Skip to content

Test frogbot #30

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
cyan21 wants to merge 29 commits into
base: main
Choose a base branch
from
Open

Test frogbot #30

cyan21 wants to merge 29 commits into from

Conversation

@cyan21
Copy link
Owner

@cyan21 cyan21 commented Dec 20, 2022

No description provided.

cyan21 added 29 commits March 17, 2022 23:11
@cyan21
changed docker registry
2002178
@cyan21
JFrog pipelines : pull runtime image from local RT
b43c277
@cyan21
JFrog Pipelines : fixed tag
fd87551
@cyan21
quick fix
25aae3d
@cyan21
upgrade image tag
9e819dd
@cyan21
quick test
5122ea8
@cyan21
added authentication for docker build
a1cc95b
@cyan21
fixed typo
332003a
@cyan21
modify integration
c061f51
@cyan21
updated resources
c9af534
@cyan21
updated resources 2
ae979f8
@cyan21
enable auto push
6ca2807
@cyan21
tentative fix for mvn deployment
89d9f88
@cyan21
fixed xray audit and publish artifacts
02ccbd1
@cyan21
tentative fix
55310da
@cyan21
updated mvn container image
d93a0ba
@cyan21
removed env variables
47ca342
@cyan21
added back MAVEN_HOME env variable
b239b8e
@cyan21
updated mvn goals
7a960ff
@cyan21
updated mvn goals
d3d0b7c
@cyan21
tentative fix docker scan
28038c9
@cyan21
2nd tentative to fix docker scan
506de31
@cyan21
removed admin creds
46c8e74
@cyan21
adding frogbot
f5b8c5b
@cyan21
bumped springboot
66529da
@cyan21
fixed frogbot
85d0f62
@cyan21
fixed token name
4185d6e
@cyan21
fixed env var
35e0bb3
@cyan21
updated message
abdb8d4
@cyan21 cyan21 self-assigned this Dec 20, 2022
@cyan21 cyan21 requested a review from yannc21 December 20, 2022 13:54
@github-actions
Copy link

github-actions bot commented Dec 20, 2022

What is Frogbot?

SEVERITY IMPACTED PACKAGE VERSION FIXED VERSIONS COMPONENT COMPONENT VERSION CVE

Critical		 org.yaml:snakeyaml 1.29 org.springframework.boot:spring-boot-starter 2.6.0 CVE-2022-1471

High		 org.yaml:snakeyaml 1.29 [1.31] org.springframework.boot:spring-boot-starter 2.6.0 CVE-2022-25857

Medium		 org.springframework:spring-core 5.3.13 [5.2.19] [5.3.14] org.springframework.boot:spring-boot-starter 2.6.0 CVE-2021-22060

Medium		 org.springframework:spring-core 5.3.13 [5.2.22.RELEASE] [5.3.20] org.springframework.boot:spring-boot-starter 2.6.0 CVE-2022-22970

Medium		 org.springframework:spring-expression 5.3.13 [5.2.20] [5.3.16] org.springframework.boot:spring-boot-starter 2.6.0 CVE-2022-22950

Medium		 org.springframework:spring-core 5.3.13 [5.2.21] [5.3.19] org.springframework.boot:spring-boot-starter 2.6.0 CVE-2022-22968

Medium		 org.yaml:snakeyaml 1.29 [1.32] org.springframework.boot:spring-boot-starter 2.6.0 CVE-2022-41854

Medium		 org.yaml:snakeyaml 1.29 [1.31] org.springframework.boot:spring-boot-starter 2.6.0 CVE-2022-38749

Medium		 org.yaml:snakeyaml 1.29 [1.31] org.springframework.boot:spring-boot-starter 2.6.0 CVE-2022-38751

Medium		 org.yaml:snakeyaml 1.29 [1.32] org.springframework.boot:spring-boot-starter 2.6.0 CVE-2022-38752

Medium		 org.yaml:snakeyaml 1.29 [1.31] org.springframework.boot:spring-boot-starter 2.6.0 CVE-2022-38750

Medium		 ch.qos.logback:logback-core 1.2.7 [1.2.9] org.springframework.boot:spring-boot-starter 2.6.0 CVE-2021-42550

Medium		 org.springframework:spring-core 5.3.13 [5.2.22.RELEASE] [5.3.20] org.springframework.boot:spring-boot-starter 2.6.0 CVE-2022-22971

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@yannc21 yannc21 Awaiting requested review from yannc21

At least 1 approving review is required to merge this pull request.

Assignees

@cyan21 cyan21

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@cyan21