From b714239f51fc66fcef400e6a3e81c454e37c3fc9 Mon Sep 17 00:00:00 2001 From: TrueCharts-Bot Date: Thu, 16 Jun 2022 08:05:05 +0000 Subject: [PATCH] Commit new App releases for TrueCharts Signed-off-by: TrueCharts-Bot --- incubator/senseai-server/0.0.1/CHANGELOG.md | 10 -------- incubator/senseai-server/0.0.2/CHANGELOG.md | 18 ++++++++++++++ .../{0.0.1 => 0.0.2}/Chart.lock | 2 +- .../{0.0.1 => 0.0.2}/Chart.yaml | 2 +- .../senseai-server/{0.0.1 => 0.0.2}/README.md | 0 .../{0.0.1 => 0.0.2}/app-readme.md | 0 .../charts/common-10.0.10.tgz | Bin .../{0.0.1 => 0.0.2}/ix_values.yaml | 8 ------- .../{0.0.1 => 0.0.2}/questions.yaml | 22 ++++-------------- .../{0.0.1 => 0.0.2}/security.md | 15 ++++++------ .../{0.0.1 => 0.0.2}/templates/common.yaml | 0 .../{0.0.1 => 0.0.2}/values.yaml | 0 12 files changed, 31 insertions(+), 46 deletions(-) delete mode 100644 incubator/senseai-server/0.0.1/CHANGELOG.md create mode 100644 incubator/senseai-server/0.0.2/CHANGELOG.md rename incubator/senseai-server/{0.0.1 => 0.0.2}/Chart.lock (80%) rename incubator/senseai-server/{0.0.1 => 0.0.2}/Chart.yaml (98%) rename incubator/senseai-server/{0.0.1 => 0.0.2}/README.md (100%) rename incubator/senseai-server/{0.0.1 => 0.0.2}/app-readme.md (100%) rename incubator/senseai-server/{0.0.1 => 0.0.2}/charts/common-10.0.10.tgz (100%) rename incubator/senseai-server/{0.0.1 => 0.0.2}/ix_values.yaml (71%) rename incubator/senseai-server/{0.0.1 => 0.0.2}/questions.yaml (99%) rename incubator/senseai-server/{0.0.1 => 0.0.2}/security.md (99%) rename incubator/senseai-server/{0.0.1 => 0.0.2}/templates/common.yaml (100%) rename incubator/senseai-server/{0.0.1 => 0.0.2}/values.yaml (100%) diff --git a/incubator/senseai-server/0.0.1/CHANGELOG.md b/incubator/senseai-server/0.0.1/CHANGELOG.md deleted file mode 100644 index 5ade7bc6023..00000000000 --- a/incubator/senseai-server/0.0.1/CHANGELOG.md +++ /dev/null @@ -1,10 +0,0 @@ -# Changelog
- - - -### senseai-server-0.0.1 (2022-06-16) - -#### Feat - -* add senseai-server ([#2907](https://github.com/truecharts/apps/issues/2907)) - diff --git a/incubator/senseai-server/0.0.2/CHANGELOG.md b/incubator/senseai-server/0.0.2/CHANGELOG.md new file mode 100644 index 00000000000..0ec0d4b1470 --- /dev/null +++ b/incubator/senseai-server/0.0.2/CHANGELOG.md @@ -0,0 +1,18 @@ +# Changelog
+ + + +### [senseai-server-0.0.2](https://github.com/truecharts/apps/compare/senseai-server-0.0.1...senseai-server-0.0.2) (2022-06-16) + +#### Chore + +* cleanup ([#2909](https://github.com/truecharts/apps/issues/2909)) + + + + +### senseai-server-0.0.1 (2022-06-16) + +#### Feat + +* add senseai-server ([#2907](https://github.com/truecharts/apps/issues/2907)) diff --git a/incubator/senseai-server/0.0.1/Chart.lock b/incubator/senseai-server/0.0.2/Chart.lock similarity index 80% rename from incubator/senseai-server/0.0.1/Chart.lock rename to incubator/senseai-server/0.0.2/Chart.lock index dc42f1a9365..da91427c3ba 100644 --- a/incubator/senseai-server/0.0.1/Chart.lock +++ b/incubator/senseai-server/0.0.2/Chart.lock @@ -3,4 +3,4 @@ dependencies: repository: https://library-charts.truecharts.org version: 10.0.10 digest: sha256:9f3c62e5207bf34631e3ba3f32ed1c823f1439d2d5ce6953f3ca1c6fb86fc4bc -generated: "2022-06-16T06:37:46.293416572Z" +generated: "2022-06-16T07:58:59.710820969Z" diff --git a/incubator/senseai-server/0.0.1/Chart.yaml b/incubator/senseai-server/0.0.2/Chart.yaml similarity index 98% rename from incubator/senseai-server/0.0.1/Chart.yaml rename to incubator/senseai-server/0.0.2/Chart.yaml index d4bf72f5a00..23f246b341a 100644 --- a/incubator/senseai-server/0.0.1/Chart.yaml +++ b/incubator/senseai-server/0.0.2/Chart.yaml @@ -19,7 +19,7 @@ name: senseai-server sources: - https://github.com/codeproject/CodeProject.SenseAI - https://hub.docker.com/r/codeproject/senseai-server -version: 0.0.1 +version: 0.0.2 