From 60f3332568913982c7ea273c050068c9c08286af Mon Sep 17 00:00:00 2001 From: isihu <62214125+isihu@users.noreply.github.com> Date: Wed, 17 Apr 2024 16:22:14 +0200 Subject: [PATCH 001/206] document possibility to specify request timeout in plugin generator (#17872) Signed-off-by: isihu <62214125+isihu@users.noreply.github.com> --- docs/operator-manual/applicationset/Generators-Plugin.md | 2 ++ 1 file changed, 2 insertions(+) diff --git a/docs/operator-manual/applicationset/Generators-Plugin.md b/docs/operator-manual/applicationset/Generators-Plugin.md index d0888b9949b8e..13e7bcdb01f36 100644 --- a/docs/operator-manual/applicationset/Generators-Plugin.md +++ b/docs/operator-manual/applicationset/Generators-Plugin.md @@ -77,10 +77,12 @@ metadata: data: token: "$plugin.myplugin.token" # Alternatively $:plugin.myplugin.token baseUrl: "http://myplugin.plugin-ns.svc.cluster.local." + requestTimeout: "60" ``` - `token`: Pre-shared token used to authenticate HTTP request (points to the right key you created in the `argocd-secret` Secret) - `baseUrl`: BaseUrl of the k8s service exposing your plugin in the cluster. +- `requestTimeout`: Timeout of the request to the plugin in seconds (default: 30) ### Store credentials From 2031a07a514a2bc3b9335aef285664967be5b083 Mon Sep 17 00:00:00 2001 From: Matt Hughes <128392218+matthewhughes-uw@users.noreply.github.com> Date: Wed, 17 Apr 2024 15:24:56 +0100 Subject: [PATCH 002/206] fix: Pass logger to differ in diff command (#17871) So that log messages are propagated up, this caused issues for me when trying to diagnose an issue linked to issue #17811. I've just copied the approach used e.g. in `controller/appcontroller.go` when calling `argodiff.NewDiffConfigBuilder`. Sample output before this change: $ argocd --loglevel debug --server argocd-system.dev.aws.uw.systems app diff dev-enablement/dev-enablement ===== apps/Deployment dev-enablement/go-docs ====== 272c272 < cpu: "0" --- > cpu: 0m 275c275 < cpu: "0" --- > cpu: 0m Output with this change: $ argocd --loglevel debug --server argocd-system.dev.aws.uw.systems app diff dev-enablement/dev-enablement INFO[0000] Could not unmarshal to object of type apps/v1, Kind=Deployment: json: unknown field "restartPolicy" INFO[0000] Could not unmarshal to object of type apps/v1, Kind=Deployment: json: unknown field "restartPolicy" ===== apps/Deployment dev-enablement/go-docs ====== 272c272 < cpu: "0" --- > cpu: 0m 275c275 < cpu: "0" --- > cpu: 0m INFO[0000] Could not create new object of type argoproj.io/v1alpha1, Kind=Application: no kind "Application" is registered for version "argoproj.io/v1alpha1" in scheme "pkg/runtime/scheme.go:100" INFO[0000] Could not create new object of type argoproj.io/v1alpha1, Kind=Application: no kind "Application" is registered for version "argoproj.io/v1alpha1" in scheme "pkg/runtime/scheme.go:100" INFO[0000] Could not create new object of type traefik.containo.us/v1alpha1, Kind=IngressRoute: no kind "IngressRoute" is registered for version "traefik.containo.us/v1alpha1" in scheme "pkg/runtime/scheme.go:100" INFO[0000] Could not create new object of type traefik.containo.us/v1alpha1, Kind=IngressRoute: no kind "IngressRoute" is registered for version "traefik.containo.us/v1alpha1" in scheme "pkg/runtime/scheme.go:100" INFO[0000] Could not create new object of type traefik.containo.us/v1alpha1, Kind=IngressRoute: no kind "IngressRoute" is registered for version "traefik.containo.us/v1alpha1" in scheme "pkg/runtime/scheme.go:100" INFO[0000] Could not create new object of type traefik.containo.us/v1alpha1, Kind=IngressRoute: no kind "IngressRoute" is registered for version "traefik.containo.us/v1alpha1" in scheme "pkg/runtime/scheme.go:100" Signed-off-by: Matt Hughes --- cmd/argocd/commands/app.go | 2 ++ 1 file changed, 2 insertions(+) diff --git a/cmd/argocd/commands/app.go b/cmd/argocd/commands/app.go index 0bfa8a7242801..0c0659b38302f 100644 --- a/cmd/argocd/commands/app.go +++ b/cmd/argocd/commands/app.go @@ -50,6 +50,7 @@ import ( "github.com/argoproj/argo-cd/v2/util/git" "github.com/argoproj/argo-cd/v2/util/grpc" argoio "github.com/argoproj/argo-cd/v2/util/io" + logutils "github.com/argoproj/argo-cd/v2/util/log" "github.com/argoproj/argo-cd/v2/util/manifeststream" "github.com/argoproj/argo-cd/v2/util/templates" "github.com/argoproj/argo-cd/v2/util/text/label" @@ -1309,6 +1310,7 @@ func findandPrintDiff(ctx context.Context, app *argoappv1.Application, proj *arg WithDiffSettings(app.Spec.IgnoreDifferences, overrides, ignoreAggregatedRoles). WithTracking(argoSettings.AppLabelKey, argoSettings.TrackingMethod). WithNoCache(). + WithLogger(logutils.NewLogrusLogger(logutils.NewWithCurrentConfig())). Build() errors.CheckError(err) diffRes, err := argodiff.StateDiff(item.live, item.target, diffConfig) From 1c6b6eb83727186a01fe28de62f954e12342df7f Mon Sep 17 00:00:00 2001 From: Daco Date: Wed, 17 Apr 2024 16:39:14 +0200 Subject: [PATCH 003/206] docs: fix metrics labels name in notification monitoring (#17869) Signed-off-by: philippe.dacosta Co-authored-by: philippe.dacosta Co-authored-by: pasha-codefresh --- docs/operator-manual/notifications/grafana-dashboard.json | 4 ++-- docs/operator-manual/notifications/monitoring.md | 4 ++-- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/docs/operator-manual/notifications/grafana-dashboard.json b/docs/operator-manual/notifications/grafana-dashboard.json index 5d04f9116aa16..19af42cf39d06 100644 --- a/docs/operator-manual/notifications/grafana-dashboard.json +++ b/docs/operator-manual/notifications/grafana-dashboard.json @@ -60,7 +60,7 @@ "steppedLine": false, "targets": [ { - "expr": "sum(increase(argocd_notifications_trigger_eval_total[$interval])) by (notifier)", + "expr": "sum(increase(argocd_notifications_trigger_eval_total[$interval])) by (name)", "refId": "A" } ], @@ -146,7 +146,7 @@ "steppedLine": false, "targets": [ { - "expr": "sum(increase(argocd_notifications_deliveries_total[$interval])) by (notifier)", + "expr": "sum(increase(argocd_notifications_deliveries_total[$interval])) by (service)", "refId": "A" } ], diff --git a/docs/operator-manual/notifications/monitoring.md b/docs/operator-manual/notifications/monitoring.md index a0aabbaae1f09..3d8b4c41ea34d 100644 --- a/docs/operator-manual/notifications/monitoring.md +++ b/docs/operator-manual/notifications/monitoring.md @@ -13,8 +13,8 @@ The following metrics are available: Number of delivered notifications. Labels: -* `template` - notification template name -* `notifier` - notification service name +* `trigger` - trigger name +* `service` - notification service name * `succeeded` - flag that indicates if notification was successfully sent or failed ### `argocd_notifications_trigger_eval_total` From db615ed1c55dde361287726eb2748b4a3fb2d0b1 Mon Sep 17 00:00:00 2001 From: Kota Kimura <86363983+kkk777-7@users.noreply.github.com> Date: Thu, 18 Apr 2024 01:31:12 +0900 Subject: [PATCH 004/206] chore: update gitops engine for force sync option (#5882) (#17866) * chore: update gitops engine version Signed-off-by: kkk777-7 * add: e2e and docs for force sync options Signed-off-by: kkk777-7 * docs: Add warning description of force sync options Signed-off-by: kkk777-7 --------- Signed-off-by: kkk777-7 Co-authored-by: pasha-codefresh --- docs/user-guide/sync-options.md | 15 +++++++++++++++ go.mod | 2 +- go.sum | 4 ++-- test/e2e/sync_options_test.go | 19 +++++++++++++++++++ 4 files changed, 37 insertions(+), 3 deletions(-) diff --git a/docs/user-guide/sync-options.md b/docs/user-guide/sync-options.md index a563821967d04..99f5eba6b85de 100644 --- a/docs/user-guide/sync-options.md +++ b/docs/user-guide/sync-options.md @@ -165,6 +165,21 @@ metadata: argocd.argoproj.io/sync-options: Replace=true ``` +## Force Sync + +For certain resources you might want to delete and recreate. e.g. job resources that should run every time when syncing. + +!!! warning + During the sync process, the resources will be synchronized using the 'kubectl delete/create' command. + This sync option has a destructive action, which could cause an outage for your application. + +In such cases you might use `Force=true` sync option in target resources annotation: +```yaml +metadata: + annotations: + argocd.argoproj.io/sync-options: Force=true,Replace=true +``` + ## Server-Side Apply This option enables Kubernetes diff --git a/go.mod b/go.mod index 45978fcce9ecd..e552779401875 100644 --- a/go.mod +++ b/go.mod @@ -13,7 +13,7 @@ require ( github.com/TomOnTime/utfutil v0.0.0-20180511104225-09c41003ee1d github.com/alicebob/miniredis/v2 v2.30.4 github.com/antonmedv/expr v1.15.2 - github.com/argoproj/gitops-engine v0.7.1-0.20240124052710-5fd9f449e757 + github.com/argoproj/gitops-engine v0.7.1-0.20240416142647-fbecbb86e412 github.com/argoproj/notifications-engine v0.4.1-0.20240206192038-2daee6022f41 github.com/argoproj/pkg v0.13.7-0.20230626144333-d56162821bd1 github.com/aws/aws-sdk-go v1.50.8 diff --git a/go.sum b/go.sum index c2a6a79caf2dc..2660cbda83f21 100644 --- a/go.sum +++ b/go.sum @@ -694,8 +694,8 @@ github.com/apache/thrift v0.12.0/go.mod h1:cp2SuWMxlEZw2r+iP2GNCdIi4C1qmUzdZFSVb github.com/apache/thrift v0.13.0/go.mod h1:cp2SuWMxlEZw2r+iP2GNCdIi4C1qmUzdZFSVb+bacwQ= github.com/apache/thrift v0.16.0/go.mod h1:PHK3hniurgQaNMZYaCLEqXKsYK8upmhPbmdP2FXSqgU= github.com/appscode/go v0.0.0-20191119085241-0887d8ec2ecc/go.mod h1:OawnOmAL4ZX3YaPdN+8HTNwBveT1jMsqP74moa9XUbE= -github.com/argoproj/gitops-engine v0.7.1-0.20240124052710-5fd9f449e757 h1:5fKAhTQcTBom0vin56cz/UTPx2GMuvdb+lJRAUOPbHA= -github.com/argoproj/gitops-engine v0.7.1-0.20240124052710-5fd9f449e757/go.mod h1:gWE8uROi7hIkWGNAVM+8FWkMfo0vZ03SLx/aFw/DBzg= +github.com/argoproj/gitops-engine v0.7.1-0.20240416142647-fbecbb86e412 h1:je2wJpWtaoS55mA5MBPCeDnKMeF42pkxO9Oa5KbWrdg= +github.com/argoproj/gitops-engine v0.7.1-0.20240416142647-fbecbb86e412/go.mod h1:gWE8uROi7hIkWGNAVM+8FWkMfo0vZ03SLx/aFw/DBzg= github.com/argoproj/notifications-engine v0.4.1-0.20240206192038-2daee6022f41 h1:PQE8LbcbRHdtnQzeEWwVU2QHXACKOA30yS3No5HSoTQ= github.com/argoproj/notifications-engine v0.4.1-0.20240206192038-2daee6022f41/go.mod h1:TsyusmXQWIL0ST7YMRG/ered7WlWDmbmnPpXnS2LJmM= github.com/argoproj/pkg v0.13.7-0.20230626144333-d56162821bd1 h1:qsHwwOJ21K2Ao0xPju1sNuqphyMnMYkyB3ZLoLtxWpo= diff --git a/test/e2e/sync_options_test.go b/test/e2e/sync_options_test.go index 3eb7140787097..b5dc685e76c13 100644 --- a/test/e2e/sync_options_test.go +++ b/test/e2e/sync_options_test.go @@ -127,3 +127,22 @@ func TestSyncWithSkipHook(t *testing.T) { Then(). Expect(SyncStatusIs(SyncStatusCodeOutOfSync)) } + +func TestSyncWithForceReplace(t *testing.T) { + Given(t). + Path(guestbookPath). + When(). + CreateApp(). + Sync(). + Then(). + Expect(SyncStatusIs(SyncStatusCodeSynced)). + // app having `Replace=true` and `Force=true` annotation should sync succeed if change in immutable field + When(). + PatchFile("guestbook-ui-deployment.yaml", `[{ "op": "add", "path": "/metadata/annotations", "value": { "argocd.argoproj.io/sync-options": "Force=true,Replace=true" }}]`). + PatchFile("guestbook-ui-deployment.yaml", `[{ "op": "add", "path": "/spec/selector/matchLabels/env", "value": "e2e" }, { "op": "add", "path": "/spec/template/metadata/labels/env", "value": "e2e" }]`). + PatchFile("guestbook-ui-deployment.yaml", `[{ "op": "replace", "path": "/spec/replicas", "value": 1 }]`). + Refresh(RefreshTypeNormal). + Sync(). + Then(). + Expect(SyncStatusIs(SyncStatusCodeSynced)) +} From b867c9ea66a66414ccc1a35524e86e43ca5ad05d Mon Sep 17 00:00:00 2001 From: Josh Wolf Date: Wed, 17 Apr 2024 15:38:03 -0400 Subject: [PATCH 005/206] fix: remove deprecated default cipher for golang >=1.22 (#17569) * remove deprecated default cipher Signed-off-by: Josh Wolf * regenerate CLI docs Signed-off-by: Alexander Matyushentsev --------- Signed-off-by: Josh Wolf Signed-off-by: Alexander Matyushentsev Co-authored-by: Jann Fischer Co-authored-by: Alexander Matyushentsev --- docs/operator-manual/server-commands/argocd-repo-server.md | 2 +- docs/operator-manual/server-commands/argocd-server.md | 2 +- util/tls/tls.go | 2 +- 3 files changed, 3 insertions(+), 3 deletions(-) diff --git a/docs/operator-manual/server-commands/argocd-repo-server.md b/docs/operator-manual/server-commands/argocd-repo-server.md index 0f824f494f2af..189adbbc3370b 100644 --- a/docs/operator-manual/server-commands/argocd-repo-server.md +++ b/docs/operator-manual/server-commands/argocd-repo-server.md @@ -50,7 +50,7 @@ argocd-repo-server [flags] --sentinelmaster string Redis sentinel master group name. (default "master") --streamed-manifest-max-extracted-size string Maximum size of streamed manifest archives when extracted (default "1G") --streamed-manifest-max-tar-size string Maximum size of streamed manifest archives (default "100M") - --tlsciphers string The list of acceptable ciphers to be used when establishing TLS connections. Use 'list' to list available ciphers. (default "TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384:TLS_RSA_WITH_AES_256_GCM_SHA384") + --tlsciphers string The list of acceptable ciphers to be used when establishing TLS connections. Use 'list' to list available ciphers. (default "TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384") --tlsmaxversion string The maximum SSL/TLS version that is acceptable (one of: 1.0|1.1|1.2|1.3) (default "1.3") --tlsminversion string The minimum SSL/TLS version that is acceptable (one of: 1.0|1.1|1.2|1.3) (default "1.2") ``` diff --git a/docs/operator-manual/server-commands/argocd-server.md b/docs/operator-manual/server-commands/argocd-server.md index 659a19de3d3e1..5b3fd72ebff00 100644 --- a/docs/operator-manual/server-commands/argocd-server.md +++ b/docs/operator-manual/server-commands/argocd-server.md @@ -100,7 +100,7 @@ argocd-server [flags] --server string The address and port of the Kubernetes API server --staticassets string Directory path that contains additional static assets (default "/shared/app") --tls-server-name string If provided, this name will be used to validate server certificate. If this is not provided, hostname used to contact the server is used. - --tlsciphers string The list of acceptable ciphers to be used when establishing TLS connections. Use 'list' to list available ciphers. (default "TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384:TLS_RSA_WITH_AES_256_GCM_SHA384") + --tlsciphers string The list of acceptable ciphers to be used when establishing TLS connections. Use 'list' to list available ciphers. (default "TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384") --tlsmaxversion string The maximum SSL/TLS version that is acceptable (one of: 1.0|1.1|1.2|1.3) (default "1.3") --tlsminversion string The minimum SSL/TLS version that is acceptable (one of: 1.0|1.1|1.2|1.3) (default "1.2") --token string Bearer token for authentication to the API server diff --git a/util/tls/tls.go b/util/tls/tls.go index 5e18c8eb75cda..c7925b8325273 100644 --- a/util/tls/tls.go +++ b/util/tls/tls.go @@ -28,7 +28,7 @@ const ( DefaultRSABits = 2048 // The default TLS cipher suites to provide to clients - see https://cipherlist.eu for updates // Note that for TLS v1.3, cipher suites are not configurable and will be chosen automatically. - DefaultTLSCipherSuite = "TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384:TLS_RSA_WITH_AES_256_GCM_SHA384" + DefaultTLSCipherSuite = "TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" // The default minimum TLS version to provide to clients DefaultTLSMinVersion = "1.2" // The default maximum TLS version to provide to clients From f91179f07e0a8593427befcd5ad599a29f44e224 Mon Sep 17 00:00:00 2001 From: Alexander Matyushentsev Date: Wed, 17 Apr 2024 15:00:38 -0700 Subject: [PATCH 006/206] fix: invalid revision in re-used manifest cache (#17874) Signed-off-by: Alexander Matyushentsev --- reposerver/cache/cache.go | 5 +++++ reposerver/cache/cache_test.go | 13 ++++++++++--- reposerver/repository/repository_test.go | 2 +- 3 files changed, 16 insertions(+), 4 deletions(-) diff --git a/reposerver/cache/cache.go b/reposerver/cache/cache.go index 5b15299660ad4..71b8b69a718a7 100644 --- a/reposerver/cache/cache.go +++ b/reposerver/cache/cache.go @@ -354,6 +354,11 @@ func (c *Cache) GetManifests(revision string, appSrc *appv1.ApplicationSource, s // The expected hash matches the actual hash, so remove the hash from the returned value res.CacheEntryHash = "" + if res.ManifestResponse != nil { + // cached manifest response might be reused across different revisions, so we need to assume that the revision is the one we are looking for + res.ManifestResponse.Revision = revision + } + return nil } diff --git a/reposerver/cache/cache_test.go b/reposerver/cache/cache_test.go index 452a9f6e14edb..e1df3138daa08 100644 --- a/reposerver/cache/cache_test.go +++ b/reposerver/cache/cache_test.go @@ -124,11 +124,18 @@ func TestCache_GetManifests(t *testing.T) { assert.Equal(t, ErrCacheMiss, err) }) t.Run("expect cache hit", func(t *testing.T) { - err = cache.GetManifests("my-revision", &ApplicationSource{}, q.RefSources, q, "my-namespace", "", "my-app-label-key", "my-app-label-value", value, nil) + err = cache.SetManifests( + "my-revision1", &ApplicationSource{}, q.RefSources, q, "my-namespace", "", "my-app-label-key", "my-app-label-value", + &CachedManifestResponse{ManifestResponse: &apiclient.ManifestResponse{SourceType: "my-source-type", Revision: "my-revision2"}}, nil) assert.NoError(t, err) - assert.Equal(t, &CachedManifestResponse{ManifestResponse: &apiclient.ManifestResponse{SourceType: "my-source-type"}}, value) + + err = cache.GetManifests("my-revision1", &ApplicationSource{}, q.RefSources, q, "my-namespace", "", "my-app-label-key", "my-app-label-value", value, nil) + assert.NoError(t, err) + + assert.Equal(t, "my-source-type", value.ManifestResponse.SourceType) + assert.Equal(t, "my-revision1", value.ManifestResponse.Revision) }) - mockCache.AssertCacheCalledTimes(t, &mocks.CacheCallCounts{ExternalSets: 1, ExternalGets: 8}) + mockCache.AssertCacheCalledTimes(t, &mocks.CacheCallCounts{ExternalSets: 2, ExternalGets: 8}) } func TestCache_GetAppDetails(t *testing.T) { diff --git a/reposerver/repository/repository_test.go b/reposerver/repository/repository_test.go index 34b8088c77d12..f99ce611777c2 100644 --- a/reposerver/repository/repository_test.go +++ b/reposerver/repository/repository_test.go @@ -302,7 +302,7 @@ func TestGenerateManifests_K8SAPIResetCache(t *testing.T) { ProjectSourceRepos: []string{"*"}, } - cachedFakeResponse := &apiclient.ManifestResponse{Manifests: []string{"Fake"}} + cachedFakeResponse := &apiclient.ManifestResponse{Manifests: []string{"Fake"}, Revision: mock.Anything} err := service.cache.SetManifests(mock.Anything, &src, q.RefSources, &q, "", "", "", "", &cache.CachedManifestResponse{ManifestResponse: cachedFakeResponse}, nil) assert.NoError(t, err) From 852f744265cbd2ee17f785306223890966ac43ef Mon Sep 17 00:00:00 2001 From: Michael Crenshaw <350466+crenshaw-dev@users.noreply.github.com> Date: Wed, 17 Apr 2024 20:42:58 -0400 Subject: [PATCH 007/206] fix(api): respect all allowed audiences, regardless of check order (#17876) Signed-off-by: Michael Crenshaw <350466+crenshaw-dev@users.noreply.github.com> --- util/oidc/provider.go | 4 +++- util/session/sessionmanager_test.go | 37 +++++++++++++++++++++++++++++ 2 files changed, 40 insertions(+), 1 deletion(-) diff --git a/util/oidc/provider.go b/util/oidc/provider.go index d75bcf97efecd..2603f927574d3 100644 --- a/util/oidc/provider.go +++ b/util/oidc/provider.go @@ -135,7 +135,9 @@ func (p *providerImpl) Verify(tokenString string, argoSettings *settings.ArgoCDS // to avoid logging irrelevant warnings: https://github.com/coreos/go-oidc/pull/406 tokenVerificationErrors[aud] = err } - if len(tokenVerificationErrors) > 0 { + // If the most recent attempt encountered an error, and if we have collected multiple errors, switch to the + // other error type to gather more context. + if err != nil && len(tokenVerificationErrors) > 0 { err = tokenVerificationError{errorsByAudience: tokenVerificationErrors} } } diff --git a/util/session/sessionmanager_test.go b/util/session/sessionmanager_test.go index 817966376daa3..0f399df334564 100644 --- a/util/session/sessionmanager_test.go +++ b/util/session/sessionmanager_test.go @@ -1137,6 +1137,43 @@ allowedAudiences: []`, oidcTestServer.URL), assert.ErrorIs(t, err, common.TokenVerificationErr) }) + // Make sure the logic works to allow any of the allowed audiences, not just the first one. + t.Run("OIDC provider is external, audience is specified, actual audience isn't the first allowed audience", func(t *testing.T) { + config := map[string]string{ + "url": "", + "oidc.config": fmt.Sprintf(` +name: Test +issuer: %s +clientID: xxx +clientSecret: yyy +requestedScopes: ["oidc"] +allowedAudiences: ["aud-a", "aud-b"]`, oidcTestServer.URL), + "oidc.tls.insecure.skip.verify": "true", // This isn't what we're testing. + } + + // This is not actually used in the test. The test only calls the OIDC test server. But a valid cert/key pair + // must be set to test VerifyToken's behavior when Argo CD is configured with TLS enabled. + secretConfig := map[string][]byte{ + "tls.crt": utiltest.Cert, + "tls.key": utiltest.PrivateKey, + } + + settingsMgr := settings.NewSettingsManager(context.Background(), getKubeClientWithConfig(config, secretConfig), "argocd") + mgr := NewSessionManager(settingsMgr, getProjLister(), "", nil, NewUserStateStorage(nil)) + mgr.verificationDelayNoiseEnabled = false + + claims := jwt.RegisteredClaims{Audience: jwt.ClaimStrings{"aud-b"}, Subject: "admin", ExpiresAt: jwt.NewNumericDate(time.Now().Add(time.Hour * 24))} + claims.Issuer = oidcTestServer.URL + token := jwt.NewWithClaims(jwt.SigningMethodRS512, claims) + key, err := jwt.ParseRSAPrivateKeyFromPEM(utiltest.PrivateKey) + require.NoError(t, err) + tokenString, err := token.SignedString(key) + require.NoError(t, err) + + _, _, err = mgr.VerifyToken(tokenString) + assert.NoError(t, err) + }) + t.Run("OIDC provider is external, audience is not specified, token is signed with the wrong key", func(t *testing.T) { config := map[string]string{ "url": "", From ee020273c03d2f74fc86e5720994c2a0f92f6a56 Mon Sep 17 00:00:00 2001 From: Ragnar Paide <16119863+ragnarpa@users.noreply.github.com> Date: Thu, 18 Apr 2024 10:47:30 +0300 Subject: [PATCH 008/206] Update USERS.md (#17881) Add Pipedrive. Signed-off-by: Ragnar Paide <16119863+ragnarpa@users.noreply.github.com> --- USERS.md | 1 + 1 file changed, 1 insertion(+) diff --git a/USERS.md b/USERS.md index 35249b0903cbf..2eae4a627ca63 100644 --- a/USERS.md +++ b/USERS.md @@ -230,6 +230,7 @@ Currently, the following organizations are **officially** using Argo CD: 1. [Percona](https://percona.com/) 1. [PGS](https://www.pgs.com) 1. [Pigment](https://www.gopigment.com/) +1. [Pipedrive](https://www.pipedrive.com/) 1. [Pipefy](https://www.pipefy.com/) 1. [Pismo](https://pismo.io/) 1. [PITS Globale Datenrettungsdienste](https://www.pitsdatenrettung.de/) From 1cffa15f0ddecbc241d572e316ea20920fdfdb65 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Micha=C5=82=20Ma=C5=82yska?= <999598+mmalyska@users.noreply.github.com> Date: Thu, 18 Apr 2024 10:50:15 +0200 Subject: [PATCH 009/206] add argocd-secret-replacer (#10494) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Adding new tool that can replace secret from sops. It replaces specific string with encrypted values also It provides ability to encode values to base64. It is different from ksops in a way that it is not dependent on kustomize to generate secrets. Signed-off-by: Michał Małyska <999598+mmalyska@users.noreply.github.com> --- docs/operator-manual/secret-management.md | 1 + 1 file changed, 1 insertion(+) diff --git a/docs/operator-manual/secret-management.md b/docs/operator-manual/secret-management.md index aa224e20ff742..cb3199bd98c1d 100644 --- a/docs/operator-manual/secret-management.md +++ b/docs/operator-manual/secret-management.md @@ -19,6 +19,7 @@ Here are some ways people are doing GitOps secrets: * [argocd-vault-replacer](https://github.com/crumbhole/argocd-vault-replacer) * [Kubernetes Secrets Store CSI Driver](https://github.com/kubernetes-sigs/secrets-store-csi-driver) * [Vals-Operator](https://github.com/digitalis-io/vals-operator) +* [argocd-secret-replacer](https://github.com/mmalyska/argocd-secret-replacer) For discussion, see [#1364](https://github.com/argoproj/argo-cd/issues/1364) From 1f8acf4a30fe7779387ab03b42ed04f7a3c86d2c Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 18 Apr 2024 10:30:08 -0400 Subject: [PATCH 010/206] chore(deps): bump code.gitea.io/sdk/gitea from 0.15.1 to 0.18.0 (#17880) Bumps code.gitea.io/sdk/gitea from 0.15.1 to 0.18.0. --- updated-dependencies: - dependency-name: code.gitea.io/sdk/gitea dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- go.mod | 14 ++++++++------ go.sum | 28 +++++++++++++++++----------- 2 files changed, 25 insertions(+), 17 deletions(-) diff --git a/go.mod b/go.mod index e552779401875..36045b6c0d065 100644 --- a/go.mod +++ b/go.mod @@ -5,7 +5,7 @@ go 1.21 toolchain go1.21.0 require ( - code.gitea.io/sdk/gitea v0.15.1 + code.gitea.io/sdk/gitea v0.18.0 github.com/Azure/kubelogin v0.0.20 github.com/Knetic/govaluate v3.0.1-0.20171022003610-9aa49832a739+incompatible github.com/Masterminds/semver/v3 v3.2.1 @@ -82,11 +82,11 @@ require ( go.opentelemetry.io/otel v1.21.0 go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc v1.21.0 go.opentelemetry.io/otel/sdk v1.21.0 - golang.org/x/crypto v0.19.0 + golang.org/x/crypto v0.22.0 golang.org/x/exp v0.0.0-20230522175609-2e198f4a06a1 golang.org/x/oauth2 v0.11.0 golang.org/x/sync v0.3.0 - golang.org/x/term v0.17.0 + golang.org/x/term v0.19.0 google.golang.org/genproto/googleapis/api v0.0.0-20230822172742-b8732ec3820d google.golang.org/grpc v1.59.0 google.golang.org/protobuf v1.33.0 @@ -129,6 +129,8 @@ require ( github.com/aws/aws-sdk-go-v2/service/ssooidc v1.21.7 // indirect github.com/aws/aws-sdk-go-v2/service/sts v1.26.7 // indirect github.com/aws/smithy-go v1.19.0 // indirect + github.com/davidmz/go-pageant v1.0.2 // indirect + github.com/go-fed/httpsig v1.1.0 // indirect github.com/golang-jwt/jwt v3.2.2+incompatible // indirect github.com/google/s2a-go v0.1.4 // indirect github.com/googleapis/enterprise-certificate-proxy v0.2.5 // indirect @@ -208,7 +210,7 @@ require ( github.com/gregjones/httpcache v0.0.0-20190611155906-901d90724c79 // indirect github.com/grpc-ecosystem/grpc-gateway/v2 v2.16.0 // indirect github.com/hashicorp/go-cleanhttp v0.5.2 // indirect - github.com/hashicorp/go-version v1.2.1 // indirect + github.com/hashicorp/go-version v1.6.0 // indirect github.com/huandu/xstrings v1.3.3 // indirect github.com/inconshreveable/mousetrap v1.1.0 // indirect github.com/itchyny/timefmt-go v0.1.5 // indirect @@ -267,8 +269,8 @@ require ( go.opentelemetry.io/proto/otlp v1.0.0 // indirect go.starlark.net v0.0.0-20220328144851-d1966c6b9fcd // indirect golang.org/x/mod v0.12.0 // indirect - golang.org/x/net v0.19.0 - golang.org/x/sys v0.17.0 // indirect + golang.org/x/net v0.21.0 + golang.org/x/sys v0.19.0 // indirect golang.org/x/text v0.14.0 // indirect golang.org/x/time v0.3.0 golang.org/x/tools v0.13.0 // indirect diff --git a/go.sum b/go.sum index 2660cbda83f21..7395172bd5f23 100644 --- a/go.sum +++ b/go.sum @@ -597,9 +597,8 @@ cloud.google.com/go/workflows v1.7.0/go.mod h1:JhSrZuVZWuiDfKEFxU0/F1PQjmpnpcoIS cloud.google.com/go/workflows v1.8.0/go.mod h1:ysGhmEajwZxGn1OhGOGKsTXc5PyxOc0vfKf5Af+to4M= cloud.google.com/go/workflows v1.9.0/go.mod h1:ZGkj1aFIOd9c8Gerkjjq7OW7I5+l6cSvT3ujaO/WwSA= cloud.google.com/go/workflows v1.10.0/go.mod h1:fZ8LmRmZQWacon9UCX1r/g/DfAXx5VcPALq2CxzdePw= -code.gitea.io/gitea-vet v0.2.1/go.mod h1:zcNbT/aJEmivCAhfmkHOlT645KNOf9W2KnkLgFjGGfE= -code.gitea.io/sdk/gitea v0.15.1 h1:WJreC7YYuxbn0UDaPuWIe/mtiNKTvLN8MLkaw71yx/M= -code.gitea.io/sdk/gitea v0.15.1/go.mod h1:klY2LVI3s3NChzIk/MzMn7G1FHrfU7qd63iSMVoHRBA= +code.gitea.io/sdk/gitea v0.18.0 h1:+zZrwVmujIrgobt6wVBWCqITz6bn1aBjnCUHmpZrerI= +code.gitea.io/sdk/gitea v0.18.0/go.mod h1:IG9xZJoltDNeDSW0qiF2Vqx5orMWa7OhVWrjvrd5NpI= dario.cat/mergo v1.0.0 h1:AGCNq9Evsj31mOgNPcLyXc+4PNABt905YmuqPYYpBWk= dario.cat/mergo v1.0.0/go.mod h1:uNxQE+84aUszobStD9th8a29P2fMDhsBdgRYvZOxGmk= dmitri.shuralyov.com/gpu/mtl v0.0.0-20190408044501-666a987793e9/go.mod h1:H6x//7gZCb22OMCxBHrMx7a5I7Hp++hsVxbQ4BYO7hU= @@ -832,6 +831,8 @@ github.com/cyphar/filepath-securejoin v0.2.4/go.mod h1:aPGpWjXOXUn2NCNjFvBE6aRxG github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38= github.com/davecgh/go-spew v1.1.1 h1:vj9j/u1bqnvCEfJOwUhtlOARqs3+rkHYY13jYWTU97c= github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38= +github.com/davidmz/go-pageant v1.0.2 h1:bPblRCh5jGU+Uptpz6LgMZGD5hJoOt7otgT454WvHn0= +github.com/davidmz/go-pageant v1.0.2/go.mod h1:P2EDDnMqIwG5Rrp05dTRITj9z2zpGcD9efWSkTNKLIE= github.com/deckarep/golang-set v1.7.1/go.mod h1:93vsz/8Wt4joVM7c2AVqh+YRMiUSc14yDtF28KmMOgQ= github.com/desertbit/timer v0.0.0-20180107155436-c41aec40b27f h1:U5y3Y5UE0w7amNe7Z5G/twsBW0KEalRQXZzf8ufSh9I= github.com/desertbit/timer v0.0.0-20180107155436-c41aec40b27f/go.mod h1:xH/i4TFMt8koVQZ6WFms69WAsDWr2XsYL3Hkl7jkoLE= @@ -920,6 +921,8 @@ github.com/gliderlabs/ssh v0.3.5 h1:OcaySEmAQJgyYcArR+gGGTHCyE7nvhEMTlYY+Dp8CpY= github.com/gliderlabs/ssh v0.3.5/go.mod h1:8XB4KraRrX39qHhT6yxPsHedjA08I/uBVwj4xC+/+z4= github.com/go-errors/errors v1.4.2 h1:J6MZopCL4uSllY1OfXM374weqZFFItUbrImctkmUxIA= github.com/go-errors/errors v1.4.2/go.mod h1:sIVyrIiJhuEF+Pj9Ebtd6P/rEYROXFi3BopGUQ5a5Og= +github.com/go-fed/httpsig v1.1.0 h1:9M+hb0jkEICD8/cAiNqEB66R87tTINszBRTjwjQzWcI= +github.com/go-fed/httpsig v1.1.0/go.mod h1:RCMrTZvN1bJYtofsG4rd5NaO5obxQ5xBkdiS7xsT7bM= github.com/go-fonts/dejavu v0.1.0/go.mod h1:4Wt4I4OU2Nq9asgDCteaAaWZOV24E+0/Pwo0gppep4g= github.com/go-fonts/latin-modern v0.2.0/go.mod h1:rQVLdDMK+mK1xscDwsqM5J8U2jrRa3T0ecnM9pNujks= github.com/go-fonts/liberation v0.1.1/go.mod h1:K6qoJYypsmfVjWg8KOVDQhLc8UDgIK2HYqyqAO9z7GY= @@ -1253,8 +1256,8 @@ github.com/hashicorp/go-syslog v1.0.0/go.mod h1:qPfqrKkXGihmCqbJM2mZgkZGvKG1dFdv github.com/hashicorp/go-uuid v1.0.0/go.mod h1:6SBZvOh/SIDV7/2o3Jml5SYk/TvGqwFJ/bN7x4byOro= github.com/hashicorp/go-uuid v1.0.1/go.mod h1:6SBZvOh/SIDV7/2o3Jml5SYk/TvGqwFJ/bN7x4byOro= github.com/hashicorp/go-version v1.2.0/go.mod h1:fltr4n8CU8Ke44wwGCBoEymUuxUHl09ZGVZPK5anwXA= -github.com/hashicorp/go-version v1.2.1 h1:zEfKbn2+PDgroKdiOzqiE8rsmLqU2uwi5PB5pBJ3TkI= -github.com/hashicorp/go-version v1.2.1/go.mod h1:fltr4n8CU8Ke44wwGCBoEymUuxUHl09ZGVZPK5anwXA= +github.com/hashicorp/go-version v1.6.0 h1:feTTfFNnjP967rlCxM/I9g701jU+RN74YKx2mOkIeek= +github.com/hashicorp/go-version v1.6.0/go.mod h1:fltr4n8CU8Ke44wwGCBoEymUuxUHl09ZGVZPK5anwXA= github.com/hashicorp/go.net v0.0.1/go.mod h1:hjKkEWcCURg++eb33jQU7oqQcI9XDCnUzHA0oac0k90= github.com/hashicorp/golang-lru v0.5.0/go.mod h1:/m3WP610KZHVQ1SGc6re/UDhFvYD7pJ4Ao+sR/qLZy8= github.com/hashicorp/golang-lru v0.5.1/go.mod h1:/m3WP610KZHVQ1SGc6re/UDhFvYD7pJ4Ao+sR/qLZy8= @@ -1799,6 +1802,7 @@ golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8U golang.org/x/crypto v0.0.0-20200302210943-78000ba7a073/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto= golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto= golang.org/x/crypto v0.0.0-20210421170649-83a5a9bb288b/go.mod h1:T9bdIzuCu7OtxOm1hfPfRQxPLYneinmdGuTeoZ9dtd4= +golang.org/x/crypto v0.0.0-20210513164829-c07d793c2f9a/go.mod h1:P+XmwS30IXTQdn5tA2iutPOUgjI07+tq3H3K9MVA1s8= golang.org/x/crypto v0.0.0-20210817164053-32db794688a5/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc= golang.org/x/crypto v0.0.0-20210921155107-089bfa567519/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc= golang.org/x/crypto v0.0.0-20211108221036-ceb1ce70b4fa/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc= @@ -1814,8 +1818,9 @@ golang.org/x/crypto v0.10.0/go.mod h1:o4eNf7Ede1fv+hwOwZsTHl9EsPFO6q6ZvYR8vYfY45 golang.org/x/crypto v0.12.0/go.mod h1:NF0Gs7EO5K4qLn+Ylc+fih8BSTeIjAP05siRnAh98yw= golang.org/x/crypto v0.13.0/go.mod h1:y6Z2r+Rw4iayiXXAIxJIDAJ1zMW4yaTpebo8fPOliYc= golang.org/x/crypto v0.14.0/go.mod h1:MVFd36DqK4CsrnJYDkBA3VC4m2GkXAM0PvzMCn4JQf4= -golang.org/x/crypto v0.19.0 h1:ENy+Az/9Y1vSrlrvBSyna3PITt4tiZLf7sgCjZBX7Wo= golang.org/x/crypto v0.19.0/go.mod h1:Iy9bg/ha4yyC70EfRS8jz+B6ybOBKMaSxLj6P6oBDfU= +golang.org/x/crypto v0.22.0 h1:g1v0xeRhjcugydODzvb3mEM9SQ0HGp9s/nh3COQ/C30= +golang.org/x/crypto v0.22.0/go.mod h1:vr6Su+7cTlO45qkww3VDJlzDn0ctJvRgYbC2NvXHt+M= golang.org/x/exp v0.0.0-20180321215751-8460e604b9de/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA= golang.org/x/exp v0.0.0-20180807140117-3d87b88a115f/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA= golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA= @@ -1961,8 +1966,8 @@ golang.org/x/net v0.11.0/go.mod h1:2L/ixqYpgIVXmeoSA/4Lu7BzTG4KIyPIryS4IsOd1oQ= golang.org/x/net v0.14.0/go.mod h1:PpSgVXXLK0OxS0F31C1/tv6XNguvCrnXIDrFMspZIUI= golang.org/x/net v0.15.0/go.mod h1:idbUs1IY1+zTqbi8yxTbhexhEEk5ur9LInksu6HrEpk= golang.org/x/net v0.17.0/go.mod h1:NxSsAGuq816PNPmqtQdLE42eU2Fs7NoRIZrHJAlaCOE= -golang.org/x/net v0.19.0 h1:zTwKpTd2XuCqf8huc7Fo2iSy+4RHPd10s4KzeTnVr1c= -golang.org/x/net v0.19.0/go.mod h1:CfAk/cbD4CthTvqiEl8NpboMuiuOYsAr/7NOjZJtv1U= +golang.org/x/net v0.21.0 h1:AQyQV4dYCvJ7vGmJyKki9+PBdyvhkSd8EIx/qb0AYv4= +golang.org/x/net v0.21.0/go.mod h1:bIjVDfnllIU7BJ2DNgfnXvpSvtn8VRwhlsaeUTyUS44= golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U= golang.org/x/oauth2 v0.0.0-20190226205417-e64efc72b421/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw= golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw= @@ -2134,8 +2139,9 @@ golang.org/x/sys v0.9.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= golang.org/x/sys v0.11.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= golang.org/x/sys v0.12.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= golang.org/x/sys v0.13.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= -golang.org/x/sys v0.17.0 h1:25cE3gD+tdBA7lp7QfhuV+rJiE9YXTcS3VG1SqssI/Y= golang.org/x/sys v0.17.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA= +golang.org/x/sys v0.19.0 h1:q5f1RH2jigJ1MoAWp2KTp3gm5zAGFUTarQZ5U386+4o= +golang.org/x/sys v0.19.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA= golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo= golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8= golang.org/x/term v0.1.0/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8= @@ -2150,8 +2156,9 @@ golang.org/x/term v0.9.0/go.mod h1:M6DEAAIenWoTxdKrOltXcmDY3rSplQUkrvaDU5FcQyo= golang.org/x/term v0.11.0/go.mod h1:zC9APTIj3jG3FdV/Ons+XE1riIZXG4aZ4GTHiPZJPIU= golang.org/x/term v0.12.0/go.mod h1:owVbMEjm3cBLCHdkQu9b1opXd4ETQWc3BhuQGKgXgvU= golang.org/x/term v0.13.0/go.mod h1:LTmsnFJwVN6bCy1rVCoS+qHT1HhALEFxKncY3WNNh4U= -golang.org/x/term v0.17.0 h1:mkTF7LCd6WGJNL3K1Ad7kwxNfYAW6a8a8QqtMblp/4U= golang.org/x/term v0.17.0/go.mod h1:lLRBjIVuehSbZlaOtGMbcMncT+aqLLLmKrsjNrUguwk= +golang.org/x/term v0.19.0 h1:+ThwsDv+tYfnJFhF4L8jITxu1tdTWRTZpdsWgEgjL6Q= +golang.org/x/term v0.19.0/go.mod h1:2CuTdWZ7KHSQwUzKva0cbMg6q2DMI3Mmxp+gKJbskEk= golang.org/x/text v0.0.0-20170915032832-14c0d48ead0c/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ= golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ= golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ= @@ -2228,7 +2235,6 @@ golang.org/x/tools v0.0.0-20200224181240-023911ca70b2/go.mod h1:TB2adYChydJhpapK golang.org/x/tools v0.0.0-20200227222343-706bc42d1f0d/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28= golang.org/x/tools v0.0.0-20200304193943-95d2e580d8eb/go.mod h1:o4KQGtdN14AW+yjsvvwRTJJuXz8XRtIHtEnmAXLyFUw= golang.org/x/tools v0.0.0-20200312045724-11d5b4c81c7d/go.mod h1:o4KQGtdN14AW+yjsvvwRTJJuXz8XRtIHtEnmAXLyFUw= -golang.org/x/tools v0.0.0-20200325010219-a49f79bcc224/go.mod h1:Sl4aGygMT6LrqrWclx+PTx3U+LnKx/seiNR+3G19Ar8= golang.org/x/tools v0.0.0-20200331025713-a30bf2db82d4/go.mod h1:Sl4aGygMT6LrqrWclx+PTx3U+LnKx/seiNR+3G19Ar8= golang.org/x/tools v0.0.0-20200501065659-ab2804fb9c9d/go.mod h1:EkVYQZoAsY45+roYkvgYkIh4xh/qjgUK9TdY2XT94GE= golang.org/x/tools v0.0.0-20200505023115-26f46d2f7ef8/go.mod h1:EkVYQZoAsY45+roYkvgYkIh4xh/qjgUK9TdY2XT94GE= From 1e35e685b2663be285ee9339386f3e791956a97b Mon Sep 17 00:00:00 2001 From: Michael Crenshaw <350466+crenshaw-dev@users.noreply.github.com> Date: Thu, 18 Apr 2024 11:14:18 -0400 Subject: [PATCH 011/206] chore: improve codegen error output (#17873) * chore: improve codegen error output Signed-off-by: Michael Crenshaw <350466+crenshaw-dev@users.noreply.github.com> * remove accidental file Signed-off-by: Michael Crenshaw <350466+crenshaw-dev@users.noreply.github.com> --------- Signed-off-by: Michael Crenshaw <350466+crenshaw-dev@users.noreply.github.com> Co-authored-by: pasha-codefresh --- hack/gen-crd-spec/main.go | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/hack/gen-crd-spec/main.go b/hack/gen-crd-spec/main.go index e7dcd658ef26a..5eec8e6f06c9c 100644 --- a/hack/gen-crd-spec/main.go +++ b/hack/gen-crd-spec/main.go @@ -2,6 +2,7 @@ package main import ( "encoding/json" + "errors" "fmt" "os" "os/exec" @@ -117,6 +118,10 @@ func removeDescription(v interface{}) { func checkErr(err error) { if err != nil { + var execError *exec.ExitError + if errors.As(err, &execError) { + fmt.Println(string(execError.Stderr)) + } panic(err) } } From b8b4b51545bfd402eca82953142066d860f33f40 Mon Sep 17 00:00:00 2001 From: Alexander Matyushentsev Date: Thu, 18 Apr 2024 08:55:03 -0700 Subject: [PATCH 012/206] fix: UI Error caused by missing RBAC Permission (#10955) Signed-off-by: Alexander Matyushentsev Co-authored-by: pasha-codefresh --- .../components/resource-details/resource-details.tsx | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/ui/src/app/applications/components/resource-details/resource-details.tsx b/ui/src/app/applications/components/resource-details/resource-details.tsx index 1dfeb153d07ef..5462ba4f7315b 100644 --- a/ui/src/app/applications/components/resource-details/resource-details.tsx +++ b/ui/src/app/applications/components/resource-details/resource-details.tsx @@ -116,7 +116,7 @@ export const ResourceDetails = (props: ResourceDetailsProps) => { } ]); } - if (selectedNode.kind === 'Pod' && execEnabled && execAllowed) { + if (selectedNode?.kind === 'Pod' && execEnabled && execAllowed) { tabs = tabs.concat([ { key: 'exec', From 73d341a5a93b3c2a944a99583a5d1ffbd0e71914 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 18 Apr 2024 21:52:45 +0300 Subject: [PATCH 013/206] chore(deps): bump library/ubuntu in /test/container (#17879) Bumps library/ubuntu from `77906da` to `1b8d8ff`. --- updated-dependencies: - dependency-name: library/ubuntu dependency-type: direct:production ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: pasha-codefresh --- test/container/Dockerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/test/container/Dockerfile b/test/container/Dockerfile index 9bc5d8b0f14e2..753c44f5a6607 100644 --- a/test/container/Dockerfile +++ b/test/container/Dockerfile @@ -14,7 +14,7 @@ FROM docker.io/library/registry:2.8@sha256:fb9c9aef62af3955f6014613456551c92e88a FROM docker.io/bitnami/kubectl:1.27@sha256:14ab746e857d96c105df4989cc2bf841292f2d143f7c60f9d7f549ae660eab43 as kubectl -FROM docker.io/library/ubuntu:22.04@sha256:77906da86b60585ce12215807090eb327e7386c8fafb5402369e421f44eff17e +FROM docker.io/library/ubuntu:22.04@sha256:1b8d8ff4777f36f19bfe73ee4df61e3a0b789caeff29caa019539ec7c9a57f95 ENV DEBIAN_FRONTEND=noninteractive RUN apt-get update && apt-get install --fix-missing -y \ From 3a46e8c1c7dc20911cb5d87ade8ced26c766e273 Mon Sep 17 00:00:00 2001 From: Reed Palmer <81371878+Palmer-Reed-bah@users.noreply.github.com> Date: Thu, 18 Apr 2024 16:08:36 -0400 Subject: [PATCH 014/206] Update USERS.md (#17891) Signed-off-by: Reed Palmer <81371878+Palmer-Reed-bah@users.noreply.github.com> --- USERS.md | 1 - 1 file changed, 1 deletion(-) diff --git a/USERS.md b/USERS.md index 2eae4a627ca63..9aea46357b639 100644 --- a/USERS.md +++ b/USERS.md @@ -250,7 +250,6 @@ Currently, the following organizations are **officially** using Argo CD: 1. [Quipper](https://www.quipper.com/) 1. [RapidAPI](https://www.rapidapi.com/) 1. [rebuy](https://www.rebuy.de/) -1. [Recreation.gov](https://www.recreation.gov/) 1. [Red Hat](https://www.redhat.com/) 1. [Redpill Linpro](https://www.redpill-linpro.com/) 1. [Reenigne Cloud](https://reenigne.ca) From 33f5714c832eebee420dad6e14a638915b9ba872 Mon Sep 17 00:00:00 2001 From: Michael Crenshaw <350466+crenshaw-dev@users.noreply.github.com> Date: Thu, 18 Apr 2024 18:31:14 -0400 Subject: [PATCH 015/206] chore: upgrade controller-gen from 0.4.1 to 0.14.0 (#17893) Signed-off-by: Michael Crenshaw <350466+crenshaw-dev@users.noreply.github.com> --- docs/operator-manual/upgrading/2.11-2.12.md | 30 ++ docs/operator-manual/upgrading/overview.md | 2 + hack/gen-crd-spec/main.go | 1 - hack/installers/install-codegen-go-tools.sh | 2 +- manifests/core-install.yaml | 336 ++++++++++---------- manifests/crds/application-crd.yaml | 267 ++++++++-------- manifests/crds/applicationset-crd.yaml | 9 + manifests/crds/appproject-crd.yaml | 60 ++-- manifests/ha/install.yaml | 336 ++++++++++---------- manifests/install.yaml | 336 ++++++++++---------- 10 files changed, 713 insertions(+), 666 deletions(-) create mode 100644 docs/operator-manual/upgrading/2.11-2.12.md diff --git a/docs/operator-manual/upgrading/2.11-2.12.md b/docs/operator-manual/upgrading/2.11-2.12.md new file mode 100644 index 0000000000000..b85d17cade71e --- /dev/null +++ b/docs/operator-manual/upgrading/2.11-2.12.md @@ -0,0 +1,30 @@ +# v2.11 to 2.12 + +## Server-Side Apply Management of ApplicationSet Fields + +### Summary + +If you are using server-side apply with multiple field managers to manage a single `selector` or `labelSelector` field +in an ApplicationSet, that field management must be changed to be atomic starting with 2.12. + +### Details + +Argo CD 2.12 upgraded its controller-gen version from 0.4.1 to 0.14.0. As part of that change, several ApplicationSet +CRD fields now have `x-kubernetes-map-type: atomic`. + +Each of the affected fields is a label selector with two child keys: `matchLabels` and `matchExpressions`. + +Prior to this change, two field managers could manage the `matchLabels` and `matchExpressions` fields independently. +Starting with the 2.12 CRD, a single field manager must manage both of those fields. This behavior is in line with the +upstream behavior of the label selector struct. + +See the [Kubernetes server-side apply merge strategy docs](https://kubernetes.io/docs/reference/using-api/server-side-apply/#merge-strategy) +for more information about the fields' behavior. + +The affected ApplicationSet fields are the following (jq selector syntax): + +* `.spec.generators[].selector` +* `.spec.generators[].cluster.selector` +* `.spec.generators[].clusterDecisionResource.labelSelector` +* `.spec.generators[].matrix.generators[].selector` +* `.spec.generators[].merge.generators[].selector` diff --git a/docs/operator-manual/upgrading/overview.md b/docs/operator-manual/upgrading/overview.md index 742c7b191b57a..df99b2582a25e 100644 --- a/docs/operator-manual/upgrading/overview.md +++ b/docs/operator-manual/upgrading/overview.md @@ -37,6 +37,8 @@ kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/ +* [v2.11 to v2.12](./2.11-2.12.md) +* [v2.10 to v2.11](./2.10-2.11.md) * [v2.9 to v2.10](./2.9-2.10.md) * [v2.8 to v2.9](./2.8-2.9.md) * [v2.7 to v2.8](./2.7-2.8.md) diff --git a/hack/gen-crd-spec/main.go b/hack/gen-crd-spec/main.go index 5eec8e6f06c9c..283752f8e881c 100644 --- a/hack/gen-crd-spec/main.go +++ b/hack/gen-crd-spec/main.go @@ -28,7 +28,6 @@ func getCustomResourceDefinitions() map[string]*extensionsobj.CustomResourceDefi crdYamlBytes, err := exec.Command( "controller-gen", "paths=./pkg/apis/application/...", - "crd:trivialVersions=true", "crd:crdVersions=v1", "output:crd:stdout", ).Output() diff --git a/hack/installers/install-codegen-go-tools.sh b/hack/installers/install-codegen-go-tools.sh index 6c9775ff46274..373d6977d127a 100755 --- a/hack/installers/install-codegen-go-tools.sh +++ b/hack/installers/install-codegen-go-tools.sh @@ -45,7 +45,7 @@ go_mod_install k8s.io/code-generator/cmd/lister-gen go_mod_install k8s.io/kube-openapi/cmd/openapi-gen # controller-gen is run by ./hack/gen-crd-spec to generate the CRDs -go install sigs.k8s.io/controller-tools/cmd/controller-gen@v0.4.1 +go install sigs.k8s.io/controller-tools/cmd/controller-gen@v0.14.0 # swagger cli is used to generate swagger docs go install github.com/go-swagger/go-swagger/cmd/swagger@v0.28.0 diff --git a/manifests/core-install.yaml b/manifests/core-install.yaml index 0090caccf982e..3b6431e08fbb7 100644 --- a/manifests/core-install.yaml +++ b/manifests/core-install.yaml @@ -35,14 +35,19 @@ spec: description: Application is a definition of Application resource. properties: apiVersion: - description: 'APIVersion defines the versioned schema of this representation - of an object. Servers should convert recognized schemas to the latest - internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' + description: |- + APIVersion defines the versioned schema of this representation of an object. + Servers should convert recognized schemas to the latest internal value, and + may reject unrecognized values. + More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources type: string kind: - description: 'Kind is a string value representing the REST resource this - object represents. Servers may infer this from the endpoint the client - submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' + description: |- + Kind is a string value representing the REST resource this object represents. + Servers may infer this from the endpoint the client submits requests to. + Cannot be updated. + In CamelCase. + More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds type: string metadata: type: object @@ -140,22 +145,21 @@ spec: type: object type: array revision: - description: Revision is the revision (Git) or chart version (Helm) - which to sync the application to If omitted, will use the revision - specified in app spec. + description: |- + Revision is the revision (Git) or chart version (Helm) which to sync the application to + If omitted, will use the revision specified in app spec. type: string revisions: - description: Revisions is the list of revision (Git) or chart - version (Helm) which to sync each source in sources field for - the application to If omitted, will use the revision specified - in app spec. + description: |- + Revisions is the list of revision (Git) or chart version (Helm) which to sync each source in sources field for the application to + If omitted, will use the revision specified in app spec. items: type: string type: array source: - description: Source overrides the source definition set in the - application. This is typically set in a Rollback operation and - is nil during a Sync operation + description: |- + Source overrides the source definition set in the application. + This is typically set in a Rollback operation and is nil during a Sync operation properties: chart: description: Chart is a Helm chart name, and must be specified @@ -476,18 +480,18 @@ spec: Helm) that contains the application manifests type: string targetRevision: - description: TargetRevision defines the revision of the source - to sync the application to. In case of Git, this can be - commit, tag, or branch. If omitted, will equal to HEAD. + description: |- + TargetRevision defines the revision of the source to sync the application to. + In case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD. In case of Helm, this is a semver tag for the Chart's version. type: string required: - repoURL type: object sources: - description: Sources overrides the source definition set in the - application. This is typically set in a Rollback operation and - is nil during a Sync operation + description: |- + Sources overrides the source definition set in the application. + This is typically set in a Rollback operation and is nil during a Sync operation items: description: ApplicationSource contains all required information about the source of an application @@ -815,11 +819,10 @@ spec: Helm) that contains the application manifests type: string targetRevision: - description: TargetRevision defines the revision of the - source to sync the application to. In case of Git, this - can be commit, tag, or branch. If omitted, will equal - to HEAD. In case of Helm, this is a semver tag for the - Chart's version. + description: |- + TargetRevision defines the revision of the source to sync the application to. + In case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD. + In case of Helm, this is a semver tag for the Chart's version. type: string required: - repoURL @@ -838,10 +841,10 @@ spec: the sync. properties: force: - description: Force indicates whether or not to supply - the --force flag to `kubectl apply`. The --force flag - deletes and re-create the resource, when PATCH encounters - conflict and has retried for 5 times. + description: |- + Force indicates whether or not to supply the --force flag to `kubectl apply`. + The --force flag deletes and re-create the resource, when PATCH encounters conflict and has + retried for 5 times. type: boolean type: object hook: @@ -849,10 +852,10 @@ spec: perform the sync. This is the default strategy properties: force: - description: Force indicates whether or not to supply - the --force flag to `kubectl apply`. The --force flag - deletes and re-create the resource, when PATCH encounters - conflict and has retried for 5 times. + description: |- + Force indicates whether or not to supply the --force flag to `kubectl apply`. + The --force flag deletes and re-create the resource, when PATCH encounters conflict and has + retried for 5 times. type: boolean type: object type: object @@ -873,9 +876,9 @@ spec: not set. type: string namespace: - description: Namespace specifies the target namespace for the - application's resources. The namespace will only be set for - namespace-scoped resources that have not set a value for .metadata.namespace + description: |- + Namespace specifies the target namespace for the application's resources. + The namespace will only be set for namespace-scoped resources that have not set a value for .metadata.namespace type: string server: description: Server specifies the URL of the target cluster's @@ -904,10 +907,9 @@ spec: kind: type: string managedFieldsManagers: - description: ManagedFieldsManagers is a list of trusted managers. - Fields mutated by those managers will take precedence over - the desired state defined in the SCM and won't be displayed - in diffs + description: |- + ManagedFieldsManagers is a list of trusted managers. Fields mutated by those managers will take precedence over the + desired state defined in the SCM and won't be displayed in diffs items: type: string type: array @@ -934,18 +936,17 @@ spec: type: object type: array project: - description: Project is a reference to the project this application - belongs to. The empty string means that application belongs to the - 'default' project. + description: |- + Project is a reference to the project this application belongs to. + The empty string means that application belongs to the 'default' project. type: string revisionHistoryLimit: - description: RevisionHistoryLimit limits the number of items kept - in the application's revision history, which is used for informational - purposes as well as for rollbacks to previous versions. This should - only be changed in exceptional circumstances. Setting to zero will - store no history. This will reduce storage used. Increasing will - increase the space used to store the history, so we do not recommend - increasing it. Default is 10. + description: |- + RevisionHistoryLimit limits the number of items kept in the application's revision history, which is used for informational purposes as well as for rollbacks to previous versions. + This should only be changed in exceptional circumstances. + Setting to zero will store no history. This will reduce storage used. + Increasing will increase the space used to store the history, so we do not recommend increasing it. + Default is 10. format: int64 type: integer source: @@ -1264,10 +1265,10 @@ spec: that contains the application manifests type: string targetRevision: - description: TargetRevision defines the revision of the source - to sync the application to. In case of Git, this can be commit, - tag, or branch. If omitted, will equal to HEAD. In case of Helm, - this is a semver tag for the Chart's version. + description: |- + TargetRevision defines the revision of the source to sync the application to. + In case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD. + In case of Helm, this is a semver tag for the Chart's version. type: string required: - repoURL @@ -1596,10 +1597,10 @@ spec: that contains the application manifests type: string targetRevision: - description: TargetRevision defines the revision of the source - to sync the application to. In case of Git, this can be commit, - tag, or branch. If omitted, will equal to HEAD. In case of - Helm, this is a semver tag for the Chart's version. + description: |- + TargetRevision defines the revision of the source to sync the application to. + In case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD. + In case of Helm, this is a semver tag for the Chart's version. type: string required: - repoURL @@ -2092,11 +2093,10 @@ spec: Helm) that contains the application manifests type: string targetRevision: - description: TargetRevision defines the revision of the - source to sync the application to. In case of Git, this - can be commit, tag, or branch. If omitted, will equal - to HEAD. In case of Helm, this is a semver tag for the - Chart's version. + description: |- + TargetRevision defines the revision of the source to sync the application to. + In case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD. + In case of Helm, this is a semver tag for the Chart's version. type: string required: - repoURL @@ -2438,11 +2438,10 @@ spec: or Helm) that contains the application manifests type: string targetRevision: - description: TargetRevision defines the revision of the - source to sync the application to. In case of Git, this - can be commit, tag, or branch. If omitted, will equal - to HEAD. In case of Helm, this is a semver tag for the - Chart's version. + description: |- + TargetRevision defines the revision of the source to sync the application to. + In case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD. + In case of Helm, this is a semver tag for the Chart's version. type: string required: - repoURL @@ -2454,9 +2453,9 @@ spec: type: object type: array observedAt: - description: 'ObservedAt indicates when the application state was - updated without querying latest git state Deprecated: controller - no longer updates ObservedAt field' + description: |- + ObservedAt indicates when the application state was updated without querying latest git state + Deprecated: controller no longer updates ObservedAt field format: date-time type: string operationState: @@ -2569,22 +2568,21 @@ spec: type: object type: array revision: - description: Revision is the revision (Git) or chart version - (Helm) which to sync the application to If omitted, - will use the revision specified in app spec. + description: |- + Revision is the revision (Git) or chart version (Helm) which to sync the application to + If omitted, will use the revision specified in app spec. type: string revisions: - description: Revisions is the list of revision (Git) or - chart version (Helm) which to sync each source in sources - field for the application to If omitted, will use the - revision specified in app spec. + description: |- + Revisions is the list of revision (Git) or chart version (Helm) which to sync each source in sources field for the application to + If omitted, will use the revision specified in app spec. items: type: string type: array source: - description: Source overrides the source definition set - in the application. This is typically set in a Rollback - operation and is nil during a Sync operation + description: |- + Source overrides the source definition set in the application. + This is typically set in a Rollback operation and is nil during a Sync operation properties: chart: description: Chart is a Helm chart name, and must @@ -2927,19 +2925,18 @@ spec: (Git or Helm) that contains the application manifests type: string targetRevision: - description: TargetRevision defines the revision of - the source to sync the application to. In case of - Git, this can be commit, tag, or branch. If omitted, - will equal to HEAD. In case of Helm, this is a semver - tag for the Chart's version. + description: |- + TargetRevision defines the revision of the source to sync the application to. + In case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD. + In case of Helm, this is a semver tag for the Chart's version. type: string required: - repoURL type: object sources: - description: Sources overrides the source definition set - in the application. This is typically set in a Rollback - operation and is nil during a Sync operation + description: |- + Sources overrides the source definition set in the application. + This is typically set in a Rollback operation and is nil during a Sync operation items: description: ApplicationSource contains all required information about the source of an application @@ -3290,11 +3287,10 @@ spec: (Git or Helm) that contains the application manifests type: string targetRevision: - description: TargetRevision defines the revision - of the source to sync the application to. In case - of Git, this can be commit, tag, or branch. If - omitted, will equal to HEAD. In case of Helm, - this is a semver tag for the Chart's version. + description: |- + TargetRevision defines the revision of the source to sync the application to. + In case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD. + In case of Helm, this is a semver tag for the Chart's version. type: string required: - repoURL @@ -3315,11 +3311,10 @@ spec: to perform the sync. properties: force: - description: Force indicates whether or not to - supply the --force flag to `kubectl apply`. - The --force flag deletes and re-create the resource, - when PATCH encounters conflict and has retried - for 5 times. + description: |- + Force indicates whether or not to supply the --force flag to `kubectl apply`. + The --force flag deletes and re-create the resource, when PATCH encounters conflict and has + retried for 5 times. type: boolean type: object hook: @@ -3327,11 +3322,10 @@ spec: to perform the sync. This is the default strategy properties: force: - description: Force indicates whether or not to - supply the --force flag to `kubectl apply`. - The --force flag deletes and re-create the resource, - when PATCH encounters conflict and has retried - for 5 times. + description: |- + Force indicates whether or not to supply the --force flag to `kubectl apply`. + The --force flag deletes and re-create the resource, when PATCH encounters conflict and has + retried for 5 times. type: boolean type: object type: object @@ -3375,9 +3369,9 @@ spec: description: Group specifies the API group of the resource type: string hookPhase: - description: HookPhase contains the state of any operation - associated with this resource OR hook This can also - contain values for non-hook resources. + description: |- + HookPhase contains the state of any operation associated with this resource OR hook + This can also contain values for non-hook resources. type: string hookType: description: HookType specifies the type of the hook. @@ -3762,11 +3756,10 @@ spec: or Helm) that contains the application manifests type: string targetRevision: - description: TargetRevision defines the revision of the - source to sync the application to. In case of Git, this - can be commit, tag, or branch. If omitted, will equal - to HEAD. In case of Helm, this is a semver tag for the - Chart's version. + description: |- + TargetRevision defines the revision of the source to sync the application to. + In case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD. + In case of Helm, this is a semver tag for the Chart's version. type: string required: - repoURL @@ -4117,11 +4110,10 @@ spec: or Helm) that contains the application manifests type: string targetRevision: - description: TargetRevision defines the revision of - the source to sync the application to. In case of - Git, this can be commit, tag, or branch. If omitted, - will equal to HEAD. In case of Helm, this is a semver - tag for the Chart's version. + description: |- + TargetRevision defines the revision of the source to sync the application to. + In case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD. + In case of Helm, this is a semver tag for the Chart's version. type: string required: - repoURL @@ -4148,8 +4140,9 @@ spec: description: Resources is a list of Kubernetes resources managed by this application items: - description: 'ResourceStatus holds the current sync and health status - of a resource TODO: describe members of this type' + description: |- + ResourceStatus holds the current sync and health status of a resource + TODO: describe members of this type properties: group: type: string @@ -4232,10 +4225,9 @@ spec: if Server is not set. type: string namespace: - description: Namespace specifies the target namespace - for the application's resources. The namespace will - only be set for namespace-scoped resources that have - not set a value for .metadata.namespace + description: |- + Namespace specifies the target namespace for the application's resources. + The namespace will only be set for namespace-scoped resources that have not set a value for .metadata.namespace type: string server: description: Server specifies the URL of the target cluster's @@ -4264,10 +4256,9 @@ spec: kind: type: string managedFieldsManagers: - description: ManagedFieldsManagers is a list of trusted - managers. Fields mutated by those managers will take - precedence over the desired state defined in the SCM - and won't be displayed in diffs + description: |- + ManagedFieldsManagers is a list of trusted managers. Fields mutated by those managers will take precedence over the + desired state defined in the SCM and won't be displayed in diffs items: type: string type: array @@ -4613,11 +4604,10 @@ spec: or Helm) that contains the application manifests type: string targetRevision: - description: TargetRevision defines the revision of the - source to sync the application to. In case of Git, this - can be commit, tag, or branch. If omitted, will equal - to HEAD. In case of Helm, this is a semver tag for the - Chart's version. + description: |- + TargetRevision defines the revision of the source to sync the application to. + In case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD. + In case of Helm, this is a semver tag for the Chart's version. type: string required: - repoURL @@ -4968,11 +4958,10 @@ spec: or Helm) that contains the application manifests type: string targetRevision: - description: TargetRevision defines the revision of - the source to sync the application to. In case of - Git, this can be commit, tag, or branch. If omitted, - will equal to HEAD. In case of Helm, this is a semver - tag for the Chart's version. + description: |- + TargetRevision defines the revision of the source to sync the application to. + In case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD. + In case of Helm, this is a semver tag for the Chart's version. type: string required: - repoURL @@ -5069,6 +5058,7 @@ spec: type: string type: object type: object + x-kubernetes-map-type: atomic name: type: string requeueAfterSeconds: @@ -5665,6 +5655,7 @@ spec: type: string type: object type: object + x-kubernetes-map-type: atomic template: properties: metadata: @@ -7427,6 +7418,7 @@ spec: type: string type: object type: object + x-kubernetes-map-type: atomic name: type: string requeueAfterSeconds: @@ -8023,6 +8015,7 @@ spec: type: string type: object type: object + x-kubernetes-map-type: atomic template: properties: metadata: @@ -11888,6 +11881,7 @@ spec: type: string type: object type: object + x-kubernetes-map-type: atomic type: object type: array template: @@ -12484,6 +12478,7 @@ spec: type: string type: object type: object + x-kubernetes-map-type: atomic name: type: string requeueAfterSeconds: @@ -13080,6 +13075,7 @@ spec: type: string type: object type: object + x-kubernetes-map-type: atomic template: properties: metadata: @@ -16945,6 +16941,7 @@ spec: type: string type: object type: object + x-kubernetes-map-type: atomic type: object type: array mergeKeys: @@ -19645,6 +19642,7 @@ spec: type: string type: object type: object + x-kubernetes-map-type: atomic type: object type: array goTemplate: @@ -20363,22 +20361,28 @@ spec: - name: v1alpha1 schema: openAPIV3Schema: - description: 'AppProject provides a logical grouping of applications, providing - controls for: * where the apps may deploy to (cluster whitelist) * what - may be deployed (repository whitelist, resource whitelist/blacklist) * who - can access these applications (roles, OIDC group claims bindings) * and - what they can do (RBAC policies) * automation access to these roles (JWT - tokens)' + description: |- + AppProject provides a logical grouping of applications, providing controls for: + * where the apps may deploy to (cluster whitelist) + * what may be deployed (repository whitelist, resource whitelist/blacklist) + * who can access these applications (roles, OIDC group claims bindings) + * and what they can do (RBAC policies) + * automation access to these roles (JWT tokens) properties: apiVersion: - description: 'APIVersion defines the versioned schema of this representation - of an object. Servers should convert recognized schemas to the latest - internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' + description: |- + APIVersion defines the versioned schema of this representation of an object. + Servers should convert recognized schemas to the latest internal value, and + may reject unrecognized values. + More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources type: string kind: - description: 'Kind is a string value representing the REST resource this - object represents. Servers may infer this from the endpoint the client - submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' + description: |- + Kind is a string value representing the REST resource this object represents. + Servers may infer this from the endpoint the client submits requests to. + Cannot be updated. + In CamelCase. + More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds type: string metadata: type: object @@ -20389,9 +20393,9 @@ spec: description: ClusterResourceBlacklist contains list of blacklisted cluster level resources items: - description: GroupKind specifies a Group and a Kind, but does not - force a version. This is useful for identifying concepts during - lookup stages without having partially valid types + description: |- + GroupKind specifies a Group and a Kind, but does not force a version. This is useful for identifying + concepts during lookup stages without having partially valid types properties: group: type: string @@ -20406,9 +20410,9 @@ spec: description: ClusterResourceWhitelist contains list of whitelisted cluster level resources items: - description: GroupKind specifies a Group and a Kind, but does not - force a version. This is useful for identifying concepts during - lookup stages without having partially valid types + description: |- + GroupKind specifies a Group and a Kind, but does not force a version. This is useful for identifying + concepts during lookup stages without having partially valid types properties: group: type: string @@ -20435,9 +20439,9 @@ spec: not set. type: string namespace: - description: Namespace specifies the target namespace for the - application's resources. The namespace will only be set for - namespace-scoped resources that have not set a value for .metadata.namespace + description: |- + Namespace specifies the target namespace for the application's resources. + The namespace will only be set for namespace-scoped resources that have not set a value for .metadata.namespace type: string server: description: Server specifies the URL of the target cluster's @@ -20450,9 +20454,9 @@ spec: description: NamespaceResourceBlacklist contains list of blacklisted namespace level resources items: - description: GroupKind specifies a Group and a Kind, but does not - force a version. This is useful for identifying concepts during - lookup stages without having partially valid types + description: |- + GroupKind specifies a Group and a Kind, but does not force a version. This is useful for identifying + concepts during lookup stages without having partially valid types properties: group: type: string @@ -20467,9 +20471,9 @@ spec: description: NamespaceResourceWhitelist contains list of whitelisted namespace level resources items: - description: GroupKind specifies a Group and a Kind, but does not - force a version. This is useful for identifying concepts during - lookup stages without having partially valid types + description: |- + GroupKind specifies a Group and a Kind, but does not force a version. This is useful for identifying + concepts during lookup stages without having partially valid types properties: group: type: string diff --git a/manifests/crds/application-crd.yaml b/manifests/crds/application-crd.yaml index aaf1347f64dfb..6b67f460587e5 100644 --- a/manifests/crds/application-crd.yaml +++ b/manifests/crds/application-crd.yaml @@ -34,14 +34,19 @@ spec: description: Application is a definition of Application resource. properties: apiVersion: - description: 'APIVersion defines the versioned schema of this representation - of an object. Servers should convert recognized schemas to the latest - internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' + description: |- + APIVersion defines the versioned schema of this representation of an object. + Servers should convert recognized schemas to the latest internal value, and + may reject unrecognized values. + More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources type: string kind: - description: 'Kind is a string value representing the REST resource this - object represents. Servers may infer this from the endpoint the client - submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' + description: |- + Kind is a string value representing the REST resource this object represents. + Servers may infer this from the endpoint the client submits requests to. + Cannot be updated. + In CamelCase. + More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds type: string metadata: type: object @@ -139,22 +144,21 @@ spec: type: object type: array revision: - description: Revision is the revision (Git) or chart version (Helm) - which to sync the application to If omitted, will use the revision - specified in app spec. + description: |- + Revision is the revision (Git) or chart version (Helm) which to sync the application to + If omitted, will use the revision specified in app spec. type: string revisions: - description: Revisions is the list of revision (Git) or chart - version (Helm) which to sync each source in sources field for - the application to If omitted, will use the revision specified - in app spec. + description: |- + Revisions is the list of revision (Git) or chart version (Helm) which to sync each source in sources field for the application to + If omitted, will use the revision specified in app spec. items: type: string type: array source: - description: Source overrides the source definition set in the - application. This is typically set in a Rollback operation and - is nil during a Sync operation + description: |- + Source overrides the source definition set in the application. + This is typically set in a Rollback operation and is nil during a Sync operation properties: chart: description: Chart is a Helm chart name, and must be specified @@ -475,18 +479,18 @@ spec: Helm) that contains the application manifests type: string targetRevision: - description: TargetRevision defines the revision of the source - to sync the application to. In case of Git, this can be - commit, tag, or branch. If omitted, will equal to HEAD. + description: |- + TargetRevision defines the revision of the source to sync the application to. + In case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD. In case of Helm, this is a semver tag for the Chart's version. type: string required: - repoURL type: object sources: - description: Sources overrides the source definition set in the - application. This is typically set in a Rollback operation and - is nil during a Sync operation + description: |- + Sources overrides the source definition set in the application. + This is typically set in a Rollback operation and is nil during a Sync operation items: description: ApplicationSource contains all required information about the source of an application @@ -814,11 +818,10 @@ spec: Helm) that contains the application manifests type: string targetRevision: - description: TargetRevision defines the revision of the - source to sync the application to. In case of Git, this - can be commit, tag, or branch. If omitted, will equal - to HEAD. In case of Helm, this is a semver tag for the - Chart's version. + description: |- + TargetRevision defines the revision of the source to sync the application to. + In case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD. + In case of Helm, this is a semver tag for the Chart's version. type: string required: - repoURL @@ -837,10 +840,10 @@ spec: the sync. properties: force: - description: Force indicates whether or not to supply - the --force flag to `kubectl apply`. The --force flag - deletes and re-create the resource, when PATCH encounters - conflict and has retried for 5 times. + description: |- + Force indicates whether or not to supply the --force flag to `kubectl apply`. + The --force flag deletes and re-create the resource, when PATCH encounters conflict and has + retried for 5 times. type: boolean type: object hook: @@ -848,10 +851,10 @@ spec: perform the sync. This is the default strategy properties: force: - description: Force indicates whether or not to supply - the --force flag to `kubectl apply`. The --force flag - deletes and re-create the resource, when PATCH encounters - conflict and has retried for 5 times. + description: |- + Force indicates whether or not to supply the --force flag to `kubectl apply`. + The --force flag deletes and re-create the resource, when PATCH encounters conflict and has + retried for 5 times. type: boolean type: object type: object @@ -872,9 +875,9 @@ spec: not set. type: string namespace: - description: Namespace specifies the target namespace for the - application's resources. The namespace will only be set for - namespace-scoped resources that have not set a value for .metadata.namespace + description: |- + Namespace specifies the target namespace for the application's resources. + The namespace will only be set for namespace-scoped resources that have not set a value for .metadata.namespace type: string server: description: Server specifies the URL of the target cluster's @@ -903,10 +906,9 @@ spec: kind: type: string managedFieldsManagers: - description: ManagedFieldsManagers is a list of trusted managers. - Fields mutated by those managers will take precedence over - the desired state defined in the SCM and won't be displayed - in diffs + description: |- + ManagedFieldsManagers is a list of trusted managers. Fields mutated by those managers will take precedence over the + desired state defined in the SCM and won't be displayed in diffs items: type: string type: array @@ -933,18 +935,17 @@ spec: type: object type: array project: - description: Project is a reference to the project this application - belongs to. The empty string means that application belongs to the - 'default' project. + description: |- + Project is a reference to the project this application belongs to. + The empty string means that application belongs to the 'default' project. type: string revisionHistoryLimit: - description: RevisionHistoryLimit limits the number of items kept - in the application's revision history, which is used for informational - purposes as well as for rollbacks to previous versions. This should - only be changed in exceptional circumstances. Setting to zero will - store no history. This will reduce storage used. Increasing will - increase the space used to store the history, so we do not recommend - increasing it. Default is 10. + description: |- + RevisionHistoryLimit limits the number of items kept in the application's revision history, which is used for informational purposes as well as for rollbacks to previous versions. + This should only be changed in exceptional circumstances. + Setting to zero will store no history. This will reduce storage used. + Increasing will increase the space used to store the history, so we do not recommend increasing it. + Default is 10. format: int64 type: integer source: @@ -1263,10 +1264,10 @@ spec: that contains the application manifests type: string targetRevision: - description: TargetRevision defines the revision of the source - to sync the application to. In case of Git, this can be commit, - tag, or branch. If omitted, will equal to HEAD. In case of Helm, - this is a semver tag for the Chart's version. + description: |- + TargetRevision defines the revision of the source to sync the application to. + In case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD. + In case of Helm, this is a semver tag for the Chart's version. type: string required: - repoURL @@ -1595,10 +1596,10 @@ spec: that contains the application manifests type: string targetRevision: - description: TargetRevision defines the revision of the source - to sync the application to. In case of Git, this can be commit, - tag, or branch. If omitted, will equal to HEAD. In case of - Helm, this is a semver tag for the Chart's version. + description: |- + TargetRevision defines the revision of the source to sync the application to. + In case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD. + In case of Helm, this is a semver tag for the Chart's version. type: string required: - repoURL @@ -2091,11 +2092,10 @@ spec: Helm) that contains the application manifests type: string targetRevision: - description: TargetRevision defines the revision of the - source to sync the application to. In case of Git, this - can be commit, tag, or branch. If omitted, will equal - to HEAD. In case of Helm, this is a semver tag for the - Chart's version. + description: |- + TargetRevision defines the revision of the source to sync the application to. + In case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD. + In case of Helm, this is a semver tag for the Chart's version. type: string required: - repoURL @@ -2437,11 +2437,10 @@ spec: or Helm) that contains the application manifests type: string targetRevision: - description: TargetRevision defines the revision of the - source to sync the application to. In case of Git, this - can be commit, tag, or branch. If omitted, will equal - to HEAD. In case of Helm, this is a semver tag for the - Chart's version. + description: |- + TargetRevision defines the revision of the source to sync the application to. + In case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD. + In case of Helm, this is a semver tag for the Chart's version. type: string required: - repoURL @@ -2453,9 +2452,9 @@ spec: type: object type: array observedAt: - description: 'ObservedAt indicates when the application state was - updated without querying latest git state Deprecated: controller - no longer updates ObservedAt field' + description: |- + ObservedAt indicates when the application state was updated without querying latest git state + Deprecated: controller no longer updates ObservedAt field format: date-time type: string operationState: @@ -2568,22 +2567,21 @@ spec: type: object type: array revision: - description: Revision is the revision (Git) or chart version - (Helm) which to sync the application to If omitted, - will use the revision specified in app spec. + description: |- + Revision is the revision (Git) or chart version (Helm) which to sync the application to + If omitted, will use the revision specified in app spec. type: string revisions: - description: Revisions is the list of revision (Git) or - chart version (Helm) which to sync each source in sources - field for the application to If omitted, will use the - revision specified in app spec. + description: |- + Revisions is the list of revision (Git) or chart version (Helm) which to sync each source in sources field for the application to + If omitted, will use the revision specified in app spec. items: type: string type: array source: - description: Source overrides the source definition set - in the application. This is typically set in a Rollback - operation and is nil during a Sync operation + description: |- + Source overrides the source definition set in the application. + This is typically set in a Rollback operation and is nil during a Sync operation properties: chart: description: Chart is a Helm chart name, and must @@ -2926,19 +2924,18 @@ spec: (Git or Helm) that contains the application manifests type: string targetRevision: - description: TargetRevision defines the revision of - the source to sync the application to. In case of - Git, this can be commit, tag, or branch. If omitted, - will equal to HEAD. In case of Helm, this is a semver - tag for the Chart's version. + description: |- + TargetRevision defines the revision of the source to sync the application to. + In case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD. + In case of Helm, this is a semver tag for the Chart's version. type: string required: - repoURL type: object sources: - description: Sources overrides the source definition set - in the application. This is typically set in a Rollback - operation and is nil during a Sync operation + description: |- + Sources overrides the source definition set in the application. + This is typically set in a Rollback operation and is nil during a Sync operation items: description: ApplicationSource contains all required information about the source of an application @@ -3289,11 +3286,10 @@ spec: (Git or Helm) that contains the application manifests type: string targetRevision: - description: TargetRevision defines the revision - of the source to sync the application to. In case - of Git, this can be commit, tag, or branch. If - omitted, will equal to HEAD. In case of Helm, - this is a semver tag for the Chart's version. + description: |- + TargetRevision defines the revision of the source to sync the application to. + In case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD. + In case of Helm, this is a semver tag for the Chart's version. type: string required: - repoURL @@ -3314,11 +3310,10 @@ spec: to perform the sync. properties: force: - description: Force indicates whether or not to - supply the --force flag to `kubectl apply`. - The --force flag deletes and re-create the resource, - when PATCH encounters conflict and has retried - for 5 times. + description: |- + Force indicates whether or not to supply the --force flag to `kubectl apply`. + The --force flag deletes and re-create the resource, when PATCH encounters conflict and has + retried for 5 times. type: boolean type: object hook: @@ -3326,11 +3321,10 @@ spec: to perform the sync. This is the default strategy properties: force: - description: Force indicates whether or not to - supply the --force flag to `kubectl apply`. - The --force flag deletes and re-create the resource, - when PATCH encounters conflict and has retried - for 5 times. + description: |- + Force indicates whether or not to supply the --force flag to `kubectl apply`. + The --force flag deletes and re-create the resource, when PATCH encounters conflict and has + retried for 5 times. type: boolean type: object type: object @@ -3374,9 +3368,9 @@ spec: description: Group specifies the API group of the resource type: string hookPhase: - description: HookPhase contains the state of any operation - associated with this resource OR hook This can also - contain values for non-hook resources. + description: |- + HookPhase contains the state of any operation associated with this resource OR hook + This can also contain values for non-hook resources. type: string hookType: description: HookType specifies the type of the hook. @@ -3761,11 +3755,10 @@ spec: or Helm) that contains the application manifests type: string targetRevision: - description: TargetRevision defines the revision of the - source to sync the application to. In case of Git, this - can be commit, tag, or branch. If omitted, will equal - to HEAD. In case of Helm, this is a semver tag for the - Chart's version. + description: |- + TargetRevision defines the revision of the source to sync the application to. + In case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD. + In case of Helm, this is a semver tag for the Chart's version. type: string required: - repoURL @@ -4116,11 +4109,10 @@ spec: or Helm) that contains the application manifests type: string targetRevision: - description: TargetRevision defines the revision of - the source to sync the application to. In case of - Git, this can be commit, tag, or branch. If omitted, - will equal to HEAD. In case of Helm, this is a semver - tag for the Chart's version. + description: |- + TargetRevision defines the revision of the source to sync the application to. + In case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD. + In case of Helm, this is a semver tag for the Chart's version. type: string required: - repoURL @@ -4147,8 +4139,9 @@ spec: description: Resources is a list of Kubernetes resources managed by this application items: - description: 'ResourceStatus holds the current sync and health status - of a resource TODO: describe members of this type' + description: |- + ResourceStatus holds the current sync and health status of a resource + TODO: describe members of this type properties: group: type: string @@ -4231,10 +4224,9 @@ spec: if Server is not set. type: string namespace: - description: Namespace specifies the target namespace - for the application's resources. The namespace will - only be set for namespace-scoped resources that have - not set a value for .metadata.namespace + description: |- + Namespace specifies the target namespace for the application's resources. + The namespace will only be set for namespace-scoped resources that have not set a value for .metadata.namespace type: string server: description: Server specifies the URL of the target cluster's @@ -4263,10 +4255,9 @@ spec: kind: type: string managedFieldsManagers: - description: ManagedFieldsManagers is a list of trusted - managers. Fields mutated by those managers will take - precedence over the desired state defined in the SCM - and won't be displayed in diffs + description: |- + ManagedFieldsManagers is a list of trusted managers. Fields mutated by those managers will take precedence over the + desired state defined in the SCM and won't be displayed in diffs items: type: string type: array @@ -4612,11 +4603,10 @@ spec: or Helm) that contains the application manifests type: string targetRevision: - description: TargetRevision defines the revision of the - source to sync the application to. In case of Git, this - can be commit, tag, or branch. If omitted, will equal - to HEAD. In case of Helm, this is a semver tag for the - Chart's version. + description: |- + TargetRevision defines the revision of the source to sync the application to. + In case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD. + In case of Helm, this is a semver tag for the Chart's version. type: string required: - repoURL @@ -4967,11 +4957,10 @@ spec: or Helm) that contains the application manifests type: string targetRevision: - description: TargetRevision defines the revision of - the source to sync the application to. In case of - Git, this can be commit, tag, or branch. If omitted, - will equal to HEAD. In case of Helm, this is a semver - tag for the Chart's version. + description: |- + TargetRevision defines the revision of the source to sync the application to. + In case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD. + In case of Helm, this is a semver tag for the Chart's version. type: string required: - repoURL diff --git a/manifests/crds/applicationset-crd.yaml b/manifests/crds/applicationset-crd.yaml index 2668052f431a0..b6f62fa930f50 100644 --- a/manifests/crds/applicationset-crd.yaml +++ b/manifests/crds/applicationset-crd.yaml @@ -61,6 +61,7 @@ spec: type: string type: object type: object + x-kubernetes-map-type: atomic name: type: string requeueAfterSeconds: @@ -657,6 +658,7 @@ spec: type: string type: object type: object + x-kubernetes-map-type: atomic template: properties: metadata: @@ -2419,6 +2421,7 @@ spec: type: string type: object type: object + x-kubernetes-map-type: atomic name: type: string requeueAfterSeconds: @@ -3015,6 +3018,7 @@ spec: type: string type: object type: object + x-kubernetes-map-type: atomic template: properties: metadata: @@ -6880,6 +6884,7 @@ spec: type: string type: object type: object + x-kubernetes-map-type: atomic type: object type: array template: @@ -7476,6 +7481,7 @@ spec: type: string type: object type: object + x-kubernetes-map-type: atomic name: type: string requeueAfterSeconds: @@ -8072,6 +8078,7 @@ spec: type: string type: object type: object + x-kubernetes-map-type: atomic template: properties: metadata: @@ -11937,6 +11944,7 @@ spec: type: string type: object type: object + x-kubernetes-map-type: atomic type: object type: array mergeKeys: @@ -14637,6 +14645,7 @@ spec: type: string type: object type: object + x-kubernetes-map-type: atomic type: object type: array goTemplate: diff --git a/manifests/crds/appproject-crd.yaml b/manifests/crds/appproject-crd.yaml index 989b3004892f6..2ebe3c2f4e325 100644 --- a/manifests/crds/appproject-crd.yaml +++ b/manifests/crds/appproject-crd.yaml @@ -20,22 +20,28 @@ spec: - name: v1alpha1 schema: openAPIV3Schema: - description: 'AppProject provides a logical grouping of applications, providing - controls for: * where the apps may deploy to (cluster whitelist) * what - may be deployed (repository whitelist, resource whitelist/blacklist) * who - can access these applications (roles, OIDC group claims bindings) * and - what they can do (RBAC policies) * automation access to these roles (JWT - tokens)' + description: |- + AppProject provides a logical grouping of applications, providing controls for: + * where the apps may deploy to (cluster whitelist) + * what may be deployed (repository whitelist, resource whitelist/blacklist) + * who can access these applications (roles, OIDC group claims bindings) + * and what they can do (RBAC policies) + * automation access to these roles (JWT tokens) properties: apiVersion: - description: 'APIVersion defines the versioned schema of this representation - of an object. Servers should convert recognized schemas to the latest - internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' + description: |- + APIVersion defines the versioned schema of this representation of an object. + Servers should convert recognized schemas to the latest internal value, and + may reject unrecognized values. + More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources type: string kind: - description: 'Kind is a string value representing the REST resource this - object represents. Servers may infer this from the endpoint the client - submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' + description: |- + Kind is a string value representing the REST resource this object represents. + Servers may infer this from the endpoint the client submits requests to. + Cannot be updated. + In CamelCase. + More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds type: string metadata: type: object @@ -46,9 +52,9 @@ spec: description: ClusterResourceBlacklist contains list of blacklisted cluster level resources items: - description: GroupKind specifies a Group and a Kind, but does not - force a version. This is useful for identifying concepts during - lookup stages without having partially valid types + description: |- + GroupKind specifies a Group and a Kind, but does not force a version. This is useful for identifying + concepts during lookup stages without having partially valid types properties: group: type: string @@ -63,9 +69,9 @@ spec: description: ClusterResourceWhitelist contains list of whitelisted cluster level resources items: - description: GroupKind specifies a Group and a Kind, but does not - force a version. This is useful for identifying concepts during - lookup stages without having partially valid types + description: |- + GroupKind specifies a Group and a Kind, but does not force a version. This is useful for identifying + concepts during lookup stages without having partially valid types properties: group: type: string @@ -92,9 +98,9 @@ spec: not set. type: string namespace: - description: Namespace specifies the target namespace for the - application's resources. The namespace will only be set for - namespace-scoped resources that have not set a value for .metadata.namespace + description: |- + Namespace specifies the target namespace for the application's resources. + The namespace will only be set for namespace-scoped resources that have not set a value for .metadata.namespace type: string server: description: Server specifies the URL of the target cluster's @@ -107,9 +113,9 @@ spec: description: NamespaceResourceBlacklist contains list of blacklisted namespace level resources items: - description: GroupKind specifies a Group and a Kind, but does not - force a version. This is useful for identifying concepts during - lookup stages without having partially valid types + description: |- + GroupKind specifies a Group and a Kind, but does not force a version. This is useful for identifying + concepts during lookup stages without having partially valid types properties: group: type: string @@ -124,9 +130,9 @@ spec: description: NamespaceResourceWhitelist contains list of whitelisted namespace level resources items: - description: GroupKind specifies a Group and a Kind, but does not - force a version. This is useful for identifying concepts during - lookup stages without having partially valid types + description: |- + GroupKind specifies a Group and a Kind, but does not force a version. This is useful for identifying + concepts during lookup stages without having partially valid types properties: group: type: string diff --git a/manifests/ha/install.yaml b/manifests/ha/install.yaml index 9cfd20046c323..17bcfc89321e0 100644 --- a/manifests/ha/install.yaml +++ b/manifests/ha/install.yaml @@ -35,14 +35,19 @@ spec: description: Application is a definition of Application resource. properties: apiVersion: - description: 'APIVersion defines the versioned schema of this representation - of an object. Servers should convert recognized schemas to the latest - internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' + description: |- + APIVersion defines the versioned schema of this representation of an object. + Servers should convert recognized schemas to the latest internal value, and + may reject unrecognized values. + More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources type: string kind: - description: 'Kind is a string value representing the REST resource this - object represents. Servers may infer this from the endpoint the client - submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' + description: |- + Kind is a string value representing the REST resource this object represents. + Servers may infer this from the endpoint the client submits requests to. + Cannot be updated. + In CamelCase. + More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds type: string metadata: type: object @@ -140,22 +145,21 @@ spec: type: object type: array revision: - description: Revision is the revision (Git) or chart version (Helm) - which to sync the application to If omitted, will use the revision - specified in app spec. + description: |- + Revision is the revision (Git) or chart version (Helm) which to sync the application to + If omitted, will use the revision specified in app spec. type: string revisions: - description: Revisions is the list of revision (Git) or chart - version (Helm) which to sync each source in sources field for - the application to If omitted, will use the revision specified - in app spec. + description: |- + Revisions is the list of revision (Git) or chart version (Helm) which to sync each source in sources field for the application to + If omitted, will use the revision specified in app spec. items: type: string type: array source: - description: Source overrides the source definition set in the - application. This is typically set in a Rollback operation and - is nil during a Sync operation + description: |- + Source overrides the source definition set in the application. + This is typically set in a Rollback operation and is nil during a Sync operation properties: chart: description: Chart is a Helm chart name, and must be specified @@ -476,18 +480,18 @@ spec: Helm) that contains the application manifests type: string targetRevision: - description: TargetRevision defines the revision of the source - to sync the application to. In case of Git, this can be - commit, tag, or branch. If omitted, will equal to HEAD. + description: |- + TargetRevision defines the revision of the source to sync the application to. + In case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD. In case of Helm, this is a semver tag for the Chart's version. type: string required: - repoURL type: object sources: - description: Sources overrides the source definition set in the - application. This is typically set in a Rollback operation and - is nil during a Sync operation + description: |- + Sources overrides the source definition set in the application. + This is typically set in a Rollback operation and is nil during a Sync operation items: description: ApplicationSource contains all required information about the source of an application @@ -815,11 +819,10 @@ spec: Helm) that contains the application manifests type: string targetRevision: - description: TargetRevision defines the revision of the - source to sync the application to. In case of Git, this - can be commit, tag, or branch. If omitted, will equal - to HEAD. In case of Helm, this is a semver tag for the - Chart's version. + description: |- + TargetRevision defines the revision of the source to sync the application to. + In case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD. + In case of Helm, this is a semver tag for the Chart's version. type: string required: - repoURL @@ -838,10 +841,10 @@ spec: the sync. properties: force: - description: Force indicates whether or not to supply - the --force flag to `kubectl apply`. The --force flag - deletes and re-create the resource, when PATCH encounters - conflict and has retried for 5 times. + description: |- + Force indicates whether or not to supply the --force flag to `kubectl apply`. + The --force flag deletes and re-create the resource, when PATCH encounters conflict and has + retried for 5 times. type: boolean type: object hook: @@ -849,10 +852,10 @@ spec: perform the sync. This is the default strategy properties: force: - description: Force indicates whether or not to supply - the --force flag to `kubectl apply`. The --force flag - deletes and re-create the resource, when PATCH encounters - conflict and has retried for 5 times. + description: |- + Force indicates whether or not to supply the --force flag to `kubectl apply`. + The --force flag deletes and re-create the resource, when PATCH encounters conflict and has + retried for 5 times. type: boolean type: object type: object @@ -873,9 +876,9 @@ spec: not set. type: string namespace: - description: Namespace specifies the target namespace for the - application's resources. The namespace will only be set for - namespace-scoped resources that have not set a value for .metadata.namespace + description: |- + Namespace specifies the target namespace for the application's resources. + The namespace will only be set for namespace-scoped resources that have not set a value for .metadata.namespace type: string server: description: Server specifies the URL of the target cluster's @@ -904,10 +907,9 @@ spec: kind: type: string managedFieldsManagers: - description: ManagedFieldsManagers is a list of trusted managers. - Fields mutated by those managers will take precedence over - the desired state defined in the SCM and won't be displayed - in diffs + description: |- + ManagedFieldsManagers is a list of trusted managers. Fields mutated by those managers will take precedence over the + desired state defined in the SCM and won't be displayed in diffs items: type: string type: array @@ -934,18 +936,17 @@ spec: type: object type: array project: - description: Project is a reference to the project this application - belongs to. The empty string means that application belongs to the - 'default' project. + description: |- + Project is a reference to the project this application belongs to. + The empty string means that application belongs to the 'default' project. type: string revisionHistoryLimit: - description: RevisionHistoryLimit limits the number of items kept - in the application's revision history, which is used for informational - purposes as well as for rollbacks to previous versions. This should - only be changed in exceptional circumstances. Setting to zero will - store no history. This will reduce storage used. Increasing will - increase the space used to store the history, so we do not recommend - increasing it. Default is 10. + description: |- + RevisionHistoryLimit limits the number of items kept in the application's revision history, which is used for informational purposes as well as for rollbacks to previous versions. + This should only be changed in exceptional circumstances. + Setting to zero will store no history. This will reduce storage used. + Increasing will increase the space used to store the history, so we do not recommend increasing it. + Default is 10. format: int64 type: integer source: @@ -1264,10 +1265,10 @@ spec: that contains the application manifests type: string targetRevision: - description: TargetRevision defines the revision of the source - to sync the application to. In case of Git, this can be commit, - tag, or branch. If omitted, will equal to HEAD. In case of Helm, - this is a semver tag for the Chart's version. + description: |- + TargetRevision defines the revision of the source to sync the application to. + In case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD. + In case of Helm, this is a semver tag for the Chart's version. type: string required: - repoURL @@ -1596,10 +1597,10 @@ spec: that contains the application manifests type: string targetRevision: - description: TargetRevision defines the revision of the source - to sync the application to. In case of Git, this can be commit, - tag, or branch. If omitted, will equal to HEAD. In case of - Helm, this is a semver tag for the Chart's version. + description: |- + TargetRevision defines the revision of the source to sync the application to. + In case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD. + In case of Helm, this is a semver tag for the Chart's version. type: string required: - repoURL @@ -2092,11 +2093,10 @@ spec: Helm) that contains the application manifests type: string targetRevision: - description: TargetRevision defines the revision of the - source to sync the application to. In case of Git, this - can be commit, tag, or branch. If omitted, will equal - to HEAD. In case of Helm, this is a semver tag for the - Chart's version. + description: |- + TargetRevision defines the revision of the source to sync the application to. + In case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD. + In case of Helm, this is a semver tag for the Chart's version. type: string required: - repoURL @@ -2438,11 +2438,10 @@ spec: or Helm) that contains the application manifests type: string targetRevision: - description: TargetRevision defines the revision of the - source to sync the application to. In case of Git, this - can be commit, tag, or branch. If omitted, will equal - to HEAD. In case of Helm, this is a semver tag for the - Chart's version. + description: |- + TargetRevision defines the revision of the source to sync the application to. + In case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD. + In case of Helm, this is a semver tag for the Chart's version. type: string required: - repoURL @@ -2454,9 +2453,9 @@ spec: type: object type: array observedAt: - description: 'ObservedAt indicates when the application state was - updated without querying latest git state Deprecated: controller - no longer updates ObservedAt field' + description: |- + ObservedAt indicates when the application state was updated without querying latest git state + Deprecated: controller no longer updates ObservedAt field format: date-time type: string operationState: @@ -2569,22 +2568,21 @@ spec: type: object type: array revision: - description: Revision is the revision (Git) or chart version - (Helm) which to sync the application to If omitted, - will use the revision specified in app spec. + description: |- + Revision is the revision (Git) or chart version (Helm) which to sync the application to + If omitted, will use the revision specified in app spec. type: string revisions: - description: Revisions is the list of revision (Git) or - chart version (Helm) which to sync each source in sources - field for the application to If omitted, will use the - revision specified in app spec. + description: |- + Revisions is the list of revision (Git) or chart version (Helm) which to sync each source in sources field for the application to + If omitted, will use the revision specified in app spec. items: type: string type: array source: - description: Source overrides the source definition set - in the application. This is typically set in a Rollback - operation and is nil during a Sync operation + description: |- + Source overrides the source definition set in the application. + This is typically set in a Rollback operation and is nil during a Sync operation properties: chart: description: Chart is a Helm chart name, and must @@ -2927,19 +2925,18 @@ spec: (Git or Helm) that contains the application manifests type: string targetRevision: - description: TargetRevision defines the revision of - the source to sync the application to. In case of - Git, this can be commit, tag, or branch. If omitted, - will equal to HEAD. In case of Helm, this is a semver - tag for the Chart's version. + description: |- + TargetRevision defines the revision of the source to sync the application to. + In case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD. + In case of Helm, this is a semver tag for the Chart's version. type: string required: - repoURL type: object sources: - description: Sources overrides the source definition set - in the application. This is typically set in a Rollback - operation and is nil during a Sync operation + description: |- + Sources overrides the source definition set in the application. + This is typically set in a Rollback operation and is nil during a Sync operation items: description: ApplicationSource contains all required information about the source of an application @@ -3290,11 +3287,10 @@ spec: (Git or Helm) that contains the application manifests type: string targetRevision: - description: TargetRevision defines the revision - of the source to sync the application to. In case - of Git, this can be commit, tag, or branch. If - omitted, will equal to HEAD. In case of Helm, - this is a semver tag for the Chart's version. + description: |- + TargetRevision defines the revision of the source to sync the application to. + In case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD. + In case of Helm, this is a semver tag for the Chart's version. type: string required: - repoURL @@ -3315,11 +3311,10 @@ spec: to perform the sync. properties: force: - description: Force indicates whether or not to - supply the --force flag to `kubectl apply`. - The --force flag deletes and re-create the resource, - when PATCH encounters conflict and has retried - for 5 times. + description: |- + Force indicates whether or not to supply the --force flag to `kubectl apply`. + The --force flag deletes and re-create the resource, when PATCH encounters conflict and has + retried for 5 times. type: boolean type: object hook: @@ -3327,11 +3322,10 @@ spec: to perform the sync. This is the default strategy properties: force: - description: Force indicates whether or not to - supply the --force flag to `kubectl apply`. - The --force flag deletes and re-create the resource, - when PATCH encounters conflict and has retried - for 5 times. + description: |- + Force indicates whether or not to supply the --force flag to `kubectl apply`. + The --force flag deletes and re-create the resource, when PATCH encounters conflict and has + retried for 5 times. type: boolean type: object type: object @@ -3375,9 +3369,9 @@ spec: description: Group specifies the API group of the resource type: string hookPhase: - description: HookPhase contains the state of any operation - associated with this resource OR hook This can also - contain values for non-hook resources. + description: |- + HookPhase contains the state of any operation associated with this resource OR hook + This can also contain values for non-hook resources. type: string hookType: description: HookType specifies the type of the hook. @@ -3762,11 +3756,10 @@ spec: or Helm) that contains the application manifests type: string targetRevision: - description: TargetRevision defines the revision of the - source to sync the application to. In case of Git, this - can be commit, tag, or branch. If omitted, will equal - to HEAD. In case of Helm, this is a semver tag for the - Chart's version. + description: |- + TargetRevision defines the revision of the source to sync the application to. + In case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD. + In case of Helm, this is a semver tag for the Chart's version. type: string required: - repoURL @@ -4117,11 +4110,10 @@ spec: or Helm) that contains the application manifests type: string targetRevision: - description: TargetRevision defines the revision of - the source to sync the application to. In case of - Git, this can be commit, tag, or branch. If omitted, - will equal to HEAD. In case of Helm, this is a semver - tag for the Chart's version. + description: |- + TargetRevision defines the revision of the source to sync the application to. + In case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD. + In case of Helm, this is a semver tag for the Chart's version. type: string required: - repoURL @@ -4148,8 +4140,9 @@ spec: description: Resources is a list of Kubernetes resources managed by this application items: - description: 'ResourceStatus holds the current sync and health status - of a resource TODO: describe members of this type' + description: |- + ResourceStatus holds the current sync and health status of a resource + TODO: describe members of this type properties: group: type: string @@ -4232,10 +4225,9 @@ spec: if Server is not set. type: string namespace: - description: Namespace specifies the target namespace - for the application's resources. The namespace will - only be set for namespace-scoped resources that have - not set a value for .metadata.namespace + description: |- + Namespace specifies the target namespace for the application's resources. + The namespace will only be set for namespace-scoped resources that have not set a value for .metadata.namespace type: string server: description: Server specifies the URL of the target cluster's @@ -4264,10 +4256,9 @@ spec: kind: type: string managedFieldsManagers: - description: ManagedFieldsManagers is a list of trusted - managers. Fields mutated by those managers will take - precedence over the desired state defined in the SCM - and won't be displayed in diffs + description: |- + ManagedFieldsManagers is a list of trusted managers. Fields mutated by those managers will take precedence over the + desired state defined in the SCM and won't be displayed in diffs items: type: string type: array @@ -4613,11 +4604,10 @@ spec: or Helm) that contains the application manifests type: string targetRevision: - description: TargetRevision defines the revision of the - source to sync the application to. In case of Git, this - can be commit, tag, or branch. If omitted, will equal - to HEAD. In case of Helm, this is a semver tag for the - Chart's version. + description: |- + TargetRevision defines the revision of the source to sync the application to. + In case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD. + In case of Helm, this is a semver tag for the Chart's version. type: string required: - repoURL @@ -4968,11 +4958,10 @@ spec: or Helm) that contains the application manifests type: string targetRevision: - description: TargetRevision defines the revision of - the source to sync the application to. In case of - Git, this can be commit, tag, or branch. If omitted, - will equal to HEAD. In case of Helm, this is a semver - tag for the Chart's version. + description: |- + TargetRevision defines the revision of the source to sync the application to. + In case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD. + In case of Helm, this is a semver tag for the Chart's version. type: string required: - repoURL @@ -5069,6 +5058,7 @@ spec: type: string type: object type: object + x-kubernetes-map-type: atomic name: type: string requeueAfterSeconds: @@ -5665,6 +5655,7 @@ spec: type: string type: object type: object + x-kubernetes-map-type: atomic template: properties: metadata: @@ -7427,6 +7418,7 @@ spec: type: string type: object type: object + x-kubernetes-map-type: atomic name: type: string requeueAfterSeconds: @@ -8023,6 +8015,7 @@ spec: type: string type: object type: object + x-kubernetes-map-type: atomic template: properties: metadata: @@ -11888,6 +11881,7 @@ spec: type: string type: object type: object + x-kubernetes-map-type: atomic type: object type: array template: @@ -12484,6 +12478,7 @@ spec: type: string type: object type: object + x-kubernetes-map-type: atomic name: type: string requeueAfterSeconds: @@ -13080,6 +13075,7 @@ spec: type: string type: object type: object + x-kubernetes-map-type: atomic template: properties: metadata: @@ -16945,6 +16941,7 @@ spec: type: string type: object type: object + x-kubernetes-map-type: atomic type: object type: array mergeKeys: @@ -19645,6 +19642,7 @@ spec: type: string type: object type: object + x-kubernetes-map-type: atomic type: object type: array goTemplate: @@ -20363,22 +20361,28 @@ spec: - name: v1alpha1 schema: openAPIV3Schema: - description: 'AppProject provides a logical grouping of applications, providing - controls for: * where the apps may deploy to (cluster whitelist) * what - may be deployed (repository whitelist, resource whitelist/blacklist) * who - can access these applications (roles, OIDC group claims bindings) * and - what they can do (RBAC policies) * automation access to these roles (JWT - tokens)' + description: |- + AppProject provides a logical grouping of applications, providing controls for: + * where the apps may deploy to (cluster whitelist) + * what may be deployed (repository whitelist, resource whitelist/blacklist) + * who can access these applications (roles, OIDC group claims bindings) + * and what they can do (RBAC policies) + * automation access to these roles (JWT tokens) properties: apiVersion: - description: 'APIVersion defines the versioned schema of this representation - of an object. Servers should convert recognized schemas to the latest - internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' + description: |- + APIVersion defines the versioned schema of this representation of an object. + Servers should convert recognized schemas to the latest internal value, and + may reject unrecognized values. + More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources type: string kind: - description: 'Kind is a string value representing the REST resource this - object represents. Servers may infer this from the endpoint the client - submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' + description: |- + Kind is a string value representing the REST resource this object represents. + Servers may infer this from the endpoint the client submits requests to. + Cannot be updated. + In CamelCase. + More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds type: string metadata: type: object @@ -20389,9 +20393,9 @@ spec: description: ClusterResourceBlacklist contains list of blacklisted cluster level resources items: - description: GroupKind specifies a Group and a Kind, but does not - force a version. This is useful for identifying concepts during - lookup stages without having partially valid types + description: |- + GroupKind specifies a Group and a Kind, but does not force a version. This is useful for identifying + concepts during lookup stages without having partially valid types properties: group: type: string @@ -20406,9 +20410,9 @@ spec: description: ClusterResourceWhitelist contains list of whitelisted cluster level resources items: - description: GroupKind specifies a Group and a Kind, but does not - force a version. This is useful for identifying concepts during - lookup stages without having partially valid types + description: |- + GroupKind specifies a Group and a Kind, but does not force a version. This is useful for identifying + concepts during lookup stages without having partially valid types properties: group: type: string @@ -20435,9 +20439,9 @@ spec: not set. type: string namespace: - description: Namespace specifies the target namespace for the - application's resources. The namespace will only be set for - namespace-scoped resources that have not set a value for .metadata.namespace + description: |- + Namespace specifies the target namespace for the application's resources. + The namespace will only be set for namespace-scoped resources that have not set a value for .metadata.namespace type: string server: description: Server specifies the URL of the target cluster's @@ -20450,9 +20454,9 @@ spec: description: NamespaceResourceBlacklist contains list of blacklisted namespace level resources items: - description: GroupKind specifies a Group and a Kind, but does not - force a version. This is useful for identifying concepts during - lookup stages without having partially valid types + description: |- + GroupKind specifies a Group and a Kind, but does not force a version. This is useful for identifying + concepts during lookup stages without having partially valid types properties: group: type: string @@ -20467,9 +20471,9 @@ spec: description: NamespaceResourceWhitelist contains list of whitelisted namespace level resources items: - description: GroupKind specifies a Group and a Kind, but does not - force a version. This is useful for identifying concepts during - lookup stages without having partially valid types + description: |- + GroupKind specifies a Group and a Kind, but does not force a version. This is useful for identifying + concepts during lookup stages without having partially valid types properties: group: type: string diff --git a/manifests/install.yaml b/manifests/install.yaml index 3f591d8b41fff..83d96896cdc6d 100644 --- a/manifests/install.yaml +++ b/manifests/install.yaml @@ -35,14 +35,19 @@ spec: description: Application is a definition of Application resource. properties: apiVersion: - description: 'APIVersion defines the versioned schema of this representation - of an object. Servers should convert recognized schemas to the latest - internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' + description: |- + APIVersion defines the versioned schema of this representation of an object. + Servers should convert recognized schemas to the latest internal value, and + may reject unrecognized values. + More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources type: string kind: - description: 'Kind is a string value representing the REST resource this - object represents. Servers may infer this from the endpoint the client - submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' + description: |- + Kind is a string value representing the REST resource this object represents. + Servers may infer this from the endpoint the client submits requests to. + Cannot be updated. + In CamelCase. + More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds type: string metadata: type: object @@ -140,22 +145,21 @@ spec: type: object type: array revision: - description: Revision is the revision (Git) or chart version (Helm) - which to sync the application to If omitted, will use the revision - specified in app spec. + description: |- + Revision is the revision (Git) or chart version (Helm) which to sync the application to + If omitted, will use the revision specified in app spec. type: string revisions: - description: Revisions is the list of revision (Git) or chart - version (Helm) which to sync each source in sources field for - the application to If omitted, will use the revision specified - in app spec. + description: |- + Revisions is the list of revision (Git) or chart version (Helm) which to sync each source in sources field for the application to + If omitted, will use the revision specified in app spec. items: type: string type: array source: - description: Source overrides the source definition set in the - application. This is typically set in a Rollback operation and - is nil during a Sync operation + description: |- + Source overrides the source definition set in the application. + This is typically set in a Rollback operation and is nil during a Sync operation properties: chart: description: Chart is a Helm chart name, and must be specified @@ -476,18 +480,18 @@ spec: Helm) that contains the application manifests type: string targetRevision: - description: TargetRevision defines the revision of the source - to sync the application to. In case of Git, this can be - commit, tag, or branch. If omitted, will equal to HEAD. + description: |- + TargetRevision defines the revision of the source to sync the application to. + In case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD. In case of Helm, this is a semver tag for the Chart's version. type: string required: - repoURL type: object sources: - description: Sources overrides the source definition set in the - application. This is typically set in a Rollback operation and - is nil during a Sync operation + description: |- + Sources overrides the source definition set in the application. + This is typically set in a Rollback operation and is nil during a Sync operation items: description: ApplicationSource contains all required information about the source of an application @@ -815,11 +819,10 @@ spec: Helm) that contains the application manifests type: string targetRevision: - description: TargetRevision defines the revision of the - source to sync the application to. In case of Git, this - can be commit, tag, or branch. If omitted, will equal - to HEAD. In case of Helm, this is a semver tag for the - Chart's version. + description: |- + TargetRevision defines the revision of the source to sync the application to. + In case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD. + In case of Helm, this is a semver tag for the Chart's version. type: string required: - repoURL @@ -838,10 +841,10 @@ spec: the sync. properties: force: - description: Force indicates whether or not to supply - the --force flag to `kubectl apply`. The --force flag - deletes and re-create the resource, when PATCH encounters - conflict and has retried for 5 times. + description: |- + Force indicates whether or not to supply the --force flag to `kubectl apply`. + The --force flag deletes and re-create the resource, when PATCH encounters conflict and has + retried for 5 times. type: boolean type: object hook: @@ -849,10 +852,10 @@ spec: perform the sync. This is the default strategy properties: force: - description: Force indicates whether or not to supply - the --force flag to `kubectl apply`. The --force flag - deletes and re-create the resource, when PATCH encounters - conflict and has retried for 5 times. + description: |- + Force indicates whether or not to supply the --force flag to `kubectl apply`. + The --force flag deletes and re-create the resource, when PATCH encounters conflict and has + retried for 5 times. type: boolean type: object type: object @@ -873,9 +876,9 @@ spec: not set. type: string namespace: - description: Namespace specifies the target namespace for the - application's resources. The namespace will only be set for - namespace-scoped resources that have not set a value for .metadata.namespace + description: |- + Namespace specifies the target namespace for the application's resources. + The namespace will only be set for namespace-scoped resources that have not set a value for .metadata.namespace type: string server: description: Server specifies the URL of the target cluster's @@ -904,10 +907,9 @@ spec: kind: type: string managedFieldsManagers: - description: ManagedFieldsManagers is a list of trusted managers. - Fields mutated by those managers will take precedence over - the desired state defined in the SCM and won't be displayed - in diffs + description: |- + ManagedFieldsManagers is a list of trusted managers. Fields mutated by those managers will take precedence over the + desired state defined in the SCM and won't be displayed in diffs items: type: string type: array @@ -934,18 +936,17 @@ spec: type: object type: array project: - description: Project is a reference to the project this application - belongs to. The empty string means that application belongs to the - 'default' project. + description: |- + Project is a reference to the project this application belongs to. + The empty string means that application belongs to the 'default' project. type: string revisionHistoryLimit: - description: RevisionHistoryLimit limits the number of items kept - in the application's revision history, which is used for informational - purposes as well as for rollbacks to previous versions. This should - only be changed in exceptional circumstances. Setting to zero will - store no history. This will reduce storage used. Increasing will - increase the space used to store the history, so we do not recommend - increasing it. Default is 10. + description: |- + RevisionHistoryLimit limits the number of items kept in the application's revision history, which is used for informational purposes as well as for rollbacks to previous versions. + This should only be changed in exceptional circumstances. + Setting to zero will store no history. This will reduce storage used. + Increasing will increase the space used to store the history, so we do not recommend increasing it. + Default is 10. format: int64 type: integer source: @@ -1264,10 +1265,10 @@ spec: that contains the application manifests type: string targetRevision: - description: TargetRevision defines the revision of the source - to sync the application to. In case of Git, this can be commit, - tag, or branch. If omitted, will equal to HEAD. In case of Helm, - this is a semver tag for the Chart's version. + description: |- + TargetRevision defines the revision of the source to sync the application to. + In case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD. + In case of Helm, this is a semver tag for the Chart's version. type: string required: - repoURL @@ -1596,10 +1597,10 @@ spec: that contains the application manifests type: string targetRevision: - description: TargetRevision defines the revision of the source - to sync the application to. In case of Git, this can be commit, - tag, or branch. If omitted, will equal to HEAD. In case of - Helm, this is a semver tag for the Chart's version. + description: |- + TargetRevision defines the revision of the source to sync the application to. + In case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD. + In case of Helm, this is a semver tag for the Chart's version. type: string required: - repoURL @@ -2092,11 +2093,10 @@ spec: Helm) that contains the application manifests type: string targetRevision: - description: TargetRevision defines the revision of the - source to sync the application to. In case of Git, this - can be commit, tag, or branch. If omitted, will equal - to HEAD. In case of Helm, this is a semver tag for the - Chart's version. + description: |- + TargetRevision defines the revision of the source to sync the application to. + In case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD. + In case of Helm, this is a semver tag for the Chart's version. type: string required: - repoURL @@ -2438,11 +2438,10 @@ spec: or Helm) that contains the application manifests type: string targetRevision: - description: TargetRevision defines the revision of the - source to sync the application to. In case of Git, this - can be commit, tag, or branch. If omitted, will equal - to HEAD. In case of Helm, this is a semver tag for the - Chart's version. + description: |- + TargetRevision defines the revision of the source to sync the application to. + In case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD. + In case of Helm, this is a semver tag for the Chart's version. type: string required: - repoURL @@ -2454,9 +2453,9 @@ spec: type: object type: array observedAt: - description: 'ObservedAt indicates when the application state was - updated without querying latest git state Deprecated: controller - no longer updates ObservedAt field' + description: |- + ObservedAt indicates when the application state was updated without querying latest git state + Deprecated: controller no longer updates ObservedAt field format: date-time type: string operationState: @@ -2569,22 +2568,21 @@ spec: type: object type: array revision: - description: Revision is the revision (Git) or chart version - (Helm) which to sync the application to If omitted, - will use the revision specified in app spec. + description: |- + Revision is the revision (Git) or chart version (Helm) which to sync the application to + If omitted, will use the revision specified in app spec. type: string revisions: - description: Revisions is the list of revision (Git) or - chart version (Helm) which to sync each source in sources - field for the application to If omitted, will use the - revision specified in app spec. + description: |- + Revisions is the list of revision (Git) or chart version (Helm) which to sync each source in sources field for the application to + If omitted, will use the revision specified in app spec. items: type: string type: array source: - description: Source overrides the source definition set - in the application. This is typically set in a Rollback - operation and is nil during a Sync operation + description: |- + Source overrides the source definition set in the application. + This is typically set in a Rollback operation and is nil during a Sync operation properties: chart: description: Chart is a Helm chart name, and must @@ -2927,19 +2925,18 @@ spec: (Git or Helm) that contains the application manifests type: string targetRevision: - description: TargetRevision defines the revision of - the source to sync the application to. In case of - Git, this can be commit, tag, or branch. If omitted, - will equal to HEAD. In case of Helm, this is a semver - tag for the Chart's version. + description: |- + TargetRevision defines the revision of the source to sync the application to. + In case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD. + In case of Helm, this is a semver tag for the Chart's version. type: string required: - repoURL type: object sources: - description: Sources overrides the source definition set - in the application. This is typically set in a Rollback - operation and is nil during a Sync operation + description: |- + Sources overrides the source definition set in the application. + This is typically set in a Rollback operation and is nil during a Sync operation items: description: ApplicationSource contains all required information about the source of an application @@ -3290,11 +3287,10 @@ spec: (Git or Helm) that contains the application manifests type: string targetRevision: - description: TargetRevision defines the revision - of the source to sync the application to. In case - of Git, this can be commit, tag, or branch. If - omitted, will equal to HEAD. In case of Helm, - this is a semver tag for the Chart's version. + description: |- + TargetRevision defines the revision of the source to sync the application to. + In case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD. + In case of Helm, this is a semver tag for the Chart's version. type: string required: - repoURL @@ -3315,11 +3311,10 @@ spec: to perform the sync. properties: force: - description: Force indicates whether or not to - supply the --force flag to `kubectl apply`. - The --force flag deletes and re-create the resource, - when PATCH encounters conflict and has retried - for 5 times. + description: |- + Force indicates whether or not to supply the --force flag to `kubectl apply`. + The --force flag deletes and re-create the resource, when PATCH encounters conflict and has + retried for 5 times. type: boolean type: object hook: @@ -3327,11 +3322,10 @@ spec: to perform the sync. This is the default strategy properties: force: - description: Force indicates whether or not to - supply the --force flag to `kubectl apply`. - The --force flag deletes and re-create the resource, - when PATCH encounters conflict and has retried - for 5 times. + description: |- + Force indicates whether or not to supply the --force flag to `kubectl apply`. + The --force flag deletes and re-create the resource, when PATCH encounters conflict and has + retried for 5 times. type: boolean type: object type: object @@ -3375,9 +3369,9 @@ spec: description: Group specifies the API group of the resource type: string hookPhase: - description: HookPhase contains the state of any operation - associated with this resource OR hook This can also - contain values for non-hook resources. + description: |- + HookPhase contains the state of any operation associated with this resource OR hook + This can also contain values for non-hook resources. type: string hookType: description: HookType specifies the type of the hook. @@ -3762,11 +3756,10 @@ spec: or Helm) that contains the application manifests type: string targetRevision: - description: TargetRevision defines the revision of the - source to sync the application to. In case of Git, this - can be commit, tag, or branch. If omitted, will equal - to HEAD. In case of Helm, this is a semver tag for the - Chart's version. + description: |- + TargetRevision defines the revision of the source to sync the application to. + In case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD. + In case of Helm, this is a semver tag for the Chart's version. type: string required: - repoURL @@ -4117,11 +4110,10 @@ spec: or Helm) that contains the application manifests type: string targetRevision: - description: TargetRevision defines the revision of - the source to sync the application to. In case of - Git, this can be commit, tag, or branch. If omitted, - will equal to HEAD. In case of Helm, this is a semver - tag for the Chart's version. + description: |- + TargetRevision defines the revision of the source to sync the application to. + In case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD. + In case of Helm, this is a semver tag for the Chart's version. type: string required: - repoURL @@ -4148,8 +4140,9 @@ spec: description: Resources is a list of Kubernetes resources managed by this application items: - description: 'ResourceStatus holds the current sync and health status - of a resource TODO: describe members of this type' + description: |- + ResourceStatus holds the current sync and health status of a resource + TODO: describe members of this type properties: group: type: string @@ -4232,10 +4225,9 @@ spec: if Server is not set. type: string namespace: - description: Namespace specifies the target namespace - for the application's resources. The namespace will - only be set for namespace-scoped resources that have - not set a value for .metadata.namespace + description: |- + Namespace specifies the target namespace for the application's resources. + The namespace will only be set for namespace-scoped resources that have not set a value for .metadata.namespace type: string server: description: Server specifies the URL of the target cluster's @@ -4264,10 +4256,9 @@ spec: kind: type: string managedFieldsManagers: - description: ManagedFieldsManagers is a list of trusted - managers. Fields mutated by those managers will take - precedence over the desired state defined in the SCM - and won't be displayed in diffs + description: |- + ManagedFieldsManagers is a list of trusted managers. Fields mutated by those managers will take precedence over the + desired state defined in the SCM and won't be displayed in diffs items: type: string type: array @@ -4613,11 +4604,10 @@ spec: or Helm) that contains the application manifests type: string targetRevision: - description: TargetRevision defines the revision of the - source to sync the application to. In case of Git, this - can be commit, tag, or branch. If omitted, will equal - to HEAD. In case of Helm, this is a semver tag for the - Chart's version. + description: |- + TargetRevision defines the revision of the source to sync the application to. + In case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD. + In case of Helm, this is a semver tag for the Chart's version. type: string required: - repoURL @@ -4968,11 +4958,10 @@ spec: or Helm) that contains the application manifests type: string targetRevision: - description: TargetRevision defines the revision of - the source to sync the application to. In case of - Git, this can be commit, tag, or branch. If omitted, - will equal to HEAD. In case of Helm, this is a semver - tag for the Chart's version. + description: |- + TargetRevision defines the revision of the source to sync the application to. + In case of Git, this can be commit, tag, or branch. If omitted, will equal to HEAD. + In case of Helm, this is a semver tag for the Chart's version. type: string required: - repoURL @@ -5069,6 +5058,7 @@ spec: type: string type: object type: object + x-kubernetes-map-type: atomic name: type: string requeueAfterSeconds: @@ -5665,6 +5655,7 @@ spec: type: string type: object type: object + x-kubernetes-map-type: atomic template: properties: metadata: @@ -7427,6 +7418,7 @@ spec: type: string type: object type: object + x-kubernetes-map-type: atomic name: type: string requeueAfterSeconds: @@ -8023,6 +8015,7 @@ spec: type: string type: object type: object + x-kubernetes-map-type: atomic template: properties: metadata: @@ -11888,6 +11881,7 @@ spec: type: string type: object type: object + x-kubernetes-map-type: atomic type: object type: array template: @@ -12484,6 +12478,7 @@ spec: type: string type: object type: object + x-kubernetes-map-type: atomic name: type: string requeueAfterSeconds: @@ -13080,6 +13075,7 @@ spec: type: string type: object type: object + x-kubernetes-map-type: atomic template: properties: metadata: @@ -16945,6 +16941,7 @@ spec: type: string type: object type: object + x-kubernetes-map-type: atomic type: object type: array mergeKeys: @@ -19645,6 +19642,7 @@ spec: type: string type: object type: object + x-kubernetes-map-type: atomic type: object type: array goTemplate: @@ -20363,22 +20361,28 @@ spec: - name: v1alpha1 schema: openAPIV3Schema: - description: 'AppProject provides a logical grouping of applications, providing - controls for: * where the apps may deploy to (cluster whitelist) * what - may be deployed (repository whitelist, resource whitelist/blacklist) * who - can access these applications (roles, OIDC group claims bindings) * and - what they can do (RBAC policies) * automation access to these roles (JWT - tokens)' + description: |- + AppProject provides a logical grouping of applications, providing controls for: + * where the apps may deploy to (cluster whitelist) + * what may be deployed (repository whitelist, resource whitelist/blacklist) + * who can access these applications (roles, OIDC group claims bindings) + * and what they can do (RBAC policies) + * automation access to these roles (JWT tokens) properties: apiVersion: - description: 'APIVersion defines the versioned schema of this representation - of an object. Servers should convert recognized schemas to the latest - internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' + description: |- + APIVersion defines the versioned schema of this representation of an object. + Servers should convert recognized schemas to the latest internal value, and + may reject unrecognized values. + More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources type: string kind: - description: 'Kind is a string value representing the REST resource this - object represents. Servers may infer this from the endpoint the client - submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' + description: |- + Kind is a string value representing the REST resource this object represents. + Servers may infer this from the endpoint the client submits requests to. + Cannot be updated. + In CamelCase. + More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds type: string metadata: type: object @@ -20389,9 +20393,9 @@ spec: description: ClusterResourceBlacklist contains list of blacklisted cluster level resources items: - description: GroupKind specifies a Group and a Kind, but does not - force a version. This is useful for identifying concepts during - lookup stages without having partially valid types + description: |- + GroupKind specifies a Group and a Kind, but does not force a version. This is useful for identifying + concepts during lookup stages without having partially valid types properties: group: type: string @@ -20406,9 +20410,9 @@ spec: description: ClusterResourceWhitelist contains list of whitelisted cluster level resources items: - description: GroupKind specifies a Group and a Kind, but does not - force a version. This is useful for identifying concepts during - lookup stages without having partially valid types + description: |- + GroupKind specifies a Group and a Kind, but does not force a version. This is useful for identifying + concepts during lookup stages without having partially valid types properties: group: type: string @@ -20435,9 +20439,9 @@ spec: not set. type: string namespace: - description: Namespace specifies the target namespace for the - application's resources. The namespace will only be set for - namespace-scoped resources that have not set a value for .metadata.namespace + description: |- + Namespace specifies the target namespace for the application's resources. + The namespace will only be set for namespace-scoped resources that have not set a value for .metadata.namespace type: string server: description: Server specifies the URL of the target cluster's @@ -20450,9 +20454,9 @@ spec: description: NamespaceResourceBlacklist contains list of blacklisted namespace level resources items: - description: GroupKind specifies a Group and a Kind, but does not - force a version. This is useful for identifying concepts during - lookup stages without having partially valid types + description: |- + GroupKind specifies a Group and a Kind, but does not force a version. This is useful for identifying + concepts during lookup stages without having partially valid types properties: group: type: string @@ -20467,9 +20471,9 @@ spec: description: NamespaceResourceWhitelist contains list of whitelisted namespace level resources items: - description: GroupKind specifies a Group and a Kind, but does not - force a version. This is useful for identifying concepts during - lookup stages without having partially valid types + description: |- + GroupKind specifies a Group and a Kind, but does not force a version. This is useful for identifying + concepts during lookup stages without having partially valid types properties: group: type: string From 4f6a8dce80f0accef7ed3b5510e178a6b398b331 Mon Sep 17 00:00:00 2001 From: Ishita Sequeira <46771830+ishitasequeira@users.noreply.github.com> Date: Fri, 19 Apr 2024 03:52:07 -0400 Subject: [PATCH 016/206] remove mention of beta state from apps-in-any-namespace doc (#17896) Signed-off-by: ishitasequeira --- docs/operator-manual/app-any-namespace.md | 4 ---- 1 file changed, 4 deletions(-) diff --git a/docs/operator-manual/app-any-namespace.md b/docs/operator-manual/app-any-namespace.md index 5f4a76d610afd..dfd24f75b65f3 100644 --- a/docs/operator-manual/app-any-namespace.md +++ b/docs/operator-manual/app-any-namespace.md @@ -11,10 +11,6 @@ Argo CD administrators can define a certain set of namespaces where `Application Some manual steps will need to be performed by the Argo CD administrator in order to enable this feature. -!!! note - This feature is considered beta as of now. Some of the implementation details may change over the course of time until it is promoted to a stable status. We will be happy if early adopters use this feature and provide us with bug reports and feedback. - - One additional advantage of adopting applications in any namespace is to allow end-users to configure notifications for their Argo CD application in the namespace where Argo CD application is running in. See notifications [namespace based configuration](notifications/index.md#namespace-based-configuration) page for more information. ## Prerequisites From ba2e6acb01211c0d5715a8c6b4e8ba852edec91e Mon Sep 17 00:00:00 2001 From: Michael Crenshaw <350466+crenshaw-dev@users.noreply.github.com> Date: Fri, 19 Apr 2024 07:57:48 -0400 Subject: [PATCH 017/206] chore: bump go version to 1.22.1 (#17895) Signed-off-by: Michael Crenshaw <350466+crenshaw-dev@users.noreply.github.com> Co-authored-by: pasha-codefresh --- .github/workflows/ci-build.yaml | 2 +- .github/workflows/image.yaml | 4 ++-- .github/workflows/release.yaml | 4 ++-- Dockerfile | 4 ++-- test/container/Dockerfile | 2 +- 5 files changed, 8 insertions(+), 8 deletions(-) diff --git a/.github/workflows/ci-build.yaml b/.github/workflows/ci-build.yaml index 4aa502e318bef..50c0e1ff8c1dd 100644 --- a/.github/workflows/ci-build.yaml +++ b/.github/workflows/ci-build.yaml @@ -13,7 +13,7 @@ on: env: # Golang version to use across CI steps - GOLANG_VERSION: '1.21' + GOLANG_VERSION: '1.22' concurrency: group: ${{ github.workflow }}-${{ github.ref }} diff --git a/.github/workflows/image.yaml b/.github/workflows/image.yaml index a7174e10de9db..99fe724a18ccd 100644 --- a/.github/workflows/image.yaml +++ b/.github/workflows/image.yaml @@ -52,7 +52,7 @@ jobs: uses: ./.github/workflows/image-reuse.yaml with: # Note: cannot use env variables to set go-version (https://docs.github.com/en/actions/using-workflows/reusing-workflows#limitations) - go-version: 1.21 + go-version: 1.22 platforms: ${{ needs.set-vars.outputs.platforms }} push: false @@ -68,7 +68,7 @@ jobs: quay_image_name: quay.io/argoproj/argocd:latest ghcr_image_name: ghcr.io/argoproj/argo-cd/argocd:${{ needs.set-vars.outputs.image-tag }} # Note: cannot use env variables to set go-version (https://docs.github.com/en/actions/using-workflows/reusing-workflows#limitations) - go-version: 1.21 + go-version: 1.22 platforms: ${{ needs.set-vars.outputs.platforms }} push: true secrets: diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml index d332c075d0bd0..930bcdad467e6 100644 --- a/.github/workflows/release.yaml +++ b/.github/workflows/release.yaml @@ -10,7 +10,7 @@ on: permissions: {} env: - GOLANG_VERSION: '1.21' # Note: go-version must also be set in job argocd-image.with.go-version + GOLANG_VERSION: '1.22' # Note: go-version must also be set in job argocd-image.with.go-version jobs: argocd-image: @@ -23,7 +23,7 @@ jobs: with: quay_image_name: quay.io/argoproj/argocd:${{ github.ref_name }} # Note: cannot use env variables to set go-version (https://docs.github.com/en/actions/using-workflows/reusing-workflows#limitations) - go-version: 1.21 + go-version: 1.22 platforms: linux/amd64,linux/arm64,linux/s390x,linux/ppc64le push: true secrets: diff --git a/Dockerfile b/Dockerfile index c6eb601ca3216..c989a81acda31 100644 --- a/Dockerfile +++ b/Dockerfile @@ -4,7 +4,7 @@ ARG BASE_IMAGE=docker.io/library/ubuntu:22.04@sha256:0bced47fffa3361afa981854fca # Initial stage which pulls prepares build dependencies and CLI tooling we need for our final image # Also used as the image in CI jobs so needs all dependencies #################################################################################################### -FROM docker.io/library/golang:1.21.9@sha256:81811f8a883e238666dbadee6928ae2902243a3cd3f3e860f21c102543c6b5a7 AS builder +FROM docker.io/library/golang:1.22.1@sha256:0b55ab82ac2a54a6f8f85ec8b943b9e470c39e32c109b766bbc1b801f3fa8d3b AS builder RUN echo 'deb http://archive.debian.org/debian buster-backports main' >> /etc/apt/sources.list @@ -101,7 +101,7 @@ RUN HOST_ARCH=$TARGETARCH NODE_ENV='production' NODE_ONLINE_ENV='online' NODE_OP #################################################################################################### # Argo CD Build stage which performs the actual build of Argo CD binaries #################################################################################################### -FROM --platform=$BUILDPLATFORM docker.io/library/golang:1.21.9@sha256:81811f8a883e238666dbadee6928ae2902243a3cd3f3e860f21c102543c6b5a7 AS argocd-build +FROM --platform=$BUILDPLATFORM docker.io/library/golang:1.22.1@sha256:0b55ab82ac2a54a6f8f85ec8b943b9e470c39e32c109b766bbc1b801f3fa8d3b AS argocd-build WORKDIR /go/src/github.com/argoproj/argo-cd diff --git a/test/container/Dockerfile b/test/container/Dockerfile index 753c44f5a6607..453dec4ff1326 100644 --- a/test/container/Dockerfile +++ b/test/container/Dockerfile @@ -8,7 +8,7 @@ RUN ln -s /usr/lib/$(uname -m)-linux-gnu /usr/lib/linux-gnu # Please make sure to also check the contained yarn version and update the references below when upgrading this image's version FROM docker.io/library/node:21.7.3@sha256:162d92c5f1467ad877bf6d8a098d9b04d7303879017a2f3644bfb1de1fc88ff0 as node -FROM docker.io/library/golang:1.21.9@sha256:81811f8a883e238666dbadee6928ae2902243a3cd3f3e860f21c102543c6b5a7 as golang +FROM docker.io/library/golang:1.22.1@sha256:0b55ab82ac2a54a6f8f85ec8b943b9e470c39e32c109b766bbc1b801f3fa8d3b as golang FROM docker.io/library/registry:2.8@sha256:fb9c9aef62af3955f6014613456551c92e88a67dcf1fc51f5f91bcbd1832813f as registry From cb32a140e0a07b0204c9582afb5287aee500cdae Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 19 Apr 2024 14:32:59 -0400 Subject: [PATCH 018/206] chore(deps): bump golang.org/x/net from 0.21.0 to 0.23.0 (#17901) Bumps [golang.org/x/net](https://github.com/golang/net) from 0.21.0 to 0.23.0. - [Commits](https://github.com/golang/net/compare/v0.21.0...v0.23.0) --- updated-dependencies: - dependency-name: golang.org/x/net dependency-type: direct:production ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- go.mod | 2 +- go.sum | 4 ++-- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/go.mod b/go.mod index 36045b6c0d065..2c513749293a5 100644 --- a/go.mod +++ b/go.mod @@ -269,7 +269,7 @@ require ( go.opentelemetry.io/proto/otlp v1.0.0 // indirect go.starlark.net v0.0.0-20220328144851-d1966c6b9fcd // indirect golang.org/x/mod v0.12.0 // indirect - golang.org/x/net v0.21.0 + golang.org/x/net v0.23.0 golang.org/x/sys v0.19.0 // indirect golang.org/x/text v0.14.0 // indirect golang.org/x/time v0.3.0 diff --git a/go.sum b/go.sum index 7395172bd5f23..9dbd5324f04d6 100644 --- a/go.sum +++ b/go.sum @@ -1966,8 +1966,8 @@ golang.org/x/net v0.11.0/go.mod h1:2L/ixqYpgIVXmeoSA/4Lu7BzTG4KIyPIryS4IsOd1oQ= golang.org/x/net v0.14.0/go.mod h1:PpSgVXXLK0OxS0F31C1/tv6XNguvCrnXIDrFMspZIUI= golang.org/x/net v0.15.0/go.mod h1:idbUs1IY1+zTqbi8yxTbhexhEEk5ur9LInksu6HrEpk= golang.org/x/net v0.17.0/go.mod h1:NxSsAGuq816PNPmqtQdLE42eU2Fs7NoRIZrHJAlaCOE= -golang.org/x/net v0.21.0 h1:AQyQV4dYCvJ7vGmJyKki9+PBdyvhkSd8EIx/qb0AYv4= -golang.org/x/net v0.21.0/go.mod h1:bIjVDfnllIU7BJ2DNgfnXvpSvtn8VRwhlsaeUTyUS44= +golang.org/x/net v0.23.0 h1:7EYJ93RZ9vYSZAIb2x3lnuvqO5zneoD6IvWjuhfxjTs= +golang.org/x/net v0.23.0/go.mod h1:JKghWKKOSdJwpW2GEx0Ja7fmaKnMsbu+MWVZTokSYmg= golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U= golang.org/x/oauth2 v0.0.0-20190226205417-e64efc72b421/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw= golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw= From 3e4d12c6c28190584691f9784ec89a3056f71e15 Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" <41898282+github-actions[bot]@users.noreply.github.com> Date: Mon, 22 Apr 2024 14:32:44 +0000 Subject: [PATCH 019/206] [Bot] docs: Update Snyk reports (#17912) Signed-off-by: CI Co-authored-by: CI --- docs/snyk/index.md | 78 +- docs/snyk/master/argocd-iac-install.html | 80 +- .../master/argocd-iac-namespace-install.html | 2 +- docs/snyk/master/argocd-test.html | 2678 +---------------- .../master/ghcr.io_dexidp_dex_v2.38.0.html | 3 +- docs/snyk/master/haproxy_2.6.14-alpine.html | 2 +- .../quay.io_argoproj_argocd_latest.html | 324 +- docs/snyk/master/redis_7.0.15-alpine.html | 657 ++++ docs/snyk/v2.10.6/redis_7.0.14-alpine.html | 1165 ------- .../argocd-iac-install.html | 2 +- .../argocd-iac-namespace-install.html | 2 +- .../{v2.10.6 => v2.10.7}/argocd-test.html | 6 +- .../ghcr.io_dexidp_dex_v2.37.0.html | 7 +- .../haproxy_2.6.14-alpine.html | 2 +- .../quay.io_argoproj_argocd_v2.10.7.html} | 647 ++-- .../redis_7.0.14-alpine.html | 2 +- .../argocd-iac-install.html | 2 +- .../argocd-iac-namespace-install.html | 2 +- .../argocd-test.html | 3 +- .../ghcr.io_dexidp_dex_v2.38.0.html | 3 +- .../haproxy_2.6.14-alpine.html | 2 +- .../quay.io_argoproj_argocd_v2.11.0-rc2.html} | 665 ++-- .../redis_7.0.14-alpine.html | 2 +- .../argocd-iac-install.html | 2 +- .../argocd-iac-namespace-install.html | 2 +- .../{v2.8.15 => v2.8.16}/argocd-test.html | 7 +- .../ghcr.io_dexidp_dex_v2.37.0.html | 7 +- .../haproxy_2.6.14-alpine.html | 2 +- .../quay.io_argoproj_argocd_v2.8.16.html} | 574 ++-- .../redis_7.0.11-alpine.html | 2 +- .../argocd-iac-install.html | 2 +- .../argocd-iac-namespace-install.html | 2 +- .../{v2.9.11 => v2.9.12}/argocd-test.html | 6 +- .../ghcr.io_dexidp_dex_v2.37.0.html | 7 +- .../haproxy_2.6.14-alpine.html | 2 +- .../quay.io_argoproj_argocd_v2.9.12.html} | 649 ++-- .../redis_7.0.11-alpine.html | 2 +- 37 files changed, 2127 insertions(+), 5475 deletions(-) create mode 100644 docs/snyk/master/redis_7.0.15-alpine.html delete mode 100644 docs/snyk/v2.10.6/redis_7.0.14-alpine.html rename docs/snyk/{v2.10.6 => v2.10.7}/argocd-iac-install.html (99%) rename docs/snyk/{v2.10.6 => v2.10.7}/argocd-iac-namespace-install.html (99%) rename docs/snyk/{v2.10.6 => v2.10.7}/argocd-test.html (99%) rename docs/snyk/{v2.10.6 => v2.10.7}/ghcr.io_dexidp_dex_v2.37.0.html (99%) rename docs/snyk/{v2.8.15 => v2.10.7}/haproxy_2.6.14-alpine.html (99%) rename docs/snyk/{v2.9.11/quay.io_argoproj_argocd_v2.9.11.html => v2.10.7/quay.io_argoproj_argocd_v2.10.7.html} (95%) rename docs/snyk/{master => v2.10.7}/redis_7.0.14-alpine.html (99%) rename docs/snyk/{v2.11.0-rc1 => v2.11.0-rc2}/argocd-iac-install.html (99%) rename docs/snyk/{v2.11.0-rc1 => v2.11.0-rc2}/argocd-iac-namespace-install.html (99%) rename docs/snyk/{v2.11.0-rc1 => v2.11.0-rc2}/argocd-test.html (99%) rename docs/snyk/{v2.11.0-rc1 => v2.11.0-rc2}/ghcr.io_dexidp_dex_v2.38.0.html (99%) rename docs/snyk/{v2.9.11 => v2.11.0-rc2}/haproxy_2.6.14-alpine.html (99%) rename docs/snyk/{v2.11.0-rc1/quay.io_argoproj_argocd_v2.11.0-rc1.html => v2.11.0-rc2/quay.io_argoproj_argocd_v2.11.0-rc2.html} (91%) rename docs/snyk/{v2.11.0-rc1 => v2.11.0-rc2}/redis_7.0.14-alpine.html (99%) rename docs/snyk/{v2.8.15 => v2.8.16}/argocd-iac-install.html (99%) rename docs/snyk/{v2.8.15 => v2.8.16}/argocd-iac-namespace-install.html (99%) rename docs/snyk/{v2.8.15 => v2.8.16}/argocd-test.html (99%) rename docs/snyk/{v2.8.15 => v2.8.16}/ghcr.io_dexidp_dex_v2.37.0.html (99%) rename docs/snyk/{v2.11.0-rc1 => v2.8.16}/haproxy_2.6.14-alpine.html (99%) rename docs/snyk/{v2.8.15/quay.io_argoproj_argocd_v2.8.15.html => v2.8.16/quay.io_argoproj_argocd_v2.8.16.html} (95%) rename docs/snyk/{v2.9.11 => v2.8.16}/redis_7.0.11-alpine.html (99%) rename docs/snyk/{v2.9.11 => v2.9.12}/argocd-iac-install.html (99%) rename docs/snyk/{v2.9.11 => v2.9.12}/argocd-iac-namespace-install.html (99%) rename docs/snyk/{v2.9.11 => v2.9.12}/argocd-test.html (99%) rename docs/snyk/{v2.9.11 => v2.9.12}/ghcr.io_dexidp_dex_v2.37.0.html (99%) rename docs/snyk/{v2.10.6 => v2.9.12}/haproxy_2.6.14-alpine.html (99%) rename docs/snyk/{v2.10.6/quay.io_argoproj_argocd_v2.10.6.html => v2.9.12/quay.io_argoproj_argocd_v2.9.12.html} (92%) rename docs/snyk/{v2.8.15 => v2.9.12}/redis_7.0.11-alpine.html (99%) diff --git a/docs/snyk/index.md b/docs/snyk/index.md index 7d86536e1bc76..8076ff1cda8ef 100644 --- a/docs/snyk/index.md +++ b/docs/snyk/index.md @@ -13,63 +13,63 @@ recent minor releases. | | Critical | High | Medium | Low | |---:|:--------:|:----:|:------:|:---:| -| [go.mod](master/argocd-test.html) | 0 | 1 | 7 | 0 | +| [go.mod](master/argocd-test.html) | 0 | 0 | 7 | 0 | | [ui/yarn.lock](master/argocd-test.html) | 0 | 0 | 1 | 0 | | [dex:v2.38.0](master/ghcr.io_dexidp_dex_v2.38.0.html) | 0 | 0 | 2 | 2 | | [haproxy:2.6.14-alpine](master/haproxy_2.6.14-alpine.html) | 0 | 1 | 3 | 2 | -| [argocd:latest](master/quay.io_argoproj_argocd_latest.html) | 0 | 0 | 8 | 14 | -| [redis:7.0.14-alpine](master/redis_7.0.14-alpine.html) | 0 | 0 | 2 | 2 | +| [argocd:latest](master/quay.io_argoproj_argocd_latest.html) | 0 | 0 | 6 | 14 | +| [redis:7.0.15-alpine](master/redis_7.0.15-alpine.html) | 0 | 0 | 0 | 1 | | [install.yaml](master/argocd-iac-install.html) | - | - | - | - | | [namespace-install.yaml](master/argocd-iac-namespace-install.html) | - | - | - | - | -### v2.11.0-rc1 +### v2.11.0-rc2 | | Critical | High | Medium | Low | |---:|:--------:|:----:|:------:|:---:| -| [go.mod](v2.11.0-rc1/argocd-test.html) | 0 | 1 | 10 | 0 | -| [ui/yarn.lock](v2.11.0-rc1/argocd-test.html) | 0 | 0 | 1 | 0 | -| [dex:v2.38.0](v2.11.0-rc1/ghcr.io_dexidp_dex_v2.38.0.html) | 0 | 0 | 2 | 2 | -| [haproxy:2.6.14-alpine](v2.11.0-rc1/haproxy_2.6.14-alpine.html) | 0 | 1 | 3 | 2 | -| [argocd:v2.11.0-rc1](v2.11.0-rc1/quay.io_argoproj_argocd_v2.11.0-rc1.html) | 0 | 0 | 8 | 14 | -| [redis:7.0.14-alpine](v2.11.0-rc1/redis_7.0.14-alpine.html) | 0 | 0 | 2 | 2 | -| [install.yaml](v2.11.0-rc1/argocd-iac-install.html) | - | - | - | - | -| [namespace-install.yaml](v2.11.0-rc1/argocd-iac-namespace-install.html) | - | - | - | - | +| [go.mod](v2.11.0-rc2/argocd-test.html) | 0 | 1 | 10 | 0 | +| [ui/yarn.lock](v2.11.0-rc2/argocd-test.html) | 0 | 0 | 1 | 0 | +| [dex:v2.38.0](v2.11.0-rc2/ghcr.io_dexidp_dex_v2.38.0.html) | 0 | 0 | 2 | 2 | +| [haproxy:2.6.14-alpine](v2.11.0-rc2/haproxy_2.6.14-alpine.html) | 0 | 1 | 3 | 2 | +| [argocd:v2.11.0-rc2](v2.11.0-rc2/quay.io_argoproj_argocd_v2.11.0-rc2.html) | 0 | 0 | 7 | 14 | +| [redis:7.0.14-alpine](v2.11.0-rc2/redis_7.0.14-alpine.html) | 0 | 0 | 2 | 2 | +| [install.yaml](v2.11.0-rc2/argocd-iac-install.html) | - | - | - | - | +| [namespace-install.yaml](v2.11.0-rc2/argocd-iac-namespace-install.html) | - | - | - | - | -### v2.10.6 +### v2.10.7 | | Critical | High | Medium | Low | |---:|:--------:|:----:|:------:|:---:| -| [go.mod](v2.10.6/argocd-test.html) | 0 | 1 | 12 | 0 | -| [ui/yarn.lock](v2.10.6/argocd-test.html) | 0 | 0 | 1 | 0 | -| [dex:v2.37.0](v2.10.6/ghcr.io_dexidp_dex_v2.37.0.html) | 1 | 1 | 6 | 2 | -| [haproxy:2.6.14-alpine](v2.10.6/haproxy_2.6.14-alpine.html) | 0 | 1 | 3 | 2 | -| [argocd:v2.10.6](v2.10.6/quay.io_argoproj_argocd_v2.10.6.html) | 0 | 0 | 8 | 14 | -| [redis:7.0.14-alpine](v2.10.6/redis_7.0.14-alpine.html) | 0 | 0 | 2 | 2 | -| [install.yaml](v2.10.6/argocd-iac-install.html) | - | - | - | - | -| [namespace-install.yaml](v2.10.6/argocd-iac-namespace-install.html) | - | - | - | - | +| [go.mod](v2.10.7/argocd-test.html) | 0 | 1 | 12 | 0 | +| [ui/yarn.lock](v2.10.7/argocd-test.html) | 0 | 0 | 1 | 0 | +| [dex:v2.37.0](v2.10.7/ghcr.io_dexidp_dex_v2.37.0.html) | 1 | 1 | 6 | 2 | +| [haproxy:2.6.14-alpine](v2.10.7/haproxy_2.6.14-alpine.html) | 0 | 1 | 3 | 2 | +| [argocd:v2.10.7](v2.10.7/quay.io_argoproj_argocd_v2.10.7.html) | 0 | 0 | 9 | 14 | +| [redis:7.0.14-alpine](v2.10.7/redis_7.0.14-alpine.html) | 0 | 0 | 2 | 2 | +| [install.yaml](v2.10.7/argocd-iac-install.html) | - | - | - | - | +| [namespace-install.yaml](v2.10.7/argocd-iac-namespace-install.html) | - | - | - | - | -### v2.9.11 +### v2.9.12 | | Critical | High | Medium | Low | |---:|:--------:|:----:|:------:|:---:| -| [go.mod](v2.9.11/argocd-test.html) | 0 | 2 | 11 | 0 | -| [ui/yarn.lock](v2.9.11/argocd-test.html) | 0 | 0 | 1 | 0 | -| [dex:v2.37.0](v2.9.11/ghcr.io_dexidp_dex_v2.37.0.html) | 1 | 1 | 6 | 2 | -| [haproxy:2.6.14-alpine](v2.9.11/haproxy_2.6.14-alpine.html) | 0 | 1 | 3 | 2 | -| [argocd:v2.9.11](v2.9.11/quay.io_argoproj_argocd_v2.9.11.html) | 0 | 0 | 8 | 14 | -| [redis:7.0.11-alpine](v2.9.11/redis_7.0.11-alpine.html) | 1 | 1 | 6 | 2 | -| [install.yaml](v2.9.11/argocd-iac-install.html) | - | - | - | - | -| [namespace-install.yaml](v2.9.11/argocd-iac-namespace-install.html) | - | - | - | - | +| [go.mod](v2.9.12/argocd-test.html) | 0 | 2 | 11 | 0 | +| [ui/yarn.lock](v2.9.12/argocd-test.html) | 0 | 0 | 1 | 0 | +| [dex:v2.37.0](v2.9.12/ghcr.io_dexidp_dex_v2.37.0.html) | 1 | 1 | 6 | 2 | +| [haproxy:2.6.14-alpine](v2.9.12/haproxy_2.6.14-alpine.html) | 0 | 1 | 3 | 2 | +| [argocd:v2.9.12](v2.9.12/quay.io_argoproj_argocd_v2.9.12.html) | 0 | 0 | 9 | 14 | +| [redis:7.0.11-alpine](v2.9.12/redis_7.0.11-alpine.html) | 1 | 1 | 6 | 2 | +| [install.yaml](v2.9.12/argocd-iac-install.html) | - | - | - | - | +| [namespace-install.yaml](v2.9.12/argocd-iac-namespace-install.html) | - | - | - | - | -### v2.8.15 +### v2.8.16 | | Critical | High | Medium | Low | |---:|:--------:|:----:|:------:|:---:| -| [go.mod](v2.8.15/argocd-test.html) | 0 | 2 | 11 | 0 | -| [ui/yarn.lock](v2.8.15/argocd-test.html) | 0 | 0 | 1 | 0 | -| [dex:v2.37.0](v2.8.15/ghcr.io_dexidp_dex_v2.37.0.html) | 1 | 1 | 6 | 2 | -| [haproxy:2.6.14-alpine](v2.8.15/haproxy_2.6.14-alpine.html) | 0 | 1 | 3 | 2 | -| [argocd:v2.8.15](v2.8.15/quay.io_argoproj_argocd_v2.8.15.html) | 0 | 0 | 8 | 14 | -| [redis:7.0.11-alpine](v2.8.15/redis_7.0.11-alpine.html) | 1 | 1 | 6 | 2 | -| [install.yaml](v2.8.15/argocd-iac-install.html) | - | - | - | - | -| [namespace-install.yaml](v2.8.15/argocd-iac-namespace-install.html) | - | - | - | - | +| [go.mod](v2.8.16/argocd-test.html) | 0 | 2 | 11 | 0 | +| [ui/yarn.lock](v2.8.16/argocd-test.html) | 0 | 0 | 1 | 0 | +| [dex:v2.37.0](v2.8.16/ghcr.io_dexidp_dex_v2.37.0.html) | 1 | 1 | 6 | 2 | +| [haproxy:2.6.14-alpine](v2.8.16/haproxy_2.6.14-alpine.html) | 0 | 1 | 3 | 2 | +| [argocd:v2.8.16](v2.8.16/quay.io_argoproj_argocd_v2.8.16.html) | 0 | 0 | 9 | 14 | +| [redis:7.0.11-alpine](v2.8.16/redis_7.0.11-alpine.html) | 1 | 1 | 6 | 2 | +| [install.yaml](v2.8.16/argocd-iac-install.html) | - | - | - | - | +| [namespace-install.yaml](v2.8.16/argocd-iac-namespace-install.html) | - | - | - | - | diff --git a/docs/snyk/master/argocd-iac-install.html b/docs/snyk/master/argocd-iac-install.html index b538bfea3dbfa..722a0a591a4e8 100644 --- a/docs/snyk/master/argocd-iac-install.html +++ b/docs/snyk/master/argocd-iac-install.html @@ -456,7 +456,7 @@

