diff --git a/incubator/senseai-server/0.0.1/CHANGELOG.md b/incubator/senseai-server/0.0.1/CHANGELOG.md deleted file mode 100644 index 5ade7bc602..0000000000 --- a/incubator/senseai-server/0.0.1/CHANGELOG.md +++ /dev/null @@ -1,10 +0,0 @@ -# Changelog
- - - -### senseai-server-0.0.1 (2022-06-16) - -#### Feat - -* add senseai-server ([#2907](https://github.com/truecharts/apps/issues/2907)) - diff --git a/incubator/senseai-server/0.0.2/CHANGELOG.md b/incubator/senseai-server/0.0.2/CHANGELOG.md new file mode 100644 index 0000000000..0ec0d4b147 --- /dev/null +++ b/incubator/senseai-server/0.0.2/CHANGELOG.md @@ -0,0 +1,18 @@ +# Changelog
+ + + +### [senseai-server-0.0.2](https://github.com/truecharts/apps/compare/senseai-server-0.0.1...senseai-server-0.0.2) (2022-06-16) + +#### Chore + +* cleanup ([#2909](https://github.com/truecharts/apps/issues/2909)) + + + + +### senseai-server-0.0.1 (2022-06-16) + +#### Feat + +* add senseai-server ([#2907](https://github.com/truecharts/apps/issues/2907)) diff --git a/incubator/senseai-server/0.0.1/Chart.lock b/incubator/senseai-server/0.0.2/Chart.lock similarity index 80% rename from incubator/senseai-server/0.0.1/Chart.lock rename to incubator/senseai-server/0.0.2/Chart.lock index dc42f1a936..da91427c3b 100644 --- a/incubator/senseai-server/0.0.1/Chart.lock +++ b/incubator/senseai-server/0.0.2/Chart.lock @@ -3,4 +3,4 @@ dependencies: repository: https://library-charts.truecharts.org version: 10.0.10 digest: sha256:9f3c62e5207bf34631e3ba3f32ed1c823f1439d2d5ce6953f3ca1c6fb86fc4bc -generated: "2022-06-16T06:37:46.293416572Z" +generated: "2022-06-16T07:58:59.710820969Z" diff --git a/incubator/senseai-server/0.0.1/Chart.yaml b/incubator/senseai-server/0.0.2/Chart.yaml similarity index 98% rename from incubator/senseai-server/0.0.1/Chart.yaml rename to incubator/senseai-server/0.0.2/Chart.yaml index d4bf72f5a0..23f246b341 100644 --- a/incubator/senseai-server/0.0.1/Chart.yaml +++ b/incubator/senseai-server/0.0.2/Chart.yaml @@ -19,7 +19,7 @@ name: senseai-server sources: - https://github.com/codeproject/CodeProject.SenseAI - https://hub.docker.com/r/codeproject/senseai-server -version: 0.0.1 +version: 0.0.2 annotations: truecharts.org/catagories: | - ai diff --git a/incubator/senseai-server/0.0.1/README.md b/incubator/senseai-server/0.0.2/README.md similarity index 100% rename from incubator/senseai-server/0.0.1/README.md rename to incubator/senseai-server/0.0.2/README.md diff --git a/incubator/senseai-server/0.0.1/app-readme.md b/incubator/senseai-server/0.0.2/app-readme.md similarity index 100% rename from incubator/senseai-server/0.0.1/app-readme.md rename to incubator/senseai-server/0.0.2/app-readme.md diff --git a/incubator/senseai-server/0.0.1/charts/common-10.0.10.tgz b/incubator/senseai-server/0.0.2/charts/common-10.0.10.tgz similarity index 100% rename from incubator/senseai-server/0.0.1/charts/common-10.0.10.tgz rename to incubator/senseai-server/0.0.2/charts/common-10.0.10.tgz diff --git a/incubator/senseai-server/0.0.1/ix_values.yaml b/incubator/senseai-server/0.0.2/ix_values.yaml similarity index 71% rename from incubator/senseai-server/0.0.1/ix_values.yaml rename to incubator/senseai-server/0.0.2/ix_values.yaml index 0f5631ab06..47c1662dff 100644 --- a/incubator/senseai-server/0.0.1/ix_values.yaml +++ b/incubator/senseai-server/0.0.2/ix_values.yaml @@ -3,14 +3,6 @@ image: tag: focal-1.4.0@sha256:e26603f89a1a994cda27c4604fb79ed380acd65e4233e9bd4a8689eb21625b39 pullPolicy: IfNotPresent -# securityContext: -# runAsNonRoot: false -# readOnlyRootFilesystem: false - -# podSecurityContext: -# runAsUser: 0 -# runAsGroup: 0 - service: main: ports: diff --git a/incubator/senseai-server/0.0.1/questions.yaml b/incubator/senseai-server/0.0.2/questions.yaml similarity index 99% rename from incubator/senseai-server/0.0.1/questions.yaml rename to incubator/senseai-server/0.0.2/questions.yaml index bc32797bc8..f06e2f9f81 100644 --- a/incubator/senseai-server/0.0.1/questions.yaml +++ b/incubator/senseai-server/0.0.2/questions.yaml @@ -168,20 +168,6 @@ questions: label: "Value" schema: type: string - - variable: env - group: "Container Configuration" - label: "Image Environment" - schema: - additional_attrs: true - type: dict - attrs: - - variable: TEMPLATEVARIABLE - label: "TEMPLATEVARIABLE" - description: "" - schema: - type: string - required: true - default: "" - variable: TZ label: "Timezone" @@ -1487,7 +1473,7 @@ questions: label: "ReadOnly Root Filesystem" schema: type: boolean - default: false + default: true - variable: allowPrivilegeEscalation label: "Allow Privilege Escalation" schema: @@ -1497,7 +1483,7 @@ questions: label: "runAsNonRoot" schema: type: boolean - default: false + default: true - variable: capabilities label: "Capabilities" schema: @@ -1537,13 +1523,13 @@ questions: description: "The UserID of the user running the application" schema: type: int - default: 0 + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int - default: 0 + default: 568 - variable: fsGroup label: "fsGroup" description: "The group that should own ALL storage." diff --git a/incubator/senseai-server/0.0.1/security.md b/incubator/senseai-server/0.0.2/security.md similarity index 99% rename from incubator/senseai-server/0.0.1/security.md rename to incubator/senseai-server/0.0.2/security.md index bd6c610a28..1c9feb3568 100644 --- a/incubator/senseai-server/0.0.1/security.md +++ b/incubator/senseai-server/0.0.2/security.md @@ -12,9 +12,9 @@ hide: ##### Scan Results #### Chart Object: senseai-server/templates/common.yaml - - + + | Type | Misconfiguration ID | Check | Severity | Explaination | Links | |:----------------|:------------------:|:-----------:|:------------------:|-----------------------------------------|-----------------------------------------| | Kubernetes Security Check | KSV001 | Process can elevate its own privileges | MEDIUM |
Expand... A program inside the container can elevate its own privileges and run as root, which might give the program control over the container and node.