annotations: truecharts.org/catagories: | - ai diff --git a/incubator/senseai-server/0.0.1/README.md b/incubator/senseai-server/0.0.2/README.md similarity index 100% rename from incubator/senseai-server/0.0.1/README.md rename to incubator/senseai-server/0.0.2/README.md diff --git a/incubator/senseai-server/0.0.1/app-readme.md b/incubator/senseai-server/0.0.2/app-readme.md similarity index 100% rename from incubator/senseai-server/0.0.1/app-readme.md rename to incubator/senseai-server/0.0.2/app-readme.md diff --git a/incubator/senseai-server/0.0.1/charts/common-10.0.10.tgz b/incubator/senseai-server/0.0.2/charts/common-10.0.10.tgz similarity index 100% rename from incubator/senseai-server/0.0.1/charts/common-10.0.10.tgz rename to incubator/senseai-server/0.0.2/charts/common-10.0.10.tgz diff --git a/incubator/senseai-server/0.0.1/ix_values.yaml b/incubator/senseai-server/0.0.2/ix_values.yaml similarity index 71% rename from incubator/senseai-server/0.0.1/ix_values.yaml rename to incubator/senseai-server/0.0.2/ix_values.yaml index 0f5631ab06c..47c1662dff4 100644 --- a/incubator/senseai-server/0.0.1/ix_values.yaml +++ b/incubator/senseai-server/0.0.2/ix_values.yaml @@ -3,14 +3,6 @@ image: tag: focal-1.4.0@sha256:e26603f89a1a994cda27c4604fb79ed380acd65e4233e9bd4a8689eb21625b39 pullPolicy: IfNotPresent -# securityContext: -# runAsNonRoot: false -# readOnlyRootFilesystem: false - -# podSecurityContext: -# runAsUser: 0 -# runAsGroup: 0 - service: main: ports: diff --git a/incubator/senseai-server/0.0.1/questions.yaml b/incubator/senseai-server/0.0.2/questions.yaml similarity index 99% rename from incubator/senseai-server/0.0.1/questions.yaml rename to incubator/senseai-server/0.0.2/questions.yaml index bc32797bc86..f06e2f9f811 100644 --- a/incubator/senseai-server/0.0.1/questions.yaml +++ b/incubator/senseai-server/0.0.2/questions.yaml @@ -168,20 +168,6 @@ questions: label: "Value" schema: type: string - - variable: env - group: "Container Configuration" - label: "Image Environment" - schema: - additional_attrs: true - type: dict - attrs: - - variable: TEMPLATEVARIABLE - label: "TEMPLATEVARIABLE" - description: "" - schema: - type: string - required: true - default: "" - variable: TZ label: "Timezone" @@ -1487,7 +1473,7 @@ questions: label: "ReadOnly Root Filesystem" schema: type: boolean - default: false + default: true - variable: allowPrivilegeEscalation label: "Allow Privilege Escalation" schema: @@ -1497,7 +1483,7 @@ questions: label: "runAsNonRoot" schema: type: boolean - default: false + default: true - variable: capabilities label: "Capabilities" schema: @@ -1537,13 +1523,13 @@ questions: description: "The UserID of the user running the application" schema: type: int - default: 0 + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int - default: 0 + default: 568 - variable: fsGroup label: "fsGroup" description: "The group that should own ALL storage." diff --git a/incubator/senseai-server/0.0.1/security.md b/incubator/senseai-server/0.0.2/security.md similarity index 99% rename from incubator/senseai-server/0.0.1/security.md rename to incubator/senseai-server/0.0.2/security.md index bd6c610a283..1c9feb35686 100644 --- a/incubator/senseai-server/0.0.1/security.md +++ b/incubator/senseai-server/0.0.2/security.md @@ -12,9 +12,9 @@ hide: ##### Scan Results #### Chart Object: senseai-server/templates/common.yaml - - + + | Type | Misconfiguration ID | Check | Severity | Explaination | Links | |:----------------|:------------------:|:-----------:|:------------------:|-----------------------------------------|-----------------------------------------| | Kubernetes Security Check | KSV001 | Process can elevate its own privileges | MEDIUM |
Expand... A program inside the container can elevate its own privileges and run as root, which might give the program control over the container and node.