Snyk test report

-

April 14th 2024, 12:19:42 am (UTC+00:00)

+

April 21st 2024, 12:17:41 am (UTC+00:00)

Scanned the following path: @@ -507,7 +507,7 @@

Role or ClusterRole with dangerous permissions

  • - Line number: 21035 + Line number: 21039
    • @@ -553,7 +553,7 @@

    Role or ClusterRole with dangerous permissions

  • - Line number: 20744 + Line number: 20748
    • @@ -599,7 +599,7 @@

    Role or ClusterRole with dangerous permissions

  • - Line number: 20829 + Line number: 20833
    • @@ -645,7 +645,7 @@

    Role or ClusterRole with dangerous permissions

  • - Line number: 20857 + Line number: 20861
    • @@ -691,7 +691,7 @@

    Role or ClusterRole with dangerous permissions

  • - Line number: 20887 + Line number: 20891
    • @@ -737,7 +737,7 @@

    Role or ClusterRole with dangerous permissions

  • - Line number: 20905 + Line number: 20909
    • @@ -783,7 +783,7 @@

    Role or ClusterRole with dangerous permissions

  • - Line number: 20921 + Line number: 20925
    • @@ -835,7 +835,7 @@

    Container could be running with outdated image

  • - Line number: 22215 + Line number: 22219
    • @@ -893,7 +893,7 @@

    Container has no CPU limit

  • - Line number: 21512 + Line number: 21516
    • @@ -951,7 +951,7 @@

    Container has no CPU limit

  • - Line number: 21763 + Line number: 21767
    • @@ -1009,7 +1009,7 @@

    Container has no CPU limit

  • - Line number: 21729 + Line number: 21733
    • @@ -1067,7 +1067,7 @@

    Container has no CPU limit

  • - Line number: 21823 + Line number: 21827
    • @@ -1125,7 +1125,7 @@

    Container has no CPU limit

  • - Line number: 21922 + Line number: 21926
    • @@ -1183,7 +1183,7 @@

    Container has no CPU limit

  • - Line number: 22215 + Line number: 22219
    • @@ -1241,7 +1241,7 @@

    Container has no CPU limit

  • - Line number: 21979 + Line number: 21983
    • @@ -1299,7 +1299,7 @@

    Container has no CPU limit

  • - Line number: 22300 + Line number: 22304
    • @@ -1357,7 +1357,7 @@

    Container has no CPU limit

  • - Line number: 22646 + Line number: 22650
    • @@ -1409,7 +1409,7 @@

    Container is running with multiple open ports

  • - Line number: 21743 + Line number: 21747
    • @@ -1461,7 +1461,7 @@

    Container is running without liveness probe

  • - Line number: 21512 + Line number: 21516
    • @@ -1513,7 +1513,7 @@

    Container is running without liveness probe

  • - Line number: 21729 + Line number: 21733
    • @@ -1565,7 +1565,7 @@

    Container is running without liveness probe

  • - Line number: 21922 + Line number: 21926
    • @@ -1623,7 +1623,7 @@

    Container is running without memory limit

  • - Line number: 21512 + Line number: 21516
    • @@ -1681,7 +1681,7 @@

    Container is running without memory limit

  • - Line number: 21729 + Line number: 21733
    • @@ -1739,7 +1739,7 @@

    Container is running without memory limit

  • - Line number: 21763 + Line number: 21767
    • @@ -1797,7 +1797,7 @@

    Container is running without memory limit

  • - Line number: 21823 + Line number: 21827
    • @@ -1855,7 +1855,7 @@

    Container is running without memory limit

  • - Line number: 21922 + Line number: 21926
    • @@ -1913,7 +1913,7 @@

    Container is running without memory limit

  • - Line number: 22215 + Line number: 22219
    • @@ -1971,7 +1971,7 @@

    Container is running without memory limit

  • - Line number: 21979 + Line number: 21983
    • @@ -2029,7 +2029,7 @@

    Container is running without memory limit

  • - Line number: 22300 + Line number: 22304
    • @@ -2087,7 +2087,7 @@

    Container is running without memory limit

  • - Line number: 22646 + Line number: 22650
    • @@ -2143,7 +2143,7 @@

    Container's or Pod's UID could clash with hos
  • - Line number: 21653 + Line number: 21657
    • @@ -2199,7 +2199,7 @@

    Container's or Pod's UID could clash with hos
  • - Line number: 21771 + Line number: 21775
    • @@ -2255,7 +2255,7 @@

    Container's or Pod's UID could clash with hos
  • - Line number: 21746 + Line number: 21750
    • @@ -2311,7 +2311,7 @@

    Container's or Pod's UID could clash with hos
  • - Line number: 21856 + Line number: 21860
    • @@ -2367,7 +2367,7 @@

    Container's or Pod's UID could clash with hos
  • - Line number: 21932 + Line number: 21936
    • @@ -2423,7 +2423,7 @@

    Container's or Pod's UID could clash with hos
  • - Line number: 22222 + Line number: 22226
    • @@ -2479,7 +2479,7 @@

    Container's or Pod's UID could clash with hos
  • - Line number: 22188 + Line number: 22192
    • @@ -2535,7 +2535,7 @@

    Container's or Pod's UID could clash with hos
  • - Line number: 22556 + Line number: 22560
    • @@ -2591,7 +2591,7 @@

    Container's or Pod's UID could clash with hos
  • - Line number: 22836 + Line number: 22840
    • diff --git a/docs/snyk/master/argocd-iac-namespace-install.html b/docs/snyk/master/argocd-iac-namespace-install.html index e0c6ffd9641d4..aaba566ec489b 100644 --- a/docs/snyk/master/argocd-iac-namespace-install.html +++ b/docs/snyk/master/argocd-iac-namespace-install.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    April 14th 2024, 12:19:50 am (UTC+00:00)

    +

    April 21st 2024, 12:17:50 am (UTC+00:00)

    Scanned the following path: diff --git a/docs/snyk/master/argocd-test.html b/docs/snyk/master/argocd-test.html index 679420771bb59..767993c021d68 100644 --- a/docs/snyk/master/argocd-test.html +++ b/docs/snyk/master/argocd-test.html @@ -7,7 +7,7 @@ Snyk test report - + @@ -456,7 +456,7 @@

    Snyk test report

    -

    April 14th 2024, 12:17:45 am (UTC+00:00)

    +

    April 21st 2024, 12:15:40 am (UTC+00:00)

    Scanned the following paths: @@ -467,9 +467,9 @@

    Snyk test report

    -
    9 known vulnerabilities
    -
    170 vulnerable dependency paths
    -
    2039 dependencies
    +
    8 known vulnerabilities
    +
    31 vulnerable dependency paths
    +
    2043 dependencies
    @@ -477,2668 +477,6 @@

    Snyk test report

    -
    -

    Allocation of Resources Without Limits or Throttling

    -
    - -
    - high severity -
    - -
    - -
      -
    • - Manifest file: /argo-cd/argoproj/argo-cd/v2 go.mod -
      • -
    • - Package Manager: golang -
      • -
    • - Vulnerable module: - - golang.org/x/net/http2 -
      • - -
    • Introduced through: - - - github.com/argoproj/argo-cd/v2@0.0.0, k8s.io/apimachinery/pkg/util/net@0.26.11 and others -
      • -
    - -
    - - -

    Detailed paths

    - -
      -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/soheilhy/cmux@0.1.5 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/client-go/rest@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/improbable-eng/grpc-web/go/grpcweb@0.15.0 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/client-go/transport@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - google.golang.org/grpc@1.59.0 - - google.golang.org/grpc/internal/transport@1.59.0 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/client-go/discovery@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/client-go/transport/spdy@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/argoproj/pkg/kubeclientmetrics@#d56162821bd1 - - k8s.io/client-go/rest@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/client-go/testing@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/client-go/dynamic@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/client-go/tools/cache@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/client-go/plugin/pkg/client/auth/azure@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/client-go/plugin/pkg/client/auth/gcp@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/client-go/plugin/pkg/client/auth/oidc@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/client-go/tools/record@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/client-go/rest@0.26.11 - - k8s.io/client-go/transport@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/grpc-ecosystem/go-grpc-middleware@1.4.0 - - google.golang.org/grpc@1.59.0 - - google.golang.org/grpc/internal/transport@1.59.0 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/grpc-ecosystem/go-grpc-middleware/auth@1.4.0 - - google.golang.org/grpc@1.59.0 - - google.golang.org/grpc/internal/transport@1.59.0 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/grpc-ecosystem/go-grpc-middleware/retry@1.4.0 - - google.golang.org/grpc@1.59.0 - - google.golang.org/grpc/internal/transport@1.59.0 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/grpc-ecosystem/go-grpc-prometheus@1.2.0 - - google.golang.org/grpc@1.59.0 - - google.golang.org/grpc/internal/transport@1.59.0 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc@1.21.0 - - google.golang.org/grpc@1.59.0 - - google.golang.org/grpc/internal/transport@1.59.0 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/grpc-ecosystem/go-grpc-middleware/logging/logrus@1.4.0 - - google.golang.org/grpc@1.59.0 - - google.golang.org/grpc/internal/transport@1.59.0 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc@0.42.0 - - google.golang.org/grpc@1.59.0 - - google.golang.org/grpc/internal/transport@1.59.0 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - google.golang.org/grpc/health/grpc_health_v1@1.59.0 - - google.golang.org/grpc@1.59.0 - - google.golang.org/grpc/internal/transport@1.59.0 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/kubectl/pkg/util/openapi@0.26.11 - - k8s.io/client-go/discovery@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/client-go/tools/clientcmd@0.26.11 - - k8s.io/client-go/tools/auth@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/argoproj/notifications-engine/pkg/controller@#2daee6022f41 - - k8s.io/client-go/tools/cache@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/client-go/discovery/fake@0.26.11 - - k8s.io/client-go/testing@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/client-go/kubernetes/fake@0.26.11 - - k8s.io/client-go/testing@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - sigs.k8s.io/controller-runtime/pkg/client@0.14.7 - - k8s.io/client-go/dynamic@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/client-go/informers/apps/v1@0.26.11 - - k8s.io/client-go/tools/cache@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/client-go/informers@0.26.11 - - k8s.io/client-go/tools/cache@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/client-go/listers/core/v1@0.26.11 - - k8s.io/client-go/tools/cache@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/client-go/tools/remotecommand@0.26.11 - - k8s.io/client-go/transport/spdy@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 - - google.golang.org/api/chat/v1@0.132.0 - - google.golang.org/api/transport/http@0.132.0 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/client-go/pkg/apis/clientauthentication/v1beta1@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/api/rbac/v1@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/api/core/v1@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/apimachinery/pkg/api/errors@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/argoproj/gitops-engine/pkg/sync/common@#5fd9f449e757 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/apimachinery/pkg/api/equality@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/client-go/transport/spdy@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - k8s.io/client-go/transport@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/argoproj/pkg/kubeclientmetrics@#d56162821bd1 - - k8s.io/client-go/rest@0.26.11 - - k8s.io/client-go/transport@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/client-go/testing@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - k8s.io/client-go/transport@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/client-go/plugin/pkg/client/auth/azure@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - k8s.io/client-go/transport@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/client-go/plugin/pkg/client/auth/gcp@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - k8s.io/client-go/transport@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/client-go/plugin/pkg/client/auth/oidc@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - k8s.io/client-go/transport@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/improbable-eng/grpc-web/go/grpcweb@0.15.0 - - google.golang.org/grpc/health/grpc_health_v1@1.59.0 - - google.golang.org/grpc@1.59.0 - - google.golang.org/grpc/internal/transport@1.59.0 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - google.golang.org/grpc/reflection@1.59.0 - - google.golang.org/grpc/reflection/grpc_reflection_v1alpha@1.59.0 - - google.golang.org/grpc@1.59.0 - - google.golang.org/grpc/internal/transport@1.59.0 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - google.golang.org/grpc/health@1.59.0 - - google.golang.org/grpc/health/grpc_health_v1@1.59.0 - - google.golang.org/grpc@1.59.0 - - google.golang.org/grpc/internal/transport@1.59.0 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/argoproj/gitops-engine/pkg/cache@#5fd9f449e757 - - k8s.io/kubectl/pkg/util/openapi@0.26.11 - - k8s.io/client-go/discovery@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/argoproj/gitops-engine/pkg/sync@#5fd9f449e757 - - k8s.io/kubectl/pkg/util/openapi@0.26.11 - - k8s.io/client-go/discovery@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/argoproj/gitops-engine/pkg/utils/kube@#5fd9f449e757 - - k8s.io/kubectl/pkg/util/openapi@0.26.11 - - k8s.io/client-go/discovery@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/argoproj/notifications-engine/pkg/api@#2daee6022f41 - - k8s.io/client-go/listers/core/v1@0.26.11 - - k8s.io/client-go/tools/cache@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/argoproj/notifications-engine/pkg/cmd@#2daee6022f41 - - k8s.io/client-go/tools/clientcmd@0.26.11 - - k8s.io/client-go/tools/auth@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - sigs.k8s.io/controller-runtime/pkg/event@0.14.7 - - sigs.k8s.io/controller-runtime/pkg/client@0.14.7 - - k8s.io/client-go/dynamic@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/client-go/informers/core/v1@0.26.11 - - k8s.io/client-go/listers/core/v1@0.26.11 - - k8s.io/client-go/tools/cache@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - sigs.k8s.io/controller-runtime/pkg/cache@0.14.7 - - sigs.k8s.io/controller-runtime/pkg/cache/internal@0.14.7 - - k8s.io/client-go/tools/cache@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/kubectl/pkg/util/term@0.26.11 - - k8s.io/client-go/tools/remotecommand@0.26.11 - - k8s.io/client-go/transport/spdy@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - sigs.k8s.io/controller-runtime/pkg/metrics@0.14.7 - - k8s.io/client-go/tools/leaderelection@0.26.11 - - k8s.io/client-go/tools/leaderelection/resourcelock@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 - - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 - - google.golang.org/api/chat/v1@0.132.0 - - google.golang.org/api/transport/http@0.132.0 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/argoproj/notifications-engine/pkg/cmd@#2daee6022f41 - - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 - - google.golang.org/api/chat/v1@0.132.0 - - google.golang.org/api/transport/http@0.132.0 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/Azure/kubelogin/pkg/token@0.0.20 - - k8s.io/client-go/pkg/apis/clientauthentication/v1beta1@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/client-go/dynamic@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/argoproj/gitops-engine/pkg/sync/ignore@#5fd9f449e757 - - k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/argoproj/gitops-engine/pkg/sync/syncwaves@#5fd9f449e757 - - k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/argoproj/gitops-engine/pkg/utils/testing@#5fd9f449e757 - - k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/apimachinery/pkg/util/strategicpatch@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - sigs.k8s.io/controller-runtime@0.14.7 - - sigs.k8s.io/controller-runtime/pkg/scheme@0.14.7 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/client-go/listers/core/v1@0.26.11 - - k8s.io/api/core/v1@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/kubectl/pkg/util/resource@0.26.11 - - k8s.io/api/core/v1@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/argoproj/gitops-engine/pkg/health@#5fd9f449e757 - - k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/client-go/util/retry@0.26.11 - - k8s.io/apimachinery/pkg/api/errors@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/apimachinery/pkg/util/managedfields@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/client-go/tools/cache@0.26.11 - - k8s.io/client-go/tools/pager@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/client-go/tools/portforward@0.26.11 - - k8s.io/api/core/v1@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/apiextensions-apiserver/pkg/apis/apiextensions/v1@0.26.11 - - k8s.io/apimachinery/pkg/api/equality@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/apimachinery/pkg/api/validation@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1/validation@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/client-go/discovery/fake@0.26.11 - - k8s.io/client-go/testing@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - k8s.io/client-go/transport@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/client-go/kubernetes/fake@0.26.11 - - k8s.io/client-go/testing@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - k8s.io/client-go/transport@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/client-go/tools/remotecommand@0.26.11 - - k8s.io/client-go/transport/spdy@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - k8s.io/client-go/transport@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/argoproj/gitops-engine/pkg/health@#5fd9f449e757 - - github.com/argoproj/gitops-engine/pkg/utils/kube@#5fd9f449e757 - - k8s.io/kubectl/pkg/util/openapi@0.26.11 - - k8s.io/client-go/discovery@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/argoproj/gitops-engine/pkg/sync/common@#5fd9f449e757 - - github.com/argoproj/gitops-engine/pkg/utils/kube@#5fd9f449e757 - - k8s.io/kubectl/pkg/util/openapi@0.26.11 - - k8s.io/client-go/discovery@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - sigs.k8s.io/controller-runtime/pkg/controller/controllerutil@0.14.7 - - sigs.k8s.io/controller-runtime/pkg/client/apiutil@0.14.7 - - k8s.io/client-go/restmapper@0.26.11 - - k8s.io/client-go/discovery@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - sigs.k8s.io/controller-runtime/pkg/predicate@0.14.7 - - sigs.k8s.io/controller-runtime/pkg/runtime/inject@0.14.7 - - sigs.k8s.io/controller-runtime/pkg/client@0.14.7 - - k8s.io/client-go/dynamic@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - sigs.k8s.io/controller-runtime/pkg/envtest@0.14.7 - - sigs.k8s.io/controller-runtime/pkg/internal/testing/controlplane@0.14.7 - - k8s.io/client-go/tools/clientcmd@0.26.11 - - k8s.io/client-go/tools/auth@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - sigs.k8s.io/controller-runtime/pkg/handler@0.14.7 - - sigs.k8s.io/controller-runtime/pkg/runtime/inject@0.14.7 - - sigs.k8s.io/controller-runtime/pkg/client@0.14.7 - - k8s.io/client-go/dynamic@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/argoproj/notifications-engine/pkg/api@#2daee6022f41 - - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 - - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 - - google.golang.org/api/chat/v1@0.132.0 - - google.golang.org/api/transport/http@0.132.0 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/argoproj/notifications-engine/pkg/controller@#2daee6022f41 - - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 - - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 - - google.golang.org/api/chat/v1@0.132.0 - - google.golang.org/api/transport/http@0.132.0 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/argoproj/gitops-engine/pkg/diff@#5fd9f449e757 - - k8s.io/apimachinery/pkg/util/strategicpatch@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/apimachinery/pkg/runtime/serializer@0.26.11 - - k8s.io/apimachinery/pkg/runtime/serializer/versioning@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/client-go/informers/core/v1@0.26.11 - - k8s.io/client-go/listers/core/v1@0.26.11 - - k8s.io/api/core/v1@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/client-go/kubernetes/scheme@0.26.11 - - k8s.io/api/storage/v1beta1@0.26.11 - - k8s.io/api/core/v1@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/client-go/tools/record@0.26.11 - - k8s.io/client-go/tools/reference@0.26.11 - - k8s.io/api/core/v1@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/argoproj/gitops-engine/pkg/sync/hook@#5fd9f449e757 - - github.com/argoproj/gitops-engine/pkg/sync/hook/helm@#5fd9f449e757 - - github.com/argoproj/gitops-engine/pkg/sync/common@#5fd9f449e757 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/argoproj/notifications-engine/pkg/controller@#2daee6022f41 - - k8s.io/client-go/tools/cache@0.26.11 - - k8s.io/client-go/tools/pager@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/client-go/informers/apps/v1@0.26.11 - - k8s.io/client-go/tools/cache@0.26.11 - - k8s.io/client-go/tools/pager@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/client-go/informers@0.26.11 - - k8s.io/client-go/tools/cache@0.26.11 - - k8s.io/client-go/tools/pager@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - sigs.k8s.io/controller-runtime/pkg/client@0.14.7 - - k8s.io/client-go/dynamic@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/kubectl/pkg/util/term@0.26.11 - - k8s.io/client-go/tools/remotecommand@0.26.11 - - k8s.io/client-go/transport/spdy@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - k8s.io/client-go/transport@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - sigs.k8s.io/controller-runtime/pkg/metrics@0.14.7 - - k8s.io/client-go/tools/leaderelection@0.26.11 - - k8s.io/client-go/tools/leaderelection/resourcelock@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - k8s.io/client-go/transport@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 - - google.golang.org/api/chat/v1@0.132.0 - - google.golang.org/api/transport/http@0.132.0 - - google.golang.org/api/option@0.132.0 - - google.golang.org/grpc@1.59.0 - - google.golang.org/grpc/internal/transport@1.59.0 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/grpc-ecosystem/go-grpc-middleware/tags/logrus@1.4.0 - - github.com/grpc-ecosystem/go-grpc-middleware/logging/logrus/ctxlogrus@1.4.0 - - github.com/grpc-ecosystem/go-grpc-middleware/tags@1.4.0 - - github.com/grpc-ecosystem/go-grpc-middleware@1.4.0 - - google.golang.org/grpc@1.59.0 - - google.golang.org/grpc/internal/transport@1.59.0 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/argoproj/notifications-engine/pkg/api@#2daee6022f41 - - k8s.io/client-go/listers/core/v1@0.26.11 - - k8s.io/api/core/v1@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/client-go/kubernetes@0.26.11 - - k8s.io/client-go/kubernetes/typed/storage/v1beta1@0.26.11 - - k8s.io/client-go/applyconfigurations/storage/v1beta1@0.26.11 - - k8s.io/client-go/applyconfigurations/meta/v1@0.26.11 - - k8s.io/client-go/discovery@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/client-go/tools/clientcmd@0.26.11 - - k8s.io/client-go/tools/clientcmd/api/latest@0.26.11 - - k8s.io/apimachinery/pkg/runtime/serializer/versioning@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/client-go/discovery@0.26.11 - - k8s.io/client-go/kubernetes/scheme@0.26.11 - - k8s.io/api/storage/v1beta1@0.26.11 - - k8s.io/api/core/v1@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - sigs.k8s.io/controller-runtime/pkg/event@0.14.7 - - sigs.k8s.io/controller-runtime/pkg/client@0.14.7 - - k8s.io/client-go/dynamic@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - sigs.k8s.io/controller-runtime/pkg/cache@0.14.7 - - sigs.k8s.io/controller-runtime/pkg/cache/internal@0.14.7 - - k8s.io/client-go/tools/cache@0.26.11 - - k8s.io/client-go/tools/pager@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 - - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 - - google.golang.org/api/chat/v1@0.132.0 - - google.golang.org/api/transport/http@0.132.0 - - google.golang.org/api/option@0.132.0 - - google.golang.org/grpc@1.59.0 - - google.golang.org/grpc/internal/transport@1.59.0 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/argoproj/gitops-engine/pkg/diff@#5fd9f449e757 - - k8s.io/kubectl/pkg/cmd/util@0.26.11 - - k8s.io/kubectl/pkg/validation@0.26.11 - - k8s.io/cli-runtime/pkg/resource@0.26.11 - - k8s.io/client-go/restmapper@0.26.11 - - k8s.io/client-go/discovery@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/argoproj/gitops-engine/pkg/sync/hook@#5fd9f449e757 - - github.com/argoproj/gitops-engine/pkg/sync/hook/helm@#5fd9f449e757 - - github.com/argoproj/gitops-engine/pkg/sync/common@#5fd9f449e757 - - github.com/argoproj/gitops-engine/pkg/utils/kube@#5fd9f449e757 - - k8s.io/kubectl/pkg/util/openapi@0.26.11 - - k8s.io/client-go/discovery@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/argoproj/gitops-engine/pkg/sync/syncwaves@#5fd9f449e757 - - github.com/argoproj/gitops-engine/pkg/sync/hook/helm@#5fd9f449e757 - - github.com/argoproj/gitops-engine/pkg/sync/common@#5fd9f449e757 - - github.com/argoproj/gitops-engine/pkg/utils/kube@#5fd9f449e757 - - k8s.io/kubectl/pkg/util/openapi@0.26.11 - - k8s.io/client-go/discovery@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - sigs.k8s.io/controller-runtime/pkg/source@0.14.7 - - sigs.k8s.io/controller-runtime/pkg/source/internal@0.14.7 - - sigs.k8s.io/controller-runtime/pkg/predicate@0.14.7 - - sigs.k8s.io/controller-runtime/pkg/runtime/inject@0.14.7 - - sigs.k8s.io/controller-runtime/pkg/client@0.14.7 - - k8s.io/client-go/dynamic@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - sigs.k8s.io/controller-runtime/pkg/builder@0.14.7 - - sigs.k8s.io/controller-runtime/pkg/webhook/admission@0.14.7 - - sigs.k8s.io/controller-runtime/pkg/webhook/internal/metrics@0.14.7 - - sigs.k8s.io/controller-runtime/pkg/metrics@0.14.7 - - k8s.io/client-go/tools/leaderelection@0.26.11 - - k8s.io/client-go/tools/leaderelection/resourcelock@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/argoproj/notifications-engine/pkg/cmd@#2daee6022f41 - - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 - - google.golang.org/api/chat/v1@0.132.0 - - google.golang.org/api/transport/http@0.132.0 - - google.golang.org/api/option@0.132.0 - - google.golang.org/grpc@1.59.0 - - google.golang.org/grpc/internal/transport@1.59.0 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - sigs.k8s.io/controller-runtime/pkg/builder@0.14.7 - - sigs.k8s.io/controller-runtime/pkg/webhook/conversion@0.14.7 - - k8s.io/apimachinery/pkg/runtime/serializer@0.26.11 - - k8s.io/apimachinery/pkg/runtime/serializer/versioning@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - sigs.k8s.io/controller-runtime/pkg/envtest@0.14.7 - - sigs.k8s.io/controller-runtime/pkg/webhook/conversion@0.14.7 - - k8s.io/apimachinery/pkg/runtime/serializer@0.26.11 - - k8s.io/apimachinery/pkg/runtime/serializer/versioning@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/argoproj/notifications-engine/pkg/cmd@#2daee6022f41 - - k8s.io/client-go/tools/clientcmd@0.26.11 - - k8s.io/client-go/tools/clientcmd/api/latest@0.26.11 - - k8s.io/apimachinery/pkg/runtime/serializer/versioning@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/kubectl/pkg/util/openapi@0.26.11 - - k8s.io/client-go/discovery@0.26.11 - - k8s.io/client-go/kubernetes/scheme@0.26.11 - - k8s.io/api/storage/v1beta1@0.26.11 - - k8s.io/api/core/v1@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - k8s.io/client-go/kubernetes@0.26.11 - - k8s.io/client-go/kubernetes/typed/storage/v1beta1@0.26.11 - - k8s.io/client-go/kubernetes/scheme@0.26.11 - - k8s.io/api/storage/v1beta1@0.26.11 - - k8s.io/api/core/v1@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/argoproj/gitops-engine/pkg/utils/kube/scheme@#5fd9f449e757 - - k8s.io/kubernetes/pkg/apis/storage/install@1.26.11 - - k8s.io/kubernetes/pkg/apis/storage/v1alpha1@1.26.11 - - k8s.io/api/storage/v1alpha1@0.26.11 - - k8s.io/api/core/v1@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - sigs.k8s.io/controller-runtime/pkg/predicate@0.14.7 - - sigs.k8s.io/controller-runtime/pkg/runtime/inject@0.14.7 - - sigs.k8s.io/controller-runtime/pkg/client@0.14.7 - - k8s.io/client-go/dynamic@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - sigs.k8s.io/controller-runtime/pkg/handler@0.14.7 - - sigs.k8s.io/controller-runtime/pkg/runtime/inject@0.14.7 - - sigs.k8s.io/controller-runtime/pkg/client@0.14.7 - - k8s.io/client-go/dynamic@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/argoproj/notifications-engine/pkg/api@#2daee6022f41 - - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 - - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 - - google.golang.org/api/chat/v1@0.132.0 - - google.golang.org/api/transport/http@0.132.0 - - google.golang.org/api/option@0.132.0 - - google.golang.org/grpc@1.59.0 - - google.golang.org/grpc/internal/transport@1.59.0 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/argoproj/gitops-engine/pkg/sync/ignore@#5fd9f449e757 - - github.com/argoproj/gitops-engine/pkg/sync/hook@#5fd9f449e757 - - github.com/argoproj/gitops-engine/pkg/sync/hook/helm@#5fd9f449e757 - - github.com/argoproj/gitops-engine/pkg/sync/common@#5fd9f449e757 - - github.com/argoproj/gitops-engine/pkg/utils/kube@#5fd9f449e757 - - k8s.io/kubectl/pkg/util/openapi@0.26.11 - - k8s.io/client-go/discovery@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - sigs.k8s.io/controller-runtime/pkg/controller@0.14.7 - - sigs.k8s.io/controller-runtime/pkg/source@0.14.7 - - sigs.k8s.io/controller-runtime/pkg/source/internal@0.14.7 - - sigs.k8s.io/controller-runtime/pkg/predicate@0.14.7 - - sigs.k8s.io/controller-runtime/pkg/runtime/inject@0.14.7 - - sigs.k8s.io/controller-runtime/pkg/client@0.14.7 - - k8s.io/client-go/dynamic@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - sigs.k8s.io/controller-runtime@0.14.7 - - sigs.k8s.io/controller-runtime/pkg/manager@0.14.7 - - sigs.k8s.io/controller-runtime/pkg/webhook@0.14.7 - - sigs.k8s.io/controller-runtime/pkg/webhook/internal/metrics@0.14.7 - - sigs.k8s.io/controller-runtime/pkg/metrics@0.14.7 - - k8s.io/client-go/tools/leaderelection@0.26.11 - - k8s.io/client-go/tools/leaderelection/resourcelock@0.26.11 - - k8s.io/client-go/rest@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/argoproj/notifications-engine/pkg/controller@#2daee6022f41 - - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 - - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 - - google.golang.org/api/chat/v1@0.132.0 - - google.golang.org/api/transport/http@0.132.0 - - google.golang.org/api/option@0.132.0 - - google.golang.org/grpc@1.59.0 - - google.golang.org/grpc/internal/transport@1.59.0 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/argoproj/gitops-engine/pkg/cache@#5fd9f449e757 - - k8s.io/kubectl/pkg/util/openapi@0.26.11 - - k8s.io/client-go/discovery@0.26.11 - - k8s.io/client-go/kubernetes/scheme@0.26.11 - - k8s.io/api/storage/v1beta1@0.26.11 - - k8s.io/api/core/v1@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/argoproj/gitops-engine/pkg/sync@#5fd9f449e757 - - k8s.io/kubectl/pkg/util/openapi@0.26.11 - - k8s.io/client-go/discovery@0.26.11 - - k8s.io/client-go/kubernetes/scheme@0.26.11 - - k8s.io/api/storage/v1beta1@0.26.11 - - k8s.io/api/core/v1@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/argoproj/gitops-engine/pkg/utils/kube@#5fd9f449e757 - - k8s.io/kubectl/pkg/util/openapi@0.26.11 - - k8s.io/client-go/discovery@0.26.11 - - k8s.io/client-go/kubernetes/scheme@0.26.11 - - k8s.io/api/storage/v1beta1@0.26.11 - - k8s.io/api/core/v1@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - sigs.k8s.io/controller-runtime/pkg/controller/controllerutil@0.14.7 - - sigs.k8s.io/controller-runtime/pkg/client/apiutil@0.14.7 - - k8s.io/client-go/restmapper@0.26.11 - - k8s.io/client-go/discovery@0.26.11 - - k8s.io/client-go/kubernetes/scheme@0.26.11 - - k8s.io/api/storage/v1beta1@0.26.11 - - k8s.io/api/core/v1@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - sigs.k8s.io/controller-runtime/pkg/source@0.14.7 - - sigs.k8s.io/controller-runtime/pkg/source/internal@0.14.7 - - sigs.k8s.io/controller-runtime/pkg/predicate@0.14.7 - - sigs.k8s.io/controller-runtime/pkg/runtime/inject@0.14.7 - - sigs.k8s.io/controller-runtime/pkg/client@0.14.7 - - k8s.io/client-go/dynamic@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - sigs.k8s.io/controller-runtime/pkg/controller@0.14.7 - - sigs.k8s.io/controller-runtime/pkg/source@0.14.7 - - sigs.k8s.io/controller-runtime/pkg/source/internal@0.14.7 - - sigs.k8s.io/controller-runtime/pkg/predicate@0.14.7 - - sigs.k8s.io/controller-runtime/pkg/runtime/inject@0.14.7 - - sigs.k8s.io/controller-runtime/pkg/client@0.14.7 - - k8s.io/client-go/dynamic@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1/unstructured@0.26.11 - - k8s.io/apimachinery/pkg/apis/meta/v1@0.26.11 - - k8s.io/apimachinery/pkg/watch@0.26.11 - - k8s.io/apimachinery/pkg/util/net@0.26.11 - - golang.org/x/net/http2@0.19.0 - - - -
      • -
    - -
    - -
    - -

    Overview

    -

    golang.org/x/net/http2 is a work-in-progress HTTP/2 implementation for Go.

    -

    Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling when reading header data from CONTINUATION frames. As part of the HPACK flow, all incoming HEADERS and CONTINUATION frames are read even if their payloads exceed MaxHeaderBytes and will be discarded. An attacker can send excessive data over a connection to render it unresponsive.

    -

    Remediation

    -

    Upgrade golang.org/x/net/http2 to version 0.23.0 or higher.

    -

    References

    - - -
    - -
    -

    More about this vulnerability

    -
    - -

    LGPL-3.0 license

    @@ -3502,7 +840,7 @@

    MPL-2.0 license

  • Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0, code.gitea.io/sdk/gitea@0.15.1 and others + github.com/argoproj/argo-cd/v2@0.0.0, code.gitea.io/sdk/gitea@0.18.0 and others
    • @@ -3516,9 +854,9 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - code.gitea.io/sdk/gitea@0.15.1 + code.gitea.io/sdk/gitea@0.18.0 - github.com/hashicorp/go-version@1.2.1 + github.com/hashicorp/go-version@1.6.0 diff --git a/docs/snyk/master/ghcr.io_dexidp_dex_v2.38.0.html b/docs/snyk/master/ghcr.io_dexidp_dex_v2.38.0.html index db92e304fbac9..ed8c2460a3b06 100644 --- a/docs/snyk/master/ghcr.io_dexidp_dex_v2.38.0.html +++ b/docs/snyk/master/ghcr.io_dexidp_dex_v2.38.0.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    April 14th 2024, 12:17:54 am (UTC+00:00)

    +

    April 21st 2024, 12:15:50 am (UTC+00:00)

    Scanned the following paths: @@ -546,6 +546,7 @@

    Remediation

    Upgrade golang.org/x/net/http2 to version 0.23.0 or higher.

    References

      +
    • Github Commit
    • GitHub Commit
    • GitHub Issue
    • Go Advisory
      • diff --git a/docs/snyk/master/haproxy_2.6.14-alpine.html b/docs/snyk/master/haproxy_2.6.14-alpine.html index 5207780bc6e2f..ea7a7364ba882 100644 --- a/docs/snyk/master/haproxy_2.6.14-alpine.html +++ b/docs/snyk/master/haproxy_2.6.14-alpine.html @@ -456,7 +456,7 @@

      Snyk test report

      -

      April 14th 2024, 12:17:59 am (UTC+00:00)

      +

      April 21st 2024, 12:15:57 am (UTC+00:00)

      Scanned the following path: diff --git a/docs/snyk/master/quay.io_argoproj_argocd_latest.html b/docs/snyk/master/quay.io_argoproj_argocd_latest.html index 671187c9b997a..4c3fc071322f4 100644 --- a/docs/snyk/master/quay.io_argoproj_argocd_latest.html +++ b/docs/snyk/master/quay.io_argoproj_argocd_latest.html @@ -7,7 +7,7 @@ Snyk test report - + @@ -456,7 +456,7 @@

      Snyk test report

      -

      April 14th 2024, 12:18:17 am (UTC+00:00)

      +

      April 21st 2024, 12:16:16 am (UTC+00:00)

      Scanned the following paths: @@ -470,9 +470,9 @@

      Snyk test report

      -
      30 known vulnerabilities
      -
      174 vulnerable dependency paths
      -
      2277 dependencies
      +
      28 known vulnerabilities
      +
      161 vulnerable dependency paths
      +
      2281 dependencies
      @@ -492,7 +492,7 @@

      Allocation of Resources Without Limits or Throttling

    • - Manifest file: quay.io/argoproj/argocd:latest/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:latest/helm/v3 /usr/local/bin/helm
    • Package Manager: golang @@ -505,7 +505,7 @@

      Allocation of Resources Without Limits or Throttling

      Introduced through: - github.com/argoproj/argo-cd/v2@* and golang.org/x/net/http2@v0.19.0 + helm.sh/helm/v3@* and golang.org/x/net/http2@v0.17.0
    @@ -516,15 +516,6 @@

    Allocation of Resources Without Limits or Throttling

    Detailed paths
      -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@* - - golang.org/x/net/http2@v0.19.0 - - - -
    • Introduced through: helm.sh/helm/v3@* @@ -547,6 +538,7 @@

      Remediation

      Upgrade golang.org/x/net/http2 to version 0.23.0 or higher.

      References

        +
      • Github Commit
      • GitHub Commit
      • GitHub Issue
      • Go Advisory
        • @@ -660,7 +652,7 @@

        CVE-2023-51767

      • Introduced through: - docker-image|quay.io/argoproj/argocd@latest and openssh/openssh-client@1:8.9p1-3ubuntu0.6 + docker-image|quay.io/argoproj/argocd@latest and openssh/openssh-client@1:8.9p1-3ubuntu0.7
      @@ -675,7 +667,7 @@

      Detailed paths

      Introduced through: docker-image|quay.io/argoproj/argocd@latest - openssh/openssh-client@1:8.9p1-3ubuntu0.6 + openssh/openssh-client@1:8.9p1-3ubuntu0.7 @@ -1055,7 +1047,7 @@

      Detailed paths

      Introduced through: docker-image|quay.io/argoproj/argocd@latest - openssh/openssh-client@1:8.9p1-3ubuntu0.6 + openssh/openssh-client@1:8.9p1-3ubuntu0.7 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -1275,7 +1267,7 @@

      Detailed paths

      Introduced through: docker-image|quay.io/argoproj/argocd@latest - openssh/openssh-client@1:8.9p1-3ubuntu0.6 + openssh/openssh-client@1:8.9p1-3ubuntu0.7 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -1495,7 +1487,7 @@

      Detailed paths

      Introduced through: docker-image|quay.io/argoproj/argocd@latest - openssh/openssh-client@1:8.9p1-3ubuntu0.6 + openssh/openssh-client@1:8.9p1-3ubuntu0.7 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -1642,282 +1634,6 @@

      Detailed paths

      More about this vulnerability

    -
    -
    -

    Information Exposure

    -
    - -
    - medium severity -
    - -
    - -
      -
    • - Manifest file: quay.io/argoproj/argocd:latest/argoproj/argocd Dockerfile -
      • -
    • - Package Manager: ubuntu:22.04 -
      • -
    • - Vulnerable module: - - gnutls28/libgnutls30 -
      • - -
    • Introduced through: - - docker-image|quay.io/argoproj/argocd@latest and gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - -
      • -
    - -
    - - -

    Detailed paths

    - -
      -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@latest - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
      • -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@latest - - apt@2.4.12 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
      • -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@latest - - gnupg2/dirmngr@2.2.27-3ubuntu2.1 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
      • -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@latest - - git@1:2.34.1-1ubuntu1.10 - - curl/libcurl3-gnutls@7.81.0-1ubuntu1.16 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
      • -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@latest - - git@1:2.34.1-1ubuntu1.10 - - curl/libcurl3-gnutls@7.81.0-1ubuntu1.16 - - openldap/libldap-2.5-0@2.5.17+dfsg-0ubuntu0.22.04.1 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
      • -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@latest - - git@1:2.34.1-1ubuntu1.10 - - curl/libcurl3-gnutls@7.81.0-1ubuntu1.16 - - rtmpdump/librtmp1@2.4+20151223.gitfa8646d.1-2build4 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
      • -
    - -
    - -
    - -

    NVD Description

    -

    Note: Versions mentioned in the description apply only to the upstream gnutls28 package and not the gnutls28 package as distributed by Ubuntu. - See How to fix? for Ubuntu:22.04 relevant fixed versions and status.

