File tree Expand file tree Collapse file tree 2 files changed +14
-15
lines changed
environments/.stackhpc/hooks Expand file tree Collapse file tree 2 files changed +14
-15
lines changed Original file line number Diff line number Diff line change 3838
3939- name : Cleanup /tmp
4040 command : rm -rf /tmp/*
41-
41+
42+ - name : Delete files triggering vulnerability scans
43+ ansible.builtin.file :
44+ path : " {{ item }}"
45+ state : absent
46+ loop : # NB: items here MUST have a justification!
47+ # ondemand install: raised at https://github.com/OSC/ondemand/security/advisories/GHSA-f7j8-ppqm-m5vw
48+ # All declared not to be an issue by Open Ondemand as relevant packages not installed
49+ - " /opt/ood/ondemand/root/usr/share/gems/3.1/ondemand/{{ ondemand_package_version }}-1/gems/bootstrap_form-4.5.0/demo/yarn.lock"
50+ - /var/www/ood/apps/sys/dashboard/node_modules/data-confirm-modal/Gemfile.lock
51+ # chrony role: only used for role dev, venv never created on disk
52+ - etc/ansible-init/playbooks/roles/mrlesmithjr.chrony/poetry.lock
53+ - etc/ansible-init/playbooks/roles/mrlesmithjr.chrony/requirements.txt
54+
4255- name : Get package facts
4356 package_facts :
4457
Load Diff This file was deleted.
You can’t perform that action at this time.
0 commit comments