Container 'autopermissions' of Deployment 'RELEASE-NAME-senseai-server' should set 'securityContext.allowPrivilegeEscalation' to false
|
Expand...https://kubernetes.io/docs/concepts/security/pod-security-standards/#restricted
https://avd.aquasec.com/appshield/ksv001
| @@ -40,11 +40,11 @@ hide: #### Container: tccr.io/truecharts/alpine:v3.15.2@sha256:29ed3480a0ee43f7af681fed5d4fc215516abf1c41eade6938b26d8c9c2c7583 (alpine 3.15.2) - + **alpine** - + | Package | Vulnerability | Severity | Installed Version | Fixed Version | Links | |:----------------|:------------------:|:-----------:|:------------------:|:-------------:|-----------------------------------------| | busybox | CVE-2022-28391 | CRITICAL | 1.34.1-r4 | 1.34.1-r5 |
Expand...https://access.redhat.com/security/cve/CVE-2022-28391
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28391
https://git.alpinelinux.org/aports/plain/main/busybox/0001-libbb-sockaddr2str-ensure-only-printable-characters-.patch
https://git.alpinelinux.org/aports/plain/main/busybox/0002-nslookup-sanitize-all-printed-strings-with-printable.patch
https://gitlab.alpinelinux.org/alpine/aports/-/issues/13661
https://nvd.nist.gov/vuln/detail/CVE-2022-28391
| @@ -61,11 +61,11 @@ hide: #### Container: codeproject/senseai-server:focal-1.4.0@sha256:e26603f89a1a994cda27c4604fb79ed380acd65e4233e9bd4a8689eb21625b39 (ubuntu 20.04) - + **ubuntu** - + | Package | Vulnerability | Severity | Installed Version | Fixed Version | Links | |:----------------|:------------------:|:-----------:|:------------------:|:-------------:|-----------------------------------------| | binutils | CVE-2017-13716 | LOW | 2.34-6ubuntu1.3 | |
Expand...https://access.redhat.com/security/cve/CVE-2017-13716
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13716
https://sourceware.org/bugzilla/show_bug.cgi?id=22009
| @@ -284,8 +284,7 @@ hide: **python-pkg** - + | Package | Vulnerability | Severity | Installed Version | Fixed Version | Links | |:----------------|:------------------:|:-----------:|:------------------:|:-------------:|-----------------------------------------| | mpmath | CVE-2021-29063 | HIGH | 1.2.1 | |
Expand...https://github.com/advisories/GHSA-f865-m6cq-j9vx
https://github.com/fredrik-johansson/mpmath/commit/46d44c3c8f3244017fe1eb102d564eb4ab8ef750
https://github.com/fredrik-johansson/mpmath/commit/c811b37c65a4372a7ce613111d2a508c204f9833
https://github.com/fredrik-johansson/mpmath/issues/548
https://github.com/npm/hosted-git-info/pull/76
https://github.com/yetingli/PoCs/blob/main/CVE-2021-29063/Mpmath.md
https://github.com/yetingli/SaveResults/blob/main/js/hosted-git-info.js
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3M5O55E7VUDMXCPQR6MQTOIFDKHP36AA/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EIUX3XWY2K3MSO7QXMZXQQYAURARSPC5/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MS2U6GLXQSRZJE2HVUAUMVFR2DWQLCZG/
https://nvd.nist.gov/vuln/detail/CVE-2021-29063
https://www.npmjs.com/package/hosted-git-info
| - diff --git a/incubator/senseai-server/0.0.1/templates/common.yaml b/incubator/senseai-server/0.0.2/templates/common.yaml similarity index 100% rename from incubator/senseai-server/0.0.1/templates/common.yaml rename to incubator/senseai-server/0.0.2/templates/common.yaml diff --git a/incubator/senseai-server/0.0.1/values.yaml b/incubator/senseai-server/0.0.2/values.yaml similarity index 100% rename from incubator/senseai-server/0.0.1/values.yaml rename to incubator/senseai-server/0.0.2/values.yaml