    -

    A flaw was found in GnuTLS. The Minerva attack is a cryptographic vulnerability that exploits deterministic behavior in systems like GnuTLS, leading to side-channel leaks. In specific scenarios, such as when using the GNUTLS_PRIVKEY_FLAG_REPRODUCIBLE flag, it can result in a noticeable step in nonce size from 513 to 512 bits, exposing a potential timing side-channel.

    -

    Remediation

    -

    There is no fixed version for Ubuntu:22.04 gnutls28.

    -

    References

    - - -
    - -
    -

    More about this vulnerability

    -
    - -
    -
    -

    Uncaught Exception

    -
    - -
    - medium severity -
    - -
    - -
      -
    • - Manifest file: quay.io/argoproj/argocd:latest/argoproj/argocd Dockerfile -
      • -
    • - Package Manager: ubuntu:22.04 -
      • -
    • - Vulnerable module: - - gnutls28/libgnutls30 -
      • - -
    • Introduced through: - - docker-image|quay.io/argoproj/argocd@latest and gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - -
      • -
    - -
    - - -

    Detailed paths

    - -
      -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@latest - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
      • -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@latest - - apt@2.4.12 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
      • -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@latest - - gnupg2/dirmngr@2.2.27-3ubuntu2.1 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
      • -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@latest - - git@1:2.34.1-1ubuntu1.10 - - curl/libcurl3-gnutls@7.81.0-1ubuntu1.16 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
      • -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@latest - - git@1:2.34.1-1ubuntu1.10 - - curl/libcurl3-gnutls@7.81.0-1ubuntu1.16 - - openldap/libldap-2.5-0@2.5.17+dfsg-0ubuntu0.22.04.1 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
      • -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@latest - - git@1:2.34.1-1ubuntu1.10 - - curl/libcurl3-gnutls@7.81.0-1ubuntu1.16 - - rtmpdump/librtmp1@2.4+20151223.gitfa8646d.1-2build4 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
      • -
    - -
    - -
    - -

    NVD Description

    -

    Note: Versions mentioned in the description apply only to the upstream gnutls28 package and not the gnutls28 package as distributed by Ubuntu. - See How to fix? for Ubuntu:22.04 relevant fixed versions and status.

    -

    A flaw has been discovered in GnuTLS where an application crash can be induced when attempting to verify a specially crafted .pem bundle using the "certtool --verify-chain" command.

    -

    Remediation

    -

    There is no fixed version for Ubuntu:22.04 gnutls28.

    -

    References

    - - -
    - -
    -

    More about this vulnerability

    -
    -

    MPL-2.0 license

    @@ -2004,7 +1720,7 @@

    MPL-2.0 license

  • Introduced through: - github.com/argoproj/argo-cd/v2@* and github.com/hashicorp/go-version@v1.2.1 + github.com/argoproj/argo-cd/v2@* and github.com/hashicorp/go-version@v1.6.0
    • @@ -2019,7 +1735,7 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@* - github.com/hashicorp/go-version@v1.2.1 + github.com/hashicorp/go-version@v1.6.0 @@ -2515,7 +2231,7 @@

    Detailed paths

    Introduced through: docker-image|quay.io/argoproj/argocd@latest - openssh/openssh-client@1:8.9p1-3ubuntu0.6 + openssh/openssh-client@1:8.9p1-3ubuntu0.7 shadow/passwd@1:4.8.1-2ubuntu2.2 @@ -3527,7 +3243,7 @@

    Detailed paths

    Introduced through: docker-image|quay.io/argoproj/argocd@latest - openssh/openssh-client@1:8.9p1-3ubuntu0.6 + openssh/openssh-client@1:8.9p1-3ubuntu0.7 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -4023,7 +3739,7 @@

    Allocation of Resources Without Limits or Throttling

    Introduced through: - docker-image|quay.io/argoproj/argocd@latest and glibc/libc-bin@2.35-0ubuntu3.6 + docker-image|quay.io/argoproj/argocd@latest and glibc/libc-bin@2.35-0ubuntu3.7 @@ -4038,7 +3754,7 @@

    Detailed paths

    Introduced through: docker-image|quay.io/argoproj/argocd@latest - glibc/libc-bin@2.35-0ubuntu3.6 + glibc/libc-bin@2.35-0ubuntu3.7 @@ -4047,7 +3763,7 @@

    Detailed paths

    Introduced through: docker-image|quay.io/argoproj/argocd@latest - glibc/libc6@2.35-0ubuntu3.6 + glibc/libc6@2.35-0ubuntu3.7 diff --git a/docs/snyk/master/redis_7.0.15-alpine.html b/docs/snyk/master/redis_7.0.15-alpine.html new file mode 100644 index 0000000000000..667ef5636c50b --- /dev/null +++ b/docs/snyk/master/redis_7.0.15-alpine.html @@ -0,0 +1,657 @@ + + + + + + + + + Snyk test report + + + + + + + + + +
    +
    +
    +
    + + + Snyk - Open Source Security + + + + + + + +
    +

    Snyk test report

    + +

    April 21st 2024, 12:16:23 am (UTC+00:00)

    +
    +
    + Scanned the following paths: +
      +
    • redis:7.0.15-alpine (apk)
      • +
    • redis:7.0.15-alpine/tianon/gosu//usr/local/bin/gosu (gomodules)
      • +
    +
    + +
    +
    1 known vulnerabilities
    +
    9 vulnerable dependency paths
    +
    19 dependencies
    +
    +
    +
    +
    + +
    +
    +
    +

    CVE-2024-2511

    +
    + +
    + low severity +
    + +
    + +
      +
    • + Package Manager: alpine:3.19 +
      • +
    • + Vulnerable module: + + openssl/libcrypto3 +
      • + +
    • Introduced through: + + docker-image|redis@7.0.15-alpine and openssl/libcrypto3@3.1.4-r5 + +
      • +
    + +
    + + +

    Detailed paths

    + +
      +
    • + Introduced through: + docker-image|redis@7.0.15-alpine + + openssl/libcrypto3@3.1.4-r5 + + + +
      • +
    • + Introduced through: + docker-image|redis@7.0.15-alpine + + .redis-rundeps@20240315.235535 + + openssl/libcrypto3@3.1.4-r5 + + + +
      • +
    • + Introduced through: + docker-image|redis@7.0.15-alpine + + apk-tools/apk-tools@2.14.0-r5 + + openssl/libcrypto3@3.1.4-r5 + + + +
      • +
    • + Introduced through: + docker-image|redis@7.0.15-alpine + + busybox/ssl_client@1.36.1-r15 + + openssl/libcrypto3@3.1.4-r5 + + + +
      • +
    • + Introduced through: + docker-image|redis@7.0.15-alpine + + .redis-rundeps@20240315.235535 + + openssl/libssl3@3.1.4-r5 + + openssl/libcrypto3@3.1.4-r5 + + + +
      • +
    • + Introduced through: + docker-image|redis@7.0.15-alpine + + openssl/libssl3@3.1.4-r5 + + + +
      • +
    • + Introduced through: + docker-image|redis@7.0.15-alpine + + .redis-rundeps@20240315.235535 + + openssl/libssl3@3.1.4-r5 + + + +
      • +
    • + Introduced through: + docker-image|redis@7.0.15-alpine + + apk-tools/apk-tools@2.14.0-r5 + + openssl/libssl3@3.1.4-r5 + + + +
      • +
    • + Introduced through: + docker-image|redis@7.0.15-alpine + + busybox/ssl_client@1.36.1-r15 + + openssl/libssl3@3.1.4-r5 + + + +
      • +
    + +
    + +
    + +

    NVD Description

    +

    Note: Versions mentioned in the description apply only to the upstream openssl package and not the openssl package as distributed by Alpine. + See How to fix? for Alpine:3.19 relevant fixed versions and status.

    +

    Issue summary: Some non-default TLS server configurations can cause unbounded + memory growth when processing TLSv1.3 sessions

    +

    Impact summary: An attacker may exploit certain server configurations to trigger + unbounded memory growth that would lead to a Denial of Service

    +

    This problem can occur in TLSv1.3 if the non-default SSL_OP_NO_TICKET option is + being used (but not if early_data support is also configured and the default + anti-replay protection is in use). In this case, under certain conditions, the + session cache can get into an incorrect state and it will fail to flush properly + as it fills. The session cache will continue to grow in an unbounded manner. A + malicious client could deliberately create the scenario for this failure to + force a Denial of Service. It may also happen by accident in normal operation.

    +

    This issue only affects TLS servers supporting TLSv1.3. It does not affect TLS + clients.

    +

    The FIPS modules in 3.2, 3.1 and 3.0 are not affected by this issue. OpenSSL + 1.0.2 is also not affected by this issue.

    +

    Remediation

    +

    Upgrade Alpine:3.19 openssl to version 3.1.4-r6 or higher.

    +

    References

    + + +
    + +
    +

    More about this vulnerability

    +
    + +
    +
    +
    +
    + + + diff --git a/docs/snyk/v2.10.6/redis_7.0.14-alpine.html b/docs/snyk/v2.10.6/redis_7.0.14-alpine.html deleted file mode 100644 index a82415cd2f559..0000000000000 --- a/docs/snyk/v2.10.6/redis_7.0.14-alpine.html +++ /dev/null @@ -1,1165 +0,0 @@ - - - - - - - - - Snyk test report - - - - - - - - - -
    -
    -
    -
    - - - Snyk - Open Source Security - - - - - - - -
    -

    Snyk test report

    - -

    April 14th 2024, 12:22:45 am (UTC+00:00)

    -
    -
    - Scanned the following paths: -
      -
    • redis:7.0.14-alpine (apk)
      • -
    • redis:7.0.14-alpine/tianon/gosu//usr/local/bin/gosu (gomodules)
      • -
    -
    - -
    -
    4 known vulnerabilities
    -
    36 vulnerable dependency paths
    -
    19 dependencies
    -
    -
    -
    -
    - -
    -
    -
    -

    Out-of-bounds Write

    -
    - -
    - medium severity -
    - -
    - -
      -
    • - Package Manager: alpine:3.19 -
      • -
    • - Vulnerable module: - - openssl/libcrypto3 -
      • - -
    • Introduced through: - - docker-image|redis@7.0.14-alpine and openssl/libcrypto3@3.1.4-r2 - -
      • -
    - -
    - - -

    Detailed paths

    - -
      -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - openssl/libcrypto3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - .redis-rundeps@20231208.201137 - - openssl/libcrypto3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - apk-tools/apk-tools@2.14.0-r5 - - openssl/libcrypto3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - busybox/ssl_client@1.36.1-r15 - - openssl/libcrypto3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - .redis-rundeps@20231208.201137 - - openssl/libssl3@3.1.4-r2 - - openssl/libcrypto3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - openssl/libssl3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - .redis-rundeps@20231208.201137 - - openssl/libssl3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - apk-tools/apk-tools@2.14.0-r5 - - openssl/libssl3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - busybox/ssl_client@1.36.1-r15 - - openssl/libssl3@3.1.4-r2 - - - -
      • -
    - -
    - -
    - -

    NVD Description

    -

    Note: Versions mentioned in the description apply only to the upstream openssl package and not the openssl package as distributed by Alpine. - See How to fix? for Alpine:3.19 relevant fixed versions and status.

    -

    Issue summary: The POLY1305 MAC (message authentication code) implementation - contains a bug that might corrupt the internal state of applications running - on PowerPC CPU based platforms if the CPU provides vector instructions.

    -

    Impact summary: If an attacker can influence whether the POLY1305 MAC - algorithm is used, the application state might be corrupted with various - application dependent consequences.

    -

    The POLY1305 MAC (message authentication code) implementation in OpenSSL for - PowerPC CPUs restores the contents of vector registers in a different order - than they are saved. Thus the contents of some of these vector registers - are corrupted when returning to the caller. The vulnerable code is used only - on newer PowerPC processors supporting the PowerISA 2.07 instructions.

    -

    The consequences of this kind of internal application state corruption can - be various - from no consequences, if the calling application does not - depend on the contents of non-volatile XMM registers at all, to the worst - consequences, where the attacker could get complete control of the application - process. However unless the compiler uses the vector registers for storing - pointers, the most likely consequence, if any, would be an incorrect result - of some application dependent calculations or a crash leading to a denial of - service.

    -

    The POLY1305 MAC algorithm is most frequently used as part of the - CHACHA20-POLY1305 AEAD (authenticated encryption with associated data) - algorithm. The most common usage of this AEAD cipher is with TLS protocol - versions 1.2 and 1.3. If this cipher is enabled on the server a malicious - client can influence whether this AEAD cipher is used. This implies that - TLS server applications using OpenSSL can be potentially impacted. However - we are currently not aware of any concrete application that would be affected - by this issue therefore we consider this a Low severity security issue.

    -

    Remediation

    -

    Upgrade Alpine:3.19 openssl to version 3.1.4-r3 or higher.

    -

    References

    - - -
    - -
    -

    More about this vulnerability

    -
    - -
    -
    -

    CVE-2024-0727

    -
    - -
    - medium severity -
    - -
    - -
      -
    • - Package Manager: alpine:3.19 -
      • -
    • - Vulnerable module: - - openssl/libcrypto3 -
      • - -
    • Introduced through: - - docker-image|redis@7.0.14-alpine and openssl/libcrypto3@3.1.4-r2 - -
      • -
    - -
    - - -

    Detailed paths

    - -
      -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - openssl/libcrypto3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - .redis-rundeps@20231208.201137 - - openssl/libcrypto3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - apk-tools/apk-tools@2.14.0-r5 - - openssl/libcrypto3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - busybox/ssl_client@1.36.1-r15 - - openssl/libcrypto3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - .redis-rundeps@20231208.201137 - - openssl/libssl3@3.1.4-r2 - - openssl/libcrypto3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - openssl/libssl3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - .redis-rundeps@20231208.201137 - - openssl/libssl3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - apk-tools/apk-tools@2.14.0-r5 - - openssl/libssl3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - busybox/ssl_client@1.36.1-r15 - - openssl/libssl3@3.1.4-r2 - - - -
      • -
    - -
    - -
    - -

    NVD Description

    -

    Note: Versions mentioned in the description apply only to the upstream openssl package and not the openssl package as distributed by Alpine. - See How to fix? for Alpine:3.19 relevant fixed versions and status.

    -

    Issue summary: Processing a maliciously formatted PKCS12 file may lead OpenSSL - to crash leading to a potential Denial of Service attack

    -

    Impact summary: Applications loading files in the PKCS12 format from untrusted - sources might terminate abruptly.

    -

    A file in PKCS12 format can contain certificates and keys and may come from an - untrusted source. The PKCS12 specification allows certain fields to be NULL, but - OpenSSL does not correctly check for this case. This can lead to a NULL pointer - dereference that results in OpenSSL crashing. If an application processes PKCS12 - files from an untrusted source using the OpenSSL APIs then that application will - be vulnerable to this issue.

    -

    OpenSSL APIs that are vulnerable to this are: PKCS12_parse(), - PKCS12_unpack_p7data(), PKCS12_unpack_p7encdata(), PKCS12_unpack_authsafes() - and PKCS12_newpass().

    -

    We have also fixed a similar issue in SMIME_write_PKCS7(). However since this - function is related to writing data we do not consider it security significant.

    -

    The FIPS modules in 3.2, 3.1 and 3.0 are not affected by this issue.

    -

    Remediation

    -

    Upgrade Alpine:3.19 openssl to version 3.1.4-r5 or higher.

    -

    References

    - - -
    - -
    -

    More about this vulnerability

    -
    - -
    -
    -

    CVE-2023-6237

    -
    - -
    - low severity -
    - -
    - -
      -
    • - Package Manager: alpine:3.19 -
      • -
    • - Vulnerable module: - - openssl/libcrypto3 -
      • - -
    • Introduced through: - - docker-image|redis@7.0.14-alpine and openssl/libcrypto3@3.1.4-r2 - -
      • -
    - -
    - - -

    Detailed paths

    - -
      -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - openssl/libcrypto3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - .redis-rundeps@20231208.201137 - - openssl/libcrypto3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - apk-tools/apk-tools@2.14.0-r5 - - openssl/libcrypto3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - busybox/ssl_client@1.36.1-r15 - - openssl/libcrypto3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - .redis-rundeps@20231208.201137 - - openssl/libssl3@3.1.4-r2 - - openssl/libcrypto3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - openssl/libssl3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - .redis-rundeps@20231208.201137 - - openssl/libssl3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - apk-tools/apk-tools@2.14.0-r5 - - openssl/libssl3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - busybox/ssl_client@1.36.1-r15 - - openssl/libssl3@3.1.4-r2 - - - -
      • -
    - -
    - -
    - -

    NVD Description

    -

    This vulnerability has not been analyzed by NVD yet.

    -

    Remediation

    -

    Upgrade Alpine:3.19 openssl to version 3.1.4-r4 or higher.

    - -
    - -
    -

    More about this vulnerability

    -
    - -
    -
    -

    CVE-2024-2511

    -
    - -
    - low severity -
    - -
    - -
      -
    • - Package Manager: alpine:3.19 -
      • -
    • - Vulnerable module: - - openssl/libcrypto3 -
      • - -
    • Introduced through: - - docker-image|redis@7.0.14-alpine and openssl/libcrypto3@3.1.4-r2 - -
      • -
    - -
    - - -

    Detailed paths

    - -
      -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - openssl/libcrypto3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - .redis-rundeps@20231208.201137 - - openssl/libcrypto3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - apk-tools/apk-tools@2.14.0-r5 - - openssl/libcrypto3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - busybox/ssl_client@1.36.1-r15 - - openssl/libcrypto3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - .redis-rundeps@20231208.201137 - - openssl/libssl3@3.1.4-r2 - - openssl/libcrypto3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - openssl/libssl3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - .redis-rundeps@20231208.201137 - - openssl/libssl3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - apk-tools/apk-tools@2.14.0-r5 - - openssl/libssl3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - busybox/ssl_client@1.36.1-r15 - - openssl/libssl3@3.1.4-r2 - - - -
      • -
    - -
    - -
    - -

    NVD Description

    -

    Note: Versions mentioned in the description apply only to the upstream openssl package and not the openssl package as distributed by Alpine. - See How to fix? for Alpine:3.19 relevant fixed versions and status.

    -

    Issue summary: Some non-default TLS server configurations can cause unbounded - memory growth when processing TLSv1.3 sessions

    -

    Impact summary: An attacker may exploit certain server configurations to trigger - unbounded memory growth that would lead to a Denial of Service

    -

    This problem can occur in TLSv1.3 if the non-default SSL_OP_NO_TICKET option is - being used (but not if early_data support is also configured and the default - anti-replay protection is in use). In this case, under certain conditions, the - session cache can get into an incorrect state and it will fail to flush properly - as it fills. The session cache will continue to grow in an unbounded manner. A - malicious client could deliberately create the scenario for this failure to - force a Denial of Service. It may also happen by accident in normal operation.

    -

    This issue only affects TLS servers supporting TLSv1.3. It does not affect TLS - clients.

    -

    The FIPS modules in 3.2, 3.1 and 3.0 are not affected by this issue. OpenSSL - 1.0.2 is also not affected by this issue.

    -

    Remediation

    -

    Upgrade Alpine:3.19 openssl to version 3.1.4-r6 or higher.

    -

    References

    - - -
    - -
    -

    More about this vulnerability

    -
    - -
    -
    -
    -
    - - - diff --git a/docs/snyk/v2.10.6/argocd-iac-install.html b/docs/snyk/v2.10.7/argocd-iac-install.html similarity index 99% rename from docs/snyk/v2.10.6/argocd-iac-install.html rename to docs/snyk/v2.10.7/argocd-iac-install.html index e66a88208999d..0c86141ea839d 100644 --- a/docs/snyk/v2.10.6/argocd-iac-install.html +++ b/docs/snyk/v2.10.7/argocd-iac-install.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    April 14th 2024, 12:24:04 am (UTC+00:00)

    +

    April 21st 2024, 12:21:55 am (UTC+00:00)

    Scanned the following path: diff --git a/docs/snyk/v2.10.6/argocd-iac-namespace-install.html b/docs/snyk/v2.10.7/argocd-iac-namespace-install.html similarity index 99% rename from docs/snyk/v2.10.6/argocd-iac-namespace-install.html rename to docs/snyk/v2.10.7/argocd-iac-namespace-install.html index 35da53c946593..5b28482f76e70 100644 --- a/docs/snyk/v2.10.6/argocd-iac-namespace-install.html +++ b/docs/snyk/v2.10.7/argocd-iac-namespace-install.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    April 14th 2024, 12:24:14 am (UTC+00:00)

    +

    April 21st 2024, 12:22:04 am (UTC+00:00)

    Scanned the following path: diff --git a/docs/snyk/v2.10.6/argocd-test.html b/docs/snyk/v2.10.7/argocd-test.html similarity index 99% rename from docs/snyk/v2.10.6/argocd-test.html rename to docs/snyk/v2.10.7/argocd-test.html index a8146e34e0eb9..2007d3c149d19 100644 --- a/docs/snyk/v2.10.6/argocd-test.html +++ b/docs/snyk/v2.10.7/argocd-test.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    April 14th 2024, 12:22:09 am (UTC+00:00)

    +

    April 21st 2024, 12:20:07 am (UTC+00:00)

    Scanned the following paths: @@ -3127,6 +3127,7 @@

    Remediation

    Upgrade golang.org/x/net/http2 to version 0.23.0 or higher.

    References

    diff --git a/docs/snyk/v2.10.6/ghcr.io_dexidp_dex_v2.37.0.html b/docs/snyk/v2.10.7/ghcr.io_dexidp_dex_v2.37.0.html similarity index 99% rename from docs/snyk/v2.10.6/ghcr.io_dexidp_dex_v2.37.0.html rename to docs/snyk/v2.10.7/ghcr.io_dexidp_dex_v2.37.0.html index 101ae0b6a9dfe..ec4ba77354db2 100644 --- a/docs/snyk/v2.10.6/ghcr.io_dexidp_dex_v2.37.0.html +++ b/docs/snyk/v2.10.7/ghcr.io_dexidp_dex_v2.37.0.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    April 14th 2024, 12:22:16 am (UTC+00:00)

    +

    April 21st 2024, 12:20:13 am (UTC+00:00)

    Scanned the following paths: @@ -1084,6 +1084,7 @@

    Remediation

    Upgrade golang.org/x/net/http2 to version 0.23.0 or higher.

    References

    diff --git a/docs/snyk/v2.8.15/haproxy_2.6.14-alpine.html b/docs/snyk/v2.10.7/haproxy_2.6.14-alpine.html similarity index 99% rename from docs/snyk/v2.8.15/haproxy_2.6.14-alpine.html rename to docs/snyk/v2.10.7/haproxy_2.6.14-alpine.html index b2d6e8af0a8eb..9fa7c9a0e8cbc 100644 --- a/docs/snyk/v2.8.15/haproxy_2.6.14-alpine.html +++ b/docs/snyk/v2.10.7/haproxy_2.6.14-alpine.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    April 14th 2024, 12:26:48 am (UTC+00:00)

    +

    April 21st 2024, 12:20:17 am (UTC+00:00)

    Scanned the following path: diff --git a/docs/snyk/v2.9.11/quay.io_argoproj_argocd_v2.9.11.html b/docs/snyk/v2.10.7/quay.io_argoproj_argocd_v2.10.7.html similarity index 95% rename from docs/snyk/v2.9.11/quay.io_argoproj_argocd_v2.9.11.html rename to docs/snyk/v2.10.7/quay.io_argoproj_argocd_v2.10.7.html index 55332ef8f4b1e..93ad8fc908e90 100644 --- a/docs/snyk/v2.9.11/quay.io_argoproj_argocd_v2.9.11.html +++ b/docs/snyk/v2.10.7/quay.io_argoproj_argocd_v2.10.7.html @@ -7,7 +7,7 @@ Snyk test report - + @@ -456,23 +456,23 @@

    Snyk test report

    -

    April 14th 2024, 12:24:57 am (UTC+00:00)

    +

    April 21st 2024, 12:20:33 am (UTC+00:00)

    Scanned the following paths:
      -
    • quay.io/argoproj/argocd:v2.9.11/argoproj/argocd/Dockerfile (deb)
      • -
    • quay.io/argoproj/argocd:v2.9.11/argoproj/argo-cd/v2//usr/local/bin/argocd (gomodules)
      • -
    • quay.io/argoproj/argocd:v2.9.11//usr/local/bin/kustomize (gomodules)
      • -
    • quay.io/argoproj/argocd:v2.9.11/helm/v3//usr/local/bin/helm (gomodules)
      • -
    • quay.io/argoproj/argocd:v2.9.11/git-lfs/git-lfs//usr/bin/git-lfs (gomodules)
      • +
    • quay.io/argoproj/argocd:v2.10.7/argoproj/argocd/Dockerfile (deb)
      • +
    • quay.io/argoproj/argocd:v2.10.7/argoproj/argo-cd/v2//usr/local/bin/argocd (gomodules)
      • +
    • quay.io/argoproj/argocd:v2.10.7//usr/local/bin/kustomize (gomodules)
      • +
    • quay.io/argoproj/argocd:v2.10.7/helm/v3//usr/local/bin/helm (gomodules)
      • +
    • quay.io/argoproj/argocd:v2.10.7/git-lfs/git-lfs//usr/bin/git-lfs (gomodules)
    36 known vulnerabilities
    -
    180 vulnerable dependency paths
    -
    2189 dependencies
    +
    181 vulnerable dependency paths
    +
    2275 dependencies
    @@ -480,88 +480,6 @@

    Snyk test report

    -
    -

    Denial of Service (DoS)

    -
    - -
    - high severity -
    - -
    - -
      -
    • - Manifest file: quay.io/argoproj/argocd:v2.9.11/argoproj/argo-cd/v2 /usr/local/bin/argocd -
      • -
    • - Package Manager: golang -
      • -
    • - Vulnerable module: - - google.golang.org/grpc -
      • - -
    • Introduced through: - - github.com/argoproj/argo-cd/v2@* and google.golang.org/grpc@v1.56.2 - -
      • -
    - -
    - - -

    Detailed paths

    - -
      -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@* - - google.golang.org/grpc@v1.56.2 - - - -
      • -
    - -
    - -
    - -

    Overview

    -

    google.golang.org/grpc is a Go implementation of gRPC

    -

    Affected versions of this package are vulnerable to Denial of Service (DoS) in the implementation of the HTTP/2 protocol. An attacker can cause a denial of service (including via DDoS) by rapidly resetting many streams through request cancellation.

    -

    Remediation

    -

    Upgrade google.golang.org/grpc to version 1.56.3, 1.57.1, 1.58.3 or higher.

    -

    References

    - - -
    - -
    -

    More about this vulnerability

    -
    - -

    Allocation of Resources Without Limits or Throttling

    @@ -574,7 +492,7 @@

    Allocation of Resources Without Limits or Throttling

  • - Manifest file: quay.io/argoproj/argocd:v2.9.11/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argo-cd/v2 /usr/local/bin/argocd
  • Package Manager: golang @@ -629,6 +547,7 @@

    Remediation

    Upgrade golang.org/x/net/http2 to version 0.23.0 or higher.

    References

      +
    • Github Commit
    • GitHub Commit
    • GitHub Issue
    • Go Advisory
      • @@ -653,7 +572,7 @@

      CVE-2020-22916

      • - Manifest file: quay.io/argoproj/argocd:v2.9.11/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argocd Dockerfile
      • Package Manager: ubuntu:22.04 @@ -666,7 +585,7 @@

        CVE-2020-22916

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 and xz-utils/liblzma5@5.2.5-2ubuntu1 + docker-image|quay.io/argoproj/argocd@v2.10.7 and xz-utils/liblzma5@5.2.5-2ubuntu1
      @@ -679,7 +598,7 @@

      Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 xz-utils/liblzma5@5.2.5-2ubuntu1 @@ -729,7 +648,7 @@

        CVE-2023-51767

        • - Manifest file: quay.io/argoproj/argocd:v2.9.11/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argocd Dockerfile
        • Package Manager: ubuntu:22.04 @@ -742,7 +661,7 @@

          CVE-2023-51767

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 and openssh/openssh-client@1:8.9p1-3ubuntu0.6 + docker-image|quay.io/argoproj/argocd@v2.10.7 and openssh/openssh-client@1:8.9p1-3ubuntu0.6
        @@ -755,7 +674,7 @@

        Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 openssh/openssh-client@1:8.9p1-3ubuntu0.6 @@ -805,7 +724,7 @@

          Information Exposure

          • - Manifest file: quay.io/argoproj/argocd:v2.9.11/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argocd Dockerfile
          • Package Manager: ubuntu:22.04 @@ -818,7 +737,7 @@

            Information Exposure

          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 and libgcrypt20@1.9.4-3ubuntu3 + docker-image|quay.io/argoproj/argocd@v2.10.7 and libgcrypt20@1.9.4-3ubuntu3
          @@ -831,7 +750,7 @@

          Detailed paths

          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 libgcrypt20@1.9.4-3ubuntu3 @@ -840,7 +759,7 @@

            Detailed paths

          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gnupg2/dirmngr@2.2.27-3ubuntu2.1 @@ -851,7 +770,7 @@

            Detailed paths

          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -862,7 +781,7 @@

            Detailed paths

          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 apt@2.4.12 @@ -875,7 +794,7 @@

            Detailed paths

          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 apt@2.4.12 @@ -888,7 +807,7 @@

            Detailed paths

          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -901,7 +820,7 @@

            Detailed paths

          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -914,7 +833,7 @@

            Detailed paths

          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -927,7 +846,7 @@

            Detailed paths

          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -940,7 +859,7 @@

            Detailed paths

          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -953,7 +872,7 @@

            Detailed paths

          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -966,7 +885,7 @@

            Detailed paths

          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 apt@2.4.12 @@ -1017,7 +936,7 @@

            CVE-2024-26461

            • - Manifest file: quay.io/argoproj/argocd:v2.9.11/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argocd Dockerfile
            • Package Manager: ubuntu:22.04 @@ -1030,7 +949,7 @@

              CVE-2024-26461

            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 and krb5/libk5crypto3@1.19.2-2ubuntu0.3 + docker-image|quay.io/argoproj/argocd@v2.10.7 and krb5/libk5crypto3@1.19.2-2ubuntu0.3
            @@ -1043,7 +962,7 @@

            Detailed paths

            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 krb5/libk5crypto3@1.19.2-2ubuntu0.3 @@ -1052,7 +971,7 @@

              Detailed paths

            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 adduser@3.118ubuntu5 @@ -1073,7 +992,7 @@

              Detailed paths

            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 adduser@3.118ubuntu5 @@ -1096,7 +1015,7 @@

              Detailed paths

            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 krb5/libkrb5-3@1.19.2-2ubuntu0.3 @@ -1105,7 +1024,7 @@

              Detailed paths

            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 adduser@3.118ubuntu5 @@ -1126,7 +1045,7 @@

              Detailed paths

            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -1135,7 +1054,7 @@

              Detailed paths

            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 openssh/openssh-client@1:8.9p1-3ubuntu0.6 @@ -1146,7 +1065,7 @@

              Detailed paths

            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 git@1:2.34.1-1ubuntu1.10 @@ -1159,7 +1078,7 @@

              Detailed paths

            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 git@1:2.34.1-1ubuntu1.10 @@ -1174,7 +1093,7 @@

              Detailed paths

            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 adduser@3.118ubuntu5 @@ -1193,7 +1112,7 @@

              Detailed paths

            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 krb5/libkrb5support0@1.19.2-2ubuntu0.3 @@ -1237,7 +1156,7 @@

              CVE-2024-26462

              • - Manifest file: quay.io/argoproj/argocd:v2.9.11/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argocd Dockerfile
              • Package Manager: ubuntu:22.04 @@ -1250,7 +1169,7 @@

                CVE-2024-26462

              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 and krb5/libk5crypto3@1.19.2-2ubuntu0.3 + docker-image|quay.io/argoproj/argocd@v2.10.7 and krb5/libk5crypto3@1.19.2-2ubuntu0.3
              @@ -1263,7 +1182,7 @@

              Detailed paths

              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 krb5/libk5crypto3@1.19.2-2ubuntu0.3 @@ -1272,7 +1191,7 @@

                Detailed paths

              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 adduser@3.118ubuntu5 @@ -1293,7 +1212,7 @@

                Detailed paths

              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 adduser@3.118ubuntu5 @@ -1316,7 +1235,7 @@

                Detailed paths

              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 krb5/libkrb5-3@1.19.2-2ubuntu0.3 @@ -1325,7 +1244,7 @@

                Detailed paths

              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 adduser@3.118ubuntu5 @@ -1346,7 +1265,7 @@

                Detailed paths

              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -1355,7 +1274,7 @@

                Detailed paths

              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 openssh/openssh-client@1:8.9p1-3ubuntu0.6 @@ -1366,7 +1285,7 @@

                Detailed paths

              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 git@1:2.34.1-1ubuntu1.10 @@ -1379,7 +1298,7 @@

                Detailed paths

              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 git@1:2.34.1-1ubuntu1.10 @@ -1394,7 +1313,7 @@

                Detailed paths

              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 adduser@3.118ubuntu5 @@ -1413,7 +1332,7 @@

                Detailed paths

              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 krb5/libkrb5support0@1.19.2-2ubuntu0.3 @@ -1457,7 +1376,7 @@

                CVE-2024-26458

                • - Manifest file: quay.io/argoproj/argocd:v2.9.11/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argocd Dockerfile
                • Package Manager: ubuntu:22.04 @@ -1470,7 +1389,7 @@

                  CVE-2024-26458

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 and krb5/libk5crypto3@1.19.2-2ubuntu0.3 + docker-image|quay.io/argoproj/argocd@v2.10.7 and krb5/libk5crypto3@1.19.2-2ubuntu0.3
                @@ -1483,7 +1402,7 @@

                Detailed paths

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 krb5/libk5crypto3@1.19.2-2ubuntu0.3 @@ -1492,7 +1411,7 @@

                  Detailed paths

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 adduser@3.118ubuntu5 @@ -1513,7 +1432,7 @@

                  Detailed paths

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 adduser@3.118ubuntu5 @@ -1536,7 +1455,7 @@

                  Detailed paths

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 krb5/libkrb5-3@1.19.2-2ubuntu0.3 @@ -1545,7 +1464,7 @@

                  Detailed paths

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 adduser@3.118ubuntu5 @@ -1566,7 +1485,7 @@

                  Detailed paths

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -1575,7 +1494,7 @@

                  Detailed paths

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 openssh/openssh-client@1:8.9p1-3ubuntu0.6 @@ -1586,7 +1505,7 @@

                  Detailed paths

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 git@1:2.34.1-1ubuntu1.10 @@ -1599,7 +1518,7 @@

                  Detailed paths

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 git@1:2.34.1-1ubuntu1.10 @@ -1614,7 +1533,7 @@

                  Detailed paths

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 adduser@3.118ubuntu5 @@ -1633,7 +1552,7 @@

                  Detailed paths

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 krb5/libkrb5support0@1.19.2-2ubuntu0.3 @@ -1677,7 +1596,7 @@

                  LGPL-3.0 license

                  • - Manifest file: quay.io/argoproj/argocd:v2.9.11/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argo-cd/v2 /usr/local/bin/argocd
                  • Package Manager: golang @@ -1737,7 +1656,7 @@

                    Infinite loop

                    • - Manifest file: quay.io/argoproj/argocd:v2.9.11/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argo-cd/v2 /usr/local/bin/argocd
                    • Package Manager: golang @@ -1808,7 +1727,7 @@

                      Stack-based Buffer Overflow

                      • - Manifest file: quay.io/argoproj/argocd:v2.9.11/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argo-cd/v2 /usr/local/bin/argocd
                      • Package Manager: golang @@ -1876,7 +1795,7 @@

                        Infinite loop

                        • - Manifest file: quay.io/argoproj/argocd:v2.9.11/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argo-cd/v2 /usr/local/bin/argocd
                        • Package Manager: golang @@ -1947,7 +1866,7 @@

                          Authentication Bypass by Capture-replay

                          @@ -2042,7 +1964,7 @@

                          Information Exposure

                          • - Manifest file: quay.io/argoproj/argocd:v2.9.11/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argocd Dockerfile
                          • Package Manager: ubuntu:22.04 @@ -2055,7 +1977,7 @@

                            Information Exposure

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 and gnutls28/libgnutls30@3.7.3-4ubuntu1.4 + docker-image|quay.io/argoproj/argocd@v2.10.7 and gnutls28/libgnutls30@3.7.3-4ubuntu1.4
                          @@ -2068,7 +1990,7 @@

                          Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gnutls28/libgnutls30@3.7.3-4ubuntu1.4 @@ -2077,7 +1999,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 apt@2.4.12 @@ -2088,7 +2010,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gnupg2/dirmngr@2.2.27-3ubuntu2.1 @@ -2099,7 +2021,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 git@1:2.34.1-1ubuntu1.10 @@ -2112,7 +2034,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 git@1:2.34.1-1ubuntu1.10 @@ -2127,7 +2049,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 git@1:2.34.1-1ubuntu1.10 @@ -2151,7 +2073,7 @@

                            NVD Description

                            See How to fix? for Ubuntu:22.04 relevant fixed versions and status.

                            A flaw was found in GnuTLS. The Minerva attack is a cryptographic vulnerability that exploits deterministic behavior in systems like GnuTLS, leading to side-channel leaks. In specific scenarios, such as when using the GNUTLS_PRIVKEY_FLAG_REPRODUCIBLE flag, it can result in a noticeable step in nonce size from 513 to 512 bits, exposing a potential timing side-channel.

                            Remediation

                            -

                            There is no fixed version for Ubuntu:22.04 gnutls28.

                            +

                            Upgrade Ubuntu:22.04 gnutls28 to version 3.7.3-4ubuntu1.5 or higher.

                            References

                            @@ -2181,7 +2105,7 @@

                            Uncaught Exception

                            • - Manifest file: quay.io/argoproj/argocd:v2.9.11/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argocd Dockerfile
                            • Package Manager: ubuntu:22.04 @@ -2194,7 +2118,7 @@

                              Uncaught Exception

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 and gnutls28/libgnutls30@3.7.3-4ubuntu1.4 + docker-image|quay.io/argoproj/argocd@v2.10.7 and gnutls28/libgnutls30@3.7.3-4ubuntu1.4
                            @@ -2207,7 +2131,7 @@

                            Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gnutls28/libgnutls30@3.7.3-4ubuntu1.4 @@ -2216,7 +2140,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 apt@2.4.12 @@ -2227,7 +2151,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gnupg2/dirmngr@2.2.27-3ubuntu2.1 @@ -2238,7 +2162,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 git@1:2.34.1-1ubuntu1.10 @@ -2251,7 +2175,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 git@1:2.34.1-1ubuntu1.10 @@ -2266,7 +2190,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 git@1:2.34.1-1ubuntu1.10 @@ -2290,13 +2214,14 @@

                              NVD Description

                              See How to fix? for Ubuntu:22.04 relevant fixed versions and status.

                              A flaw has been discovered in GnuTLS where an application crash can be induced when attempting to verify a specially crafted .pem bundle using the "certtool --verify-chain" command.

                              Remediation

                              -

                              There is no fixed version for Ubuntu:22.04 gnutls28.

                              +

                              Upgrade Ubuntu:22.04 gnutls28 to version 3.7.3-4ubuntu1.5 or higher.

                              References

                              @@ -2305,6 +2230,88 @@

                              References

                              More about this vulnerability

    • +
    +
    +

    CVE-2024-2961

    +
    + +
    + medium severity +
    + +
    + +
      +
    • + Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argocd Dockerfile +
      • +
    • + Package Manager: ubuntu:22.04 +
      • +
    • + Vulnerable module: + + glibc/libc-bin +
      • + +
    • Introduced through: + + docker-image|quay.io/argoproj/argocd@v2.10.7 and glibc/libc-bin@2.35-0ubuntu3.6 + +
      • +
    + +
    + + +

    Detailed paths

    + +
      +
    • + Introduced through: + docker-image|quay.io/argoproj/argocd@v2.10.7 + + glibc/libc-bin@2.35-0ubuntu3.6 + + + +
      • +
    • + Introduced through: + docker-image|quay.io/argoproj/argocd@v2.10.7 + + glibc/libc6@2.35-0ubuntu3.6 + + + +
      • +
    + +
    + +
    + +

    NVD Description

    +

    Note: Versions mentioned in the description apply only to the upstream glibc package and not the glibc package as distributed by Ubuntu. + See How to fix? for Ubuntu:22.04 relevant fixed versions and status.

    +

    The iconv() function in the GNU C Library versions 2.39 and older may overflow the output buffer passed to it by up to 4 bytes when converting strings to the ISO-2022-CN-EXT character set, which may be used to crash an application or overwrite a neighbouring variable.

    +

    Remediation

    +

    Upgrade Ubuntu:22.04 glibc to version 2.35-0ubuntu3.7 or higher.

    +

    References

    + + +
    + +
    +

    More about this vulnerability

    +
    +

    MPL-2.0 license

    @@ -2318,7 +2325,7 @@

    MPL-2.0 license

    • - Manifest file: quay.io/argoproj/argocd:v2.9.11/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argo-cd/v2 /usr/local/bin/argocd
    • Package Manager: golang @@ -2378,7 +2385,7 @@

      MPL-2.0 license

      • - Manifest file: quay.io/argoproj/argocd:v2.9.11/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argo-cd/v2 /usr/local/bin/argocd
      • Package Manager: golang @@ -2438,7 +2445,7 @@

        MPL-2.0 license

        • - Manifest file: quay.io/argoproj/argocd:v2.9.11/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argo-cd/v2 /usr/local/bin/argocd
        • Package Manager: golang @@ -2498,7 +2505,7 @@

          MPL-2.0 license

          • - Manifest file: quay.io/argoproj/argocd:v2.9.11/helm/v3 /usr/local/bin/helm + Manifest file: quay.io/argoproj/argocd:v2.10.7/helm/v3 /usr/local/bin/helm
          • Package Manager: golang @@ -2558,7 +2565,7 @@

            MPL-2.0 license

            • - Manifest file: quay.io/argoproj/argocd:v2.9.11/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argo-cd/v2 /usr/local/bin/argocd
            • Package Manager: golang @@ -2618,7 +2625,7 @@

              MPL-2.0 license

              • - Manifest file: quay.io/argoproj/argocd:v2.9.11/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argo-cd/v2 /usr/local/bin/argocd
              • Package Manager: golang @@ -2678,7 +2685,7 @@

                Improper Handling of Highly Compressed Data (Data Amplif
                • - Manifest file: quay.io/argoproj/argocd:v2.9.11/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argo-cd/v2 /usr/local/bin/argocd
                • Package Manager: golang @@ -2747,7 +2754,7 @@

                  CVE-2023-7008

                  • - Manifest file: quay.io/argoproj/argocd:v2.9.11/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argocd Dockerfile
                  • Package Manager: ubuntu:22.04 @@ -2760,7 +2767,7 @@

                    CVE-2023-7008

                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 and systemd/libsystemd0@249.11-0ubuntu3.12 + docker-image|quay.io/argoproj/argocd@v2.10.7 and systemd/libsystemd0@249.11-0ubuntu3.12
                  @@ -2773,7 +2780,7 @@

                  Detailed paths

                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 systemd/libsystemd0@249.11-0ubuntu3.12 @@ -2782,7 +2789,7 @@

                    Detailed paths

                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 apt@2.4.12 @@ -2793,7 +2800,7 @@

                    Detailed paths

                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 procps/libprocps8@2:3.3.17-6ubuntu2.1 @@ -2804,9 +2811,9 @@

                    Detailed paths

                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 - util-linux@2.37.2-4ubuntu3.3 + util-linux@2.37.2-4ubuntu3.4 systemd/libsystemd0@249.11-0ubuntu3.12 @@ -2815,9 +2822,9 @@

                    Detailed paths

                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 - util-linux/bsdutils@1:2.37.2-4ubuntu3.3 + util-linux/bsdutils@1:2.37.2-4ubuntu3.4 systemd/libsystemd0@249.11-0ubuntu3.12 @@ -2826,7 +2833,7 @@

                    Detailed paths

                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 apt@2.4.12 @@ -2839,7 +2846,7 @@

                    Detailed paths

                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 systemd/libudev1@249.11-0ubuntu3.12 @@ -2848,7 +2855,7 @@

                    Detailed paths

                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 libfido2/libfido2-1@1.10.0-1 @@ -2859,9 +2866,9 @@

                    Detailed paths

                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 - util-linux@2.37.2-4ubuntu3.3 + util-linux@2.37.2-4ubuntu3.4 systemd/libudev1@249.11-0ubuntu3.12 @@ -2870,7 +2877,7 @@

                    Detailed paths

                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 apt@2.4.12 @@ -2923,7 +2930,7 @@

                    Arbitrary Code Injection

                    • - Manifest file: quay.io/argoproj/argocd:v2.9.11/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argocd Dockerfile
                    • Package Manager: ubuntu:22.04 @@ -2936,7 +2943,7 @@

                      Arbitrary Code Injection

                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 and shadow/passwd@1:4.8.1-2ubuntu2.2 + docker-image|quay.io/argoproj/argocd@v2.10.7 and shadow/passwd@1:4.8.1-2ubuntu2.2
                    @@ -2949,7 +2956,7 @@

                    Detailed paths

                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 shadow/passwd@1:4.8.1-2ubuntu2.2 @@ -2958,7 +2965,7 @@

                      Detailed paths

                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 adduser@3.118ubuntu5 @@ -2969,7 +2976,7 @@

                      Detailed paths

                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 openssh/openssh-client@1:8.9p1-3ubuntu0.6 @@ -2980,7 +2987,7 @@

                      Detailed paths

                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 shadow/login@1:4.8.1-2ubuntu2.2 @@ -3027,7 +3034,7 @@

                      Uncontrolled Recursion

                      • - Manifest file: quay.io/argoproj/argocd:v2.9.11/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argocd Dockerfile
                      • Package Manager: ubuntu:22.04 @@ -3040,7 +3047,7 @@

                        Uncontrolled Recursion

                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 and pcre3/libpcre3@2:8.39-13ubuntu0.22.04.1 + docker-image|quay.io/argoproj/argocd@v2.10.7 and pcre3/libpcre3@2:8.39-13ubuntu0.22.04.1
                      @@ -3053,7 +3060,7 @@

                      Detailed paths

                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 pcre3/libpcre3@2:8.39-13ubuntu0.22.04.1 @@ -3062,7 +3069,7 @@

                        Detailed paths

                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 grep@3.7-1build1 @@ -3115,7 +3122,7 @@

                        Release of Invalid Pointer or Reference

                        • - Manifest file: quay.io/argoproj/argocd:v2.9.11/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argocd Dockerfile
                        • Package Manager: ubuntu:22.04 @@ -3128,7 +3135,7 @@

                          Release of Invalid Pointer or Reference

                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 and patch@2.7.6-7build2 + docker-image|quay.io/argoproj/argocd@v2.10.7 and patch@2.7.6-7build2
                        @@ -3141,7 +3148,7 @@

                        Detailed paths

                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 patch@2.7.6-7build2 @@ -3185,7 +3192,7 @@

                          Double Free

                          • - Manifest file: quay.io/argoproj/argocd:v2.9.11/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argocd Dockerfile
                          • Package Manager: ubuntu:22.04 @@ -3198,7 +3205,7 @@

                            Double Free

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 and patch@2.7.6-7build2 + docker-image|quay.io/argoproj/argocd@v2.10.7 and patch@2.7.6-7build2
                          @@ -3211,7 +3218,7 @@

                          Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 patch@2.7.6-7build2 @@ -3260,7 +3267,7 @@

                            CVE-2023-50495

                            • - Manifest file: quay.io/argoproj/argocd:v2.9.11/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argocd Dockerfile
                            • Package Manager: ubuntu:22.04 @@ -3273,7 +3280,7 @@

                              CVE-2023-50495

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 and ncurses/libtinfo6@6.3-2ubuntu0.1 + docker-image|quay.io/argoproj/argocd@v2.10.7 and ncurses/libtinfo6@6.3-2ubuntu0.1
                            @@ -3286,7 +3293,7 @@

                            Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 ncurses/libtinfo6@6.3-2ubuntu0.1 @@ -3295,7 +3302,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 bash@5.1-6ubuntu1.1 @@ -3306,7 +3313,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 ncurses/libncursesw6@6.3-2ubuntu0.1 @@ -3317,7 +3324,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 less@590-1ubuntu0.22.04.2 @@ -3328,7 +3335,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 libedit/libedit2@3.1-20210910-1build1 @@ -3339,7 +3346,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 ncurses/libncurses6@6.3-2ubuntu0.1 @@ -3350,7 +3357,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 ncurses/ncurses-bin@6.3-2ubuntu0.1 @@ -3361,7 +3368,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 procps@2:3.3.17-6ubuntu2.1 @@ -3372,9 +3379,9 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 - util-linux@2.37.2-4ubuntu3.3 + util-linux@2.37.2-4ubuntu3.4 ncurses/libtinfo6@6.3-2ubuntu0.1 @@ -3383,7 +3390,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -3398,7 +3405,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3413,7 +3420,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 ncurses/libncursesw6@6.3-2ubuntu0.1 @@ -3422,7 +3429,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 procps@2:3.3.17-6ubuntu2.1 @@ -3433,7 +3440,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3448,7 +3455,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 ncurses/libncurses6@6.3-2ubuntu0.1 @@ -3457,7 +3464,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 procps@2:3.3.17-6ubuntu2.1 @@ -3468,7 +3475,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 ncurses/ncurses-base@6.3-2ubuntu0.1 @@ -3477,7 +3484,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 ncurses/ncurses-bin@6.3-2ubuntu0.1 @@ -3524,7 +3531,7 @@

                              CVE-2023-45918

                              • - Manifest file: quay.io/argoproj/argocd:v2.9.11/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argocd Dockerfile
                              • Package Manager: ubuntu:22.04 @@ -3537,7 +3544,7 @@

                                CVE-2023-45918

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 and ncurses/libtinfo6@6.3-2ubuntu0.1 + docker-image|quay.io/argoproj/argocd@v2.10.7 and ncurses/libtinfo6@6.3-2ubuntu0.1
                              @@ -3550,7 +3557,7 @@

                              Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 ncurses/libtinfo6@6.3-2ubuntu0.1 @@ -3559,7 +3566,7 @@

                                Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 bash@5.1-6ubuntu1.1 @@ -3570,7 +3577,7 @@

                                Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 ncurses/libncursesw6@6.3-2ubuntu0.1 @@ -3581,7 +3588,7 @@

                                Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 less@590-1ubuntu0.22.04.2 @@ -3592,7 +3599,7 @@

                                Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 libedit/libedit2@3.1-20210910-1build1 @@ -3603,7 +3610,7 @@

                                Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 ncurses/libncurses6@6.3-2ubuntu0.1 @@ -3614,7 +3621,7 @@

                                Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 ncurses/ncurses-bin@6.3-2ubuntu0.1 @@ -3625,7 +3632,7 @@

                                Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 procps@2:3.3.17-6ubuntu2.1 @@ -3636,9 +3643,9 @@

                                Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 - util-linux@2.37.2-4ubuntu3.3 + util-linux@2.37.2-4ubuntu3.4 ncurses/libtinfo6@6.3-2ubuntu0.1 @@ -3647,7 +3654,7 @@

                                Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -3662,7 +3669,7 @@

                                Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3677,7 +3684,7 @@

                                Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 ncurses/libncursesw6@6.3-2ubuntu0.1 @@ -3686,7 +3693,7 @@

                                Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 procps@2:3.3.17-6ubuntu2.1 @@ -3697,7 +3704,7 @@

                                Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3712,7 +3719,7 @@

                                Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 ncurses/libncurses6@6.3-2ubuntu0.1 @@ -3721,7 +3728,7 @@

                                Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 procps@2:3.3.17-6ubuntu2.1 @@ -3732,7 +3739,7 @@

                                Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 ncurses/ncurses-base@6.3-2ubuntu0.1 @@ -3741,7 +3748,7 @@

                                Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 ncurses/ncurses-bin@6.3-2ubuntu0.1 @@ -3786,7 +3793,7 @@

                                Resource Exhaustion

                                • - Manifest file: quay.io/argoproj/argocd:v2.9.11/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argocd Dockerfile
                                • Package Manager: ubuntu:22.04 @@ -3799,7 +3806,7 @@

                                  Resource Exhaustion

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 and libzstd/libzstd1@1.4.8+dfsg-3build1 + docker-image|quay.io/argoproj/argocd@v2.10.7 and libzstd/libzstd1@1.4.8+dfsg-3build1
                                @@ -3812,7 +3819,7 @@

                                Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 libzstd/libzstd1@1.4.8+dfsg-3build1 @@ -3863,7 +3870,7 @@

                                  Integer Overflow or Wraparound

                                  • - Manifest file: quay.io/argoproj/argocd:v2.9.11/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argocd Dockerfile
                                  • Package Manager: ubuntu:22.04 @@ -3876,7 +3883,7 @@

                                    Integer Overflow or Wraparound

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 and krb5/libk5crypto3@1.19.2-2ubuntu0.3 + docker-image|quay.io/argoproj/argocd@v2.10.7 and krb5/libk5crypto3@1.19.2-2ubuntu0.3
                                  @@ -3889,7 +3896,7 @@

                                  Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 krb5/libk5crypto3@1.19.2-2ubuntu0.3 @@ -3898,7 +3905,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 adduser@3.118ubuntu5 @@ -3919,7 +3926,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 adduser@3.118ubuntu5 @@ -3942,7 +3949,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 krb5/libkrb5-3@1.19.2-2ubuntu0.3 @@ -3951,7 +3958,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 adduser@3.118ubuntu5 @@ -3972,7 +3979,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -3981,7 +3988,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 openssh/openssh-client@1:8.9p1-3ubuntu0.6 @@ -3992,7 +3999,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 git@1:2.34.1-1ubuntu1.10 @@ -4005,7 +4012,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 git@1:2.34.1-1ubuntu1.10 @@ -4020,7 +4027,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 adduser@3.118ubuntu5 @@ -4039,7 +4046,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 krb5/libkrb5support0@1.19.2-2ubuntu0.3 @@ -4087,7 +4094,7 @@

                                    Out-of-bounds Write

                                    • - Manifest file: quay.io/argoproj/argocd:v2.9.11/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argocd Dockerfile
                                    • Package Manager: ubuntu:22.04 @@ -4100,7 +4107,7 @@

                                      Out-of-bounds Write

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 and gnupg2/gpgv@2.2.27-3ubuntu2.1 + docker-image|quay.io/argoproj/argocd@v2.10.7 and gnupg2/gpgv@2.2.27-3ubuntu2.1
                                    @@ -4113,7 +4120,7 @@

                                    Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gnupg2/gpgv@2.2.27-3ubuntu2.1 @@ -4122,7 +4129,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 apt@2.4.12 @@ -4133,7 +4140,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4144,7 +4151,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gnupg2/dirmngr@2.2.27-3ubuntu2.1 @@ -4155,7 +4162,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -4166,7 +4173,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4179,7 +4186,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4192,7 +4199,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gnupg2/dirmngr@2.2.27-3ubuntu2.1 @@ -4201,7 +4208,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4212,7 +4219,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4225,7 +4232,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gnupg2/gnupg-l10n@2.2.27-3ubuntu2.1 @@ -4234,7 +4241,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4245,7 +4252,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gnupg2/gnupg-utils@2.2.27-3ubuntu2.1 @@ -4254,7 +4261,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4265,7 +4272,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -4274,7 +4281,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4285,7 +4292,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4298,7 +4305,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4311,7 +4318,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gnupg2/gpg-agent@2.2.27-3ubuntu2.1 @@ -4320,7 +4327,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4331,7 +4338,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4344,7 +4351,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4357,7 +4364,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gnupg2/gpg-wks-client@2.2.27-3ubuntu2.1 @@ -4366,7 +4373,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4377,7 +4384,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gnupg2/gpg-wks-server@2.2.27-3ubuntu2.1 @@ -4386,7 +4393,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4397,7 +4404,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gnupg2/gpgsm@2.2.27-3ubuntu2.1 @@ -4406,7 +4413,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4417,7 +4424,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4466,7 +4473,7 @@

                                      Allocation of Resources Without Limits or Throttling

                                    • - Manifest file: quay.io/argoproj/argocd:v2.9.11/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argocd Dockerfile
                                    • Package Manager: ubuntu:22.04 @@ -4479,7 +4486,7 @@

                                      Allocation of Resources Without Limits or Throttling

                                      Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 and glibc/libc-bin@2.35-0ubuntu3.6 + docker-image|quay.io/argoproj/argocd@v2.10.7 and glibc/libc-bin@2.35-0ubuntu3.6
                                    @@ -4492,7 +4499,7 @@

                                    Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 glibc/libc-bin@2.35-0ubuntu3.6 @@ -4501,7 +4508,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 glibc/libc6@2.35-0ubuntu3.6 @@ -4547,7 +4554,7 @@

                                      Improper Input Validation

                                      • - Manifest file: quay.io/argoproj/argocd:v2.9.11/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argocd Dockerfile
                                      • Package Manager: ubuntu:22.04 @@ -4561,7 +4568,7 @@

                                        Improper Input Validation

                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11, git@1:2.34.1-1ubuntu1.10 and others + docker-image|quay.io/argoproj/argocd@v2.10.7, git@1:2.34.1-1ubuntu1.10 and others
                                      @@ -4573,7 +4580,7 @@

                                      Detailed paths

                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 git@1:2.34.1-1ubuntu1.10 @@ -4584,7 +4591,7 @@

                                        Detailed paths

                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 git@1:2.34.1-1ubuntu1.10 @@ -4593,7 +4600,7 @@

                                        Detailed paths

                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 git-lfs@3.0.2-1ubuntu0.2 @@ -4640,7 +4647,7 @@

                                        Uncontrolled Recursion

                                        • - Manifest file: quay.io/argoproj/argocd:v2.9.11/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argocd Dockerfile
                                        • Package Manager: ubuntu:22.04 @@ -4653,7 +4660,7 @@

                                          Uncontrolled Recursion

                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 and gcc-12/libstdc++6@12.3.0-1ubuntu1~22.04 + docker-image|quay.io/argoproj/argocd@v2.10.7 and gcc-12/libstdc++6@12.3.0-1ubuntu1~22.04
                                        @@ -4666,7 +4673,7 @@

                                        Detailed paths

                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gcc-12/libstdc++6@12.3.0-1ubuntu1~22.04 @@ -4675,7 +4682,7 @@

                                          Detailed paths

                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 apt@2.4.12 @@ -4686,7 +4693,7 @@

                                          Detailed paths

                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 apt@2.4.12 @@ -4699,7 +4706,7 @@

                                          Detailed paths

                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gcc-12/gcc-12-base@12.3.0-1ubuntu1~22.04 @@ -4708,7 +4715,7 @@

                                          Detailed paths

                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 gcc-12/libgcc-s1@12.3.0-1ubuntu1~22.04 @@ -4755,7 +4762,7 @@

                                          Improper Input Validation

                                          • - Manifest file: quay.io/argoproj/argocd:v2.9.11/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argocd Dockerfile
                                          • Package Manager: ubuntu:22.04 @@ -4768,7 +4775,7 @@

                                            Improper Input Validation

                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 and coreutils@8.32-4.1ubuntu1.2 + docker-image|quay.io/argoproj/argocd@v2.10.7 and coreutils@8.32-4.1ubuntu1.2
                                          @@ -4781,7 +4788,7 @@

                                          Detailed paths

                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.11 + docker-image|quay.io/argoproj/argocd@v2.10.7 coreutils@8.32-4.1ubuntu1.2 diff --git a/docs/snyk/master/redis_7.0.14-alpine.html b/docs/snyk/v2.10.7/redis_7.0.14-alpine.html similarity index 99% rename from docs/snyk/master/redis_7.0.14-alpine.html rename to docs/snyk/v2.10.7/redis_7.0.14-alpine.html index d427ce3d4ba69..2f7c053c86148 100644 --- a/docs/snyk/master/redis_7.0.14-alpine.html +++ b/docs/snyk/v2.10.7/redis_7.0.14-alpine.html @@ -456,7 +456,7 @@

                                            Snyk test report

                                            -

                                            April 14th 2024, 12:18:23 am (UTC+00:00)

                                            +

                                            April 21st 2024, 12:20:37 am (UTC+00:00)

                                            Scanned the following paths: diff --git a/docs/snyk/v2.11.0-rc1/argocd-iac-install.html b/docs/snyk/v2.11.0-rc2/argocd-iac-install.html similarity index 99% rename from docs/snyk/v2.11.0-rc1/argocd-iac-install.html rename to docs/snyk/v2.11.0-rc2/argocd-iac-install.html index 64c9f129dd016..787399c8e9f6f 100644 --- a/docs/snyk/v2.11.0-rc1/argocd-iac-install.html +++ b/docs/snyk/v2.11.0-rc2/argocd-iac-install.html @@ -456,7 +456,7 @@

                                            Snyk test report

                                            -

                                            April 14th 2024, 12:21:49 am (UTC+00:00)

                                            +

                                            April 21st 2024, 12:19:48 am (UTC+00:00)

                                            Scanned the following path: diff --git a/docs/snyk/v2.11.0-rc1/argocd-iac-namespace-install.html b/docs/snyk/v2.11.0-rc2/argocd-iac-namespace-install.html similarity index 99% rename from docs/snyk/v2.11.0-rc1/argocd-iac-namespace-install.html rename to docs/snyk/v2.11.0-rc2/argocd-iac-namespace-install.html index c7401535ad1b6..c4e90bafd0756 100644 --- a/docs/snyk/v2.11.0-rc1/argocd-iac-namespace-install.html +++ b/docs/snyk/v2.11.0-rc2/argocd-iac-namespace-install.html @@ -456,7 +456,7 @@

                                            Snyk test report

                                            -

                                            April 14th 2024, 12:21:57 am (UTC+00:00)

                                            +

                                            April 21st 2024, 12:19:56 am (UTC+00:00)

                                            Scanned the following path: diff --git a/docs/snyk/v2.11.0-rc1/argocd-test.html b/docs/snyk/v2.11.0-rc2/argocd-test.html similarity index 99% rename from docs/snyk/v2.11.0-rc1/argocd-test.html rename to docs/snyk/v2.11.0-rc2/argocd-test.html index 278d98038f930..3810bb4f8b72d 100644 --- a/docs/snyk/v2.11.0-rc1/argocd-test.html +++ b/docs/snyk/v2.11.0-rc2/argocd-test.html @@ -456,7 +456,7 @@

                                            Snyk test report

                                            -

                                            April 14th 2024, 12:19:59 am (UTC+00:00)

                                            +

                                            April 21st 2024, 12:17:59 am (UTC+00:00)

                                            Scanned the following paths: @@ -3127,6 +3127,7 @@

                                            Remediation

                                            Upgrade golang.org/x/net/http2 to version 0.23.0 or higher.

                                            References

                                              +
                                            • Github Commit
                                            • GitHub Commit
                                            • GitHub Issue
                                            • Go Advisory
                                              • diff --git a/docs/snyk/v2.11.0-rc1/ghcr.io_dexidp_dex_v2.38.0.html b/docs/snyk/v2.11.0-rc2/ghcr.io_dexidp_dex_v2.38.0.html similarity index 99% rename from docs/snyk/v2.11.0-rc1/ghcr.io_dexidp_dex_v2.38.0.html rename to docs/snyk/v2.11.0-rc2/ghcr.io_dexidp_dex_v2.38.0.html index 48c1c4223be7f..61831ad5c5035 100644 --- a/docs/snyk/v2.11.0-rc1/ghcr.io_dexidp_dex_v2.38.0.html +++ b/docs/snyk/v2.11.0-rc2/ghcr.io_dexidp_dex_v2.38.0.html @@ -456,7 +456,7 @@

                                              Snyk test report

                                              -

                                              April 14th 2024, 12:20:05 am (UTC+00:00)

                                              +

                                              April 21st 2024, 12:18:04 am (UTC+00:00)

                                              Scanned the following paths: @@ -546,6 +546,7 @@

                                              Remediation

                                              Upgrade golang.org/x/net/http2 to version 0.23.0 or higher.

                                              References

                                                +
                                              • Github Commit
                                              • GitHub Commit
                                              • GitHub Issue
                                              • Go Advisory
                                                • diff --git a/docs/snyk/v2.9.11/haproxy_2.6.14-alpine.html b/docs/snyk/v2.11.0-rc2/haproxy_2.6.14-alpine.html similarity index 99% rename from docs/snyk/v2.9.11/haproxy_2.6.14-alpine.html rename to docs/snyk/v2.11.0-rc2/haproxy_2.6.14-alpine.html index 2f546ab432589..ec0fde3db6177 100644 --- a/docs/snyk/v2.9.11/haproxy_2.6.14-alpine.html +++ b/docs/snyk/v2.11.0-rc2/haproxy_2.6.14-alpine.html @@ -456,7 +456,7 @@

                                                Snyk test report

                                                -

                                                April 14th 2024, 12:24:40 am (UTC+00:00)

                                                +

                                                April 21st 2024, 12:18:08 am (UTC+00:00)

                                                Scanned the following path: diff --git a/docs/snyk/v2.11.0-rc1/quay.io_argoproj_argocd_v2.11.0-rc1.html b/docs/snyk/v2.11.0-rc2/quay.io_argoproj_argocd_v2.11.0-rc2.html similarity index 91% rename from docs/snyk/v2.11.0-rc1/quay.io_argoproj_argocd_v2.11.0-rc1.html rename to docs/snyk/v2.11.0-rc2/quay.io_argoproj_argocd_v2.11.0-rc2.html index 922d3c815fe4b..8be03cfd4bcab 100644 --- a/docs/snyk/v2.11.0-rc1/quay.io_argoproj_argocd_v2.11.0-rc1.html +++ b/docs/snyk/v2.11.0-rc2/quay.io_argoproj_argocd_v2.11.0-rc2.html @@ -7,7 +7,7 @@ Snyk test report - + @@ -456,22 +456,22 @@

                                                Snyk test report

                                                -

                                                April 14th 2024, 12:20:27 am (UTC+00:00)

                                                +

                                                April 21st 2024, 12:18:25 am (UTC+00:00)

                                                Scanned the following paths:
                                                  -
                                                • quay.io/argoproj/argocd:v2.11.0-rc1/argoproj/argocd/Dockerfile (deb)
                                                  • -
                                                • quay.io/argoproj/argocd:v2.11.0-rc1/argoproj/argo-cd/v2//usr/local/bin/argocd (gomodules)
                                                  • -
                                                • quay.io/argoproj/argocd:v2.11.0-rc1//usr/local/bin/kustomize (gomodules)
                                                  • -
                                                • quay.io/argoproj/argocd:v2.11.0-rc1/helm/v3//usr/local/bin/helm (gomodules)
                                                  • -
                                                • quay.io/argoproj/argocd:v2.11.0-rc1/git-lfs/git-lfs//usr/bin/git-lfs (gomodules)
                                                  • +
                                                • quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argocd/Dockerfile (deb)
                                                  • +
                                                • quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argo-cd/v2//usr/local/bin/argocd (gomodules)
                                                  • +
                                                • quay.io/argoproj/argocd:v2.11.0-rc2//usr/local/bin/kustomize (gomodules)
                                                  • +
                                                • quay.io/argoproj/argocd:v2.11.0-rc2/helm/v3//usr/local/bin/helm (gomodules)
                                                  • +
                                                • quay.io/argoproj/argocd:v2.11.0-rc2/git-lfs/git-lfs//usr/bin/git-lfs (gomodules)
                                                -
                                                33 known vulnerabilities
                                                -
                                                177 vulnerable dependency paths
                                                +
                                                32 known vulnerabilities
                                                +
                                                167 vulnerable dependency paths
                                                2276 dependencies
                                                @@ -492,7 +492,7 @@

                                                Allocation of Resources Without Limits or Throttling

                                              • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc1/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argo-cd/v2 /usr/local/bin/argocd
                                              • Package Manager: golang @@ -547,6 +547,7 @@

                                                Remediation

                                                Upgrade golang.org/x/net/http2 to version 0.23.0 or higher.

                                                References

                                                  +
                                                • Github Commit
                                                • GitHub Commit
                                                • GitHub Issue
                                                • Go Advisory
                                                  • @@ -571,7 +572,7 @@

                                                  CVE-2020-22916

                                                  • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc1/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argocd Dockerfile
                                                  • Package Manager: ubuntu:22.04 @@ -584,7 +585,7 @@

                                                    CVE-2020-22916

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 and xz-utils/liblzma5@5.2.5-2ubuntu1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 and xz-utils/liblzma5@5.2.5-2ubuntu1
                                                  @@ -597,7 +598,7 @@

                                                  Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 xz-utils/liblzma5@5.2.5-2ubuntu1 @@ -647,7 +648,7 @@

                                                    CVE-2023-51767

                                                    • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc1/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argocd Dockerfile
                                                    • Package Manager: ubuntu:22.04 @@ -660,7 +661,7 @@

                                                      CVE-2023-51767

                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 and openssh/openssh-client@1:8.9p1-3ubuntu0.6 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 and openssh/openssh-client@1:8.9p1-3ubuntu0.6
                                                    @@ -673,7 +674,7 @@

                                                    Detailed paths

                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 openssh/openssh-client@1:8.9p1-3ubuntu0.6 @@ -723,7 +724,7 @@

                                                      Information Exposure

                                                      • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc1/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argocd Dockerfile
                                                      • Package Manager: ubuntu:22.04 @@ -736,7 +737,7 @@

                                                        Information Exposure

                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 and libgcrypt20@1.9.4-3ubuntu3 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 and libgcrypt20@1.9.4-3ubuntu3
                                                      @@ -749,7 +750,7 @@

                                                      Detailed paths

                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 libgcrypt20@1.9.4-3ubuntu3 @@ -758,7 +759,7 @@

                                                        Detailed paths

                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 gnupg2/dirmngr@2.2.27-3ubuntu2.1 @@ -769,7 +770,7 @@

                                                        Detailed paths

                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -780,7 +781,7 @@

                                                        Detailed paths

                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 apt@2.4.12 @@ -793,7 +794,7 @@

                                                        Detailed paths

                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 apt@2.4.12 @@ -806,7 +807,7 @@

                                                        Detailed paths

                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -819,7 +820,7 @@

                                                        Detailed paths

                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -832,7 +833,7 @@

                                                        Detailed paths

                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -845,7 +846,7 @@

                                                        Detailed paths

                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -858,7 +859,7 @@

                                                        Detailed paths

                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -871,7 +872,7 @@

                                                        Detailed paths

                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -884,7 +885,7 @@

                                                        Detailed paths

                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 apt@2.4.12 @@ -935,7 +936,7 @@

                                                        CVE-2024-26461

                                                        • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc1/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argocd Dockerfile
                                                        • Package Manager: ubuntu:22.04 @@ -948,7 +949,7 @@

                                                          CVE-2024-26461

                                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 and krb5/libk5crypto3@1.19.2-2ubuntu0.3 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 and krb5/libk5crypto3@1.19.2-2ubuntu0.3
                                                        @@ -961,7 +962,7 @@

                                                        Detailed paths

                                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 krb5/libk5crypto3@1.19.2-2ubuntu0.3 @@ -970,7 +971,7 @@

                                                          Detailed paths

                                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 adduser@3.118ubuntu5 @@ -991,7 +992,7 @@

                                                          Detailed paths

                                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 adduser@3.118ubuntu5 @@ -1014,7 +1015,7 @@

                                                          Detailed paths

                                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 krb5/libkrb5-3@1.19.2-2ubuntu0.3 @@ -1023,7 +1024,7 @@

                                                          Detailed paths

                                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 adduser@3.118ubuntu5 @@ -1044,7 +1045,7 @@

                                                          Detailed paths

                                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -1053,7 +1054,7 @@

                                                          Detailed paths

                                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 openssh/openssh-client@1:8.9p1-3ubuntu0.6 @@ -1064,7 +1065,7 @@

                                                          Detailed paths

                                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 git@1:2.34.1-1ubuntu1.10 @@ -1077,7 +1078,7 @@

                                                          Detailed paths

                                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 git@1:2.34.1-1ubuntu1.10 @@ -1092,7 +1093,7 @@

                                                          Detailed paths

                                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 adduser@3.118ubuntu5 @@ -1111,7 +1112,7 @@

                                                          Detailed paths

                                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 krb5/libkrb5support0@1.19.2-2ubuntu0.3 @@ -1155,7 +1156,7 @@

                                                          CVE-2024-26462

                                                          • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc1/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argocd Dockerfile
                                                          • Package Manager: ubuntu:22.04 @@ -1168,7 +1169,7 @@

                                                            CVE-2024-26462

                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 and krb5/libk5crypto3@1.19.2-2ubuntu0.3 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 and krb5/libk5crypto3@1.19.2-2ubuntu0.3
                                                          @@ -1181,7 +1182,7 @@

                                                          Detailed paths

                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 krb5/libk5crypto3@1.19.2-2ubuntu0.3 @@ -1190,7 +1191,7 @@

                                                            Detailed paths

                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 adduser@3.118ubuntu5 @@ -1211,7 +1212,7 @@

                                                            Detailed paths

                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 adduser@3.118ubuntu5 @@ -1234,7 +1235,7 @@

                                                            Detailed paths

                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 krb5/libkrb5-3@1.19.2-2ubuntu0.3 @@ -1243,7 +1244,7 @@

                                                            Detailed paths

                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 adduser@3.118ubuntu5 @@ -1264,7 +1265,7 @@

                                                            Detailed paths

                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -1273,7 +1274,7 @@

                                                            Detailed paths

                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 openssh/openssh-client@1:8.9p1-3ubuntu0.6 @@ -1284,7 +1285,7 @@

                                                            Detailed paths

                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 git@1:2.34.1-1ubuntu1.10 @@ -1297,7 +1298,7 @@

                                                            Detailed paths

                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 git@1:2.34.1-1ubuntu1.10 @@ -1312,7 +1313,7 @@

                                                            Detailed paths

                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 adduser@3.118ubuntu5 @@ -1331,7 +1332,7 @@

                                                            Detailed paths

                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 krb5/libkrb5support0@1.19.2-2ubuntu0.3 @@ -1375,7 +1376,7 @@

                                                            CVE-2024-26458

                                                            • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc1/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argocd Dockerfile
                                                            • Package Manager: ubuntu:22.04 @@ -1388,7 +1389,7 @@

                                                              CVE-2024-26458

                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 and krb5/libk5crypto3@1.19.2-2ubuntu0.3 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 and krb5/libk5crypto3@1.19.2-2ubuntu0.3
                                                            @@ -1401,7 +1402,7 @@

                                                            Detailed paths

                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 krb5/libk5crypto3@1.19.2-2ubuntu0.3 @@ -1410,7 +1411,7 @@

                                                              Detailed paths

                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 adduser@3.118ubuntu5 @@ -1431,7 +1432,7 @@

                                                              Detailed paths

                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 adduser@3.118ubuntu5 @@ -1454,7 +1455,7 @@

                                                              Detailed paths

                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 krb5/libkrb5-3@1.19.2-2ubuntu0.3 @@ -1463,7 +1464,7 @@

                                                              Detailed paths

                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 adduser@3.118ubuntu5 @@ -1484,7 +1485,7 @@

                                                              Detailed paths

                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -1493,7 +1494,7 @@

                                                              Detailed paths

                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 openssh/openssh-client@1:8.9p1-3ubuntu0.6 @@ -1504,7 +1505,7 @@

                                                              Detailed paths

                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 git@1:2.34.1-1ubuntu1.10 @@ -1517,7 +1518,7 @@

                                                              Detailed paths

                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 git@1:2.34.1-1ubuntu1.10 @@ -1532,7 +1533,7 @@

                                                              Detailed paths

                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 adduser@3.118ubuntu5 @@ -1551,7 +1552,7 @@

                                                              Detailed paths

                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 krb5/libkrb5support0@1.19.2-2ubuntu0.3 @@ -1595,7 +1596,7 @@

                                                              LGPL-3.0 license

                                                              • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc1/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argo-cd/v2 /usr/local/bin/argocd
                                                              • Package Manager: golang @@ -1655,7 +1656,7 @@

                                                                Infinite loop

                                                                • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc1/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argo-cd/v2 /usr/local/bin/argocd
                                                                • Package Manager: golang @@ -1726,7 +1727,7 @@

                                                                  Stack-based Buffer Overflow

                                                                  • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc1/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argo-cd/v2 /usr/local/bin/argocd
                                                                  • Package Manager: golang @@ -1794,7 +1795,7 @@

                                                                    Infinite loop

                                                                    • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc1/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argo-cd/v2 /usr/local/bin/argocd
                                                                    • Package Manager: golang @@ -1854,146 +1855,7 @@

                                                                      References

                                              -

                                              Information Exposure

                                              -
                                              - -
                                              - medium severity -
                                              - -
                                              - -
                                                -
                                              • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc1/argoproj/argocd Dockerfile -
                                                • -
                                              • - Package Manager: ubuntu:22.04 -
                                                • -
                                              • - Vulnerable module: - - gnutls28/libgnutls30 -
                                                • - -
                                              • Introduced through: - - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 and gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - -
                                                • -
                                              - -
                                              - - -

                                              Detailed paths

                                              - -
                                                -
                                              • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
                                                • -
                                              • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 - - apt@2.4.12 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
                                                • -
                                              • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 - - gnupg2/dirmngr@2.2.27-3ubuntu2.1 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
                                                • -
                                              • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 - - git@1:2.34.1-1ubuntu1.10 - - curl/libcurl3-gnutls@7.81.0-1ubuntu1.16 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
                                                • -
                                              • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 - - git@1:2.34.1-1ubuntu1.10 - - curl/libcurl3-gnutls@7.81.0-1ubuntu1.16 - - openldap/libldap-2.5-0@2.5.17+dfsg-0ubuntu0.22.04.1 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
                                                • -
                                              • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 - - git@1:2.34.1-1ubuntu1.10 - - curl/libcurl3-gnutls@7.81.0-1ubuntu1.16 - - rtmpdump/librtmp1@2.4+20151223.gitfa8646d.1-2build4 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
                                                • -
                                              - -
                                              - -
                                              - -

                                              NVD Description

                                              -

                                              Note: Versions mentioned in the description apply only to the upstream gnutls28 package and not the gnutls28 package as distributed by Ubuntu. - See How to fix? for Ubuntu:22.04 relevant fixed versions and status.

                                              -

                                              A flaw was found in GnuTLS. The Minerva attack is a cryptographic vulnerability that exploits deterministic behavior in systems like GnuTLS, leading to side-channel leaks. In specific scenarios, such as when using the GNUTLS_PRIVKEY_FLAG_REPRODUCIBLE flag, it can result in a noticeable step in nonce size from 513 to 512 bits, exposing a potential timing side-channel.

                                              -

                                              Remediation

                                              -

                                              There is no fixed version for Ubuntu:22.04 gnutls28.

                                              -

                                              References

                                              - - -
                                              - -
                                              -

                                              More about this vulnerability

                                              -
                                              - -
                                              -
                                              -

                                              Uncaught Exception

                                              +

                                              CVE-2024-2961

                                              @@ -2004,7 +1866,7 @@

                                              Uncaught Exception

                                              • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc1/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argocd Dockerfile
                                              • Package Manager: ubuntu:22.04 @@ -2012,12 +1874,12 @@

                                                Uncaught Exception

                                              • Vulnerable module: - gnutls28/libgnutls30 + glibc/libc-bin
                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 and gnutls28/libgnutls30@3.7.3-4ubuntu1.4 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 and glibc/libc-bin@2.35-0ubuntu3.6
                                              @@ -2030,74 +1892,18 @@

                                              Detailed paths

                                              @@ -2141,7 +1948,7 @@

                                              MPL-2.0 license

                                              • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc1/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argo-cd/v2 /usr/local/bin/argocd
                                              • Package Manager: golang @@ -2201,7 +2008,7 @@

                                                MPL-2.0 license

                                                • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc1/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argo-cd/v2 /usr/local/bin/argocd
                                                • Package Manager: golang @@ -2261,7 +2068,7 @@

                                                  MPL-2.0 license

                                                  • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc1/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argo-cd/v2 /usr/local/bin/argocd
                                                  • Package Manager: golang @@ -2321,7 +2128,7 @@

                                                    MPL-2.0 license

                                                    • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc1/helm/v3 /usr/local/bin/helm + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/helm/v3 /usr/local/bin/helm
                                                    • Package Manager: golang @@ -2381,7 +2188,7 @@

                                                      MPL-2.0 license

                                                      • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc1/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argo-cd/v2 /usr/local/bin/argocd
                                                      • Package Manager: golang @@ -2441,7 +2248,7 @@

                                                        MPL-2.0 license

                                                        • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc1/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argo-cd/v2 /usr/local/bin/argocd
                                                        • Package Manager: golang @@ -2501,7 +2308,7 @@

                                                          CVE-2023-7008

                                                          • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc1/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argocd Dockerfile
                                                          • Package Manager: ubuntu:22.04 @@ -2514,7 +2321,7 @@

                                                            CVE-2023-7008

                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 and systemd/libsystemd0@249.11-0ubuntu3.12 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 and systemd/libsystemd0@249.11-0ubuntu3.12
                                                          @@ -2527,7 +2334,7 @@

                                                          Detailed paths

                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 systemd/libsystemd0@249.11-0ubuntu3.12 @@ -2536,7 +2343,7 @@

                                                            Detailed paths

                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 apt@2.4.12 @@ -2547,7 +2354,7 @@

                                                            Detailed paths

                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 procps/libprocps8@2:3.3.17-6ubuntu2.1 @@ -2558,9 +2365,9 @@

                                                            Detailed paths

                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 - util-linux@2.37.2-4ubuntu3.3 + util-linux@2.37.2-4ubuntu3.4 systemd/libsystemd0@249.11-0ubuntu3.12 @@ -2569,9 +2376,9 @@

                                                            Detailed paths

                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 - util-linux/bsdutils@1:2.37.2-4ubuntu3.3 + util-linux/bsdutils@1:2.37.2-4ubuntu3.4 systemd/libsystemd0@249.11-0ubuntu3.12 @@ -2580,7 +2387,7 @@

                                                            Detailed paths

                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 apt@2.4.12 @@ -2593,7 +2400,7 @@

                                                            Detailed paths

                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 systemd/libudev1@249.11-0ubuntu3.12 @@ -2602,7 +2409,7 @@

                                                            Detailed paths

                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 libfido2/libfido2-1@1.10.0-1 @@ -2613,9 +2420,9 @@

                                                            Detailed paths

                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 - util-linux@2.37.2-4ubuntu3.3 + util-linux@2.37.2-4ubuntu3.4 systemd/libudev1@249.11-0ubuntu3.12 @@ -2624,7 +2431,7 @@

                                                            Detailed paths

                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 apt@2.4.12 @@ -2677,7 +2484,7 @@

                                                            Arbitrary Code Injection

                                                            • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc1/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argocd Dockerfile
                                                            • Package Manager: ubuntu:22.04 @@ -2690,7 +2497,7 @@

                                                              Arbitrary Code Injection

                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 and shadow/passwd@1:4.8.1-2ubuntu2.2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 and shadow/passwd@1:4.8.1-2ubuntu2.2
                                                            @@ -2703,7 +2510,7 @@

                                                            Detailed paths

                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 shadow/passwd@1:4.8.1-2ubuntu2.2 @@ -2712,7 +2519,7 @@

                                                              Detailed paths

                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 adduser@3.118ubuntu5 @@ -2723,7 +2530,7 @@

                                                              Detailed paths

                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 openssh/openssh-client@1:8.9p1-3ubuntu0.6 @@ -2734,7 +2541,7 @@

                                                              Detailed paths

                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 shadow/login@1:4.8.1-2ubuntu2.2 @@ -2781,7 +2588,7 @@

                                                              Uncontrolled Recursion

                                                              • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc1/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argocd Dockerfile
                                                              • Package Manager: ubuntu:22.04 @@ -2794,7 +2601,7 @@

                                                                Uncontrolled Recursion

                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 and pcre3/libpcre3@2:8.39-13ubuntu0.22.04.1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 and pcre3/libpcre3@2:8.39-13ubuntu0.22.04.1
                                                              @@ -2807,7 +2614,7 @@

                                                              Detailed paths

                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 pcre3/libpcre3@2:8.39-13ubuntu0.22.04.1 @@ -2816,7 +2623,7 @@

                                                                Detailed paths

                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 grep@3.7-1build1 @@ -2869,7 +2676,7 @@

                                                                Release of Invalid Pointer or Reference

                                                                • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc1/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argocd Dockerfile
                                                                • Package Manager: ubuntu:22.04 @@ -2882,7 +2689,7 @@

                                                                  Release of Invalid Pointer or Reference

                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 and patch@2.7.6-7build2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 and patch@2.7.6-7build2
                                                                @@ -2895,7 +2702,7 @@

                                                                Detailed paths

                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 patch@2.7.6-7build2 @@ -2939,7 +2746,7 @@

                                                                  Double Free

                                                                  • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc1/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argocd Dockerfile
                                                                  • Package Manager: ubuntu:22.04 @@ -2952,7 +2759,7 @@

                                                                    Double Free

                                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 and patch@2.7.6-7build2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 and patch@2.7.6-7build2
                                                                  @@ -2965,7 +2772,7 @@

                                                                  Detailed paths

                                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 patch@2.7.6-7build2 @@ -3014,7 +2821,7 @@

                                                                    CVE-2023-50495

                                                                    • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc1/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argocd Dockerfile
                                                                    • Package Manager: ubuntu:22.04 @@ -3027,7 +2834,7 @@

                                                                      CVE-2023-50495

                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 and ncurses/libtinfo6@6.3-2ubuntu0.1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 and ncurses/libtinfo6@6.3-2ubuntu0.1
                                                                    @@ -3040,7 +2847,7 @@

                                                                    Detailed paths

                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 ncurses/libtinfo6@6.3-2ubuntu0.1 @@ -3049,7 +2856,7 @@

                                                                      Detailed paths

                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 bash@5.1-6ubuntu1.1 @@ -3060,7 +2867,7 @@

                                                                      Detailed paths

                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 ncurses/libncursesw6@6.3-2ubuntu0.1 @@ -3071,7 +2878,7 @@

                                                                      Detailed paths

                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 less@590-1ubuntu0.22.04.2 @@ -3082,7 +2889,7 @@

                                                                      Detailed paths

                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 libedit/libedit2@3.1-20210910-1build1 @@ -3093,7 +2900,7 @@

                                                                      Detailed paths

                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 ncurses/libncurses6@6.3-2ubuntu0.1 @@ -3104,7 +2911,7 @@

                                                                      Detailed paths

                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 ncurses/ncurses-bin@6.3-2ubuntu0.1 @@ -3115,7 +2922,7 @@

                                                                      Detailed paths

                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 procps@2:3.3.17-6ubuntu2.1 @@ -3126,9 +2933,9 @@

                                                                      Detailed paths

                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 - util-linux@2.37.2-4ubuntu3.3 + util-linux@2.37.2-4ubuntu3.4 ncurses/libtinfo6@6.3-2ubuntu0.1 @@ -3137,7 +2944,7 @@

                                                                      Detailed paths

                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -3152,7 +2959,7 @@

                                                                      Detailed paths

                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3167,7 +2974,7 @@

                                                                      Detailed paths

                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 ncurses/libncursesw6@6.3-2ubuntu0.1 @@ -3176,7 +2983,7 @@

                                                                      Detailed paths

                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 procps@2:3.3.17-6ubuntu2.1 @@ -3187,7 +2994,7 @@

                                                                      Detailed paths

                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3202,7 +3009,7 @@

                                                                      Detailed paths

                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 ncurses/libncurses6@6.3-2ubuntu0.1 @@ -3211,7 +3018,7 @@

                                                                      Detailed paths

                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 procps@2:3.3.17-6ubuntu2.1 @@ -3222,7 +3029,7 @@

                                                                      Detailed paths

                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 ncurses/ncurses-base@6.3-2ubuntu0.1 @@ -3231,7 +3038,7 @@

                                                                      Detailed paths

                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 ncurses/ncurses-bin@6.3-2ubuntu0.1 @@ -3278,7 +3085,7 @@

                                                                      CVE-2023-45918

                                                                      • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc1/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argocd Dockerfile
                                                                      • Package Manager: ubuntu:22.04 @@ -3291,7 +3098,7 @@

                                                                        CVE-2023-45918

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 and ncurses/libtinfo6@6.3-2ubuntu0.1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 and ncurses/libtinfo6@6.3-2ubuntu0.1
                                                                      @@ -3304,7 +3111,7 @@

                                                                      Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 ncurses/libtinfo6@6.3-2ubuntu0.1 @@ -3313,7 +3120,7 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 bash@5.1-6ubuntu1.1 @@ -3324,7 +3131,7 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 ncurses/libncursesw6@6.3-2ubuntu0.1 @@ -3335,7 +3142,7 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 less@590-1ubuntu0.22.04.2 @@ -3346,7 +3153,7 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 libedit/libedit2@3.1-20210910-1build1 @@ -3357,7 +3164,7 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 ncurses/libncurses6@6.3-2ubuntu0.1 @@ -3368,7 +3175,7 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 ncurses/ncurses-bin@6.3-2ubuntu0.1 @@ -3379,7 +3186,7 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 procps@2:3.3.17-6ubuntu2.1 @@ -3390,9 +3197,9 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 - util-linux@2.37.2-4ubuntu3.3 + util-linux@2.37.2-4ubuntu3.4 ncurses/libtinfo6@6.3-2ubuntu0.1 @@ -3401,7 +3208,7 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -3416,7 +3223,7 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3431,7 +3238,7 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 ncurses/libncursesw6@6.3-2ubuntu0.1 @@ -3440,7 +3247,7 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 procps@2:3.3.17-6ubuntu2.1 @@ -3451,7 +3258,7 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3466,7 +3273,7 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 ncurses/libncurses6@6.3-2ubuntu0.1 @@ -3475,7 +3282,7 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 procps@2:3.3.17-6ubuntu2.1 @@ -3486,7 +3293,7 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 ncurses/ncurses-base@6.3-2ubuntu0.1 @@ -3495,7 +3302,7 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 ncurses/ncurses-bin@6.3-2ubuntu0.1 @@ -3540,7 +3347,7 @@

                                                                        Resource Exhaustion

                                                                        • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc1/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argocd Dockerfile
                                                                        • Package Manager: ubuntu:22.04 @@ -3553,7 +3360,7 @@

                                                                          Resource Exhaustion

                                                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 and libzstd/libzstd1@1.4.8+dfsg-3build1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 and libzstd/libzstd1@1.4.8+dfsg-3build1
                                                                        @@ -3566,7 +3373,7 @@

                                                                        Detailed paths

                                                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 libzstd/libzstd1@1.4.8+dfsg-3build1 @@ -3617,7 +3424,7 @@

                                                                          Integer Overflow or Wraparound

                                                                          • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc1/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argocd Dockerfile
                                                                          • Package Manager: ubuntu:22.04 @@ -3630,7 +3437,7 @@

                                                                            Integer Overflow or Wraparound

                                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 and krb5/libk5crypto3@1.19.2-2ubuntu0.3 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 and krb5/libk5crypto3@1.19.2-2ubuntu0.3
                                                                          @@ -3643,7 +3450,7 @@

                                                                          Detailed paths

                                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 krb5/libk5crypto3@1.19.2-2ubuntu0.3 @@ -3652,7 +3459,7 @@

                                                                            Detailed paths

                                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 adduser@3.118ubuntu5 @@ -3673,7 +3480,7 @@

                                                                            Detailed paths

                                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 adduser@3.118ubuntu5 @@ -3696,7 +3503,7 @@

                                                                            Detailed paths

                                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 krb5/libkrb5-3@1.19.2-2ubuntu0.3 @@ -3705,7 +3512,7 @@

                                                                            Detailed paths

                                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 adduser@3.118ubuntu5 @@ -3726,7 +3533,7 @@

                                                                            Detailed paths

                                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -3735,7 +3542,7 @@

                                                                            Detailed paths

                                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 openssh/openssh-client@1:8.9p1-3ubuntu0.6 @@ -3746,7 +3553,7 @@

                                                                            Detailed paths

                                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 git@1:2.34.1-1ubuntu1.10 @@ -3759,7 +3566,7 @@

                                                                            Detailed paths

                                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 git@1:2.34.1-1ubuntu1.10 @@ -3774,7 +3581,7 @@

                                                                            Detailed paths

                                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 adduser@3.118ubuntu5 @@ -3793,7 +3600,7 @@

                                                                            Detailed paths

                                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 krb5/libkrb5support0@1.19.2-2ubuntu0.3 @@ -3841,7 +3648,7 @@

                                                                            Out-of-bounds Write

                                                                            • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc1/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argocd Dockerfile
                                                                            • Package Manager: ubuntu:22.04 @@ -3854,7 +3661,7 @@

                                                                              Out-of-bounds Write

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 and gnupg2/gpgv@2.2.27-3ubuntu2.1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 and gnupg2/gpgv@2.2.27-3ubuntu2.1
                                                                            @@ -3867,7 +3674,7 @@

                                                                            Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 gnupg2/gpgv@2.2.27-3ubuntu2.1 @@ -3876,7 +3683,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 apt@2.4.12 @@ -3887,7 +3694,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3898,7 +3705,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 gnupg2/dirmngr@2.2.27-3ubuntu2.1 @@ -3909,7 +3716,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -3920,7 +3727,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3933,7 +3740,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3946,7 +3753,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 gnupg2/dirmngr@2.2.27-3ubuntu2.1 @@ -3955,7 +3762,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3966,7 +3773,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3979,7 +3786,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 gnupg2/gnupg-l10n@2.2.27-3ubuntu2.1 @@ -3988,7 +3795,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3999,7 +3806,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 gnupg2/gnupg-utils@2.2.27-3ubuntu2.1 @@ -4008,7 +3815,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4019,7 +3826,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -4028,7 +3835,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4039,7 +3846,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4052,7 +3859,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4065,7 +3872,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 gnupg2/gpg-agent@2.2.27-3ubuntu2.1 @@ -4074,7 +3881,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4085,7 +3892,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4098,7 +3905,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4111,7 +3918,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 gnupg2/gpg-wks-client@2.2.27-3ubuntu2.1 @@ -4120,7 +3927,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4131,7 +3938,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 gnupg2/gpg-wks-server@2.2.27-3ubuntu2.1 @@ -4140,7 +3947,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4151,7 +3958,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 gnupg2/gpgsm@2.2.27-3ubuntu2.1 @@ -4160,7 +3967,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4171,7 +3978,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4220,7 +4027,7 @@

                                                                              Allocation of Resources Without Limits or Throttling

                                                                            • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc1/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argocd Dockerfile
                                                                            • Package Manager: ubuntu:22.04 @@ -4233,7 +4040,7 @@

                                                                              Allocation of Resources Without Limits or Throttling

                                                                              Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 and glibc/libc-bin@2.35-0ubuntu3.6 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 and glibc/libc-bin@2.35-0ubuntu3.6
                                                                            @@ -4246,7 +4053,7 @@

                                                                            Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 glibc/libc-bin@2.35-0ubuntu3.6 @@ -4255,7 +4062,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 glibc/libc6@2.35-0ubuntu3.6 @@ -4301,7 +4108,7 @@

                                                                              Improper Input Validation

                                                                              • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc1/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argocd Dockerfile
                                                                              • Package Manager: ubuntu:22.04 @@ -4315,7 +4122,7 @@

                                                                                Improper Input Validation

                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1, git@1:2.34.1-1ubuntu1.10 and others + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2, git@1:2.34.1-1ubuntu1.10 and others
                                                                              @@ -4327,7 +4134,7 @@

                                                                              Detailed paths

                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 git@1:2.34.1-1ubuntu1.10 @@ -4338,7 +4145,7 @@

                                                                                Detailed paths

                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 git@1:2.34.1-1ubuntu1.10 @@ -4347,7 +4154,7 @@

                                                                                Detailed paths

                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 git-lfs@3.0.2-1ubuntu0.2 @@ -4394,7 +4201,7 @@

                                                                                Uncontrolled Recursion

                                                                                • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc1/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argocd Dockerfile
                                                                                • Package Manager: ubuntu:22.04 @@ -4407,7 +4214,7 @@

                                                                                  Uncontrolled Recursion

                                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 and gcc-12/libstdc++6@12.3.0-1ubuntu1~22.04 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 and gcc-12/libstdc++6@12.3.0-1ubuntu1~22.04
                                                                                @@ -4420,7 +4227,7 @@

                                                                                Detailed paths

                                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 gcc-12/libstdc++6@12.3.0-1ubuntu1~22.04 @@ -4429,7 +4236,7 @@

                                                                                  Detailed paths

                                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 apt@2.4.12 @@ -4440,7 +4247,7 @@

                                                                                  Detailed paths

                                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 apt@2.4.12 @@ -4453,7 +4260,7 @@

                                                                                  Detailed paths

                                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 gcc-12/gcc-12-base@12.3.0-1ubuntu1~22.04 @@ -4462,7 +4269,7 @@

                                                                                  Detailed paths

                                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 gcc-12/libgcc-s1@12.3.0-1ubuntu1~22.04 @@ -4509,7 +4316,7 @@

                                                                                  Improper Input Validation

                                                                                  • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc1/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argocd Dockerfile
                                                                                  • Package Manager: ubuntu:22.04 @@ -4522,7 +4329,7 @@

                                                                                    Improper Input Validation

                                                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 and coreutils@8.32-4.1ubuntu1.2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 and coreutils@8.32-4.1ubuntu1.2
                                                                                  @@ -4535,7 +4342,7 @@

                                                                                  Detailed paths

                                                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 coreutils@8.32-4.1ubuntu1.2 diff --git a/docs/snyk/v2.11.0-rc1/redis_7.0.14-alpine.html b/docs/snyk/v2.11.0-rc2/redis_7.0.14-alpine.html similarity index 99% rename from docs/snyk/v2.11.0-rc1/redis_7.0.14-alpine.html rename to docs/snyk/v2.11.0-rc2/redis_7.0.14-alpine.html index e4ddbad778e3a..226f64188d30d 100644 --- a/docs/snyk/v2.11.0-rc1/redis_7.0.14-alpine.html +++ b/docs/snyk/v2.11.0-rc2/redis_7.0.14-alpine.html @@ -456,7 +456,7 @@

                                                                                    Snyk test report

                                                                                    -

                                                                                    April 14th 2024, 12:20:31 am (UTC+00:00)

                                                                                    +

                                                                                    April 21st 2024, 12:18:30 am (UTC+00:00)

                                                                                    Scanned the following paths: diff --git a/docs/snyk/v2.8.15/argocd-iac-install.html b/docs/snyk/v2.8.16/argocd-iac-install.html similarity index 99% rename from docs/snyk/v2.8.15/argocd-iac-install.html rename to docs/snyk/v2.8.16/argocd-iac-install.html index e3b3964efc5d3..f72bf79bda97b 100644 --- a/docs/snyk/v2.8.15/argocd-iac-install.html +++ b/docs/snyk/v2.8.16/argocd-iac-install.html @@ -456,7 +456,7 @@

                                                                                    Snyk test report

                                                                                    -

                                                                                    April 14th 2024, 12:28:17 am (UTC+00:00)

                                                                                    +

                                                                                    April 21st 2024, 12:26:06 am (UTC+00:00)

                                                                                    Scanned the following path: diff --git a/docs/snyk/v2.8.15/argocd-iac-namespace-install.html b/docs/snyk/v2.8.16/argocd-iac-namespace-install.html similarity index 99% rename from docs/snyk/v2.8.15/argocd-iac-namespace-install.html rename to docs/snyk/v2.8.16/argocd-iac-namespace-install.html index eb2cc5db68f5c..0ed3548b2ecc0 100644 --- a/docs/snyk/v2.8.15/argocd-iac-namespace-install.html +++ b/docs/snyk/v2.8.16/argocd-iac-namespace-install.html @@ -456,7 +456,7 @@

                                                                                    Snyk test report

                                                                                    -

                                                                                    April 14th 2024, 12:28:26 am (UTC+00:00)

                                                                                    +

                                                                                    April 21st 2024, 12:26:14 am (UTC+00:00)

                                                                                    Scanned the following path: diff --git a/docs/snyk/v2.8.15/argocd-test.html b/docs/snyk/v2.8.16/argocd-test.html similarity index 99% rename from docs/snyk/v2.8.15/argocd-test.html rename to docs/snyk/v2.8.16/argocd-test.html index 842457e102410..277070c2d0430 100644 --- a/docs/snyk/v2.8.15/argocd-test.html +++ b/docs/snyk/v2.8.16/argocd-test.html @@ -456,7 +456,7 @@

                                                                                    Snyk test report

                                                                                    -

                                                                                    April 14th 2024, 12:26:39 am (UTC+00:00)

                                                                                    +

                                                                                    April 21st 2024, 12:24:29 am (UTC+00:00)

                                                                                    Scanned the following paths: @@ -2794,6 +2794,7 @@

                                                                                    Remediation

                                                                                    Upgrade golang.org/x/net/http2 to version 0.23.0 or higher.