Container 'autopermissions' of Deployment 'RELEASE-NAME-senseai-server' should set 'securityContext.allowPrivilegeEscalation' to false
|
Expand...https://kubernetes.io/docs/concepts/security/pod-security-standards/#restricted
https://avd.aquasec.com/appshield/ksv001
| @@ -40,11 +40,11 @@ hide: #### Container: tccr.io/truecharts/alpine:v3.15.2@sha256:29ed3480a0ee43f7af681fed5d4fc215516abf1c41eade6938b26d8c9c2c7583 (alpine 3.15.2) - + **alpine** - + | Package | Vulnerability | Severity | Installed Version | Fixed Version | Links | |:----------------|:------------------:|:-----------:|:------------------:|:-------------:|-----------------------------------------| | busybox | CVE-2022-28391 | CRITICAL | 1.34.1-r4 | 1.34.1-r5 |
Expand...https://access.redhat.com/security/cve/CVE-2022-28391
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28391
https://git.alpinelinux.org/aports/plain/main/busybox/0001-libbb-sockaddr2str-ensure-only-printable-characters-.patch
https://git.alpinelinux.org/aports/plain/main/busybox/0002-nslookup-sanitize-all-printed-strings-with-printable.patch
https://gitlab.alpinelinux.org/alpine/aports/-/issues/13661
https://nvd.nist.gov/vuln/detail/CVE-2022-28391
| @@ -61,11 +61,11 @@ hide: #### Container: codeproject/senseai-server:focal-1.4.0@sha256:e26603f89a1a994cda27c4604fb79ed380acd65e4233e9bd4a8689eb21625b39 (ubuntu 20.04) - + **ubuntu** - + | Package | Vulnerability | Severity | Installed Version | Fixed Version | Links | |:----------------|:------------------:|:-----------:|:------------------:|:-------------:|-----------------------------------------| | binutils | CVE-2017-13716 | LOW | 2.34-6ubuntu1.3 | |
Expand...https://access.redhat.com/security/cve/CVE-2017-13716
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13716
https://sourceware.org/bugzilla/show_bug.cgi?id=22009
| @@ -284,8 +284,7 @@ hide: **python-pkg** - + | Package | Vulnerability | Severity | Installed Version | Fixed Version | Links | |:----------------|:------------------:|:-----------:|:------------------:|:-------------:|-----------------------------------------| | mpmath | CVE-2021-29063 | HIGH | 1.2.1 | |
Expand...https://github.com/advisories/GHSA-f865-m6cq-j9vx
https://github.com/fredrik-johansson/mpmath/commit/46d44c3c8f3244017fe1eb102d564eb4ab8ef750
https://github.com/fredrik-johansson/mpmath/commit/c811b37c65a4372a7ce613111d2a508c204f9833
https://github.com/fredrik-johansson/mpmath/issues/548
https://github.com/npm/hosted-git-info/pull/76
https://github.com/yetingli/PoCs/blob/main/CVE-2021-29063/Mpmath.md
https://github.com/yetingli/SaveResults/blob/main/js/hosted-git-info.js
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3M5O55E7VUDMXCPQR6MQTOIFDKHP36AA/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EIUX3XWY2K3MSO7QXMZXQQYAURARSPC5/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MS2U6GLXQSRZJE2HVUAUMVFR2DWQLCZG/
https://nvd.nist.gov/vuln/detail/CVE-2021-29063
https://www.npmjs.com/package/hosted-git-info
| - diff --git a/incubator/senseai-server/0.0.1/templates/common.yaml b/incubator/senseai-server/0.0.2/templates/common.yaml similarity index 100% rename from incubator/senseai-server/0.0.1/templates/common.yaml rename to incubator/senseai-server/0.0.2/templates/common.yaml diff --git a/incubator/senseai-server/0.0.1/values.yaml b/incubator/senseai-server/0.0.2/values.yaml similarity index 100% rename from incubator/senseai-server/0.0.1/values.yaml rename to incubator/senseai-server/0.0.2/values.yaml