Skip to content

Comments

Bug #12827: Fix cas access-log buffering#1852

Merged
GiooDev merged 1 commit intodevelopfrom
bug_12827_fix_cas_accesslog_buffering
May 14, 2024
Merged

Bug #12827: Fix cas access-log buffering#1852
GiooDev merged 1 commit intodevelopfrom
bug_12827_fix_cas_accesslog_buffering

Conversation

@ghost
Copy link

@ghost ghost commented May 14, 2024

Description

Désactivation du buffering des access-logs de CAS

Contributeur

VAS (Vitam Accessible en Service)

@GiooDev GiooDev added this to the IT 135 milestone May 14, 2024
@GiooDev GiooDev added the OPS REVIEW Mandatory if deployment/ directory is modified. label May 14, 2024
@GiooDev GiooDev assigned GiooDev and ghost and unassigned GiooDev May 14, 2024
@GiooDev GiooDev merged commit 7810f5b into develop May 14, 2024
@GiooDev GiooDev deleted the bug_12827_fix_cas_accesslog_buffering branch May 14, 2024 10:08
@vitam-devops
Copy link
Collaborator

vitam-devops commented May 14, 2024

Logo
Checkmarx One – Scan Summary & Details1fab5762-4655-49b8-ab0b-a3a4bbf5da4b

New Issues

Severity Issue Source File / Package Checkmarx Insight
HIGH CVE-2019-15599 Npm-tree-kill-1.2.1 Vulnerable Package
HIGH CVE-2020-28502 Npm-xmlhttprequest-ssl-1.5.5 Vulnerable Package
HIGH CVE-2020-36048 Npm-engine.io-3.2.1 Vulnerable Package
HIGH CVE-2020-36049 Npm-socket.io-parser-3.2.0 Vulnerable Package
HIGH CVE-2020-7660 Npm-serialize-javascript-1.9.1 Vulnerable Package
HIGH CVE-2020-7788 Npm-ini-1.3.5 Vulnerable Package
HIGH CVE-2021-31597 Npm-xmlhttprequest-ssl-1.5.5 Vulnerable Package
HIGH CVE-2022-2421 Npm-socket.io-parser-3.2.0 Vulnerable Package
MEDIUM CVE-2019-16769 Npm-serialize-javascript-1.9.1 Vulnerable Package
MEDIUM CVE-2020-15366 Npm-ajv-6.10.0 Vulnerable Package
MEDIUM CVE-2020-15366 Npm-ajv-5.5.2 Vulnerable Package
MEDIUM CVE-2020-28481 Npm-socket.io-2.1.1 Vulnerable Package
MEDIUM CVE-2020-7693 Npm-sockjs-0.3.19 Vulnerable Package
MEDIUM CVE-2021-23364 Npm-browserslist-4.5.5 Vulnerable Package
MEDIUM CVE-2022-21704 Npm-log4js-4.5.1 Vulnerable Package
MEDIUM CVE-2022-41940 Npm-engine.io-3.2.1 Vulnerable Package
LOW Logging of Sensitive Data /ansible.cfg: 2 To keep sensitive values out of logs, tasks that expose them need to be marked defining 'no_log' and setting to True
LOW Logging of Sensitive Data /ansible.cfg: 1 To keep sensitive values out of logs, tasks that expose them need to be marked defining 'no_log' and setting to True
LOW Logging of Sensitive Data /ansible.cfg: 2 To keep sensitive values out of logs, tasks that expose them need to be marked defining 'no_log' and setting to True

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

OPS REVIEW Mandatory if deployment/ directory is modified.

Projects

None yet

Milestone

IT 135

Development

Successfully merging this pull request may close these issues.

3 participants

@vitam-devops @GiooDev @lotfivitam