                                                                                    References

                                                                                    diff --git a/docs/snyk/v2.8.15/ghcr.io_dexidp_dex_v2.37.0.html b/docs/snyk/v2.8.16/ghcr.io_dexidp_dex_v2.37.0.html similarity index 99% rename from docs/snyk/v2.8.15/ghcr.io_dexidp_dex_v2.37.0.html rename to docs/snyk/v2.8.16/ghcr.io_dexidp_dex_v2.37.0.html index 2123841b3fc4c..aef6e795cbcff 100644 --- a/docs/snyk/v2.8.15/ghcr.io_dexidp_dex_v2.37.0.html +++ b/docs/snyk/v2.8.16/ghcr.io_dexidp_dex_v2.37.0.html @@ -456,7 +456,7 @@

                                                                                    Snyk test report

                                                                                    -

                                                                                    April 14th 2024, 12:26:45 am (UTC+00:00)

                                                                                    +

                                                                                    April 21st 2024, 12:24:36 am (UTC+00:00)

                                                                                    Scanned the following paths: @@ -1084,6 +1084,7 @@

                                                                                    Remediation

                                                                                    Upgrade golang.org/x/net/http2 to version 0.23.0 or higher.

                                                                                    References

                                                                                    diff --git a/docs/snyk/v2.11.0-rc1/haproxy_2.6.14-alpine.html b/docs/snyk/v2.8.16/haproxy_2.6.14-alpine.html similarity index 99% rename from docs/snyk/v2.11.0-rc1/haproxy_2.6.14-alpine.html rename to docs/snyk/v2.8.16/haproxy_2.6.14-alpine.html index bcdb241407f75..be84d8b7f6e06 100644 --- a/docs/snyk/v2.11.0-rc1/haproxy_2.6.14-alpine.html +++ b/docs/snyk/v2.8.16/haproxy_2.6.14-alpine.html @@ -456,7 +456,7 @@

                                                                                    Snyk test report

                                                                                    -

                                                                                    April 14th 2024, 12:20:08 am (UTC+00:00)

                                                                                    +

                                                                                    April 21st 2024, 12:24:39 am (UTC+00:00)

                                                                                    Scanned the following path: diff --git a/docs/snyk/v2.8.15/quay.io_argoproj_argocd_v2.8.15.html b/docs/snyk/v2.8.16/quay.io_argoproj_argocd_v2.8.16.html similarity index 95% rename from docs/snyk/v2.8.15/quay.io_argoproj_argocd_v2.8.15.html rename to docs/snyk/v2.8.16/quay.io_argoproj_argocd_v2.8.16.html index b4599d5082c78..ba55018506817 100644 --- a/docs/snyk/v2.8.15/quay.io_argoproj_argocd_v2.8.15.html +++ b/docs/snyk/v2.8.16/quay.io_argoproj_argocd_v2.8.16.html @@ -7,7 +7,7 @@ Snyk test report - + @@ -456,22 +456,22 @@

                                                                                    Snyk test report

                                                                                    -

                                                                                    April 14th 2024, 12:27:05 am (UTC+00:00)

                                                                                    +

                                                                                    April 21st 2024, 12:24:56 am (UTC+00:00)

                                                                                    Scanned the following paths:
                                                                                      -
                                                                                    • quay.io/argoproj/argocd:v2.8.15/argoproj/argocd/Dockerfile (deb)
                                                                                      • -
                                                                                    • quay.io/argoproj/argocd:v2.8.15/argoproj/argo-cd/v2//usr/local/bin/argocd (gomodules)
                                                                                      • -
                                                                                    • quay.io/argoproj/argocd:v2.8.15/kustomize/kustomize/v5//usr/local/bin/kustomize (gomodules)
                                                                                      • -
                                                                                    • quay.io/argoproj/argocd:v2.8.15/helm/v3//usr/local/bin/helm (gomodules)
                                                                                      • -
                                                                                    • quay.io/argoproj/argocd:v2.8.15/git-lfs/git-lfs//usr/bin/git-lfs (gomodules)
                                                                                      • +
                                                                                    • quay.io/argoproj/argocd:v2.8.16/argoproj/argocd/Dockerfile (deb)
                                                                                      • +
                                                                                    • quay.io/argoproj/argocd:v2.8.16/argoproj/argo-cd/v2//usr/local/bin/argocd (gomodules)
                                                                                      • +
                                                                                    • quay.io/argoproj/argocd:v2.8.16/kustomize/kustomize/v5//usr/local/bin/kustomize (gomodules)
                                                                                      • +
                                                                                    • quay.io/argoproj/argocd:v2.8.16/helm/v3//usr/local/bin/helm (gomodules)
                                                                                      • +
                                                                                    • quay.io/argoproj/argocd:v2.8.16/git-lfs/git-lfs//usr/bin/git-lfs (gomodules)
                                                                                    -
                                                                                    39 known vulnerabilities
                                                                                    -
                                                                                    183 vulnerable dependency paths
                                                                                    +
                                                                                    40 known vulnerabilities
                                                                                    +
                                                                                    185 vulnerable dependency paths
                                                                                    2120 dependencies
                                                                                    @@ -492,7 +492,7 @@

                                                                                    Allocation of Resources Without Limits or Throttling

                                                                                  • - Manifest file: quay.io/argoproj/argocd:v2.8.15/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argo-cd/v2 /usr/local/bin/argocd
                                                                                  • Package Manager: golang @@ -547,6 +547,7 @@

                                                                                    Remediation

                                                                                    Upgrade golang.org/x/net/http2 to version 0.23.0 or higher.

                                                                                    References

                                                                                      +
                                                                                    • Github Commit
                                                                                    • GitHub Commit
                                                                                    • GitHub Issue
                                                                                    • Go Advisory
                                                                                      • @@ -571,7 +572,7 @@

                                                                                      Denial of Service (DoS)

                                                                                      • - Manifest file: quay.io/argoproj/argocd:v2.8.15/helm/v3 /usr/local/bin/helm + Manifest file: quay.io/argoproj/argocd:v2.8.16/helm/v3 /usr/local/bin/helm
                                                                                      • Package Manager: golang @@ -653,7 +654,7 @@

                                                                                        Denial of Service (DoS)

                                                                                        • - Manifest file: quay.io/argoproj/argocd:v2.8.15/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argo-cd/v2 /usr/local/bin/argocd
                                                                                        • Package Manager: golang @@ -710,6 +711,7 @@

                                                                                          Remediation

                                                                                          Upgrade github.com/go-jose/go-jose/v3 to version 3.0.1 or higher.

                                                                                          References

                                                                                          @@ -733,7 +735,7 @@

                                                                                          Directory Traversal

                                                                                          • - Manifest file: quay.io/argoproj/argocd:v2.8.15/helm/v3 /usr/local/bin/helm + Manifest file: quay.io/argoproj/argocd:v2.8.16/helm/v3 /usr/local/bin/helm
                                                                                          • Package Manager: golang @@ -823,7 +825,7 @@

                                                                                            CVE-2020-22916

                                                                                            • - Manifest file: quay.io/argoproj/argocd:v2.8.15/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argocd Dockerfile
                                                                                            • Package Manager: ubuntu:22.04 @@ -836,7 +838,7 @@

                                                                                              CVE-2020-22916

                                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 and xz-utils/liblzma5@5.2.5-2ubuntu1 + docker-image|quay.io/argoproj/argocd@v2.8.16 and xz-utils/liblzma5@5.2.5-2ubuntu1
                                                                                            @@ -849,7 +851,7 @@

                                                                                            Detailed paths

                                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 xz-utils/liblzma5@5.2.5-2ubuntu1 @@ -899,7 +901,7 @@

                                                                                              CVE-2023-51767

                                                                                              • - Manifest file: quay.io/argoproj/argocd:v2.8.15/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argocd Dockerfile
                                                                                              • Package Manager: ubuntu:22.04 @@ -912,7 +914,7 @@

                                                                                                CVE-2023-51767

                                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 and openssh/openssh-client@1:8.9p1-3ubuntu0.6 + docker-image|quay.io/argoproj/argocd@v2.8.16 and openssh/openssh-client@1:8.9p1-3ubuntu0.6
                                                                                              @@ -925,7 +927,7 @@

                                                                                              Detailed paths

                                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 openssh/openssh-client@1:8.9p1-3ubuntu0.6 @@ -975,7 +977,7 @@

                                                                                                Information Exposure

                                                                                                • - Manifest file: quay.io/argoproj/argocd:v2.8.15/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argocd Dockerfile
                                                                                                • Package Manager: ubuntu:22.04 @@ -988,7 +990,7 @@

                                                                                                  Information Exposure

                                                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 and libgcrypt20@1.9.4-3ubuntu3 + docker-image|quay.io/argoproj/argocd@v2.8.16 and libgcrypt20@1.9.4-3ubuntu3
                                                                                                @@ -1001,7 +1003,7 @@

                                                                                                Detailed paths

                                                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 libgcrypt20@1.9.4-3ubuntu3 @@ -1010,7 +1012,7 @@

                                                                                                  Detailed paths

                                                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gnupg2/dirmngr@2.2.27-3ubuntu2.1 @@ -1021,7 +1023,7 @@

                                                                                                  Detailed paths

                                                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -1032,7 +1034,7 @@

                                                                                                  Detailed paths

                                                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 apt@2.4.12 @@ -1045,7 +1047,7 @@

                                                                                                  Detailed paths

                                                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 apt@2.4.12 @@ -1058,7 +1060,7 @@

                                                                                                  Detailed paths

                                                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -1071,7 +1073,7 @@

                                                                                                  Detailed paths

                                                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -1084,7 +1086,7 @@

                                                                                                  Detailed paths

                                                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -1097,7 +1099,7 @@

                                                                                                  Detailed paths

                                                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -1110,7 +1112,7 @@

                                                                                                  Detailed paths

                                                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -1123,7 +1125,7 @@

                                                                                                  Detailed paths

                                                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -1136,7 +1138,7 @@

                                                                                                  Detailed paths

                                                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 apt@2.4.12 @@ -1187,7 +1189,7 @@

                                                                                                  CVE-2024-26461

                                                                                                  • - Manifest file: quay.io/argoproj/argocd:v2.8.15/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argocd Dockerfile
                                                                                                  • Package Manager: ubuntu:22.04 @@ -1200,7 +1202,7 @@

                                                                                                    CVE-2024-26461

                                                                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 and krb5/libk5crypto3@1.19.2-2ubuntu0.3 + docker-image|quay.io/argoproj/argocd@v2.8.16 and krb5/libk5crypto3@1.19.2-2ubuntu0.3
                                                                                                  @@ -1213,7 +1215,7 @@

                                                                                                  Detailed paths

                                                                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 krb5/libk5crypto3@1.19.2-2ubuntu0.3 @@ -1222,7 +1224,7 @@

                                                                                                    Detailed paths

                                                                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 adduser@3.118ubuntu5 @@ -1243,7 +1245,7 @@

                                                                                                    Detailed paths

                                                                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 adduser@3.118ubuntu5 @@ -1266,7 +1268,7 @@

                                                                                                    Detailed paths

                                                                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 krb5/libkrb5-3@1.19.2-2ubuntu0.3 @@ -1275,7 +1277,7 @@

                                                                                                    Detailed paths

                                                                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 adduser@3.118ubuntu5 @@ -1296,7 +1298,7 @@

                                                                                                    Detailed paths

                                                                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -1305,7 +1307,7 @@

                                                                                                    Detailed paths

                                                                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 openssh/openssh-client@1:8.9p1-3ubuntu0.6 @@ -1316,7 +1318,7 @@

                                                                                                    Detailed paths

                                                                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 git@1:2.34.1-1ubuntu1.10 @@ -1329,7 +1331,7 @@

                                                                                                    Detailed paths

                                                                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 git@1:2.34.1-1ubuntu1.10 @@ -1344,7 +1346,7 @@

                                                                                                    Detailed paths

                                                                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 adduser@3.118ubuntu5 @@ -1363,7 +1365,7 @@

                                                                                                    Detailed paths

                                                                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 krb5/libkrb5support0@1.19.2-2ubuntu0.3 @@ -1407,7 +1409,7 @@

                                                                                                    CVE-2024-26462

                                                                                                    • - Manifest file: quay.io/argoproj/argocd:v2.8.15/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argocd Dockerfile
                                                                                                    • Package Manager: ubuntu:22.04 @@ -1420,7 +1422,7 @@

                                                                                                      CVE-2024-26462

                                                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 and krb5/libk5crypto3@1.19.2-2ubuntu0.3 + docker-image|quay.io/argoproj/argocd@v2.8.16 and krb5/libk5crypto3@1.19.2-2ubuntu0.3
                                                                                                    @@ -1433,7 +1435,7 @@

                                                                                                    Detailed paths

                                                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 krb5/libk5crypto3@1.19.2-2ubuntu0.3 @@ -1442,7 +1444,7 @@

                                                                                                      Detailed paths

                                                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 adduser@3.118ubuntu5 @@ -1463,7 +1465,7 @@

                                                                                                      Detailed paths

                                                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 adduser@3.118ubuntu5 @@ -1486,7 +1488,7 @@

                                                                                                      Detailed paths

                                                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 krb5/libkrb5-3@1.19.2-2ubuntu0.3 @@ -1495,7 +1497,7 @@

                                                                                                      Detailed paths

                                                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 adduser@3.118ubuntu5 @@ -1516,7 +1518,7 @@

                                                                                                      Detailed paths

                                                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -1525,7 +1527,7 @@

                                                                                                      Detailed paths

                                                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 openssh/openssh-client@1:8.9p1-3ubuntu0.6 @@ -1536,7 +1538,7 @@

                                                                                                      Detailed paths

                                                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 git@1:2.34.1-1ubuntu1.10 @@ -1549,7 +1551,7 @@

                                                                                                      Detailed paths

                                                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 git@1:2.34.1-1ubuntu1.10 @@ -1564,7 +1566,7 @@

                                                                                                      Detailed paths

                                                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 adduser@3.118ubuntu5 @@ -1583,7 +1585,7 @@

                                                                                                      Detailed paths

                                                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 krb5/libkrb5support0@1.19.2-2ubuntu0.3 @@ -1627,7 +1629,7 @@

                                                                                                      CVE-2024-26458

                                                                                                      • - Manifest file: quay.io/argoproj/argocd:v2.8.15/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argocd Dockerfile
                                                                                                      • Package Manager: ubuntu:22.04 @@ -1640,7 +1642,7 @@

                                                                                                        CVE-2024-26458

                                                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 and krb5/libk5crypto3@1.19.2-2ubuntu0.3 + docker-image|quay.io/argoproj/argocd@v2.8.16 and krb5/libk5crypto3@1.19.2-2ubuntu0.3
                                                                                                      @@ -1653,7 +1655,7 @@

                                                                                                      Detailed paths

                                                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 krb5/libk5crypto3@1.19.2-2ubuntu0.3 @@ -1662,7 +1664,7 @@

                                                                                                        Detailed paths

                                                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 adduser@3.118ubuntu5 @@ -1683,7 +1685,7 @@

                                                                                                        Detailed paths

                                                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 adduser@3.118ubuntu5 @@ -1706,7 +1708,7 @@

                                                                                                        Detailed paths

                                                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 krb5/libkrb5-3@1.19.2-2ubuntu0.3 @@ -1715,7 +1717,7 @@

                                                                                                        Detailed paths

                                                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 adduser@3.118ubuntu5 @@ -1736,7 +1738,7 @@

                                                                                                        Detailed paths

                                                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -1745,7 +1747,7 @@

                                                                                                        Detailed paths

                                                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 openssh/openssh-client@1:8.9p1-3ubuntu0.6 @@ -1756,7 +1758,7 @@

                                                                                                        Detailed paths

                                                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 git@1:2.34.1-1ubuntu1.10 @@ -1769,7 +1771,7 @@

                                                                                                        Detailed paths

                                                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 git@1:2.34.1-1ubuntu1.10 @@ -1784,7 +1786,7 @@

                                                                                                        Detailed paths

                                                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 adduser@3.118ubuntu5 @@ -1803,7 +1805,7 @@

                                                                                                        Detailed paths

                                                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 krb5/libkrb5support0@1.19.2-2ubuntu0.3 @@ -1847,7 +1849,7 @@

                                                                                                        LGPL-3.0 license

                                                                                                        • - Manifest file: quay.io/argoproj/argocd:v2.8.15/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argo-cd/v2 /usr/local/bin/argocd
                                                                                                        • Package Manager: golang @@ -1907,7 +1909,7 @@

                                                                                                          Infinite loop

                                                                                                          • - Manifest file: quay.io/argoproj/argocd:v2.8.15/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argo-cd/v2 /usr/local/bin/argocd
                                                                                                          • Package Manager: golang @@ -1978,7 +1980,7 @@

                                                                                                            Stack-based Buffer Overflow

                                                                                                            • - Manifest file: quay.io/argoproj/argocd:v2.8.15/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argo-cd/v2 /usr/local/bin/argocd
                                                                                                            • Package Manager: golang @@ -2046,7 +2048,7 @@

                                                                                                              Infinite loop

                                                                                                              • - Manifest file: quay.io/argoproj/argocd:v2.8.15/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argo-cd/v2 /usr/local/bin/argocd
                                                                                                              • Package Manager: golang @@ -2117,7 +2119,7 @@

                                                                                                                Allocation of Resources Without Limits or Throttling

                                                                                                              • - Manifest file: quay.io/argoproj/argocd:v2.8.15/helm/v3 /usr/local/bin/helm + Manifest file: quay.io/argoproj/argocd:v2.8.16/helm/v3 /usr/local/bin/helm
                                                                                                              • Package Manager: golang @@ -2189,7 +2191,7 @@

                                                                                                                Authentication Bypass by Capture-replay

                                                                                                                @@ -2284,7 +2289,7 @@

                                                                                                                Information Exposure

                                                                                                                • - Manifest file: quay.io/argoproj/argocd:v2.8.15/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argocd Dockerfile
                                                                                                                • Package Manager: ubuntu:22.04 @@ -2297,7 +2302,7 @@

                                                                                                                  Information Exposure

                                                                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 and gnutls28/libgnutls30@3.7.3-4ubuntu1.4 + docker-image|quay.io/argoproj/argocd@v2.8.16 and gnutls28/libgnutls30@3.7.3-4ubuntu1.4
                                                                                                                @@ -2310,7 +2315,7 @@

                                                                                                                Detailed paths

                                                                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gnutls28/libgnutls30@3.7.3-4ubuntu1.4 @@ -2319,7 +2324,7 @@

                                                                                                                  Detailed paths

                                                                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 apt@2.4.12 @@ -2330,7 +2335,7 @@

                                                                                                                  Detailed paths

                                                                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gnupg2/dirmngr@2.2.27-3ubuntu2.1 @@ -2341,7 +2346,7 @@

                                                                                                                  Detailed paths

                                                                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 git@1:2.34.1-1ubuntu1.10 @@ -2354,7 +2359,7 @@

                                                                                                                  Detailed paths

                                                                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 git@1:2.34.1-1ubuntu1.10 @@ -2369,7 +2374,7 @@

                                                                                                                  Detailed paths

                                                                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 git@1:2.34.1-1ubuntu1.10 @@ -2393,7 +2398,7 @@

                                                                                                                  NVD Description

                                                                                                                  See How to fix? for Ubuntu:22.04 relevant fixed versions and status.

                                                                                                                  A flaw was found in GnuTLS. The Minerva attack is a cryptographic vulnerability that exploits deterministic behavior in systems like GnuTLS, leading to side-channel leaks. In specific scenarios, such as when using the GNUTLS_PRIVKEY_FLAG_REPRODUCIBLE flag, it can result in a noticeable step in nonce size from 513 to 512 bits, exposing a potential timing side-channel.

                                                                                                                  Remediation

                                                                                                                  -

                                                                                                                  There is no fixed version for Ubuntu:22.04 gnutls28.

                                                                                                                  +

                                                                                                                  Upgrade Ubuntu:22.04 gnutls28 to version 3.7.3-4ubuntu1.5 or higher.

                                                                                                                  References

                                                                                                                  @@ -2423,7 +2430,7 @@

                                                                                                                  Uncaught Exception

                                                                                                                  • - Manifest file: quay.io/argoproj/argocd:v2.8.15/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argocd Dockerfile
                                                                                                                  • Package Manager: ubuntu:22.04 @@ -2436,7 +2443,7 @@

                                                                                                                    Uncaught Exception

                                                                                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 and gnutls28/libgnutls30@3.7.3-4ubuntu1.4 + docker-image|quay.io/argoproj/argocd@v2.8.16 and gnutls28/libgnutls30@3.7.3-4ubuntu1.4
                                                                                                                  @@ -2449,7 +2456,7 @@

                                                                                                                  Detailed paths

                                                                                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gnutls28/libgnutls30@3.7.3-4ubuntu1.4 @@ -2458,7 +2465,7 @@

                                                                                                                    Detailed paths

                                                                                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 apt@2.4.12 @@ -2469,7 +2476,7 @@

                                                                                                                    Detailed paths

                                                                                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gnupg2/dirmngr@2.2.27-3ubuntu2.1 @@ -2480,7 +2487,7 @@

                                                                                                                    Detailed paths

                                                                                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 git@1:2.34.1-1ubuntu1.10 @@ -2493,7 +2500,7 @@

                                                                                                                    Detailed paths

                                                                                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 git@1:2.34.1-1ubuntu1.10 @@ -2508,7 +2515,7 @@

                                                                                                                    Detailed paths

                                                                                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 git@1:2.34.1-1ubuntu1.10 @@ -2532,13 +2539,14 @@

                                                                                                                    NVD Description

                                                                                                                    See How to fix? for Ubuntu:22.04 relevant fixed versions and status.

                                                                                                                    A flaw has been discovered in GnuTLS where an application crash can be induced when attempting to verify a specially crafted .pem bundle using the "certtool --verify-chain" command.

                                                                                                                    Remediation

                                                                                                                    -

                                                                                                                    There is no fixed version for Ubuntu:22.04 gnutls28.

                                                                                                                    +

                                                                                                                    Upgrade Ubuntu:22.04 gnutls28 to version 3.7.3-4ubuntu1.5 or higher.

                                                                                                                    References

                                                                                                                    @@ -2547,6 +2555,88 @@

                                                                                                                    References

                                                                                                                    More about this vulnerability

                                              +
                                              +
                                              +

                                              CVE-2024-2961

                                              +
                                              + +
                                              + medium severity +
                                              + +
                                              + +
                                                +
                                              • + Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argocd Dockerfile +
                                                • +
                                              • + Package Manager: ubuntu:22.04 +
                                                • +
                                              • + Vulnerable module: + + glibc/libc-bin +
                                                • + +
                                              • Introduced through: + + docker-image|quay.io/argoproj/argocd@v2.8.16 and glibc/libc-bin@2.35-0ubuntu3.6 + +
                                                • +
                                              + +
                                              + + +

                                              Detailed paths

                                              + +
                                                +
                                              • + Introduced through: + docker-image|quay.io/argoproj/argocd@v2.8.16 + + glibc/libc-bin@2.35-0ubuntu3.6 + + + +
                                                • +
                                              • + Introduced through: + docker-image|quay.io/argoproj/argocd@v2.8.16 + + glibc/libc6@2.35-0ubuntu3.6 + + + +
                                                • +
                                              + +
                                              + +
                                              + +

                                              NVD Description

                                              +

                                              Note: Versions mentioned in the description apply only to the upstream glibc package and not the glibc package as distributed by Ubuntu. + See How to fix? for Ubuntu:22.04 relevant fixed versions and status.

                                              +

                                              The iconv() function in the GNU C Library versions 2.39 and older may overflow the output buffer passed to it by up to 4 bytes when converting strings to the ISO-2022-CN-EXT character set, which may be used to crash an application or overwrite a neighbouring variable.

                                              +

                                              Remediation

                                              +

                                              Upgrade Ubuntu:22.04 glibc to version 2.35-0ubuntu3.7 or higher.

                                              +

                                              References

                                              + + +
                                              + +
                                              +

                                              More about this vulnerability

                                              +
                                              +

                                              MPL-2.0 license

                                              @@ -2560,7 +2650,7 @@

                                              MPL-2.0 license

                                              • - Manifest file: quay.io/argoproj/argocd:v2.8.15/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argo-cd/v2 /usr/local/bin/argocd
                                              • Package Manager: golang @@ -2620,7 +2710,7 @@

                                                MPL-2.0 license

                                                • - Manifest file: quay.io/argoproj/argocd:v2.8.15/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argo-cd/v2 /usr/local/bin/argocd
                                                • Package Manager: golang @@ -2680,7 +2770,7 @@

                                                  MPL-2.0 license

                                                  • - Manifest file: quay.io/argoproj/argocd:v2.8.15/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argo-cd/v2 /usr/local/bin/argocd
                                                  • Package Manager: golang @@ -2740,7 +2830,7 @@

                                                    MPL-2.0 license

                                                    • - Manifest file: quay.io/argoproj/argocd:v2.8.15/helm/v3 /usr/local/bin/helm + Manifest file: quay.io/argoproj/argocd:v2.8.16/helm/v3 /usr/local/bin/helm
                                                    • Package Manager: golang @@ -2800,7 +2890,7 @@

                                                      MPL-2.0 license

                                                      • - Manifest file: quay.io/argoproj/argocd:v2.8.15/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argo-cd/v2 /usr/local/bin/argocd
                                                      • Package Manager: golang @@ -2860,7 +2950,7 @@

                                                        MPL-2.0 license

                                                        • - Manifest file: quay.io/argoproj/argocd:v2.8.15/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argo-cd/v2 /usr/local/bin/argocd
                                                        • Package Manager: golang @@ -2920,7 +3010,7 @@

                                                          Improper Handling of Highly Compressed Data (Data Amplif
                                                          • - Manifest file: quay.io/argoproj/argocd:v2.8.15/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argo-cd/v2 /usr/local/bin/argocd
                                                          • Package Manager: golang @@ -2989,7 +3079,7 @@

                                                            CVE-2023-7008

                                                            • - Manifest file: quay.io/argoproj/argocd:v2.8.15/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argocd Dockerfile
                                                            • Package Manager: ubuntu:22.04 @@ -3002,7 +3092,7 @@

                                                              CVE-2023-7008

                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 and systemd/libsystemd0@249.11-0ubuntu3.12 + docker-image|quay.io/argoproj/argocd@v2.8.16 and systemd/libsystemd0@249.11-0ubuntu3.12
                                                            @@ -3015,7 +3105,7 @@

                                                            Detailed paths

                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 systemd/libsystemd0@249.11-0ubuntu3.12 @@ -3024,7 +3114,7 @@

                                                              Detailed paths

                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 apt@2.4.12 @@ -3035,7 +3125,7 @@

                                                              Detailed paths

                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 procps/libprocps8@2:3.3.17-6ubuntu2.1 @@ -3046,9 +3136,9 @@

                                                              Detailed paths

                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 - util-linux@2.37.2-4ubuntu3.3 + util-linux@2.37.2-4ubuntu3.4 systemd/libsystemd0@249.11-0ubuntu3.12 @@ -3057,9 +3147,9 @@

                                                              Detailed paths

                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 - util-linux/bsdutils@1:2.37.2-4ubuntu3.3 + util-linux/bsdutils@1:2.37.2-4ubuntu3.4 systemd/libsystemd0@249.11-0ubuntu3.12 @@ -3068,7 +3158,7 @@

                                                              Detailed paths

                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 apt@2.4.12 @@ -3081,7 +3171,7 @@

                                                              Detailed paths

                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 systemd/libudev1@249.11-0ubuntu3.12 @@ -3090,7 +3180,7 @@

                                                              Detailed paths

                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 libfido2/libfido2-1@1.10.0-1 @@ -3101,9 +3191,9 @@

                                                              Detailed paths

                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 - util-linux@2.37.2-4ubuntu3.3 + util-linux@2.37.2-4ubuntu3.4 systemd/libudev1@249.11-0ubuntu3.12 @@ -3112,7 +3202,7 @@

                                                              Detailed paths

                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 apt@2.4.12 @@ -3165,7 +3255,7 @@

                                                              Arbitrary Code Injection

                                                              • - Manifest file: quay.io/argoproj/argocd:v2.8.15/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argocd Dockerfile
                                                              • Package Manager: ubuntu:22.04 @@ -3178,7 +3268,7 @@

                                                                Arbitrary Code Injection

                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 and shadow/passwd@1:4.8.1-2ubuntu2.2 + docker-image|quay.io/argoproj/argocd@v2.8.16 and shadow/passwd@1:4.8.1-2ubuntu2.2
                                                              @@ -3191,7 +3281,7 @@

                                                              Detailed paths

                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 shadow/passwd@1:4.8.1-2ubuntu2.2 @@ -3200,7 +3290,7 @@

                                                                Detailed paths

                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 adduser@3.118ubuntu5 @@ -3211,7 +3301,7 @@

                                                                Detailed paths

                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 openssh/openssh-client@1:8.9p1-3ubuntu0.6 @@ -3222,7 +3312,7 @@

                                                                Detailed paths

                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 shadow/login@1:4.8.1-2ubuntu2.2 @@ -3269,7 +3359,7 @@

                                                                Uncontrolled Recursion

                                                                • - Manifest file: quay.io/argoproj/argocd:v2.8.15/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argocd Dockerfile
                                                                • Package Manager: ubuntu:22.04 @@ -3282,7 +3372,7 @@

                                                                  Uncontrolled Recursion

                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 and pcre3/libpcre3@2:8.39-13ubuntu0.22.04.1 + docker-image|quay.io/argoproj/argocd@v2.8.16 and pcre3/libpcre3@2:8.39-13ubuntu0.22.04.1
                                                                @@ -3295,7 +3385,7 @@

                                                                Detailed paths

                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 pcre3/libpcre3@2:8.39-13ubuntu0.22.04.1 @@ -3304,7 +3394,7 @@

                                                                  Detailed paths

                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 grep@3.7-1build1 @@ -3357,7 +3447,7 @@

                                                                  Release of Invalid Pointer or Reference

                                                                  • - Manifest file: quay.io/argoproj/argocd:v2.8.15/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argocd Dockerfile
                                                                  • Package Manager: ubuntu:22.04 @@ -3370,7 +3460,7 @@

                                                                    Release of Invalid Pointer or Reference

                                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 and patch@2.7.6-7build2 + docker-image|quay.io/argoproj/argocd@v2.8.16 and patch@2.7.6-7build2
                                                                  @@ -3383,7 +3473,7 @@

                                                                  Detailed paths

                                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 patch@2.7.6-7build2 @@ -3427,7 +3517,7 @@

                                                                    Double Free

                                                                    • - Manifest file: quay.io/argoproj/argocd:v2.8.15/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argocd Dockerfile
                                                                    • Package Manager: ubuntu:22.04 @@ -3440,7 +3530,7 @@

                                                                      Double Free

                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 and patch@2.7.6-7build2 + docker-image|quay.io/argoproj/argocd@v2.8.16 and patch@2.7.6-7build2
                                                                    @@ -3453,7 +3543,7 @@

                                                                    Detailed paths

                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 patch@2.7.6-7build2 @@ -3502,7 +3592,7 @@

                                                                      CVE-2023-50495

                                                                      • - Manifest file: quay.io/argoproj/argocd:v2.8.15/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argocd Dockerfile
                                                                      • Package Manager: ubuntu:22.04 @@ -3515,7 +3605,7 @@

                                                                        CVE-2023-50495

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 and ncurses/libtinfo6@6.3-2ubuntu0.1 + docker-image|quay.io/argoproj/argocd@v2.8.16 and ncurses/libtinfo6@6.3-2ubuntu0.1
                                                                      @@ -3528,7 +3618,7 @@

                                                                      Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 ncurses/libtinfo6@6.3-2ubuntu0.1 @@ -3537,7 +3627,7 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 bash@5.1-6ubuntu1.1 @@ -3548,7 +3638,7 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 ncurses/libncursesw6@6.3-2ubuntu0.1 @@ -3559,7 +3649,7 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 less@590-1ubuntu0.22.04.2 @@ -3570,7 +3660,7 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 libedit/libedit2@3.1-20210910-1build1 @@ -3581,7 +3671,7 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 ncurses/libncurses6@6.3-2ubuntu0.1 @@ -3592,7 +3682,7 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 ncurses/ncurses-bin@6.3-2ubuntu0.1 @@ -3603,7 +3693,7 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 procps@2:3.3.17-6ubuntu2.1 @@ -3614,9 +3704,9 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 - util-linux@2.37.2-4ubuntu3.3 + util-linux@2.37.2-4ubuntu3.4 ncurses/libtinfo6@6.3-2ubuntu0.1 @@ -3625,7 +3715,7 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -3640,7 +3730,7 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3655,7 +3745,7 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 ncurses/libncursesw6@6.3-2ubuntu0.1 @@ -3664,7 +3754,7 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 procps@2:3.3.17-6ubuntu2.1 @@ -3675,7 +3765,7 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3690,7 +3780,7 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 ncurses/libncurses6@6.3-2ubuntu0.1 @@ -3699,7 +3789,7 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 procps@2:3.3.17-6ubuntu2.1 @@ -3710,7 +3800,7 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 ncurses/ncurses-base@6.3-2ubuntu0.1 @@ -3719,7 +3809,7 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 ncurses/ncurses-bin@6.3-2ubuntu0.1 @@ -3766,7 +3856,7 @@

                                                                        CVE-2023-45918

                                                                        • - Manifest file: quay.io/argoproj/argocd:v2.8.15/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argocd Dockerfile
                                                                        • Package Manager: ubuntu:22.04 @@ -3779,7 +3869,7 @@

                                                                          CVE-2023-45918

                                                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 and ncurses/libtinfo6@6.3-2ubuntu0.1 + docker-image|quay.io/argoproj/argocd@v2.8.16 and ncurses/libtinfo6@6.3-2ubuntu0.1
                                                                        @@ -3792,7 +3882,7 @@

                                                                        Detailed paths

                                                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 ncurses/libtinfo6@6.3-2ubuntu0.1 @@ -3801,7 +3891,7 @@

                                                                          Detailed paths

                                                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 bash@5.1-6ubuntu1.1 @@ -3812,7 +3902,7 @@

                                                                          Detailed paths

                                                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 ncurses/libncursesw6@6.3-2ubuntu0.1 @@ -3823,7 +3913,7 @@

                                                                          Detailed paths

                                                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 less@590-1ubuntu0.22.04.2 @@ -3834,7 +3924,7 @@

                                                                          Detailed paths

                                                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 libedit/libedit2@3.1-20210910-1build1 @@ -3845,7 +3935,7 @@

                                                                          Detailed paths

                                                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 ncurses/libncurses6@6.3-2ubuntu0.1 @@ -3856,7 +3946,7 @@

                                                                          Detailed paths

                                                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 ncurses/ncurses-bin@6.3-2ubuntu0.1 @@ -3867,7 +3957,7 @@

                                                                          Detailed paths

                                                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 procps@2:3.3.17-6ubuntu2.1 @@ -3878,9 +3968,9 @@

                                                                          Detailed paths

                                                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 - util-linux@2.37.2-4ubuntu3.3 + util-linux@2.37.2-4ubuntu3.4 ncurses/libtinfo6@6.3-2ubuntu0.1 @@ -3889,7 +3979,7 @@

                                                                          Detailed paths

                                                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -3904,7 +3994,7 @@

                                                                          Detailed paths

                                                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3919,7 +4009,7 @@

                                                                          Detailed paths

                                                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 ncurses/libncursesw6@6.3-2ubuntu0.1 @@ -3928,7 +4018,7 @@

                                                                          Detailed paths

                                                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 procps@2:3.3.17-6ubuntu2.1 @@ -3939,7 +4029,7 @@

                                                                          Detailed paths

                                                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3954,7 +4044,7 @@

                                                                          Detailed paths

                                                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 ncurses/libncurses6@6.3-2ubuntu0.1 @@ -3963,7 +4053,7 @@

                                                                          Detailed paths

                                                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 procps@2:3.3.17-6ubuntu2.1 @@ -3974,7 +4064,7 @@

                                                                          Detailed paths

                                                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 ncurses/ncurses-base@6.3-2ubuntu0.1 @@ -3983,7 +4073,7 @@

                                                                          Detailed paths

                                                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 ncurses/ncurses-bin@6.3-2ubuntu0.1 @@ -4028,7 +4118,7 @@

                                                                          Resource Exhaustion

                                                                          • - Manifest file: quay.io/argoproj/argocd:v2.8.15/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argocd Dockerfile
                                                                          • Package Manager: ubuntu:22.04 @@ -4041,7 +4131,7 @@

                                                                            Resource Exhaustion

                                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 and libzstd/libzstd1@1.4.8+dfsg-3build1 + docker-image|quay.io/argoproj/argocd@v2.8.16 and libzstd/libzstd1@1.4.8+dfsg-3build1
                                                                          @@ -4054,7 +4144,7 @@

                                                                          Detailed paths

                                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 libzstd/libzstd1@1.4.8+dfsg-3build1 @@ -4105,7 +4195,7 @@

                                                                            Integer Overflow or Wraparound

                                                                            • - Manifest file: quay.io/argoproj/argocd:v2.8.15/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argocd Dockerfile
                                                                            • Package Manager: ubuntu:22.04 @@ -4118,7 +4208,7 @@

                                                                              Integer Overflow or Wraparound

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 and krb5/libk5crypto3@1.19.2-2ubuntu0.3 + docker-image|quay.io/argoproj/argocd@v2.8.16 and krb5/libk5crypto3@1.19.2-2ubuntu0.3
                                                                            @@ -4131,7 +4221,7 @@

                                                                            Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 krb5/libk5crypto3@1.19.2-2ubuntu0.3 @@ -4140,7 +4230,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 adduser@3.118ubuntu5 @@ -4161,7 +4251,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 adduser@3.118ubuntu5 @@ -4184,7 +4274,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 krb5/libkrb5-3@1.19.2-2ubuntu0.3 @@ -4193,7 +4283,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 adduser@3.118ubuntu5 @@ -4214,7 +4304,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -4223,7 +4313,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 openssh/openssh-client@1:8.9p1-3ubuntu0.6 @@ -4234,7 +4324,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 git@1:2.34.1-1ubuntu1.10 @@ -4247,7 +4337,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 git@1:2.34.1-1ubuntu1.10 @@ -4262,7 +4352,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 adduser@3.118ubuntu5 @@ -4281,7 +4371,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 krb5/libkrb5support0@1.19.2-2ubuntu0.3 @@ -4329,7 +4419,7 @@

                                                                              Out-of-bounds Write

                                                                              • - Manifest file: quay.io/argoproj/argocd:v2.8.15/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argocd Dockerfile
                                                                              • Package Manager: ubuntu:22.04 @@ -4342,7 +4432,7 @@

                                                                                Out-of-bounds Write

                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 and gnupg2/gpgv@2.2.27-3ubuntu2.1 + docker-image|quay.io/argoproj/argocd@v2.8.16 and gnupg2/gpgv@2.2.27-3ubuntu2.1
                                                                              @@ -4355,7 +4445,7 @@

                                                                              Detailed paths

                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gnupg2/gpgv@2.2.27-3ubuntu2.1 @@ -4364,7 +4454,7 @@

                                                                                Detailed paths

                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 apt@2.4.12 @@ -4375,7 +4465,7 @@

                                                                                Detailed paths

                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4386,7 +4476,7 @@

                                                                                Detailed paths

                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gnupg2/dirmngr@2.2.27-3ubuntu2.1 @@ -4397,7 +4487,7 @@

                                                                                Detailed paths

                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -4408,7 +4498,7 @@

                                                                                Detailed paths

                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4421,7 +4511,7 @@

                                                                                Detailed paths

                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4434,7 +4524,7 @@

                                                                                Detailed paths

                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gnupg2/dirmngr@2.2.27-3ubuntu2.1 @@ -4443,7 +4533,7 @@

                                                                                Detailed paths

                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4454,7 +4544,7 @@

                                                                                Detailed paths

                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4467,7 +4557,7 @@

                                                                                Detailed paths

                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gnupg2/gnupg-l10n@2.2.27-3ubuntu2.1 @@ -4476,7 +4566,7 @@

                                                                                Detailed paths

                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4487,7 +4577,7 @@

                                                                                Detailed paths

                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gnupg2/gnupg-utils@2.2.27-3ubuntu2.1 @@ -4496,7 +4586,7 @@

                                                                                Detailed paths

                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4507,7 +4597,7 @@

                                                                                Detailed paths

                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -4516,7 +4606,7 @@

                                                                                Detailed paths

                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4527,7 +4617,7 @@

                                                                                Detailed paths

                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4540,7 +4630,7 @@

                                                                                Detailed paths

                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4553,7 +4643,7 @@

                                                                                Detailed paths

                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gnupg2/gpg-agent@2.2.27-3ubuntu2.1 @@ -4562,7 +4652,7 @@

                                                                                Detailed paths

                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4573,7 +4663,7 @@

                                                                                Detailed paths

                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4586,7 +4676,7 @@

                                                                                Detailed paths

                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4599,7 +4689,7 @@

                                                                                Detailed paths

                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gnupg2/gpg-wks-client@2.2.27-3ubuntu2.1 @@ -4608,7 +4698,7 @@

                                                                                Detailed paths

                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4619,7 +4709,7 @@

                                                                                Detailed paths

                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gnupg2/gpg-wks-server@2.2.27-3ubuntu2.1 @@ -4628,7 +4718,7 @@

                                                                                Detailed paths

                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4639,7 +4729,7 @@

                                                                                Detailed paths

                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gnupg2/gpgsm@2.2.27-3ubuntu2.1 @@ -4648,7 +4738,7 @@

                                                                                Detailed paths

                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4659,7 +4749,7 @@

                                                                                Detailed paths

                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4708,7 +4798,7 @@

                                                                                Allocation of Resources Without Limits or Throttling

                                                                              • - Manifest file: quay.io/argoproj/argocd:v2.8.15/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argocd Dockerfile
                                                                              • Package Manager: ubuntu:22.04 @@ -4721,7 +4811,7 @@

                                                                                Allocation of Resources Without Limits or Throttling

                                                                                Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 and glibc/libc-bin@2.35-0ubuntu3.6 + docker-image|quay.io/argoproj/argocd@v2.8.16 and glibc/libc-bin@2.35-0ubuntu3.6
                                                                              @@ -4734,7 +4824,7 @@

                                                                              Detailed paths

                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 glibc/libc-bin@2.35-0ubuntu3.6 @@ -4743,7 +4833,7 @@

                                                                                Detailed paths

                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 glibc/libc6@2.35-0ubuntu3.6 @@ -4789,7 +4879,7 @@

                                                                                Improper Input Validation

                                                                                • - Manifest file: quay.io/argoproj/argocd:v2.8.15/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argocd Dockerfile
                                                                                • Package Manager: ubuntu:22.04 @@ -4803,7 +4893,7 @@

                                                                                  Improper Input Validation

                                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15, git@1:2.34.1-1ubuntu1.10 and others + docker-image|quay.io/argoproj/argocd@v2.8.16, git@1:2.34.1-1ubuntu1.10 and others
                                                                                @@ -4815,7 +4905,7 @@

                                                                                Detailed paths

                                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 git@1:2.34.1-1ubuntu1.10 @@ -4826,7 +4916,7 @@

                                                                                  Detailed paths

                                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 git@1:2.34.1-1ubuntu1.10 @@ -4835,7 +4925,7 @@

                                                                                  Detailed paths

                                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 git-lfs@3.0.2-1ubuntu0.2 @@ -4882,7 +4972,7 @@

                                                                                  Uncontrolled Recursion

                                                                                  • - Manifest file: quay.io/argoproj/argocd:v2.8.15/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argocd Dockerfile
                                                                                  • Package Manager: ubuntu:22.04 @@ -4895,7 +4985,7 @@

                                                                                    Uncontrolled Recursion

                                                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 and gcc-12/libstdc++6@12.3.0-1ubuntu1~22.04 + docker-image|quay.io/argoproj/argocd@v2.8.16 and gcc-12/libstdc++6@12.3.0-1ubuntu1~22.04
                                                                                  @@ -4908,7 +4998,7 @@

                                                                                  Detailed paths

                                                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gcc-12/libstdc++6@12.3.0-1ubuntu1~22.04 @@ -4917,7 +5007,7 @@

                                                                                    Detailed paths

                                                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 apt@2.4.12 @@ -4928,7 +5018,7 @@

                                                                                    Detailed paths

                                                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 apt@2.4.12 @@ -4941,7 +5031,7 @@

                                                                                    Detailed paths

                                                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gcc-12/gcc-12-base@12.3.0-1ubuntu1~22.04 @@ -4950,7 +5040,7 @@

                                                                                    Detailed paths

                                                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 gcc-12/libgcc-s1@12.3.0-1ubuntu1~22.04 @@ -4997,7 +5087,7 @@

                                                                                    Improper Input Validation

                                                                                    • - Manifest file: quay.io/argoproj/argocd:v2.8.15/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argocd Dockerfile
                                                                                    • Package Manager: ubuntu:22.04 @@ -5010,7 +5100,7 @@

                                                                                      Improper Input Validation

                                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 and coreutils@8.32-4.1ubuntu1.2 + docker-image|quay.io/argoproj/argocd@v2.8.16 and coreutils@8.32-4.1ubuntu1.2
                                                                                    @@ -5023,7 +5113,7 @@

                                                                                    Detailed paths

                                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.15 + docker-image|quay.io/argoproj/argocd@v2.8.16 coreutils@8.32-4.1ubuntu1.2 diff --git a/docs/snyk/v2.9.11/redis_7.0.11-alpine.html b/docs/snyk/v2.8.16/redis_7.0.11-alpine.html similarity index 99% rename from docs/snyk/v2.9.11/redis_7.0.11-alpine.html rename to docs/snyk/v2.8.16/redis_7.0.11-alpine.html index 84839c3bc4cf2..0128e35c967d4 100644 --- a/docs/snyk/v2.9.11/redis_7.0.11-alpine.html +++ b/docs/snyk/v2.8.16/redis_7.0.11-alpine.html @@ -456,7 +456,7 @@

                                                                                      Snyk test report

                                                                                      -

                                                                                      April 14th 2024, 12:25:02 am (UTC+00:00)

                                                                                      +

                                                                                      April 21st 2024, 12:25:00 am (UTC+00:00)

                                                                                      Scanned the following path: diff --git a/docs/snyk/v2.9.11/argocd-iac-install.html b/docs/snyk/v2.9.12/argocd-iac-install.html similarity index 99% rename from docs/snyk/v2.9.11/argocd-iac-install.html rename to docs/snyk/v2.9.12/argocd-iac-install.html index 479842a386f7d..81aeb8c3a6c56 100644 --- a/docs/snyk/v2.9.11/argocd-iac-install.html +++ b/docs/snyk/v2.9.12/argocd-iac-install.html @@ -456,7 +456,7 @@

                                                                                      Snyk test report

                                                                                      -

                                                                                      April 14th 2024, 12:26:16 am (UTC+00:00)

                                                                                      +

                                                                                      April 21st 2024, 12:24:05 am (UTC+00:00)

                                                                                      Scanned the following path: diff --git a/docs/snyk/v2.9.11/argocd-iac-namespace-install.html b/docs/snyk/v2.9.12/argocd-iac-namespace-install.html similarity index 99% rename from docs/snyk/v2.9.11/argocd-iac-namespace-install.html rename to docs/snyk/v2.9.12/argocd-iac-namespace-install.html index 21cbecccdb659..07e019012d369 100644 --- a/docs/snyk/v2.9.11/argocd-iac-namespace-install.html +++ b/docs/snyk/v2.9.12/argocd-iac-namespace-install.html @@ -456,7 +456,7 @@

                                                                                      Snyk test report

                                                                                      -

                                                                                      April 14th 2024, 12:26:24 am (UTC+00:00)

                                                                                      +

                                                                                      April 21st 2024, 12:24:14 am (UTC+00:00)

                                                                                      Scanned the following path: diff --git a/docs/snyk/v2.9.11/argocd-test.html b/docs/snyk/v2.9.12/argocd-test.html similarity index 99% rename from docs/snyk/v2.9.11/argocd-test.html rename to docs/snyk/v2.9.12/argocd-test.html index 5bf9514eb455b..4c59fc32c358b 100644 --- a/docs/snyk/v2.9.11/argocd-test.html +++ b/docs/snyk/v2.9.12/argocd-test.html @@ -456,7 +456,7 @@

                                                                                      Snyk test report

                                                                                      -

                                                                                      April 14th 2024, 12:24:31 am (UTC+00:00)

                                                                                      +

                                                                                      April 21st 2024, 12:22:20 am (UTC+00:00)

                                                                                      Scanned the following paths: @@ -3230,6 +3230,7 @@

                                                                                      Remediation

                                                                                      Upgrade golang.org/x/net/http2 to version 0.23.0 or higher.

                                                                                      References

                                                                                      diff --git a/docs/snyk/v2.9.11/ghcr.io_dexidp_dex_v2.37.0.html b/docs/snyk/v2.9.12/ghcr.io_dexidp_dex_v2.37.0.html similarity index 99% rename from docs/snyk/v2.9.11/ghcr.io_dexidp_dex_v2.37.0.html rename to docs/snyk/v2.9.12/ghcr.io_dexidp_dex_v2.37.0.html index b26bcd5c9d241..ac1eea048f911 100644 --- a/docs/snyk/v2.9.11/ghcr.io_dexidp_dex_v2.37.0.html +++ b/docs/snyk/v2.9.12/ghcr.io_dexidp_dex_v2.37.0.html @@ -456,7 +456,7 @@

                                                                                      Snyk test report

                                                                                      -

                                                                                      April 14th 2024, 12:24:37 am (UTC+00:00)

                                                                                      +

                                                                                      April 21st 2024, 12:22:25 am (UTC+00:00)

                                                                                      Scanned the following paths: @@ -1084,6 +1084,7 @@

                                                                                      Remediation

                                                                                      Upgrade golang.org/x/net/http2 to version 0.23.0 or higher.

                                                                                      References

                                                                                      diff --git a/docs/snyk/v2.10.6/haproxy_2.6.14-alpine.html b/docs/snyk/v2.9.12/haproxy_2.6.14-alpine.html similarity index 99% rename from docs/snyk/v2.10.6/haproxy_2.6.14-alpine.html rename to docs/snyk/v2.9.12/haproxy_2.6.14-alpine.html index 5dea7803fab7b..92a3cb3a756af 100644 --- a/docs/snyk/v2.10.6/haproxy_2.6.14-alpine.html +++ b/docs/snyk/v2.9.12/haproxy_2.6.14-alpine.html @@ -456,7 +456,7 @@

                                                                                      Snyk test report

                                                                                      -

                                                                                      April 14th 2024, 12:22:21 am (UTC+00:00)

                                                                                      +

                                                                                      April 21st 2024, 12:22:29 am (UTC+00:00)

                                                                                      Scanned the following path: diff --git a/docs/snyk/v2.10.6/quay.io_argoproj_argocd_v2.10.6.html b/docs/snyk/v2.9.12/quay.io_argoproj_argocd_v2.9.12.html similarity index 92% rename from docs/snyk/v2.10.6/quay.io_argoproj_argocd_v2.10.6.html rename to docs/snyk/v2.9.12/quay.io_argoproj_argocd_v2.9.12.html index 3f893f7eccd31..5e8abae49720a 100644 --- a/docs/snyk/v2.10.6/quay.io_argoproj_argocd_v2.10.6.html +++ b/docs/snyk/v2.9.12/quay.io_argoproj_argocd_v2.9.12.html @@ -7,7 +7,7 @@ Snyk test report - + @@ -456,23 +456,23 @@

                                                                                      Snyk test report

                                                                                      -

                                                                                      April 14th 2024, 12:22:41 am (UTC+00:00)

                                                                                      +

                                                                                      April 21st 2024, 12:22:46 am (UTC+00:00)

                                                                                      Scanned the following paths:
                                                                                        -
                                                                                      • quay.io/argoproj/argocd:v2.10.6/argoproj/argocd/Dockerfile (deb)
                                                                                        • -
                                                                                      • quay.io/argoproj/argocd:v2.10.6/argoproj/argo-cd/v2//usr/local/bin/argocd (gomodules)
                                                                                        • -
                                                                                      • quay.io/argoproj/argocd:v2.10.6//usr/local/bin/kustomize (gomodules)
                                                                                        • -
                                                                                      • quay.io/argoproj/argocd:v2.10.6/helm/v3//usr/local/bin/helm (gomodules)
                                                                                        • -
                                                                                      • quay.io/argoproj/argocd:v2.10.6/git-lfs/git-lfs//usr/bin/git-lfs (gomodules)
                                                                                        • +
                                                                                      • quay.io/argoproj/argocd:v2.9.12/argoproj/argocd/Dockerfile (deb)
                                                                                        • +
                                                                                      • quay.io/argoproj/argocd:v2.9.12/argoproj/argo-cd/v2//usr/local/bin/argocd (gomodules)
                                                                                        • +
                                                                                      • quay.io/argoproj/argocd:v2.9.12//usr/local/bin/kustomize (gomodules)
                                                                                        • +
                                                                                      • quay.io/argoproj/argocd:v2.9.12/helm/v3//usr/local/bin/helm (gomodules)
                                                                                        • +
                                                                                      • quay.io/argoproj/argocd:v2.9.12/git-lfs/git-lfs//usr/bin/git-lfs (gomodules)
                                                                                      -
                                                                                      35 known vulnerabilities
                                                                                      -
                                                                                      179 vulnerable dependency paths
                                                                                      -
                                                                                      2275 dependencies
                                                                                      +
                                                                                      37 known vulnerabilities
                                                                                      +
                                                                                      182 vulnerable dependency paths
                                                                                      +
                                                                                      2189 dependencies
                                                                                      @@ -480,6 +480,88 @@

                                                                                      Snyk test report

                                                                                      +
                                                                                      +

                                                                                      Denial of Service (DoS)

                                                                                      +
                                                                                      + +
                                                                                      + high severity +
                                                                                      + +
                                                                                      + +
                                                                                        +
                                                                                      • + Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argo-cd/v2 /usr/local/bin/argocd +
                                                                                        • +
                                                                                      • + Package Manager: golang +
                                                                                        • +
                                                                                      • + Vulnerable module: + + google.golang.org/grpc +
                                                                                        • + +
                                                                                      • Introduced through: + + github.com/argoproj/argo-cd/v2@* and google.golang.org/grpc@v1.56.2 + +
                                                                                        • +
                                                                                      + +
                                                                                      + + +

                                                                                      Detailed paths

                                                                                      + +
                                                                                        +
                                                                                      • + Introduced through: + github.com/argoproj/argo-cd/v2@* + + google.golang.org/grpc@v1.56.2 + + + +
                                                                                        • +
                                                                                      + +
                                                                                      + +
                                                                                      + +

                                                                                      Overview

                                                                                      +

                                                                                      google.golang.org/grpc is a Go implementation of gRPC

                                                                                      +

                                                                                      Affected versions of this package are vulnerable to Denial of Service (DoS) in the implementation of the HTTP/2 protocol. An attacker can cause a denial of service (including via DDoS) by rapidly resetting many streams through request cancellation.

                                                                                      +

                                                                                      Remediation

                                                                                      +

                                                                                      Upgrade google.golang.org/grpc to version 1.56.3, 1.57.1, 1.58.3 or higher.

                                                                                      +

                                                                                      References

                                                                                      + + +
                                                                                      + +
                                                                                      +

                                                                                      More about this vulnerability

                                                                                      +
                                                                                      + +

                                                                                      Allocation of Resources Without Limits or Throttling

                                                                                      @@ -492,7 +574,7 @@

                                                                                      Allocation of Resources Without Limits or Throttling

                                                                                    • - Manifest file: quay.io/argoproj/argocd:v2.10.6/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argo-cd/v2 /usr/local/bin/argocd
                                                                                    • Package Manager: golang @@ -547,6 +629,7 @@

                                                                                      Remediation

                                                                                      Upgrade golang.org/x/net/http2 to version 0.23.0 or higher.

                                                                                      References

                                                                                        +
                                                                                      • Github Commit
                                                                                      • GitHub Commit
                                                                                      • GitHub Issue
                                                                                      • Go Advisory
                                                                                        • @@ -571,7 +654,7 @@

                                                                                        CVE-2020-22916

                                                                                        • - Manifest file: quay.io/argoproj/argocd:v2.10.6/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argocd Dockerfile
                                                                                        • Package Manager: ubuntu:22.04 @@ -584,7 +667,7 @@

                                                                                          CVE-2020-22916

                                                                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 and xz-utils/liblzma5@5.2.5-2ubuntu1 + docker-image|quay.io/argoproj/argocd@v2.9.12 and xz-utils/liblzma5@5.2.5-2ubuntu1
                                                                                        @@ -597,7 +680,7 @@

                                                                                        Detailed paths

                                                                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 xz-utils/liblzma5@5.2.5-2ubuntu1 @@ -647,7 +730,7 @@

                                                                                          CVE-2023-51767

                                                                                          • - Manifest file: quay.io/argoproj/argocd:v2.10.6/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argocd Dockerfile
                                                                                          • Package Manager: ubuntu:22.04 @@ -660,7 +743,7 @@

                                                                                            CVE-2023-51767

                                                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 and openssh/openssh-client@1:8.9p1-3ubuntu0.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 and openssh/openssh-client@1:8.9p1-3ubuntu0.6
                                                                                          @@ -673,7 +756,7 @@

                                                                                          Detailed paths

                                                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 openssh/openssh-client@1:8.9p1-3ubuntu0.6 @@ -723,7 +806,7 @@

                                                                                            Information Exposure

                                                                                            • - Manifest file: quay.io/argoproj/argocd:v2.10.6/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argocd Dockerfile
                                                                                            • Package Manager: ubuntu:22.04 @@ -736,7 +819,7 @@

                                                                                              Information Exposure

                                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 and libgcrypt20@1.9.4-3ubuntu3 + docker-image|quay.io/argoproj/argocd@v2.9.12 and libgcrypt20@1.9.4-3ubuntu3
                                                                                            @@ -749,7 +832,7 @@

                                                                                            Detailed paths

                                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 libgcrypt20@1.9.4-3ubuntu3 @@ -758,7 +841,7 @@

                                                                                              Detailed paths

                                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gnupg2/dirmngr@2.2.27-3ubuntu2.1 @@ -769,7 +852,7 @@

                                                                                              Detailed paths

                                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -780,7 +863,7 @@

                                                                                              Detailed paths

                                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 apt@2.4.12 @@ -793,7 +876,7 @@

                                                                                              Detailed paths

                                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 apt@2.4.12 @@ -806,7 +889,7 @@

                                                                                              Detailed paths

                                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -819,7 +902,7 @@

                                                                                              Detailed paths

                                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -832,7 +915,7 @@

                                                                                              Detailed paths

                                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -845,7 +928,7 @@

                                                                                              Detailed paths

                                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -858,7 +941,7 @@

                                                                                              Detailed paths

                                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -871,7 +954,7 @@

                                                                                              Detailed paths

                                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -884,7 +967,7 @@

                                                                                              Detailed paths

                                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 apt@2.4.12 @@ -935,7 +1018,7 @@

                                                                                              CVE-2024-26461

                                                                                              • - Manifest file: quay.io/argoproj/argocd:v2.10.6/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argocd Dockerfile
                                                                                              • Package Manager: ubuntu:22.04 @@ -948,7 +1031,7 @@

                                                                                                CVE-2024-26461

                                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 and krb5/libk5crypto3@1.19.2-2ubuntu0.3 + docker-image|quay.io/argoproj/argocd@v2.9.12 and krb5/libk5crypto3@1.19.2-2ubuntu0.3
                                                                                              @@ -961,7 +1044,7 @@

                                                                                              Detailed paths

                                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 krb5/libk5crypto3@1.19.2-2ubuntu0.3 @@ -970,7 +1053,7 @@

                                                                                                Detailed paths

                                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 adduser@3.118ubuntu5 @@ -991,7 +1074,7 @@

                                                                                                Detailed paths

                                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 adduser@3.118ubuntu5 @@ -1014,7 +1097,7 @@

                                                                                                Detailed paths

                                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 krb5/libkrb5-3@1.19.2-2ubuntu0.3 @@ -1023,7 +1106,7 @@

                                                                                                Detailed paths

                                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 adduser@3.118ubuntu5 @@ -1044,7 +1127,7 @@

                                                                                                Detailed paths

                                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -1053,7 +1136,7 @@

                                                                                                Detailed paths

                                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 openssh/openssh-client@1:8.9p1-3ubuntu0.6 @@ -1064,7 +1147,7 @@

                                                                                                Detailed paths

                                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 git@1:2.34.1-1ubuntu1.10 @@ -1077,7 +1160,7 @@

                                                                                                Detailed paths

                                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 git@1:2.34.1-1ubuntu1.10 @@ -1092,7 +1175,7 @@

                                                                                                Detailed paths

                                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 adduser@3.118ubuntu5 @@ -1111,7 +1194,7 @@

                                                                                                Detailed paths

                                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 krb5/libkrb5support0@1.19.2-2ubuntu0.3 @@ -1155,7 +1238,7 @@

                                                                                                CVE-2024-26462

                                                                                                • - Manifest file: quay.io/argoproj/argocd:v2.10.6/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argocd Dockerfile
                                                                                                • Package Manager: ubuntu:22.04 @@ -1168,7 +1251,7 @@

                                                                                                  CVE-2024-26462

                                                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 and krb5/libk5crypto3@1.19.2-2ubuntu0.3 + docker-image|quay.io/argoproj/argocd@v2.9.12 and krb5/libk5crypto3@1.19.2-2ubuntu0.3
                                                                                                @@ -1181,7 +1264,7 @@

                                                                                                Detailed paths

                                                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 krb5/libk5crypto3@1.19.2-2ubuntu0.3 @@ -1190,7 +1273,7 @@

                                                                                                  Detailed paths

                                                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 adduser@3.118ubuntu5 @@ -1211,7 +1294,7 @@

                                                                                                  Detailed paths

                                                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 adduser@3.118ubuntu5 @@ -1234,7 +1317,7 @@

                                                                                                  Detailed paths

                                                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 krb5/libkrb5-3@1.19.2-2ubuntu0.3 @@ -1243,7 +1326,7 @@

                                                                                                  Detailed paths

                                                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 adduser@3.118ubuntu5 @@ -1264,7 +1347,7 @@

                                                                                                  Detailed paths

                                                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -1273,7 +1356,7 @@

                                                                                                  Detailed paths

                                                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 openssh/openssh-client@1:8.9p1-3ubuntu0.6 @@ -1284,7 +1367,7 @@

                                                                                                  Detailed paths

                                                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 git@1:2.34.1-1ubuntu1.10 @@ -1297,7 +1380,7 @@

                                                                                                  Detailed paths

                                                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 git@1:2.34.1-1ubuntu1.10 @@ -1312,7 +1395,7 @@

                                                                                                  Detailed paths

                                                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 adduser@3.118ubuntu5 @@ -1331,7 +1414,7 @@

                                                                                                  Detailed paths

                                                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 krb5/libkrb5support0@1.19.2-2ubuntu0.3 @@ -1375,7 +1458,7 @@

                                                                                                  CVE-2024-26458

                                                                                                  • - Manifest file: quay.io/argoproj/argocd:v2.10.6/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argocd Dockerfile
                                                                                                  • Package Manager: ubuntu:22.04 @@ -1388,7 +1471,7 @@

                                                                                                    CVE-2024-26458

                                                                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 and krb5/libk5crypto3@1.19.2-2ubuntu0.3 + docker-image|quay.io/argoproj/argocd@v2.9.12 and krb5/libk5crypto3@1.19.2-2ubuntu0.3
                                                                                                  @@ -1401,7 +1484,7 @@

                                                                                                  Detailed paths

                                                                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 krb5/libk5crypto3@1.19.2-2ubuntu0.3 @@ -1410,7 +1493,7 @@

                                                                                                    Detailed paths

                                                                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 adduser@3.118ubuntu5 @@ -1431,7 +1514,7 @@

                                                                                                    Detailed paths

                                                                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 adduser@3.118ubuntu5 @@ -1454,7 +1537,7 @@

                                                                                                    Detailed paths

                                                                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 krb5/libkrb5-3@1.19.2-2ubuntu0.3 @@ -1463,7 +1546,7 @@

                                                                                                    Detailed paths

                                                                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 adduser@3.118ubuntu5 @@ -1484,7 +1567,7 @@

                                                                                                    Detailed paths

                                                                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -1493,7 +1576,7 @@

                                                                                                    Detailed paths

                                                                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 openssh/openssh-client@1:8.9p1-3ubuntu0.6 @@ -1504,7 +1587,7 @@

                                                                                                    Detailed paths

                                                                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 git@1:2.34.1-1ubuntu1.10 @@ -1517,7 +1600,7 @@

                                                                                                    Detailed paths

                                                                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 git@1:2.34.1-1ubuntu1.10 @@ -1532,7 +1615,7 @@

                                                                                                    Detailed paths

                                                                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 adduser@3.118ubuntu5 @@ -1551,7 +1634,7 @@

                                                                                                    Detailed paths

                                                                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 krb5/libkrb5support0@1.19.2-2ubuntu0.3 @@ -1595,7 +1678,7 @@

                                                                                                    LGPL-3.0 license

                                                                                                    • - Manifest file: quay.io/argoproj/argocd:v2.10.6/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argo-cd/v2 /usr/local/bin/argocd
                                                                                                    • Package Manager: golang @@ -1655,7 +1738,7 @@

                                                                                                      Infinite loop

                                                                                                      • - Manifest file: quay.io/argoproj/argocd:v2.10.6/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argo-cd/v2 /usr/local/bin/argocd
                                                                                                      • Package Manager: golang @@ -1726,7 +1809,7 @@

                                                                                                        Stack-based Buffer Overflow

                                                                                                        • - Manifest file: quay.io/argoproj/argocd:v2.10.6/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argo-cd/v2 /usr/local/bin/argocd
                                                                                                        • Package Manager: golang @@ -1794,7 +1877,7 @@

                                                                                                          Infinite loop

                                                                                                          • - Manifest file: quay.io/argoproj/argocd:v2.10.6/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argo-cd/v2 /usr/local/bin/argocd
                                                                                                          • Package Manager: golang @@ -1865,7 +1948,7 @@

                                                                                                            Authentication Bypass by Capture-replay

                                                                                                            @@ -1960,7 +2046,7 @@

                                                                                                            Information Exposure

                                                                                                            • - Manifest file: quay.io/argoproj/argocd:v2.10.6/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argocd Dockerfile
                                                                                                            • Package Manager: ubuntu:22.04 @@ -1973,7 +2059,7 @@

                                                                                                              Information Exposure

                                                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 and gnutls28/libgnutls30@3.7.3-4ubuntu1.4 + docker-image|quay.io/argoproj/argocd@v2.9.12 and gnutls28/libgnutls30@3.7.3-4ubuntu1.4
                                                                                                            @@ -1986,7 +2072,7 @@

                                                                                                            Detailed paths

                                                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gnutls28/libgnutls30@3.7.3-4ubuntu1.4 @@ -1995,7 +2081,7 @@

                                                                                                              Detailed paths

                                                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 apt@2.4.12 @@ -2006,7 +2092,7 @@

                                                                                                              Detailed paths

                                                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gnupg2/dirmngr@2.2.27-3ubuntu2.1 @@ -2017,7 +2103,7 @@

                                                                                                              Detailed paths

                                                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 git@1:2.34.1-1ubuntu1.10 @@ -2030,7 +2116,7 @@

                                                                                                              Detailed paths

                                                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 git@1:2.34.1-1ubuntu1.10 @@ -2045,7 +2131,7 @@

                                                                                                              Detailed paths

                                                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 git@1:2.34.1-1ubuntu1.10 @@ -2069,7 +2155,7 @@

                                                                                                              NVD Description

                                                                                                              See How to fix? for Ubuntu:22.04 relevant fixed versions and status.

                                                                                                              A flaw was found in GnuTLS. The Minerva attack is a cryptographic vulnerability that exploits deterministic behavior in systems like GnuTLS, leading to side-channel leaks. In specific scenarios, such as when using the GNUTLS_PRIVKEY_FLAG_REPRODUCIBLE flag, it can result in a noticeable step in nonce size from 513 to 512 bits, exposing a potential timing side-channel.

                                                                                                              Remediation

                                                                                                              -

                                                                                                              There is no fixed version for Ubuntu:22.04 gnutls28.

                                                                                                              +

                                                                                                              Upgrade Ubuntu:22.04 gnutls28 to version 3.7.3-4ubuntu1.5 or higher.

                                                                                                              References

                                                                                                              @@ -2099,7 +2187,7 @@

                                                                                                              Uncaught Exception

                                                                                                              • - Manifest file: quay.io/argoproj/argocd:v2.10.6/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argocd Dockerfile
                                                                                                              • Package Manager: ubuntu:22.04 @@ -2112,7 +2200,7 @@

                                                                                                                Uncaught Exception

                                                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 and gnutls28/libgnutls30@3.7.3-4ubuntu1.4 + docker-image|quay.io/argoproj/argocd@v2.9.12 and gnutls28/libgnutls30@3.7.3-4ubuntu1.4
                                                                                                              @@ -2125,7 +2213,7 @@

                                                                                                              Detailed paths

                                                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gnutls28/libgnutls30@3.7.3-4ubuntu1.4 @@ -2134,7 +2222,7 @@

                                                                                                                Detailed paths

                                                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 apt@2.4.12 @@ -2145,7 +2233,7 @@

                                                                                                                Detailed paths

                                                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gnupg2/dirmngr@2.2.27-3ubuntu2.1 @@ -2156,7 +2244,7 @@

                                                                                                                Detailed paths

                                                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 git@1:2.34.1-1ubuntu1.10 @@ -2169,7 +2257,7 @@

                                                                                                                Detailed paths

                                                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 git@1:2.34.1-1ubuntu1.10 @@ -2184,7 +2272,7 @@

                                                                                                                Detailed paths

                                                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 git@1:2.34.1-1ubuntu1.10 @@ -2208,13 +2296,14 @@

                                                                                                                NVD Description

                                                                                                                See How to fix? for Ubuntu:22.04 relevant fixed versions and status.

                                                                                                                A flaw has been discovered in GnuTLS where an application crash can be induced when attempting to verify a specially crafted .pem bundle using the "certtool --verify-chain" command.

                                                                                                                Remediation

                                                                                                                -

                                                                                                                There is no fixed version for Ubuntu:22.04 gnutls28.

                                                                                                                +

                                                                                                                Upgrade Ubuntu:22.04 gnutls28 to version 3.7.3-4ubuntu1.5 or higher.

                                                                                                                References

                                                                                                                @@ -2223,6 +2312,88 @@

                                                                                                                References

                                                                                                                More about this vulnerability

                                              +
                                            +
                                            +

                                            CVE-2024-2961

                                            +
                                            + +
                                            + medium severity +
                                            + +
                                            + +
                                              +
                                            • + Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argocd Dockerfile +
                                              • +
                                            • + Package Manager: ubuntu:22.04 +
                                              • +
                                            • + Vulnerable module: + + glibc/libc-bin +
                                              • + +
                                            • Introduced through: + + docker-image|quay.io/argoproj/argocd@v2.9.12 and glibc/libc-bin@2.35-0ubuntu3.6 + +
                                              • +
                                            + +
                                            + + +

                                            Detailed paths

                                            + +
                                              +
                                            • + Introduced through: + docker-image|quay.io/argoproj/argocd@v2.9.12 + + glibc/libc-bin@2.35-0ubuntu3.6 + + + +
                                              • +
                                            • + Introduced through: + docker-image|quay.io/argoproj/argocd@v2.9.12 + + glibc/libc6@2.35-0ubuntu3.6 + + + +
                                              • +
                                            + +
                                            + +
                                            + +

                                            NVD Description

                                            +

                                            Note: Versions mentioned in the description apply only to the upstream glibc package and not the glibc package as distributed by Ubuntu. + See How to fix? for Ubuntu:22.04 relevant fixed versions and status.

                                            +

                                            The iconv() function in the GNU C Library versions 2.39 and older may overflow the output buffer passed to it by up to 4 bytes when converting strings to the ISO-2022-CN-EXT character set, which may be used to crash an application or overwrite a neighbouring variable.

                                            +

                                            Remediation

                                            +

                                            Upgrade Ubuntu:22.04 glibc to version 2.35-0ubuntu3.7 or higher.

                                            +

                                            References

                                            + + +
                                            + +
                                            +

                                            More about this vulnerability

                                            +
                                            +

                                            MPL-2.0 license

                                            @@ -2236,7 +2407,7 @@

                                            MPL-2.0 license

                                            • - Manifest file: quay.io/argoproj/argocd:v2.10.6/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argo-cd/v2 /usr/local/bin/argocd
                                            • Package Manager: golang @@ -2296,7 +2467,7 @@

                                              MPL-2.0 license

                                              • - Manifest file: quay.io/argoproj/argocd:v2.10.6/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argo-cd/v2 /usr/local/bin/argocd
                                              • Package Manager: golang @@ -2356,7 +2527,7 @@

                                                MPL-2.0 license

                                                • - Manifest file: quay.io/argoproj/argocd:v2.10.6/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argo-cd/v2 /usr/local/bin/argocd
                                                • Package Manager: golang @@ -2416,7 +2587,7 @@

                                                  MPL-2.0 license

                                                  • - Manifest file: quay.io/argoproj/argocd:v2.10.6/helm/v3 /usr/local/bin/helm + Manifest file: quay.io/argoproj/argocd:v2.9.12/helm/v3 /usr/local/bin/helm
                                                  • Package Manager: golang @@ -2476,7 +2647,7 @@

                                                    MPL-2.0 license

                                                    • - Manifest file: quay.io/argoproj/argocd:v2.10.6/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argo-cd/v2 /usr/local/bin/argocd
                                                    • Package Manager: golang @@ -2536,7 +2707,7 @@

                                                      MPL-2.0 license

                                                      • - Manifest file: quay.io/argoproj/argocd:v2.10.6/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argo-cd/v2 /usr/local/bin/argocd
                                                      • Package Manager: golang @@ -2596,7 +2767,7 @@

                                                        Improper Handling of Highly Compressed Data (Data Amplif
                                                        • - Manifest file: quay.io/argoproj/argocd:v2.10.6/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argo-cd/v2 /usr/local/bin/argocd
                                                        • Package Manager: golang @@ -2665,7 +2836,7 @@

                                                          CVE-2023-7008

                                                          • - Manifest file: quay.io/argoproj/argocd:v2.10.6/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argocd Dockerfile
                                                          • Package Manager: ubuntu:22.04 @@ -2678,7 +2849,7 @@

                                                            CVE-2023-7008

                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 and systemd/libsystemd0@249.11-0ubuntu3.12 + docker-image|quay.io/argoproj/argocd@v2.9.12 and systemd/libsystemd0@249.11-0ubuntu3.12
                                                          @@ -2691,7 +2862,7 @@

                                                          Detailed paths

                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 systemd/libsystemd0@249.11-0ubuntu3.12 @@ -2700,7 +2871,7 @@

                                                            Detailed paths

                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 apt@2.4.12 @@ -2711,7 +2882,7 @@

                                                            Detailed paths

                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 procps/libprocps8@2:3.3.17-6ubuntu2.1 @@ -2722,9 +2893,9 @@

                                                            Detailed paths

                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 - util-linux@2.37.2-4ubuntu3.3 + util-linux@2.37.2-4ubuntu3.4 systemd/libsystemd0@249.11-0ubuntu3.12 @@ -2733,9 +2904,9 @@

                                                            Detailed paths

                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 - util-linux/bsdutils@1:2.37.2-4ubuntu3.3 + util-linux/bsdutils@1:2.37.2-4ubuntu3.4 systemd/libsystemd0@249.11-0ubuntu3.12 @@ -2744,7 +2915,7 @@

                                                            Detailed paths

                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 apt@2.4.12 @@ -2757,7 +2928,7 @@

                                                            Detailed paths

                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 systemd/libudev1@249.11-0ubuntu3.12 @@ -2766,7 +2937,7 @@

                                                            Detailed paths

                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 libfido2/libfido2-1@1.10.0-1 @@ -2777,9 +2948,9 @@

                                                            Detailed paths

                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 - util-linux@2.37.2-4ubuntu3.3 + util-linux@2.37.2-4ubuntu3.4 systemd/libudev1@249.11-0ubuntu3.12 @@ -2788,7 +2959,7 @@

                                                            Detailed paths

                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 apt@2.4.12 @@ -2841,7 +3012,7 @@

                                                            Arbitrary Code Injection

                                                            • - Manifest file: quay.io/argoproj/argocd:v2.10.6/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argocd Dockerfile
                                                            • Package Manager: ubuntu:22.04 @@ -2854,7 +3025,7 @@

                                                              Arbitrary Code Injection

                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 and shadow/passwd@1:4.8.1-2ubuntu2.2 + docker-image|quay.io/argoproj/argocd@v2.9.12 and shadow/passwd@1:4.8.1-2ubuntu2.2
                                                            @@ -2867,7 +3038,7 @@

                                                            Detailed paths

                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 shadow/passwd@1:4.8.1-2ubuntu2.2 @@ -2876,7 +3047,7 @@

                                                              Detailed paths

                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 adduser@3.118ubuntu5 @@ -2887,7 +3058,7 @@

                                                              Detailed paths

                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 openssh/openssh-client@1:8.9p1-3ubuntu0.6 @@ -2898,7 +3069,7 @@

                                                              Detailed paths

                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 shadow/login@1:4.8.1-2ubuntu2.2 @@ -2945,7 +3116,7 @@

                                                              Uncontrolled Recursion

                                                              • - Manifest file: quay.io/argoproj/argocd:v2.10.6/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argocd Dockerfile
                                                              • Package Manager: ubuntu:22.04 @@ -2958,7 +3129,7 @@

                                                                Uncontrolled Recursion

                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 and pcre3/libpcre3@2:8.39-13ubuntu0.22.04.1 + docker-image|quay.io/argoproj/argocd@v2.9.12 and pcre3/libpcre3@2:8.39-13ubuntu0.22.04.1
                                                              @@ -2971,7 +3142,7 @@

                                                              Detailed paths

                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 pcre3/libpcre3@2:8.39-13ubuntu0.22.04.1 @@ -2980,7 +3151,7 @@

                                                                Detailed paths

                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 grep@3.7-1build1 @@ -3033,7 +3204,7 @@

                                                                Release of Invalid Pointer or Reference

                                                                • - Manifest file: quay.io/argoproj/argocd:v2.10.6/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argocd Dockerfile
                                                                • Package Manager: ubuntu:22.04 @@ -3046,7 +3217,7 @@

                                                                  Release of Invalid Pointer or Reference

                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 and patch@2.7.6-7build2 + docker-image|quay.io/argoproj/argocd@v2.9.12 and patch@2.7.6-7build2
                                                                @@ -3059,7 +3230,7 @@

                                                                Detailed paths

                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 patch@2.7.6-7build2 @@ -3103,7 +3274,7 @@

                                                                  Double Free

                                                                  • - Manifest file: quay.io/argoproj/argocd:v2.10.6/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argocd Dockerfile
                                                                  • Package Manager: ubuntu:22.04 @@ -3116,7 +3287,7 @@

                                                                    Double Free

                                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 and patch@2.7.6-7build2 + docker-image|quay.io/argoproj/argocd@v2.9.12 and patch@2.7.6-7build2
                                                                  @@ -3129,7 +3300,7 @@

                                                                  Detailed paths

                                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 patch@2.7.6-7build2 @@ -3178,7 +3349,7 @@

                                                                    CVE-2023-50495

                                                                    • - Manifest file: quay.io/argoproj/argocd:v2.10.6/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argocd Dockerfile
                                                                    • Package Manager: ubuntu:22.04 @@ -3191,7 +3362,7 @@

                                                                      CVE-2023-50495

                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 and ncurses/libtinfo6@6.3-2ubuntu0.1 + docker-image|quay.io/argoproj/argocd@v2.9.12 and ncurses/libtinfo6@6.3-2ubuntu0.1
                                                                    @@ -3204,7 +3375,7 @@

                                                                    Detailed paths

                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 ncurses/libtinfo6@6.3-2ubuntu0.1 @@ -3213,7 +3384,7 @@

                                                                      Detailed paths

                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 bash@5.1-6ubuntu1.1 @@ -3224,7 +3395,7 @@

                                                                      Detailed paths

                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 ncurses/libncursesw6@6.3-2ubuntu0.1 @@ -3235,7 +3406,7 @@

                                                                      Detailed paths

                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 less@590-1ubuntu0.22.04.2 @@ -3246,7 +3417,7 @@

                                                                      Detailed paths

                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 libedit/libedit2@3.1-20210910-1build1 @@ -3257,7 +3428,7 @@

                                                                      Detailed paths

                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 ncurses/libncurses6@6.3-2ubuntu0.1 @@ -3268,7 +3439,7 @@

                                                                      Detailed paths

                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 ncurses/ncurses-bin@6.3-2ubuntu0.1 @@ -3279,7 +3450,7 @@

                                                                      Detailed paths

                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 procps@2:3.3.17-6ubuntu2.1 @@ -3290,9 +3461,9 @@

                                                                      Detailed paths

                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 - util-linux@2.37.2-4ubuntu3.3 + util-linux@2.37.2-4ubuntu3.4 ncurses/libtinfo6@6.3-2ubuntu0.1 @@ -3301,7 +3472,7 @@

                                                                      Detailed paths

                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -3316,7 +3487,7 @@

                                                                      Detailed paths

                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3331,7 +3502,7 @@

                                                                      Detailed paths

                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 ncurses/libncursesw6@6.3-2ubuntu0.1 @@ -3340,7 +3511,7 @@

                                                                      Detailed paths

                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 procps@2:3.3.17-6ubuntu2.1 @@ -3351,7 +3522,7 @@

                                                                      Detailed paths

                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3366,7 +3537,7 @@

                                                                      Detailed paths

                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 ncurses/libncurses6@6.3-2ubuntu0.1 @@ -3375,7 +3546,7 @@

                                                                      Detailed paths

                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 procps@2:3.3.17-6ubuntu2.1 @@ -3386,7 +3557,7 @@

                                                                      Detailed paths

                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 ncurses/ncurses-base@6.3-2ubuntu0.1 @@ -3395,7 +3566,7 @@

                                                                      Detailed paths

                                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 ncurses/ncurses-bin@6.3-2ubuntu0.1 @@ -3442,7 +3613,7 @@

                                                                      CVE-2023-45918

                                                                      • - Manifest file: quay.io/argoproj/argocd:v2.10.6/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argocd Dockerfile
                                                                      • Package Manager: ubuntu:22.04 @@ -3455,7 +3626,7 @@

                                                                        CVE-2023-45918

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 and ncurses/libtinfo6@6.3-2ubuntu0.1 + docker-image|quay.io/argoproj/argocd@v2.9.12 and ncurses/libtinfo6@6.3-2ubuntu0.1
                                                                      @@ -3468,7 +3639,7 @@

                                                                      Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 ncurses/libtinfo6@6.3-2ubuntu0.1 @@ -3477,7 +3648,7 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 bash@5.1-6ubuntu1.1 @@ -3488,7 +3659,7 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 ncurses/libncursesw6@6.3-2ubuntu0.1 @@ -3499,7 +3670,7 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 less@590-1ubuntu0.22.04.2 @@ -3510,7 +3681,7 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 libedit/libedit2@3.1-20210910-1build1 @@ -3521,7 +3692,7 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 ncurses/libncurses6@6.3-2ubuntu0.1 @@ -3532,7 +3703,7 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 ncurses/ncurses-bin@6.3-2ubuntu0.1 @@ -3543,7 +3714,7 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 procps@2:3.3.17-6ubuntu2.1 @@ -3554,9 +3725,9 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 - util-linux@2.37.2-4ubuntu3.3 + util-linux@2.37.2-4ubuntu3.4 ncurses/libtinfo6@6.3-2ubuntu0.1 @@ -3565,7 +3736,7 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -3580,7 +3751,7 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3595,7 +3766,7 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 ncurses/libncursesw6@6.3-2ubuntu0.1 @@ -3604,7 +3775,7 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 procps@2:3.3.17-6ubuntu2.1 @@ -3615,7 +3786,7 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3630,7 +3801,7 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 ncurses/libncurses6@6.3-2ubuntu0.1 @@ -3639,7 +3810,7 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 procps@2:3.3.17-6ubuntu2.1 @@ -3650,7 +3821,7 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 ncurses/ncurses-base@6.3-2ubuntu0.1 @@ -3659,7 +3830,7 @@

                                                                        Detailed paths

                                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 ncurses/ncurses-bin@6.3-2ubuntu0.1 @@ -3704,7 +3875,7 @@

                                                                        Resource Exhaustion

                                                                        • - Manifest file: quay.io/argoproj/argocd:v2.10.6/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argocd Dockerfile
                                                                        • Package Manager: ubuntu:22.04 @@ -3717,7 +3888,7 @@

                                                                          Resource Exhaustion

                                                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 and libzstd/libzstd1@1.4.8+dfsg-3build1 + docker-image|quay.io/argoproj/argocd@v2.9.12 and libzstd/libzstd1@1.4.8+dfsg-3build1
                                                                        @@ -3730,7 +3901,7 @@

                                                                        Detailed paths

                                                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 libzstd/libzstd1@1.4.8+dfsg-3build1 @@ -3781,7 +3952,7 @@

                                                                          Integer Overflow or Wraparound

                                                                          • - Manifest file: quay.io/argoproj/argocd:v2.10.6/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argocd Dockerfile
                                                                          • Package Manager: ubuntu:22.04 @@ -3794,7 +3965,7 @@

                                                                            Integer Overflow or Wraparound

                                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 and krb5/libk5crypto3@1.19.2-2ubuntu0.3 + docker-image|quay.io/argoproj/argocd@v2.9.12 and krb5/libk5crypto3@1.19.2-2ubuntu0.3
                                                                          @@ -3807,7 +3978,7 @@

                                                                          Detailed paths

                                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 krb5/libk5crypto3@1.19.2-2ubuntu0.3 @@ -3816,7 +3987,7 @@

                                                                            Detailed paths

                                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 adduser@3.118ubuntu5 @@ -3837,7 +4008,7 @@

                                                                            Detailed paths

                                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 adduser@3.118ubuntu5 @@ -3860,7 +4031,7 @@

                                                                            Detailed paths

                                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 krb5/libkrb5-3@1.19.2-2ubuntu0.3 @@ -3869,7 +4040,7 @@

                                                                            Detailed paths

                                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 adduser@3.118ubuntu5 @@ -3890,7 +4061,7 @@

                                                                            Detailed paths

                                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -3899,7 +4070,7 @@

                                                                            Detailed paths

                                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 openssh/openssh-client@1:8.9p1-3ubuntu0.6 @@ -3910,7 +4081,7 @@

                                                                            Detailed paths

                                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 git@1:2.34.1-1ubuntu1.10 @@ -3923,7 +4094,7 @@

                                                                            Detailed paths

                                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 git@1:2.34.1-1ubuntu1.10 @@ -3938,7 +4109,7 @@

                                                                            Detailed paths

                                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 adduser@3.118ubuntu5 @@ -3957,7 +4128,7 @@

                                                                            Detailed paths

                                                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 krb5/libkrb5support0@1.19.2-2ubuntu0.3 @@ -4005,7 +4176,7 @@

                                                                            Out-of-bounds Write

                                                                            • - Manifest file: quay.io/argoproj/argocd:v2.10.6/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argocd Dockerfile
                                                                            • Package Manager: ubuntu:22.04 @@ -4018,7 +4189,7 @@

                                                                              Out-of-bounds Write

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 and gnupg2/gpgv@2.2.27-3ubuntu2.1 + docker-image|quay.io/argoproj/argocd@v2.9.12 and gnupg2/gpgv@2.2.27-3ubuntu2.1
                                                                            @@ -4031,7 +4202,7 @@

                                                                            Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gnupg2/gpgv@2.2.27-3ubuntu2.1 @@ -4040,7 +4211,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 apt@2.4.12 @@ -4051,7 +4222,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4062,7 +4233,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gnupg2/dirmngr@2.2.27-3ubuntu2.1 @@ -4073,7 +4244,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -4084,7 +4255,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4097,7 +4268,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4110,7 +4281,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gnupg2/dirmngr@2.2.27-3ubuntu2.1 @@ -4119,7 +4290,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4130,7 +4301,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4143,7 +4314,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gnupg2/gnupg-l10n@2.2.27-3ubuntu2.1 @@ -4152,7 +4323,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4163,7 +4334,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gnupg2/gnupg-utils@2.2.27-3ubuntu2.1 @@ -4172,7 +4343,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4183,7 +4354,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -4192,7 +4363,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4203,7 +4374,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4216,7 +4387,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4229,7 +4400,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gnupg2/gpg-agent@2.2.27-3ubuntu2.1 @@ -4238,7 +4409,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4249,7 +4420,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4262,7 +4433,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4275,7 +4446,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gnupg2/gpg-wks-client@2.2.27-3ubuntu2.1 @@ -4284,7 +4455,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4295,7 +4466,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gnupg2/gpg-wks-server@2.2.27-3ubuntu2.1 @@ -4304,7 +4475,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4315,7 +4486,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gnupg2/gpgsm@2.2.27-3ubuntu2.1 @@ -4324,7 +4495,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4335,7 +4506,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4384,7 +4555,7 @@

                                                                              Allocation of Resources Without Limits or Throttling

                                                                            • - Manifest file: quay.io/argoproj/argocd:v2.10.6/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argocd Dockerfile
                                                                            • Package Manager: ubuntu:22.04 @@ -4397,7 +4568,7 @@

                                                                              Allocation of Resources Without Limits or Throttling

                                                                              Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 and glibc/libc-bin@2.35-0ubuntu3.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 and glibc/libc-bin@2.35-0ubuntu3.6
                                                                            @@ -4410,7 +4581,7 @@

                                                                            Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 glibc/libc-bin@2.35-0ubuntu3.6 @@ -4419,7 +4590,7 @@

                                                                              Detailed paths

                                                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 glibc/libc6@2.35-0ubuntu3.6 @@ -4465,7 +4636,7 @@

                                                                              Improper Input Validation

                                                                              • - Manifest file: quay.io/argoproj/argocd:v2.10.6/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argocd Dockerfile
                                                                              • Package Manager: ubuntu:22.04 @@ -4479,7 +4650,7 @@

                                                                                Improper Input Validation

                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6, git@1:2.34.1-1ubuntu1.10 and others + docker-image|quay.io/argoproj/argocd@v2.9.12, git@1:2.34.1-1ubuntu1.10 and others
                                                                              @@ -4491,7 +4662,7 @@

                                                                              Detailed paths

                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 git@1:2.34.1-1ubuntu1.10 @@ -4502,7 +4673,7 @@

                                                                                Detailed paths

                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 git@1:2.34.1-1ubuntu1.10 @@ -4511,7 +4682,7 @@

                                                                                Detailed paths

                                                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 git-lfs@3.0.2-1ubuntu0.2 @@ -4558,7 +4729,7 @@

                                                                                Uncontrolled Recursion

                                                                                • - Manifest file: quay.io/argoproj/argocd:v2.10.6/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argocd Dockerfile
                                                                                • Package Manager: ubuntu:22.04 @@ -4571,7 +4742,7 @@

                                                                                  Uncontrolled Recursion

                                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 and gcc-12/libstdc++6@12.3.0-1ubuntu1~22.04 + docker-image|quay.io/argoproj/argocd@v2.9.12 and gcc-12/libstdc++6@12.3.0-1ubuntu1~22.04
                                                                                @@ -4584,7 +4755,7 @@

                                                                                Detailed paths

                                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gcc-12/libstdc++6@12.3.0-1ubuntu1~22.04 @@ -4593,7 +4764,7 @@

                                                                                  Detailed paths

                                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 apt@2.4.12 @@ -4604,7 +4775,7 @@

                                                                                  Detailed paths

                                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 apt@2.4.12 @@ -4617,7 +4788,7 @@

                                                                                  Detailed paths

                                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gcc-12/gcc-12-base@12.3.0-1ubuntu1~22.04 @@ -4626,7 +4797,7 @@

                                                                                  Detailed paths

                                                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 gcc-12/libgcc-s1@12.3.0-1ubuntu1~22.04 @@ -4673,7 +4844,7 @@

                                                                                  Improper Input Validation

                                                                                  • - Manifest file: quay.io/argoproj/argocd:v2.10.6/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argocd Dockerfile
                                                                                  • Package Manager: ubuntu:22.04 @@ -4686,7 +4857,7 @@

                                                                                    Improper Input Validation

                                                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 and coreutils@8.32-4.1ubuntu1.2 + docker-image|quay.io/argoproj/argocd@v2.9.12 and coreutils@8.32-4.1ubuntu1.2
                                                                                  @@ -4699,7 +4870,7 @@

                                                                                  Detailed paths

                                                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.6 + docker-image|quay.io/argoproj/argocd@v2.9.12 coreutils@8.32-4.1ubuntu1.2 diff --git a/docs/snyk/v2.8.15/redis_7.0.11-alpine.html b/docs/snyk/v2.9.12/redis_7.0.11-alpine.html similarity index 99% rename from docs/snyk/v2.8.15/redis_7.0.11-alpine.html rename to docs/snyk/v2.9.12/redis_7.0.11-alpine.html index 1a342c5b6a42e..623fb7fffd626 100644 --- a/docs/snyk/v2.8.15/redis_7.0.11-alpine.html +++ b/docs/snyk/v2.9.12/redis_7.0.11-alpine.html @@ -456,7 +456,7 @@

                                                                                    Snyk test report

                                                                                    -

                                                                                    April 14th 2024, 12:27:09 am (UTC+00:00)

                                                                                    +

                                                                                    April 21st 2024, 12:22:52 am (UTC+00:00)

