not Set	/docker-compose.yml: 41
	Privileged Ports Mapped In Container	/vitam-dev.yml: 28
	Privileged Ports Mapped In Container	/vitam-recette.yml: 21
	SSRF	/api/api-iam/iam-internal/src/main/java/fr/gouv/vitamui/iam/internal/server/rest/CasInternalController.java: 196
	Security Opt Not Set	/mongo_cluster.yml: 4
	Security Opt Not Set	/jaeger-docker-compose.yml: 3
	Security Opt Not Set	/docker-compose.yml: 17
	Security Opt Not Set	/docker-compose.yml: 41
	Security Opt Not Set	/docker-compose.yml: 49
	Security Opt Not Set	/docker-compose.yml: 4
	Security Opt Not Set	/docker-compose.yml: 4
	Security Opt Not Set	/mongo_dev.yml: 25
	Security Opt Not Set	/mongo_dev.yml: 4
	Security Opt Not Set	/mongo_cluster.yml: 27
	Security Opt Not Set	/mongo_cluster.yml: 49
	Security Opt Not Set	/docker-compose.yml: 3
	Security Opt Not Set	/docker-compose.yml: 4
	Security Opt Not Set	/docker-compose.yml: 27
	Shared Host Network Namespace	/docker-compose.yml: 6
	Shared Host Network Namespace	/docker-compose.yml: 5
	Shared Host Network Namespace	/docker-compose.yml: 45
	Update Instruction Alone	/Dockerfile: 14
	Update Instruction Alone	/Dockerfile: 14
	Update Instruction Alone	/Dockerfile: 17
	Yum Clean All Missing	/Dockerfile: 39
	Yum Clean All Missing	/Dockerfile: 45
	Yum install Without Version	/Dockerfile: 14
	Yum install Without Version	/Dockerfile: 14
	Yum install Without Version	/Dockerfile: 64
	Yum install Without Version	/Dockerfile: 60
	Yum install Without Version	/Dockerfile: 33
	Yum install Without Version	/Dockerfile: 33
	Yum install Without Version	/Dockerfile: 60
	Yum install Without Version	/Dockerfile: 64
	Yum install Without Version	/Dockerfile: 64
	Yum install Without Version	/Dockerfile: 17
	Yum install Without Version	/Dockerfile: 60
	Yum install Without Version	/Dockerfile: 60
	Yum install Without Version	/Dockerfile: 60
	Yum install Without Version	/Dockerfile: 77
	Yum install Without Version	/Dockerfile: 60
	Yum install Without Version	/Dockerfile: 60
	Yum install Without Version	/Dockerfile: 33
	Yum install Without Version	/Dockerfile: 33
	Yum install Without Version	/Dockerfile: 33
	Yum install Without Version	/Dockerfile: 33
	Yum install Without Version	/Dockerfile: 60
	Yum install Without Version	/Dockerfile: 69
	Yum install Without Version	/Dockerfile: 33
	Yum install Without Version	/Dockerfile: 39
	Yum install Without Version	/Dockerfile: 45
	Yum install Without Version	/Dockerfile: 64
	Yum install Without Version	/Dockerfile: 64
	Yum install Without Version	/Dockerfile: 33
	Container Capabilities Unrestricted	/docker-compose.yml: 4
	Container Capabilities Unrestricted	/docker-compose.yml: 49
	Container Capabilities Unrestricted	/docker-compose.yml: 3
	Container Capabilities Unrestricted	/docker-compose.yml: 4
	Container Capabilities Unrestricted	/vitam-dev.yml: 17
	Container Capabilities Unrestricted	/mongo_cluster.yml: 4
	Container Capabilities Unrestricted	/docker-compose.yml: 17
	Container Capabilities Unrestricted	/mongo_cluster.yml: 27
	Container Capabilities Unrestricted	/mongo_dev.yml: 4
	Container Capabilities Unrestricted	/vitam-dev.yml: 4
	Container Capabilities Unrestricted	/mongo_cluster.yml: 49
	Container Capabilities Unrestricted	/jaeger-docker-compose.yml: 3