                                                                                    Scanned the following path: From 85e04f5bd4e500e30ac8bde3f706384f25e9c2c3 Mon Sep 17 00:00:00 2001 From: Michael Crenshaw <350466+crenshaw-dev@users.noreply.github.com> Date: Mon, 22 Apr 2024 11:44:42 -0400 Subject: [PATCH 020/206] docs(cli): remove docs for non-existing `argocd admin` commands (#17924) --- cmd/argocd/commands/admin/admin.go | 77 +----------------------- docs/user-guide/commands/argocd_admin.md | 75 ----------------------- 2 files changed, 1 insertion(+), 151 deletions(-) diff --git a/cmd/argocd/commands/admin/admin.go b/cmd/argocd/commands/admin/admin.go index 49c81e4da4bfe..01a07e3021fc9 100644 --- a/cmd/argocd/commands/admin/admin.go +++ b/cmd/argocd/commands/admin/admin.go @@ -48,84 +48,9 @@ func NewAdminCommand(clientOpts *argocdclient.ClientOptions) *cobra.Command { Run: func(c *cobra.Command, args []string) { c.HelpFunc()(c, args) }, - Example: `# List all clusters -$ argocd admin cluster list - -# Add a new cluster -$ argocd admin cluster add my-cluster --name my-cluster --in-cluster-context - -# Remove a cluster -argocd admin cluster remove my-cluster - -# List all projects -$ argocd admin project list - -# Create a new project -$argocd admin project create my-project --src-namespace my-source-namespace --dest-namespace my-dest-namespace - -# Update a project -$ argocd admin project update my-project --src-namespace my-updated-source-namespace --dest-namespace my-updated-dest-namespace - -# Delete a project -$ argocd admin project delete my-project - -# List all settings -$ argocd admin settings list - -# Get the current settings -$ argocd admin settings get - -# Update settings -$ argocd admin settings update --repository.resync --value 15 - -# List all applications -$ argocd admin app list - -# Get application details -$ argocd admin app get my-app - -# Sync an application -$ argocd admin app sync my-app - -# Pause an application -$ argocd admin app pause my-app - -# Resume an application -$ argocd admin app resume my-app - -# List all repositories -$ argocd admin repo list - -# Add a repository -$ argocd admin repo add https://github.com/argoproj/my-repo.git - -# Remove a repository -$ argocd admin repo remove https://github.com/argoproj/my-repo.git - -# Import an application from a YAML file -$ argocd admin app import -f my-app.yaml - -# Export an application to a YAML file -$ argocd admin app export my-app -o my-exported-app.yaml - -# Access the Argo CD web UI + Example: `# Access the Argo CD web UI $ argocd admin dashboard -# List notifications -$ argocd admin notification list - -# Get notification details -$ argocd admin notification get my-notification - -# Create a new notification -$ argocd admin notification create my-notification -f notification-config.yaml - -# Update a notification -$ argocd admin notification update my-notification -f updated-notification-config.yaml - -# Delete a notification -$ argocd admin notification delete my-notification - # Reset the initial admin password $ argocd admin initial-password reset `, diff --git a/docs/user-guide/commands/argocd_admin.md b/docs/user-guide/commands/argocd_admin.md index 7966e5a3cb9b1..4375c7f2e3cae 100644 --- a/docs/user-guide/commands/argocd_admin.md +++ b/docs/user-guide/commands/argocd_admin.md @@ -11,84 +11,9 @@ argocd admin [flags] ### Examples ``` -# List all clusters -$ argocd admin cluster list - -# Add a new cluster -$ argocd admin cluster add my-cluster --name my-cluster --in-cluster-context - -# Remove a cluster -argocd admin cluster remove my-cluster - -# List all projects -$ argocd admin project list - -# Create a new project -$argocd admin project create my-project --src-namespace my-source-namespace --dest-namespace my-dest-namespace - -# Update a project -$ argocd admin project update my-project --src-namespace my-updated-source-namespace --dest-namespace my-updated-dest-namespace - -# Delete a project -$ argocd admin project delete my-project - -# List all settings -$ argocd admin settings list - -# Get the current settings -$ argocd admin settings get - -# Update settings -$ argocd admin settings update --repository.resync --value 15 - -# List all applications -$ argocd admin app list - -# Get application details -$ argocd admin app get my-app - -# Sync an application -$ argocd admin app sync my-app - -# Pause an application -$ argocd admin app pause my-app - -# Resume an application -$ argocd admin app resume my-app - -# List all repositories -$ argocd admin repo list - -# Add a repository -$ argocd admin repo add https://github.com/argoproj/my-repo.git - -# Remove a repository -$ argocd admin repo remove https://github.com/argoproj/my-repo.git - -# Import an application from a YAML file -$ argocd admin app import -f my-app.yaml - -# Export an application to a YAML file -$ argocd admin app export my-app -o my-exported-app.yaml - # Access the Argo CD web UI $ argocd admin dashboard -# List notifications -$ argocd admin notification list - -# Get notification details -$ argocd admin notification get my-notification - -# Create a new notification -$ argocd admin notification create my-notification -f notification-config.yaml - -# Update a notification -$ argocd admin notification update my-notification -f updated-notification-config.yaml - -# Delete a notification -$ argocd admin notification delete my-notification - # Reset the initial admin password $ argocd admin initial-password reset From f3f55ddd879023178fa8b593d3b5121bdc5061b4 Mon Sep 17 00:00:00 2001 From: Michael Crenshaw <350466+crenshaw-dev@users.noreply.github.com> Date: Mon, 22 Apr 2024 12:32:28 -0400 Subject: [PATCH 021/206] chore(deps): bump actions/*-artifact (#17923) Signed-off-by: Michael Crenshaw <350466+crenshaw-dev@users.noreply.github.com> --- .github/workflows/ci-build.yaml | 12 ++++++------ .github/workflows/scorecard.yaml | 2 +- 2 files changed, 7 insertions(+), 7 deletions(-) diff --git a/.github/workflows/ci-build.yaml b/.github/workflows/ci-build.yaml index 50c0e1ff8c1dd..c1097cb2121ca 100644 --- a/.github/workflows/ci-build.yaml +++ b/.github/workflows/ci-build.yaml @@ -171,12 +171,12 @@ jobs: - name: Run all unit tests run: make test-local - name: Generate code coverage artifacts - uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3.1.3 + uses: actions/upload-artifact@1746f4ab65b179e0ea60a494b83293b640dd5bba # v4.3.2 with: name: code-coverage path: coverage.out - name: Generate test results artifacts - uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3.1.3 + uses: actions/upload-artifact@1746f4ab65b179e0ea60a494b83293b640dd5bba # v4.3.2 with: name: test-results path: test-results/ @@ -240,7 +240,7 @@ jobs: - name: Run all unit tests run: make test-race-local - name: Generate test results artifacts - uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3.1.3 + uses: actions/upload-artifact@1746f4ab65b179e0ea60a494b83293b640dd5bba # v4.3.2 with: name: race-results path: test-results/ @@ -359,11 +359,11 @@ jobs: run: | mkdir -p test-results - name: Get code coverage artifact - uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2 + uses: actions/download-artifact@8caf195ad4b1dee92908e23f56eeb0696f1dd42d # v4.1.5 with: name: code-coverage - name: Get test result artifact - uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2 + uses: actions/download-artifact@8caf195ad4b1dee92908e23f56eeb0696f1dd42d # v4.1.5 with: name: test-results path: test-results @@ -502,7 +502,7 @@ jobs: set -x make test-e2e-local - name: Upload e2e-server logs - uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3.1.3 + uses: actions/upload-artifact@1746f4ab65b179e0ea60a494b83293b640dd5bba # v4.3.2 with: name: e2e-server-k8s${{ matrix.k3s-version }}.log path: /tmp/e2e-server.log diff --git a/.github/workflows/scorecard.yaml b/.github/workflows/scorecard.yaml index ec3151949541d..a7a7559e74fe2 100644 --- a/.github/workflows/scorecard.yaml +++ b/.github/workflows/scorecard.yaml @@ -54,7 +54,7 @@ jobs: # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF # format to the repository Actions tab. - name: "Upload artifact" - uses: actions/upload-artifact@5d5d22a31266ced268874388b861e4b58bb5c2f3 # v4.3.1 + uses: actions/upload-artifact@1746f4ab65b179e0ea60a494b83293b640dd5bba # v4.3.2 with: name: SARIF file path: results.sarif From 50cec22d109b5147b3a32680b9a597ab57676913 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 22 Apr 2024 17:40:09 +0000 Subject: [PATCH 022/206] chore(deps): bump actions/upload-artifact from 4.3.2 to 4.3.3 (#17926) Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4.3.2 to 4.3.3. - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](https://github.com/actions/upload-artifact/compare/1746f4ab65b179e0ea60a494b83293b640dd5bba...65462800fd760344b1a7b4382951275a0abb4808) --- updated-dependencies: - dependency-name: actions/upload-artifact dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/ci-build.yaml | 8 ++++---- .github/workflows/scorecard.yaml | 2 +- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/.github/workflows/ci-build.yaml b/.github/workflows/ci-build.yaml index c1097cb2121ca..8fc850e0dd14a 100644 --- a/.github/workflows/ci-build.yaml +++ b/.github/workflows/ci-build.yaml @@ -171,12 +171,12 @@ jobs: - name: Run all unit tests run: make test-local - name: Generate code coverage artifacts - uses: actions/upload-artifact@1746f4ab65b179e0ea60a494b83293b640dd5bba # v4.3.2 + uses: actions/upload-artifact@65462800fd760344b1a7b4382951275a0abb4808 # v4.3.3 with: name: code-coverage path: coverage.out - name: Generate test results artifacts - uses: actions/upload-artifact@1746f4ab65b179e0ea60a494b83293b640dd5bba # v4.3.2 + uses: actions/upload-artifact@65462800fd760344b1a7b4382951275a0abb4808 # v4.3.3 with: name: test-results path: test-results/ @@ -240,7 +240,7 @@ jobs: - name: Run all unit tests run: make test-race-local - name: Generate test results artifacts - uses: actions/upload-artifact@1746f4ab65b179e0ea60a494b83293b640dd5bba # v4.3.2 + uses: actions/upload-artifact@65462800fd760344b1a7b4382951275a0abb4808 # v4.3.3 with: name: race-results path: test-results/ @@ -502,7 +502,7 @@ jobs: set -x make test-e2e-local - name: Upload e2e-server logs - uses: actions/upload-artifact@1746f4ab65b179e0ea60a494b83293b640dd5bba # v4.3.2 + uses: actions/upload-artifact@65462800fd760344b1a7b4382951275a0abb4808 # v4.3.3 with: name: e2e-server-k8s${{ matrix.k3s-version }}.log path: /tmp/e2e-server.log diff --git a/.github/workflows/scorecard.yaml b/.github/workflows/scorecard.yaml index a7a7559e74fe2..4394d7739df22 100644 --- a/.github/workflows/scorecard.yaml +++ b/.github/workflows/scorecard.yaml @@ -54,7 +54,7 @@ jobs: # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF # format to the repository Actions tab. - name: "Upload artifact" - uses: actions/upload-artifact@1746f4ab65b179e0ea60a494b83293b640dd5bba # v4.3.2 + uses: actions/upload-artifact@65462800fd760344b1a7b4382951275a0abb4808 # v4.3.3 with: name: SARIF file path: results.sarif From 67e6c6cf942b3134729d4014f9a78dfa5289cb97 Mon Sep 17 00:00:00 2001 From: Nolan Emirot Date: Mon, 22 Apr 2024 20:57:50 +0100 Subject: [PATCH 023/206] docs: fix typp (#17927) Signed-off-by: emirot Co-authored-by: emirot --- docs/user-guide/diff-strategies.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/user-guide/diff-strategies.md b/docs/user-guide/diff-strategies.md index 2890fe64cbb0e..ffd09660696ac 100644 --- a/docs/user-guide/diff-strategies.md +++ b/docs/user-guide/diff-strategies.md @@ -114,7 +114,7 @@ metadata: ... ``` -Note: This annoation is only effective when Server-Side Diff is +Note: This annotation is only effective when Server-Side Diff is enabled. To enable both options for a given application add the following annotation in the Argo CD Application resource: From 77c27c3c10ce1d2a5a9fc0ff79ede6fa73200c60 Mon Sep 17 00:00:00 2001 From: Alexy Mantha Date: Tue, 23 Apr 2024 09:32:26 -0400 Subject: [PATCH 024/206] feat(appset): implement ResourceTree for ApplicationSets (#15741) * update types Signed-off-by: Alexy Mantha * Update generated code Signed-off-by: Alexy Mantha * wip Signed-off-by: Alexy Mantha * add resource tree Signed-off-by: Alexy Mantha * Update generated code Signed-off-by: Alexy Mantha * fix Signed-off-by: Alexy Mantha * cleanup Signed-off-by: Alexy Mantha * format Signed-off-by: Alexy Mantha * fix lint Signed-off-by: Alexy Mantha * Update generated code Signed-off-by: Alexy Mantha * fmt Signed-off-by: Alexy Mantha * add tests Signed-off-by: Alexy Mantha * cleanup Signed-off-by: Alexy Mantha * fmt Signed-off-by: Alexy Mantha * fix conflicts Signed-off-by: Alexy Mantha * codegen Signed-off-by: Alexy Mantha * regen Signed-off-by: Alexy Mantha * fix codegen Signed-off-by: Alexy Mantha --------- Signed-off-by: Alexy Mantha --- .../controllers/applicationset_controller.go | 99 +- .../applicationset_controller_test.go | 213 ++ assets/swagger.json | 57 + manifests/core-install.yaml | 31 + manifests/crds/applicationset-crd.yaml | 31 + manifests/ha/install.yaml | 31 + manifests/install.yaml | 31 + .../applicationset/applicationset.pb.go | 342 ++- .../applicationset/applicationset.pb.gw.go | 119 ++ pkg/apis/api-rules/violation_exceptions.list | 2 + .../v1alpha1/applicationset_types.go | 17 + pkg/apis/application/v1alpha1/generated.pb.go | 1866 ++++++++++------- pkg/apis/application/v1alpha1/generated.proto | 10 + .../application/v1alpha1/openapi_generated.go | 46 +- .../v1alpha1/zz_generated.deepcopy.go | 30 + server/applicationset/applicationset.go | 46 + server/applicationset/applicationset.proto | 12 +- server/applicationset/applicationset_test.go | 88 + 18 files changed, 2216 insertions(+), 855 deletions(-) diff --git a/applicationset/controllers/applicationset_controller.go b/applicationset/controllers/applicationset_controller.go index e1275e75d3ba2..e640e78a896bf 100644 --- a/applicationset/controllers/applicationset_controller.go +++ b/applicationset/controllers/applicationset_controller.go @@ -165,6 +165,16 @@ func (r *ApplicationSetReconciler) Reconcile(ctx context.Context, req ctrl.Reque return ctrl.Result{RequeueAfter: ReconcileRequeueOnValidationError}, nil } + currentApplications, err := r.getCurrentApplications(ctx, applicationSetInfo) + if err != nil { + return ctrl.Result{}, fmt.Errorf("failed to get current applications for application set: %w", err) + } + + err = r.updateResourcesStatus(ctx, logCtx, &applicationSetInfo, currentApplications) + if err != nil { + return ctrl.Result{}, fmt.Errorf("failed to get update resources status for application set: %w", err) + } + // appMap is a name->app collection of Applications in this ApplicationSet. appMap := map[string]argov1alpha1.Application{} // appSyncMap tracks which apps will be synced during this reconciliation. @@ -181,16 +191,11 @@ func (r *ApplicationSetReconciler) Reconcile(ctx context.Context, req ctrl.Reque } } else if applicationSetInfo.Spec.Strategy != nil { // appset uses progressive sync - applications, err := r.getCurrentApplications(ctx, applicationSetInfo) - if err != nil { - return ctrl.Result{}, fmt.Errorf("failed to get current applications for application set: %w", err) - } - - for _, app := range applications { + for _, app := range currentApplications { appMap[app.Name] = app } - appSyncMap, err = r.performProgressiveSyncs(ctx, logCtx, applicationSetInfo, applications, desiredApplications, appMap) + appSyncMap, err = r.performProgressiveSyncs(ctx, logCtx, applicationSetInfo, currentApplications, desiredApplications, appMap) if err != nil { return ctrl.Result{}, fmt.Errorf("failed to perform progressive sync reconciliation for application set: %w", err) } @@ -1351,6 +1356,86 @@ func findApplicationStatusIndex(appStatuses []argov1alpha1.ApplicationSetApplica return -1 } +func (r *ApplicationSetReconciler) updateResourcesStatus(ctx context.Context, logCtx *log.Entry, appset *argov1alpha1.ApplicationSet, apps []argov1alpha1.Application) error { + statusMap := getResourceStatusMap(appset) + statusMap = buildResourceStatus(statusMap, apps) + + statuses := []argov1alpha1.ResourceStatus{} + for _, status := range statusMap { + statuses = append(statuses, status) + } + appset.Status.Resources = statuses + + namespacedName := types.NamespacedName{Namespace: appset.Namespace, Name: appset.Name} + err := r.Client.Status().Update(ctx, appset) + if err != nil { + + logCtx.Errorf("unable to set application set status: %v", err) + return fmt.Errorf("unable to set application set status: %v", err) + } + + if err := r.Get(ctx, namespacedName, appset); err != nil { + if client.IgnoreNotFound(err) != nil { + return nil + } + return fmt.Errorf("error fetching updated application set: %v", err) + } + + return nil +} + +func buildResourceStatus(statusMap map[string]argov1alpha1.ResourceStatus, apps []argov1alpha1.Application) map[string]argov1alpha1.ResourceStatus { + appMap := map[string]argov1alpha1.Application{} + for _, app := range apps { + appCopy := app + appMap[app.Name] = app + + gvk := app.GroupVersionKind() + // Create status if it does not exist + status, ok := statusMap[app.Name] + if !ok { + status = argov1alpha1.ResourceStatus{ + Group: gvk.Group, + Version: gvk.Version, + Kind: gvk.Kind, + Name: app.Name, + Namespace: app.Namespace, + Status: app.Status.Sync.Status, + Health: &appCopy.Status.Health, + } + } + + status.Group = gvk.Group + status.Version = gvk.Version + status.Kind = gvk.Kind + status.Name = app.Name + status.Namespace = app.Namespace + status.Status = app.Status.Sync.Status + status.Health = &appCopy.Status.Health + + statusMap[app.Name] = status + } + cleanupDeletedApplicationStatuses(statusMap, appMap) + + return statusMap +} + +func getResourceStatusMap(appset *argov1alpha1.ApplicationSet) map[string]argov1alpha1.ResourceStatus { + statusMap := map[string]argov1alpha1.ResourceStatus{} + for _, status := range appset.Status.Resources { + statusMap[status.Name] = status + } + return statusMap +} + +func cleanupDeletedApplicationStatuses(statusMap map[string]argov1alpha1.ResourceStatus, apps map[string]argov1alpha1.Application) { + for name := range statusMap { + if _, ok := apps[name]; !ok { + delete(statusMap, name) + } + } +} + // setApplicationSetApplicationStatus updates the ApplicatonSet's status field // with any new/changed Application statuses. func (r *ApplicationSetReconciler) setAppSetApplicationStatus(ctx context.Context, logCtx *log.Entry, applicationSet *argov1alpha1.ApplicationSet, applicationStatuses []argov1alpha1.ApplicationSetApplicationStatus) error { diff --git a/applicationset/controllers/applicationset_controller_test.go b/applicationset/controllers/applicationset_controller_test.go index c3c5f3845bea5..a5e5858bd9c44 100644 --- a/applicationset/controllers/applicationset_controller_test.go +++ b/applicationset/controllers/applicationset_controller_test.go @@ -6067,6 +6067,219 @@ func TestUpdateApplicationSetApplicationStatusProgress(t *testing.T) { } } +func TestUpdateResourceStatus(t *testing.T) { + + scheme := runtime.NewScheme() + err := v1alpha1.AddToScheme(scheme) + assert.Nil(t, err) + + err = v1alpha1.AddToScheme(scheme) + assert.Nil(t, err) + + for _, cc := range []struct { + name string + appSet v1alpha1.ApplicationSet + apps []v1alpha1.Application + expectedResources []v1alpha1.ResourceStatus + }{ + { + name: "handles an empty application list", + appSet: v1alpha1.ApplicationSet{ + ObjectMeta: metav1.ObjectMeta{ + Name: "name", + Namespace: "argocd", + }, + Status: v1alpha1.ApplicationSetStatus{ + Resources: []v1alpha1.ResourceStatus{}, + }, + }, + apps: []v1alpha1.Application{}, + expectedResources: nil, + }, + { + name: "adds status if no existing statuses", + appSet: v1alpha1.ApplicationSet{ + ObjectMeta: metav1.ObjectMeta{ + Name: "name", + Namespace: "argocd", + }, + Status: v1alpha1.ApplicationSetStatus{ + ApplicationStatus: []v1alpha1.ApplicationSetApplicationStatus{}, + }, + }, + apps: []v1alpha1.Application{ + { + ObjectMeta: metav1.ObjectMeta{ + Name: "app1", + }, + Status: v1alpha1.ApplicationStatus{ + Sync: v1alpha1.SyncStatus{ + Status: v1alpha1.SyncStatusCodeSynced, + }, + Health: v1alpha1.HealthStatus{ + Status: health.HealthStatusHealthy, + Message: "OK", + }, + }, + }, + }, + expectedResources: []v1alpha1.ResourceStatus{ + { + Name: "app1", + Status: v1alpha1.SyncStatusCodeSynced, + Health: &v1alpha1.HealthStatus{ + Status: health.HealthStatusHealthy, + Message: "OK", + }, + }, + }, + }, + { + name: "handles an applicationset with existing and up-to-date status", + appSet: v1alpha1.ApplicationSet{ + ObjectMeta: metav1.ObjectMeta{ + Name: "name", + Namespace: "argocd", + }, + Status: v1alpha1.ApplicationSetStatus{ + Resources: []v1alpha1.ResourceStatus{ + { + Name: "app1", + Status: v1alpha1.SyncStatusCodeSynced, + Health: &v1alpha1.HealthStatus{ + Status: health.HealthStatusHealthy, + Message: "OK", + }, + }, + }, + }, + }, + apps: []v1alpha1.Application{ + { + ObjectMeta: metav1.ObjectMeta{ + Name: "app1", + }, + Status: v1alpha1.ApplicationStatus{ + Sync: v1alpha1.SyncStatus{ + Status: v1alpha1.SyncStatusCodeSynced, + }, + Health: v1alpha1.HealthStatus{ + Status: health.HealthStatusHealthy, + Message: "OK", + }, + }, + }, + }, + expectedResources: []v1alpha1.ResourceStatus{ + { + Name: "app1", + Status: v1alpha1.SyncStatusCodeSynced, + Health: &v1alpha1.HealthStatus{ + Status: health.HealthStatusHealthy, + Message: "OK", + }, + }, + }, + }, + { + name: "updates an applicationset with existing and out of date status", + appSet: v1alpha1.ApplicationSet{ + ObjectMeta: metav1.ObjectMeta{ + Name: "name", + Namespace: "argocd", + }, + Status: v1alpha1.ApplicationSetStatus{ + Resources: []v1alpha1.ResourceStatus{ + { + Name: "app1", + Status: v1alpha1.SyncStatusCodeOutOfSync, + Health: &v1alpha1.HealthStatus{ + Status: health.HealthStatusProgressing, + Message: "Progressing", + }, + }, + }, + }, + }, + apps: []v1alpha1.Application{ + { + ObjectMeta: metav1.ObjectMeta{ + Name: "app1", + }, + Status: v1alpha1.ApplicationStatus{ + Sync: v1alpha1.SyncStatus{ + Status: v1alpha1.SyncStatusCodeSynced, + }, + Health: v1alpha1.HealthStatus{ + Status: health.HealthStatusHealthy, + Message: "OK", + }, + }, + }, + }, + expectedResources: []v1alpha1.ResourceStatus{ + { + Name: "app1", + Status: v1alpha1.SyncStatusCodeSynced, + Health: &v1alpha1.HealthStatus{ + Status: health.HealthStatusHealthy, + Message: "OK", + }, + }, + }, + }, + { + name: "deletes an applicationset status if the application no longer exists", + appSet: v1alpha1.ApplicationSet{ + ObjectMeta: metav1.ObjectMeta{ + Name: "name", + Namespace: "argocd", + }, + Status: v1alpha1.ApplicationSetStatus{ + Resources: []v1alpha1.ResourceStatus{ + { + Name: "app1", + Status: v1alpha1.SyncStatusCodeSynced, + Health: &v1alpha1.HealthStatus{ + Status: health.HealthStatusHealthy, + Message: "OK", + }, + }, + }, + }, + }, + apps: []v1alpha1.Application{}, + expectedResources: nil, + }, + } { + + t.Run(cc.name, func(t *testing.T) { + + kubeclientset := kubefake.NewSimpleClientset([]runtime.Object{}...) + argoDBMock := dbmocks.ArgoDB{} + argoObjs := []runtime.Object{} + + client := fake.NewClientBuilder().WithScheme(scheme).WithObjects(&cc.appSet).Build() + + r := ApplicationSetReconciler{ + Client: client, + Scheme: scheme, + Recorder: record.NewFakeRecorder(1), + Cache: &fakeCache{}, + Generators: map[string]generators.Generator{}, + ArgoDB: &argoDBMock, + ArgoAppClientset: appclientset.NewSimpleClientset(argoObjs...), + KubeClientset: kubeclientset, + } + + err := r.updateResourcesStatus(context.TODO(), log.NewEntry(log.StandardLogger()), &cc.appSet, cc.apps) + + assert.Equal(t, err, nil, "expected no errors, but errors occured") + assert.Equal(t, cc.expectedResources, cc.appSet.Status.Resources, "expected resources did not match actual") + }) + } +} + func TestOwnsHandler(t *testing.T) { // progressive syncs do not affect create, delete, or generic ownsHandler := getOwnsHandlerPredicates(true) diff --git a/assets/swagger.json b/assets/swagger.json index 878d98410b5a7..1d32691c7389e 100644 --- a/assets/swagger.json +++ b/assets/swagger.json @@ -2030,6 +2030,43 @@ } } }, + "/api/v1/applicationsets/{name}/resource-tree": { + "get": { + "tags": [ + "ApplicationSetService" + ], + "summary": "ResourceTree returns resource tree", + "operationId": "ApplicationSetService_ResourceTree", + "parameters": [ + { + "type": "string", + "name": "name", + "in": "path", + "required": true + }, + { + "type": "string", + "description": "The application set namespace. Default empty is argocd control plane namespace.", + "name": "appsetNamespace", + "in": "query" + } + ], + "responses": { + "200": { + "description": "A successful response.", + "schema": { + "$ref": "#/definitions/v1alpha1ApplicationSetTree" + } + }, + "default": { + "description": "An unexpected error response.", + "schema": { + "$ref": "#/definitions/runtimeError" + } + } + } + } + }, "/api/v1/certificates": { "get": { "tags": [ @@ -6188,6 +6225,13 @@ "items": { "$ref": "#/definitions/v1alpha1ApplicationSetCondition" } + }, + "resources": { + "description": "Resources is a list of Applications resources managed by this application set.", + "type": "array", + "items": { + "$ref": "#/definitions/v1alpha1ResourceStatus" + } } } }, @@ -6259,6 +6303,19 @@ } } }, + "v1alpha1ApplicationSetTree": { + "type": "object", + "title": "ApplicationSetTree holds nodes which belongs to the application\nUsed to build a tree of an ApplicationSet and its children", + "properties": { + "nodes": { + "type": "array", + "title": "Nodes contains list of nodes which are directly managed by the applicationset", + "items": { + "$ref": "#/definitions/v1alpha1ResourceNode" + } + } + } + }, "v1alpha1ApplicationSource": { "type": "object", "title": "ApplicationSource contains all required information about the source of an application", diff --git a/manifests/core-install.yaml b/manifests/core-install.yaml index 3b6431e08fbb7..26e886a8c22c8 100644 --- a/manifests/core-install.yaml +++ b/manifests/core-install.yaml @@ -20329,6 +20329,37 @@ spec: - type type: object type: array + resources: + items: + properties: + group: + type: string + health: + properties: + message: + type: string + status: + type: string + type: object + hook: + type: boolean + kind: + type: string + name: + type: string + namespace: + type: string + requiresPruning: + type: boolean + status: + type: string + syncWave: + format: int64 + type: integer + version: + type: string + type: object + type: array type: object required: - metadata diff --git a/manifests/crds/applicationset-crd.yaml b/manifests/crds/applicationset-crd.yaml index b6f62fa930f50..b0ea7bb05d9c0 100644 --- a/manifests/crds/applicationset-crd.yaml +++ b/manifests/crds/applicationset-crd.yaml @@ -15332,6 +15332,37 @@ spec: - type type: object type: array + resources: + items: + properties: + group: + type: string + health: + properties: + message: + type: string + status: + type: string + type: object + hook: + type: boolean + kind: + type: string + name: + type: string + namespace: + type: string + requiresPruning: + type: boolean + status: + type: string + syncWave: + format: int64 + type: integer + version: + type: string + type: object + type: array type: object required: - metadata diff --git a/manifests/ha/install.yaml b/manifests/ha/install.yaml index 17bcfc89321e0..2a61d15ffc9f1 100644 --- a/manifests/ha/install.yaml +++ b/manifests/ha/install.yaml @@ -20329,6 +20329,37 @@ spec: - type type: object type: array + resources: + items: + properties: + group: + type: string + health: + properties: + message: + type: string + status: + type: string + type: object + hook: + type: boolean + kind: + type: string + name: + type: string + namespace: + type: string + requiresPruning: + type: boolean + status: + type: string + syncWave: + format: int64 + type: integer + version: + type: string + type: object + type: array type: object required: - metadata diff --git a/manifests/install.yaml b/manifests/install.yaml index 83d96896cdc6d..678228d70c36c 100644 --- a/manifests/install.yaml +++ b/manifests/install.yaml @@ -20329,6 +20329,37 @@ spec: - type type: object type: array + resources: + items: + properties: + group: + type: string + health: + properties: + message: + type: string + status: + type: string + type: object + hook: + type: boolean + kind: + type: string + name: + type: string + namespace: + type: string + requiresPruning: + type: boolean + status: + type: string + syncWave: + format: int64 + type: integer + version: + type: string + type: object + type: array type: object required: - metadata diff --git a/pkg/apiclient/applicationset/applicationset.pb.go b/pkg/apiclient/applicationset/applicationset.pb.go index 8f717d1f6920f..68db654fe9c4e 100644 --- a/pkg/apiclient/applicationset/applicationset.pb.go +++ b/pkg/apiclient/applicationset/applicationset.pb.go @@ -322,12 +322,69 @@ func (m *ApplicationSetDeleteRequest) GetAppsetNamespace() string { return "" } +type ApplicationSetTreeQuery struct { + Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"` + // The application set namespace. Default empty is argocd control plane namespace + AppsetNamespace string `protobuf:"bytes,2,opt,name=appsetNamespace,proto3" json:"appsetNamespace,omitempty"` + XXX_NoUnkeyedLiteral struct{} `json:"-"` + XXX_unrecognized []byte `json:"-"` + XXX_sizecache int32 `json:"-"` +} + +func (m *ApplicationSetTreeQuery) Reset() { *m = ApplicationSetTreeQuery{} } +func (m *ApplicationSetTreeQuery) String() string { return proto.CompactTextString(m) } +func (*ApplicationSetTreeQuery) ProtoMessage() {} +func (*ApplicationSetTreeQuery) Descriptor() ([]byte, []int) { + return fileDescriptor_eacb9df0ce5738fa, []int{5} +} +func (m *ApplicationSetTreeQuery) XXX_Unmarshal(b []byte) error { + return m.Unmarshal(b) +} +func (m *ApplicationSetTreeQuery) XXX_Marshal(b []byte, deterministic bool) ([]byte, error) { + if deterministic { + return xxx_messageInfo_ApplicationSetTreeQuery.Marshal(b, m, deterministic) + } else { + b = b[:cap(b)] + n, err := m.MarshalToSizedBuffer(b) + if err != nil { + return nil, err + } + return b[:n], nil + } +} +func (m *ApplicationSetTreeQuery) XXX_Merge(src proto.Message) { + xxx_messageInfo_ApplicationSetTreeQuery.Merge(m, src) +} +func (m *ApplicationSetTreeQuery) XXX_Size() int { + return m.Size() +} +func (m *ApplicationSetTreeQuery) XXX_DiscardUnknown() { + xxx_messageInfo_ApplicationSetTreeQuery.DiscardUnknown(m) +} + +var xxx_messageInfo_ApplicationSetTreeQuery proto.InternalMessageInfo + +func (m *ApplicationSetTreeQuery) GetName() string { + if m != nil { + return m.Name + } + return "" +} + +func (m *ApplicationSetTreeQuery) GetAppsetNamespace() string { + if m != nil { + return m.AppsetNamespace + } + return "" +} + func init() { proto.RegisterType((*ApplicationSetGetQuery)(nil), "applicationset.ApplicationSetGetQuery") proto.RegisterType((*ApplicationSetListQuery)(nil), "applicationset.ApplicationSetListQuery") proto.RegisterType((*ApplicationSetResponse)(nil), "applicationset.ApplicationSetResponse") proto.RegisterType((*ApplicationSetCreateRequest)(nil), "applicationset.ApplicationSetCreateRequest") proto.RegisterType((*ApplicationSetDeleteRequest)(nil), "applicationset.ApplicationSetDeleteRequest") + proto.RegisterType((*ApplicationSetTreeQuery)(nil), "applicationset.ApplicationSetTreeQuery") } func init() { @@ -335,40 +392,43 @@ func init() { } var fileDescriptor_eacb9df0ce5738fa = []byte{ - // 526 bytes of a gzipped FileDescriptorProto - 0x1f, 0x8b, 0x08, 0x00, 0x00, 0x00, 0x00, 0x00, 0x02, 0xff, 0xb4, 0x94, 0xdf, 0x8a, 0x13, 0x31, - 0x14, 0xc6, 0xc9, 0x76, 0xad, 0xbb, 0x11, 0x14, 0x02, 0xee, 0xd6, 0x51, 0x6a, 0x99, 0x8b, 0xb5, - 0xae, 0x98, 0xd0, 0x7a, 0xa7, 0x57, 0xfe, 0x81, 0x45, 0x28, 0xa2, 0xb3, 0xe0, 0x85, 0x5e, 0x48, - 0x76, 0x7a, 0x98, 0x1d, 0x77, 0x3a, 0x89, 0x49, 0x3a, 0x20, 0x8b, 0x37, 0x82, 0x4f, 0xe0, 0x13, - 0xa8, 0x37, 0x82, 0xb7, 0x3e, 0x84, 0x97, 0x82, 0x2f, 0x20, 0xc5, 0x07, 0x91, 0xc9, 0xcc, 0xb4, - 0x3b, 0xa1, 0xdb, 0x0a, 0x76, 0xef, 0x72, 0x26, 0x99, 0x73, 0x7e, 0xf9, 0xf2, 0x9d, 0x83, 0x77, - 0x35, 0xa8, 0x0c, 0x14, 0xe3, 0x52, 0x26, 0x71, 0xc8, 0x4d, 0x2c, 0x52, 0x0d, 0xc6, 0x09, 0xa9, - 0x54, 0xc2, 0x08, 0x72, 0xb1, 0xfe, 0xd5, 0xbb, 0x16, 0x09, 0x11, 0x25, 0xc0, 0xb8, 0x8c, 0x19, - 0x4f, 0x53, 0x61, 0x8a, 0x9d, 0xe2, 0xb4, 0x37, 0x88, 0x62, 0x73, 0x38, 0x3e, 0xa0, 0xa1, 0x18, - 0x31, 0xae, 0x22, 0x21, 0x95, 0x78, 0x6d, 0x17, 0xb7, 0xc3, 0x21, 0xcb, 0xfa, 0x4c, 0x1e, 0x45, - 0xf9, 0x9f, 0xfa, 0x64, 0x2d, 0x96, 0xf5, 0x78, 0x22, 0x0f, 0x79, 0x8f, 0x45, 0x90, 0x82, 0xe2, - 0x06, 0x86, 0x45, 0x36, 0xff, 0x39, 0xde, 0xba, 0x3f, 0x3b, 0xb7, 0x0f, 0x66, 0x0f, 0xcc, 0xb3, - 0x31, 0xa8, 0xb7, 0x84, 0xe0, 0xf5, 0x94, 0x8f, 0xa0, 0x85, 0x3a, 0xa8, 0xbb, 0x19, 0xd8, 0x35, - 0xe9, 0xe2, 0x4b, 0x5c, 0x4a, 0x0d, 0xe6, 0x09, 0x1f, 0x81, 0x96, 0x3c, 0x84, 0xd6, 0x9a, 0xdd, - 0x76, 0x3f, 0xfb, 0xc7, 0x78, 0xbb, 0x9e, 0x77, 0x10, 0xeb, 0x32, 0xb1, 0x87, 0x37, 0x72, 0x66, - 0x08, 0x8d, 0x6e, 0xa1, 0x4e, 0xa3, 0xbb, 0x19, 0x4c, 0xe3, 0x7c, 0x4f, 0x43, 0x02, 0xa1, 0x11, - 0xaa, 0xcc, 0x3c, 0x8d, 0xe7, 0x15, 0x6f, 0xcc, 0x2f, 0xfe, 0x15, 0xb9, 0xb7, 0x0a, 0x40, 0xcb, - 0x5c, 0x5c, 0xd2, 0xc2, 0xe7, 0xcb, 0x62, 0xe5, 0xc5, 0xaa, 0x90, 0x18, 0xec, 0xbc, 0x83, 0x05, - 0xb8, 0xd0, 0x1f, 0xd0, 0x99, 0xe0, 0xb4, 0x12, 0xdc, 0x2e, 0x5e, 0x85, 0x43, 0x9a, 0xf5, 0xa9, - 0x3c, 0x8a, 0x68, 0x2e, 0x38, 0x3d, 0xf1, 0x3b, 0xad, 0x04, 0xa7, 0x0e, 0x87, 0x53, 0xc3, 0xff, - 0x86, 0xf0, 0xd5, 0xfa, 0x91, 0x87, 0x0a, 0xb8, 0x81, 0x00, 0xde, 0x8c, 0x41, 0xcf, 0xa3, 0x42, - 0x67, 0x4f, 0x45, 0xb6, 0x70, 0x73, 0x2c, 0x35, 0xa8, 0x42, 0x83, 0x8d, 0xa0, 0x8c, 0xfc, 0x97, - 0x2e, 0xec, 0x23, 0x48, 0x60, 0x06, 0xfb, 0x5f, 0x96, 0xe9, 0x7f, 0x3a, 0x87, 0x2f, 0xd7, 0xb3, - 0xef, 0x83, 0xca, 0xe2, 0x10, 0xc8, 0x17, 0x84, 0x1b, 0x7b, 0x60, 0xc8, 0x0e, 0x75, 0xfa, 0x67, - 0xbe, 0x75, 0xbd, 0x95, 0x8a, 0xe3, 0xef, 0xbc, 0xff, 0xf5, 0xe7, 0xe3, 0x5a, 0x87, 0xb4, 0x6d, - 0x43, 0x66, 0x3d, 0xa7, 0x89, 0x35, 0x3b, 0xce, 0x2f, 0xfa, 0x8e, 0x7c, 0x46, 0x78, 0x3d, 0x77, - 0x39, 0xb9, 0xb1, 0x18, 0x73, 0xda, 0x09, 0xde, 0xd3, 0x55, 0x72, 0xe6, 0x69, 0xfd, 0xeb, 0x96, - 0xf5, 0x0a, 0xd9, 0x3e, 0x85, 0x95, 0x7c, 0x47, 0xb8, 0x59, 0x38, 0x8c, 0xdc, 0x5a, 0x8c, 0x59, - 0xf3, 0xe1, 0x8a, 0x25, 0x65, 0x16, 0xf3, 0xa6, 0x7f, 0x1a, 0xe6, 0x5d, 0xd7, 0x90, 0x1f, 0x10, - 0x6e, 0x16, 0x5e, 0x5b, 0x86, 0x5d, 0x73, 0xa4, 0xb7, 0xc4, 0x31, 0xd5, 0x58, 0xa8, 0xde, 0x78, - 0x77, 0xc9, 0x1b, 0x3f, 0x78, 0xfc, 0x63, 0xd2, 0x46, 0x3f, 0x27, 0x6d, 0xf4, 0x7b, 0xd2, 0x46, - 0x2f, 0xee, 0xfd, 0xdb, 0x28, 0x0e, 0x93, 0x18, 0x52, 0x77, 0xf6, 0x1f, 0x34, 0xed, 0x00, 0xbe, - 0xf3, 0x37, 0x00, 0x00, 0xff, 0xff, 0x96, 0x3f, 0x16, 0xa7, 0x2a, 0x06, 0x00, 0x00, + // 573 bytes of a gzipped FileDescriptorProto + 0x1f, 0x8b, 0x08, 0x00, 0x00, 0x00, 0x00, 0x00, 0x02, 0xff, 0xb4, 0x95, 0x4f, 0x8b, 0x13, 0x3f, + 0x18, 0xc7, 0xc9, 0x76, 0xe9, 0x6f, 0x37, 0x3f, 0x51, 0x08, 0xb8, 0x5b, 0x47, 0xa9, 0x65, 0x0e, + 0x6b, 0x5d, 0xdd, 0x84, 0x56, 0x4f, 0x7a, 0xf2, 0x0f, 0x2c, 0x42, 0x11, 0x9d, 0x15, 0x05, 0x3d, + 0x48, 0x76, 0xfa, 0x30, 0x3b, 0xee, 0x74, 0x12, 0x93, 0x74, 0x40, 0x16, 0x2f, 0x82, 0xaf, 0xc0, + 0x77, 0xa0, 0x17, 0xc1, 0xab, 0x77, 0xaf, 0x1e, 0x05, 0xdf, 0x80, 0x54, 0x5f, 0x88, 0x4c, 0x66, + 0xda, 0xee, 0x84, 0x6e, 0x2b, 0x58, 0x6f, 0x79, 0xf2, 0xe7, 0x79, 0x3e, 0x79, 0x9e, 0xef, 0x93, + 0xe0, 0x6d, 0x0d, 0x2a, 0x03, 0xc5, 0xb8, 0x94, 0x49, 0x1c, 0x72, 0x13, 0x8b, 0x54, 0x83, 0x71, + 0x4c, 0x2a, 0x95, 0x30, 0x82, 0x9c, 0xae, 0xce, 0x7a, 0x17, 0x22, 0x21, 0xa2, 0x04, 0x18, 0x97, + 0x31, 0xe3, 0x69, 0x2a, 0x4c, 0xb1, 0x52, 0xec, 0xf6, 0x7a, 0x51, 0x6c, 0x0e, 0x86, 0xfb, 0x34, + 0x14, 0x03, 0xc6, 0x55, 0x24, 0xa4, 0x12, 0x2f, 0xec, 0x60, 0x27, 0xec, 0xb3, 0xac, 0xcb, 0xe4, + 0x61, 0x94, 0x9f, 0xd4, 0xc7, 0x63, 0xb1, 0xac, 0xc3, 0x13, 0x79, 0xc0, 0x3b, 0x2c, 0x82, 0x14, + 0x14, 0x37, 0xd0, 0x2f, 0xbc, 0xf9, 0x8f, 0xf1, 0xc6, 0xad, 0xe9, 0xbe, 0x3d, 0x30, 0xbb, 0x60, + 0x1e, 0x0e, 0x41, 0xbd, 0x22, 0x04, 0xaf, 0xa6, 0x7c, 0x00, 0x0d, 0xd4, 0x42, 0xed, 0xf5, 0xc0, + 0x8e, 0x49, 0x1b, 0x9f, 0xe1, 0x52, 0x6a, 0x30, 0xf7, 0xf9, 0x00, 0xb4, 0xe4, 0x21, 0x34, 0x56, + 0xec, 0xb2, 0x3b, 0xed, 0x1f, 0xe1, 0xcd, 0xaa, 0xdf, 0x5e, 0xac, 0x4b, 0xc7, 0x1e, 0x5e, 0xcb, + 0x99, 0x21, 0x34, 0xba, 0x81, 0x5a, 0xb5, 0xf6, 0x7a, 0x30, 0xb1, 0xf3, 0x35, 0x0d, 0x09, 0x84, + 0x46, 0xa8, 0xd2, 0xf3, 0xc4, 0x9e, 0x15, 0xbc, 0x36, 0x3b, 0xf8, 0x47, 0xe4, 0xde, 0x2a, 0x00, + 0x2d, 0xf3, 0xe4, 0x92, 0x06, 0xfe, 0xaf, 0x0c, 0x56, 0x5e, 0x6c, 0x6c, 0x12, 0x83, 0x9d, 0x3a, + 0x58, 0x80, 0xff, 0xbb, 0x3d, 0x3a, 0x4d, 0x38, 0x1d, 0x27, 0xdc, 0x0e, 0x9e, 0x87, 0x7d, 0x9a, + 0x75, 0xa9, 0x3c, 0x8c, 0x68, 0x9e, 0x70, 0x7a, 0xec, 0x38, 0x1d, 0x27, 0x9c, 0x3a, 0x1c, 0x4e, + 0x0c, 0xff, 0x13, 0xc2, 0xe7, 0xab, 0x5b, 0xee, 0x28, 0xe0, 0x06, 0x02, 0x78, 0x39, 0x04, 0x3d, + 0x8b, 0x0a, 0xfd, 0x7b, 0x2a, 0xb2, 0x81, 0xeb, 0x43, 0xa9, 0x41, 0x15, 0x39, 0x58, 0x0b, 0x4a, + 0xcb, 0x7f, 0xe6, 0xc2, 0xde, 0x85, 0x04, 0xa6, 0xb0, 0x7f, 0x27, 0x99, 0x27, 0xae, 0x64, 0x1e, + 0x29, 0x80, 0x25, 0x68, 0xb1, 0xfb, 0xb3, 0x8e, 0xcf, 0x56, 0x3d, 0xef, 0x81, 0xca, 0xe2, 0x10, + 0xc8, 0x07, 0x84, 0x6b, 0xbb, 0x60, 0xc8, 0x16, 0x75, 0x1a, 0x73, 0x76, 0x4f, 0x78, 0x4b, 0xcd, + 0xba, 0xbf, 0xf5, 0xe6, 0xfb, 0xaf, 0x77, 0x2b, 0x2d, 0xd2, 0xb4, 0x9d, 0x9e, 0x75, 0x9c, 0xd7, + 0x41, 0xb3, 0xa3, 0xfc, 0xa2, 0xaf, 0xc9, 0x7b, 0x84, 0x57, 0xf3, 0xf6, 0x21, 0x97, 0xe6, 0x63, + 0x4e, 0x5a, 0xcc, 0x7b, 0xb0, 0x4c, 0xce, 0xdc, 0xad, 0x7f, 0xd1, 0xb2, 0x9e, 0x23, 0x9b, 0x27, + 0xb0, 0x92, 0xcf, 0x08, 0xd7, 0x0b, 0xe9, 0x92, 0x2b, 0xf3, 0x31, 0x2b, 0x02, 0x5f, 0x72, 0x4a, + 0x99, 0xc5, 0xbc, 0xec, 0x9f, 0x84, 0x79, 0xc3, 0x55, 0xfa, 0x5b, 0x84, 0xeb, 0x85, 0x88, 0x17, + 0x61, 0x57, 0xa4, 0xee, 0x2d, 0x50, 0xcc, 0xf8, 0xbd, 0x19, 0xd7, 0x78, 0x7b, 0x51, 0x8d, 0xbf, + 0x20, 0x7c, 0x2a, 0x00, 0x2d, 0x86, 0x2a, 0x84, 0x5c, 0xf7, 0x8b, 0x6a, 0x3d, 0xe9, 0x8d, 0xe5, + 0xd6, 0x3a, 0x77, 0xeb, 0x5f, 0xb7, 0xcc, 0x94, 0x5c, 0x9d, 0xcf, 0xcc, 0x54, 0xc9, 0xbb, 0x63, + 0x14, 0xc0, 0xed, 0x7b, 0x5f, 0x47, 0x4d, 0xf4, 0x6d, 0xd4, 0x44, 0x3f, 0x46, 0x4d, 0xf4, 0xf4, + 0xe6, 0x9f, 0xfd, 0x52, 0x61, 0x12, 0x43, 0xea, 0x7e, 0x8b, 0xfb, 0x75, 0xfb, 0x37, 0x5d, 0xfb, + 0x1d, 0x00, 0x00, 0xff, 0xff, 0xfa, 0x8f, 0x0f, 0xad, 0x45, 0x07, 0x00, 0x00, } // Reference imports to suppress errors if they are not otherwise used. @@ -391,6 +451,8 @@ type ApplicationSetServiceClient interface { Create(ctx context.Context, in *ApplicationSetCreateRequest, opts ...grpc.CallOption) (*v1alpha1.ApplicationSet, error) // Delete deletes an application set Delete(ctx context.Context, in *ApplicationSetDeleteRequest, opts ...grpc.CallOption) (*ApplicationSetResponse, error) + // ResourceTree returns resource tree + ResourceTree(ctx context.Context, in *ApplicationSetTreeQuery, opts ...grpc.CallOption) (*v1alpha1.ApplicationSetTree, error) } type applicationSetServiceClient struct { @@ -437,6 +499,15 @@ func (c *applicationSetServiceClient) Delete(ctx context.Context, in *Applicatio return out, nil } +func (c *applicationSetServiceClient) ResourceTree(ctx context.Context, in *ApplicationSetTreeQuery, opts ...grpc.CallOption) (*v1alpha1.ApplicationSetTree, error) { + out := new(v1alpha1.ApplicationSetTree) + err := c.cc.Invoke(ctx, "/applicationset.ApplicationSetService/ResourceTree", in, out, opts...) + if err != nil { + return nil, err + } + return out, nil +} + // ApplicationSetServiceServer is the server API for ApplicationSetService service. type ApplicationSetServiceServer interface { // Get returns an applicationset by name @@ -447,6 +518,8 @@ type ApplicationSetServiceServer interface { Create(context.Context, *ApplicationSetCreateRequest) (*v1alpha1.ApplicationSet, error) // Delete deletes an application set Delete(context.Context, *ApplicationSetDeleteRequest) (*ApplicationSetResponse, error) + // ResourceTree returns resource tree + ResourceTree(context.Context, *ApplicationSetTreeQuery) (*v1alpha1.ApplicationSetTree, error) } // UnimplementedApplicationSetServiceServer can be embedded to have forward compatible implementations. @@ -465,6 +538,9 @@ func (*UnimplementedApplicationSetServiceServer) Create(ctx context.Context, req func (*UnimplementedApplicationSetServiceServer) Delete(ctx context.Context, req *ApplicationSetDeleteRequest) (*ApplicationSetResponse, error) { return nil, status.Errorf(codes.Unimplemented, "method Delete not implemented") } +func (*UnimplementedApplicationSetServiceServer) ResourceTree(ctx context.Context, req *ApplicationSetTreeQuery) (*v1alpha1.ApplicationSetTree, error) { + return nil, status.Errorf(codes.Unimplemented, "method ResourceTree not implemented") +} func RegisterApplicationSetServiceServer(s *grpc.Server, srv ApplicationSetServiceServer) { s.RegisterService(&_ApplicationSetService_serviceDesc, srv) @@ -542,6 +618,24 @@ func _ApplicationSetService_Delete_Handler(srv interface{}, ctx context.Context, return interceptor(ctx, in, info, handler) } +func _ApplicationSetService_ResourceTree_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) { + in := new(ApplicationSetTreeQuery) + if err := dec(in); err != nil { + return nil, err + } + if interceptor == nil { + return srv.(ApplicationSetServiceServer).ResourceTree(ctx, in) + } + info := &grpc.UnaryServerInfo{ + Server: srv, + FullMethod: "/applicationset.ApplicationSetService/ResourceTree", + } + handler := func(ctx context.Context, req interface{}) (interface{}, error) { + return srv.(ApplicationSetServiceServer).ResourceTree(ctx, req.(*ApplicationSetTreeQuery)) + } + return interceptor(ctx, in, info, handler) +} + var _ApplicationSetService_serviceDesc = grpc.ServiceDesc{ ServiceName: "applicationset.ApplicationSetService", HandlerType: (*ApplicationSetServiceServer)(nil), @@ -562,6 +656,10 @@ var _ApplicationSetService_serviceDesc = grpc.ServiceDesc{ MethodName: "Delete", Handler: _ApplicationSetService_Delete_Handler, }, + { + MethodName: "ResourceTree", + Handler: _ApplicationSetService_ResourceTree_Handler, + }, }, Streams: []grpc.StreamDesc{}, Metadata: "server/applicationset/applicationset.proto", @@ -794,6 +892,47 @@ func (m *ApplicationSetDeleteRequest) MarshalToSizedBuffer(dAtA []byte) (int, er return len(dAtA) - i, nil } +func (m *ApplicationSetTreeQuery) Marshal() (dAtA []byte, err error) { + size := m.Size() + dAtA = make([]byte, size) + n, err := m.MarshalToSizedBuffer(dAtA[:size]) + if err != nil { + return nil, err + } + return dAtA[:n], nil +} + +func (m *ApplicationSetTreeQuery) MarshalTo(dAtA []byte) (int, error) { + size := m.Size() + return m.MarshalToSizedBuffer(dAtA[:size]) +} + +func (m *ApplicationSetTreeQuery) MarshalToSizedBuffer(dAtA []byte) (int, error) { + i := len(dAtA) + _ = i + var l int + _ = l + if m.XXX_unrecognized != nil { + i -= len(m.XXX_unrecognized) + copy(dAtA[i:], m.XXX_unrecognized) + } + if len(m.AppsetNamespace) > 0 { + i -= len(m.AppsetNamespace) + copy(dAtA[i:], m.AppsetNamespace) + i = encodeVarintApplicationset(dAtA, i, uint64(len(m.AppsetNamespace))) + i-- + dAtA[i] = 0x12 + } + if len(m.Name) > 0 { + i -= len(m.Name) + copy(dAtA[i:], m.Name) + i = encodeVarintApplicationset(dAtA, i, uint64(len(m.Name))) + i-- + dAtA[i] = 0xa + } + return len(dAtA) - i, nil +} + func encodeVarintApplicationset(dAtA []byte, offset int, v uint64) int { offset -= sovApplicationset(v) base := offset @@ -910,6 +1049,26 @@ func (m *ApplicationSetDeleteRequest) Size() (n int) { return n } +func (m *ApplicationSetTreeQuery) Size() (n int) { + if m == nil { + return 0 + } + var l int + _ = l + l = len(m.Name) + if l > 0 { + n += 1 + l + sovApplicationset(uint64(l)) + } + l = len(m.AppsetNamespace) + if l > 0 { + n += 1 + l + sovApplicationset(uint64(l)) + } + if m.XXX_unrecognized != nil { + n += len(m.XXX_unrecognized) + } + return n +} + func sovApplicationset(x uint64) (n int) { return (math_bits.Len64(x|1) + 6) / 7 } @@ -1519,6 +1678,121 @@ func (m *ApplicationSetDeleteRequest) Unmarshal(dAtA []byte) error { } return nil } +func (m *ApplicationSetTreeQuery) Unmarshal(dAtA []byte) error { + l := len(dAtA) + iNdEx := 0 + for iNdEx < l { + preIndex := iNdEx + var wire uint64 + for shift := uint(0); ; shift += 7 { + if shift >= 64 { + return ErrIntOverflowApplicationset + } + if iNdEx >= l { + return io.ErrUnexpectedEOF + } + b := dAtA[iNdEx] + iNdEx++ + wire |= uint64(b&0x7F) << shift + if b < 0x80 { + break + } + } + fieldNum := int32(wire >> 3) + wireType := int(wire & 0x7) + if wireType == 4 { + return fmt.Errorf("proto: ApplicationSetTreeQuery: wiretype end group for non-group") + } + if fieldNum <= 0 { + return fmt.Errorf("proto: ApplicationSetTreeQuery: illegal tag %d (wire type %d)", fieldNum, wire) + } + switch fieldNum { + case 1: + if wireType != 2 { + return fmt.Errorf("proto: wrong wireType = %d for field Name", wireType) + } + var stringLen uint64 + for shift := uint(0); ; shift += 7 { + if shift >= 64 { + return ErrIntOverflowApplicationset + } + if iNdEx >= l { + return io.ErrUnexpectedEOF + } + b := dAtA[iNdEx] + iNdEx++ + stringLen |= uint64(b&0x7F) << shift + if b < 0x80 { + break + } + } + intStringLen := int(stringLen) + if intStringLen < 0 { + return ErrInvalidLengthApplicationset + } + postIndex := iNdEx + intStringLen + if postIndex < 0 { + return ErrInvalidLengthApplicationset + } + if postIndex > l { + return io.ErrUnexpectedEOF + } + m.Name = string(dAtA[iNdEx:postIndex]) + iNdEx = postIndex + case 2: + if wireType != 2 { + return fmt.Errorf("proto: wrong wireType = %d for field AppsetNamespace", wireType) + } + var stringLen uint64 + for shift := uint(0); ; shift += 7 { + if shift >= 64 { + return ErrIntOverflowApplicationset + } + if iNdEx >= l { + return io.ErrUnexpectedEOF + } + b := dAtA[iNdEx] + iNdEx++ + stringLen |= uint64(b&0x7F) << shift + if b < 0x80 { + break + } + } + intStringLen := int(stringLen) + if intStringLen < 0 { + return ErrInvalidLengthApplicationset + } + postIndex := iNdEx + intStringLen + if postIndex < 0 { + return ErrInvalidLengthApplicationset + } + if postIndex > l { + return io.ErrUnexpectedEOF + } + m.AppsetNamespace = string(dAtA[iNdEx:postIndex]) + iNdEx = postIndex + default: + iNdEx = preIndex + skippy, err := skipApplicationset(dAtA[iNdEx:]) + if err != nil { + return err + } + if (skippy < 0) || (iNdEx+skippy) < 0 { + return ErrInvalidLengthApplicationset + } + if (iNdEx + skippy) > l { + return io.ErrUnexpectedEOF + } + m.XXX_unrecognized = append(m.XXX_unrecognized, dAtA[iNdEx:iNdEx+skippy]...) + iNdEx += skippy + } + } + + if iNdEx > l { + return io.ErrUnexpectedEOF + } + return nil +} func skipApplicationset(dAtA []byte) (n int, err error) { l := len(dAtA) iNdEx := 0 diff --git a/pkg/apiclient/applicationset/applicationset.pb.gw.go b/pkg/apiclient/applicationset/applicationset.pb.gw.go index 5e4c73f7add3b..daad3043c52ca 100644 --- a/pkg/apiclient/applicationset/applicationset.pb.gw.go +++ b/pkg/apiclient/applicationset/applicationset.pb.gw.go @@ -265,6 +265,78 @@ func local_request_ApplicationSetService_Delete_0(ctx context.Context, marshaler } +var ( + filter_ApplicationSetService_ResourceTree_0 = &utilities.DoubleArray{Encoding: map[string]int{"name": 0}, Base: []int{1, 1, 0}, Check: []int{0, 1, 2}} +) + +func request_ApplicationSetService_ResourceTree_0(ctx context.Context, marshaler runtime.Marshaler, client ApplicationSetServiceClient, req *http.Request, pathParams map[string]string) (proto.Message, runtime.ServerMetadata, error) { + var protoReq ApplicationSetTreeQuery + var metadata runtime.ServerMetadata + + var ( + val string + ok bool + err error + _ = err + ) + + val, ok = pathParams["name"] + if !ok { + return nil, metadata, status.Errorf(codes.InvalidArgument, "missing parameter %s", "name") + } + + protoReq.Name, err = runtime.String(val) + + if err != nil { + return nil, metadata, status.Errorf(codes.InvalidArgument, "type mismatch, parameter: %s, error: %v", "name", err) + } + + if err := req.ParseForm(); err != nil { + return nil, metadata, status.Errorf(codes.InvalidArgument, "%v", err) + } + if err := runtime.PopulateQueryParameters(&protoReq, req.Form, filter_ApplicationSetService_ResourceTree_0); err != nil { + return nil, metadata, status.Errorf(codes.InvalidArgument, "%v", err) + } + + msg, err := client.ResourceTree(ctx, &protoReq, grpc.Header(&metadata.HeaderMD), grpc.Trailer(&metadata.TrailerMD)) + return msg, metadata, err + +} + +func local_request_ApplicationSetService_ResourceTree_0(ctx context.Context, marshaler runtime.Marshaler, server ApplicationSetServiceServer, req *http.Request, pathParams map[string]string) (proto.Message, runtime.ServerMetadata, error) { + var protoReq ApplicationSetTreeQuery + var metadata runtime.ServerMetadata + + var ( + val string + ok bool + err error + _ = err + ) + + val, ok = pathParams["name"] + if !ok { + return nil, metadata, status.Errorf(codes.InvalidArgument, "missing parameter %s", "name") + } + + protoReq.Name, err = runtime.String(val) + + if err != nil { + return nil, metadata, status.Errorf(codes.InvalidArgument, "type mismatch, parameter: %s, error: %v", "name", err) + } + + if err := req.ParseForm(); err != nil { + return nil, metadata, status.Errorf(codes.InvalidArgument, "%v", err) + } + if err := runtime.PopulateQueryParameters(&protoReq, req.Form, filter_ApplicationSetService_ResourceTree_0); err != nil { + return nil, metadata, status.Errorf(codes.InvalidArgument, "%v", err) + } + + msg, err := server.ResourceTree(ctx, &protoReq) + return msg, metadata, err + +} + // RegisterApplicationSetServiceHandlerServer registers the http handlers for service ApplicationSetService to "mux". // UnaryRPC :call ApplicationSetServiceServer directly. // StreamingRPC :currently unsupported pending https://github.com/grpc/grpc-go/issues/906. @@ -363,6 +435,29 @@ func RegisterApplicationSetServiceHandlerServer(ctx context.Context, mux *runtim }) + mux.Handle("GET", pattern_ApplicationSetService_ResourceTree_0, func(w http.ResponseWriter, req *http.Request, pathParams map[string]string) { + ctx, cancel := context.WithCancel(req.Context()) + defer cancel() + var stream runtime.ServerTransportStream + ctx = grpc.NewContextWithServerTransportStream(ctx, &stream) + inboundMarshaler, outboundMarshaler := runtime.MarshalerForRequest(mux, req) + rctx, err := runtime.AnnotateIncomingContext(ctx, mux, req) + if err != nil { + runtime.HTTPError(ctx, mux, outboundMarshaler, w, req, err) + return + } + resp, md, err := local_request_ApplicationSetService_ResourceTree_0(rctx, inboundMarshaler, server, req, pathParams) + md.HeaderMD, md.TrailerMD = metadata.Join(md.HeaderMD, stream.Header()), metadata.Join(md.TrailerMD, stream.Trailer()) + ctx = runtime.NewServerMetadataContext(ctx, md) + if err != nil { + runtime.HTTPError(ctx, mux, outboundMarshaler, w, req, err) + return + } + + forward_ApplicationSetService_ResourceTree_0(ctx, mux, outboundMarshaler, w, req, resp, mux.GetForwardResponseOptions()...) + + }) + return nil } @@ -484,6 +579,26 @@ func RegisterApplicationSetServiceHandlerClient(ctx context.Context, mux *runtim }) + mux.Handle("GET", pattern_ApplicationSetService_ResourceTree_0, func(w http.ResponseWriter, req *http.Request, pathParams map[string]string) { + ctx, cancel := context.WithCancel(req.Context()) + defer cancel() + inboundMarshaler, outboundMarshaler := runtime.MarshalerForRequest(mux, req) + rctx, err := runtime.AnnotateContext(ctx, mux, req) + if err != nil { + runtime.HTTPError(ctx, mux, outboundMarshaler, w, req, err) + return + } + resp, md, err := request_ApplicationSetService_ResourceTree_0(rctx, inboundMarshaler, client, req, pathParams) + ctx = runtime.NewServerMetadataContext(ctx, md) + if err != nil { + runtime.HTTPError(ctx, mux, outboundMarshaler, w, req, err) + return + } + + forward_ApplicationSetService_ResourceTree_0(ctx, mux, outboundMarshaler, w, req, resp, mux.GetForwardResponseOptions()...) + + }) + return nil } @@ -495,6 +610,8 @@ var ( pattern_ApplicationSetService_Create_0 = runtime.MustPattern(runtime.NewPattern(1, []int{2, 0, 2, 1, 2, 2}, []string{"api", "v1", "applicationsets"}, "", runtime.AssumeColonVerbOpt(true))) pattern_ApplicationSetService_Delete_0 = runtime.MustPattern(runtime.NewPattern(1, []int{2, 0, 2, 1, 2, 2, 1, 0, 4, 1, 5, 3}, []string{"api", "v1", "applicationsets", "name"}, "", runtime.AssumeColonVerbOpt(true))) + + pattern_ApplicationSetService_ResourceTree_0 = runtime.MustPattern(runtime.NewPattern(1, []int{2, 0, 2, 1, 2, 2, 1, 0, 4, 1, 5, 3, 2, 4}, []string{"api", "v1", "applicationsets", "name", "resource-tree"}, "", runtime.AssumeColonVerbOpt(true))) ) var ( @@ -505,4 +622,6 @@ var ( forward_ApplicationSetService_Create_0 = runtime.ForwardResponseMessage forward_ApplicationSetService_Delete_0 = runtime.ForwardResponseMessage + + forward_ApplicationSetService_ResourceTree_0 = runtime.ForwardResponseMessage ) diff --git a/pkg/apis/api-rules/violation_exceptions.list b/pkg/apis/api-rules/violation_exceptions.list index 5630d8d4bceb2..847a3efaf8daa 100644 --- a/pkg/apis/api-rules/violation_exceptions.list +++ b/pkg/apis/api-rules/violation_exceptions.list @@ -18,7 +18,9 @@ API rule violation: list_type_missing,github.com/argoproj/argo-cd/v2/pkg/apis/ap API rule violation: list_type_missing,github.com/argoproj/argo-cd/v2/pkg/apis/application/v1alpha1,ApplicationSetSpec,GoTemplateOptions API rule violation: list_type_missing,github.com/argoproj/argo-cd/v2/pkg/apis/application/v1alpha1,ApplicationSetStatus,ApplicationStatus API rule violation: list_type_missing,github.com/argoproj/argo-cd/v2/pkg/apis/application/v1alpha1,ApplicationSetStatus,Conditions +API rule violation: list_type_missing,github.com/argoproj/argo-cd/v2/pkg/apis/application/v1alpha1,ApplicationSetStatus,Resources API rule violation: list_type_missing,github.com/argoproj/argo-cd/v2/pkg/apis/application/v1alpha1,ApplicationSetTemplateMeta,Finalizers +API rule violation: list_type_missing,github.com/argoproj/argo-cd/v2/pkg/apis/application/v1alpha1,ApplicationSetTree,Nodes API rule violation: list_type_missing,github.com/argoproj/argo-cd/v2/pkg/apis/application/v1alpha1,ApplicationSourceHelm,FileParameters API rule violation: list_type_missing,github.com/argoproj/argo-cd/v2/pkg/apis/application/v1alpha1,ApplicationSourceHelm,Parameters API rule violation: list_type_missing,github.com/argoproj/argo-cd/v2/pkg/apis/application/v1alpha1,ApplicationSourceHelm,ValueFiles diff --git a/pkg/apis/application/v1alpha1/applicationset_types.go b/pkg/apis/application/v1alpha1/applicationset_types.go index 389f421fed400..0715f9c02e96d 100644 --- a/pkg/apis/application/v1alpha1/applicationset_types.go +++ b/pkg/apis/application/v1alpha1/applicationset_types.go @@ -759,6 +759,8 @@ type ApplicationSetStatus struct { // Important: Run "make" to regenerate code after modifying this file Conditions []ApplicationSetCondition `json:"conditions,omitempty" protobuf:"bytes,1,name=conditions"` ApplicationStatus []ApplicationSetApplicationStatus `json:"applicationStatus,omitempty" protobuf:"bytes,2,name=applicationStatus"` + // Resources is a list of Applications resources managed by this application set. + Resources []ResourceStatus `json:"resources,omitempty" protobuf:"bytes,3,opt,name=resources"` } // ApplicationSetCondition contains details about an applicationset condition, which is usally an error or warning @@ -844,6 +846,21 @@ type ApplicationSetList struct { Items []ApplicationSet `json:"items" protobuf:"bytes,2,rep,name=items"` } +// ApplicationSetTree holds nodes which belongs to the application +// Used to build a tree of an ApplicationSet and its children +type ApplicationSetTree struct { + // Nodes contains list of nodes which are directly managed by the applicationset + Nodes []ResourceNode `json:"nodes,omitempty" protobuf:"bytes,1,rep,name=nodes"` +} + +// Normalize sorts applicationset tree nodes. The persistent order allows to +// effectively compare previously cached app tree and allows to unnecessary Redis requests. +func (t *ApplicationSetTree) Normalize() { + sort.Slice(t.Nodes, func(i, j int) bool { + return t.Nodes[i].FullName() < t.Nodes[j].FullName() + }) +} + // func init() { // SchemeBuilder.Register(&ApplicationSet{}, &ApplicationSetList{}) // } diff --git a/pkg/apis/application/v1alpha1/generated.pb.go b/pkg/apis/application/v1alpha1/generated.pb.go index aed1ef619b350..24d8e7c920ed2 100644 --- a/pkg/apis/application/v1alpha1/generated.pb.go +++ b/pkg/apis/application/v1alpha1/generated.pb.go @@ -797,10 +797,38 @@ func (m *ApplicationSetTerminalGenerator) XXX_DiscardUnknown() { var xxx_messageInfo_ApplicationSetTerminalGenerator proto.InternalMessageInfo +func (m *ApplicationSetTree) Reset() { *m = ApplicationSetTree{} } +func (*ApplicationSetTree) ProtoMessage() {} +func (*ApplicationSetTree) Descriptor() ([]byte, []int) { + return fileDescriptor_030104ce3b95bcac, []int{27} +} +func (m *ApplicationSetTree) XXX_Unmarshal(b []byte) error { + return m.Unmarshal(b) +} +func (m *ApplicationSetTree) XXX_Marshal(b []byte, deterministic bool) ([]byte, error) { + b = b[:cap(b)] + n, err := m.MarshalToSizedBuffer(b) + if err != nil { + return nil, err + } + return b[:n], nil +} +func (m *ApplicationSetTree) XXX_Merge(src proto.Message) { + xxx_messageInfo_ApplicationSetTree.Merge(m, src) +} +func (m *ApplicationSetTree) XXX_Size() int { + return m.Size() +} +func (m *ApplicationSetTree) XXX_DiscardUnknown() { + xxx_messageInfo_ApplicationSetTree.DiscardUnknown(m) +} + +var xxx_messageInfo_ApplicationSetTree proto.InternalMessageInfo + func (m *ApplicationSource) Reset() { *m = ApplicationSource{} } func (*ApplicationSource) ProtoMessage() {} func (*ApplicationSource) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{27} + return fileDescriptor_030104ce3b95bcac, []int{28} } func (m *ApplicationSource) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -828,7 +856,7 @@ var xxx_messageInfo_ApplicationSource proto.InternalMessageInfo func (m *ApplicationSourceDirectory) Reset() { *m = ApplicationSourceDirectory{} } func (*ApplicationSourceDirectory) ProtoMessage() {} func (*ApplicationSourceDirectory) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{28} + return fileDescriptor_030104ce3b95bcac, []int{29} } func (m *ApplicationSourceDirectory) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -856,7 +884,7 @@ var xxx_messageInfo_ApplicationSourceDirectory proto.InternalMessageInfo func (m *ApplicationSourceHelm) Reset() { *m = ApplicationSourceHelm{} } func (*ApplicationSourceHelm) ProtoMessage() {} func (*ApplicationSourceHelm) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{29} + return fileDescriptor_030104ce3b95bcac, []int{30} } func (m *ApplicationSourceHelm) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -884,7 +912,7 @@ var xxx_messageInfo_ApplicationSourceHelm proto.InternalMessageInfo func (m *ApplicationSourceJsonnet) Reset() { *m = ApplicationSourceJsonnet{} } func (*ApplicationSourceJsonnet) ProtoMessage() {} func (*ApplicationSourceJsonnet) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{30} + return fileDescriptor_030104ce3b95bcac, []int{31} } func (m *ApplicationSourceJsonnet) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -912,7 +940,7 @@ var xxx_messageInfo_ApplicationSourceJsonnet proto.InternalMessageInfo func (m *ApplicationSourceKustomize) Reset() { *m = ApplicationSourceKustomize{} } func (*ApplicationSourceKustomize) ProtoMessage() {} func (*ApplicationSourceKustomize) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{31} + return fileDescriptor_030104ce3b95bcac, []int{32} } func (m *ApplicationSourceKustomize) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -940,7 +968,7 @@ var xxx_messageInfo_ApplicationSourceKustomize proto.InternalMessageInfo func (m *ApplicationSourcePlugin) Reset() { *m = ApplicationSourcePlugin{} } func (*ApplicationSourcePlugin) ProtoMessage() {} func (*ApplicationSourcePlugin) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{32} + return fileDescriptor_030104ce3b95bcac, []int{33} } func (m *ApplicationSourcePlugin) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -968,7 +996,7 @@ var xxx_messageInfo_ApplicationSourcePlugin proto.InternalMessageInfo func (m *ApplicationSourcePluginParameter) Reset() { *m = ApplicationSourcePluginParameter{} } func (*ApplicationSourcePluginParameter) ProtoMessage() {} func (*ApplicationSourcePluginParameter) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{33} + return fileDescriptor_030104ce3b95bcac, []int{34} } func (m *ApplicationSourcePluginParameter) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -996,7 +1024,7 @@ var xxx_messageInfo_ApplicationSourcePluginParameter proto.InternalMessageInfo func (m *ApplicationSpec) Reset() { *m = ApplicationSpec{} } func (*ApplicationSpec) ProtoMessage() {} func (*ApplicationSpec) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{34} + return fileDescriptor_030104ce3b95bcac, []int{35} } func (m *ApplicationSpec) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -1024,7 +1052,7 @@ var xxx_messageInfo_ApplicationSpec proto.InternalMessageInfo func (m *ApplicationStatus) Reset() { *m = ApplicationStatus{} } func (*ApplicationStatus) ProtoMessage() {} func (*ApplicationStatus) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{35} + return fileDescriptor_030104ce3b95bcac, []int{36} } func (m *ApplicationStatus) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -1052,7 +1080,7 @@ var xxx_messageInfo_ApplicationStatus proto.InternalMessageInfo func (m *ApplicationSummary) Reset() { *m = ApplicationSummary{} } func (*ApplicationSummary) ProtoMessage() {} func (*ApplicationSummary) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{36} + return fileDescriptor_030104ce3b95bcac, []int{37} } func (m *ApplicationSummary) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -1080,7 +1108,7 @@ var xxx_messageInfo_ApplicationSummary proto.InternalMessageInfo func (m *ApplicationTree) Reset() { *m = ApplicationTree{} } func (*ApplicationTree) ProtoMessage() {} func (*ApplicationTree) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{37} + return fileDescriptor_030104ce3b95bcac, []int{38} } func (m *ApplicationTree) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -1108,7 +1136,7 @@ var xxx_messageInfo_ApplicationTree proto.InternalMessageInfo func (m *ApplicationWatchEvent) Reset() { *m = ApplicationWatchEvent{} } func (*ApplicationWatchEvent) ProtoMessage() {} func (*ApplicationWatchEvent) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{38} + return fileDescriptor_030104ce3b95bcac, []int{39} } func (m *ApplicationWatchEvent) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -1136,7 +1164,7 @@ var xxx_messageInfo_ApplicationWatchEvent proto.InternalMessageInfo func (m *Backoff) Reset() { *m = Backoff{} } func (*Backoff) ProtoMessage() {} func (*Backoff) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{39} + return fileDescriptor_030104ce3b95bcac, []int{40} } func (m *Backoff) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -1164,7 +1192,7 @@ var xxx_messageInfo_Backoff proto.InternalMessageInfo func (m *BasicAuthBitbucketServer) Reset() { *m = BasicAuthBitbucketServer{} } func (*BasicAuthBitbucketServer) ProtoMessage() {} func (*BasicAuthBitbucketServer) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{40} + return fileDescriptor_030104ce3b95bcac, []int{41} } func (m *BasicAuthBitbucketServer) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -1192,7 +1220,7 @@ var xxx_messageInfo_BasicAuthBitbucketServer proto.InternalMessageInfo func (m *BearerTokenBitbucketCloud) Reset() { *m = BearerTokenBitbucketCloud{} } func (*BearerTokenBitbucketCloud) ProtoMessage() {} func (*BearerTokenBitbucketCloud) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{41} + return fileDescriptor_030104ce3b95bcac, []int{42} } func (m *BearerTokenBitbucketCloud) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -1220,7 +1248,7 @@ var xxx_messageInfo_BearerTokenBitbucketCloud proto.InternalMessageInfo func (m *ChartDetails) Reset() { *m = ChartDetails{} } func (*ChartDetails) ProtoMessage() {} func (*ChartDetails) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{42} + return fileDescriptor_030104ce3b95bcac, []int{43} } func (m *ChartDetails) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -1248,7 +1276,7 @@ var xxx_messageInfo_ChartDetails proto.InternalMessageInfo func (m *Cluster) Reset() { *m = Cluster{} } func (*Cluster) ProtoMessage() {} func (*Cluster) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{43} + return fileDescriptor_030104ce3b95bcac, []int{44} } func (m *Cluster) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -1276,7 +1304,7 @@ var xxx_messageInfo_Cluster proto.InternalMessageInfo func (m *ClusterCacheInfo) Reset() { *m = ClusterCacheInfo{} } func (*ClusterCacheInfo) ProtoMessage() {} func (*ClusterCacheInfo) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{44} + return fileDescriptor_030104ce3b95bcac, []int{45} } func (m *ClusterCacheInfo) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -1304,7 +1332,7 @@ var xxx_messageInfo_ClusterCacheInfo proto.InternalMessageInfo func (m *ClusterConfig) Reset() { *m = ClusterConfig{} } func (*ClusterConfig) ProtoMessage() {} func (*ClusterConfig) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{45} + return fileDescriptor_030104ce3b95bcac, []int{46} } func (m *ClusterConfig) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -1332,7 +1360,7 @@ var xxx_messageInfo_ClusterConfig proto.InternalMessageInfo func (m *ClusterGenerator) Reset() { *m = ClusterGenerator{} } func (*ClusterGenerator) ProtoMessage() {} func (*ClusterGenerator) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{46} + return fileDescriptor_030104ce3b95bcac, []int{47} } func (m *ClusterGenerator) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -1360,7 +1388,7 @@ var xxx_messageInfo_ClusterGenerator proto.InternalMessageInfo func (m *ClusterInfo) Reset() { *m = ClusterInfo{} } func (*ClusterInfo) ProtoMessage() {} func (*ClusterInfo) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{47} + return fileDescriptor_030104ce3b95bcac, []int{48} } func (m *ClusterInfo) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -1388,7 +1416,7 @@ var xxx_messageInfo_ClusterInfo proto.InternalMessageInfo func (m *ClusterList) Reset() { *m = ClusterList{} } func (*ClusterList) ProtoMessage() {} func (*ClusterList) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{48} + return fileDescriptor_030104ce3b95bcac, []int{49} } func (m *ClusterList) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -1416,7 +1444,7 @@ var xxx_messageInfo_ClusterList proto.InternalMessageInfo func (m *Command) Reset() { *m = Command{} } func (*Command) ProtoMessage() {} func (*Command) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{49} + return fileDescriptor_030104ce3b95bcac, []int{50} } func (m *Command) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -1444,7 +1472,7 @@ var xxx_messageInfo_Command proto.InternalMessageInfo func (m *ComparedTo) Reset() { *m = ComparedTo{} } func (*ComparedTo) ProtoMessage() {} func (*ComparedTo) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{50} + return fileDescriptor_030104ce3b95bcac, []int{51} } func (m *ComparedTo) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -1472,7 +1500,7 @@ var xxx_messageInfo_ComparedTo proto.InternalMessageInfo func (m *ComponentParameter) Reset() { *m = ComponentParameter{} } func (*ComponentParameter) ProtoMessage() {} func (*ComponentParameter) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{51} + return fileDescriptor_030104ce3b95bcac, []int{52} } func (m *ComponentParameter) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -1500,7 +1528,7 @@ var xxx_messageInfo_ComponentParameter proto.InternalMessageInfo func (m *ConfigManagementPlugin) Reset() { *m = ConfigManagementPlugin{} } func (*ConfigManagementPlugin) ProtoMessage() {} func (*ConfigManagementPlugin) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{52} + return fileDescriptor_030104ce3b95bcac, []int{53} } func (m *ConfigManagementPlugin) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -1528,7 +1556,7 @@ var xxx_messageInfo_ConfigManagementPlugin proto.InternalMessageInfo func (m *ConnectionState) Reset() { *m = ConnectionState{} } func (*ConnectionState) ProtoMessage() {} func (*ConnectionState) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{53} + return fileDescriptor_030104ce3b95bcac, []int{54} } func (m *ConnectionState) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -1556,7 +1584,7 @@ var xxx_messageInfo_ConnectionState proto.InternalMessageInfo func (m *DuckTypeGenerator) Reset() { *m = DuckTypeGenerator{} } func (*DuckTypeGenerator) ProtoMessage() {} func (*DuckTypeGenerator) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{54} + return fileDescriptor_030104ce3b95bcac, []int{55} } func (m *DuckTypeGenerator) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -1584,7 +1612,7 @@ var xxx_messageInfo_DuckTypeGenerator proto.InternalMessageInfo func (m *EnvEntry) Reset() { *m = EnvEntry{} } func (*EnvEntry) ProtoMessage() {} func (*EnvEntry) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{55} + return fileDescriptor_030104ce3b95bcac, []int{56} } func (m *EnvEntry) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -1612,7 +1640,7 @@ var xxx_messageInfo_EnvEntry proto.InternalMessageInfo func (m *ErrApplicationNotAllowedToUseProject) Reset() { *m = ErrApplicationNotAllowedToUseProject{} } func (*ErrApplicationNotAllowedToUseProject) ProtoMessage() {} func (*ErrApplicationNotAllowedToUseProject) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{56} + return fileDescriptor_030104ce3b95bcac, []int{57} } func (m *ErrApplicationNotAllowedToUseProject) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -1640,7 +1668,7 @@ var xxx_messageInfo_ErrApplicationNotAllowedToUseProject proto.InternalMessageIn func (m *ExecProviderConfig) Reset() { *m = ExecProviderConfig{} } func (*ExecProviderConfig) ProtoMessage() {} func (*ExecProviderConfig) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{57} + return fileDescriptor_030104ce3b95bcac, []int{58} } func (m *ExecProviderConfig) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -1668,7 +1696,7 @@ var xxx_messageInfo_ExecProviderConfig proto.InternalMessageInfo func (m *GitDirectoryGeneratorItem) Reset() { *m = GitDirectoryGeneratorItem{} } func (*GitDirectoryGeneratorItem) ProtoMessage() {} func (*GitDirectoryGeneratorItem) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{58} + return fileDescriptor_030104ce3b95bcac, []int{59} } func (m *GitDirectoryGeneratorItem) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -1696,7 +1724,7 @@ var xxx_messageInfo_GitDirectoryGeneratorItem proto.InternalMessageInfo func (m *GitFileGeneratorItem) Reset() { *m = GitFileGeneratorItem{} } func (*GitFileGeneratorItem) ProtoMessage() {} func (*GitFileGeneratorItem) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{59} + return fileDescriptor_030104ce3b95bcac, []int{60} } func (m *GitFileGeneratorItem) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -1724,7 +1752,7 @@ var xxx_messageInfo_GitFileGeneratorItem proto.InternalMessageInfo func (m *GitGenerator) Reset() { *m = GitGenerator{} } func (*GitGenerator) ProtoMessage() {} func (*GitGenerator) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{60} + return fileDescriptor_030104ce3b95bcac, []int{61} } func (m *GitGenerator) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -1752,7 +1780,7 @@ var xxx_messageInfo_GitGenerator proto.InternalMessageInfo func (m *GnuPGPublicKey) Reset() { *m = GnuPGPublicKey{} } func (*GnuPGPublicKey) ProtoMessage() {} func (*GnuPGPublicKey) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{61} + return fileDescriptor_030104ce3b95bcac, []int{62} } func (m *GnuPGPublicKey) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -1780,7 +1808,7 @@ var xxx_messageInfo_GnuPGPublicKey proto.InternalMessageInfo func (m *GnuPGPublicKeyList) Reset() { *m = GnuPGPublicKeyList{} } func (*GnuPGPublicKeyList) ProtoMessage() {} func (*GnuPGPublicKeyList) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{62} + return fileDescriptor_030104ce3b95bcac, []int{63} } func (m *GnuPGPublicKeyList) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -1808,7 +1836,7 @@ var xxx_messageInfo_GnuPGPublicKeyList proto.InternalMessageInfo func (m *HealthStatus) Reset() { *m = HealthStatus{} } func (*HealthStatus) ProtoMessage() {} func (*HealthStatus) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{63} + return fileDescriptor_030104ce3b95bcac, []int{64} } func (m *HealthStatus) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -1836,7 +1864,7 @@ var xxx_messageInfo_HealthStatus proto.InternalMessageInfo func (m *HelmFileParameter) Reset() { *m = HelmFileParameter{} } func (*HelmFileParameter) ProtoMessage() {} func (*HelmFileParameter) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{64} + return fileDescriptor_030104ce3b95bcac, []int{65} } func (m *HelmFileParameter) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -1864,7 +1892,7 @@ var xxx_messageInfo_HelmFileParameter proto.InternalMessageInfo func (m *HelmOptions) Reset() { *m = HelmOptions{} } func (*HelmOptions) ProtoMessage() {} func (*HelmOptions) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{65} + return fileDescriptor_030104ce3b95bcac, []int{66} } func (m *HelmOptions) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -1892,7 +1920,7 @@ var xxx_messageInfo_HelmOptions proto.InternalMessageInfo func (m *HelmParameter) Reset() { *m = HelmParameter{} } func (*HelmParameter) ProtoMessage() {} func (*HelmParameter) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{66} + return fileDescriptor_030104ce3b95bcac, []int{67} } func (m *HelmParameter) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -1920,7 +1948,7 @@ var xxx_messageInfo_HelmParameter proto.InternalMessageInfo func (m *HostInfo) Reset() { *m = HostInfo{} } func (*HostInfo) ProtoMessage() {} func (*HostInfo) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{67} + return fileDescriptor_030104ce3b95bcac, []int{68} } func (m *HostInfo) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -1948,7 +1976,7 @@ var xxx_messageInfo_HostInfo proto.InternalMessageInfo func (m *HostResourceInfo) Reset() { *m = HostResourceInfo{} } func (*HostResourceInfo) ProtoMessage() {} func (*HostResourceInfo) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{68} + return fileDescriptor_030104ce3b95bcac, []int{69} } func (m *HostResourceInfo) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -1976,7 +2004,7 @@ var xxx_messageInfo_HostResourceInfo proto.InternalMessageInfo func (m *Info) Reset() { *m = Info{} } func (*Info) ProtoMessage() {} func (*Info) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{69} + return fileDescriptor_030104ce3b95bcac, []int{70} } func (m *Info) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -2004,7 +2032,7 @@ var xxx_messageInfo_Info proto.InternalMessageInfo func (m *InfoItem) Reset() { *m = InfoItem{} } func (*InfoItem) ProtoMessage() {} func (*InfoItem) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{70} + return fileDescriptor_030104ce3b95bcac, []int{71} } func (m *InfoItem) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -2032,7 +2060,7 @@ var xxx_messageInfo_InfoItem proto.InternalMessageInfo func (m *JWTToken) Reset() { *m = JWTToken{} } func (*JWTToken) ProtoMessage() {} func (*JWTToken) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{71} + return fileDescriptor_030104ce3b95bcac, []int{72} } func (m *JWTToken) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -2060,7 +2088,7 @@ var xxx_messageInfo_JWTToken proto.InternalMessageInfo func (m *JWTTokens) Reset() { *m = JWTTokens{} } func (*JWTTokens) ProtoMessage() {} func (*JWTTokens) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{72} + return fileDescriptor_030104ce3b95bcac, []int{73} } func (m *JWTTokens) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -2088,7 +2116,7 @@ var xxx_messageInfo_JWTTokens proto.InternalMessageInfo func (m *JsonnetVar) Reset() { *m = JsonnetVar{} } func (*JsonnetVar) ProtoMessage() {} func (*JsonnetVar) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{73} + return fileDescriptor_030104ce3b95bcac, []int{74} } func (m *JsonnetVar) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -2116,7 +2144,7 @@ var xxx_messageInfo_JsonnetVar proto.InternalMessageInfo func (m *KnownTypeField) Reset() { *m = KnownTypeField{} } func (*KnownTypeField) ProtoMessage() {} func (*KnownTypeField) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{74} + return fileDescriptor_030104ce3b95bcac, []int{75} } func (m *KnownTypeField) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -2144,7 +2172,7 @@ var xxx_messageInfo_KnownTypeField proto.InternalMessageInfo func (m *KustomizeGvk) Reset() { *m = KustomizeGvk{} } func (*KustomizeGvk) ProtoMessage() {} func (*KustomizeGvk) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{75} + return fileDescriptor_030104ce3b95bcac, []int{76} } func (m *KustomizeGvk) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -2172,7 +2200,7 @@ var xxx_messageInfo_KustomizeGvk proto.InternalMessageInfo func (m *KustomizeOptions) Reset() { *m = KustomizeOptions{} } func (*KustomizeOptions) ProtoMessage() {} func (*KustomizeOptions) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{76} + return fileDescriptor_030104ce3b95bcac, []int{77} } func (m *KustomizeOptions) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -2200,7 +2228,7 @@ var xxx_messageInfo_KustomizeOptions proto.InternalMessageInfo func (m *KustomizePatch) Reset() { *m = KustomizePatch{} } func (*KustomizePatch) ProtoMessage() {} func (*KustomizePatch) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{77} + return fileDescriptor_030104ce3b95bcac, []int{78} } func (m *KustomizePatch) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -2228,7 +2256,7 @@ var xxx_messageInfo_KustomizePatch proto.InternalMessageInfo func (m *KustomizeReplica) Reset() { *m = KustomizeReplica{} } func (*KustomizeReplica) ProtoMessage() {} func (*KustomizeReplica) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{78} + return fileDescriptor_030104ce3b95bcac, []int{79} } func (m *KustomizeReplica) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -2256,7 +2284,7 @@ var xxx_messageInfo_KustomizeReplica proto.InternalMessageInfo func (m *KustomizeResId) Reset() { *m = KustomizeResId{} } func (*KustomizeResId) ProtoMessage() {} func (*KustomizeResId) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{79} + return fileDescriptor_030104ce3b95bcac, []int{80} } func (m *KustomizeResId) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -2284,7 +2312,7 @@ var xxx_messageInfo_KustomizeResId proto.InternalMessageInfo func (m *KustomizeSelector) Reset() { *m = KustomizeSelector{} } func (*KustomizeSelector) ProtoMessage() {} func (*KustomizeSelector) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{80} + return fileDescriptor_030104ce3b95bcac, []int{81} } func (m *KustomizeSelector) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -2312,7 +2340,7 @@ var xxx_messageInfo_KustomizeSelector proto.InternalMessageInfo func (m *ListGenerator) Reset() { *m = ListGenerator{} } func (*ListGenerator) ProtoMessage() {} func (*ListGenerator) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{81} + return fileDescriptor_030104ce3b95bcac, []int{82} } func (m *ListGenerator) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -2340,7 +2368,7 @@ var xxx_messageInfo_ListGenerator proto.InternalMessageInfo func (m *ManagedNamespaceMetadata) Reset() { *m = ManagedNamespaceMetadata{} } func (*ManagedNamespaceMetadata) ProtoMessage() {} func (*ManagedNamespaceMetadata) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{82} + return fileDescriptor_030104ce3b95bcac, []int{83} } func (m *ManagedNamespaceMetadata) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -2368,7 +2396,7 @@ var xxx_messageInfo_ManagedNamespaceMetadata proto.InternalMessageInfo func (m *MatrixGenerator) Reset() { *m = MatrixGenerator{} } func (*MatrixGenerator) ProtoMessage() {} func (*MatrixGenerator) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{83} + return fileDescriptor_030104ce3b95bcac, []int{84} } func (m *MatrixGenerator) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -2396,7 +2424,7 @@ var xxx_messageInfo_MatrixGenerator proto.InternalMessageInfo func (m *MergeGenerator) Reset() { *m = MergeGenerator{} } func (*MergeGenerator) ProtoMessage() {} func (*MergeGenerator) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{84} + return fileDescriptor_030104ce3b95bcac, []int{85} } func (m *MergeGenerator) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -2424,7 +2452,7 @@ var xxx_messageInfo_MergeGenerator proto.InternalMessageInfo func (m *NestedMatrixGenerator) Reset() { *m = NestedMatrixGenerator{} } func (*NestedMatrixGenerator) ProtoMessage() {} func (*NestedMatrixGenerator) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{85} + return fileDescriptor_030104ce3b95bcac, []int{86} } func (m *NestedMatrixGenerator) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -2452,7 +2480,7 @@ var xxx_messageInfo_NestedMatrixGenerator proto.InternalMessageInfo func (m *NestedMergeGenerator) Reset() { *m = NestedMergeGenerator{} } func (*NestedMergeGenerator) ProtoMessage() {} func (*NestedMergeGenerator) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{86} + return fileDescriptor_030104ce3b95bcac, []int{87} } func (m *NestedMergeGenerator) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -2480,7 +2508,7 @@ var xxx_messageInfo_NestedMergeGenerator proto.InternalMessageInfo func (m *Operation) Reset() { *m = Operation{} } func (*Operation) ProtoMessage() {} func (*Operation) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{87} + return fileDescriptor_030104ce3b95bcac, []int{88} } func (m *Operation) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -2508,7 +2536,7 @@ var xxx_messageInfo_Operation proto.InternalMessageInfo func (m *OperationInitiator) Reset() { *m = OperationInitiator{} } func (*OperationInitiator) ProtoMessage() {} func (*OperationInitiator) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{88} + return fileDescriptor_030104ce3b95bcac, []int{89} } func (m *OperationInitiator) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -2536,7 +2564,7 @@ var xxx_messageInfo_OperationInitiator proto.InternalMessageInfo func (m *OperationState) Reset() { *m = OperationState{} } func (*OperationState) ProtoMessage() {} func (*OperationState) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{89} + return fileDescriptor_030104ce3b95bcac, []int{90} } func (m *OperationState) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -2564,7 +2592,7 @@ var xxx_messageInfo_OperationState proto.InternalMessageInfo func (m *OptionalArray) Reset() { *m = OptionalArray{} } func (*OptionalArray) ProtoMessage() {} func (*OptionalArray) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{90} + return fileDescriptor_030104ce3b95bcac, []int{91} } func (m *OptionalArray) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -2592,7 +2620,7 @@ var xxx_messageInfo_OptionalArray proto.InternalMessageInfo func (m *OptionalMap) Reset() { *m = OptionalMap{} } func (*OptionalMap) ProtoMessage() {} func (*OptionalMap) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{91} + return fileDescriptor_030104ce3b95bcac, []int{92} } func (m *OptionalMap) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -2620,7 +2648,7 @@ var xxx_messageInfo_OptionalMap proto.InternalMessageInfo func (m *OrphanedResourceKey) Reset() { *m = OrphanedResourceKey{} } func (*OrphanedResourceKey) ProtoMessage() {} func (*OrphanedResourceKey) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{92} + return fileDescriptor_030104ce3b95bcac, []int{93} } func (m *OrphanedResourceKey) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -2648,7 +2676,7 @@ var xxx_messageInfo_OrphanedResourceKey proto.InternalMessageInfo func (m *OrphanedResourcesMonitorSettings) Reset() { *m = OrphanedResourcesMonitorSettings{} } func (*OrphanedResourcesMonitorSettings) ProtoMessage() {} func (*OrphanedResourcesMonitorSettings) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{93} + return fileDescriptor_030104ce3b95bcac, []int{94} } func (m *OrphanedResourcesMonitorSettings) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -2676,7 +2704,7 @@ var xxx_messageInfo_OrphanedResourcesMonitorSettings proto.InternalMessageInfo func (m *OverrideIgnoreDiff) Reset() { *m = OverrideIgnoreDiff{} } func (*OverrideIgnoreDiff) ProtoMessage() {} func (*OverrideIgnoreDiff) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{94} + return fileDescriptor_030104ce3b95bcac, []int{95} } func (m *OverrideIgnoreDiff) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -2704,7 +2732,7 @@ var xxx_messageInfo_OverrideIgnoreDiff proto.InternalMessageInfo func (m *PluginConfigMapRef) Reset() { *m = PluginConfigMapRef{} } func (*PluginConfigMapRef) ProtoMessage() {} func (*PluginConfigMapRef) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{95} + return fileDescriptor_030104ce3b95bcac, []int{96} } func (m *PluginConfigMapRef) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -2732,7 +2760,7 @@ var xxx_messageInfo_PluginConfigMapRef proto.InternalMessageInfo func (m *PluginGenerator) Reset() { *m = PluginGenerator{} } func (*PluginGenerator) ProtoMessage() {} func (*PluginGenerator) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{96} + return fileDescriptor_030104ce3b95bcac, []int{97} } func (m *PluginGenerator) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -2760,7 +2788,7 @@ var xxx_messageInfo_PluginGenerator proto.InternalMessageInfo func (m *PluginInput) Reset() { *m = PluginInput{} } func (*PluginInput) ProtoMessage() {} func (*PluginInput) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{97} + return fileDescriptor_030104ce3b95bcac, []int{98} } func (m *PluginInput) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -2788,7 +2816,7 @@ var xxx_messageInfo_PluginInput proto.InternalMessageInfo func (m *ProjectRole) Reset() { *m = ProjectRole{} } func (*ProjectRole) ProtoMessage() {} func (*ProjectRole) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{98} + return fileDescriptor_030104ce3b95bcac, []int{99} } func (m *ProjectRole) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -2816,7 +2844,7 @@ var xxx_messageInfo_ProjectRole proto.InternalMessageInfo func (m *PullRequestGenerator) Reset() { *m = PullRequestGenerator{} } func (*PullRequestGenerator) ProtoMessage() {} func (*PullRequestGenerator) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{99} + return fileDescriptor_030104ce3b95bcac, []int{100} } func (m *PullRequestGenerator) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -2844,7 +2872,7 @@ var xxx_messageInfo_PullRequestGenerator proto.InternalMessageInfo func (m *PullRequestGeneratorAzureDevOps) Reset() { *m = PullRequestGeneratorAzureDevOps{} } func (*PullRequestGeneratorAzureDevOps) ProtoMessage() {} func (*PullRequestGeneratorAzureDevOps) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{100} + return fileDescriptor_030104ce3b95bcac, []int{101} } func (m *PullRequestGeneratorAzureDevOps) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -2872,7 +2900,7 @@ var xxx_messageInfo_PullRequestGeneratorAzureDevOps proto.InternalMessageInfo func (m *PullRequestGeneratorBitbucket) Reset() { *m = PullRequestGeneratorBitbucket{} } func (*PullRequestGeneratorBitbucket) ProtoMessage() {} func (*PullRequestGeneratorBitbucket) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{101} + return fileDescriptor_030104ce3b95bcac, []int{102} } func (m *PullRequestGeneratorBitbucket) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -2900,7 +2928,7 @@ var xxx_messageInfo_PullRequestGeneratorBitbucket proto.InternalMessageInfo func (m *PullRequestGeneratorBitbucketServer) Reset() { *m = PullRequestGeneratorBitbucketServer{} } func (*PullRequestGeneratorBitbucketServer) ProtoMessage() {} func (*PullRequestGeneratorBitbucketServer) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{102} + return fileDescriptor_030104ce3b95bcac, []int{103} } func (m *PullRequestGeneratorBitbucketServer) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -2928,7 +2956,7 @@ var xxx_messageInfo_PullRequestGeneratorBitbucketServer proto.InternalMessageInf func (m *PullRequestGeneratorFilter) Reset() { *m = PullRequestGeneratorFilter{} } func (*PullRequestGeneratorFilter) ProtoMessage() {} func (*PullRequestGeneratorFilter) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{103} + return fileDescriptor_030104ce3b95bcac, []int{104} } func (m *PullRequestGeneratorFilter) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -2956,7 +2984,7 @@ var xxx_messageInfo_PullRequestGeneratorFilter proto.InternalMessageInfo func (m *PullRequestGeneratorGitLab) Reset() { *m = PullRequestGeneratorGitLab{} } func (*PullRequestGeneratorGitLab) ProtoMessage() {} func (*PullRequestGeneratorGitLab) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{104} + return fileDescriptor_030104ce3b95bcac, []int{105} } func (m *PullRequestGeneratorGitLab) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -2984,7 +3012,7 @@ var xxx_messageInfo_PullRequestGeneratorGitLab proto.InternalMessageInfo func (m *PullRequestGeneratorGitea) Reset() { *m = PullRequestGeneratorGitea{} } func (*PullRequestGeneratorGitea) ProtoMessage() {} func (*PullRequestGeneratorGitea) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{105} + return fileDescriptor_030104ce3b95bcac, []int{106} } func (m *PullRequestGeneratorGitea) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -3012,7 +3040,7 @@ var xxx_messageInfo_PullRequestGeneratorGitea proto.InternalMessageInfo func (m *PullRequestGeneratorGithub) Reset() { *m = PullRequestGeneratorGithub{} } func (*PullRequestGeneratorGithub) ProtoMessage() {} func (*PullRequestGeneratorGithub) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{106} + return fileDescriptor_030104ce3b95bcac, []int{107} } func (m *PullRequestGeneratorGithub) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -3040,7 +3068,7 @@ var xxx_messageInfo_PullRequestGeneratorGithub proto.InternalMessageInfo func (m *RefTarget) Reset() { *m = RefTarget{} } func (*RefTarget) ProtoMessage() {} func (*RefTarget) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{107} + return fileDescriptor_030104ce3b95bcac, []int{108} } func (m *RefTarget) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -3068,7 +3096,7 @@ var xxx_messageInfo_RefTarget proto.InternalMessageInfo func (m *RepoCreds) Reset() { *m = RepoCreds{} } func (*RepoCreds) ProtoMessage() {} func (*RepoCreds) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{108} + return fileDescriptor_030104ce3b95bcac, []int{109} } func (m *RepoCreds) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -3096,7 +3124,7 @@ var xxx_messageInfo_RepoCreds proto.InternalMessageInfo func (m *RepoCredsList) Reset() { *m = RepoCredsList{} } func (*RepoCredsList) ProtoMessage() {} func (*RepoCredsList) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{109} + return fileDescriptor_030104ce3b95bcac, []int{110} } func (m *RepoCredsList) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -3124,7 +3152,7 @@ var xxx_messageInfo_RepoCredsList proto.InternalMessageInfo func (m *Repository) Reset() { *m = Repository{} } func (*Repository) ProtoMessage() {} func (*Repository) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{110} + return fileDescriptor_030104ce3b95bcac, []int{111} } func (m *Repository) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -3152,7 +3180,7 @@ var xxx_messageInfo_Repository proto.InternalMessageInfo func (m *RepositoryCertificate) Reset() { *m = RepositoryCertificate{} } func (*RepositoryCertificate) ProtoMessage() {} func (*RepositoryCertificate) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{111} + return fileDescriptor_030104ce3b95bcac, []int{112} } func (m *RepositoryCertificate) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -3180,7 +3208,7 @@ var xxx_messageInfo_RepositoryCertificate proto.InternalMessageInfo func (m *RepositoryCertificateList) Reset() { *m = RepositoryCertificateList{} } func (*RepositoryCertificateList) ProtoMessage() {} func (*RepositoryCertificateList) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{112} + return fileDescriptor_030104ce3b95bcac, []int{113} } func (m *RepositoryCertificateList) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -3208,7 +3236,7 @@ var xxx_messageInfo_RepositoryCertificateList proto.InternalMessageInfo func (m *RepositoryList) Reset() { *m = RepositoryList{} } func (*RepositoryList) ProtoMessage() {} func (*RepositoryList) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{113} + return fileDescriptor_030104ce3b95bcac, []int{114} } func (m *RepositoryList) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -3236,7 +3264,7 @@ var xxx_messageInfo_RepositoryList proto.InternalMessageInfo func (m *ResourceAction) Reset() { *m = ResourceAction{} } func (*ResourceAction) ProtoMessage() {} func (*ResourceAction) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{114} + return fileDescriptor_030104ce3b95bcac, []int{115} } func (m *ResourceAction) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -3264,7 +3292,7 @@ var xxx_messageInfo_ResourceAction proto.InternalMessageInfo func (m *ResourceActionDefinition) Reset() { *m = ResourceActionDefinition{} } func (*ResourceActionDefinition) ProtoMessage() {} func (*ResourceActionDefinition) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{115} + return fileDescriptor_030104ce3b95bcac, []int{116} } func (m *ResourceActionDefinition) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -3292,7 +3320,7 @@ var xxx_messageInfo_ResourceActionDefinition proto.InternalMessageInfo func (m *ResourceActionParam) Reset() { *m = ResourceActionParam{} } func (*ResourceActionParam) ProtoMessage() {} func (*ResourceActionParam) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{116} + return fileDescriptor_030104ce3b95bcac, []int{117} } func (m *ResourceActionParam) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -3320,7 +3348,7 @@ var xxx_messageInfo_ResourceActionParam proto.InternalMessageInfo func (m *ResourceActions) Reset() { *m = ResourceActions{} } func (*ResourceActions) ProtoMessage() {} func (*ResourceActions) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{117} + return fileDescriptor_030104ce3b95bcac, []int{118} } func (m *ResourceActions) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -3348,7 +3376,7 @@ var xxx_messageInfo_ResourceActions proto.InternalMessageInfo func (m *ResourceDiff) Reset() { *m = ResourceDiff{} } func (*ResourceDiff) ProtoMessage() {} func (*ResourceDiff) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{118} + return fileDescriptor_030104ce3b95bcac, []int{119} } func (m *ResourceDiff) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -3376,7 +3404,7 @@ var xxx_messageInfo_ResourceDiff proto.InternalMessageInfo func (m *ResourceIgnoreDifferences) Reset() { *m = ResourceIgnoreDifferences{} } func (*ResourceIgnoreDifferences) ProtoMessage() {} func (*ResourceIgnoreDifferences) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{119} + return fileDescriptor_030104ce3b95bcac, []int{120} } func (m *ResourceIgnoreDifferences) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -3404,7 +3432,7 @@ var xxx_messageInfo_ResourceIgnoreDifferences proto.InternalMessageInfo func (m *ResourceNetworkingInfo) Reset() { *m = ResourceNetworkingInfo{} } func (*ResourceNetworkingInfo) ProtoMessage() {} func (*ResourceNetworkingInfo) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{120} + return fileDescriptor_030104ce3b95bcac, []int{121} } func (m *ResourceNetworkingInfo) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -3432,7 +3460,7 @@ var xxx_messageInfo_ResourceNetworkingInfo proto.InternalMessageInfo func (m *ResourceNode) Reset() { *m = ResourceNode{} } func (*ResourceNode) ProtoMessage() {} func (*ResourceNode) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{121} + return fileDescriptor_030104ce3b95bcac, []int{122} } func (m *ResourceNode) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -3460,7 +3488,7 @@ var xxx_messageInfo_ResourceNode proto.InternalMessageInfo func (m *ResourceOverride) Reset() { *m = ResourceOverride{} } func (*ResourceOverride) ProtoMessage() {} func (*ResourceOverride) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{122} + return fileDescriptor_030104ce3b95bcac, []int{123} } func (m *ResourceOverride) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -3488,7 +3516,7 @@ var xxx_messageInfo_ResourceOverride proto.InternalMessageInfo func (m *ResourceRef) Reset() { *m = ResourceRef{} } func (*ResourceRef) ProtoMessage() {} func (*ResourceRef) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{123} + return fileDescriptor_030104ce3b95bcac, []int{124} } func (m *ResourceRef) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -3516,7 +3544,7 @@ var xxx_messageInfo_ResourceRef proto.InternalMessageInfo func (m *ResourceResult) Reset() { *m = ResourceResult{} } func (*ResourceResult) ProtoMessage() {} func (*ResourceResult) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{124} + return fileDescriptor_030104ce3b95bcac, []int{125} } func (m *ResourceResult) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -3544,7 +3572,7 @@ var xxx_messageInfo_ResourceResult proto.InternalMessageInfo func (m *ResourceStatus) Reset() { *m = ResourceStatus{} } func (*ResourceStatus) ProtoMessage() {} func (*ResourceStatus) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{125} + return fileDescriptor_030104ce3b95bcac, []int{126} } func (m *ResourceStatus) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -3572,7 +3600,7 @@ var xxx_messageInfo_ResourceStatus proto.InternalMessageInfo func (m *RetryStrategy) Reset() { *m = RetryStrategy{} } func (*RetryStrategy) ProtoMessage() {} func (*RetryStrategy) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{126} + return fileDescriptor_030104ce3b95bcac, []int{127} } func (m *RetryStrategy) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -3600,7 +3628,7 @@ var xxx_messageInfo_RetryStrategy proto.InternalMessageInfo func (m *RevisionHistory) Reset() { *m = RevisionHistory{} } func (*RevisionHistory) ProtoMessage() {} func (*RevisionHistory) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{127} + return fileDescriptor_030104ce3b95bcac, []int{128} } func (m *RevisionHistory) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -3628,7 +3656,7 @@ var xxx_messageInfo_RevisionHistory proto.InternalMessageInfo func (m *RevisionMetadata) Reset() { *m = RevisionMetadata{} } func (*RevisionMetadata) ProtoMessage() {} func (*RevisionMetadata) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{128} + return fileDescriptor_030104ce3b95bcac, []int{129} } func (m *RevisionMetadata) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -3656,7 +3684,7 @@ var xxx_messageInfo_RevisionMetadata proto.InternalMessageInfo func (m *SCMProviderGenerator) Reset() { *m = SCMProviderGenerator{} } func (*SCMProviderGenerator) ProtoMessage() {} func (*SCMProviderGenerator) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{129} + return fileDescriptor_030104ce3b95bcac, []int{130} } func (m *SCMProviderGenerator) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -3684,7 +3712,7 @@ var xxx_messageInfo_SCMProviderGenerator proto.InternalMessageInfo func (m *SCMProviderGeneratorAWSCodeCommit) Reset() { *m = SCMProviderGeneratorAWSCodeCommit{} } func (*SCMProviderGeneratorAWSCodeCommit) ProtoMessage() {} func (*SCMProviderGeneratorAWSCodeCommit) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{130} + return fileDescriptor_030104ce3b95bcac, []int{131} } func (m *SCMProviderGeneratorAWSCodeCommit) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -3712,7 +3740,7 @@ var xxx_messageInfo_SCMProviderGeneratorAWSCodeCommit proto.InternalMessageInfo func (m *SCMProviderGeneratorAzureDevOps) Reset() { *m = SCMProviderGeneratorAzureDevOps{} } func (*SCMProviderGeneratorAzureDevOps) ProtoMessage() {} func (*SCMProviderGeneratorAzureDevOps) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{131} + return fileDescriptor_030104ce3b95bcac, []int{132} } func (m *SCMProviderGeneratorAzureDevOps) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -3740,7 +3768,7 @@ var xxx_messageInfo_SCMProviderGeneratorAzureDevOps proto.InternalMessageInfo func (m *SCMProviderGeneratorBitbucket) Reset() { *m = SCMProviderGeneratorBitbucket{} } func (*SCMProviderGeneratorBitbucket) ProtoMessage() {} func (*SCMProviderGeneratorBitbucket) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{132} + return fileDescriptor_030104ce3b95bcac, []int{133} } func (m *SCMProviderGeneratorBitbucket) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -3768,7 +3796,7 @@ var xxx_messageInfo_SCMProviderGeneratorBitbucket proto.InternalMessageInfo func (m *SCMProviderGeneratorBitbucketServer) Reset() { *m = SCMProviderGeneratorBitbucketServer{} } func (*SCMProviderGeneratorBitbucketServer) ProtoMessage() {} func (*SCMProviderGeneratorBitbucketServer) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{133} + return fileDescriptor_030104ce3b95bcac, []int{134} } func (m *SCMProviderGeneratorBitbucketServer) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -3796,7 +3824,7 @@ var xxx_messageInfo_SCMProviderGeneratorBitbucketServer proto.InternalMessageInf func (m *SCMProviderGeneratorFilter) Reset() { *m = SCMProviderGeneratorFilter{} } func (*SCMProviderGeneratorFilter) ProtoMessage() {} func (*SCMProviderGeneratorFilter) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{134} + return fileDescriptor_030104ce3b95bcac, []int{135} } func (m *SCMProviderGeneratorFilter) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -3824,7 +3852,7 @@ var xxx_messageInfo_SCMProviderGeneratorFilter proto.InternalMessageInfo func (m *SCMProviderGeneratorGitea) Reset() { *m = SCMProviderGeneratorGitea{} } func (*SCMProviderGeneratorGitea) ProtoMessage() {} func (*SCMProviderGeneratorGitea) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{135} + return fileDescriptor_030104ce3b95bcac, []int{136} } func (m *SCMProviderGeneratorGitea) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -3852,7 +3880,7 @@ var xxx_messageInfo_SCMProviderGeneratorGitea proto.InternalMessageInfo func (m *SCMProviderGeneratorGithub) Reset() { *m = SCMProviderGeneratorGithub{} } func (*SCMProviderGeneratorGithub) ProtoMessage() {} func (*SCMProviderGeneratorGithub) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{136} + return fileDescriptor_030104ce3b95bcac, []int{137} } func (m *SCMProviderGeneratorGithub) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -3880,7 +3908,7 @@ var xxx_messageInfo_SCMProviderGeneratorGithub proto.InternalMessageInfo func (m *SCMProviderGeneratorGitlab) Reset() { *m = SCMProviderGeneratorGitlab{} } func (*SCMProviderGeneratorGitlab) ProtoMessage() {} func (*SCMProviderGeneratorGitlab) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{137} + return fileDescriptor_030104ce3b95bcac, []int{138} } func (m *SCMProviderGeneratorGitlab) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -3908,7 +3936,7 @@ var xxx_messageInfo_SCMProviderGeneratorGitlab proto.InternalMessageInfo func (m *SecretRef) Reset() { *m = SecretRef{} } func (*SecretRef) ProtoMessage() {} func (*SecretRef) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{138} + return fileDescriptor_030104ce3b95bcac, []int{139} } func (m *SecretRef) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -3936,7 +3964,7 @@ var xxx_messageInfo_SecretRef proto.InternalMessageInfo func (m *SignatureKey) Reset() { *m = SignatureKey{} } func (*SignatureKey) ProtoMessage() {} func (*SignatureKey) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{139} + return fileDescriptor_030104ce3b95bcac, []int{140} } func (m *SignatureKey) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -3964,7 +3992,7 @@ var xxx_messageInfo_SignatureKey proto.InternalMessageInfo func (m *SyncOperation) Reset() { *m = SyncOperation{} } func (*SyncOperation) ProtoMessage() {} func (*SyncOperation) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{140} + return fileDescriptor_030104ce3b95bcac, []int{141} } func (m *SyncOperation) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -3992,7 +4020,7 @@ var xxx_messageInfo_SyncOperation proto.InternalMessageInfo func (m *SyncOperationResource) Reset() { *m = SyncOperationResource{} } func (*SyncOperationResource) ProtoMessage() {} func (*SyncOperationResource) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{141} + return fileDescriptor_030104ce3b95bcac, []int{142} } func (m *SyncOperationResource) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -4020,7 +4048,7 @@ var xxx_messageInfo_SyncOperationResource proto.InternalMessageInfo func (m *SyncOperationResult) Reset() { *m = SyncOperationResult{} } func (*SyncOperationResult) ProtoMessage() {} func (*SyncOperationResult) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{142} + return fileDescriptor_030104ce3b95bcac, []int{143} } func (m *SyncOperationResult) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -4048,7 +4076,7 @@ var xxx_messageInfo_SyncOperationResult proto.InternalMessageInfo func (m *SyncPolicy) Reset() { *m = SyncPolicy{} } func (*SyncPolicy) ProtoMessage() {} func (*SyncPolicy) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{143} + return fileDescriptor_030104ce3b95bcac, []int{144} } func (m *SyncPolicy) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -4076,7 +4104,7 @@ var xxx_messageInfo_SyncPolicy proto.InternalMessageInfo func (m *SyncPolicyAutomated) Reset() { *m = SyncPolicyAutomated{} } func (*SyncPolicyAutomated) ProtoMessage() {} func (*SyncPolicyAutomated) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{144} + return fileDescriptor_030104ce3b95bcac, []int{145} } func (m *SyncPolicyAutomated) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -4104,7 +4132,7 @@ var xxx_messageInfo_SyncPolicyAutomated proto.InternalMessageInfo func (m *SyncStatus) Reset() { *m = SyncStatus{} } func (*SyncStatus) ProtoMessage() {} func (*SyncStatus) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{145} + return fileDescriptor_030104ce3b95bcac, []int{146} } func (m *SyncStatus) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -4132,7 +4160,7 @@ var xxx_messageInfo_SyncStatus proto.InternalMessageInfo func (m *SyncStrategy) Reset() { *m = SyncStrategy{} } func (*SyncStrategy) ProtoMessage() {} func (*SyncStrategy) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{146} + return fileDescriptor_030104ce3b95bcac, []int{147} } func (m *SyncStrategy) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -4160,7 +4188,7 @@ var xxx_messageInfo_SyncStrategy proto.InternalMessageInfo func (m *SyncStrategyApply) Reset() { *m = SyncStrategyApply{} } func (*SyncStrategyApply) ProtoMessage() {} func (*SyncStrategyApply) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{147} + return fileDescriptor_030104ce3b95bcac, []int{148} } func (m *SyncStrategyApply) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -4188,7 +4216,7 @@ var xxx_messageInfo_SyncStrategyApply proto.InternalMessageInfo func (m *SyncStrategyHook) Reset() { *m = SyncStrategyHook{} } func (*SyncStrategyHook) ProtoMessage() {} func (*SyncStrategyHook) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{148} + return fileDescriptor_030104ce3b95bcac, []int{149} } func (m *SyncStrategyHook) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -4216,7 +4244,7 @@ var xxx_messageInfo_SyncStrategyHook proto.InternalMessageInfo func (m *SyncWindow) Reset() { *m = SyncWindow{} } func (*SyncWindow) ProtoMessage() {} func (*SyncWindow) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{149} + return fileDescriptor_030104ce3b95bcac, []int{150} } func (m *SyncWindow) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -4244,7 +4272,7 @@ var xxx_messageInfo_SyncWindow proto.InternalMessageInfo func (m *TLSClientConfig) Reset() { *m = TLSClientConfig{} } func (*TLSClientConfig) ProtoMessage() {} func (*TLSClientConfig) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{150} + return fileDescriptor_030104ce3b95bcac, []int{151} } func (m *TLSClientConfig) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -4272,7 +4300,7 @@ var xxx_messageInfo_TLSClientConfig proto.InternalMessageInfo func (m *TagFilter) Reset() { *m = TagFilter{} } func (*TagFilter) ProtoMessage() {} func (*TagFilter) Descriptor() ([]byte, []int) { - return fileDescriptor_030104ce3b95bcac, []int{151} + return fileDescriptor_030104ce3b95bcac, []int{152} } func (m *TagFilter) XXX_Unmarshal(b []byte) error { return m.Unmarshal(b) @@ -4328,6 +4356,7 @@ func init() { proto.RegisterMapType((map[string]string)(nil), "github.com.argoproj.argo_cd.v2.pkg.apis.application.v1alpha1.ApplicationSetTemplateMeta.AnnotationsEntry") proto.RegisterMapType((map[string]string)(nil), "github.com.argoproj.argo_cd.v2.pkg.apis.application.v1alpha1.ApplicationSetTemplateMeta.LabelsEntry") proto.RegisterType((*ApplicationSetTerminalGenerator)(nil), "github.com.argoproj.argo_cd.v2.pkg.apis.application.v1alpha1.ApplicationSetTerminalGenerator") + proto.RegisterType((*ApplicationSetTree)(nil), "github.com.argoproj.argo_cd.v2.pkg.apis.application.v1alpha1.ApplicationSetTree") proto.RegisterType((*ApplicationSource)(nil), "github.com.argoproj.argo_cd.v2.pkg.apis.application.v1alpha1.ApplicationSource") proto.RegisterType((*ApplicationSourceDirectory)(nil), "github.com.argoproj.argo_cd.v2.pkg.apis.application.v1alpha1.ApplicationSourceDirectory") proto.RegisterType((*ApplicationSourceHelm)(nil), "github.com.argoproj.argo_cd.v2.pkg.apis.application.v1alpha1.ApplicationSourceHelm") @@ -4477,698 +4506,700 @@ func init() { } var fileDescriptor_030104ce3b95bcac = []byte{ - // 11054 bytes of a gzipped FileDescriptorProto + // 11073 bytes of a gzipped FileDescriptorProto 0x1f, 0x8b, 0x08, 0x00, 0x00, 0x00, 0x00, 0x00, 0x02, 0xff, 0xec, 0x7d, 0x6d, 0x70, 0x24, 0xc7, 0x75, 0x98, 0x66, 0x17, 0x0b, 0xec, 0x3e, 0x7c, 0xdc, 0x5d, 0xdf, 0x1d, 0x09, 0x9e, 0x48, 0xe2, 0x3c, 0xb4, 0x29, 0x2a, 0x22, 0x01, 0xf3, 0x44, 0xca, 0x8c, 0x68, 0x4b, 0xc6, 0x02, 0x77, 0x38, 0xdc, 0x01, 0x07, 0xb0, 0x81, 0xbb, 0x93, 0x28, 0x53, 0xd4, 0x60, 0xb7, 0xb1, 0x98, 0xc3, 0xec, - 0xcc, 0x70, 0x66, 0x16, 0x07, 0xd0, 0x92, 0x2c, 0x59, 0xb2, 0xad, 0x44, 0x1f, 0x54, 0xa4, 0xa4, + 0xcc, 0x70, 0x66, 0x16, 0x07, 0xd0, 0x92, 0x2c, 0x59, 0x92, 0xad, 0x44, 0x1f, 0x54, 0xa4, 0xa4, 0x4c, 0x27, 0x96, 0x22, 0x5b, 0x4e, 0x2a, 0xae, 0x44, 0x15, 0x27, 0xf9, 0x11, 0x27, 0x4e, 0xca, - 0x65, 0x3b, 0x95, 0x52, 0x4a, 0x49, 0xd9, 0xe5, 0x72, 0x59, 0x4e, 0x62, 0x23, 0xd2, 0xa5, 0x52, - 0x49, 0xa5, 0x2a, 0xae, 0x72, 0xe2, 0x1f, 0xc9, 0x25, 0x3f, 0x52, 0xfd, 0xdd, 0x33, 0x3b, 0x0b, - 0x2c, 0x80, 0xc1, 0xdd, 0x49, 0xe6, 0xbf, 0xdd, 0x7e, 0x6f, 0xde, 0xeb, 0xe9, 0xe9, 0x7e, 0xef, - 0xf5, 0xeb, 0xf7, 0x5e, 0xc3, 0x42, 0xcb, 0x4d, 0x36, 0x3a, 0x6b, 0x93, 0x8d, 0xa0, 0x3d, 0xe5, - 0x44, 0xad, 0x20, 0x8c, 0x82, 0x5b, 0xec, 0xc7, 0x33, 0x8d, 0xe6, 0xd4, 0xd6, 0x85, 0xa9, 0x70, - 0xb3, 0x35, 0xe5, 0x84, 0x6e, 0x3c, 0xe5, 0x84, 0xa1, 0xe7, 0x36, 0x9c, 0xc4, 0x0d, 0xfc, 0xa9, - 0xad, 0x67, 0x1d, 0x2f, 0xdc, 0x70, 0x9e, 0x9d, 0x6a, 0x11, 0x9f, 0x44, 0x4e, 0x42, 0x9a, 0x93, - 0x61, 0x14, 0x24, 0x01, 0xfa, 0x51, 0x4d, 0x6d, 0x52, 0x52, 0x63, 0x3f, 0x5e, 0x6d, 0x34, 0x27, - 0xb7, 0x2e, 0x4c, 0x86, 0x9b, 0xad, 0x49, 0x4a, 0x6d, 0xd2, 0xa0, 0x36, 0x29, 0xa9, 0x9d, 0x7b, - 0xc6, 0xe8, 0x4b, 0x2b, 0x68, 0x05, 0x53, 0x8c, 0xe8, 0x5a, 0x67, 0x9d, 0xfd, 0x63, 0x7f, 0xd8, - 0x2f, 0xce, 0xec, 0x9c, 0xbd, 0xf9, 0x42, 0x3c, 0xe9, 0x06, 0xb4, 0x7b, 0x53, 0x8d, 0x20, 0x22, - 0x53, 0x5b, 0x5d, 0x1d, 0x3a, 0x77, 0x59, 0xe3, 0x90, 0xed, 0x84, 0xf8, 0xb1, 0x1b, 0xf8, 0xf1, - 0x33, 0xb4, 0x0b, 0x24, 0xda, 0x22, 0x91, 0xf9, 0x7a, 0x06, 0x42, 0x1e, 0xa5, 0xe7, 0x34, 0xa5, - 0xb6, 0xd3, 0xd8, 0x70, 0x7d, 0x12, 0xed, 0xe8, 0xc7, 0xdb, 0x24, 0x71, 0xf2, 0x9e, 0x9a, 0xea, - 0xf5, 0x54, 0xd4, 0xf1, 0x13, 0xb7, 0x4d, 0xba, 0x1e, 0x78, 0xcf, 0x7e, 0x0f, 0xc4, 0x8d, 0x0d, - 0xd2, 0x76, 0xba, 0x9e, 0x7b, 0x77, 0xaf, 0xe7, 0x3a, 0x89, 0xeb, 0x4d, 0xb9, 0x7e, 0x12, 0x27, - 0x51, 0xf6, 0x21, 0xfb, 0x17, 0x2d, 0x18, 0x9d, 0xbe, 0xb9, 0x32, 0xdd, 0x49, 0x36, 0x66, 0x02, - 0x7f, 0xdd, 0x6d, 0xa1, 0xe7, 0x61, 0xb8, 0xe1, 0x75, 0xe2, 0x84, 0x44, 0xd7, 0x9c, 0x36, 0x19, - 0xb7, 0xce, 0x5b, 0x4f, 0xd5, 0xea, 0xa7, 0xbf, 0xb9, 0x3b, 0xf1, 0xb6, 0x3b, 0xbb, 0x13, 0xc3, - 0x33, 0x1a, 0x84, 0x4d, 0x3c, 0xf4, 0x4e, 0x18, 0x8a, 0x02, 0x8f, 0x4c, 0xe3, 0x6b, 0xe3, 0x25, - 0xf6, 0xc8, 0x09, 0xf1, 0xc8, 0x10, 0xe6, 0xcd, 0x58, 0xc2, 0x29, 0x6a, 0x18, 0x05, 0xeb, 0xae, - 0x47, 0xc6, 0xcb, 0x69, 0xd4, 0x65, 0xde, 0x8c, 0x25, 0xdc, 0xfe, 0xc3, 0x12, 0xc0, 0x74, 0x18, - 0x2e, 0x47, 0xc1, 0x2d, 0xd2, 0x48, 0xd0, 0x47, 0xa0, 0x4a, 0x87, 0xb9, 0xe9, 0x24, 0x0e, 0xeb, - 0xd8, 0xf0, 0x85, 0x1f, 0x9e, 0xe4, 0x6f, 0x3d, 0x69, 0xbe, 0xb5, 0x9e, 0x64, 0x14, 0x7b, 0x72, - 0xeb, 0xd9, 0xc9, 0xa5, 0x35, 0xfa, 0xfc, 0x22, 0x49, 0x9c, 0x3a, 0x12, 0xcc, 0x40, 0xb7, 0x61, - 0x45, 0x15, 0xf9, 0x30, 0x10, 0x87, 0xa4, 0xc1, 0xde, 0x61, 0xf8, 0xc2, 0xc2, 0xe4, 0x51, 0x66, - 0xf3, 0xa4, 0xee, 0xf9, 0x4a, 0x48, 0x1a, 0xf5, 0x11, 0xc1, 0x79, 0x80, 0xfe, 0xc3, 0x8c, 0x0f, - 0xda, 0x82, 0xc1, 0x38, 0x71, 0x92, 0x4e, 0xcc, 0x86, 0x62, 0xf8, 0xc2, 0xb5, 0xc2, 0x38, 0x32, - 0xaa, 0xf5, 0x31, 0xc1, 0x73, 0x90, 0xff, 0xc7, 0x82, 0x9b, 0xfd, 0x27, 0x16, 0x8c, 0x69, 0xe4, - 0x05, 0x37, 0x4e, 0xd0, 0x4f, 0x74, 0x0d, 0xee, 0x64, 0x7f, 0x83, 0x4b, 0x9f, 0x66, 0x43, 0x7b, - 0x52, 0x30, 0xab, 0xca, 0x16, 0x63, 0x60, 0xdb, 0x50, 0x71, 0x13, 0xd2, 0x8e, 0xc7, 0x4b, 0xe7, - 0xcb, 0x4f, 0x0d, 0x5f, 0xb8, 0x5c, 0xd4, 0x7b, 0xd6, 0x47, 0x05, 0xd3, 0xca, 0x3c, 0x25, 0x8f, - 0x39, 0x17, 0xfb, 0x57, 0x47, 0xcc, 0xf7, 0xa3, 0x03, 0x8e, 0x9e, 0x85, 0xe1, 0x38, 0xe8, 0x44, - 0x0d, 0x82, 0x49, 0x18, 0xc4, 0xe3, 0xd6, 0xf9, 0x32, 0x9d, 0x7a, 0x74, 0x52, 0xaf, 0xe8, 0x66, - 0x6c, 0xe2, 0xa0, 0x2f, 0x58, 0x30, 0xd2, 0x24, 0x71, 0xe2, 0xfa, 0x8c, 0xbf, 0xec, 0xfc, 0xea, - 0x91, 0x3b, 0x2f, 0x1b, 0x67, 0x35, 0xf1, 0xfa, 0x19, 0xf1, 0x22, 0x23, 0x46, 0x63, 0x8c, 0x53, - 0xfc, 0xe9, 0xe2, 0x6c, 0x92, 0xb8, 0x11, 0xb9, 0x21, 0xfd, 0x2f, 0x96, 0x8f, 0x5a, 0x9c, 0xb3, - 0x1a, 0x84, 0x4d, 0x3c, 0xe4, 0x43, 0x85, 0x2e, 0xbe, 0x78, 0x7c, 0x80, 0xf5, 0x7f, 0xfe, 0x68, - 0xfd, 0x17, 0x83, 0x4a, 0xd7, 0xb5, 0x1e, 0x7d, 0xfa, 0x2f, 0xc6, 0x9c, 0x0d, 0xfa, 0xbc, 0x05, - 0xe3, 0x42, 0x38, 0x60, 0xc2, 0x07, 0xf4, 0xe6, 0x86, 0x9b, 0x10, 0xcf, 0x8d, 0x93, 0xf1, 0x0a, - 0xeb, 0xc3, 0x54, 0x7f, 0x73, 0x6b, 0x2e, 0x0a, 0x3a, 0xe1, 0x55, 0xd7, 0x6f, 0xd6, 0xcf, 0x0b, - 0x4e, 0xe3, 0x33, 0x3d, 0x08, 0xe3, 0x9e, 0x2c, 0xd1, 0x97, 0x2d, 0x38, 0xe7, 0x3b, 0x6d, 0x12, - 0x87, 0x0e, 0xfd, 0xb4, 0x1c, 0x5c, 0xf7, 0x9c, 0xc6, 0x26, 0xeb, 0xd1, 0xe0, 0xe1, 0x7a, 0x64, - 0x8b, 0x1e, 0x9d, 0xbb, 0xd6, 0x93, 0x34, 0xde, 0x83, 0x2d, 0xfa, 0xba, 0x05, 0xa7, 0x82, 0x28, - 0xdc, 0x70, 0x7c, 0xd2, 0x94, 0xd0, 0x78, 0x7c, 0x88, 0x2d, 0xbd, 0x0f, 0x1f, 0xed, 0x13, 0x2d, - 0x65, 0xc9, 0x2e, 0x06, 0xbe, 0x9b, 0x04, 0xd1, 0x0a, 0x49, 0x12, 0xd7, 0x6f, 0xc5, 0xf5, 0xb3, - 0x77, 0x76, 0x27, 0x4e, 0x75, 0x61, 0xe1, 0xee, 0xfe, 0xa0, 0x9f, 0x84, 0xe1, 0x78, 0xc7, 0x6f, - 0xdc, 0x74, 0xfd, 0x66, 0x70, 0x3b, 0x1e, 0xaf, 0x16, 0xb1, 0x7c, 0x57, 0x14, 0x41, 0xb1, 0x00, - 0x35, 0x03, 0x6c, 0x72, 0xcb, 0xff, 0x70, 0x7a, 0x2a, 0xd5, 0x8a, 0xfe, 0x70, 0x7a, 0x32, 0xed, - 0xc1, 0x16, 0xfd, 0x9c, 0x05, 0xa3, 0xb1, 0xdb, 0xf2, 0x9d, 0xa4, 0x13, 0x91, 0xab, 0x64, 0x27, - 0x1e, 0x07, 0xd6, 0x91, 0x2b, 0x47, 0x1c, 0x15, 0x83, 0x64, 0xfd, 0xac, 0xe8, 0xe3, 0xa8, 0xd9, - 0x1a, 0xe3, 0x34, 0xdf, 0xbc, 0x85, 0xa6, 0xa7, 0xf5, 0x70, 0xb1, 0x0b, 0x4d, 0x4f, 0xea, 0x9e, - 0x2c, 0xd1, 0x8f, 0xc3, 0x49, 0xde, 0xa4, 0x46, 0x36, 0x1e, 0x1f, 0x61, 0x82, 0xf6, 0xcc, 0x9d, - 0xdd, 0x89, 0x93, 0x2b, 0x19, 0x18, 0xee, 0xc2, 0x46, 0xaf, 0xc1, 0x44, 0x48, 0xa2, 0xb6, 0x9b, - 0x2c, 0xf9, 0xde, 0x8e, 0x14, 0xdf, 0x8d, 0x20, 0x24, 0x4d, 0xd1, 0x9d, 0x78, 0x7c, 0xf4, 0xbc, - 0xf5, 0x54, 0xb5, 0xfe, 0x0e, 0xd1, 0xcd, 0x89, 0xe5, 0xbd, 0xd1, 0xf1, 0x7e, 0xf4, 0xec, 0x7f, - 0x53, 0x82, 0x93, 0x59, 0xc5, 0x89, 0xfe, 0xae, 0x05, 0x27, 0x6e, 0xdd, 0x4e, 0x56, 0x83, 0x4d, - 0xe2, 0xc7, 0xf5, 0x1d, 0x2a, 0xde, 0x98, 0xca, 0x18, 0xbe, 0xd0, 0x28, 0x56, 0x45, 0x4f, 0x5e, - 0x49, 0x73, 0xb9, 0xe8, 0x27, 0xd1, 0x4e, 0xfd, 0x61, 0xf1, 0x76, 0x27, 0xae, 0xdc, 0x5c, 0x35, - 0xa1, 0x38, 0xdb, 0xa9, 0x73, 0x9f, 0xb5, 0xe0, 0x4c, 0x1e, 0x09, 0x74, 0x12, 0xca, 0x9b, 0x64, - 0x87, 0x1b, 0x70, 0x98, 0xfe, 0x44, 0xaf, 0x40, 0x65, 0xcb, 0xf1, 0x3a, 0x44, 0x58, 0x37, 0x73, - 0x47, 0x7b, 0x11, 0xd5, 0x33, 0xcc, 0xa9, 0xbe, 0xb7, 0xf4, 0x82, 0x65, 0xff, 0x6e, 0x19, 0x86, - 0x0d, 0xfd, 0x76, 0x0f, 0x2c, 0xb6, 0x20, 0x65, 0xb1, 0x2d, 0x16, 0xa6, 0x9a, 0x7b, 0x9a, 0x6c, - 0xb7, 0x33, 0x26, 0xdb, 0x52, 0x71, 0x2c, 0xf7, 0xb4, 0xd9, 0x50, 0x02, 0xb5, 0x20, 0xa4, 0xd6, - 0x3b, 0x55, 0xfd, 0x03, 0x45, 0x7c, 0xc2, 0x25, 0x49, 0xae, 0x3e, 0x7a, 0x67, 0x77, 0xa2, 0xa6, - 0xfe, 0x62, 0xcd, 0xc8, 