	Container Capabilities Unrestricted	/docker-compose.yml: 4
	Container Capabilities Unrestricted	/mongo_dev.yml: 25
	Container Capabilities Unrestricted	/docker-compose.yml: 27
	Container Capabilities Unrestricted	/docker-compose.yml: 41
	Cpus Not Limited	/mongo_dev.yml: 25
	Cpus Not Limited	/docker-compose.yml: 17
	Cpus Not Limited	/jaeger-docker-compose.yml: 3
	Cpus Not Limited	/mongo_dev.yml: 4
	Cpus Not Limited	/docker-compose.yml: 41
	Cpus Not Limited	/mongo_cluster.yml: 27
	Cpus Not Limited	/docker-compose.yml: 49
	Cpus Not Limited	/vitam-recette.yml: 4
	Cpus Not Limited	/docker-compose.yml: 4
	Cpus Not Limited	/vitam-recette.yml: 41
	Cpus Not Limited	/docker-compose.yml: 3
	Cpus Not Limited	/docker-compose.yml: 4
	Cpus Not Limited	/docker-compose.yml: 4
	Cpus Not Limited	/docker-compose.yml: 27
	Cpus Not Limited	/vitam-dev.yml: 4
	Cpus Not Limited	/mongo_cluster.yml: 4
	Cpus Not Limited	/docker-compose.yml: 4
	Cpus Not Limited	/mongo_cluster.yml: 49
	Healthcheck Instruction Missing	/Dockerfile: 10
	Healthcheck Instruction Missing	/Dockerfile: 10
	Healthcheck Instruction Missing	/Dockerfile: 10
	Healthcheck Instruction Missing	/Dockerfile: 11
	MAINTAINER Instruction Being Used	/Dockerfile: 11
	MAINTAINER Instruction Being Used	/Dockerfile: 11
	MAINTAINER Instruction Being Used	/Dockerfile: 11
	Multiple RUN, ADD, COPY, Instructions Listed	/Dockerfile: 39
	Multiple RUN, ADD, COPY, Instructions Listed	/Dockerfile: 71
	Unpinned Package Version	/main.yml: 43
	Unpinned Package Version	/vitamui.yml: 60
	Unpinned Package Version	/main.yml: 30
	Unpinned Package Version	/main.yml: 1
	Unpinned Package Version	/prerequisites.yml: 13
	Unpinned Package Version	/main.yml: 10
	Unpinned Package Version	/main.yml: 1
	Unpinned Package Version	/main.yml: 7
	Unpinned Package Version	/main.yml: 1
	Unpinned Package Version	/main.yml: 1
	Unpinned Package Version	/main.yml: 1
	Unpinned Package Version	/vitamui.yml: 1
	Unpinned Package Version	/install.yml: 6
	Unpinned Package Version	/main.yml: 6
	Unpinned Package Version	/main.yml: 86
	Unpinned Package Version	/apache.yml: 1
	Unpinned Package Version	/vitamui.yml: 46
	Unpinned Package Version	/install.yml: 1
	Unpinned Package Version	/main.yml: 16

Bugs #12516: hide STATIC_ATTACHEMENT unit in collect archives list

364302d

GiooDev added this to the IT 133 milestone Mar 26, 2024

ebernard added the bug Something isn't working label Mar 26, 2024

Regzox approved these changes Mar 27, 2024

View reviewed changes

laedanrex approved these changes Mar 27, 2024

View reviewed changes

ebernard merged commit 14f7106 into develop Mar 27, 2024
2 checks passed

ebernard deleted the fix_12516__hide_static_attachement_unit branch March 27, 2024 09:42

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bugs #12516: hide STATIC_ATTACHEMENT unit in collect archives list #1718

Bugs #12516: hide STATIC_ATTACHEMENT unit in collect archives list #1718

ebernard commented Mar 26, 2024

vitam-devops commented Mar 26, 2024

Bugs #12516: hide STATIC_ATTACHEMENT unit in collect archives list #1718

Bugs #12516: hide STATIC_ATTACHEMENT unit in collect archives list #1718

Conversation

ebernard commented Mar 26, 2024

vitam-devops commented Mar 26, 2024

New Issues

Fixed Issues