0xfe, 0xb6, 0x05, 0x67, 0x8c, 0x3e, 0xce, 0x04, 0x7e, 0xd3, 0x65, 0x9f, - 0xf6, 0x3c, 0x0c, 0x24, 0x3b, 0xa1, 0xdc, 0x21, 0xa8, 0x91, 0x5a, 0xdd, 0x09, 0x09, 0x66, 0x10, - 0x6a, 0xe8, 0xb7, 0x49, 0x1c, 0x3b, 0x2d, 0x92, 0xdd, 0x13, 0x2c, 0xf2, 0x66, 0x2c, 0xe1, 0x28, - 0x02, 0xe4, 0x39, 0x71, 0xb2, 0x1a, 0x39, 0x7e, 0xcc, 0xc8, 0xaf, 0xba, 0x6d, 0x22, 0x06, 0xf8, - 0x2f, 0xf5, 0x37, 0x63, 0xe8, 0x13, 0xf5, 0x87, 0xee, 0xec, 0x4e, 0xa0, 0x85, 0x2e, 0x4a, 0x38, - 0x87, 0xba, 0xfd, 0x65, 0x0b, 0x1e, 0xca, 0xb7, 0xc5, 0xd0, 0x93, 0x30, 0xc8, 0xb7, 0x87, 0xe2, - 0xed, 0xf4, 0x27, 0x61, 0xad, 0x58, 0x40, 0xd1, 0x14, 0xd4, 0x94, 0x9e, 0x10, 0xef, 0x78, 0x4a, - 0xa0, 0xd6, 0xb4, 0x72, 0xd1, 0x38, 0x74, 0xd0, 0xe8, 0x1f, 0x61, 0xb9, 0xa9, 0x41, 0x63, 0xfb, - 0x29, 0x06, 0xb1, 0xff, 0x93, 0x05, 0x27, 0x8c, 0x5e, 0xdd, 0x03, 0xd3, 0xdc, 0x4f, 0x9b, 0xe6, - 0xf3, 0x85, 0xcd, 0xe7, 0x1e, 0xb6, 0xf9, 0xe7, 0x2d, 0x38, 0x67, 0x60, 0x2d, 0x3a, 0x49, 0x63, - 0xe3, 0xe2, 0x76, 0x18, 0x91, 0x98, 0x6e, 0xbd, 0xd1, 0x63, 0x86, 0xdc, 0xaa, 0x0f, 0x0b, 0x0a, - 0xe5, 0xab, 0x64, 0x87, 0x0b, 0xb1, 0xa7, 0xa1, 0xca, 0x27, 0x67, 0x10, 0x89, 0x11, 0x57, 0xef, - 0xb6, 0x24, 0xda, 0xb1, 0xc2, 0x40, 0x36, 0x0c, 0x32, 0xe1, 0x44, 0x17, 0x2b, 0x55, 0x43, 0x40, - 0x3f, 0xe2, 0x0d, 0xd6, 0x82, 0x05, 0xc4, 0x8e, 0x53, 0xdd, 0x59, 0x8e, 0x08, 0xfb, 0xb8, 0xcd, - 0x4b, 0x2e, 0xf1, 0x9a, 0x31, 0xdd, 0x36, 0x38, 0xbe, 0x1f, 0x24, 0x62, 0x07, 0x60, 0x6c, 0x1b, - 0xa6, 0x75, 0x33, 0x36, 0x71, 0x28, 0x53, 0xcf, 0x59, 0x23, 0x1e, 0x1f, 0x51, 0xc1, 0x74, 0x81, - 0xb5, 0x60, 0x01, 0xb1, 0xef, 0x94, 0xd8, 0x06, 0x45, 0x2d, 0x7d, 0x72, 0x2f, 0x76, 0xb7, 0x51, - 0x4a, 0x56, 0x2e, 0x17, 0x27, 0xb8, 0x48, 0xef, 0x1d, 0xee, 0xeb, 0x19, 0x71, 0x89, 0x0b, 0xe5, - 0xba, 0xf7, 0x2e, 0xf7, 0xb7, 0x4a, 0x30, 0x91, 0x7e, 0xa0, 0x4b, 0xda, 0xd2, 0x2d, 0x95, 0xc1, - 0x28, 0xeb, 0xef, 0x30, 0xf0, 0xb1, 0x89, 0xd7, 0x43, 0x60, 0x95, 0x8e, 0x53, 0x60, 0x99, 0xf2, - 0xb4, 0xbc, 0x8f, 0x3c, 0x7d, 0x52, 0x8d, 0xfa, 0x40, 0x46, 0x80, 0xa5, 0x75, 0xca, 0x79, 0x18, - 0x88, 0x13, 0x12, 0x8e, 0x57, 0xd2, 0xf2, 0x68, 0x25, 0x21, 0x21, 0x66, 0x10, 0xfb, 0xbf, 0x97, - 0xe0, 0xe1, 0xf4, 0x18, 0x6a, 0x15, 0xf0, 0xfe, 0x94, 0x0a, 0x78, 0x97, 0xa9, 0x02, 0xee, 0xee, - 0x4e, 0xbc, 0xbd, 0xc7, 0x63, 0xdf, 0x33, 0x1a, 0x02, 0xcd, 0x65, 0x46, 0x71, 0x2a, 0x3d, 0x8a, - 0x77, 0x77, 0x27, 0x1e, 0xeb, 0xf1, 0x8e, 0x99, 0x61, 0x7e, 0x12, 0x06, 0x23, 0xe2, 0xc4, 0x81, - 0x2f, 0x06, 0x5a, 0x7d, 0x0e, 0xcc, 0x5a, 0xb1, 0x80, 0xda, 0xbf, 0x5f, 0xcb, 0x0e, 0xf6, 0x1c, - 0x77, 0xd8, 0x05, 0x11, 0x72, 0x61, 0x80, 0x99, 0xf5, 0x5c, 0x34, 0x5c, 0x3d, 0xda, 0x32, 0xa2, - 0x6a, 0x40, 0x91, 0xae, 0x57, 0xe9, 0x57, 0xa3, 0x4d, 0x98, 0xb1, 0x40, 0xdb, 0x50, 0x6d, 0x48, - 0x6b, 0xbb, 0x54, 0x84, 0x5f, 0x4a, 0xd8, 0xda, 0x9a, 0xe3, 0x08, 0x95, 0xd7, 0xca, 0x44, 0x57, - 0xdc, 0x10, 0x81, 0x72, 0xcb, 0x4d, 0xc4, 0x67, 0x3d, 0xe2, 0x7e, 0x6a, 0xce, 0x35, 0x5e, 0x71, - 0x88, 0x2a, 0x91, 0x39, 0x37, 0xc1, 0x94, 0x3e, 0xfa, 0x19, 0x0b, 0x86, 0xe3, 0x46, 0x7b, 0x39, - 0x0a, 0xb6, 0xdc, 0x26, 0x89, 0x84, 0x35, 0x75, 0x44, 0xd1, 0xb4, 0x32, 0xb3, 0x28, 0x09, 0x6a, - 0xbe, 0x7c, 0x7f, 0xab, 0x21, 0xd8, 0xe4, 0x4b, 0x77, 0x19, 0x0f, 0x8b, 0x77, 0x9f, 0x25, 0x0d, - 0x97, 0xea, 0x3f, 0xb9, 0xa9, 0x62, 0x33, 0xe5, 0xc8, 0xd6, 0xe5, 0x6c, 0xa7, 0xb1, 0x49, 0xd7, - 0x9b, 0xee, 0xd0, 0xdb, 0xef, 0xec, 0x4e, 0x3c, 0x3c, 0x93, 0xcf, 0x13, 0xf7, 0xea, 0x0c, 0x1b, - 0xb0, 0xb0, 0xe3, 0x79, 0x98, 0xbc, 0xd6, 0x21, 0xcc, 0x65, 0x52, 0xc0, 0x80, 0x2d, 0x6b, 0x82, - 0x99, 0x01, 0x33, 0x20, 0xd8, 0xe4, 0x8b, 0x5e, 0x83, 0xc1, 0xb6, 0x93, 0x44, 0xee, 0xb6, 0xf0, - 0x93, 0x1c, 0xd1, 0xde, 0x5f, 0x64, 0xb4, 0x34, 0x73, 0xa6, 0xa9, 0x79, 0x23, 0x16, 0x8c, 0x50, - 0x1b, 0x2a, 0x6d, 0x12, 0xb5, 0xc8, 0x78, 0xb5, 0x08, 0x9f, 0xf0, 0x22, 0x25, 0xa5, 0x19, 0xd6, - 0xa8, 0x75, 0xc4, 0xda, 0x30, 0xe7, 0x82, 0x5e, 0x81, 0x6a, 0x4c, 0x3c, 0xd2, 0xa0, 0xf6, 0x4d, - 0x8d, 0x71, 0x7c, 0x77, 0x9f, 0xb6, 0x1e, 0x35, 0x2c, 0x56, 0xc4, 0xa3, 0x7c, 0x81, 0xc9, 0x7f, - 0x58, 0x91, 0xa4, 0x03, 0x18, 0x7a, 0x9d, 0x96, 0xeb, 0x8f, 0x43, 0x11, 0x03, 0xb8, 0xcc, 0x68, - 0x65, 0x06, 0x90, 0x37, 0x62, 0xc1, 0xc8, 0xfe, 0x2f, 0x16, 0xa0, 0xb4, 0x50, 0xbb, 0x07, 0x46, - 0xed, 0x6b, 0x69, 0xa3, 0x76, 0xa1, 0x48, 0xab, 0xa3, 0x87, 0x5d, 0xfb, 0x1b, 0x35, 0xc8, 0xa8, - 0x83, 0x6b, 0x24, 0x4e, 0x48, 0xf3, 0x2d, 0x11, 0xfe, 0x96, 0x08, 0x7f, 0x4b, 0x84, 0x2b, 0x11, - 0xbe, 0x96, 0x11, 0xe1, 0xef, 0x33, 0x56, 0xbd, 0x3e, 0x80, 0x7d, 0x55, 0x9d, 0xd0, 0x9a, 0x3d, - 0x30, 0x10, 0xa8, 0x24, 0xb8, 0xb2, 0xb2, 0x74, 0x2d, 0x57, 0x66, 0xbf, 0x9a, 0x96, 0xd9, 0x47, - 0x65, 0xf1, 0x17, 0x41, 0x4a, 0xff, 0x6b, 0x0b, 0xde, 0x91, 0x96, 0x5e, 0x72, 0xe6, 0xcc, 0xb7, - 0xfc, 0x20, 0x22, 0xb3, 0xee, 0xfa, 0x3a, 0x89, 0x88, 0xdf, 0x20, 0xb1, 0xf2, 0x62, 0x58, 0xbd, - 0xbc, 0x18, 0xe8, 0x39, 0x18, 0xb9, 0x15, 0x07, 0xfe, 0x72, 0xe0, 0xfa, 0x42, 0x04, 0xd1, 0x8d, - 0xf0, 0xc9, 0x3b, 0xbb, 0x13, 0x23, 0x74, 0x44, 0x65, 0x3b, 0x4e, 0x61, 0xa1, 0x19, 0x38, 0x75, - 0xeb, 0xb5, 0x65, 0x27, 0x31, 0xdc, 0x01, 0x72, 0xe3, 0xce, 0x0e, 0x2c, 0xae, 0xbc, 0x94, 0x01, - 0xe2, 0x6e, 0x7c, 0xfb, 0x6f, 0x95, 0xe0, 0x91, 0xcc, 0x8b, 0x04, 0x9e, 0x17, 0x74, 0x12, 0xba, - 0xa9, 0x41, 0x5f, 0xb5, 0xe0, 0x64, 0x3b, 0xed, 0x71, 0x88, 0x85, 0x63, 0xf7, 0x03, 0x85, 0xe9, - 0x88, 0x8c, 0x4b, 0xa3, 0x3e, 0x2e, 0x46, 0xe8, 0x64, 0x06, 0x10, 0xe3, 0xae, 0xbe, 0xa0, 0x57, - 0xa0, 0xd6, 0x76, 0xb6, 0xaf, 0x87, 0x4d, 0x27, 0x91, 0xfb, 0xc9, 0xde, 0x6e, 0x80, 0x4e, 0xe2, - 0x7a, 0x93, 0xfc, 0x68, 0x7f, 0x72, 0xde, 0x4f, 0x96, 0xa2, 0x95, 0x24, 0x72, 0xfd, 0x16, 0x77, - 0xe7, 0x2d, 0x4a, 0x32, 0x58, 0x53, 0xb4, 0xbf, 0x62, 0x65, 0x95, 0x94, 0x1a, 0x9d, 0xc8, 0x49, - 0x48, 0x6b, 0x07, 0x7d, 0x14, 0x2a, 0x74, 0xe3, 0x27, 0x47, 0xe5, 0x66, 0x91, 0x9a, 0xd3, 0xf8, - 0x12, 0x5a, 0x89, 0xd2, 0x7f, 0x31, 0xe6, 0x4c, 0xed, 0xaf, 0xd6, 0xb2, 0xc6, 0x02, 0x3b, 0xbc, - 0xbd, 0x00, 0xd0, 0x0a, 0x56, 0x49, 0x3b, 0xf4, 0xe8, 0xb0, 0x58, 0xec, 0x04, 0x40, 0xf9, 0x3a, - 0xe6, 0x14, 0x04, 0x1b, 0x58, 0xe8, 0xaf, 0x58, 0x00, 0x2d, 0x39, 0xe7, 0xa5, 0x21, 0x70, 0xbd, - 0xc8, 0xd7, 0xd1, 0x2b, 0x4a, 0xf7, 0x45, 0x31, 0xc4, 0x06, 0x73, 0xf4, 0xd3, 0x16, 0x54, 0x13, - 0xd9, 0x7d, 0xae, 0x1a, 0x57, 0x8b, 0xec, 0x89, 0x7c, 0x69, 0x6d, 0x13, 0xa9, 0x21, 0x51, 0x7c, - 0xd1, 0xcf, 0x5a, 0x00, 0xf1, 0x8e, 0xdf, 0x58, 0x0e, 0x3c, 0xb7, 0xb1, 0x23, 0x34, 0xe6, 0x8d, - 0x42, 0xfd, 0x31, 0x8a, 0x7a, 0x7d, 0x8c, 0x8e, 0x86, 0xfe, 0x8f, 0x0d, 0xce, 0xe8, 0xe3, 0x50, - 0x8d, 0xc5, 0x74, 0x13, 0x3a, 0x72, 0xb5, 0x58, 0xaf, 0x10, 0xa7, 0x2d, 0xc4, 0xab, 0xf8, 0x87, - 0x15, 0x4f, 0xf4, 0xf3, 0x16, 0x9c, 0x08, 0xd3, 0x7e, 0x3e, 0xa1, 0x0e, 0x8b, 0x93, 0x01, 0x19, - 0x3f, 0x62, 0xfd, 0xf4, 0x9d, 0xdd, 0x89, 0x13, 0x99, 0x46, 0x9c, 0xed, 0x05, 0x95, 0x80, 0x7a, - 0x06, 0x2f, 0x85, 0xdc, 0xe7, 0x38, 0xa4, 0x25, 0xe0, 0x5c, 0x16, 0x88, 0xbb, 0xf1, 0xd1, 0x32, - 0x9c, 0xa1, 0xbd, 0xdb, 0xe1, 0xe6, 0xa7, 0x54, 0x2f, 0x31, 0x53, 0x86, 0xd5, 0xfa, 0xa3, 0x62, - 0x86, 0x30, 0xaf, 0x7e, 0x16, 0x07, 0xe7, 0x3e, 0x89, 0x7e, 0xd7, 0x82, 0x47, 0x5d, 0xa6, 0x06, - 0x4c, 0x87, 0xb9, 0xd6, 0x08, 0xe2, 0x24, 0x96, 0x14, 0x2a, 0x2b, 0x7a, 0xa9, 0x9f, 0xfa, 0x0f, - 0x8a, 0x37, 0x78, 0x74, 0x7e, 0x8f, 0x2e, 0xe1, 0x3d, 0x3b, 0x8c, 0x7e, 0x04, 0x46, 0xe5, 0xba, - 0x58, 0xa6, 0x22, 0x98, 0x29, 0xda, 0x5a, 0xfd, 0xd4, 0x9d, 0xdd, 0x89, 0xd1, 0x55, 0x13, 0x80, - 0xd3, 0x78, 0xf6, 0xb7, 0x4a, 0xa9, 0xf3, 0x10, 0xe5, 0x84, 0x64, 0xe2, 0xa6, 0x21, 0xfd, 0x3f, - 0x52, 0x7a, 0x16, 0x2a, 0x6e, 0x94, 0x77, 0x49, 0x8b, 0x1b, 0xd5, 0x14, 0x63, 0x83, 0x39, 0x35, - 0x4a, 0x4f, 0x39, 0x59, 0x57, 0xa7, 0x90, 0x80, 0xaf, 0x14, 0xd9, 0xa5, 0xee, 0xd3, 0xab, 0x47, - 0x44, 0xd7, 0x4e, 0x75, 0x81, 0x70, 0x77, 0x97, 0xec, 0x6f, 0xa5, 0xcf, 0x60, 0x8c, 0xc5, 0xdb, - 0xc7, 0xf9, 0xd2, 0x17, 0x2c, 0x18, 0x8e, 0x02, 0xcf, 0x73, 0xfd, 0x16, 0x15, 0x34, 0x42, 0x5b, - 0x7e, 0xe8, 0x58, 0x14, 0x96, 0x90, 0x28, 0xcc, 0xb4, 0xc5, 0x9a, 0x27, 0x36, 0x3b, 0x60, 0xff, - 0x89, 0x05, 0xe3, 0xbd, 0x04, 0x22, 0x22, 0xf0, 0x76, 0xb9, 0xda, 0x55, 0x74, 0xc5, 0x92, 0x3f, - 0x4b, 0x3c, 0xa2, 0x1c, 0xcf, 0xd5, 0xfa, 0x13, 0xe2, 0x35, 0xdf, 0xbe, 0xdc, 0x1b, 0x15, 0xef, - 0x45, 0x07, 0xbd, 0x0c, 0x27, 0x8d, 0xf7, 0x8a, 0xd5, 0xc0, 0xd4, 0xea, 0x93, 0xd4, 0x02, 0x99, - 0xce, 0xc0, 0xee, 0xee, 0x4e, 0x3c, 0x94, 0x6d, 0x13, 0x12, 0xbb, 0x8b, 0x8e, 0xfd, 0x2b, 0xa5, - 0xec, 0xd7, 0x52, 0xca, 0xf6, 0x4d, 0xab, 0x6b, 0x3b, 0xff, 0x81, 0xe3, 0x50, 0x70, 0x6c, 0xe3, - 0xaf, 0x02, 0x38, 0x7a, 0xe3, 0xdc, 0xc7, 0x13, 0x62, 0xfb, 0xdf, 0x0e, 0xc0, 0x1e, 0x3d, 0xeb, - 0xc3, 0x7a, 0x3e, 0xf0, 0xb1, 0xe2, 0xe7, 0x2c, 0x75, 0xe4, 0x54, 0x66, 0x8b, 0xbc, 0x79, 0x5c, - 0x63, 0xcf, 0x37, 0x30, 0x31, 0x8f, 0x52, 0x50, 0x6e, 0xec, 0xf4, 0xe1, 0x16, 0xfa, 0x9a, 0x95, - 0x3e, 0x34, 0xe3, 0x61, 0x67, 0xee, 0xb1, 0xf5, 0xc9, 0x38, 0x89, 0xe3, 0x1d, 0xd3, 0xe7, 0x37, - 0xbd, 0xce, 0xe8, 0x26, 0x01, 0xd6, 0x5d, 0xdf, 0xf1, 0xdc, 0xd7, 0xe9, 0xf6, 0xa4, 0xc2, 0x34, - 0x2c, 0x33, 0x59, 0x2e, 0xa9, 0x56, 0x6c, 0x60, 0x9c, 0xfb, 0xcb, 0x30, 0x6c, 0xbc, 0x79, 0x4e, - 0x70, 0xc5, 0x19, 0x33, 0xb8, 0xa2, 0x66, 0xc4, 0x44, 0x9c, 0x7b, 0x1f, 0x9c, 0xcc, 0x76, 0xf0, - 0x20, 0xcf, 0xdb, 0xff, 0x7b, 0x28, 0x7b, 0x8a, 0xb5, 0x4a, 0xa2, 0x36, 0xed, 0xda, 0x5b, 0x9e, - 0xa5, 0xb7, 0x3c, 0x4b, 0x6f, 0x79, 0x96, 0xcc, 0xc3, 0x01, 0xe1, 0x35, 0x19, 0xba, 0x47, 0x5e, - 0x93, 0x94, 0x1f, 0xa8, 0x5a, 0xb8, 0x1f, 0xc8, 0xbe, 0x53, 0x81, 0x94, 0x1d, 0xc5, 0xc7, 0xfb, - 0x9d, 0x30, 0x14, 0x91, 0x30, 0xb8, 0x8e, 0x17, 0x84, 0x0e, 0xd1, 0xb1, 0xf6, 0xbc, 0x19, 0x4b, - 0x38, 0xd5, 0x35, 0xa1, 0x93, 0x6c, 0x08, 0x25, 0xa2, 0x74, 0xcd, 0xb2, 0x93, 0x6c, 0x60, 0x06, - 0x41, 0xef, 0x83, 0xb1, 0xc4, 0x89, 0x5a, 0xd4, 0xde, 0xde, 0x62, 0x9f, 0x55, 0x9c, 0x75, 0x3e, - 0x24, 0x70, 0xc7, 0x56, 0x53, 0x50, 0x9c, 0xc1, 0x46, 0xaf, 0xc1, 0xc0, 0x06, 0xf1, 0xda, 0x62, - 0xc8, 0x57, 0x8a, 0x93, 0xf1, 0xec, 0x5d, 0x2f, 0x13, 0xaf, 0xcd, 0x25, 0x10, 0xfd, 0x85, 0x19, - 0x2b, 0x3a, 0xdf, 0x6a, 0x9b, 0x9d, 0x38, 0x09, 0xda, 0xee, 0xeb, 0xd2, 0xc5, 0xf7, 0x81, 0x82, - 0x19, 0x5f, 0x95, 0xf4, 0xb9, 0x2f, 0x45, 0xfd, 0xc5, 0x9a, 0x33, 0xeb, 0x47, 0xd3, 0x8d, 0xd8, - 0xa7, 0xda, 0x11, 0x9e, 0xba, 0xa2, 0xfb, 0x31, 0x2b, 0xe9, 0xf3, 0x7e, 0xa8, 0xbf, 0x58, 0x73, - 0x46, 0x3b, 0x6a, 0xde, 0x0f, 0xb3, 0x3e, 0x5c, 0x2f, 0xb8, 0x0f, 0x7c, 0xce, 0xe7, 0xce, 0xff, - 0x27, 0xa0, 0xd2, 0xd8, 0x70, 0xa2, 0x64, 0x7c, 0x84, 0x4d, 0x1a, 0xe5, 0xd3, 0x99, 0xa1, 0x8d, - 0x98, 0xc3, 0xd0, 0x63, 0x50, 0x8e, 0xc8, 0x3a, 0x8b, 0xdb, 0x34, 0x22, 0x7a, 0x30, 0x59, 0xc7, - 0xb4, 0xdd, 0xfe, 0xa5, 0x52, 0xda, 0x5c, 0x4a, 0xbf, 0x37, 0x9f, 0xed, 0x8d, 0x4e, 0x14, 0x4b, - 0xbf, 0x8f, 0x31, 0xdb, 0x59, 0x33, 0x96, 0x70, 0xf4, 0x49, 0x0b, 0x86, 0x6e, 0xc5, 0x81, 0xef, - 0x93, 0x44, 0xa8, 0xa6, 0x1b, 0x05, 0x0f, 0xc5, 0x15, 0x4e, 0x5d, 0xf7, 0x41, 0x34, 0x60, 0xc9, - 0x97, 0x76, 0x97, 0x6c, 0x37, 0xbc, 0x4e, 0xb3, 0x2b, 0x48, 0xe3, 0x22, 0x6f, 0xc6, 0x12, 0x4e, - 0x51, 0x5d, 0x9f, 0xa3, 0x0e, 0xa4, 0x51, 0xe7, 0x7d, 0x81, 0x2a, 0xe0, 0xf6, 0xdf, 0x18, 0x84, - 0xb3, 0xb9, 0x8b, 0x83, 0x1a, 0x32, 0xcc, 0x54, 0xb8, 0xe4, 0x7a, 0x44, 0x86, 0x27, 0x31, 0x43, - 0xe6, 0x86, 0x6a, 0xc5, 0x06, 0x06, 0xfa, 0x29, 0x80, 0xd0, 0x89, 0x9c, 0x36, 0x51, 0x7e, 0xd9, - 0x23, 0xdb, 0x0b, 0xb4, 0x1f, 0xcb, 0x92, 0xa6, 0xde, 0x9b, 0xaa, 0xa6, 0x18, 0x1b, 0x2c, 0xd1, - 0xf3, 0x30, 0x1c, 0x11, 0x8f, 0x38, 0x31, 0x0b, 0xfb, 0xcd, 0xe6, 0x30, 0x60, 0x0d, 0xc2, 0x26, - 0x1e, 0x7a, 0x52, 0x45, 0x72, 0x65, 0x22, 0x5a, 0xd2, 0xd1, 0x5c, 0xe8, 0x0d, 0x0b, 0xc6, 0xd6, - 0x5d, 0x8f, 0x68, 0xee, 0x22, 0xe3, 0x60, 0xe9, 0xe8, 0x2f, 0x79, 0xc9, 0xa4, 0xab, 0x25, 0x64, - 0xaa, 0x39, 0xc6, 0x19, 0xf6, 0xf4, 0x33, 0x6f, 0x91, 0x88, 0x89, 0xd6, 0xc1, 0xf4, 0x67, 0xbe, - 0xc1, 0x9b, 0xb1, 0x84, 0xa3, 0x69, 0x38, 0x11, 0x3a, 0x71, 0x3c, 0x13, 0x91, 0x26, 0xf1, 0x13, - 0xd7, 0xf1, 0x78, 0x3e, 0x40, 0x55, 0xc7, 0x03, 0x2f, 0xa7, 0xc1, 0x38, 0x8b, 0x8f, 0x3e, 0x08, - 0x0f, 0x73, 0xc7, 0xc7, 0xa2, 0x1b, 0xc7, 0xae, 0xdf, 0xd2, 0xd3, 0x40, 0xf8, 0x7f, 0x26, 0x04, - 0xa9, 0x87, 0xe7, 0xf3, 0xd1, 0x70, 0xaf, 0xe7, 0xd1, 0xd3, 0x50, 0x8d, 0x37, 0xdd, 0x70, 0x26, - 0x6a, 0xc6, 0xec, 0xd0, 0xa3, 0xaa, 0xbd, 0x8d, 0x2b, 0xa2, 0x1d, 0x2b, 0x0c, 0xd4, 0x80, 0x11, - 0xfe, 0x49, 0x78, 0x28, 0x9a, 0x90, 0x8f, 0xcf, 0xf4, 0x54, 0x8f, 0x22, 0xbd, 0x6d, 0x12, 0x3b, - 0xb7, 0x2f, 0xca, 0x23, 0x18, 0x7e, 0x62, 0x70, 0xc3, 0x20, 0x83, 0x53, 0x44, 0xed, 0x5f, 0x28, - 0xa5, 0x77, 0xdc, 0xe6, 0x22, 0x45, 0x31, 0x5d, 0x8a, 0xc9, 0x0d, 0x27, 0x92, 0xde, 0x98, 0x23, - 0xa6, 0x2d, 0x08, 0xba, 0x37, 0x9c, 0xc8, 0x5c, 0xd4, 0x8c, 0x01, 0x96, 0x9c, 0xd0, 0x2d, 0x18, - 0x48, 0x3c, 0xa7, 0xa0, 0x3c, 0x27, 0x83, 0xa3, 0x76, 0x80, 0x2c, 0x4c, 0xc7, 0x98, 0xf1, 0x40, - 0x8f, 0x52, 0xab, 0x7f, 0x4d, 0x1e, 0x91, 0x08, 0x43, 0x7d, 0x2d, 0xc6, 0xac, 0xd5, 0xbe, 0x0b, - 0x39, 0x72, 0x55, 0x29, 0x32, 0x74, 0x01, 0x80, 0x6e, 0x20, 0x97, 0x23, 0xb2, 0xee, 0x6e, 0x0b, - 0x43, 0x42, 0xad, 0xdd, 0x6b, 0x0a, 0x82, 0x0d, 0x2c, 0xf9, 0xcc, 0x4a, 0x67, 0x9d, 0x3e, 0x53, - 0xea, 0x7e, 0x86, 0x43, 0xb0, 0x81, 0x85, 0x9e, 0x83, 0x41, 0xb7, 0xed, 0xb4, 0x54, 0x08, 0xe6, - 0xa3, 0x74, 0xd1, 0xce, 0xb3, 0x96, 0xbb, 0xbb, 0x13, 0x63, 0xaa, 0x43, 0xac, 0x09, 0x0b, 0x5c, - 0xf4, 0x2b, 0x16, 0x8c, 0x34, 0x82, 0x76, 0x3b, 0xf0, 0xf9, 0xb6, 0x4b, 0xec, 0x21, 0x6f, 0x1d, - 0x97, 0x9a, 0x9f, 0x9c, 0x31, 0x98, 0xf1, 0x4d, 0xa4, 0x4a, 0xc8, 0x32, 0x41, 0x38, 0xd5, 0x2b, - 0x73, 0x6d, 0x57, 0xf6, 0x59, 0xdb, 0xbf, 0x6e, 0xc1, 0x29, 0xfe, 0xac, 0xb1, 0x1b, 0x14, 0xb9, - 0x47, 0xc1, 0x31, 0xbf, 0x56, 0xd7, 0x06, 0x59, 0x79, 0xe9, 0xba, 0xe0, 0xb8, 0xbb, 0x93, 0x68, - 0x0e, 0x4e, 0xad, 0x07, 0x51, 0x83, 0x98, 0x03, 0x21, 0x04, 0x93, 0x22, 0x74, 0x29, 0x8b, 0x80, - 0xbb, 0x9f, 0x41, 0x37, 0xe0, 0x21, 0xa3, 0xd1, 0x1c, 0x07, 0x2e, 0x9b, 0x1e, 0x17, 0xd4, 0x1e, - 0xba, 0x94, 0x8b, 0x85, 0x7b, 0x3c, 0x9d, 0x76, 0x98, 0xd4, 0xfa, 0x70, 0x98, 0xbc, 0x0a, 0x8f, - 0x34, 0xba, 0x47, 0x66, 0x2b, 0xee, 0xac, 0xc5, 0x5c, 0x52, 0x55, 0xeb, 0x3f, 0x20, 0x08, 0x3c, - 0x32, 0xd3, 0x0b, 0x11, 0xf7, 0xa6, 0x81, 0x3e, 0x0a, 0xd5, 0x88, 0xb0, 0xaf, 0x12, 0x8b, 0x44, - 0x9c, 0x23, 0xee, 0x92, 0xb5, 0x05, 0xca, 0xc9, 0x6a, 0xd9, 0x2b, 0x1a, 0x62, 0xac, 0x38, 0xa2, - 0xdb, 0x30, 0x14, 0x3a, 0x49, 0x63, 0x43, 0xa4, 0xdf, 0x1c, 0x39, 0xfe, 0x45, 0x31, 0x67, 0x3e, - 0x70, 0x23, 0x61, 0x97, 0x33, 0xc1, 0x92, 0x1b, 0xb5, 0x46, 0x1a, 0x41, 0x3b, 0x0c, 0x7c, 0xe2, - 0x27, 0xf1, 0xf8, 0xa8, 0xb6, 0x46, 0x66, 0x54, 0x2b, 0x36, 0x30, 0xd0, 0x32, 0x9c, 0x61, 0x3e, - 0xa3, 0x9b, 0x6e, 0xb2, 0x11, 0x74, 0x12, 0xb9, 0x05, 0x1a, 0x1f, 0x4b, 0x1f, 0x55, 0x2c, 0xe4, - 0xe0, 0xe0, 0xdc, 0x27, 0xcf, 0xbd, 0x1f, 0x4e, 0x75, 0x2d, 0xe5, 0x03, 0xb9, 0x6b, 0x66, 0xe1, - 0xa1, 0xfc, 0x45, 0x73, 0x20, 0xa7, 0xcd, 0x3f, 0xc9, 0x84, 0xcd, 0x1a, 0x86, 0x74, 0x1f, 0x0e, - 0x40, 0x07, 0xca, 0xc4, 0xdf, 0x12, 0x3a, 0xe4, 0xd2, 0xd1, 0xbe, 0xdd, 0x45, 0x7f, 0x8b, 0xaf, - 0x79, 0xe6, 0xe5, 0xb8, 0xe8, 0x6f, 0x61, 0x4a, 0x1b, 0x7d, 0xc9, 0x4a, 0x19, 0x82, 0xdc, 0x6d, - 0xf8, 0xe1, 0x63, 0xd9, 0x39, 0xf4, 0x6d, 0x1b, 0xda, 0xff, 0xae, 0x04, 0xe7, 0xf7, 0x23, 0xd2, - 0xc7, 0xf0, 0x3d, 0x01, 0x83, 0x31, 0x3b, 0x08, 0x17, 0x42, 0x79, 0x98, 0xce, 0x55, 0x7e, 0x34, - 0xfe, 0x2a, 0x16, 0x20, 0xe4, 0x41, 0xb9, 0xed, 0x84, 0xc2, 0x9b, 0x34, 0x7f, 0xd4, 0x44, 0x1a, - 0xfa, 0xdf, 0xf1, 0x16, 0x9d, 0x90, 0xfb, 0x28, 0x8c, 0x06, 0x4c, 0xd9, 0xa0, 0x04, 0x2a, 0x4e, - 0x14, 0x39, 0xf2, 0xd4, 0xf5, 0x6a, 0x31, 0xfc, 0xa6, 0x29, 0x49, 0x7e, 0x68, 0x95, 0x6a, 0xc2, - 0x9c, 0x99, 0xfd, 0xb9, 0xa1, 0x54, 0x32, 0x09, 0x3b, 0x4a, 0x8f, 0x61, 0x50, 0x38, 0x91, 0xac, - 0xa2, 0xf3, 0x97, 0x78, 0x36, 0x20, 0xdb, 0x27, 0x8a, 0x9c, 0x6a, 0xc1, 0x0a, 0x7d, 0xd6, 0x62, - 0x99, 0xcb, 0x32, 0xc1, 0x46, 0xec, 0xce, 0x8e, 0x27, 0x91, 0xda, 0xcc, 0x87, 0x96, 0x8d, 0xd8, - 0xe4, 0x2e, 0x2a, 0x10, 0x30, 0xab, 0xb4, 0xbb, 0x02, 0x01, 0xb3, 0x32, 0x25, 0x1c, 0x6d, 0xe7, - 0x1c, 0x99, 0x17, 0x90, 0xfd, 0xda, 0xc7, 0x21, 0xf9, 0xd7, 0x2c, 0x38, 0xe5, 0x66, 0xcf, 0x3e, - 0xc5, 0x5e, 0xe6, 0x88, 0x41, 0x19, 0xbd, 0x8f, 0x56, 0x95, 0x3a, 0xef, 0x02, 0xe1, 0xee, 0xce, - 0xa0, 0x26, 0x0c, 0xb8, 0xfe, 0x7a, 0x20, 0x8c, 0x98, 0xfa, 0xd1, 0x3a, 0x35, 0xef, 0xaf, 0x07, - 0x7a, 0x35, 0xd3, 0x7f, 0x98, 0x51, 0x47, 0x0b, 0x70, 0x26, 0x12, 0xde, 0xa6, 0xcb, 0x6e, 0x9c, - 0x04, 0xd1, 0xce, 0x82, 0xdb, 0x76, 0x13, 0x66, 0x80, 0x94, 0xeb, 0xe3, 0x54, 0x3f, 0xe0, 0x1c, - 0x38, 0xce, 0x7d, 0x0a, 0xbd, 0x0e, 0x43, 0x32, 0xd5, 0xba, 0x5a, 0xc4, 0xbe, 0xb0, 0x7b, 0xfe, - 0xab, 0xc9, 0xb4, 0x22, 0xb2, 0xaa, 0x25, 0x43, 0xfb, 0x8d, 0x61, 0xe8, 0x3e, 0x16, 0x45, 0x1f, - 0x83, 0x5a, 0xa4, 0xd2, 0xbf, 0xad, 0x22, 0xd4, 0xb5, 0xfc, 0xbe, 0xe2, 0x48, 0x56, 0x99, 0x42, - 0x3a, 0xd1, 0x5b, 0x73, 0xa4, 0x1b, 0x96, 0x58, 0x9f, 0x9e, 0x16, 0x30, 0xb7, 0x05, 0x57, 0x7d, - 0x32, 0xb6, 0xe3, 0x37, 0x30, 0xe3, 0x81, 0x22, 0x18, 0xdc, 0x20, 0x8e, 0x97, 0x6c, 0x14, 0xe3, - 0xc4, 0xbf, 0xcc, 0x68, 0x65, 0x93, 0x80, 0x78, 0x2b, 0x16, 0x9c, 0xd0, 0x36, 0x0c, 0x6d, 0xf0, - 0x09, 0x20, 0xf6, 0x10, 0x8b, 0x47, 0x1d, 0xdc, 0xd4, 0xac, 0xd2, 0x9f, 0x5b, 0x34, 0x60, 0xc9, - 0x8e, 0xc5, 0xdb, 0x18, 0x11, 0x01, 0x7c, 0xe9, 0x16, 0x97, 0xff, 0xd4, 0x7f, 0x38, 0xc0, 0x47, - 0x60, 0x24, 0x22, 0x8d, 0xc0, 0x6f, 0xb8, 0x1e, 0x69, 0x4e, 0x4b, 0x07, 0xfd, 0x41, 0xb2, 0x66, - 0xd8, 0x3e, 0x1c, 0x1b, 0x34, 0x70, 0x8a, 0x22, 0xfa, 0x8c, 0x05, 0x63, 0x2a, 0x67, 0x94, 0x7e, - 0x10, 0x22, 0x1c, 0xc2, 0x0b, 0x05, 0x65, 0xa8, 0x32, 0x9a, 0x75, 0x74, 0x67, 0x77, 0x62, 0x2c, - 0xdd, 0x86, 0x33, 0x7c, 0xd1, 0xcb, 0x00, 0xc1, 0x1a, 0x0f, 0xaa, 0x99, 0x4e, 0x84, 0x77, 0xf8, - 0x20, 0xaf, 0x3a, 0xc6, 0xd3, 0xe7, 0x24, 0x05, 0x6c, 0x50, 0x43, 0x57, 0x01, 0xf8, 0xb2, 0x59, - 0xdd, 0x09, 0xe5, 0x46, 0x43, 0xa6, 0x3d, 0xc1, 0x8a, 0x82, 0xdc, 0xdd, 0x9d, 0xe8, 0xf6, 0xd6, - 0xb1, 0xc0, 0x05, 0xe3, 0x71, 0xf4, 0x93, 0x30, 0x14, 0x77, 0xda, 0x6d, 0x47, 0xf9, 0x8e, 0x0b, - 0x4c, 0xc8, 0xe3, 0x74, 0x0d, 0x51, 0xc4, 0x1b, 0xb0, 0xe4, 0x88, 0x6e, 0x51, 0xa1, 0x1a, 0x0b, - 0x37, 0x22, 0x5b, 0x45, 0xdc, 0x26, 0x18, 0x66, 0xef, 0xf4, 0x1e, 0x69, 0x78, 0xe3, 0x1c, 0x9c, - 0xbb, 0xbb, 0x13, 0x0f, 0xa5, 0xdb, 0x17, 0x02, 0x91, 0x22, 0x97, 0x4b, 0x13, 0x5d, 0x91, 0x95, - 0x57, 0xe8, 0x6b, 0xcb, 0x82, 0x00, 0x4f, 0xe9, 0xca, 0x2b, 0xac, 0xb9, 0xf7, 0x98, 0x99, 0x0f, - 0xa3, 0x45, 0x38, 0xdd, 0x08, 0xfc, 0x24, 0x0a, 0x3c, 0x8f, 0x57, 0x1e, 0xe2, 0x7b, 0x3e, 0xee, - 0x5b, 0x7e, 0xbb, 0xe8, 0xf6, 0xe9, 0x99, 0x6e, 0x14, 0x9c, 0xf7, 0x9c, 0xed, 0xa7, 0xa3, 0x0d, - 0xc5, 0xe0, 0x3c, 0x07, 0x23, 0x64, 0x3b, 0x21, 0x91, 0xef, 0x78, 0xd7, 0xf1, 0x82, 0xf4, 0xaa, - 0xb2, 0x35, 0x70, 0xd1, 0x68, 0xc7, 0x29, 0x2c, 0x64, 0x2b, 0x47, 0x87, 0x91, 0xf6, 0xc9, 0x1d, - 0x1d, 0xd2, 0xad, 0x61, 0xff, 0x9f, 0x52, 0xca, 0x20, 0x5b, 0x8d, 0x08, 0x41, 0x01, 0x54, 0xfc, - 0xa0, 0xa9, 0x64, 0xff, 0x95, 0x62, 0x64, 0xff, 0xb5, 0xa0, 0x69, 0x94, 0x67, 0xa1, 0xff, 0x62, - 0xcc, 0xf9, 0xb0, 0xfa, 0x15, 0xb2, 0xd0, 0x07, 0x03, 0x88, 0x8d, 0x46, 0x91, 0x9c, 0x55, 0xfd, - 0x8a, 0x25, 0x93, 0x11, 0x4e, 0xf3, 0x45, 0x9b, 0x50, 0xd9, 0x08, 0xe2, 0x44, 0x6e, 0x3f, 0x8e, - 0xb8, 0xd3, 0xb9, 0x1c, 0xc4, 0x09, 0xb3, 0x22, 0xd4, 0x6b, 0xd3, 0x96, 0x18, 0x73, 0x1e, 0xf6, - 0x7f, 0xb5, 0x52, 0x3e, 0xf4, 0x9b, 0x2c, 0xf2, 0x76, 0x8b, 0xf8, 0x74, 0x59, 0x9b, 0xa1, 0x46, - 0x3f, 0x92, 0xc9, 0x63, 0x7c, 0x47, 0xaf, 0xc2, 0x5a, 0xb7, 0x29, 0x85, 0x49, 0x46, 0xc2, 0x88, - 0x4a, 0xfa, 0x84, 0x95, 0xce, 0x28, 0x2d, 0x15, 0xb1, 0xc1, 0x30, 0xb3, 0xaa, 0xf7, 0x4d, 0x4e, - 0xb5, 0xbf, 0x64, 0xc1, 0x50, 0xdd, 0x69, 0x6c, 0x06, 0xeb, 0xeb, 0xe8, 0x69, 0xa8, 0x36, 0x3b, - 0x91, 0x99, 0xdc, 0xaa, 0x1c, 0x07, 0xb3, 0xa2, 0x1d, 0x2b, 0x0c, 0x3a, 0x87, 0xd7, 0x9d, 0x86, - 0xcc, 0xad, 0x2e, 0xf3, 0x39, 0x7c, 0x89, 0xb5, 0x60, 0x01, 0x41, 0xcf, 0xc3, 0x70, 0xdb, 0xd9, - 0x96, 0x0f, 0x67, 0x1d, 0xf8, 0x8b, 0x1a, 0x84, 0x4d, 0x3c, 0xfb, 0x5f, 0x59, 0x30, 0x5e, 0x77, - 0x62, 0xb7, 0x31, 0xdd, 0x49, 0x36, 0xea, 0x6e, 0xb2, 0xd6, 0x69, 0x6c, 0x92, 0x84, 0x27, 0xd4, - 0xd3, 0x5e, 0x76, 0x62, 0xba, 0x94, 0xd4, 0xbe, 0x4e, 0xf5, 0xf2, 0xba, 0x68, 0xc7, 0x0a, 0x03, - 0xbd, 0x0e, 0xc3, 0xa1, 0x13, 0xc7, 0xb7, 0x83, 0xa8, 0x89, 0xc9, 0x7a, 0x31, 0xe5, 0x2c, 0x56, - 0x48, 0x23, 0x22, 0x09, 0x26, 0xeb, 0xe2, 0x90, 0x59, 0xd3, 0xc7, 0x26, 0x33, 0xfb, 0x0b, 0x16, - 0x3c, 0x52, 0x27, 0x4e, 0x44, 0x22, 0x56, 0xfd, 0x42, 0xbd, 0xc8, 0x8c, 0x17, 0x74, 0x9a, 0xe8, - 0x35, 0xa8, 0x26, 0xb4, 0x99, 0x76, 0xcb, 0x2a, 0xb6, 0x5b, 0xec, 0x8c, 0x78, 0x55, 0x10, 0xc7, - 0x8a, 0x8d, 0xfd, 0x37, 0x2d, 0x18, 0x61, 0xc7, 0x6d, 0xb3, 0x24, 0x71, 0x5c, 0xaf, 0xab, 0x48, - 0x94, 0xd5, 0x67, 0x91, 0xa8, 0xf3, 0x30, 0xb0, 0x11, 0xb4, 0x49, 0xf6, 0xa8, 0xf8, 0x72, 0x40, - 0xb7, 0xd5, 0x14, 0x82, 0x9e, 0xa5, 0x1f, 0xde, 0xf5, 0x13, 0x87, 0x2e, 0x01, 0xe9, 0xce, 0x3d, - 0xc1, 0x3f, 0xba, 0x6a, 0xc6, 0x26, 0x8e, 0xfd, 0x5b, 0x35, 0x18, 0x12, 0xf1, 0x04, 0x7d, 0x17, - 0x55, 0x90, 0xfb, 0xfb, 0x52, 0xcf, 0xfd, 0x7d, 0x0c, 0x83, 0x0d, 0x56, 0xad, 0x4e, 0x98, 0x91, - 0x57, 0x0b, 0x09, 0x40, 0xe1, 0x05, 0xf0, 0x74, 0xb7, 0xf8, 0x7f, 0x2c, 0x58, 0xa1, 0x2f, 0x5a, - 0x70, 0xa2, 0x11, 0xf8, 0x3e, 0x69, 0x68, 0x1b, 0x67, 0xa0, 0x88, 0x38, 0x83, 0x99, 0x34, 0x51, - 0x7d, 0xd6, 0x93, 0x01, 0xe0, 0x2c, 0x7b, 0xf4, 0x22, 0x8c, 0xf2, 0x31, 0xbb, 0x91, 0xf2, 0x41, - 0xeb, 0xda, 0x41, 0x26, 0x10, 0xa7, 0x71, 0xd1, 0x24, 0xf7, 0xe5, 0x8b, 0x2a, 0x3d, 0x83, 0xda, - 0x55, 0x67, 0xd4, 0xe7, 0x31, 0x30, 0x50, 0x04, 0x28, 0x22, 0xeb, 0x11, 0x89, 0x37, 0x44, 0xbc, - 0x05, 0xb3, 0xaf, 0x86, 0x0e, 0x97, 0x80, 0x8d, 0xbb, 0x28, 0xe1, 0x1c, 0xea, 0x68, 0x53, 0x6c, - 0x30, 0xab, 0x45, 0xc8, 0x50, 0xf1, 0x99, 0x7b, 0xee, 0x33, 0x27, 0xa0, 0x12, 0x6f, 0x38, 0x51, - 0x93, 0xd9, 0x75, 0x65, 0x9e, 0xf4, 0xb3, 0x42, 0x1b, 0x30, 0x6f, 0x47, 0xb3, 0x70, 0x32, 0x53, - 0xf9, 0x28, 0x16, 0xbe, 0x62, 0x95, 0xe0, 0x91, 0xa9, 0x99, 0x14, 0xe3, 0xae, 0x27, 0x4c, 0xe7, - 0xc3, 0xf0, 0x3e, 0xce, 0x87, 0x1d, 0x15, 0xd5, 0xc7, 0xbd, 0xb8, 0x2f, 0x15, 0x32, 0x00, 0x7d, - 0x85, 0xf0, 0x7d, 0x3e, 0x13, 0xc2, 0x37, 0xca, 0x3a, 0x70, 0xa3, 0x98, 0x0e, 0x1c, 0x3c, 0x5e, - 0xef, 0x7e, 0xc6, 0xdf, 0xfd, 0xb9, 0x05, 0xf2, 0xbb, 0xce, 0x38, 0x8d, 0x0d, 0x42, 0xa7, 0x0c, - 0x7a, 0x1f, 0x8c, 0xa9, 0x2d, 0xf4, 0x4c, 0xd0, 0xf1, 0x79, 0xe8, 0x5d, 0x59, 0x1f, 0x0a, 0xe3, - 0x14, 0x14, 0x67, 0xb0, 0xd1, 0x14, 0xd4, 0xe8, 0x38, 0xf1, 0x47, 0xb9, 0xae, 0x55, 0xdb, 0xf4, - 0xe9, 0xe5, 0x79, 0xf1, 0x94, 0xc6, 0x41, 0x01, 0x9c, 0xf2, 0x9c, 0x38, 0x61, 0x3d, 0xa0, 0x3b, - 0xea, 0x43, 0x96, 0x3f, 0x60, 0x59, 0x04, 0x0b, 0x59, 0x42, 0xb8, 0x9b, 0xb6, 0xfd, 0xed, 0x01, - 0x18, 0x4d, 0x49, 0xc6, 0x03, 0x2a, 0xe9, 0xa7, 0xa1, 0x2a, 0xf5, 0x66, 0xb6, 0x50, 0x8b, 0x52, - 0xae, 0x0a, 0x83, 0x2a, 0xad, 0x35, 0xad, 0x55, 0xb3, 0x46, 0x85, 0xa1, 0x70, 0xb1, 0x89, 0xc7, - 0x84, 0x72, 0xe2, 0xc5, 0x33, 0x9e, 0x4b, 0xfc, 0x84, 0x77, 0xb3, 0x18, 0xa1, 0xbc, 0xba, 0xb0, - 0x62, 0x12, 0xd5, 0x42, 0x39, 0x03, 0xc0, 0x59, 0xf6, 0xe8, 0xd3, 0x16, 0x8c, 0x3a, 0xb7, 0x63, - 0x5d, 0x52, 0x55, 0x04, 0xeb, 0x1d, 0x51, 0x49, 0xa5, 0xaa, 0xb4, 0x72, 0x97, 0x6f, 0xaa, 0x09, - 0xa7, 0x99, 0xa2, 0x37, 0x2d, 0x40, 0x64, 0x9b, 0x34, 0x64, 0x38, 0xa1, 0xe8, 0xcb, 0x60, 0x11, - 0x3b, 0xcd, 0x8b, 0x5d, 0x74, 0xb9, 0x54, 0xef, 0x6e, 0xc7, 0x39, 0x7d, 0xb0, 0xff, 0x79, 0x59, - 0x2d, 0x28, 0x1d, 0xc1, 0xea, 0x18, 0x91, 0x74, 0xd6, 0xe1, 0x23, 0xe9, 0x74, 0x44, 0x42, 0x77, - 0x56, 0x65, 0x2a, 0x09, 0xab, 0x74, 0x9f, 0x92, 0xb0, 0x7e, 0xda, 0x4a, 0x95, 0x24, 0x1a, 0xbe, - 0xf0, 0x72, 0xb1, 0xd1, 0xb3, 0x93, 0x3c, 0x5a, 0x22, 0x23, 0xdd, 0xd3, 0x41, 0x32, 0x54, 0x9a, - 0x1a, 0x68, 0x07, 0x92, 0x86, 0xff, 0xa1, 0x0c, 0xc3, 0x86, 0x26, 0xcd, 0x35, 0x8b, 0xac, 0x07, - 0xcc, 0x2c, 0x2a, 0x1d, 0xc0, 0x2c, 0xfa, 0x29, 0xa8, 0x35, 0xa4, 0x94, 0x2f, 0xa6, 0x28, 0x6f, - 0x56, 0x77, 0x68, 0x41, 0xaf, 0x9a, 0xb0, 0xe6, 0x89, 0xe6, 0x52, 0xa9, 0x3b, 0x42, 0x43, 0x0c, - 0x30, 0x0d, 0x91, 0x97, 0x5b, 0x23, 0x34, 0x45, 0xf7, 0x33, 0xac, 0x72, 0x55, 0xe8, 0x8a, 0xf7, - 0x92, 0x31, 0xee, 0xbc, 0x72, 0xd5, 0xf2, 0xbc, 0x6c, 0xc6, 0x26, 0x8e, 0xfd, 0x6d, 0x4b, 0x7d, - 0xdc, 0x7b, 0x50, 0xa3, 0xe1, 0x56, 0xba, 0x46, 0xc3, 0xc5, 0x42, 0x86, 0xb9, 0x47, 0x71, 0x86, - 0x6b, 0x30, 0x34, 0x13, 0xb4, 0xdb, 0x8e, 0xdf, 0x44, 0x3f, 0x04, 0x43, 0x0d, 0xfe, 0x53, 0x38, - 0x76, 0xd8, 0xf1, 0xa0, 0x80, 0x62, 0x09, 0x43, 0x8f, 0xc2, 0x80, 0x13, 0xb5, 0xa4, 0x33, 0x87, - 0x05, 0xd7, 0x4c, 0x47, 0xad, 0x18, 0xb3, 0x56, 0xfb, 0x1f, 0x0f, 0x00, 0x3b, 0xd3, 0x76, 0x22, - 0xd2, 0x5c, 0x0d, 0x58, 0x51, 0xc0, 0x63, 0x3d, 0x54, 0xd3, 0x9b, 0xa5, 0x07, 0xf9, 0x60, 0xcd, - 0x38, 0x5c, 0x29, 0xdf, 0xe3, 0xc3, 0x95, 0x1e, 0xe7, 0x65, 0x03, 0x0f, 0xd0, 0x79, 0x99, 0xfd, - 0x39, 0x0b, 0x90, 0x0a, 0x84, 0xd0, 0x07, 0xda, 0x53, 0x50, 0x53, 0x21, 0x11, 0xc2, 0xb0, 0xd2, - 0x22, 0x42, 0x02, 0xb0, 0xc6, 0xe9, 0x63, 0x87, 0xfc, 0x84, 0x94, 0xdf, 0xe5, 0x74, 0x5c, 0x2e, - 0x93, 0xfa, 0x42, 0x9c, 0xdb, 0xbf, 0x5d, 0x82, 0x87, 0xb8, 0x4a, 0x5e, 0x74, 0x7c, 0xa7, 0x45, - 0xda, 0xb4, 0x57, 0xfd, 0x86, 0x28, 0x34, 0xe8, 0xd6, 0xcc, 0x95, 0x71, 0xb6, 0x47, 0x5d, 0xbb, - 0x7c, 0xcd, 0xf1, 0x55, 0x36, 0xef, 0xbb, 0x09, 0x66, 0xc4, 0x51, 0x0c, 0x55, 0x59, 0xb1, 0x5e, - 0xc8, 0xe2, 0x82, 0x18, 0x29, 0xb1, 0x24, 0xf4, 0x26, 0xc1, 0x8a, 0x11, 0x35, 0x5c, 0xbd, 0xa0, - 0xb1, 0x89, 0x49, 0x18, 0x30, 0xb9, 0x6b, 0x84, 0x39, 0x2e, 0x88, 0x76, 0xac, 0x30, 0xec, 0xdf, - 0xb6, 0x20, 0xab, 0x91, 0x8c, 0xea, 0x6b, 0xd6, 0x9e, 0xd5, 0xd7, 0x0e, 0x50, 0xfe, 0xec, 0x27, - 0x60, 0xd8, 0x49, 0xa8, 0x11, 0xc1, 0xb7, 0xdd, 0xe5, 0xc3, 0x1d, 0x6b, 0x2c, 0x06, 0x4d, 0x77, - 0xdd, 0x65, 0xdb, 0x6d, 0x93, 0x9c, 0xfd, 0x3f, 0x07, 0xe0, 0x54, 0x57, 0x36, 0x08, 0x7a, 0x01, - 0x46, 0x1a, 0x62, 0x7a, 0x84, 0xd2, 0xa1, 0x55, 0x33, 0xc3, 0xe2, 0x34, 0x0c, 0xa7, 0x30, 0xfb, - 0x98, 0xa0, 0xf3, 0x70, 0x3a, 0xa2, 0x1b, 0xfd, 0x0e, 0x99, 0x5e, 0x4f, 0x48, 0xb4, 0x42, 0x1a, - 0x81, 0xdf, 0xe4, 0x35, 0x02, 0xcb, 0xf5, 0x87, 0xef, 0xec, 0x4e, 0x9c, 0xc6, 0xdd, 0x60, 0x9c, - 0xf7, 0x0c, 0x0a, 0x61, 0xd4, 0x33, 0x6d, 0x40, 0xb1, 0x01, 0x38, 0x94, 0xf9, 0xa8, 0x6c, 0x84, - 0x54, 0x33, 0x4e, 0x33, 0x48, 0x1b, 0x92, 0x95, 0xfb, 0x64, 0x48, 0x7e, 0x4a, 0x1b, 0x92, 0xfc, - 0xfc, 0xfd, 0x43, 0x05, 0x67, 0x03, 0x1d, 0xb7, 0x25, 0xf9, 0x12, 0x54, 0x65, 0x6c, 0x52, 0x5f, - 0x31, 0x3d, 0x26, 0x9d, 0x1e, 0x12, 0xed, 0x49, 0xf8, 0xc1, 0x8b, 0x51, 0x64, 0x0c, 0xe6, 0xb5, - 0x20, 0x99, 0xf6, 0xbc, 0xe0, 0x36, 0x55, 0xd2, 0xd7, 0x63, 0x22, 0x3c, 0x2c, 0xf6, 0xdd, 0x12, - 0xe4, 0x6c, 0x56, 0xe8, 0x7a, 0xd4, 0x96, 0x41, 0x6a, 0x3d, 0x1e, 0xcc, 0x3a, 0x40, 0xdb, 0x3c, - 0x7e, 0x8b, 0xeb, 0xc0, 0x0f, 0x16, 0xbd, 0xd9, 0xd2, 0x21, 0x5d, 0x2a, 0x99, 0x42, 0x85, 0x75, - 0x5d, 0x00, 0xd0, 0x06, 0x9d, 0x08, 0x95, 0x57, 0xc7, 0xc3, 0xda, 0xee, 0xc3, 0x06, 0x16, 0xdd, - 0x7b, 0xbb, 0x7e, 0x9c, 0x38, 0x9e, 0x77, 0xd9, 0xf5, 0x13, 0xe1, 0x44, 0x54, 0xca, 0x7e, 0x5e, - 0x83, 0xb0, 0x89, 0x77, 0xee, 0x3d, 0xc6, 0xf7, 0x3b, 0xc8, 0x77, 0xdf, 0x80, 0x47, 0xe6, 0xdc, - 0x44, 0x25, 0x78, 0xa8, 0xf9, 0x46, 0xed, 0x35, 0x95, 0xb0, 0x64, 0xf5, 0x4c, 0x58, 0x32, 0x12, - 0x2c, 0x4a, 0xe9, 0x7c, 0x90, 0x6c, 0x82, 0x85, 0xfd, 0x02, 0x9c, 0x99, 0x73, 0x93, 0x4b, 0xae, - 0x47, 0x0e, 0xc8, 0xc4, 0xfe, 0xcd, 0x41, 0x18, 0x31, 0x53, 0x04, 0x0f, 0x92, 0x73, 0xf5, 0x05, - 0x6a, 0x92, 0x89, 0xb7, 0x73, 0xd5, 0xe1, 0xda, 0xcd, 0x23, 0xe7, 0x2b, 0xe6, 0x8f, 0x98, 0x61, - 0x95, 0x69, 0x9e, 0xd8, 0xec, 0x00, 0xba, 0x0d, 0x95, 0x75, 0x96, 0x00, 0x50, 0x2e, 0x22, 0x02, - 0x21, 0x6f, 0x44, 0xf5, 0x72, 0xe4, 0x29, 0x04, 0x9c, 0x1f, 0xd5, 0xa4, 0x51, 0x3a, 0xab, 0xcc, - 0x08, 0x5a, 0x15, 0xf9, 0x64, 0x0a, 0xa3, 0x97, 0x4a, 0xa8, 0x1c, 0x42, 0x25, 0xa4, 0x04, 0xf4, - 0xe0, 0x7d, 0x12, 0xd0, 0x2c, 0x99, 0x23, 0xd9, 0x60, 0x76, 0x9e, 0x88, 0xb2, 0x1f, 0x62, 0x83, - 0x60, 0x24, 0x73, 0xa4, 0xc0, 0x38, 0x8b, 0x8f, 0x3e, 0xae, 0x44, 0x7c, 0xb5, 0x08, 0xff, 0xab, - 0x39, 0xa3, 0x8f, 0x5b, 0xba, 0x7f, 0xae, 0x04, 0x63, 0x73, 0x7e, 0x67, 0x79, 0x6e, 0xb9, 0xb3, - 0xe6, 0xb9, 0x8d, 0xab, 0x64, 0x87, 0x8a, 0xf0, 0x4d, 0xb2, 0x33, 0x3f, 0x2b, 0x56, 0x90, 0x9a, - 0x33, 0x57, 0x69, 0x23, 0xe6, 0x30, 0x2a, 0x8c, 0xd6, 0x5d, 0xbf, 0x45, 0xa2, 0x30, 0x72, 0x85, - 0x6b, 0xd4, 0x10, 0x46, 0x97, 0x34, 0x08, 0x9b, 0x78, 0x94, 0x76, 0x70, 0xdb, 0x27, 0x51, 0xd6, - 0xe0, 0x5d, 0xa2, 0x8d, 0x98, 0xc3, 0x28, 0x52, 0x12, 0x75, 0xe2, 0x44, 0x4c, 0x46, 0x85, 0xb4, - 0x4a, 0x1b, 0x31, 0x87, 0xd1, 0x95, 0x1e, 0x77, 0xd6, 0x58, 0x80, 0x47, 0x26, 0xa4, 0x7f, 0x85, - 0x37, 0x63, 0x09, 0xa7, 0xa8, 0x9b, 0x64, 0x67, 0x96, 0xee, 0x8e, 0x33, 0x99, 0x3d, 0x57, 0x79, - 0x33, 0x96, 0x70, 0x56, 0x04, 0x31, 0x3d, 0x1c, 0xdf, 0x73, 0x45, 0x10, 0xd3, 0xdd, 0xef, 0xb1, - 0xcf, 0xfe, 0x65, 0x0b, 0x46, 0xcc, 0xb0, 0x2c, 0xd4, 0xca, 0xd8, 0xc2, 0x4b, 0x5d, 0x35, 0x74, - 0x7f, 0x2c, 0xef, 0x02, 0xb2, 0x96, 0x9b, 0x04, 0x61, 0xfc, 0x0c, 0xf1, 0x5b, 0xae, 0x4f, 0xd8, - 0x69, 0x3b, 0x0f, 0xe7, 0x4a, 0xc5, 0x7c, 0xcd, 0x04, 0x4d, 0x72, 0x08, 0x63, 0xda, 0xbe, 0x09, - 0xa7, 0xba, 0xd2, 0xb9, 0xfa, 0x30, 0x41, 0xf6, 0x4d, 0xa6, 0xb5, 0x31, 0x0c, 0x53, 0xc2, 0xb2, - 0x10, 0xcf, 0x0c, 0x9c, 0xe2, 0x0b, 0x89, 0x72, 0x5a, 0x69, 0x6c, 0x90, 0xb6, 0x4a, 0xd1, 0x63, - 0x7e, 0xf8, 0x1b, 0x59, 0x20, 0xee, 0xc6, 0xb7, 0x3f, 0x6f, 0xc1, 0x68, 0x2a, 0xc3, 0xae, 0x20, - 0x63, 0x89, 0xad, 0xb4, 0x80, 0x45, 0x09, 0xb2, 0x50, 0xe9, 0x32, 0x53, 0xa6, 0x7a, 0xa5, 0x69, - 0x10, 0x36, 0xf1, 0xec, 0x2f, 0x95, 0xa0, 0x2a, 0x23, 0x2d, 0xfa, 0xe8, 0xca, 0x67, 0x2d, 0x18, - 0x55, 0x67, 0x1f, 0xcc, 0xa9, 0x56, 0x2a, 0x22, 0x1d, 0x82, 0xf6, 0x40, 0x6d, 0xcb, 0xfd, 0xf5, - 0x40, 0x5b, 0xee, 0xd8, 0x64, 0x86, 0xd3, 0xbc, 0xd1, 0x0d, 0x80, 0x78, 0x27, 0x4e, 0x48, 0xdb, - 0x70, 0xef, 0xd9, 0xc6, 0x8a, 0x9b, 0x6c, 0x04, 0x11, 0xa1, 0xeb, 0xeb, 0x5a, 0xd0, 0x24, 0x2b, - 0x0a, 0x53, 0x9b, 0x50, 0xba, 0x0d, 0x1b, 0x94, 0xec, 0x7f, 0x58, 0x82, 0x93, 0xd9, 0x2e, 0xa1, - 0x0f, 0xc1, 0x88, 0xe4, 0x6e, 0xdc, 0xa5, 0x26, 0xc3, 0x4b, 0x46, 0xb0, 0x01, 0xbb, 0xbb, 0x3b, - 0x31, 0xd1, 0x7d, 0x99, 0xdd, 0xa4, 0x89, 0x82, 0x53, 0xc4, 0xf8, 0x01, 0x94, 0x38, 0x29, 0xad, - 0xef, 0x4c, 0x87, 0xa1, 0x38, 0x45, 0x32, 0x0e, 0xa0, 0x4c, 0x28, 0xce, 0x60, 0xa3, 0x65, 0x38, - 0x63, 0xb4, 0x5c, 0x23, 0x6e, 0x6b, 0x63, 0x2d, 0x88, 0xe4, 0x0e, 0xec, 0x51, 0x1d, 0x00, 0xd6, - 0x8d, 0x83, 0x73, 0x9f, 0xa4, 0xda, 0xbe, 0xe1, 0x84, 0x4e, 0xc3, 0x4d, 0x76, 0x84, 0xbf, 0x52, - 0xc9, 0xa6, 0x19, 0xd1, 0x8e, 0x15, 0x86, 0xbd, 0x08, 0x03, 0x7d, 0xce, 0xa0, 0xbe, 0x2c, 0xff, - 0x97, 0xa0, 0x4a, 0xc9, 0x49, 0xf3, 0xae, 0x08, 0x92, 0x01, 0x54, 0xe5, 0x1d, 0x27, 0xc8, 0x86, - 0xb2, 0xeb, 0xc8, 0x33, 0x3e, 0xf5, 0x5a, 0xf3, 0x71, 0xdc, 0x61, 0x9b, 0x69, 0x0a, 0x44, 0x4f, - 0x40, 0x99, 0x6c, 0x87, 0xd9, 0xc3, 0xbc, 0x8b, 0xdb, 0xa1, 0x1b, 0x91, 0x98, 0x22, 0x91, 0xed, - 0x10, 0x9d, 0x83, 0x92, 0xdb, 0x14, 0x4a, 0x0a, 0x04, 0x4e, 0x69, 0x7e, 0x16, 0x97, 0xdc, 0xa6, - 0xbd, 0x0d, 0x35, 0x75, 0xa9, 0x0a, 0xda, 0x94, 0xb2, 0xdb, 0x2a, 0x22, 0x34, 0x4a, 0xd2, 0xed, - 0x21, 0xb5, 0x3b, 0x00, 0x3a, 0xd5, 0xb0, 0x28, 0xf9, 0x72, 0x1e, 0x06, 0x1a, 0x81, 0x48, 0x83, - 0xae, 0x6a, 0x32, 0x4c, 0x68, 0x33, 0x88, 0x7d, 0x13, 0xc6, 0xae, 0xfa, 0xc1, 0x6d, 0x56, 0x11, - 0x9e, 0x15, 0x40, 0xa3, 0x84, 0xd7, 0xe9, 0x8f, 0xac, 0x89, 0xc0, 0xa0, 0x98, 0xc3, 0x54, 0x65, - 0xa8, 0x52, 0xaf, 0xca, 0x50, 0xf6, 0x27, 0x2c, 0x18, 0x51, 0x39, 0x4b, 0x73, 0x5b, 0x9b, 0x94, - 0x6e, 0x2b, 0x0a, 0x3a, 0x61, 0x96, 0x2e, 0xbb, 0xf6, 0x08, 0x73, 0x98, 0x99, 0xcc, 0x57, 0xda, - 0x27, 0x99, 0xef, 0x3c, 0x0c, 0x6c, 0xba, 0x7e, 0x33, 0x7b, 0x8f, 0xc7, 0x55, 0xd7, 0x6f, 0x62, - 0x06, 0xa1, 0x5d, 0x38, 0xa9, 0xba, 0x20, 0x15, 0xc2, 0x0b, 0x30, 0xb2, 0xd6, 0x71, 0xbd, 0xa6, - 0xac, 0xec, 0x96, 0xf1, 0xa8, 0xd4, 0x0d, 0x18, 0x4e, 0x61, 0xd2, 0x7d, 0xdd, 0x9a, 0xeb, 0x3b, - 0xd1, 0xce, 0xb2, 0xd6, 0x40, 0x4a, 0x28, 0xd5, 0x15, 0x04, 0x1b, 0x58, 0xf6, 0x1b, 0x65, 0x18, - 0x4b, 0x67, 0x6e, 0xf5, 0xb1, 0xbd, 0x7a, 0x02, 0x2a, 0x2c, 0x99, 0x2b, 0xfb, 0x69, 0x79, 0x31, - 0x34, 0x0e, 0x43, 0x31, 0x0c, 0xf2, 0x32, 0x10, 0xc5, 0xdc, 0x81, 0xa3, 0x3a, 0xa9, 0xfc, 0x30, - 0x2c, 0xee, 0x4c, 0x54, 0x9e, 0x10, 0xac, 0xd0, 0xa7, 0x2d, 0x18, 0x0a, 0x42, 0xb3, 0xa2, 0xd0, - 0x07, 0x8b, 0xcc, 0x6a, 0x13, 0x49, 0x35, 0xc2, 0x22, 0x56, 0x9f, 0x5e, 0x7e, 0x0e, 0xc9, 0xfa, - 0xdc, 0x7b, 0x61, 0xc4, 0xc4, 0xdc, 0xcf, 0x28, 0xae, 0x9a, 0x46, 0xf1, 0x67, 0xcd, 0x49, 0x21, - 0xf2, 0xf6, 0xfa, 0x58, 0x6e, 0xd7, 0xa1, 0xd2, 0x50, 0x81, 0x02, 0x87, 0xaa, 0x07, 0xaa, 0xea, - 0x32, 0xb0, 0xc3, 0x22, 0x4e, 0xcd, 0xfe, 0xb6, 0x65, 0xcc, 0x0f, 0x4c, 0xe2, 0xf9, 0x26, 0x8a, - 0xa0, 0xdc, 0xda, 0xda, 0x14, 0xa6, 0xe8, 0x95, 0x82, 0x86, 0x77, 0x6e, 0x6b, 0x53, 0xcf, 0x71, - 0xb3, 0x15, 0x53, 0x66, 0x7d, 0x38, 0x0b, 0x53, 0xe9, 0x9d, 0xe5, 0xfd, 0xd3, 0x3b, 0xed, 0x37, - 0x4b, 0x70, 0xaa, 0x6b, 0x52, 0xa1, 0xd7, 0xa1, 0x12, 0xd1, 0xb7, 0x14, 0xaf, 0xb7, 0x50, 0x58, - 0x42, 0x66, 0x3c, 0xdf, 0xd4, 0x7a, 0x37, 0xdd, 0x8e, 0x39, 0x4b, 0x74, 0x05, 0x90, 0x0e, 0x67, - 0x51, 0x9e, 0x4a, 0xfe, 0xca, 0xe7, 0xc4, 0xa3, 0x68, 0xba, 0x0b, 0x03, 0xe7, 0x3c, 0x85, 0x5e, - 0xcc, 0x3a, 0x3c, 0xcb, 0xe9, 0xf3, 0xcd, 0xbd, 0x7c, 0x97, 0xf6, 0xbf, 0x28, 0xc1, 0x68, 0xaa, - 0xc0, 0x13, 0xf2, 0xa0, 0x4a, 0x3c, 0xe6, 0xfc, 0x97, 0xca, 0xe6, 0xa8, 0xf5, 0x92, 0x95, 0x82, - 0xbc, 0x28, 0xe8, 0x62, 0xc5, 0xe1, 0xc1, 0x38, 0x84, 0x7f, 0x01, 0x46, 0x64, 0x87, 0x3e, 0xe8, - 0xb4, 0x3d, 0x31, 0x80, 0x6a, 0x8e, 0x5e, 0x34, 0x60, 0x38, 0x85, 0x69, 0xff, 0x4e, 0x19, 0xc6, - 0xf9, 0x69, 0x49, 0x53, 0xcd, 0xbc, 0x45, 0xb9, 0xdf, 0xfa, 0xab, 0xba, 0x0c, 0x1b, 0x1f, 0xc8, - 0xb5, 0xa3, 0x5e, 0x4f, 0x90, 0xcf, 0xa8, 0xaf, 0x08, 0xae, 0xaf, 0x66, 0x22, 0xb8, 0xb8, 0xd9, - 0xdd, 0x3a, 0xa6, 0x1e, 0x7d, 0x6f, 0x85, 0x74, 0xfd, 0xbd, 0x12, 0x9c, 0xc8, 0xdc, 0xfd, 0x80, - 0xde, 0x48, 0x97, 0x0b, 0xb6, 0x8a, 0xf0, 0xa9, 0xef, 0x79, 0x1d, 0xc0, 0xc1, 0x8a, 0x06, 0xdf, - 0xa7, 0xa5, 0x62, 0xff, 0x41, 0x09, 0xc6, 0xd2, 0x97, 0x56, 0x3c, 0x80, 0x23, 0xf5, 0x2e, 0xa8, - 0xb1, 0xba, 0xec, 0xec, 0x32, 0x4e, 0xee, 0x92, 0xe7, 0x25, 0xb0, 0x65, 0x23, 0xd6, 0xf0, 0x07, - 0xa2, 0x16, 0xb3, 0xfd, 0xf7, 0x2d, 0x38, 0xcb, 0xdf, 0x32, 0x3b, 0x0f, 0xff, 0x5a, 0xde, 0xe8, - 0xbe, 0x52, 0x6c, 0x07, 0x33, 0xe5, 0x03, 0xf7, 0x1b, 0x5f, 0x76, 0x09, 0xa0, 0xe8, 0x6d, 0x7a, - 0x2a, 0x3c, 0x80, 0x9d, 0x3d, 0xd0, 0x64, 0xb0, 0xff, 0xa0, 0x0c, 0xfa, 0xde, 0x43, 0xe4, 0x8a, - 0x5c, 0xc8, 0x42, 0xca, 0x28, 0xae, 0xec, 0xf8, 0x0d, 0x7d, 0xc3, 0x62, 0x35, 0x93, 0x0a, 0xf9, - 0x73, 0x16, 0x0c, 0xbb, 0xbe, 0x9b, 0xb8, 0x0e, 0xdb, 0x46, 0x17, 0x73, 0x27, 0x9b, 0x62, 0x37, - 0xcf, 0x29, 0x07, 0x91, 0x79, 0x8e, 0xa3, 0x98, 0x61, 0x93, 0x33, 0xfa, 0x88, 0x08, 0xb2, 0x2e, - 0x17, 0x96, 0xc5, 0x5b, 0xcd, 0x44, 0x56, 0x87, 0xd4, 0xf0, 0x4a, 0xa2, 0x82, 0x92, 0xdf, 0x31, - 0x25, 0xa5, 0x2a, 0xf2, 0xea, 0x1b, 0xa8, 0x69, 0x33, 0xe6, 0x8c, 0xec, 0x18, 0x50, 0xf7, 0x58, - 0x1c, 0x30, 0x80, 0x75, 0x0a, 0x6a, 0x4e, 0x27, 0x09, 0xda, 0x74, 0x98, 0xc4, 0x51, 0x93, 0x0e, - 0xd1, 0x95, 0x00, 0xac, 0x71, 0xec, 0x37, 0x2a, 0x90, 0x49, 0x4e, 0x44, 0xdb, 0xe6, 0x9d, 0x9d, - 0x56, 0xb1, 0x77, 0x76, 0xaa, 0xce, 0xe4, 0xdd, 0xdb, 0x89, 0x5a, 0x50, 0x09, 0x37, 0x9c, 0x58, - 0x9a, 0xd5, 0x2f, 0xa9, 0x7d, 0x1c, 0x6d, 0xbc, 0xbb, 0x3b, 0xf1, 0xe3, 0xfd, 0x79, 0x5d, 0xe9, - 0x5c, 0x9d, 0xe2, 0x65, 0x4e, 0x34, 0x6b, 0x46, 0x03, 0x73, 0xfa, 0x07, 0xb9, 0x95, 0xee, 0x93, - 0xa2, 0x00, 0x3d, 0x26, 0x71, 0xc7, 0x4b, 0xc4, 0x6c, 0x78, 0xa9, 0xc0, 0x55, 0xc6, 0x09, 0xeb, - 0xb4, 0x7a, 0xfe, 0x1f, 0x1b, 0x4c, 0xd1, 0x87, 0xa0, 0x16, 0x27, 0x4e, 0x94, 0x1c, 0x32, 0x11, - 0x56, 0x0d, 0xfa, 0x8a, 0x24, 0x82, 0x35, 0x3d, 0xf4, 0x32, 0xab, 0x2a, 0xeb, 0xc6, 0x1b, 0x87, - 0xcc, 0x8d, 0x90, 0x15, 0x68, 0x05, 0x05, 0x6c, 0x50, 0x43, 0x17, 0x00, 0xd8, 0xdc, 0xe6, 0x01, - 0x81, 0x55, 0xe6, 0x65, 0x52, 0xa2, 0x10, 0x2b, 0x08, 0x36, 0xb0, 0xec, 0x1f, 0x86, 0x74, 0x5d, - 0x08, 0x34, 0x21, 0xcb, 0x50, 0x70, 0x2f, 0x34, 0xcb, 0x71, 0x48, 0x55, 0x8c, 0xf8, 0x75, 0x0b, - 0xcc, 0xe2, 0x15, 0xe8, 0x35, 0x5e, 0x25, 0xc3, 0x2a, 0xe2, 0xe4, 0xd0, 0xa0, 0x3b, 0xb9, 0xe8, - 0x84, 0x99, 0x23, 0x6c, 0x59, 0x2a, 0xe3, 0xdc, 0x7b, 0xa0, 0x2a, 0xa1, 0x07, 0x32, 0xea, 0x3e, - 0x0e, 0xa7, 0xb3, 0x37, 0x9a, 0x8b, 0x53, 0xa7, 0xfd, 0x5d, 0x3f, 0xd2, 0x9f, 0x53, 0xea, 0xe5, - 0xcf, 0xe9, 0xe3, 0xe6, 0xd6, 0xdf, 0xb0, 0xe0, 0xfc, 0x7e, 0x17, 0xaf, 0xa3, 0x47, 0x61, 0xe0, - 0xb6, 0x13, 0xc9, 0x72, 0xdf, 0x4c, 0x50, 0xde, 0x74, 0x22, 0x1f, 0xb3, 0x56, 0xb4, 0x03, 0x83, - 0x3c, 0x6a, 0x4c, 0x58, 0xeb, 0x2f, 0x15, 0x7b, 0x0d, 0xfc, 0x55, 0x62, 0x6c, 0x17, 0x78, 0xc4, - 0x1a, 0x16, 0x0c, 0xed, 0xef, 0x58, 0x80, 0x96, 0xb6, 0x48, 0x14, 0xb9, 0x4d, 0x23, 0xce, 0x8d, - 0x5d, 0xe4, 0x62, 0x5c, 0xd8, 0x62, 0xa6, 0xc2, 0x66, 0x2e, 0x72, 0x31, 0xfe, 0xe5, 0x5f, 0xe4, - 0x52, 0x3a, 0xd8, 0x45, 0x2e, 0x68, 0x09, 0xce, 0xb6, 0xf9, 0x76, 0x83, 0x5f, 0x8e, 0xc0, 0xf7, - 0x1e, 0x2a, 0xf1, 0xec, 0x91, 0x3b, 0xbb, 0x13, 0x67, 0x17, 0xf3, 0x10, 0x70, 0xfe, 0x73, 0xf6, - 0x7b, 0x00, 0xf1, 0xf0, 0xb6, 0x99, 0xbc, 0x58, 0xa5, 0x9e, 0xee, 0x17, 0xfb, 0x2b, 0x15, 0x38, - 0x91, 0x29, 0x06, 0x4b, 0xb7, 0x7a, 0xdd, 0xc1, 0x51, 0x47, 0xd6, 0xdf, 0xdd, 0xdd, 0xeb, 0x2b, - 0xdc, 0xca, 0x87, 0x8a, 0xeb, 0x87, 0x9d, 0xa4, 0x98, 0x5c, 0x53, 0xde, 0x89, 0x79, 0x4a, 0xd0, - 0x70, 0x17, 0xd3, 0xbf, 0x98, 0xb3, 0x29, 0x32, 0x78, 0x2b, 0x65, 0x8c, 0x0f, 0xdc, 0x27, 0x77, - 0xc0, 0x27, 0x75, 0x28, 0x55, 0xa5, 0x08, 0xc7, 0x62, 0x66, 0xb2, 0x1c, 0xf7, 0x51, 0xfb, 0xaf, - 0x95, 0x60, 0xd8, 0xf8, 0x68, 0xe8, 0x97, 0xd2, 0xa5, 0x9d, 0xac, 0xe2, 0x5e, 0x89, 0xd1, 0x9f, - 0xd4, 0xc5, 0x9b, 0xf8, 0x2b, 0x3d, 0xd9, 0x5d, 0xd5, 0xe9, 0xee, 0xee, 0xc4, 0xc9, 0x4c, 0xdd, - 0xa6, 0x54, 0xa5, 0xa7, 0x73, 0x1f, 0x83, 0x13, 0x19, 0x32, 0x39, 0xaf, 0xbc, 0x9a, 0xbe, 0xb0, - 0xfe, 0x88, 0x6e, 0x29, 0x73, 0xc8, 0xbe, 0x41, 0x87, 0x4c, 0xa4, 0xdb, 0x05, 0x1e, 0xe9, 0xc3, - 0x07, 0x9b, 0xc9, 0xaa, 0x2d, 0xf5, 0x99, 0x55, 0xfb, 0x14, 0x54, 0xc3, 0xc0, 0x73, 0x1b, 0xae, - 0xaa, 0x7f, 0xc8, 0xf2, 0x78, 0x97, 0x45, 0x1b, 0x56, 0x50, 0x74, 0x1b, 0x6a, 0xea, 0x6e, 0x7f, - 0xe1, 0xdf, 0x2e, 0xea, 0xd0, 0x47, 0x19, 0x2d, 0xfa, 0xce, 0x7e, 0xcd, 0x0b, 0xd9, 0x30, 0xc8, - 0x94, 0xa0, 0x4c, 0x11, 0x60, 0xbe, 0x77, 0xa6, 0x1d, 0x63, 0x2c, 0x20, 0xf6, 0xd7, 0x6b, 0x70, - 0x26, 0xaf, 0x22, 0x37, 0xfa, 0x28, 0x0c, 0xf2, 0x3e, 0x16, 0x73, 0xe9, 0x43, 0x1e, 0x8f, 0x39, - 0x46, 0x50, 0x74, 0x8b, 0xfd, 0xc6, 0x82, 0xa7, 0xe0, 0xee, 0x39, 0x6b, 0x62, 0x86, 0x1c, 0x0f, - 0xf7, 0x05, 0x47, 0x73, 0x5f, 0x70, 0x38, 0x77, 0xcf, 0x59, 0x43, 0xdb, 0x50, 0x69, 0xb9, 0x09, - 0x71, 0x84, 0x13, 0xe1, 0xe6, 0xb1, 0x30, 0x27, 0x0e, 0xb7, 0xd2, 0xd8, 0x4f, 0xcc, 0x19, 0xa2, - 0xaf, 0x59, 0x70, 0x62, 0x2d, 0x9d, 0x42, 0x2f, 0x84, 0xa7, 0x73, 0x0c, 0x55, 0xd7, 0xd3, 0x8c, - 0xf8, 0x4d, 0x46, 0x99, 0x46, 0x9c, 0xed, 0x0e, 0xfa, 0x94, 0x05, 0x43, 0xeb, 0xae, 0x67, 0x14, - 0xe0, 0x3d, 0x86, 0x8f, 0x73, 0x89, 0x31, 0xd0, 0x3b, 0x0e, 0xfe, 0x3f, 0xc6, 0x92, 0x73, 0x2f, - 0x4d, 0x35, 0x78, 0x54, 0x4d, 0x35, 0x74, 0x9f, 0x34, 0xd5, 0x67, 0x2c, 0xa8, 0xa9, 0x91, 0x16, - 0x69, 0xd1, 0x1f, 0x3a, 0xc6, 0x4f, 0xce, 0x3d, 0x27, 0xea, 0x2f, 0xd6, 0xcc, 0xd1, 0x17, 0x2d, - 0x18, 0x76, 0x5e, 0xef, 0x44, 0xa4, 0x49, 0xb6, 0x82, 0x30, 0x16, 0xd7, 0x20, 0xbe, 0x52, 0x7c, - 0x67, 0xa6, 0x29, 0x93, 0x59, 0xb2, 0xb5, 0x14, 0xc6, 0x22, 0x7d, 0x49, 0x37, 0x60, 0xb3, 0x0b, - 0xf6, 0x6e, 0x09, 0x26, 0xf6, 0xa1, 0x80, 0x5e, 0x80, 0x91, 0x20, 0x6a, 0x39, 0xbe, 0xfb, 0xba, - 0x59, 0x13, 0x43, 0x59, 0x59, 0x4b, 0x06, 0x0c, 0xa7, 0x30, 0xcd, 0xc4, 0xed, 0xd2, 0x3e, 0x89, - 0xdb, 0xe7, 0x61, 0x20, 0x22, 0x61, 0x90, 0xdd, 0x2c, 0xb0, 0xd4, 0x01, 0x06, 0x41, 0x8f, 0x41, - 0xd9, 0x09, 0x5d, 0x11, 0x88, 0xa6, 0xf6, 0x40, 0xd3, 0xcb, 0xf3, 0x98, 0xb6, 0xa7, 0xea, 0x48, - 0x54, 0xee, 0x49, 0x1d, 0x09, 0xaa, 0x06, 0xc4, 0xd9, 0xc5, 0xa0, 0x56, 0x03, 0xe9, 0x33, 0x05, - 0xfb, 0xcd, 0x32, 0x3c, 0xb6, 0xe7, 0x7c, 0xd1, 0x71, 0x78, 0xd6, 0x1e, 0x71, 0x78, 0x72, 0x78, - 0x4a, 0xfb, 0x0d, 0x4f, 0xb9, 0xc7, 0xf0, 0x7c, 0x8a, 0x2e, 0x03, 0x59, 0x4b, 0xa4, 0x98, 0x8b, - 0xec, 0x7a, 0x95, 0x26, 0x11, 0x2b, 0x40, 0x42, 0xb1, 0xe6, 0x4b, 0xf7, 0x00, 0xa9, 0xa4, 0xe5, - 0x4a, 0x11, 0x6a, 0xa0, 0x67, 0x6d, 0x11, 0x3e, 0xf7, 0x7b, 0x65, 0x42, 0xdb, 0x3f, 0x5f, 0x82, - 0x27, 0xfa, 0x90, 0xde, 0xe6, 0x2c, 0xb6, 0xfa, 0x9c, 0xc5, 0xdf, 0xdb, 0x9f, 0xc9, 0xfe, 0xeb, - 0x16, 0x9c, 0xeb, 0xad, 0x3c, 0xd0, 0xb3, 0x30, 0xbc, 0x16, 0x39, 0x7e, 0x63, 0x83, 0x5d, 0xce, - 0x29, 0x07, 0x85, 0x8d, 0xb5, 0x6e, 0xc6, 0x26, 0x0e, 0xdd, 0xde, 0xf2, 0x98, 0x04, 0x03, 0x43, - 0x26, 0x99, 0xd2, 0xed, 0xed, 0x6a, 0x16, 0x88, 0xbb, 0xf1, 0xed, 0x3f, 0x2b, 0xe5, 0x77, 0x8b, - 0x1b, 0x19, 0x07, 0xf9, 0x4e, 0xe2, 0x2b, 0x94, 0xfa, 0x90, 0x25, 0xe5, 0x7b, 0x2d, 0x4b, 0x06, - 0x7a, 0xc9, 0x12, 0x34, 0x0b, 0x27, 0x8d, 0xcb, 0x5b, 0x78, 0xe2, 0x30, 0x0f, 0xb8, 0x55, 0xd5, - 0x34, 0x96, 0x33, 0x70, 0xdc, 0xf5, 0x04, 0x7a, 0x1a, 0xaa, 0xae, 0x1f, 0x93, 0x46, 0x27, 0xe2, - 0x81, 0xde, 0x46, 0xb2, 0xd6, 0xbc, 0x68, 0xc7, 0x0a, 0xc3, 0xfe, 0xe5, 0x12, 0x3c, 0xd2, 0xd3, - 0xce, 0xba, 0x47, 0xb2, 0xcb, 0xfc, 0x1c, 0x03, 0xf7, 0xe6, 0x73, 0x98, 0x83, 0x54, 0xd9, 0x77, - 0x90, 0xfe, 0xb0, 0xf7, 0xc4, 0xa4, 0x36, 0xf7, 0xf7, 0xed, 0x28, 0xbd, 0x08, 0xa3, 0x4e, 0x18, - 0x72, 0x3c, 0x16, 0xaf, 0x99, 0xa9, 0xa6, 0x33, 0x6d, 0x02, 0x71, 0x1a, 0xb7, 0x2f, 0xed, 0xf9, - 0xc7, 0x16, 0xd4, 0x30, 0x59, 0xe7, 0xd2, 0x01, 0xdd, 0x12, 0x43, 0x64, 0x15, 0x51, 0x77, 0x93, - 0x0e, 0x6c, 0xec, 0xb2, 0x7a, 0x94, 0x79, 0x83, 0xdd, 0x7d, 0xc9, 0x4f, 0xe9, 0x40, 0x97, 0xfc, - 0xa8, 0x6b, 0x5e, 0xca, 0xbd, 0xaf, 0x79, 0xb1, 0xbf, 0x31, 0x44, 0x5f, 0x2f, 0x0c, 0x66, 0x22, - 0xd2, 0x8c, 0xe9, 0xf7, 0xed, 0x44, 0x9e, 0x98, 0x24, 0xea, 0xfb, 0x5e, 0xc7, 0x0b, 0x98, 0xb6, - 0xa7, 0x8e, 0x62, 0x4a, 0x07, 0xaa, 0x25, 0x52, 0xde, 0xb7, 0x96, 0xc8, 0x8b, 0x30, 0x1a, 0xc7, - 0x1b, 0xcb, 0x91, 0xbb, 0xe5, 0x24, 0xe4, 0x2a, 0xd9, 0x11, 0x56, 0x96, 0xce, 0xff, 0x5f, 0xb9, - 0xac, 0x81, 0x38, 0x8d, 0x8b, 0xe6, 0xe0, 0x94, 0xae, 0xe8, 0x41, 0xa2, 0x84, 0x45, 0xf7, 0xf3, - 0x99, 0xa0, 0x92, 0x7d, 0x75, 0x0d, 0x10, 0x81, 0x80, 0xbb, 0x9f, 0xa1, 0xf2, 0x2d, 0xd5, 0x48, - 0x3b, 0x32, 0x98, 0x96, 0x6f, 0x29, 0x3a, 0xb4, 0x2f, 0x5d, 0x4f, 0xa0, 0x45, 0x38, 0xcd, 0x27, - 0xc6, 0x74, 0x18, 0x1a, 0x6f, 0x34, 0x94, 0xae, 0x77, 0x38, 0xd7, 0x8d, 0x82, 0xf3, 0x9e, 0x43, - 0xcf, 0xc3, 0xb0, 0x6a, 0x9e, 0x9f, 0x15, 0xa7, 0x08, 0xca, 0x8b, 0xa1, 0xc8, 0xcc, 0x37, 0xb1, - 0x89, 0x87, 0x3e, 0x08, 0x0f, 0xeb, 0xbf, 0x3c, 0x05, 0x8c, 0x1f, 0xad, 0xcd, 0x8a, 0x62, 0x49, - 0xea, 0x52, 0x91, 0xb9, 0x5c, 0xb4, 0x26, 0xee, 0xf5, 0x3c, 0x5a, 0x83, 0x73, 0x0a, 0x74, 0xd1, - 0x4f, 0x58, 0x3e, 0x47, 0x4c, 0xea, 0x4e, 0x4c, 0xae, 0x47, 0x9e, 0xb8, 0x95, 0x55, 0xdd, 0xf7, - 0x38, 0xe7, 0x26, 0x97, 0xf3, 0x30, 0xf1, 0x02, 0xde, 0x83, 0x0a, 0x9a, 0x82, 0x1a, 0xf1, 0x9d, - 0x35, 0x8f, 0x2c, 0xcd, 0xcc, 0xb3, 0xa2, 0x4b, 0xc6, 0x49, 0xde, 0x45, 0x09, 0xc0, 0x1a, 0x47, - 0x45, 0x98, 0x8e, 0xf4, 0xbc, 0x7b, 0x74, 0x19, 0xce, 0xb4, 0x1a, 0x21, 0xb5, 0x3d, 0xdc, 0x06, - 0x99, 0x6e, 0xb0, 0x80, 0x3a, 0xfa, 0x61, 0x78, 0x21, 0x4a, 0x15, 0x3e, 0x3d, 0x37, 0xb3, 0xdc, - 0x85, 0x83, 0x73, 0x9f, 0x64, 0x81, 0x97, 0x51, 0xb0, 0xbd, 0x33, 0x7e, 0x3a, 0x13, 0x78, 0x49, - 0x1b, 0x31, 0x87, 0xa1, 0x2b, 0x80, 0x58, 0x2c, 0xfe, 0xe5, 0x24, 0x09, 0x95, 0xb1, 0x33, 0x7e, - 0x86, 0xbd, 0x92, 0x0a, 0x23, 0xbb, 0xd4, 0x85, 0x81, 0x73, 0x9e, 0xb2, 0xff, 0xa3, 0x05, 0xa3, - 0x6a, 0xbd, 0xde, 0x83, 0x6c, 0x14, 0x2f, 0x9d, 0x8d, 0x32, 0x77, 0x74, 0x89, 0xc7, 0x7a, 0xde, - 0x23, 0xa4, 0xf9, 0x67, 0x86, 0x01, 0xb4, 0x54, 0x54, 0x0a, 0xc9, 0xea, 0xa9, 0x90, 0x1e, 0x58, - 0x89, 0x94, 0x57, 0x61, 0xa5, 0x72, 0x7f, 0x2b, 0xac, 0xac, 0xc0, 0x59, 0x69, 0x2e, 0xf0, 0xb3, - 0xa2, 0xcb, 0x41, 0xac, 0x04, 0x5c, 0xb5, 0xfe, 0x98, 0x20, 0x74, 0x76, 0x3e, 0x0f, 0x09, 0xe7, - 0x3f, 0x9b, 0xb2, 0x52, 0x86, 0xf6, 0xb3, 0x52, 0xf4, 0x9a, 0x5e, 0x58, 0x97, 0xb7, 0x87, 0x64, - 0xd6, 0xf4, 0xc2, 0xa5, 0x15, 0xac, 0x71, 0xf2, 0x05, 0x7b, 0xad, 0x20, 0xc1, 0x0e, 0x07, 0x16, - 0xec, 0x52, 0xc4, 0x0c, 0xf7, 0x14, 0x31, 0xd2, 0x27, 0x3d, 0xd2, 0xd3, 0x27, 0xfd, 0x3e, 0x18, - 0x73, 0xfd, 0x0d, 0x12, 0xb9, 0x09, 0x69, 0xb2, 0xb5, 0xc0, 0xc4, 0x4f, 0x55, 0xab, 0xf5, 0xf9, - 0x14, 0x14, 0x67, 0xb0, 0xd3, 0x72, 0x71, 0xac, 0x0f, 0xb9, 0xd8, 0x43, 0x1b, 0x9d, 0x28, 0x46, - 0x1b, 0x9d, 0x3c, 0xba, 0x36, 0x3a, 0x75, 0xac, 0xda, 0x08, 0x15, 0xa2, 0x8d, 0xfa, 0x12, 0xf4, - 0xc6, 0xf6, 0xef, 0xcc, 0x3e, 0xdb, 0xbf, 0x5e, 0xaa, 0xe8, 0xec, 0xa1, 0x55, 0x51, 0xbe, 0x96, - 0x79, 0xe8, 0x50, 0x5a, 0xe6, 0x33, 0x25, 0x38, 0xab, 0xe5, 0x30, 0x9d, 0xfd, 0xee, 0x3a, 0x95, - 0x44, 0xec, 0x02, 0x2a, 0x7e, 0x6e, 0x63, 0x24, 0x47, 0xe9, 0x3c, 0x2b, 0x05, 0xc1, 0x06, 0x16, - 0xcb, 0x31, 0x22, 0x11, 0x2b, 0xb7, 0x9b, 0x15, 0xd2, 0x33, 0xa2, 0x1d, 0x2b, 0x0c, 0x3a, 0xbf, - 0xe8, 0x6f, 0x91, 0xb7, 0x99, 0x2d, 0x2a, 0x37, 0xa3, 0x41, 0xd8, 0xc4, 0x43, 0x4f, 0x71, 0x26, - 0x4c, 0x40, 0x50, 0x41, 0x3d, 0x22, 0x6e, 0xa4, 0x95, 0x32, 0x41, 0x41, 0x65, 0x77, 0x58, 0x32, - 0x59, 0xa5, 0xbb, 0x3b, 0x2c, 0x04, 0x4a, 0x61, 0xd8, 0xff, 0xcb, 0x82, 0x47, 0x72, 0x87, 0xe2, - 0x1e, 0x28, 0xdf, 0xed, 0xb4, 0xf2, 0x5d, 0x29, 0x6a, 0xbb, 0x61, 0xbc, 0x45, 0x0f, 0x45, 0xfc, - 0xef, 0x2d, 0x18, 0xd3, 0xf8, 0xf7, 0xe0, 0x55, 0xdd, 0xf4, 0xab, 0x16, 0xb7, 0xb3, 0xaa, 0x75, - 0xbd, 0xdb, 0xef, 0x94, 0x40, 0x15, 0x7a, 0x9c, 0x6e, 0xc8, 0x32, 0xba, 0xfb, 0x9c, 0x24, 0xee, - 0xc0, 0x20, 0x3b, 0x08, 0x8d, 0x8b, 0x09, 0xf2, 0x48, 0xf3, 0x67, 0x87, 0xaa, 0xfa, 0x90, 0x99, - 0xfd, 0x8d, 0xb1, 0x60, 0xc8, 0x8a, 0x41, 0xbb, 0x31, 0x95, 0xe6, 0x4d, 0x91, 0x96, 0xa5, 0x8b, - 0x41, 0x8b, 0x76, 0xac, 0x30, 0xa8, 0x7a, 0x70, 0x1b, 0x81, 0x3f, 0xe3, 0x39, 0xb1, 0xbc, 0x75, - 0x51, 0xa9, 0x87, 0x79, 0x09, 0xc0, 0x1a, 0x87, 0x9d, 0x91, 0xba, 0x71, 0xe8, 0x39, 0x3b, 0xc6, - 0xfe, 0xd9, 0xa8, 0x4f, 0xa0, 0x40, 0xd8, 0xc4, 0xb3, 0xdb, 0x30, 0x9e, 0x7e, 0x89, 0x59, 0xb2, - 0xce, 0x02, 0x14, 0xfb, 0x1a, 0xce, 0x29, 0xa8, 0x39, 0xec, 0xa9, 0x85, 0x8e, 0x93, 0xbd, 0x2c, - 0x7d, 0x5a, 0x02, 0xb0, 0xc6, 0xb1, 0x7f, 0xd5, 0x82, 0xd3, 0x39, 0x83, 0x56, 0x60, 0xda, 0x5b, - 0xa2, 0xa5, 0x4d, 0x9e, 0x62, 0x7f, 0x27, 0x0c, 0x35, 0xc9, 0xba, 0x23, 0x43, 0xe0, 0x0c, 0xd9, - 0x3e, 0xcb, 0x9b, 0xb1, 0x84, 0xdb, 0xff, 0xc3, 0x82, 0x13, 0xe9, 0xbe, 0xc6, 0x2c, 0x95, 0x84, - 0x0f, 0x93, 0x1b, 0x37, 0x82, 0x2d, 0x12, 0xed, 0xd0, 0x37, 0xb7, 0x32, 0xa9, 0x24, 0x5d, 0x18, - 0x38, 0xe7, 0x29, 0x56, 0xe6, 0xb5, 0xa9, 0x46, 0x5b, 0xce, 0xc8, 0x1b, 0x45, 0xce, 0x48, 0xfd, - 0x31, 0xcd, 0xe3, 0x72, 0xc5, 0x12, 0x9b, 0xfc, 0xed, 0xef, 0x0c, 0x80, 0xca, 0x8b, 0x65, 0xf1, - 0x47, 0x05, 0x45, 0x6f, 0x1d, 0x34, 0x83, 0x48, 0x4d, 0x86, 0x81, 0xbd, 0x02, 0x02, 0xb8, 0x97, - 0xc4, 0x74, 0x5d, 0xaa, 0x37, 0x5c, 0xd5, 0x20, 0x6c, 0xe2, 0xd1, 0x9e, 0x78, 0xee, 0x16, 0xe1, - 0x0f, 0x0d, 0xa6, 0x7b, 0xb2, 0x20, 0x01, 0x58, 0xe3, 0xd0, 0x9e, 0x34, 0xdd, 0xf5, 0x75, 0xb1, - 0xe5, 0x57, 0x3d, 0xa1, 0xa3, 0x83, 0x19, 0x84, 0x57, 0xee, 0x0e, 0x36, 0x85, 0x15, 0x6c, 0x54, - 0xee, 0x0e, 0x36, 0x31, 0x83, 0x50, 0xbb, 0xcd, 0x0f, 0xa2, 0x36, 0xbb, 0xcc, 0xbe, 0xa9, 0xb8, - 0x08, 0xeb, 0x57, 0xd9, 0x6d, 0xd7, 0xba, 0x51, 0x70, 0xde, 0x73, 0x74, 0x06, 0x86, 0x11, 0x69, - 0xba, 0x8d, 0xc4, 0xa4, 0x06, 0xe9, 0x19, 0xb8, 0xdc, 0x85, 0x81, 0x73, 0x9e, 0x42, 0xd3, 0x70, - 0x42, 0xe6, 0x35, 0xcb, 0xaa, 0x35, 0xc3, 0xe9, 0x2a, 0x19, 0x38, 0x0d, 0xc6, 0x59, 0x7c, 0x2a, - 0xd5, 0xda, 0xa2, 0xb0, 0x15, 0x33, 0x96, 0x0d, 0xa9, 0x26, 0x0b, 0x5e, 0x61, 0x85, 0x61, 0x7f, - 0xb2, 0x4c, 0xb5, 0x70, 0x8f, 0x82, 0x6e, 0xf7, 0x2c, 0x5a, 0x30, 0x3d, 0x23, 0x07, 0xfa, 0x98, - 0x91, 0xcf, 0xc1, 0xc8, 0xad, 0x38, 0xf0, 0x55, 0x24, 0x5e, 0xa5, 0x67, 0x24, 0x9e, 0x81, 0x95, - 0x1f, 0x89, 0x37, 0x58, 0x54, 0x24, 0xde, 0xd0, 0x21, 0x23, 0xf1, 0xbe, 0x55, 0x01, 0x75, 0x85, - 0xc8, 0x35, 0x92, 0xdc, 0x0e, 0xa2, 0x4d, 0xd7, 0x6f, 0xb1, 0x7c, 0xf0, 0xaf, 0x59, 0x30, 0xc2, - 0xd7, 0xcb, 0x82, 0x99, 0x49, 0xb5, 0x5e, 0xd0, 0xdd, 0x14, 0x29, 0x66, 0x93, 0xab, 0x06, 0xa3, - 0xcc, 0xa5, 0x9f, 0x26, 0x08, 0xa7, 0x7a, 0x84, 0x3e, 0x06, 0x20, 0xfd, 0xa3, 0xeb, 0x52, 0x64, - 0xce, 0x17, 0xd3, 0x3f, 0x4c, 0xd6, 0xb5, 0x0d, 0xbc, 0xaa, 0x98, 0x60, 0x83, 0x21, 0xfa, 0x8c, - 0xce, 0x32, 0xe3, 0x21, 0xfb, 0x1f, 0x39, 0x96, 0xb1, 0xe9, 0x27, 0xc7, 0x0c, 0xc3, 0x90, 0xeb, - 0xb7, 0xe8, 0x3c, 0x11, 0x11, 0x4b, 0xef, 0xc8, 0xab, 0xa5, 0xb0, 0x10, 0x38, 0xcd, 0xba, 0xe3, - 0x39, 0x7e, 0x83, 0x44, 0xf3, 0x1c, 0xdd, 0xbc, 0xea, 0x9a, 0x35, 0x60, 0x49, 0xa8, 0xeb, 0xf2, - 0x95, 0x4a, 0x3f, 0x97, 0xaf, 0x9c, 0x7b, 0x3f, 0x9c, 0xea, 0xfa, 0x98, 0x07, 0x4a, 0x29, 0x3b, - 0x7c, 0x36, 0x9a, 0xfd, 0x2f, 0x07, 0xb5, 0xd2, 0xba, 0x16, 0x34, 0xf9, 0x15, 0x20, 0x91, 0xfe, - 0xa2, 0xc2, 0xc6, 0x2d, 0x70, 0x8a, 0x18, 0xd7, 0x65, 0xab, 0x46, 0x6c, 0xb2, 0xa4, 0x73, 0x34, - 0x74, 0x22, 0xe2, 0x1f, 0xf7, 0x1c, 0x5d, 0x56, 0x4c, 0xb0, 0xc1, 0x10, 0x6d, 0xa4, 0x72, 0x4a, - 0x2e, 0x1d, 0x3d, 0xa7, 0x84, 0x55, 0x99, 0xca, 0xab, 0xda, 0xff, 0x45, 0x0b, 0xc6, 0xfc, 0xd4, - 0xcc, 0x2d, 0x26, 0x8c, 0x34, 0x7f, 0x55, 0xf0, 0x1b, 0xa8, 0xd2, 0x6d, 0x38, 0xc3, 0x3f, 0x4f, - 0xa5, 0x55, 0x0e, 0xa8, 0xd2, 0xf4, 0x5d, 0x42, 0x83, 0xbd, 0xee, 0x12, 0x42, 0xbe, 0xba, 0x4c, - 0x6d, 0xa8, 0xf0, 0xcb, 0xd4, 0x20, 0xe7, 0x22, 0xb5, 0x9b, 0x50, 0x6b, 0x44, 0xc4, 0x49, 0x0e, - 0x79, 0xaf, 0x16, 0x3b, 0xa0, 0x9f, 0x91, 0x04, 0xb0, 0xa6, 0x65, 0xff, 0xdf, 0x01, 0x38, 0x29, - 0x47, 0x44, 0x86, 0xa0, 0x53, 0xfd, 0xc8, 0xf9, 0x6a, 0xe3, 0x56, 0xe9, 0xc7, 0xcb, 0x12, 0x80, - 0x35, 0x0e, 0xb5, 0xc7, 0x3a, 0x31, 0x59, 0x0a, 0x89, 0xbf, 0xe0, 0xae, 0xc5, 0xe2, 0x9c, 0x53, - 0x2d, 0x94, 0xeb, 0x1a, 0x84, 0x4d, 0x3c, 0x6a, 0x8c, 0x73, 0xbb, 0x38, 0xce, 0xa6, 0xaf, 0x08, - 0x7b, 0x1b, 0x4b, 0x38, 0xfa, 0x85, 0xdc, 0x0a, 0xb3, 0xc5, 0x24, 0x6e, 0x75, 0x45, 0xde, 0x1f, - 0xf0, 0x2a, 0xc6, 0xbf, 0x63, 0xc1, 0x59, 0xde, 0x2a, 0x47, 0xf2, 0x7a, 0xd8, 0x74, 0x12, 0x12, - 0x17, 0x53, 0xf1, 0x3d, 0xa7, 0x7f, 0xda, 0xc9, 0x9b, 0xc7, 0x16, 0xe7, 0xf7, 0x06, 0xbd, 0x61, - 0xc1, 0x89, 0xcd, 0x54, 0xcd, 0x0f, 0xa9, 0x3a, 0x8e, 0x9a, 0x8e, 0x9f, 0x22, 0xaa, 0x97, 0x5a, - 0xba, 0x3d, 0xc6, 0x59, 0xee, 0xf6, 0x9f, 0x59, 0x60, 0x8a, 0xd1, 0x7b, 0x5f, 0x2a, 0xe4, 0xe0, - 0xa6, 0xa0, 0xb4, 0x2e, 0x2b, 0x3d, 0xad, 0xcb, 0xc7, 0xa0, 0xdc, 0x71, 0x9b, 0x62, 0x7f, 0xa1, - 0x4f, 0x5f, 0xe7, 0x67, 0x31, 0x6d, 0xb7, 0xff, 0x59, 0x45, 0xfb, 0x2d, 0x44, 0x5e, 0xd4, 0xf7, - 0xc5, 0x6b, 0xaf, 0xab, 0x62, 0x63, 0xfc, 0xcd, 0xaf, 0x75, 0x15, 0x1b, 0xfb, 0xd1, 0x83, 0xa7, - 0xbd, 0xf1, 0x01, 0xea, 0x55, 0x6b, 0x6c, 0x68, 0x9f, 0x9c, 0xb7, 0x5b, 0x50, 0xa5, 0x5b, 0x30, - 0xe6, 0x80, 0xac, 0xa6, 0x3a, 0x55, 0xbd, 0x2c, 0xda, 0xef, 0xee, 0x4e, 0xbc, 0xf7, 0xe0, 0xdd, - 0x92, 0x4f, 0x63, 0x45, 0x1f, 0xc5, 0x50, 0xa3, 0xbf, 0x59, 0x7a, 0x9e, 0xd8, 0xdc, 0x5d, 0x57, - 0x32, 0x53, 0x02, 0x0a, 0xc9, 0xfd, 0xd3, 0x7c, 0x90, 0x0f, 0x35, 0x76, 0x6b, 0x2d, 0x63, 0xca, - 0xf7, 0x80, 0xcb, 0x2a, 0x49, 0x4e, 0x02, 0xee, 0xee, 0x4e, 0xbc, 0x78, 0x70, 0xa6, 0xea, 0x71, - 0xac, 0x59, 0xd8, 0x5f, 0x1a, 0xd0, 0x73, 0x57, 0xd4, 0x98, 0xfb, 0xbe, 0x98, 0xbb, 0x2f, 0x64, - 0xe6, 0xee, 0xf9, 0xae, 0xb9, 0x3b, 0xa6, 0x6f, 0x57, 0x4d, 0xcd, 0xc6, 0x7b, 0x6d, 0x08, 0xec, - 0xef, 0x6f, 0x60, 0x16, 0xd0, 0x6b, 0x1d, 0x37, 0x22, 0xf1, 0x72, 0xd4, 0xf1, 0x5d, 0xbf, 0xc5, - 0xa6, 0x63, 0xd5, 0xb4, 0x80, 0x52, 0x60, 0x9c, 0xc5, 0xa7, 0x9b, 0x7a, 0xfa, 0xcd, 0x6f, 0x3a, - 0x5b, 0x7c, 0x56, 0x19, 0x65, 0xb7, 0x56, 0x44, 0x3b, 0x56, 0x18, 0xf6, 0x37, 0xd8, 0x59, 0xb6, - 0x91, 0x17, 0x4c, 0xe7, 0x84, 0xc7, 0xae, 0x09, 0xe6, 0x35, 0xbb, 0xd4, 0x9c, 0xe0, 0x77, 0x03, - 0x73, 0x18, 0xba, 0x0d, 0x43, 0x6b, 0xfc, 0x9e, 0xbc, 0x62, 0xea, 0x98, 0x8b, 0x4b, 0xf7, 0xd8, - 0x6d, 0x28, 0xf2, 0x06, 0xbe, 0xbb, 0xfa, 0x27, 0x96, 0xdc, 0xec, 0xdf, 0xaf, 0xc0, 0x89, 0xcc, - 0x45, 0xb2, 0xa9, 0x6a, 0xa9, 0xa5, 0x7d, 0xab, 0xa5, 0x7e, 0x18, 0xa0, 0x49, 0x42, 0x2f, 0xd8, - 0x61, 0xe6, 0xd8, 0xc0, 0x81, 0xcd, 0x31, 0x65, 0xc1, 0xcf, 0x2a, 0x2a, 0xd8, 0xa0, 0x28, 0x0a, - 0x95, 0xf1, 0xe2, 0xab, 0x99, 0x42, 0x65, 0xc6, 0x6d, 0x07, 0x83, 0xf7, 0xf6, 0xb6, 0x03, 0x17, - 0x4e, 0xf0, 0x2e, 0xaa, 0xec, 0xdb, 0x43, 0x24, 0xd9, 0xb2, 0xfc, 0x85, 0xd9, 0x34, 0x19, 0x9c, - 0xa5, 0x7b, 0x3f, 0xef, 0x89, 0x46, 0xef, 0x82, 0x9a, 0xfc, 0xce, 0xf1, 0x78, 0x4d, 0x57, 0x30, - 0x90, 0xd3, 0x80, 0xdd, 0xdf, 0x2c, 0x7e, 0x76, 0x15, 0x12, 0x80, 0xfb, 0x55, 0x48, 0xc0, 0xfe, - 0x42, 0x89, 0xda, 0xf1, 0xbc, 0x5f, 0xaa, 0x26, 0xce, 0x93, 0x30, 0xe8, 0x74, 0x92, 0x8d, 0xa0, - 0xeb, 0xd6, 0xbf, 0x69, 0xd6, 0x8a, 0x05, 0x14, 0x2d, 0xc0, 0x40, 0x53, 0xd7, 0x39, 0x39, 0xc8, - 0xf7, 0xd4, 0x2e, 0x51, 0x27, 0x21, 0x98, 0x51, 0x41, 0x8f, 0xc2, 0x40, 0xe2, 0xb4, 0x64, 0xca, - 0x15, 0x4b, 0xb3, 0x5d, 0x75, 0x5a, 0x31, 0x66, 0xad, 0xa6, 0xfa, 0x1e, 0xd8, 0x47, 0x7d, 0xbf, - 0x08, 0xa3, 0xb1, 0xdb, 0xf2, 0x9d, 0xa4, 0x13, 0x11, 0xe3, 0x98, 0x4f, 0x47, 0x6e, 0x98, 0x40, - 0x9c, 0xc6, 0xb5, 0x7f, 0x73, 0x04, 0xce, 0xac, 0xcc, 0x2c, 0xca, 0xea, 0xdd, 0xc7, 0x96, 0x35, - 0x95, 0xc7, 0xe3, 0xde, 0x65, 0x4d, 0xf5, 0xe0, 0xee, 0x19, 0x59, 0x53, 0x9e, 0x91, 0x35, 0x95, - 0x4e, 0x61, 0x29, 0x17, 0x91, 0xc2, 0x92, 0xd7, 0x83, 0x7e, 0x52, 0x58, 0x8e, 0x2d, 0x8d, 0x6a, - 0xcf, 0x0e, 0x1d, 0x28, 0x8d, 0x4a, 0xe5, 0x98, 0x15, 0x92, 0x5c, 0xd0, 0xe3, 0x53, 0xe5, 0xe6, - 0x98, 0xa9, 0xfc, 0x1e, 0x9e, 0x38, 0x23, 0x44, 0xfd, 0x2b, 0xc5, 0x77, 0xa0, 0x8f, 0xfc, 0x1e, - 0x91, 0xbb, 0x63, 0xe6, 0x94, 0x0d, 0x15, 0x91, 0x53, 0x96, 0xd7, 0x9d, 0x7d, 0x73, 0xca, 0x5e, - 0x84, 0xd1, 0x86, 0x17, 0xf8, 0x64, 0x39, 0x0a, 0x92, 0xa0, 0x11, 0x78, 0xc2, 0xac, 0x57, 0x22, - 0x61, 0xc6, 0x04, 0xe2, 0x34, 0x6e, 0xaf, 0x84, 0xb4, 0xda, 0x51, 0x13, 0xd2, 0xe0, 0x3e, 0x25, - 0xa4, 0xfd, 0xac, 0x4e, 0x9d, 0x1e, 0x66, 0x5f, 0xe4, 0xc3, 0xc5, 0x7f, 0x91, 0x7e, 0xf2, 0xa7, - 0xd1, 0x9b, 0xfc, 0xda, 0x3d, 0x6a, 0x18, 0xcf, 0x04, 0x6d, 0x6a, 0xf8, 0x8d, 0xb0, 0x21, 0x79, - 0xf5, 0x18, 0x26, 0xec, 0xcd, 0x15, 0xcd, 0x46, 0x5d, 0xc5, 0xa7, 0x9b, 0x70, 0xba, 0x23, 0x47, - 0x49, 0xed, 0xfe, 0x4a, 0x09, 0x7e, 0x60, 0xdf, 0x2e, 0xa0, 0xdb, 0x00, 0x89, 0xd3, 0x12, 0x13, - 0x55, 0x1c, 0x98, 0x1c, 0x31, 0xbc, 0x72, 0x55, 0xd2, 0xe3, 0x35, 0x49, 0xd4, 0x5f, 0x76, 0x14, - 0x21, 0x7f, 0xb3, 0xa8, 0xca, 0xc0, 0xeb, 0x2a, 0xdd, 0x88, 0x03, 0x8f, 0x60, 0x06, 0xa1, 0xea, - 0x3f, 0x22, 0x2d, 0x7d, 0x4f, 0xb4, 0xfa, 0x7c, 0x98, 0xb5, 0x62, 0x01, 0x45, 0xcf, 0xc3, 0xb0, - 0xe3, 0x79, 0x3c, 0x3f, 0x86, 0xc4, 0xe2, 0xde, 0x1d, 0x5d, 0x43, 0x4e, 0x83, 0xb0, 0x89, 0x67, - 0xff, 0x69, 0x09, 0x26, 0xf6, 0x91, 0x29, 0x5d, 0x19, 0x7f, 0x95, 0xbe, 0x33, 0xfe, 0x44, 0x8e, - 0xc2, 0x60, 0x8f, 0x1c, 0x85, 0xe7, 0x61, 0x38, 0x21, 0x4e, 0x5b, 0x04, 0x64, 0x09, 0x4f, 0x80, - 0x3e, 0x01, 0xd6, 0x20, 0x6c, 0xe2, 0x51, 0x29, 0x36, 0xe6, 0x34, 0x1a, 0x24, 0x8e, 0x65, 0x12, - 0x82, 0xf0, 0xa6, 0x16, 0x96, 0xe1, 0xc0, 0x9c, 0xd4, 0xd3, 0x29, 0x16, 0x38, 0xc3, 0x32, 0x3b, - 0xe0, 0xb5, 0x3e, 0x07, 0xfc, 0xeb, 0x25, 0x78, 0x6c, 0x4f, 0xed, 0xd6, 0x77, 0x7e, 0x48, 0x27, - 0x26, 0x51, 0x76, 0xe2, 0x5c, 0x8f, 0x49, 0x84, 0x19, 0x84, 0x8f, 0x52, 0x18, 0x1a, 0xf7, 0x70, - 0x17, 0x9d, 0xbc, 0xc4, 0x47, 0x29, 0xc5, 0x02, 0x67, 0x58, 0x1e, 0x76, 0x5a, 0xfe, 0x83, 0x12, - 0x3c, 0xd1, 0x87, 0x0d, 0x50, 0x60, 0x92, 0x57, 0x3a, 0xd5, 0xae, 0x7c, 0x9f, 0x32, 0x22, 0x0f, - 0x39, 0x5c, 0xdf, 0x28, 0xc1, 0xb9, 0xde, 0xaa, 0x18, 0xfd, 0x18, 0x9c, 0x88, 0x54, 0x14, 0x96, - 0x99, 0xa5, 0x77, 0x9a, 0x7b, 0x12, 0x52, 0x20, 0x9c, 0xc5, 0x45, 0x93, 0x00, 0xa1, 0x93, 0x6c, - 0xc4, 0x17, 0xb7, 0xdd, 0x38, 0x11, 0x55, 0x68, 0xc6, 0xf8, 0xd9, 0x95, 0x6c, 0xc5, 0x06, 0x06, - 0x65, 0xc7, 0xfe, 0xcd, 0x06, 0xd7, 0x82, 0x84, 0x3f, 0xc4, 0xb7, 0x11, 0xa7, 0xe5, 0x9d, 0x1d, - 0x06, 0x08, 0x67, 0x71, 0x29, 0x3b, 0x76, 0x3a, 0xca, 0x3b, 0xca, 0xf7, 0x17, 0x8c, 0xdd, 0x82, - 0x6a, 0xc5, 0x06, 0x46, 0x36, 0xff, 0xb0, 0xb2, 0x7f, 0xfe, 0xa1, 0xfd, 0x4f, 0x4b, 0xf0, 0x48, - 0x4f, 0x53, 0xae, 0xbf, 0x05, 0xf8, 0xe0, 0xe5, 0x0c, 0x1e, 0x6e, 0xee, 0x1c, 0x30, 0xb7, 0xed, - 0x8f, 0x7b, 0xcc, 0x34, 0x91, 0xdb, 0x76, 0xf8, 0xe4, 0xf0, 0x07, 0x6f, 0x3c, 0xbb, 0xd2, 0xd9, - 0x06, 0x0e, 0x90, 0xce, 0x96, 0xf9, 0x18, 0x95, 0x3e, 0x17, 0xf2, 0x9f, 0x97, 0x7b, 0x0e, 0x2f, - 0xdd, 0xfa, 0xf5, 0xe5, 0xa7, 0x9d, 0x85, 0x93, 0xae, 0xcf, 0xee, 0x6f, 0x5a, 0xe9, 0xac, 0x89, - 0xc2, 0x24, 0xa5, 0xf4, 0x2d, 0xeb, 0xf3, 0x19, 0x38, 0xee, 0x7a, 0xe2, 0x01, 0x4c, 0x2f, 0x3c, - 0xdc, 0x90, 0x1e, 0x2c, 0xc1, 0x15, 0x2d, 0xc1, 0x59, 0x39, 0x14, 0x1b, 0x4e, 0x44, 0x9a, 0x42, - 0x8d, 0xc4, 0x22, 0xa1, 0xe2, 0x11, 0x9e, 0x94, 0x91, 0x83, 0x80, 0xf3, 0x9f, 0x63, 0x57, 0xe6, - 0x04, 0xa1, 0xdb, 0x10, 0x9b, 0x1c, 0x7d, 0x65, 0x0e, 0x6d, 0xc4, 0x1c, 0x66, 0x7f, 0x18, 0x6a, - 0xea, 0xfd, 0x79, 0x58, 0xb7, 0x9a, 0x74, 0x5d, 0x61, 0xdd, 0x6a, 0xc6, 0x19, 0x58, 0xf4, 0x6b, - 0x51, 0x93, 0x38, 0xb3, 0x7a, 0xae, 0x92, 0x1d, 0x66, 0x1f, 0xdb, 0xef, 0x86, 0x11, 0xe5, 0x67, - 0xe9, 0xf7, 0x22, 0x21, 0xfb, 0x4b, 0x83, 0x30, 0x9a, 0x2a, 0x0e, 0x98, 0x72, 0xb0, 0x5a, 0xfb, - 0x3a, 0x58, 0x59, 0x98, 0x7e, 0xc7, 0x97, 0xb7, 0x8c, 0x19, 0x61, 0xfa, 0x1d, 0x9f, 0x60, 0x0e, - 0xa3, 0xe6, 0x6d, 0x33, 0xda, 0xc1, 0x1d, 0x5f, 0x84, 0xd3, 0x2a, 0xf3, 0x76, 0x96, 0xb5, 0x62, - 0x01, 0x45, 0x9f, 0xb0, 0x60, 0x24, 0x66, 0xde, 0x7b, 0xee, 0x9e, 0x16, 0x93, 0xee, 0xca, 0xd1, - 0x6b, 0x1f, 0xaa, 0x42, 0x98, 0x2c, 0x42, 0xc6, 0x6c, 0xc1, 0x29, 0x8e, 0xe8, 0xd3, 0x16, 0xd4, - 0xd4, 0x65, 0x28, 0xe2, 0xca, 0xc0, 0x95, 0x62, 0x6b, 0x2f, 0x72, 0xbf, 0xa6, 0x3a, 0x08, 0x51, - 0x45, 0xf0, 0xb0, 0x66, 0x8c, 0x62, 0xe5, 0x3b, 0x1e, 0x3a, 0x1e, 0xdf, 0x31, 0xe4, 0xf8, 0x8d, - 0xdf, 0x05, 0xb5, 0xb6, 0xe3, 0xbb, 0xeb, 0x24, 0x4e, 0xb8, 0x3b, 0x57, 0x96, 0x84, 0x95, 0x8d, - 0x58, 0xc3, 0xa9, 0x42, 0x8e, 0xd9, 0x8b, 0x25, 0x86, 0xff, 0x95, 0x29, 0xe4, 0x15, 0xdd, 0x8c, - 0x4d, 0x1c, 0xd3, 0x59, 0x0c, 0xf7, 0xd5, 0x59, 0x3c, 0xbc, 0xb7, 0xb3, 0xd8, 0xfe, 0x47, 0x16, - 0x9c, 0xcd, 0xfd, 0x6a, 0x0f, 0x6e, 0xe0, 0xa3, 0xfd, 0xe5, 0x0a, 0x9c, 0xce, 0xa9, 0xf2, 0x89, - 0x76, 0xcc, 0xf9, 0x6c, 0x15, 0x11, 0x43, 0x90, 0x3e, 0x12, 0x97, 0xc3, 0x98, 0x33, 0x89, 0x0f, - 0x76, 0x54, 0xa3, 0x8f, 0x4b, 0xca, 0xf7, 0xf6, 0xb8, 0xc4, 0x98, 0x96, 0x03, 0xf7, 0x75, 0x5a, - 0x56, 0xf6, 0x39, 0xc3, 0xf8, 0x35, 0x0b, 0xc6, 0xdb, 0x3d, 0x4a, 0xcb, 0x0b, 0xc7, 0xe3, 0x8d, - 0xe3, 0x29, 0x5c, 0x5f, 0x7f, 0xf4, 0xce, 0xee, 0x44, 0xcf, 0x8a, 0xfe, 0xb8, 0x67, 0xaf, 0xec, - 0xef, 0x94, 0x81, 0x95, 0x98, 0x65, 0x95, 0xdc, 0x76, 0xd0, 0xc7, 0xcd, 0x62, 0xc1, 0x56, 0x51, - 0x85, 0x6d, 0x39, 0x71, 0x55, 0x6c, 0x98, 0x8f, 0x60, 0x5e, 0xed, 0xe1, 0xac, 0xd0, 0x2a, 0xf5, - 0x21, 0xb4, 0x3c, 0x59, 0x95, 0xb9, 0x5c, 0x7c, 0x55, 0xe6, 0x5a, 0xb6, 0x22, 0xf3, 0xde, 0x9f, - 0x78, 0xe0, 0x81, 0xfc, 0xc4, 0xbf, 0x68, 0x71, 0xc1, 0x93, 0xf9, 0x0a, 0xda, 0x32, 0xb0, 0xf6, - 0xb0, 0x0c, 0x9e, 0x86, 0x6a, 0x4c, 0xbc, 0xf5, 0xcb, 0xc4, 0xf1, 0x84, 0x05, 0xa1, 0xcf, 0xaf, - 0x45, 0x3b, 0x56, 0x18, 0xec, 0xda, 0x56, 0xcf, 0x0b, 0x6e, 0x5f, 0x6c, 0x87, 0xc9, 0x8e, 0xb0, - 0x25, 0xf4, 0xb5, 0xad, 0x0a, 0x82, 0x0d, 0x2c, 0xfb, 0x6f, 0x97, 0xf8, 0x0c, 0x14, 0x41, 0x10, - 0x2f, 0x64, 0x2e, 0xda, 0xeb, 0x3f, 0x7e, 0xe0, 0xa3, 0x00, 0x0d, 0x75, 0x95, 0xbd, 0x38, 0x13, - 0xba, 0x7c, 0xe4, 0x7b, 0xb6, 0x05, 0x3d, 0xfd, 0x1a, 0xba, 0x0d, 0x1b, 0xfc, 0x52, 0xb2, 0xb4, - 0xbc, 0xaf, 0x2c, 0x4d, 0x89, 0x95, 0x81, 0x7d, 0xb4, 0xdd, 0x9f, 0x5a, 0x90, 0xb2, 0x88, 0x50, - 0x08, 0x15, 0xda, 0xdd, 0x9d, 0x62, 0x6e, 0xe9, 0x37, 0x49, 0x53, 0xd1, 0x28, 0xa6, 0x3d, 0xfb, - 0x89, 0x39, 0x23, 0xe4, 0x89, 0x58, 0x09, 0x3e, 0xaa, 0xd7, 0x8a, 0x63, 0x78, 0x39, 0x08, 0x36, - 0xf9, 0xc1, 0xa6, 0x8e, 0xbb, 0xb0, 0x5f, 0x80, 0x53, 0x5d, 0x9d, 0x62, 0x77, 0x6a, 0x05, 0x54, - 0xfb, 0x64, 0xa6, 0x2b, 0x4b, 0xe0, 0xc4, 0x1c, 0x66, 0x7f, 0xc3, 0x82, 0x93, 0x59, 0xf2, 0xe8, - 0x4d, 0x0b, 0x4e, 0xc5, 0x59, 0x7a, 0xc7, 0x35, 0x76, 0x2a, 0xde, 0xb1, 0x0b, 0x84, 0xbb, 0x3b, - 0x61, 0xff, 0x3f, 0x31, 0xf9, 0x6f, 0xba, 0x7e, 0x33, 0xb8, 0xad, 0x0c, 0x13, 0xab, 0xa7, 0x61, - 0x42, 0xd7, 0x63, 0x63, 0x83, 0x34, 0x3b, 0x5e, 0x57, 0xe6, 0xe8, 0x8a, 0x68, 0xc7, 0x0a, 0x83, - 0x25, 0xca, 0x75, 0x44, 0xd9, 0xf6, 0xcc, 0xa4, 0x9c, 0x15, 0xed, 0x58, 0x61, 0xa0, 0xe7, 0x60, - 0xc4, 0x78, 0x49, 0x39, 0x2f, 0x99, 0x41, 0x6e, 0xa8, 0xcc, 0x18, 0xa7, 0xb0, 0xd0, 0x24, 0x80, - 0x32, 0x72, 0xa4, 0x8a, 0x64, 0x8e, 0x22, 0x25, 0x89, 0x62, 0x6c, 0x60, 0xb0, 0xb4, 0x54, 0xaf, - 0x13, 0x33, 0x1f, 0xff, 0xa0, 0x2e, 0x25, 0x3a, 0x23, 0xda, 0xb0, 0x82, 0x52, 0x69, 0xd2, 0x76, - 0xfc, 0x8e, 0xe3, 0xd1, 0x11, 0x12, 0x5b, 0x3f, 0xb5, 0x0c, 0x17, 0x15, 0x04, 0x1b, 0x58, 0xf4, - 0x8d, 0x13, 0xb7, 0x4d, 0x5e, 0x0e, 0x7c, 0x19, 0xa7, 0xa6, 0x8f, 0x7d, 0x44, 0x3b, 0x56, 0x18, - 0xf6, 0x7f, 0xb3, 0xe0, 0x84, 0x4e, 0x72, 0xe7, 0xb7, 0x67, 0x9b, 0x3b, 0x55, 0x6b, 0xdf, 0x9d, - 0x6a, 0x3a, 0xfb, 0xb7, 0xd4, 0x57, 0xf6, 0xaf, 0x99, 0x98, 0x5b, 0xde, 0x33, 0x31, 0xf7, 0x87, - 0xf4, 0xcd, 0xac, 0x3c, 0x83, 0x77, 0x38, 0xef, 0x56, 0x56, 0x64, 0xc3, 0x60, 0xc3, 0x51, 0x15, - 0x5e, 0x46, 0xf8, 0xde, 0x61, 0x66, 0x9a, 0x21, 0x09, 0x88, 0xbd, 0x04, 0x35, 0x75, 0xfa, 0x21, - 0x37, 0xaa, 0x56, 0xfe, 0x46, 0xb5, 0xaf, 0x04, 0xc1, 0xfa, 0xda, 0x37, 0xbf, 0xfb, 0xf8, 0xdb, - 0x7e, 0xef, 0xbb, 0x8f, 0xbf, 0xed, 0x8f, 0xbe, 0xfb, 0xf8, 0xdb, 0x3e, 0x71, 0xe7, 0x71, 0xeb, - 0x9b, 0x77, 0x1e, 0xb7, 0x7e, 0xef, 0xce, 0xe3, 0xd6, 0x1f, 0xdd, 0x79, 0xdc, 0xfa, 0xce, 0x9d, - 0xc7, 0xad, 0x2f, 0xfe, 0xe7, 0xc7, 0xdf, 0xf6, 0x72, 0x6e, 0xa0, 0x22, 0xfd, 0xf1, 0x4c, 0xa3, - 0x39, 0xb5, 0x75, 0x81, 0xc5, 0xca, 0xd1, 0xe5, 0x35, 0x65, 0xcc, 0xa9, 0x29, 0xb9, 0xbc, 0xfe, - 0x7f, 0x00, 0x00, 0x00, 0xff, 0xff, 0xb2, 0x18, 0x73, 0x0d, 0xd5, 0xe1, 0x00, 0x00, + 0x65, 0x3b, 0x95, 0x52, 0xe2, 0xa4, 0xec, 0x72, 0xb9, 0x2c, 0x27, 0xb1, 0x11, 0xe9, 0x52, 0xa9, + 0xa4, 0x52, 0x15, 0x57, 0x39, 0xf1, 0x8f, 0xe4, 0x92, 0x1f, 0xa9, 0xfe, 0xee, 0x99, 0x9d, 0x05, + 0x16, 0xc0, 0xe0, 0xee, 0xa4, 0xf0, 0xdf, 0x6e, 0xbf, 0x37, 0xef, 0xf5, 0xf4, 0x74, 0xbf, 0xf7, + 0xfa, 0xf5, 0x7b, 0xaf, 0x61, 0xa1, 0xe5, 0x26, 0x1b, 0x9d, 0xb5, 0xc9, 0x46, 0xd0, 0x9e, 0x72, + 0xa2, 0x56, 0x10, 0x46, 0xc1, 0x2d, 0xf6, 0xe3, 0x99, 0x46, 0x73, 0x6a, 0xeb, 0xc2, 0x54, 0xb8, + 0xd9, 0x9a, 0x72, 0x42, 0x37, 0x9e, 0x72, 0xc2, 0xd0, 0x73, 0x1b, 0x4e, 0xe2, 0x06, 0xfe, 0xd4, + 0xd6, 0xb3, 0x8e, 0x17, 0x6e, 0x38, 0xcf, 0x4e, 0xb5, 0x88, 0x4f, 0x22, 0x27, 0x21, 0xcd, 0xc9, + 0x30, 0x0a, 0x92, 0x00, 0xfd, 0xa8, 0xa6, 0x36, 0x29, 0xa9, 0xb1, 0x1f, 0xaf, 0x36, 0x9a, 0x93, + 0x5b, 0x17, 0x26, 0xc3, 0xcd, 0xd6, 0x24, 0xa5, 0x36, 0x69, 0x50, 0x9b, 0x94, 0xd4, 0xce, 0x3d, + 0x63, 0xf4, 0xa5, 0x15, 0xb4, 0x82, 0x29, 0x46, 0x74, 0xad, 0xb3, 0xce, 0xfe, 0xb1, 0x3f, 0xec, + 0x17, 0x67, 0x76, 0xce, 0xde, 0x7c, 0x21, 0x9e, 0x74, 0x03, 0xda, 0xbd, 0xa9, 0x46, 0x10, 0x91, + 0xa9, 0xad, 0xae, 0x0e, 0x9d, 0xbb, 0xac, 0x71, 0xc8, 0x76, 0x42, 0xfc, 0xd8, 0x0d, 0xfc, 0xf8, + 0x19, 0xda, 0x05, 0x12, 0x6d, 0x91, 0xc8, 0x7c, 0x3d, 0x03, 0x21, 0x8f, 0xd2, 0x73, 0x9a, 0x52, + 0xdb, 0x69, 0x6c, 0xb8, 0x3e, 0x89, 0x76, 0xf4, 0xe3, 0x6d, 0x92, 0x38, 0x79, 0x4f, 0x4d, 0xf5, + 0x7a, 0x2a, 0xea, 0xf8, 0x89, 0xdb, 0x26, 0x5d, 0x0f, 0xbc, 0x67, 0xbf, 0x07, 0xe2, 0xc6, 0x06, + 0x69, 0x3b, 0x5d, 0xcf, 0xbd, 0xbb, 0xd7, 0x73, 0x9d, 0xc4, 0xf5, 0xa6, 0x5c, 0x3f, 0x89, 0x93, + 0x28, 0xfb, 0x90, 0xfd, 0x0b, 0x16, 0x8c, 0x4e, 0xdf, 0x5c, 0x99, 0xee, 0x24, 0x1b, 0x33, 0x81, + 0xbf, 0xee, 0xb6, 0xd0, 0xf3, 0x30, 0xdc, 0xf0, 0x3a, 0x71, 0x42, 0xa2, 0x6b, 0x4e, 0x9b, 0x8c, + 0x5b, 0xe7, 0xad, 0xa7, 0x6a, 0xf5, 0xd3, 0xdf, 0xda, 0x9d, 0x78, 0xdb, 0x9d, 0xdd, 0x89, 0xe1, + 0x19, 0x0d, 0xc2, 0x26, 0x1e, 0x7a, 0x27, 0x0c, 0x45, 0x81, 0x47, 0xa6, 0xf1, 0xb5, 0xf1, 0x12, + 0x7b, 0xe4, 0x84, 0x78, 0x64, 0x08, 0xf3, 0x66, 0x2c, 0xe1, 0x14, 0x35, 0x8c, 0x82, 0x75, 0xd7, + 0x23, 0xe3, 0xe5, 0x34, 0xea, 0x32, 0x6f, 0xc6, 0x12, 0x6e, 0xff, 0x61, 0x09, 0x60, 0x3a, 0x0c, + 0x97, 0xa3, 0xe0, 0x16, 0x69, 0x24, 0xe8, 0x23, 0x50, 0xa5, 0xc3, 0xdc, 0x74, 0x12, 0x87, 0x75, + 0x6c, 0xf8, 0xc2, 0x0f, 0x4f, 0xf2, 0xb7, 0x9e, 0x34, 0xdf, 0x5a, 0x4f, 0x32, 0x8a, 0x3d, 0xb9, + 0xf5, 0xec, 0xe4, 0xd2, 0x1a, 0x7d, 0x7e, 0x91, 0x24, 0x4e, 0x1d, 0x09, 0x66, 0xa0, 0xdb, 0xb0, + 0xa2, 0x8a, 0x7c, 0x18, 0x88, 0x43, 0xd2, 0x60, 0xef, 0x30, 0x7c, 0x61, 0x61, 0xf2, 0x28, 0xb3, + 0x79, 0x52, 0xf7, 0x7c, 0x25, 0x24, 0x8d, 0xfa, 0x88, 0xe0, 0x3c, 0x40, 0xff, 0x61, 0xc6, 0x07, + 0x6d, 0xc1, 0x60, 0x9c, 0x38, 0x49, 0x27, 0x66, 0x43, 0x31, 0x7c, 0xe1, 0x5a, 0x61, 0x1c, 0x19, + 0xd5, 0xfa, 0x98, 0xe0, 0x39, 0xc8, 0xff, 0x63, 0xc1, 0xcd, 0xfe, 0x13, 0x0b, 0xc6, 0x34, 0xf2, + 0x82, 0x1b, 0x27, 0xe8, 0x27, 0xba, 0x06, 0x77, 0xb2, 0xbf, 0xc1, 0xa5, 0x4f, 0xb3, 0xa1, 0x3d, + 0x29, 0x98, 0x55, 0x65, 0x8b, 0x31, 0xb0, 0x6d, 0xa8, 0xb8, 0x09, 0x69, 0xc7, 0xe3, 0xa5, 0xf3, + 0xe5, 0xa7, 0x86, 0x2f, 0x5c, 0x2e, 0xea, 0x3d, 0xeb, 0xa3, 0x82, 0x69, 0x65, 0x9e, 0x92, 0xc7, + 0x9c, 0x8b, 0xfd, 0x2b, 0x23, 0xe6, 0xfb, 0xd1, 0x01, 0x47, 0xcf, 0xc2, 0x70, 0x1c, 0x74, 0xa2, + 0x06, 0xc1, 0x24, 0x0c, 0xe2, 0x71, 0xeb, 0x7c, 0x99, 0x4e, 0x3d, 0x3a, 0xa9, 0x57, 0x74, 0x33, + 0x36, 0x71, 0xd0, 0x17, 0x2d, 0x18, 0x69, 0x92, 0x38, 0x71, 0x7d, 0xc6, 0x5f, 0x76, 0x7e, 0xf5, + 0xc8, 0x9d, 0x97, 0x8d, 0xb3, 0x9a, 0x78, 0xfd, 0x8c, 0x78, 0x91, 0x11, 0xa3, 0x31, 0xc6, 0x29, + 0xfe, 0x74, 0x71, 0x36, 0x49, 0xdc, 0x88, 0xdc, 0x90, 0xfe, 0x17, 0xcb, 0x47, 0x2d, 0xce, 0x59, + 0x0d, 0xc2, 0x26, 0x1e, 0xf2, 0xa1, 0x42, 0x17, 0x5f, 0x3c, 0x3e, 0xc0, 0xfa, 0x3f, 0x7f, 0xb4, + 0xfe, 0x8b, 0x41, 0xa5, 0xeb, 0x5a, 0x8f, 0x3e, 0xfd, 0x17, 0x63, 0xce, 0x06, 0x7d, 0xc1, 0x82, + 0x71, 0x21, 0x1c, 0x30, 0xe1, 0x03, 0x7a, 0x73, 0xc3, 0x4d, 0x88, 0xe7, 0xc6, 0xc9, 0x78, 0x85, + 0xf5, 0x61, 0xaa, 0xbf, 0xb9, 0x35, 0x17, 0x05, 0x9d, 0xf0, 0xaa, 0xeb, 0x37, 0xeb, 0xe7, 0x05, + 0xa7, 0xf1, 0x99, 0x1e, 0x84, 0x71, 0x4f, 0x96, 0xe8, 0x2b, 0x16, 0x9c, 0xf3, 0x9d, 0x36, 0x89, + 0x43, 0x87, 0x7e, 0x5a, 0x0e, 0xae, 0x7b, 0x4e, 0x63, 0x93, 0xf5, 0x68, 0xf0, 0x70, 0x3d, 0xb2, + 0x45, 0x8f, 0xce, 0x5d, 0xeb, 0x49, 0x1a, 0xef, 0xc1, 0x16, 0x7d, 0xc3, 0x82, 0x53, 0x41, 0x14, + 0x6e, 0x38, 0x3e, 0x69, 0x4a, 0x68, 0x3c, 0x3e, 0xc4, 0x96, 0xde, 0x87, 0x8f, 0xf6, 0x89, 0x96, + 0xb2, 0x64, 0x17, 0x03, 0xdf, 0x4d, 0x82, 0x68, 0x85, 0x24, 0x89, 0xeb, 0xb7, 0xe2, 0xfa, 0xd9, + 0x3b, 0xbb, 0x13, 0xa7, 0xba, 0xb0, 0x70, 0x77, 0x7f, 0xd0, 0x4f, 0xc2, 0x70, 0xbc, 0xe3, 0x37, + 0x6e, 0xba, 0x7e, 0x33, 0xb8, 0x1d, 0x8f, 0x57, 0x8b, 0x58, 0xbe, 0x2b, 0x8a, 0xa0, 0x58, 0x80, + 0x9a, 0x01, 0x36, 0xb9, 0xe5, 0x7f, 0x38, 0x3d, 0x95, 0x6a, 0x45, 0x7f, 0x38, 0x3d, 0x99, 0xf6, + 0x60, 0x8b, 0x7e, 0xd6, 0x82, 0xd1, 0xd8, 0x6d, 0xf9, 0x4e, 0xd2, 0x89, 0xc8, 0x55, 0xb2, 0x13, + 0x8f, 0x03, 0xeb, 0xc8, 0x95, 0x23, 0x8e, 0x8a, 0x41, 0xb2, 0x7e, 0x56, 0xf4, 0x71, 0xd4, 0x6c, + 0x8d, 0x71, 0x9a, 0x6f, 0xde, 0x42, 0xd3, 0xd3, 0x7a, 0xb8, 0xd8, 0x85, 0xa6, 0x27, 0x75, 0x4f, + 0x96, 0xe8, 0xc7, 0xe1, 0x24, 0x6f, 0x52, 0x23, 0x1b, 0x8f, 0x8f, 0x30, 0x41, 0x7b, 0xe6, 0xce, + 0xee, 0xc4, 0xc9, 0x95, 0x0c, 0x0c, 0x77, 0x61, 0xa3, 0xd7, 0x60, 0x22, 0x24, 0x51, 0xdb, 0x4d, + 0x96, 0x7c, 0x6f, 0x47, 0x8a, 0xef, 0x46, 0x10, 0x92, 0xa6, 0xe8, 0x4e, 0x3c, 0x3e, 0x7a, 0xde, + 0x7a, 0xaa, 0x5a, 0x7f, 0x87, 0xe8, 0xe6, 0xc4, 0xf2, 0xde, 0xe8, 0x78, 0x3f, 0x7a, 0xf6, 0xbf, + 0x2a, 0xc1, 0xc9, 0xac, 0xe2, 0x44, 0x7f, 0xdb, 0x82, 0x13, 0xb7, 0x6e, 0x27, 0xab, 0xc1, 0x26, + 0xf1, 0xe3, 0xfa, 0x0e, 0x15, 0x6f, 0x4c, 0x65, 0x0c, 0x5f, 0x68, 0x14, 0xab, 0xa2, 0x27, 0xaf, + 0xa4, 0xb9, 0x5c, 0xf4, 0x93, 0x68, 0xa7, 0xfe, 0xb0, 0x78, 0xbb, 0x13, 0x57, 0x6e, 0xae, 0x9a, + 0x50, 0x9c, 0xed, 0xd4, 0xb9, 0xcf, 0x59, 0x70, 0x26, 0x8f, 0x04, 0x3a, 0x09, 0xe5, 0x4d, 0xb2, + 0xc3, 0x0d, 0x38, 0x4c, 0x7f, 0xa2, 0x57, 0xa0, 0xb2, 0xe5, 0x78, 0x1d, 0x22, 0xac, 0x9b, 0xb9, + 0xa3, 0xbd, 0x88, 0xea, 0x19, 0xe6, 0x54, 0xdf, 0x5b, 0x7a, 0xc1, 0xb2, 0x7f, 0xb7, 0x0c, 0xc3, + 0x86, 0x7e, 0xbb, 0x07, 0x16, 0x5b, 0x90, 0xb2, 0xd8, 0x16, 0x0b, 0x53, 0xcd, 0x3d, 0x4d, 0xb6, + 0xdb, 0x19, 0x93, 0x6d, 0xa9, 0x38, 0x96, 0x7b, 0xda, 0x6c, 0x28, 0x81, 0x5a, 0x10, 0x52, 0xeb, + 0x9d, 0xaa, 0xfe, 0x81, 0x22, 0x3e, 0xe1, 0x92, 0x24, 0x57, 0x1f, 0xbd, 0xb3, 0x3b, 0x51, 0x53, + 0x7f, 0xb1, 0x66, 0x64, 0x7f, 0xdb, 0x82, 0x33, 0x46, 0x1f, 0x67, 0x02, 0xbf, 0xe9, 0xb2, 0x4f, + 0x7b, 0x1e, 0x06, 0x92, 0x9d, 0x50, 0xee, 0x10, 0xd4, 0x48, 0xad, 0xee, 0x84, 0x04, 0x33, 0x08, + 0x35, 0xf4, 0xdb, 0x24, 0x8e, 0x9d, 0x16, 0xc9, 0xee, 0x09, 0x16, 0x79, 0x33, 0x96, 0x70, 0x14, + 0x01, 0xf2, 0x9c, 0x38, 0x59, 0x8d, 0x1c, 0x3f, 0x66, 0xe4, 0x57, 0xdd, 0x36, 0x11, 0x03, 0xfc, + 0x17, 0xfa, 0x9b, 0x31, 0xf4, 0x89, 0xfa, 0x43, 0x77, 0x76, 0x27, 0xd0, 0x42, 0x17, 0x25, 0x9c, + 0x43, 0xdd, 0xfe, 0x8a, 0x05, 0x0f, 0xe5, 0xdb, 0x62, 0xe8, 0x49, 0x18, 0xe4, 0xdb, 0x43, 0xf1, + 0x76, 0xfa, 0x93, 0xb0, 0x56, 0x2c, 0xa0, 0x68, 0x0a, 0x6a, 0x4a, 0x4f, 0x88, 0x77, 0x3c, 0x25, + 0x50, 0x6b, 0x5a, 0xb9, 0x68, 0x1c, 0x3a, 0x68, 0xf4, 0x8f, 0xb0, 0xdc, 0xd4, 0xa0, 0xb1, 0xfd, + 0x14, 0x83, 0xd8, 0xff, 0xd1, 0x82, 0x13, 0x46, 0xaf, 0xee, 0x81, 0x69, 0xee, 0xa7, 0x4d, 0xf3, + 0xf9, 0xc2, 0xe6, 0x73, 0x0f, 0xdb, 0xfc, 0x0b, 0x16, 0x9c, 0x33, 0xb0, 0x16, 0x9d, 0xa4, 0xb1, + 0x71, 0x71, 0x3b, 0x8c, 0x48, 0x4c, 0xb7, 0xde, 0xe8, 0x31, 0x43, 0x6e, 0xd5, 0x87, 0x05, 0x85, + 0xf2, 0x55, 0xb2, 0xc3, 0x85, 0xd8, 0xd3, 0x50, 0xe5, 0x93, 0x33, 0x88, 0xc4, 0x88, 0xab, 0x77, + 0x5b, 0x12, 0xed, 0x58, 0x61, 0x20, 0x1b, 0x06, 0x99, 0x70, 0xa2, 0x8b, 0x95, 0xaa, 0x21, 0xa0, + 0x1f, 0xf1, 0x06, 0x6b, 0xc1, 0x02, 0x62, 0xc7, 0xa9, 0xee, 0x2c, 0x47, 0x84, 0x7d, 0xdc, 0xe6, + 0x25, 0x97, 0x78, 0xcd, 0x98, 0x6e, 0x1b, 0x1c, 0xdf, 0x0f, 0x12, 0xb1, 0x03, 0x30, 0xb6, 0x0d, + 0xd3, 0xba, 0x19, 0x9b, 0x38, 0x94, 0xa9, 0xe7, 0xac, 0x11, 0x8f, 0x8f, 0xa8, 0x60, 0xba, 0xc0, + 0x5a, 0xb0, 0x80, 0xd8, 0x77, 0x4a, 0x6c, 0x83, 0xa2, 0x96, 0x3e, 0xb9, 0x17, 0xbb, 0xdb, 0x28, + 0x25, 0x2b, 0x97, 0x8b, 0x13, 0x5c, 0xa4, 0xf7, 0x0e, 0xf7, 0xf5, 0x8c, 0xb8, 0xc4, 0x85, 0x72, + 0xdd, 0x7b, 0x97, 0xfb, 0x9b, 0x25, 0x98, 0x48, 0x3f, 0xd0, 0x25, 0x6d, 0xe9, 0x96, 0xca, 0x60, + 0x94, 0xf5, 0x77, 0x18, 0xf8, 0xd8, 0xc4, 0xeb, 0x21, 0xb0, 0x4a, 0xc7, 0x29, 0xb0, 0x4c, 0x79, + 0x5a, 0xde, 0x47, 0x9e, 0x3e, 0xa9, 0x46, 0x7d, 0x20, 0x23, 0xc0, 0xd2, 0x3a, 0xe5, 0x3c, 0x0c, + 0xc4, 0x09, 0x09, 0xc7, 0x2b, 0x69, 0x79, 0xb4, 0x92, 0x90, 0x10, 0x33, 0x88, 0xfd, 0xdf, 0x4a, + 0xf0, 0x70, 0x7a, 0x0c, 0xb5, 0x0a, 0x78, 0x7f, 0x4a, 0x05, 0xbc, 0xcb, 0x54, 0x01, 0x77, 0x77, + 0x27, 0xde, 0xde, 0xe3, 0xb1, 0xef, 0x19, 0x0d, 0x81, 0xe6, 0x32, 0xa3, 0x38, 0x95, 0x1e, 0xc5, + 0xbb, 0xbb, 0x13, 0x8f, 0xf5, 0x78, 0xc7, 0xcc, 0x30, 0x3f, 0x09, 0x83, 0x11, 0x71, 0xe2, 0xc0, + 0x17, 0x03, 0xad, 0x3e, 0x07, 0x66, 0xad, 0x58, 0x40, 0xed, 0xdf, 0xaf, 0x65, 0x07, 0x7b, 0x8e, + 0x3b, 0xec, 0x82, 0x08, 0xb9, 0x30, 0xc0, 0xcc, 0x7a, 0x2e, 0x1a, 0xae, 0x1e, 0x6d, 0x19, 0x51, + 0x35, 0xa0, 0x48, 0xd7, 0xab, 0xf4, 0xab, 0xd1, 0x26, 0xcc, 0x58, 0xa0, 0x6d, 0xa8, 0x36, 0xa4, + 0xb5, 0x5d, 0x2a, 0xc2, 0x2f, 0x25, 0x6c, 0x6d, 0xcd, 0x71, 0x84, 0xca, 0x6b, 0x65, 0xa2, 0x2b, + 0x6e, 0x88, 0x40, 0xb9, 0xe5, 0x26, 0xe2, 0xb3, 0x1e, 0x71, 0x3f, 0x35, 0xe7, 0x1a, 0xaf, 0x38, + 0x44, 0x95, 0xc8, 0x9c, 0x9b, 0x60, 0x4a, 0x1f, 0x7d, 0xc6, 0x82, 0xe1, 0xb8, 0xd1, 0x5e, 0x8e, + 0x82, 0x2d, 0xb7, 0x49, 0x22, 0x61, 0x4d, 0x1d, 0x51, 0x34, 0xad, 0xcc, 0x2c, 0x4a, 0x82, 0x9a, + 0x2f, 0xdf, 0xdf, 0x6a, 0x08, 0x36, 0xf9, 0xd2, 0x5d, 0xc6, 0xc3, 0xe2, 0xdd, 0x67, 0x49, 0xc3, + 0xa5, 0xfa, 0x4f, 0x6e, 0xaa, 0xd8, 0x4c, 0x39, 0xb2, 0x75, 0x39, 0xdb, 0x69, 0x6c, 0xd2, 0xf5, + 0xa6, 0x3b, 0xf4, 0xf6, 0x3b, 0xbb, 0x13, 0x0f, 0xcf, 0xe4, 0xf3, 0xc4, 0xbd, 0x3a, 0xc3, 0x06, + 0x2c, 0xec, 0x78, 0x1e, 0x26, 0xaf, 0x75, 0x08, 0x73, 0x99, 0x14, 0x30, 0x60, 0xcb, 0x9a, 0x60, + 0x66, 0xc0, 0x0c, 0x08, 0x36, 0xf9, 0xa2, 0xd7, 0x60, 0xb0, 0xed, 0x24, 0x91, 0xbb, 0x2d, 0xfc, + 0x24, 0x47, 0xb4, 0xf7, 0x17, 0x19, 0x2d, 0xcd, 0x9c, 0x69, 0x6a, 0xde, 0x88, 0x05, 0x23, 0xd4, + 0x86, 0x4a, 0x9b, 0x44, 0x2d, 0x32, 0x5e, 0x2d, 0xc2, 0x27, 0xbc, 0x48, 0x49, 0x69, 0x86, 0x35, + 0x6a, 0x1d, 0xb1, 0x36, 0xcc, 0xb9, 0xa0, 0x57, 0xa0, 0x1a, 0x13, 0x8f, 0x34, 0xa8, 0x7d, 0x53, + 0x63, 0x1c, 0xdf, 0xdd, 0xa7, 0xad, 0x47, 0x0d, 0x8b, 0x15, 0xf1, 0x28, 0x5f, 0x60, 0xf2, 0x1f, + 0x56, 0x24, 0xe9, 0x00, 0x86, 0x5e, 0xa7, 0xe5, 0xfa, 0xe3, 0x50, 0xc4, 0x00, 0x2e, 0x33, 0x5a, + 0x99, 0x01, 0xe4, 0x8d, 0x58, 0x30, 0xb2, 0xff, 0xb3, 0x05, 0x28, 0x2d, 0xd4, 0xee, 0x81, 0x51, + 0xfb, 0x5a, 0xda, 0xa8, 0x5d, 0x28, 0xd2, 0xea, 0xe8, 0x61, 0xd7, 0xfe, 0x7a, 0x0d, 0x32, 0xea, + 0xe0, 0x1a, 0x89, 0x13, 0xd2, 0x7c, 0x4b, 0x84, 0xbf, 0x25, 0xc2, 0xdf, 0x12, 0xe1, 0x4a, 0x84, + 0xaf, 0x65, 0x44, 0xf8, 0xfb, 0x8c, 0x55, 0xaf, 0x0f, 0x60, 0x5f, 0x55, 0x27, 0xb4, 0x66, 0x0f, + 0x0c, 0x04, 0x2a, 0x09, 0xae, 0xac, 0x2c, 0x5d, 0xcb, 0x95, 0xd9, 0xaf, 0xa6, 0x65, 0xf6, 0x51, + 0x59, 0xfc, 0xff, 0x20, 0xa5, 0xff, 0xa5, 0x05, 0xef, 0x48, 0x4b, 0x2f, 0x39, 0x73, 0xe6, 0x5b, + 0x7e, 0x10, 0x91, 0x59, 0x77, 0x7d, 0x9d, 0x44, 0xc4, 0x6f, 0x90, 0x58, 0x79, 0x31, 0xac, 0x5e, + 0x5e, 0x0c, 0xf4, 0x1c, 0x8c, 0xdc, 0x8a, 0x03, 0x7f, 0x39, 0x70, 0x7d, 0x21, 0x82, 0xe8, 0x46, + 0xf8, 0xe4, 0x9d, 0xdd, 0x89, 0x11, 0x3a, 0xa2, 0xb2, 0x1d, 0xa7, 0xb0, 0xd0, 0x0c, 0x9c, 0xba, + 0xf5, 0xda, 0xb2, 0x93, 0x18, 0xee, 0x00, 0xb9, 0x71, 0x67, 0x07, 0x16, 0x57, 0x5e, 0xca, 0x00, + 0x71, 0x37, 0xbe, 0xfd, 0x37, 0x4a, 0xf0, 0x48, 0xe6, 0x45, 0x02, 0xcf, 0x0b, 0x3a, 0x09, 0xdd, + 0xd4, 0xa0, 0xaf, 0x59, 0x70, 0xb2, 0x9d, 0xf6, 0x38, 0xc4, 0xc2, 0xb1, 0xfb, 0x81, 0xc2, 0x74, + 0x44, 0xc6, 0xa5, 0x51, 0x1f, 0x17, 0x23, 0x74, 0x32, 0x03, 0x88, 0x71, 0x57, 0x5f, 0xd0, 0x2b, + 0x50, 0x6b, 0x3b, 0xdb, 0xd7, 0xc3, 0xa6, 0x93, 0xc8, 0xfd, 0x64, 0x6f, 0x37, 0x40, 0x27, 0x71, + 0xbd, 0x49, 0x7e, 0xb4, 0x3f, 0x39, 0xef, 0x27, 0x4b, 0xd1, 0x4a, 0x12, 0xb9, 0x7e, 0x8b, 0xbb, + 0xf3, 0x16, 0x25, 0x19, 0xac, 0x29, 0xda, 0x5f, 0xb5, 0xb2, 0x4a, 0x4a, 0x8d, 0x4e, 0xe4, 0x24, + 0xa4, 0xb5, 0x83, 0x3e, 0x0a, 0x15, 0xba, 0xf1, 0x93, 0xa3, 0x72, 0xb3, 0x48, 0xcd, 0x69, 0x7c, + 0x09, 0xad, 0x44, 0xe9, 0xbf, 0x18, 0x73, 0xa6, 0xf6, 0xd7, 0x6a, 0x59, 0x63, 0x81, 0x1d, 0xde, + 0x5e, 0x00, 0x68, 0x05, 0xab, 0xa4, 0x1d, 0x7a, 0x74, 0x58, 0x2c, 0x76, 0x02, 0xa0, 0x7c, 0x1d, + 0x73, 0x0a, 0x82, 0x0d, 0x2c, 0xf4, 0x97, 0x2c, 0x80, 0x96, 0x9c, 0xf3, 0xd2, 0x10, 0xb8, 0x5e, + 0xe4, 0xeb, 0xe8, 0x15, 0xa5, 0xfb, 0xa2, 0x18, 0x62, 0x83, 0x39, 0xfa, 0x69, 0x0b, 0xaa, 0x89, + 0xec, 0x3e, 0x57, 0x8d, 0xab, 0x45, 0xf6, 0x44, 0xbe, 0xb4, 0xb6, 0x89, 0xd4, 0x90, 0x28, 0xbe, + 0xe8, 0x67, 0x2c, 0x80, 0x78, 0xc7, 0x6f, 0x2c, 0x07, 0x9e, 0xdb, 0xd8, 0x11, 0x1a, 0xf3, 0x46, + 0xa1, 0xfe, 0x18, 0x45, 0xbd, 0x3e, 0x46, 0x47, 0x43, 0xff, 0xc7, 0x06, 0x67, 0xf4, 0x71, 0xa8, + 0xc6, 0x62, 0xba, 0x09, 0x1d, 0xb9, 0x5a, 0xac, 0x57, 0x88, 0xd3, 0x16, 0xe2, 0x55, 0xfc, 0xc3, + 0x8a, 0x27, 0xfa, 0x39, 0x0b, 0x4e, 0x84, 0x69, 0x3f, 0x9f, 0x50, 0x87, 0xc5, 0xc9, 0x80, 0x8c, + 0x1f, 0xb1, 0x7e, 0xfa, 0xce, 0xee, 0xc4, 0x89, 0x4c, 0x23, 0xce, 0xf6, 0x82, 0x4a, 0x40, 0x3d, + 0x83, 0x97, 0x42, 0xee, 0x73, 0x1c, 0xd2, 0x12, 0x70, 0x2e, 0x0b, 0xc4, 0xdd, 0xf8, 0x68, 0x19, + 0xce, 0xd0, 0xde, 0xed, 0x70, 0xf3, 0x53, 0xaa, 0x97, 0x98, 0x29, 0xc3, 0x6a, 0xfd, 0x51, 0x31, + 0x43, 0x98, 0x57, 0x3f, 0x8b, 0x83, 0x73, 0x9f, 0x44, 0xbf, 0x6b, 0xc1, 0xa3, 0x2e, 0x53, 0x03, + 0xa6, 0xc3, 0x5c, 0x6b, 0x04, 0x71, 0x12, 0x4b, 0x0a, 0x95, 0x15, 0xbd, 0xd4, 0x4f, 0xfd, 0x07, + 0xc5, 0x1b, 0x3c, 0x3a, 0xbf, 0x47, 0x97, 0xf0, 0x9e, 0x1d, 0x46, 0x3f, 0x02, 0xa3, 0x72, 0x5d, + 0x2c, 0x53, 0x11, 0xcc, 0x14, 0x6d, 0xad, 0x7e, 0xea, 0xce, 0xee, 0xc4, 0xe8, 0xaa, 0x09, 0xc0, + 0x69, 0x3c, 0xfb, 0x5f, 0x97, 0x53, 0xe7, 0x21, 0xca, 0x09, 0xc9, 0xc4, 0x4d, 0x43, 0xfa, 0x7f, + 0xa4, 0xf4, 0x2c, 0x54, 0xdc, 0x28, 0xef, 0x92, 0x16, 0x37, 0xaa, 0x29, 0xc6, 0x06, 0x73, 0x6a, + 0x94, 0x9e, 0x72, 0xb2, 0xae, 0x4e, 0x21, 0x01, 0x5f, 0x29, 0xb2, 0x4b, 0xdd, 0xa7, 0x57, 0x8f, + 0x88, 0xae, 0x9d, 0xea, 0x02, 0xe1, 0xee, 0x2e, 0xa1, 0x8f, 0x41, 0x2d, 0x52, 0xa1, 0x0f, 0xe5, + 0x22, 0xb6, 0x6a, 0x72, 0xda, 0x88, 0xee, 0xa8, 0xe3, 0x18, 0x1d, 0xe4, 0xa0, 0x39, 0xda, 0xbf, + 0x93, 0x3e, 0x02, 0x32, 0x64, 0x47, 0x1f, 0xc7, 0x5b, 0x5f, 0xb4, 0x60, 0x38, 0x0a, 0x3c, 0xcf, + 0xf5, 0x5b, 0x54, 0xce, 0x09, 0x65, 0xfd, 0xa1, 0x63, 0xd1, 0x97, 0x42, 0xa0, 0x31, 0xcb, 0x1a, + 0x6b, 0x9e, 0xd8, 0xec, 0x80, 0xfd, 0x27, 0x16, 0x8c, 0xf7, 0x92, 0xc7, 0x88, 0xc0, 0xdb, 0xa5, + 0xb0, 0x51, 0x43, 0xb1, 0xe4, 0xcf, 0x12, 0x8f, 0x28, 0xbf, 0x77, 0xb5, 0xfe, 0x84, 0x78, 0xcd, + 0xb7, 0x2f, 0xf7, 0x46, 0xc5, 0x7b, 0xd1, 0x41, 0x2f, 0xc3, 0x49, 0xe3, 0xbd, 0x62, 0x35, 0x30, + 0xb5, 0xfa, 0x24, 0x35, 0x80, 0xa6, 0x33, 0xb0, 0xbb, 0xbb, 0x13, 0x0f, 0x65, 0xdb, 0x84, 0xc2, + 0xe8, 0xa2, 0x63, 0xff, 0x72, 0x29, 0xfb, 0xb5, 0x94, 0xae, 0x7f, 0xd3, 0xea, 0xf2, 0x26, 0x7c, + 0xe0, 0x38, 0xf4, 0x2b, 0xf3, 0x3b, 0xa8, 0xf8, 0x91, 0xde, 0x38, 0xf7, 0xf1, 0x80, 0xda, 0xfe, + 0x37, 0x03, 0xb0, 0x47, 0xcf, 0xfa, 0x30, 0xde, 0x0f, 0x7c, 0xaa, 0xf9, 0x79, 0x4b, 0x9d, 0x78, + 0xf1, 0x35, 0xdc, 0x3c, 0xae, 0xb1, 0xe7, 0xfb, 0xa7, 0x98, 0x07, 0x49, 0x28, 0x2f, 0x7a, 0xfa, + 0x6c, 0x0d, 0x7d, 0xdd, 0x4a, 0x9f, 0xd9, 0xf1, 0xa8, 0x37, 0xf7, 0xd8, 0xfa, 0x64, 0x1c, 0x04, + 0xf2, 0x8e, 0xe9, 0xe3, 0xa3, 0x5e, 0x47, 0x84, 0x93, 0x00, 0xeb, 0xae, 0xef, 0x78, 0xee, 0xeb, + 0x74, 0x77, 0x54, 0x61, 0x0a, 0x9e, 0x59, 0x4c, 0x97, 0x54, 0x2b, 0x36, 0x30, 0xce, 0xfd, 0x45, + 0x18, 0x36, 0xde, 0x3c, 0x27, 0xb6, 0xe3, 0x8c, 0x19, 0xdb, 0x51, 0x33, 0x42, 0x32, 0xce, 0xbd, + 0x0f, 0x4e, 0x66, 0x3b, 0x78, 0x90, 0xe7, 0xed, 0xff, 0x35, 0x94, 0x3d, 0x44, 0x5b, 0x25, 0x51, + 0x9b, 0x76, 0xed, 0x2d, 0xc7, 0xd6, 0x5b, 0x8e, 0xad, 0xb7, 0x1c, 0x5b, 0xe6, 0xd9, 0x84, 0x70, + 0xda, 0x0c, 0xdd, 0x23, 0xa7, 0x4d, 0xca, 0x0d, 0x55, 0x2d, 0xdc, 0x0d, 0x65, 0x7f, 0xa6, 0xcb, + 0x73, 0xbf, 0x1a, 0x11, 0x82, 0x02, 0xa8, 0xf8, 0x41, 0x93, 0x48, 0x1b, 0xf7, 0x4a, 0x31, 0x06, + 0xdb, 0xb5, 0xa0, 0x69, 0xc4, 0x13, 0xd3, 0x7f, 0x31, 0xe6, 0x7c, 0xec, 0x3b, 0x15, 0x48, 0x99, + 0x93, 0xfc, 0xbb, 0xbf, 0x13, 0x86, 0x22, 0x12, 0x06, 0xd7, 0xf1, 0x82, 0xd0, 0x65, 0x3a, 0xe5, + 0x80, 0x37, 0x63, 0x09, 0xa7, 0x3a, 0x2f, 0x74, 0x92, 0x0d, 0xa1, 0xcc, 0x94, 0xce, 0x5b, 0x76, + 0x92, 0x0d, 0xcc, 0x20, 0xe8, 0x7d, 0x30, 0x96, 0x38, 0x51, 0x8b, 0x6e, 0x3b, 0xb6, 0xd8, 0xf4, + 0x12, 0x47, 0xbe, 0x0f, 0x09, 0xdc, 0xb1, 0xd5, 0x14, 0x14, 0x67, 0xb0, 0xd1, 0x6b, 0x30, 0xb0, + 0x41, 0xbc, 0xb6, 0xf8, 0xf4, 0x2b, 0xc5, 0xe9, 0x1a, 0xf6, 0xae, 0x97, 0x89, 0xd7, 0xe6, 0x92, + 0x90, 0xfe, 0xc2, 0x8c, 0x15, 0x9d, 0xf7, 0xb5, 0xcd, 0x4e, 0x9c, 0x04, 0x6d, 0xf7, 0x75, 0xe9, + 0xe9, 0xfc, 0x40, 0xc1, 0x8c, 0xaf, 0x4a, 0xfa, 0xdc, 0xa5, 0xa4, 0xfe, 0x62, 0xcd, 0x99, 0xf5, + 0xa3, 0xe9, 0x46, 0x6c, 0xca, 0xec, 0x08, 0x87, 0x65, 0xd1, 0xfd, 0x98, 0x95, 0xf4, 0x79, 0x3f, + 0xd4, 0x5f, 0xac, 0x39, 0xa3, 0x1d, 0xb5, 0xfe, 0x86, 0x59, 0x1f, 0xae, 0x17, 0xdc, 0x07, 0xbe, + 0xf6, 0x72, 0xd7, 0xe1, 0x13, 0x50, 0x69, 0x6c, 0x38, 0x51, 0x32, 0x3e, 0xc2, 0x26, 0x8d, 0x9a, + 0xc5, 0x33, 0xb4, 0x11, 0x73, 0x18, 0x7a, 0x0c, 0xca, 0x11, 0x59, 0x67, 0xe1, 0xab, 0x46, 0x60, + 0x13, 0x26, 0xeb, 0x98, 0xb6, 0xdb, 0xbf, 0x58, 0x4a, 0x9b, 0x6d, 0xe9, 0xf7, 0xe6, 0xb3, 0xbd, + 0xd1, 0x89, 0x62, 0xe9, 0xfe, 0x32, 0x66, 0x3b, 0x6b, 0xc6, 0x12, 0x8e, 0x3e, 0x69, 0xc1, 0xd0, + 0xad, 0x38, 0xf0, 0x7d, 0x92, 0x08, 0x15, 0x79, 0xa3, 0xe0, 0xa1, 0xb8, 0xc2, 0xa9, 0xeb, 0x3e, + 0x88, 0x06, 0x2c, 0xf9, 0xd2, 0xee, 0x92, 0xed, 0x86, 0xd7, 0x69, 0x76, 0xc5, 0xaa, 0x5c, 0xe4, + 0xcd, 0x58, 0xc2, 0x29, 0xaa, 0xeb, 0x73, 0xd4, 0x81, 0x34, 0xea, 0xbc, 0x2f, 0x50, 0x05, 0xdc, + 0xfe, 0x6b, 0x83, 0x70, 0x36, 0x77, 0x71, 0x50, 0x83, 0x8a, 0x99, 0x2c, 0x97, 0x5c, 0x8f, 0xc8, + 0x28, 0x2d, 0x66, 0x50, 0xdd, 0x50, 0xad, 0xd8, 0xc0, 0x40, 0x3f, 0x05, 0x10, 0x3a, 0x91, 0xd3, + 0x26, 0xca, 0x3d, 0x7d, 0x64, 0xbb, 0x85, 0xf6, 0x63, 0x59, 0xd2, 0xd4, 0x5b, 0x74, 0xd5, 0x14, + 0x63, 0x83, 0x25, 0x7a, 0x1e, 0x86, 0x23, 0xe2, 0x11, 0x27, 0x66, 0xd1, 0xcf, 0xd9, 0x54, 0x0e, + 0xac, 0x41, 0xd8, 0xc4, 0x43, 0x4f, 0xaa, 0x80, 0xb6, 0x4c, 0x60, 0x4f, 0x3a, 0xa8, 0x0d, 0xbd, + 0x61, 0xc1, 0xd8, 0xba, 0xeb, 0x11, 0xcd, 0x5d, 0x24, 0x5e, 0x2c, 0x1d, 0xfd, 0x25, 0x2f, 0x99, + 0x74, 0xb5, 0x84, 0x4c, 0x35, 0xc7, 0x38, 0xc3, 0x9e, 0x7e, 0xe6, 0x2d, 0x12, 0x31, 0xd1, 0x3a, + 0x98, 0xfe, 0xcc, 0x37, 0x78, 0x33, 0x96, 0x70, 0x34, 0x0d, 0x27, 0x42, 0x27, 0x8e, 0x67, 0x22, + 0xd2, 0x24, 0x7e, 0xe2, 0x3a, 0x1e, 0x4f, 0x8b, 0xa8, 0xea, 0xb0, 0xe8, 0xe5, 0x34, 0x18, 0x67, + 0xf1, 0xd1, 0x07, 0xe1, 0x61, 0xee, 0xff, 0x59, 0x74, 0xe3, 0xd8, 0xf5, 0x5b, 0x7a, 0x1a, 0x08, + 0x37, 0xd8, 0x84, 0x20, 0xf5, 0xf0, 0x7c, 0x3e, 0x1a, 0xee, 0xf5, 0x3c, 0x7a, 0x1a, 0xaa, 0xf1, + 0xa6, 0x1b, 0xce, 0x44, 0xcd, 0x98, 0x9d, 0xfd, 0x54, 0xb5, 0xd3, 0x75, 0x45, 0xb4, 0x63, 0x85, + 0x81, 0x1a, 0x30, 0xc2, 0x3f, 0x09, 0x8f, 0xc8, 0x13, 0xf2, 0xf1, 0x99, 0x9e, 0x6a, 0x5a, 0x64, + 0xf9, 0x4d, 0x62, 0xe7, 0xf6, 0x45, 0x79, 0x12, 0xc5, 0x0f, 0x4e, 0x6e, 0x18, 0x64, 0x70, 0x8a, + 0xa8, 0xfd, 0xf3, 0xa5, 0xf4, 0xce, 0xdf, 0x5c, 0xa4, 0x28, 0xa6, 0x4b, 0x31, 0xb9, 0xe1, 0x44, + 0x52, 0x61, 0x1f, 0x31, 0x7b, 0x43, 0xd0, 0xbd, 0xe1, 0x44, 0xe6, 0xa2, 0x66, 0x0c, 0xb0, 0xe4, + 0x84, 0x6e, 0xc1, 0x40, 0xe2, 0x39, 0x05, 0xa5, 0x7b, 0x19, 0x1c, 0xb5, 0x23, 0x66, 0x61, 0x3a, + 0xc6, 0x8c, 0x07, 0x7a, 0x94, 0xee, 0x3e, 0xd6, 0xe4, 0x49, 0x91, 0xd8, 0x30, 0xac, 0xc5, 0x98, + 0xb5, 0xda, 0x77, 0x21, 0x47, 0xae, 0x2a, 0x45, 0x86, 0x2e, 0x00, 0xd0, 0x8d, 0xec, 0x72, 0x44, + 0xd6, 0xdd, 0x6d, 0x61, 0x48, 0xa8, 0xb5, 0x7b, 0x4d, 0x41, 0xb0, 0x81, 0x25, 0x9f, 0x59, 0xe9, + 0xac, 0xd3, 0x67, 0x4a, 0xdd, 0xcf, 0x70, 0x08, 0x36, 0xb0, 0xd0, 0x73, 0x30, 0xe8, 0xb6, 0x9d, + 0x96, 0x8a, 0x44, 0x7d, 0x94, 0x2e, 0xda, 0x79, 0xd6, 0x72, 0x77, 0x77, 0x62, 0x4c, 0x75, 0x88, + 0x35, 0x61, 0x81, 0x8b, 0x7e, 0xd9, 0x82, 0x91, 0x46, 0xd0, 0x6e, 0x07, 0x3e, 0xdf, 0xfe, 0x89, + 0xbd, 0xec, 0xad, 0xe3, 0x52, 0xf3, 0x93, 0x33, 0x06, 0x33, 0xbe, 0x99, 0x55, 0x79, 0x69, 0x26, + 0x08, 0xa7, 0x7a, 0x65, 0xae, 0xed, 0xca, 0x3e, 0x6b, 0xfb, 0xd7, 0x2c, 0x38, 0xc5, 0x9f, 0x35, + 0x76, 0xa5, 0x22, 0x05, 0x2b, 0x38, 0xe6, 0xd7, 0xea, 0xda, 0xa8, 0x2b, 0x67, 0x65, 0x17, 0x1c, + 0x77, 0x77, 0x12, 0xcd, 0xc1, 0xa9, 0xf5, 0x20, 0x6a, 0x10, 0x73, 0x20, 0x84, 0x60, 0x52, 0x84, + 0x2e, 0x65, 0x11, 0x70, 0xf7, 0x33, 0xe8, 0x06, 0x3c, 0x64, 0x34, 0x9a, 0xe3, 0xc0, 0x65, 0xd3, + 0xe3, 0x82, 0xda, 0x43, 0x97, 0x72, 0xb1, 0x70, 0x8f, 0xa7, 0xd3, 0x8e, 0x9b, 0x5a, 0x1f, 0x8e, + 0x9b, 0x57, 0xe1, 0x91, 0x46, 0xf7, 0xc8, 0x6c, 0xc5, 0x9d, 0xb5, 0x98, 0x4b, 0xaa, 0x6a, 0xfd, + 0x07, 0x04, 0x81, 0x47, 0x66, 0x7a, 0x21, 0xe2, 0xde, 0x34, 0xd0, 0x47, 0xa1, 0x1a, 0x11, 0xf6, + 0x55, 0x62, 0x91, 0x8f, 0x74, 0xc4, 0xdd, 0xba, 0xb6, 0x40, 0x39, 0x59, 0x2d, 0x7b, 0x45, 0x43, + 0x8c, 0x15, 0x47, 0x74, 0x1b, 0x86, 0x42, 0x27, 0x69, 0x6c, 0x88, 0x2c, 0xa4, 0x23, 0xfb, 0x96, + 0x15, 0x73, 0x76, 0x14, 0x60, 0xe4, 0x2d, 0x73, 0x26, 0x58, 0x72, 0xa3, 0xd6, 0x48, 0x23, 0x68, + 0x87, 0x81, 0x4f, 0xfc, 0x24, 0x1e, 0x1f, 0xd5, 0xd6, 0xc8, 0x8c, 0x6a, 0xc5, 0x06, 0x06, 0x5a, + 0x86, 0x33, 0xcc, 0x77, 0x75, 0xd3, 0x4d, 0x36, 0x82, 0x4e, 0x22, 0xb7, 0x62, 0xe3, 0x63, 0xe9, + 0x13, 0x9b, 0x85, 0x1c, 0x1c, 0x9c, 0xfb, 0xe4, 0xb9, 0xf7, 0xc3, 0xa9, 0xae, 0xa5, 0x7c, 0x20, + 0xb7, 0xd1, 0x2c, 0x3c, 0x94, 0xbf, 0x68, 0x0e, 0xe4, 0x3c, 0xfa, 0x47, 0x99, 0xe8, 0x61, 0xc3, + 0x90, 0xee, 0xc3, 0x11, 0xe9, 0x40, 0x99, 0xf8, 0x5b, 0x42, 0x87, 0x5c, 0x3a, 0xda, 0xb7, 0xbb, + 0xe8, 0x6f, 0xf1, 0x35, 0xcf, 0xbc, 0x2d, 0x17, 0xfd, 0x2d, 0x4c, 0x69, 0xa3, 0x2f, 0x5b, 0x29, + 0x43, 0x90, 0xbb, 0x2f, 0x3f, 0x7c, 0x2c, 0x3b, 0x87, 0xbe, 0x6d, 0x43, 0xfb, 0xdf, 0x96, 0xe0, + 0xfc, 0x7e, 0x44, 0xfa, 0x18, 0xbe, 0x27, 0x60, 0x30, 0x66, 0xf1, 0x00, 0x42, 0x28, 0x0f, 0xd3, + 0xb9, 0xca, 0x23, 0x04, 0x5e, 0xc5, 0x02, 0x84, 0x3c, 0x28, 0xb7, 0x9d, 0x50, 0x78, 0xb5, 0xe6, + 0x8f, 0x9a, 0x4f, 0x44, 0xff, 0x3b, 0xde, 0xa2, 0x13, 0x72, 0x5f, 0x89, 0xd1, 0x80, 0x29, 0x1b, + 0x94, 0x40, 0xc5, 0x89, 0x22, 0x47, 0x1e, 0x3e, 0x5f, 0x2d, 0x86, 0xdf, 0x34, 0x25, 0xc9, 0xcf, + 0xee, 0x52, 0x4d, 0x98, 0x33, 0xb3, 0x3f, 0x3f, 0x94, 0xca, 0xa9, 0x61, 0x11, 0x05, 0x31, 0x0c, + 0x0a, 0x67, 0x96, 0x55, 0x74, 0x1a, 0x17, 0x4f, 0x8a, 0x64, 0xfb, 0x44, 0x91, 0x5a, 0x2e, 0x58, + 0xa1, 0xcf, 0x59, 0x2c, 0x81, 0x5b, 0xe6, 0x19, 0x89, 0xdd, 0xd9, 0xf1, 0xe4, 0x93, 0x9b, 0x69, + 0xe1, 0xb2, 0x11, 0x9b, 0xdc, 0x45, 0x21, 0x06, 0x66, 0x95, 0x76, 0x17, 0x62, 0x60, 0x56, 0xa6, + 0x84, 0xa3, 0xed, 0x9c, 0xc8, 0x81, 0x02, 0x92, 0x80, 0xfb, 0x88, 0x15, 0xf8, 0xba, 0x05, 0xa7, + 0xdc, 0xec, 0x11, 0xb0, 0xd8, 0xcb, 0xdc, 0x2c, 0xc6, 0xf3, 0xd4, 0x7d, 0xc2, 0xac, 0xd4, 0x79, + 0x17, 0x08, 0x77, 0x77, 0x06, 0x35, 0x61, 0xc0, 0xf5, 0xd7, 0x03, 0x61, 0xc4, 0xd4, 0x8f, 0xd6, + 0xa9, 0x79, 0x7f, 0x3d, 0xd0, 0xab, 0x99, 0xfe, 0xc3, 0x8c, 0x3a, 0x5a, 0x80, 0x33, 0x91, 0xf0, + 0x36, 0x5d, 0x76, 0xe3, 0x24, 0x88, 0x76, 0x16, 0xdc, 0xb6, 0x9b, 0x30, 0x03, 0xa4, 0x5c, 0x1f, + 0xa7, 0xfa, 0x01, 0xe7, 0xc0, 0x71, 0xee, 0x53, 0xe8, 0x75, 0x18, 0x92, 0xc7, 0xae, 0xd5, 0x22, + 0xf6, 0x85, 0xdd, 0xf3, 0x5f, 0x4d, 0xa6, 0x15, 0x71, 0xee, 0x2a, 0x19, 0xda, 0x6f, 0x0c, 0x43, + 0xf7, 0xe9, 0x70, 0xfa, 0x28, 0xd8, 0xba, 0xd7, 0x47, 0xc1, 0x74, 0xc3, 0x12, 0xeb, 0x53, 0xdc, + 0x02, 0xe6, 0xb6, 0xe0, 0xaa, 0x4f, 0xe8, 0x76, 0xfc, 0x06, 0x66, 0x3c, 0x50, 0x04, 0x83, 0x1b, + 0xc4, 0xf1, 0x92, 0x8d, 0x62, 0x0e, 0x13, 0x2e, 0x33, 0x5a, 0xd9, 0x5c, 0x28, 0xde, 0x8a, 0x05, + 0x27, 0xb4, 0x0d, 0x43, 0x1b, 0x7c, 0x02, 0x88, 0x3d, 0xc4, 0xe2, 0x51, 0x07, 0x37, 0x35, 0xab, + 0xf4, 0xe7, 0x16, 0x0d, 0x58, 0xb2, 0x63, 0x61, 0x47, 0x46, 0x60, 0x04, 0x5f, 0xba, 0xc5, 0xa5, + 0x81, 0xf5, 0x1f, 0x15, 0xf1, 0x11, 0x18, 0x89, 0x48, 0x23, 0xf0, 0x1b, 0xae, 0x47, 0x9a, 0xd3, + 0xf2, 0xa0, 0xe0, 0x20, 0xc9, 0x43, 0x6c, 0x1f, 0x8e, 0x0d, 0x1a, 0x38, 0x45, 0x11, 0x7d, 0xd6, + 0x82, 0x31, 0x95, 0x3a, 0x4b, 0x3f, 0x08, 0x11, 0x0e, 0xe1, 0x85, 0x82, 0x12, 0x75, 0x19, 0xcd, + 0x3a, 0xba, 0xb3, 0x3b, 0x31, 0x96, 0x6e, 0xc3, 0x19, 0xbe, 0xe8, 0x65, 0x80, 0x60, 0x8d, 0xc7, + 0x16, 0x4d, 0x27, 0xc2, 0x3b, 0x7c, 0x90, 0x57, 0x1d, 0xe3, 0x59, 0x84, 0x92, 0x02, 0x36, 0xa8, + 0xa1, 0xab, 0x00, 0x7c, 0xd9, 0xac, 0xee, 0x84, 0x72, 0xa3, 0x21, 0xb3, 0xbf, 0x60, 0x45, 0x41, + 0xee, 0xee, 0x4e, 0x74, 0x7b, 0xeb, 0x58, 0x00, 0x85, 0xf1, 0x38, 0xfa, 0x49, 0x18, 0x8a, 0x3b, + 0xed, 0xb6, 0xa3, 0x7c, 0xc7, 0x05, 0xe6, 0x25, 0x72, 0xba, 0x86, 0x28, 0xe2, 0x0d, 0x58, 0x72, + 0x44, 0xb7, 0xa8, 0x50, 0x8d, 0x85, 0x1b, 0x91, 0xad, 0x22, 0x6e, 0x13, 0x0c, 0xb3, 0x77, 0x7a, + 0x8f, 0x34, 0xbc, 0x71, 0x0e, 0xce, 0xdd, 0xdd, 0x89, 0x87, 0xd2, 0xed, 0x0b, 0x81, 0xc8, 0x14, + 0xcc, 0xa5, 0x89, 0xae, 0xc8, 0x02, 0x34, 0xf4, 0xb5, 0x65, 0x5d, 0x84, 0xa7, 0x74, 0x01, 0x1a, + 0xd6, 0xdc, 0x7b, 0xcc, 0xcc, 0x87, 0xd1, 0x22, 0x9c, 0x6e, 0x04, 0x7e, 0x12, 0x05, 0x9e, 0xc7, + 0x0b, 0x30, 0xf1, 0x3d, 0x1f, 0xf7, 0x2d, 0xbf, 0x5d, 0x74, 0xfb, 0xf4, 0x4c, 0x37, 0x0a, 0xce, + 0x7b, 0xce, 0xf6, 0xd3, 0xe7, 0x3c, 0x62, 0x70, 0x9e, 0x83, 0x11, 0xb2, 0x9d, 0x90, 0xc8, 0x77, + 0xbc, 0xeb, 0x78, 0x41, 0x7a, 0x55, 0xd9, 0x1a, 0xb8, 0x68, 0xb4, 0xe3, 0x14, 0x16, 0xb2, 0x95, + 0xa3, 0xc3, 0xc8, 0x7e, 0xe5, 0x8e, 0x0e, 0xe9, 0xd6, 0xb0, 0xff, 0x77, 0x29, 0x65, 0x90, 0xdd, + 0x97, 0x53, 0x25, 0x56, 0xc6, 0x43, 0xd6, 0x3b, 0x61, 0x00, 0xb1, 0xd1, 0x28, 0x92, 0xb3, 0x2a, + 0xe3, 0xb1, 0x64, 0x32, 0xc2, 0x69, 0xbe, 0x68, 0x13, 0x2a, 0x1b, 0x41, 0x9c, 0xc8, 0xed, 0xc7, + 0x11, 0x77, 0x3a, 0x97, 0x83, 0x38, 0x61, 0x56, 0x84, 0x7a, 0x6d, 0xda, 0x12, 0x63, 0xce, 0xc3, + 0xfe, 0x2f, 0x56, 0xca, 0x87, 0x7e, 0x93, 0x05, 0x20, 0x6f, 0x11, 0x9f, 0x2e, 0x6b, 0x33, 0xe4, + 0xe9, 0x47, 0x32, 0xe9, 0x9c, 0xef, 0xe8, 0x55, 0x5f, 0xec, 0x36, 0xa5, 0x30, 0xc9, 0x48, 0x18, + 0xd1, 0x51, 0x9f, 0xb0, 0xd2, 0x89, 0xb5, 0xa5, 0x22, 0x36, 0x18, 0x66, 0x72, 0xf9, 0xbe, 0x39, + 0xba, 0xf6, 0x97, 0x2d, 0x18, 0xaa, 0x3b, 0x8d, 0xcd, 0x60, 0x7d, 0x1d, 0x3d, 0x0d, 0xd5, 0x66, + 0x27, 0x32, 0x73, 0x7c, 0x95, 0xe3, 0x60, 0x56, 0xb4, 0x63, 0x85, 0x41, 0xe7, 0xf0, 0xba, 0xd3, + 0x90, 0x29, 0xe6, 0x65, 0x3e, 0x87, 0x2f, 0xb1, 0x16, 0x2c, 0x20, 0xe8, 0x79, 0x18, 0x6e, 0x3b, + 0xdb, 0xf2, 0xe1, 0xac, 0x03, 0x7f, 0x51, 0x83, 0xb0, 0x89, 0x67, 0xff, 0x0b, 0x0b, 0xc6, 0xeb, + 0x4e, 0xec, 0x36, 0xa6, 0x3b, 0xc9, 0x46, 0xdd, 0x4d, 0xd6, 0x3a, 0x8d, 0x4d, 0x92, 0xf0, 0xba, + 0x02, 0xb4, 0x97, 0x9d, 0x98, 0x2e, 0x25, 0xb5, 0xaf, 0x53, 0xbd, 0xbc, 0x2e, 0xda, 0xb1, 0xc2, + 0x40, 0xaf, 0xc3, 0x70, 0xe8, 0xc4, 0xf1, 0xed, 0x20, 0x6a, 0x62, 0xb2, 0x5e, 0x4c, 0x55, 0x8f, + 0x15, 0xd2, 0x88, 0x48, 0x82, 0xc9, 0xba, 0x38, 0xec, 0xd6, 0xf4, 0xb1, 0xc9, 0xcc, 0xfe, 0xa2, + 0x05, 0x8f, 0xd4, 0x89, 0x13, 0x91, 0x88, 0x15, 0x01, 0x51, 0x2f, 0x32, 0xe3, 0x05, 0x9d, 0x26, + 0x7a, 0x0d, 0xaa, 0x09, 0x6d, 0xa6, 0xdd, 0xb2, 0x8a, 0xed, 0x16, 0x3b, 0xab, 0x5e, 0x15, 0xc4, + 0xb1, 0x62, 0x63, 0xff, 0x75, 0x0b, 0x46, 0xd8, 0x71, 0xdb, 0x2c, 0x49, 0x1c, 0xd7, 0xeb, 0xaa, + 0x95, 0x65, 0xf5, 0x59, 0x2b, 0xeb, 0x3c, 0x0c, 0x6c, 0x04, 0x6d, 0x92, 0x3d, 0x2a, 0xbe, 0x1c, + 0xd0, 0x6d, 0x35, 0x85, 0xa0, 0x67, 0xe9, 0x87, 0x77, 0xfd, 0xc4, 0xa1, 0x4b, 0x40, 0xba, 0x73, + 0x4f, 0xf0, 0x8f, 0xae, 0x9a, 0xb1, 0x89, 0x63, 0xff, 0x66, 0x0d, 0x86, 0x44, 0x5c, 0x43, 0xdf, + 0xb5, 0x25, 0xe4, 0xfe, 0xbe, 0xd4, 0x73, 0x7f, 0x1f, 0xc3, 0x60, 0x83, 0x15, 0xed, 0x13, 0x66, + 0xe4, 0xd5, 0x42, 0x02, 0x61, 0x78, 0x1d, 0x40, 0xdd, 0x2d, 0xfe, 0x1f, 0x0b, 0x56, 0xe8, 0x4b, + 0x16, 0x9c, 0x68, 0x04, 0xbe, 0x4f, 0x1a, 0xda, 0xc6, 0x19, 0x28, 0x22, 0xde, 0x61, 0x26, 0x4d, + 0x54, 0x9f, 0xf5, 0x64, 0x00, 0x38, 0xcb, 0x1e, 0xbd, 0x08, 0xa3, 0x7c, 0xcc, 0x6e, 0xa4, 0x7c, + 0xd0, 0xba, 0x84, 0x92, 0x09, 0xc4, 0x69, 0x5c, 0x34, 0xc9, 0x7d, 0xf9, 0xa2, 0x58, 0xd1, 0xa0, + 0x76, 0xd5, 0x19, 0x65, 0x8a, 0x0c, 0x0c, 0x14, 0x01, 0x8a, 0xc8, 0x7a, 0x44, 0xe2, 0x0d, 0x11, + 0xf7, 0xc1, 0xec, 0xab, 0xa1, 0xc3, 0xe5, 0xa1, 0xe3, 0x2e, 0x4a, 0x38, 0x87, 0x3a, 0xda, 0x14, + 0x1b, 0xcc, 0x6a, 0x11, 0x32, 0x54, 0x7c, 0xe6, 0x9e, 0xfb, 0xcc, 0x09, 0xa8, 0xc4, 0x1b, 0x4e, + 0xd4, 0x64, 0x76, 0x5d, 0x99, 0xe7, 0x3e, 0xad, 0xd0, 0x06, 0xcc, 0xdb, 0xd1, 0x2c, 0x9c, 0xcc, + 0x14, 0x80, 0x8a, 0x85, 0xaf, 0x58, 0xe5, 0xb9, 0x64, 0x4a, 0x47, 0xc5, 0xb8, 0xeb, 0x09, 0xd3, + 0xf9, 0x30, 0xbc, 0x8f, 0xf3, 0x61, 0x47, 0x45, 0x17, 0x72, 0x2f, 0xee, 0x4b, 0x85, 0x0c, 0x40, + 0x5f, 0xa1, 0x84, 0x5f, 0xc8, 0x84, 0x12, 0x8e, 0xb2, 0x0e, 0xdc, 0x28, 0xa6, 0x03, 0x07, 0x8f, + 0x1b, 0xbc, 0x9f, 0x71, 0x80, 0x7f, 0x6e, 0x81, 0xfc, 0xae, 0x33, 0x4e, 0x63, 0x83, 0xd0, 0x29, + 0x83, 0xde, 0x07, 0x63, 0x6a, 0x0b, 0x3d, 0x13, 0x74, 0x7c, 0x1e, 0x02, 0x58, 0xd6, 0x87, 0xc2, + 0x38, 0x05, 0xc5, 0x19, 0x6c, 0x34, 0x05, 0x35, 0x3a, 0x4e, 0xfc, 0x51, 0xae, 0x6b, 0xd5, 0x36, + 0x7d, 0x7a, 0x79, 0x5e, 0x3c, 0xa5, 0x71, 0x50, 0x00, 0xa7, 0x3c, 0x27, 0x4e, 0x58, 0x0f, 0xe8, + 0x8e, 0xfa, 0x90, 0x55, 0x20, 0x58, 0x32, 0xc5, 0x42, 0x96, 0x10, 0xee, 0xa6, 0x6d, 0x7f, 0x7b, + 0x00, 0x46, 0x53, 0x92, 0xf1, 0x80, 0x4a, 0xfa, 0x69, 0xa8, 0x4a, 0xbd, 0x99, 0xad, 0x57, 0xa3, + 0x94, 0xab, 0xc2, 0xa0, 0x4a, 0x6b, 0x4d, 0x6b, 0xd5, 0xac, 0x51, 0x61, 0x28, 0x5c, 0x6c, 0xe2, + 0x31, 0xa1, 0x9c, 0x78, 0xf1, 0x8c, 0xe7, 0x12, 0x3f, 0xe1, 0xdd, 0x2c, 0x46, 0x28, 0xaf, 0x2e, + 0xac, 0x98, 0x44, 0xb5, 0x50, 0xce, 0x00, 0x70, 0x96, 0x3d, 0xfa, 0xb4, 0x05, 0xa3, 0xce, 0xed, + 0x58, 0x57, 0x96, 0x15, 0x41, 0x83, 0x47, 0x54, 0x52, 0xa9, 0x62, 0xb5, 0xdc, 0xe5, 0x9b, 0x6a, + 0xc2, 0x69, 0xa6, 0xe8, 0x4d, 0x0b, 0x10, 0xd9, 0x26, 0x0d, 0x19, 0xd6, 0x28, 0xfa, 0x32, 0x58, + 0xc4, 0x4e, 0xf3, 0x62, 0x17, 0x5d, 0x2e, 0xd5, 0xbb, 0xdb, 0x71, 0x4e, 0x1f, 0xec, 0x7f, 0x5a, + 0x56, 0x0b, 0x4a, 0x47, 0xd2, 0x3a, 0x46, 0x44, 0x9f, 0x75, 0xf8, 0x88, 0x3e, 0x1d, 0x91, 0xd0, + 0x9d, 0x5c, 0x9a, 0xca, 0x45, 0x2b, 0xdd, 0xa7, 0x5c, 0xb4, 0x9f, 0xb6, 0x52, 0x95, 0x99, 0x86, + 0x2f, 0xbc, 0x5c, 0x6c, 0x14, 0xef, 0x24, 0x8f, 0x96, 0xc8, 0x48, 0xf7, 0x74, 0x90, 0x0c, 0x95, + 0xa6, 0x06, 0xda, 0x81, 0xa4, 0xe1, 0xbf, 0x2f, 0xc3, 0xb0, 0xa1, 0x49, 0x73, 0xcd, 0x22, 0xeb, + 0x01, 0x33, 0x8b, 0x4a, 0x07, 0x30, 0x8b, 0x7e, 0x0a, 0x6a, 0x0d, 0x29, 0xe5, 0x8b, 0xa9, 0x4d, + 0x9c, 0xd5, 0x1d, 0x5a, 0xd0, 0xab, 0x26, 0xac, 0x79, 0xa2, 0xb9, 0x54, 0x06, 0x93, 0xd0, 0x10, + 0x03, 0x4c, 0x43, 0xe4, 0xa5, 0x18, 0x09, 0x4d, 0xd1, 0xfd, 0x0c, 0x2b, 0xe0, 0x15, 0xba, 0xe2, + 0xbd, 0x64, 0xac, 0x3d, 0x2f, 0xe0, 0xb5, 0x3c, 0x2f, 0x9b, 0xb1, 0x89, 0x63, 0x7f, 0xdb, 0x52, + 0x1f, 0xf7, 0x1e, 0x94, 0xaa, 0xb8, 0x95, 0x2e, 0x55, 0x71, 0xb1, 0x90, 0x61, 0xee, 0x51, 0xa3, + 0xe2, 0x1a, 0x0c, 0xcd, 0x04, 0xed, 0xb6, 0xe3, 0x37, 0xd1, 0x0f, 0xc1, 0x50, 0x83, 0xff, 0x14, + 0x8e, 0x1d, 0x76, 0x3c, 0x28, 0xa0, 0x58, 0xc2, 0xd0, 0xa3, 0x30, 0xe0, 0x44, 0x2d, 0xe9, 0xcc, + 0x61, 0xc1, 0x35, 0xd3, 0x51, 0x2b, 0xc6, 0xac, 0xd5, 0xfe, 0x87, 0x03, 0xc0, 0xce, 0xb4, 0x9d, + 0x88, 0x34, 0x57, 0x03, 0x56, 0x1b, 0xf1, 0x58, 0x0f, 0xd5, 0xf4, 0x66, 0xe9, 0x41, 0x3e, 0x58, + 0x33, 0x0e, 0x57, 0xca, 0xf7, 0xf8, 0x70, 0xa5, 0xc7, 0x79, 0xd9, 0xc0, 0x03, 0x74, 0x5e, 0x66, + 0x7f, 0xde, 0x02, 0xa4, 0x02, 0x21, 0xf4, 0x81, 0xf6, 0x14, 0xd4, 0x54, 0x48, 0x84, 0x30, 0xac, + 0xb4, 0x88, 0x90, 0x00, 0xac, 0x71, 0xfa, 0xd8, 0x21, 0x3f, 0x21, 0xe5, 0x77, 0x39, 0x1d, 0x97, + 0xcb, 0xa4, 0xbe, 0x10, 0xe7, 0xf6, 0x6f, 0x95, 0xe0, 0x21, 0xae, 0x92, 0x17, 0x1d, 0xdf, 0x69, + 0x91, 0x36, 0xed, 0x55, 0xbf, 0x21, 0x0a, 0x0d, 0xba, 0x35, 0x73, 0x65, 0x9c, 0xed, 0x51, 0xd7, + 0x2e, 0x5f, 0x73, 0x7c, 0x95, 0xcd, 0xfb, 0x6e, 0x82, 0x19, 0x71, 0x14, 0x43, 0x55, 0x16, 0xee, + 0x17, 0xb2, 0xb8, 0x20, 0x46, 0x4a, 0x2c, 0x09, 0xbd, 0x49, 0xb0, 0x62, 0x44, 0x0d, 0x57, 0x2f, + 0x68, 0x6c, 0x62, 0x12, 0x06, 0x4c, 0xee, 0x1a, 0x61, 0x8e, 0x0b, 0xa2, 0x1d, 0x2b, 0x0c, 0xfb, + 0xb7, 0x2c, 0xc8, 0x6a, 0x24, 0xa3, 0x08, 0x9d, 0xb5, 0x67, 0x11, 0xba, 0x03, 0x54, 0x81, 0xfb, + 0x09, 0x18, 0x76, 0x12, 0x6a, 0x44, 0xf0, 0x6d, 0x77, 0xf9, 0x70, 0xc7, 0x1a, 0x8b, 0x41, 0xd3, + 0x5d, 0x77, 0xd9, 0x76, 0xdb, 0x24, 0x67, 0xff, 0x8f, 0x01, 0x38, 0xd5, 0x95, 0x95, 0x82, 0x5e, + 0x80, 0x91, 0x86, 0x98, 0x1e, 0xa1, 0x74, 0x68, 0xd5, 0xcc, 0xb0, 0x38, 0x0d, 0xc3, 0x29, 0xcc, + 0x3e, 0x26, 0xe8, 0x3c, 0x9c, 0x8e, 0xe8, 0x46, 0xbf, 0x43, 0xa6, 0xd7, 0x13, 0x12, 0xad, 0x90, + 0x46, 0xe0, 0x37, 0x79, 0xa9, 0xc4, 0x72, 0xfd, 0xe1, 0x3b, 0xbb, 0x13, 0xa7, 0x71, 0x37, 0x18, + 0xe7, 0x3d, 0x83, 0x42, 0x18, 0xf5, 0x4c, 0x1b, 0x50, 0x6c, 0x00, 0x0e, 0x65, 0x3e, 0x2a, 0x1b, + 0x21, 0xd5, 0x8c, 0xd3, 0x0c, 0xd2, 0x86, 0x64, 0xe5, 0x3e, 0x19, 0x92, 0x9f, 0xd2, 0x86, 0x24, + 0x3f, 0x7f, 0xff, 0x50, 0xc1, 0x59, 0x49, 0xc7, 0x6d, 0x49, 0xbe, 0x04, 0x55, 0x19, 0x9b, 0xd4, + 0x57, 0x4c, 0x8f, 0x49, 0xa7, 0x87, 0x44, 0x7b, 0x12, 0x7e, 0xf0, 0x62, 0x14, 0x19, 0x83, 0x79, + 0x2d, 0x48, 0xa6, 0x3d, 0x2f, 0xb8, 0x4d, 0x95, 0xf4, 0xf5, 0x98, 0x08, 0x0f, 0x8b, 0x7d, 0xb7, + 0x04, 0x39, 0x9b, 0x15, 0xba, 0x1e, 0xb5, 0x65, 0x90, 0x5a, 0x8f, 0x07, 0xb3, 0x0e, 0xd0, 0x36, + 0x8f, 0xdf, 0xe2, 0x3a, 0xf0, 0x83, 0x45, 0x6f, 0xb6, 0x74, 0x48, 0x97, 0x4a, 0xa6, 0x50, 0x61, + 0x5d, 0x17, 0x00, 0xb4, 0x41, 0x27, 0x42, 0xe5, 0xd5, 0xf1, 0xb0, 0xb6, 0xfb, 0xb0, 0x81, 0x45, + 0xf7, 0xde, 0xae, 0x1f, 0x27, 0x8e, 0xe7, 0x5d, 0x76, 0xfd, 0x44, 0x38, 0x11, 0x95, 0xb2, 0x9f, + 0xd7, 0x20, 0x6c, 0xe2, 0x9d, 0x7b, 0x8f, 0xf1, 0xfd, 0x0e, 0xf2, 0xdd, 0x37, 0xe0, 0x91, 0x39, + 0x37, 0x51, 0x09, 0x1e, 0x6a, 0xbe, 0x51, 0x7b, 0x4d, 0x25, 0x2c, 0x59, 0x3d, 0x13, 0x96, 0x8c, + 0x04, 0x8b, 0x52, 0x3a, 0x1f, 0x24, 0x9b, 0x60, 0x61, 0xbf, 0x00, 0x67, 0xe6, 0xdc, 0xe4, 0x92, + 0xeb, 0x91, 0x03, 0x32, 0xb1, 0x7f, 0x63, 0x10, 0x46, 0xcc, 0x54, 0xc5, 0x83, 0xe4, 0x5c, 0x7d, + 0x91, 0x9a, 0x64, 0xe2, 0xed, 0x5c, 0x75, 0xb8, 0x76, 0xf3, 0xc8, 0x79, 0x93, 0xf9, 0x23, 0x66, + 0x58, 0x65, 0x9a, 0x27, 0x36, 0x3b, 0x80, 0x6e, 0x43, 0x65, 0x9d, 0x25, 0x00, 0x94, 0x8b, 0x88, + 0x40, 0xc8, 0x1b, 0x51, 0xbd, 0x1c, 0x79, 0x0a, 0x01, 0xe7, 0x47, 0x35, 0x69, 0x94, 0xce, 0x2a, + 0x33, 0x82, 0x56, 0x45, 0x3e, 0x99, 0xc2, 0xe8, 0xa5, 0x12, 0x2a, 0x87, 0x50, 0x09, 0x29, 0x01, + 0x3d, 0x78, 0x9f, 0x04, 0x34, 0x4b, 0xe6, 0x48, 0x36, 0x98, 0x9d, 0x27, 0xa2, 0xec, 0x87, 0xd8, + 0x20, 0x18, 0xc9, 0x1c, 0x29, 0x30, 0xce, 0xe2, 0xa3, 0x8f, 0x2b, 0x11, 0x5f, 0x2d, 0xc2, 0xff, + 0x6a, 0xce, 0xe8, 0xe3, 0x96, 0xee, 0x9f, 0x2f, 0xc1, 0xd8, 0x9c, 0xdf, 0x59, 0x9e, 0x5b, 0xee, + 0xac, 0x79, 0x6e, 0xe3, 0x2a, 0xd9, 0xa1, 0x22, 0x7c, 0x93, 0xec, 0xcc, 0xcf, 0x8a, 0x15, 0xa4, + 0xe6, 0xcc, 0x55, 0xda, 0x88, 0x39, 0x8c, 0x0a, 0xa3, 0x75, 0xd7, 0x6f, 0x91, 0x28, 0x8c, 0x5c, + 0xe1, 0x1a, 0x35, 0x84, 0xd1, 0x25, 0x0d, 0xc2, 0x26, 0x1e, 0xa5, 0x1d, 0xdc, 0xf6, 0x49, 0x94, + 0x35, 0x78, 0x97, 0x68, 0x23, 0xe6, 0x30, 0x8a, 0x94, 0x44, 0x9d, 0x38, 0x11, 0x93, 0x51, 0x21, + 0xad, 0xd2, 0x46, 0xcc, 0x61, 0x74, 0xa5, 0xc7, 0x9d, 0x35, 0x16, 0xe0, 0x91, 0x09, 0xe9, 0x5f, + 0xe1, 0xcd, 0x58, 0xc2, 0x29, 0xea, 0x26, 0xd9, 0x99, 0xa5, 0xbb, 0xe3, 0x4c, 0x66, 0xcf, 0x55, + 0xde, 0x8c, 0x25, 0x9c, 0xd5, 0x82, 0x4c, 0x0f, 0xc7, 0xf7, 0x5c, 0x2d, 0xc8, 0x74, 0xf7, 0x7b, + 0xec, 0xb3, 0x7f, 0xc9, 0x82, 0x11, 0x33, 0x2c, 0x0b, 0xb5, 0x32, 0xb6, 0xf0, 0x52, 0x57, 0x29, + 0xe1, 0x1f, 0xcb, 0xbb, 0x87, 0xad, 0xe5, 0x26, 0x41, 0x18, 0x3f, 0x43, 0xfc, 0x96, 0xeb, 0x13, + 0x76, 0xda, 0xce, 0xc3, 0xb9, 0x52, 0x31, 0x5f, 0x33, 0x41, 0x93, 0x1c, 0xc2, 0x98, 0xb6, 0x6f, + 0xc2, 0xa9, 0xae, 0x74, 0xae, 0x3e, 0x4c, 0x90, 0x7d, 0x93, 0x69, 0x6d, 0x0c, 0xc3, 0x94, 0xb0, + 0xac, 0x47, 0x34, 0x03, 0xa7, 0xf8, 0x42, 0xa2, 0x9c, 0x56, 0x1a, 0x1b, 0xa4, 0xad, 0x52, 0xf4, + 0x98, 0x1f, 0xfe, 0x46, 0x16, 0x88, 0xbb, 0xf1, 0xed, 0x2f, 0x58, 0x30, 0x9a, 0xca, 0xb0, 0x2b, + 0xc8, 0x58, 0x62, 0x2b, 0x2d, 0x60, 0x51, 0x82, 0x2c, 0x54, 0xba, 0xcc, 0x94, 0xa9, 0x5e, 0x69, + 0x1a, 0x84, 0x4d, 0x3c, 0xfb, 0xcb, 0x25, 0xa8, 0xca, 0x48, 0x8b, 0x3e, 0xba, 0xf2, 0x39, 0x0b, + 0x46, 0xd5, 0xd9, 0x07, 0x73, 0xaa, 0x95, 0x8a, 0x48, 0x87, 0xa0, 0x3d, 0x50, 0xdb, 0x72, 0x7f, + 0x3d, 0xd0, 0x96, 0x3b, 0x36, 0x99, 0xe1, 0x34, 0x6f, 0x74, 0x03, 0x20, 0xde, 0x89, 0x13, 0xd2, + 0x36, 0xdc, 0x7b, 0xb6, 0xb1, 0xe2, 0x26, 0x1b, 0x41, 0x44, 0xe8, 0xfa, 0xba, 0x16, 0x34, 0xc9, + 0x8a, 0xc2, 0xd4, 0x26, 0x94, 0x6e, 0xc3, 0x06, 0x25, 0xfb, 0xef, 0x97, 0xe0, 0x64, 0xb6, 0x4b, + 0xe8, 0x43, 0x30, 0x22, 0xb9, 0x1b, 0x57, 0xca, 0xc9, 0xf0, 0x92, 0x11, 0x6c, 0xc0, 0xee, 0xee, + 0x4e, 0x4c, 0x74, 0xdf, 0xe9, 0x37, 0x69, 0xa2, 0xe0, 0x14, 0x31, 0x7e, 0x00, 0x25, 0x4e, 0x4a, + 0xeb, 0x3b, 0xd3, 0x61, 0x28, 0x4e, 0x91, 0x8c, 0x03, 0x28, 0x13, 0x8a, 0x33, 0xd8, 0x68, 0x19, + 0xce, 0x18, 0x2d, 0xd7, 0x88, 0xdb, 0xda, 0x58, 0x0b, 0x22, 0xb9, 0x03, 0x7b, 0x54, 0x07, 0x80, + 0x75, 0xe3, 0xe0, 0xdc, 0x27, 0xa9, 0xb6, 0x6f, 0x38, 0xa1, 0xd3, 0x70, 0x93, 0x1d, 0xe1, 0xaf, + 0x54, 0xb2, 0x69, 0x46, 0xb4, 0x63, 0x85, 0x61, 0x2f, 0xc2, 0x40, 0x9f, 0x33, 0xa8, 0x2f, 0xcb, + 0xff, 0x25, 0xa8, 0x52, 0x72, 0xd2, 0xbc, 0x2b, 0x82, 0x64, 0x00, 0x55, 0x79, 0xd5, 0x0b, 0xb2, + 0xa1, 0xec, 0x3a, 0xf2, 0x8c, 0x4f, 0xbd, 0xd6, 0x7c, 0x1c, 0x77, 0xd8, 0x66, 0x9a, 0x02, 0xd1, + 0x13, 0x50, 0x26, 0xdb, 0x61, 0xf6, 0x30, 0xef, 0xe2, 0x76, 0xe8, 0x46, 0x24, 0xa6, 0x48, 0x64, + 0x3b, 0x44, 0xe7, 0xa0, 0xe4, 0x36, 0x85, 0x92, 0x02, 0x81, 0x53, 0x9a, 0x9f, 0xc5, 0x25, 0xb7, + 0x69, 0x6f, 0x43, 0x4d, 0xdd, 0x2d, 0x83, 0x36, 0xa5, 0xec, 0xb6, 0x8a, 0x08, 0x8d, 0x92, 0x74, + 0x7b, 0x48, 0xed, 0x0e, 0x80, 0x4e, 0x35, 0x2c, 0x4a, 0xbe, 0x9c, 0x87, 0x81, 0x46, 0x20, 0xd2, + 0xa0, 0xab, 0x9a, 0x0c, 0x13, 0xda, 0x0c, 0x62, 0xdf, 0x84, 0xb1, 0xab, 0x7e, 0x70, 0x9b, 0x15, + 0xc6, 0x67, 0x75, 0xe0, 0x28, 0xe1, 0x75, 0xfa, 0x23, 0x6b, 0x22, 0x30, 0x28, 0xe6, 0x30, 0x55, + 0xa1, 0xaa, 0xd4, 0xab, 0x42, 0x95, 0xfd, 0x09, 0x0b, 0x46, 0x54, 0xce, 0xd2, 0xdc, 0xd6, 0x26, + 0xa5, 0xdb, 0x8a, 0x82, 0x4e, 0x98, 0xa5, 0xcb, 0x6e, 0x7f, 0xc2, 0x1c, 0x66, 0x26, 0xf3, 0x95, + 0xf6, 0x49, 0xe6, 0x3b, 0x0f, 0x03, 0x9b, 0xae, 0xdf, 0xcc, 0x5e, 0x67, 0x72, 0xd5, 0xf5, 0x9b, + 0x98, 0x41, 0x68, 0x17, 0x4e, 0xaa, 0x2e, 0x48, 0x85, 0xf0, 0x02, 0x8c, 0xac, 0x75, 0x5c, 0xaf, + 0x29, 0x0b, 0xdc, 0x65, 0x3c, 0x2a, 0x75, 0x03, 0x86, 0x53, 0x98, 0x74, 0x5f, 0xb7, 0xe6, 0xfa, + 0x4e, 0xb4, 0xb3, 0xac, 0x35, 0x90, 0x12, 0x4a, 0x75, 0x05, 0xc1, 0x06, 0x96, 0xfd, 0x46, 0x19, + 0xc6, 0xd2, 0x99, 0x5b, 0x7d, 0x6c, 0xaf, 0x9e, 0x80, 0x0a, 0x4b, 0xe6, 0xca, 0x7e, 0x5a, 0x5e, + 0x13, 0x8e, 0xc3, 0x50, 0x0c, 0x83, 0xbc, 0x0c, 0x44, 0x31, 0x57, 0x01, 0xa9, 0x4e, 0x2a, 0x3f, + 0x0c, 0x8b, 0x3b, 0x13, 0x95, 0x27, 0x04, 0x2b, 0xf4, 0x69, 0x0b, 0x86, 0x82, 0xd0, 0xac, 0x6c, + 0xf4, 0xc1, 0x22, 0xb3, 0xda, 0x44, 0x52, 0x8d, 0xb0, 0x88, 0xd5, 0xa7, 0x97, 0x9f, 0x43, 0xb2, + 0x3e, 0xf7, 0x5e, 0x18, 0x31, 0x31, 0xf7, 0x33, 0x8a, 0xab, 0xa6, 0x51, 0xfc, 0x39, 0x73, 0x52, + 0x88, 0xbc, 0xbd, 0x3e, 0x96, 0xdb, 0x75, 0xa8, 0x34, 0x54, 0xa0, 0xc0, 0xa1, 0xca, 0xa2, 0xaa, + 0xba, 0x0c, 0xec, 0xb0, 0x88, 0x53, 0xb3, 0xbf, 0x6d, 0x19, 0xf3, 0x03, 0x93, 0x78, 0xbe, 0x89, + 0x22, 0x28, 0xb7, 0xb6, 0x36, 0x85, 0x29, 0x7a, 0xa5, 0xa0, 0xe1, 0x9d, 0xdb, 0xda, 0xd4, 0x73, + 0xdc, 0x6c, 0xc5, 0x94, 0x59, 0x1f, 0xce, 0xc2, 0x54, 0x7a, 0x67, 0x79, 0xff, 0xf4, 0x4e, 0xfb, + 0xcd, 0x12, 0x9c, 0xea, 0x9a, 0x54, 0xe8, 0x75, 0xa8, 0x44, 0xf4, 0x2d, 0xc5, 0xeb, 0x2d, 0x14, + 0x96, 0x90, 0x19, 0xcf, 0x37, 0xb5, 0xde, 0x4d, 0xb7, 0x63, 0xce, 0x12, 0x5d, 0x01, 0xa4, 0xc3, + 0x59, 0x94, 0xa7, 0x92, 0xbf, 0xf2, 0x39, 0xf1, 0x28, 0x9a, 0xee, 0xc2, 0xc0, 0x39, 0x4f, 0xa1, + 0x17, 0xb3, 0x0e, 0xcf, 0x72, 0xfa, 0x7c, 0x73, 0x2f, 0xdf, 0xa5, 0xfd, 0xcf, 0x4a, 0x30, 0x9a, + 0x2a, 0x34, 0x85, 0x3c, 0xa8, 0x12, 0x8f, 0x39, 0xff, 0xa5, 0xb2, 0x39, 0x6a, 0xd9, 0x68, 0xa5, + 0x20, 0x2f, 0x0a, 0xba, 0x58, 0x71, 0x78, 0x30, 0x0e, 0xe1, 0x5f, 0x80, 0x11, 0xd9, 0xa1, 0x0f, + 0x3a, 0x6d, 0x4f, 0x0c, 0xa0, 0x9a, 0xa3, 0x17, 0x0d, 0x18, 0x4e, 0x61, 0xda, 0xbf, 0x5d, 0x86, + 0x71, 0x7e, 0x5a, 0xd2, 0x54, 0x33, 0x6f, 0x51, 0xee, 0xb7, 0xfe, 0xb2, 0x2e, 0x07, 0xc7, 0x07, + 0x72, 0xed, 0xa8, 0xb7, 0x34, 0xe4, 0x33, 0xea, 0x2b, 0x82, 0xeb, 0x6b, 0x99, 0x08, 0x2e, 0x6e, + 0x76, 0xb7, 0x8e, 0xa9, 0x47, 0xdf, 0x5b, 0x21, 0x5d, 0x7f, 0xa7, 0x04, 0x27, 0x32, 0x57, 0x60, + 0xa0, 0x37, 0xd2, 0x55, 0x93, 0xad, 0x22, 0x7c, 0xea, 0x7b, 0xde, 0x8a, 0x70, 0xb0, 0xda, 0xc9, + 0xf7, 0x69, 0xa9, 0xd8, 0x7f, 0x50, 0x82, 0xb1, 0xf4, 0xdd, 0x1d, 0x0f, 0xe0, 0x48, 0xbd, 0x0b, + 0x6a, 0xac, 0x3c, 0x3d, 0xbb, 0x93, 0x94, 0xbb, 0xe4, 0x79, 0x25, 0x70, 0xd9, 0x88, 0x35, 0xfc, + 0x81, 0x28, 0x49, 0x6d, 0xff, 0x5d, 0x0b, 0xce, 0xf2, 0xb7, 0xcc, 0xce, 0xc3, 0xbf, 0x92, 0x37, + 0xba, 0xaf, 0x14, 0xdb, 0xc1, 0x4c, 0x19, 0xc3, 0xfd, 0xc6, 0x97, 0xdd, 0x85, 0x28, 0x7a, 0x9b, + 0x9e, 0x0a, 0x0f, 0x60, 0x67, 0x0f, 0x34, 0x19, 0xec, 0x3f, 0x28, 0x83, 0xbe, 0xfe, 0x11, 0xb9, + 0x22, 0x17, 0xb2, 0x90, 0x72, 0x8e, 0x2b, 0x3b, 0x7e, 0x43, 0x5f, 0x34, 0x59, 0xcd, 0xa4, 0x42, + 0xfe, 0xac, 0x05, 0xc3, 0xae, 0xef, 0x26, 0xae, 0xc3, 0xb6, 0xd1, 0xc5, 0x5c, 0x4d, 0xa7, 0xd8, + 0xcd, 0x73, 0xca, 0x41, 0x64, 0x9e, 0xe3, 0x28, 0x66, 0xd8, 0xe4, 0x8c, 0x3e, 0x22, 0x82, 0xac, + 0xcb, 0x85, 0x65, 0xf1, 0x56, 0x33, 0x91, 0xd5, 0x21, 0x35, 0xbc, 0x92, 0xa8, 0xa0, 0xe4, 0x77, + 0x4c, 0x49, 0xa9, 0xca, 0xc0, 0xfa, 0x22, 0x6e, 0xda, 0x8c, 0x39, 0x23, 0x3b, 0x06, 0xd4, 0x3d, + 0x16, 0x07, 0x0c, 0x60, 0x9d, 0x82, 0x9a, 0xd3, 0x49, 0x82, 0x36, 0x1d, 0x26, 0x71, 0xd4, 0xa4, + 0x43, 0x74, 0x25, 0x00, 0x6b, 0x1c, 0xfb, 0x8d, 0x0a, 0x64, 0x92, 0x13, 0xd1, 0xb6, 0x79, 0x75, + 0xa9, 0x55, 0xec, 0xd5, 0xa5, 0xaa, 0x33, 0x79, 0xd7, 0x97, 0xa2, 0x16, 0x54, 0xc2, 0x0d, 0x27, + 0x96, 0x66, 0xf5, 0x4b, 0x6a, 0x1f, 0x47, 0x1b, 0xef, 0xee, 0x4e, 0xfc, 0x78, 0x7f, 0x5e, 0x57, + 0x3a, 0x57, 0xa7, 0x78, 0x99, 0x13, 0xcd, 0x9a, 0xd1, 0xc0, 0x9c, 0xfe, 0x41, 0x2e, 0xe7, 0xfb, + 0xa4, 0xa8, 0xc3, 0x8f, 0x49, 0xdc, 0xf1, 0x12, 0x31, 0x1b, 0x5e, 0x2a, 0x70, 0x95, 0x71, 0xc2, + 0x3a, 0xad, 0x9e, 0xff, 0xc7, 0x06, 0x53, 0xf4, 0x21, 0xa8, 0xc5, 0x89, 0x13, 0x25, 0x87, 0x4c, + 0x84, 0x55, 0x83, 0xbe, 0x22, 0x89, 0x60, 0x4d, 0x0f, 0xbd, 0xcc, 0xaa, 0xdb, 0xba, 0xf1, 0xc6, + 0x21, 0x73, 0x23, 0x64, 0x25, 0x5c, 0x41, 0x01, 0x1b, 0xd4, 0xd0, 0x05, 0x00, 0x36, 0xb7, 0x79, + 0x40, 0x60, 0x95, 0x79, 0x99, 0x94, 0x28, 0xc4, 0x0a, 0x82, 0x0d, 0x2c, 0xfb, 0x87, 0x21, 0x5d, + 0x17, 0x02, 0x4d, 0xc8, 0x32, 0x14, 0xdc, 0x0b, 0xcd, 0x72, 0x1c, 0x52, 0x15, 0x23, 0x7e, 0xcd, + 0x02, 0xb3, 0x78, 0x05, 0x7a, 0x8d, 0x57, 0xc9, 0xb0, 0x8a, 0x38, 0x39, 0x34, 0xe8, 0x4e, 0x2e, + 0x3a, 0x61, 0xe6, 0x08, 0x5b, 0x96, 0xca, 0x38, 0xf7, 0x1e, 0xa8, 0x4a, 0xe8, 0x81, 0x8c, 0xba, + 0x8f, 0xc3, 0xe9, 0xec, 0xc5, 0xee, 0xe2, 0xd4, 0x69, 0x7f, 0xd7, 0x8f, 0xf4, 0xe7, 0x94, 0x7a, + 0xf9, 0x73, 0xfa, 0xb8, 0xc0, 0xf6, 0xd7, 0x2d, 0x38, 0xbf, 0xdf, 0xfd, 0xf3, 0xe8, 0x51, 0x18, + 0xb8, 0xed, 0x44, 0xb2, 0xec, 0x38, 0x13, 0x94, 0x37, 0x9d, 0xc8, 0xc7, 0xac, 0x15, 0xed, 0xc0, + 0x20, 0x8f, 0x1a, 0x13, 0xd6, 0xfa, 0x4b, 0xc5, 0xde, 0x86, 0x7f, 0x95, 0x18, 0xdb, 0x05, 0x1e, + 0xb1, 0x86, 0x05, 0x43, 0xfb, 0x3b, 0x16, 0xa0, 0xa5, 0x2d, 0x12, 0x45, 0x6e, 0xd3, 0x88, 0x73, + 0x63, 0xf7, 0xd9, 0x18, 0xf7, 0xd6, 0x98, 0xa9, 0xb0, 0x99, 0xfb, 0x6c, 0x8c, 0x7f, 0xf9, 0xf7, + 0xd9, 0x94, 0x0e, 0x76, 0x9f, 0x0d, 0x5a, 0x82, 0xb3, 0x6d, 0xbe, 0xdd, 0xe0, 0x77, 0x44, 0xf0, + 0xbd, 0x87, 0x4a, 0x3c, 0x7b, 0xe4, 0xce, 0xee, 0xc4, 0xd9, 0xc5, 0x3c, 0x04, 0x9c, 0xff, 0x9c, + 0xfd, 0x1e, 0x40, 0x3c, 0xbc, 0x6d, 0x26, 0x2f, 0x56, 0xa9, 0xa7, 0xfb, 0xc5, 0xfe, 0x6a, 0x05, + 0x4e, 0x64, 0x8a, 0xd2, 0xd2, 0xad, 0x5e, 0x77, 0x70, 0xd4, 0x91, 0xf5, 0x77, 0x77, 0xf7, 0xfa, + 0x0a, 0xb7, 0xf2, 0xa1, 0xe2, 0xfa, 0x61, 0x27, 0x29, 0x26, 0xd7, 0x94, 0x77, 0x62, 0x9e, 0x12, + 0x34, 0xdc, 0xc5, 0xf4, 0x2f, 0xe6, 0x6c, 0x8a, 0x0c, 0xde, 0x4a, 0x19, 0xe3, 0x03, 0xf7, 0xc9, + 0x1d, 0xf0, 0x49, 0x1d, 0x4a, 0x55, 0x29, 0xc2, 0xb1, 0x98, 0x99, 0x2c, 0xc7, 0x7d, 0xd4, 0xfe, + 0xab, 0x25, 0x18, 0x36, 0x3e, 0x1a, 0xfa, 0xc5, 0x74, 0x69, 0x27, 0xab, 0xb8, 0x57, 0x62, 0xf4, + 0x27, 0x75, 0xf1, 0x26, 0xfe, 0x4a, 0x4f, 0x76, 0x57, 0x75, 0xba, 0xbb, 0x3b, 0x71, 0x32, 0x53, + 0xb7, 0x29, 0x55, 0xe9, 0xe9, 0xdc, 0xc7, 0xe0, 0x44, 0x86, 0x4c, 0xce, 0x2b, 0xaf, 0xa6, 0xef, + 0xed, 0x3f, 0xa2, 0x5b, 0xca, 0x1c, 0xb2, 0x6f, 0xd2, 0x21, 0x13, 0xe9, 0x76, 0x81, 0x47, 0xfa, + 0xf0, 0xc1, 0x66, 0xb2, 0x6a, 0x4b, 0x7d, 0x66, 0xd5, 0x3e, 0x05, 0xd5, 0x30, 0xf0, 0xdc, 0x86, + 0xab, 0xea, 0x1f, 0xb2, 0x3c, 0xde, 0x65, 0xd1, 0x86, 0x15, 0x14, 0xdd, 0x86, 0xda, 0xad, 0xdb, + 0x09, 0x3f, 0xfd, 0x11, 0xfe, 0xed, 0xa2, 0x0e, 0x7d, 0x94, 0xd1, 0xa2, 0x8e, 0x97, 0xb0, 0xe6, + 0x85, 0x6c, 0x18, 0x64, 0x4a, 0x50, 0xa6, 0x08, 0x30, 0xdf, 0x3b, 0xd3, 0x8e, 0x31, 0x16, 0x10, + 0xfb, 0x1b, 0x35, 0x38, 0x93, 0x57, 0x19, 0x1c, 0x7d, 0x14, 0x06, 0x79, 0x1f, 0x8b, 0xb9, 0x7c, + 0x22, 0x8f, 0xc7, 0x1c, 0x23, 0x28, 0xba, 0xc5, 0x7e, 0x63, 0xc1, 0x53, 0x70, 0xf7, 0x9c, 0x35, + 0x31, 0x43, 0x8e, 0x87, 0xfb, 0x82, 0xa3, 0xb9, 0x2f, 0x38, 0x9c, 0xbb, 0xe7, 0xac, 0xa1, 0x6d, + 0xa8, 0xb4, 0xdc, 0x84, 0x38, 0xc2, 0x89, 0x70, 0xf3, 0x58, 0x98, 0x13, 0x87, 0x5b, 0x69, 0xec, + 0x27, 0xe6, 0x0c, 0xd1, 0xd7, 0x2d, 0x38, 0xb1, 0x96, 0x4e, 0xa1, 0x17, 0xc2, 0xd3, 0x39, 0x86, + 0xea, 0xef, 0x69, 0x46, 0xfc, 0x42, 0xa7, 0x4c, 0x23, 0xce, 0x76, 0x07, 0x7d, 0xca, 0x82, 0xa1, + 0x75, 0xd7, 0x33, 0x0a, 0xf0, 0x1e, 0xc3, 0xc7, 0xb9, 0xc4, 0x18, 0xe8, 0x1d, 0x07, 0xff, 0x1f, + 0x63, 0xc9, 0xb9, 0x97, 0xa6, 0x1a, 0x3c, 0xaa, 0xa6, 0x1a, 0xba, 0x4f, 0x9a, 0xea, 0xb3, 0x16, + 0xd4, 0xd4, 0x48, 0x8b, 0xb4, 0xe8, 0x0f, 0x1d, 0xe3, 0x27, 0xe7, 0x9e, 0x13, 0xf5, 0x17, 0x6b, + 0xe6, 0xe8, 0x4b, 0x16, 0x0c, 0x3b, 0xaf, 0x77, 0x22, 0xd2, 0x24, 0x5b, 0x41, 0x18, 0x8b, 0xdb, + 0x20, 0x5f, 0x29, 0xbe, 0x33, 0xd3, 0x94, 0xc9, 0x2c, 0xd9, 0x5a, 0x0a, 0x63, 0x91, 0xbe, 0xa4, + 0x1b, 0xb0, 0xd9, 0x05, 0x7b, 0xb7, 0x04, 0x13, 0xfb, 0x50, 0x40, 0x2f, 0xc0, 0x48, 0x10, 0xb5, + 0x1c, 0xdf, 0x7d, 0xdd, 0xac, 0x89, 0xa1, 0xac, 0xac, 0x25, 0x03, 0x86, 0x53, 0x98, 0x66, 0xe2, + 0x76, 0x69, 0x9f, 0xc4, 0xed, 0xf3, 0x30, 0x10, 0x91, 0x30, 0xc8, 0x6e, 0x16, 0x58, 0xea, 0x00, + 0x83, 0xa0, 0xc7, 0xa0, 0xec, 0x84, 0xae, 0x08, 0x44, 0x53, 0x7b, 0xa0, 0xe9, 0xe5, 0x79, 0x4c, + 0xdb, 0x53, 0x75, 0x24, 0x2a, 0xf7, 0xa4, 0x8e, 0x04, 0x55, 0x03, 0xe2, 0xec, 0x62, 0x50, 0xab, + 0x81, 0xf4, 0x99, 0x82, 0xfd, 0x66, 0x19, 0x1e, 0xdb, 0x73, 0xbe, 0xe8, 0x38, 0x3c, 0x6b, 0x8f, + 0x38, 0x3c, 0x39, 0x3c, 0xa5, 0xfd, 0x86, 0xa7, 0xdc, 0x63, 0x78, 0x3e, 0x45, 0x97, 0x81, 0xac, + 0x25, 0x52, 0xcc, 0x7d, 0x7e, 0xbd, 0x4a, 0x93, 0x88, 0x15, 0x20, 0xa1, 0x58, 0xf3, 0xa5, 0x7b, + 0x80, 0x54, 0xd2, 0x72, 0xa5, 0x08, 0x35, 0xd0, 0xb3, 0xb6, 0x08, 0x9f, 0xfb, 0xbd, 0x32, 0xa1, + 0xed, 0x9f, 0x2b, 0xc1, 0x13, 0x7d, 0x48, 0x6f, 0x73, 0x16, 0x5b, 0x7d, 0xce, 0xe2, 0xef, 0xed, + 0xcf, 0x64, 0xff, 0x55, 0x0b, 0xce, 0xf5, 0x56, 0x1e, 0xe8, 0x59, 0x18, 0x5e, 0x8b, 0x1c, 0xbf, + 0xb1, 0xc1, 0xee, 0x28, 0x95, 0x83, 0xc2, 0xc6, 0x5a, 0x37, 0x63, 0x13, 0x87, 0x6e, 0x6f, 0x79, + 0x4c, 0x82, 0x81, 0x21, 0x93, 0x4c, 0xe9, 0xf6, 0x76, 0x35, 0x0b, 0xc4, 0xdd, 0xf8, 0xf6, 0x9f, + 0x95, 0xf2, 0xbb, 0xc5, 0x8d, 0x8c, 0x83, 0x7c, 0x27, 0xf1, 0x15, 0x4a, 0x7d, 0xc8, 0x92, 0xf2, + 0xbd, 0x96, 0x25, 0x03, 0xbd, 0x64, 0x09, 0x9a, 0x85, 0x93, 0xc6, 0x25, 0x32, 0x3c, 0x71, 0x98, + 0x07, 0xdc, 0xaa, 0x6a, 0x1a, 0xcb, 0x19, 0x38, 0xee, 0x7a, 0x02, 0x3d, 0x0d, 0x55, 0xd7, 0x8f, + 0x49, 0xa3, 0x13, 0xf1, 0x40, 0x6f, 0x23, 0x59, 0x6b, 0x5e, 0xb4, 0x63, 0x85, 0x61, 0xff, 0x52, + 0x09, 0x1e, 0xe9, 0x69, 0x67, 0xdd, 0x23, 0xd9, 0x65, 0x7e, 0x8e, 0x81, 0x7b, 0xf3, 0x39, 0xcc, + 0x41, 0xaa, 0xec, 0x3b, 0x48, 0x7f, 0xd8, 0x7b, 0x62, 0x52, 0x9b, 0xfb, 0xfb, 0x76, 0x94, 0x5e, + 0x84, 0x51, 0x27, 0x0c, 0x39, 0x1e, 0x8b, 0xd7, 0xcc, 0x54, 0xd3, 0x99, 0x36, 0x81, 0x38, 0x8d, + 0xdb, 0x97, 0xf6, 0xfc, 0x63, 0x0b, 0x6a, 0x98, 0xac, 0x73, 0xe9, 0x80, 0x6e, 0x89, 0x21, 0xb2, + 0x8a, 0xa8, 0xbb, 0x49, 0x07, 0x36, 0x76, 0x59, 0x3d, 0xca, 0xbc, 0xc1, 0xee, 0xbe, 0xe4, 0xa7, + 0x74, 0xa0, 0x4b, 0x7e, 0xd4, 0x35, 0x2f, 0xe5, 0xde, 0xd7, 0xbc, 0xd8, 0xdf, 0x1c, 0xa2, 0xaf, + 0x17, 0x06, 0x33, 0x11, 0x69, 0xc6, 0xf4, 0xfb, 0x76, 0x22, 0x4f, 0x4c, 0x12, 0xf5, 0x7d, 0xaf, + 0xe3, 0x05, 0x4c, 0xdb, 0x53, 0x47, 0x31, 0xa5, 0x03, 0xd5, 0x12, 0x29, 0xef, 0x5b, 0x4b, 0xe4, + 0x45, 0x18, 0x8d, 0xe3, 0x8d, 0xe5, 0xc8, 0xdd, 0x72, 0x12, 0x72, 0x95, 0xec, 0x08, 0x2b, 0x4b, + 0xe7, 0xff, 0xaf, 0x5c, 0xd6, 0x40, 0x9c, 0xc6, 0x45, 0x73, 0x70, 0x4a, 0x57, 0xf4, 0x20, 0x51, + 0xc2, 0xa2, 0xfb, 0xf9, 0x4c, 0x50, 0xc9, 0xbe, 0xba, 0x06, 0x88, 0x40, 0xc0, 0xdd, 0xcf, 0x50, + 0xf9, 0x96, 0x6a, 0xa4, 0x1d, 0x19, 0x4c, 0xcb, 0xb7, 0x14, 0x1d, 0xda, 0x97, 0xae, 0x27, 0xd0, + 0x22, 0x9c, 0xe6, 0x13, 0x63, 0x3a, 0x0c, 0x8d, 0x37, 0x1a, 0x4a, 0xd7, 0x3b, 0x9c, 0xeb, 0x46, + 0xc1, 0x79, 0xcf, 0xa1, 0xe7, 0x61, 0x58, 0x35, 0xcf, 0xcf, 0x8a, 0x53, 0x04, 0xe5, 0xc5, 0x50, + 0x64, 0xe6, 0x9b, 0xd8, 0xc4, 0x43, 0x1f, 0x84, 0x87, 0xf5, 0x5f, 0x9e, 0x02, 0xc6, 0x8f, 0xd6, + 0x66, 0x45, 0xb1, 0x24, 0x75, 0xa9, 0xc8, 0x5c, 0x2e, 0x5a, 0x13, 0xf7, 0x7a, 0x1e, 0xad, 0xc1, + 0x39, 0x05, 0xba, 0xe8, 0x27, 0x2c, 0x9f, 0x23, 0x26, 0x75, 0x27, 0x26, 0xd7, 0x23, 0x4f, 0x5c, + 0x4e, 0xab, 0xee, 0x9d, 0x9c, 0x73, 0x93, 0xcb, 0x79, 0x98, 0x78, 0x01, 0xef, 0x41, 0x05, 0x4d, + 0x41, 0x8d, 0xf8, 0xce, 0x9a, 0x47, 0x96, 0x66, 0xe6, 0x59, 0xd1, 0x25, 0xe3, 0x24, 0xef, 0xa2, + 0x04, 0x60, 0x8d, 0xa3, 0x22, 0x4c, 0x47, 0x7a, 0xde, 0x81, 0xba, 0x0c, 0x67, 0x5a, 0x8d, 0x90, + 0xda, 0x1e, 0x6e, 0x83, 0x4c, 0x37, 0x58, 0x40, 0x1d, 0xfd, 0x30, 0xbc, 0x10, 0xa5, 0x0a, 0x9f, + 0x9e, 0x9b, 0x59, 0xee, 0xc2, 0xc1, 0xb9, 0x4f, 0xb2, 0xc0, 0xcb, 0x28, 0xd8, 0xde, 0x19, 0x3f, + 0x9d, 0x09, 0xbc, 0xa4, 0x8d, 0x98, 0xc3, 0xd0, 0x15, 0x40, 0x2c, 0x16, 0xff, 0x72, 0x92, 0x84, + 0xca, 0xd8, 0x19, 0x3f, 0xc3, 0x5e, 0x49, 0x85, 0x91, 0x5d, 0xea, 0xc2, 0xc0, 0x39, 0x4f, 0xd9, + 0xff, 0xc1, 0x82, 0x51, 0xb5, 0x5e, 0xef, 0x41, 0x36, 0x8a, 0x97, 0xce, 0x46, 0x99, 0x3b, 0xba, + 0xc4, 0x63, 0x3d, 0xef, 0x11, 0xd2, 0xfc, 0x99, 0x61, 0x00, 0x2d, 0x15, 0x95, 0x42, 0xb2, 0x7a, + 0x2a, 0xa4, 0x07, 0x56, 0x22, 0xe5, 0x55, 0x58, 0xa9, 0xdc, 0xdf, 0x0a, 0x2b, 0x2b, 0x70, 0x56, + 0x9a, 0x0b, 0xfc, 0xac, 0xe8, 0x72, 0x10, 0x2b, 0x01, 0x57, 0xad, 0x3f, 0x26, 0x08, 0x9d, 0x9d, + 0xcf, 0x43, 0xc2, 0xf9, 0xcf, 0xa6, 0xac, 0x94, 0xa1, 0xfd, 0xac, 0x14, 0xbd, 0xa6, 0x17, 0xd6, + 0xe5, 0xed, 0x21, 0x99, 0x35, 0xbd, 0x70, 0x69, 0x05, 0x6b, 0x9c, 0x7c, 0xc1, 0x5e, 0x2b, 0x48, + 0xb0, 0xc3, 0x81, 0x05, 0xbb, 0x14, 0x31, 0xc3, 0x3d, 0x45, 0x8c, 0xf4, 0x49, 0x8f, 0xf4, 0xf4, + 0x49, 0xbf, 0x0f, 0xc6, 0x5c, 0x7f, 0x83, 0x44, 0x6e, 0x42, 0x9a, 0x6c, 0x2d, 0x30, 0xf1, 0x53, + 0xd5, 0x6a, 0x7d, 0x3e, 0x05, 0xc5, 0x19, 0xec, 0xb4, 0x5c, 0x1c, 0xeb, 0x43, 0x2e, 0xf6, 0xd0, + 0x46, 0x27, 0x8a, 0xd1, 0x46, 0x27, 0x8f, 0xae, 0x8d, 0x4e, 0x1d, 0xab, 0x36, 0x42, 0x85, 0x68, + 0xa3, 0xbe, 0x04, 0xbd, 0xb1, 0xfd, 0x3b, 0xb3, 0xcf, 0xf6, 0xaf, 0x97, 0x2a, 0x3a, 0x7b, 0x68, + 0x55, 0x94, 0xaf, 0x65, 0x1e, 0x3a, 0x94, 0x96, 0xf9, 0x6c, 0x09, 0xce, 0x6a, 0x39, 0x4c, 0x67, + 0xbf, 0xbb, 0x4e, 0x25, 0x11, 0xbb, 0x80, 0x8a, 0x9f, 0xdb, 0x18, 0xc9, 0x51, 0x3a, 0xcf, 0x4a, + 0x41, 0xb0, 0x81, 0xc5, 0x72, 0x8c, 0x48, 0xc4, 0xca, 0xed, 0x66, 0x85, 0xf4, 0x8c, 0x68, 0xc7, + 0x0a, 0x83, 0xce, 0x2f, 0xfa, 0x5b, 0xe4, 0x6d, 0x66, 0x8b, 0xca, 0xcd, 0x68, 0x10, 0x36, 0xf1, + 0xd0, 0x53, 0x9c, 0x09, 0x13, 0x10, 0x54, 0x50, 0x8f, 0x88, 0x9b, 0x71, 0xa5, 0x4c, 0x50, 0x50, + 0xd9, 0x1d, 0x96, 0x4c, 0x56, 0xe9, 0xee, 0x0e, 0x0b, 0x81, 0x52, 0x18, 0xf6, 0xff, 0xb4, 0xe0, + 0x91, 0xdc, 0xa1, 0xb8, 0x07, 0xca, 0x77, 0x3b, 0xad, 0x7c, 0x57, 0x8a, 0xda, 0x6e, 0x18, 0x6f, + 0xd1, 0x43, 0x11, 0xff, 0x3b, 0x0b, 0xc6, 0x34, 0xfe, 0x3d, 0x78, 0x55, 0x37, 0xfd, 0xaa, 0xc5, + 0xed, 0xac, 0x6a, 0x5d, 0xef, 0xf6, 0xdb, 0x25, 0x50, 0x85, 0x1e, 0xa7, 0x1b, 0xb2, 0x8c, 0xee, + 0x3e, 0x27, 0x89, 0x3b, 0x30, 0xc8, 0x0e, 0x42, 0xe3, 0x62, 0x82, 0x3c, 0xd2, 0xfc, 0xd9, 0xa1, + 0xaa, 0x3e, 0x64, 0x66, 0x7f, 0x63, 0x2c, 0x18, 0xb2, 0x62, 0xd0, 0x6e, 0x4c, 0xa5, 0x79, 0x53, + 0xa4, 0x65, 0xe9, 0x62, 0xd0, 0xa2, 0x1d, 0x2b, 0x0c, 0xaa, 0x1e, 0xdc, 0x46, 0xe0, 0xcf, 0x78, + 0x4e, 0x2c, 0x6f, 0x5d, 0x54, 0xea, 0x61, 0x5e, 0x02, 0xb0, 0xc6, 0x61, 0x67, 0xa4, 0x6e, 0x1c, + 0x7a, 0xce, 0x8e, 0xb1, 0x7f, 0x36, 0xea, 0x13, 0x28, 0x10, 0x36, 0xf1, 0xec, 0x36, 0x8c, 0xa7, + 0x5f, 0x62, 0x96, 0xac, 0xb3, 0x00, 0xc5, 0xbe, 0x86, 0x73, 0x0a, 0x6a, 0x0e, 0x7b, 0x6a, 0xa1, + 0xe3, 0x64, 0x2f, 0x6d, 0x9f, 0x96, 0x00, 0xac, 0x71, 0xec, 0x5f, 0xb1, 0xe0, 0x74, 0xce, 0xa0, + 0x15, 0x98, 0xf6, 0x96, 0x68, 0x69, 0x93, 0xa7, 0xd8, 0xdf, 0x09, 0x43, 0x4d, 0xb2, 0xee, 0xc8, + 0x10, 0x38, 0x43, 0xb6, 0xcf, 0xf2, 0x66, 0x2c, 0xe1, 0xf6, 0x7f, 0xb7, 0xe0, 0x44, 0xba, 0xaf, + 0x31, 0x4b, 0x25, 0xe1, 0xc3, 0xe4, 0xc6, 0x8d, 0x60, 0x8b, 0x44, 0x3b, 0xf4, 0xcd, 0xad, 0x4c, + 0x2a, 0x49, 0x17, 0x06, 0xce, 0x79, 0x8a, 0x95, 0x79, 0x6d, 0xaa, 0xd1, 0x96, 0x33, 0xf2, 0x46, + 0x91, 0x33, 0x52, 0x7f, 0x4c, 0xf3, 0xb8, 0x5c, 0xb1, 0xc4, 0x26, 0x7f, 0xfb, 0x3b, 0x03, 0xa0, + 0xf2, 0x62, 0x59, 0xfc, 0x51, 0x41, 0xd1, 0x5b, 0x07, 0xcd, 0x20, 0x52, 0x93, 0x61, 0x60, 0xaf, + 0x80, 0x00, 0xee, 0x25, 0x31, 0x5d, 0x97, 0xea, 0x0d, 0x57, 0x35, 0x08, 0x9b, 0x78, 0xb4, 0x27, + 0x9e, 0xbb, 0x45, 0xf8, 0x43, 0x83, 0xe9, 0x9e, 0x2c, 0x48, 0x00, 0xd6, 0x38, 0xb4, 0x27, 0x4d, + 0x77, 0x7d, 0x5d, 0x6c, 0xf9, 0x55, 0x4f, 0xe8, 0xe8, 0x60, 0x06, 0xe1, 0x95, 0xbb, 0x83, 0x4d, + 0x61, 0x05, 0x1b, 0x95, 0xbb, 0x83, 0x4d, 0xcc, 0x20, 0xd4, 0x6e, 0xf3, 0x83, 0xa8, 0xcd, 0x2e, + 0xd5, 0x6f, 0x2a, 0x2e, 0xc2, 0xfa, 0x55, 0x76, 0xdb, 0xb5, 0x6e, 0x14, 0x9c, 0xf7, 0x1c, 0x9d, + 0x81, 0x61, 0x44, 0x9a, 0x6e, 0x23, 0x31, 0xa9, 0x41, 0x7a, 0x06, 0x2e, 0x77, 0x61, 0xe0, 0x9c, + 0xa7, 0xd0, 0x34, 0x9c, 0x90, 0x79, 0xcd, 0xb2, 0x6a, 0xcd, 0x70, 0xba, 0x4a, 0x06, 0x4e, 0x83, + 0x71, 0x16, 0x9f, 0x4a, 0xb5, 0xb6, 0x28, 0x6c, 0xc5, 0x8c, 0x65, 0x43, 0xaa, 0xc9, 0x82, 0x57, + 0x58, 0x61, 0xd8, 0x9f, 0x2c, 0x53, 0x2d, 0xdc, 0xa3, 0xa0, 0xdb, 0x3d, 0x8b, 0x16, 0x4c, 0xcf, + 0xc8, 0x81, 0x3e, 0x66, 0xe4, 0x73, 0x30, 0x72, 0x2b, 0x0e, 0x7c, 0x15, 0x89, 0x57, 0xe9, 0x19, + 0x89, 0x67, 0x60, 0xe5, 0x47, 0xe2, 0x0d, 0x16, 0x15, 0x89, 0x37, 0x74, 0xc8, 0x48, 0xbc, 0xdf, + 0xa9, 0x80, 0xba, 0x42, 0xe4, 0x1a, 0x49, 0x6e, 0x07, 0xd1, 0xa6, 0xeb, 0xb7, 0x58, 0x3e, 0xf8, + 0xd7, 0x2d, 0x18, 0xe1, 0xeb, 0x65, 0xc1, 0xcc, 0xa4, 0x5a, 0x2f, 0xe8, 0x6e, 0x8a, 0x14, 0xb3, + 0xc9, 0x55, 0x83, 0x51, 0xe6, 0xd2, 0x4f, 0x13, 0x84, 0x53, 0x3d, 0x42, 0x1f, 0x03, 0x90, 0xfe, + 0xd1, 0x75, 0x29, 0x32, 0xe7, 0x8b, 0xe9, 0x1f, 0x26, 0xeb, 0xda, 0x06, 0x5e, 0x55, 0x4c, 0xb0, + 0xc1, 0x10, 0x7d, 0x56, 0x67, 0x99, 0xf1, 0x90, 0xfd, 0x8f, 0x1c, 0xcb, 0xd8, 0xf4, 0x93, 0x63, + 0x86, 0x61, 0xc8, 0xf5, 0x5b, 0x74, 0x9e, 0x88, 0x88, 0xa5, 0x77, 0xe4, 0xd5, 0x52, 0x58, 0x08, + 0x9c, 0x66, 0xdd, 0xf1, 0x1c, 0xbf, 0x41, 0xa2, 0x79, 0x8e, 0x6e, 0x5e, 0x75, 0xcd, 0x1a, 0xb0, + 0x24, 0xd4, 0x75, 0xf9, 0x4a, 0xa5, 0x9f, 0xcb, 0x57, 0xce, 0xbd, 0x1f, 0x4e, 0x75, 0x7d, 0xcc, + 0x03, 0xa5, 0x94, 0x1d, 0x3e, 0x1b, 0xcd, 0xfe, 0xe7, 0x83, 0x5a, 0x69, 0x5d, 0x0b, 0x9a, 0xfc, + 0x0a, 0x90, 0x48, 0x7f, 0x51, 0x61, 0xe3, 0x16, 0x38, 0x45, 0x8c, 0xeb, 0xb2, 0x55, 0x23, 0x36, + 0x59, 0xd2, 0x39, 0x1a, 0x3a, 0x11, 0xf1, 0x8f, 0x7b, 0x8e, 0x2e, 0x2b, 0x26, 0xd8, 0x60, 0x88, + 0x36, 0x52, 0x39, 0x25, 0x97, 0x8e, 0x9e, 0x53, 0xc2, 0xaa, 0x4c, 0xe5, 0x55, 0xed, 0xff, 0x92, + 0x05, 0x63, 0x7e, 0x6a, 0xe6, 0x16, 0x13, 0x46, 0x9a, 0xbf, 0x2a, 0xf8, 0x0d, 0x54, 0xe9, 0x36, + 0x9c, 0xe1, 0x9f, 0xa7, 0xd2, 0x2a, 0x07, 0x54, 0x69, 0xfa, 0x2e, 0xa1, 0xc1, 0x5e, 0x77, 0x09, + 0x21, 0x5f, 0x5d, 0xa6, 0x36, 0x54, 0xf8, 0x65, 0x6a, 0x90, 0x73, 0x91, 0xda, 0x4d, 0xa8, 0x35, + 0x22, 0xe2, 0x24, 0x87, 0xbc, 0x57, 0x8b, 0x1d, 0xd0, 0xcf, 0x48, 0x02, 0x58, 0xd3, 0xb2, 0xff, + 0xcf, 0x00, 0x9c, 0x94, 0x23, 0x22, 0x43, 0xd0, 0xa9, 0x7e, 0xe4, 0x7c, 0xb5, 0x71, 0xab, 0xf4, + 0xe3, 0x65, 0x09, 0xc0, 0x1a, 0x87, 0xda, 0x63, 0x9d, 0x98, 0x2c, 0x85, 0xc4, 0x5f, 0x70, 0xd7, + 0x62, 0x71, 0xce, 0xa9, 0x16, 0xca, 0x75, 0x0d, 0xc2, 0x26, 0x1e, 0x35, 0xc6, 0xb9, 0x5d, 0x1c, + 0x67, 0xd3, 0x57, 0x84, 0xbd, 0x8d, 0x25, 0x1c, 0xfd, 0x7c, 0x6e, 0x85, 0xd9, 0x62, 0x12, 0xb7, + 0xba, 0x22, 0xef, 0x0f, 0x78, 0x15, 0xe3, 0xdf, 0xb2, 0xe0, 0x2c, 0x6f, 0x95, 0x23, 0x79, 0x3d, + 0x6c, 0x3a, 0x09, 0x89, 0x8b, 0xa9, 0xf8, 0x9e, 0xd3, 0x3f, 0xed, 0xe4, 0xcd, 0x63, 0x8b, 0xf3, + 0x7b, 0x83, 0xde, 0xb0, 0xe0, 0xc4, 0x66, 0xaa, 0xe6, 0x87, 0x54, 0x1d, 0x47, 0x4d, 0xc7, 0x4f, + 0x11, 0xd5, 0x4b, 0x2d, 0xdd, 0x1e, 0xe3, 0x2c, 0x77, 0xfb, 0xcf, 0x2c, 0x30, 0xc5, 0xe8, 0xbd, + 0x2f, 0x15, 0x72, 0x70, 0x53, 0x50, 0x5a, 0x97, 0x95, 0x9e, 0xd6, 0xe5, 0x63, 0x50, 0xee, 0xb8, + 0x4d, 0xb1, 0xbf, 0xd0, 0xa7, 0xaf, 0xf3, 0xb3, 0x98, 0xb6, 0xdb, 0xff, 0xa4, 0xa2, 0xfd, 0x16, + 0x22, 0x2f, 0xea, 0xfb, 0xe2, 0xb5, 0xd7, 0x55, 0xb1, 0x31, 0xfe, 0xe6, 0xd7, 0xba, 0x8a, 0x8d, + 0xfd, 0xe8, 0xc1, 0xd3, 0xde, 0xf8, 0x00, 0xf5, 0xaa, 0x35, 0x36, 0xb4, 0x4f, 0xce, 0xdb, 0x2d, + 0xa8, 0xd2, 0x2d, 0x18, 0x73, 0x40, 0x56, 0x53, 0x9d, 0xaa, 0x5e, 0x16, 0xed, 0x77, 0x77, 0x27, + 0xde, 0x7b, 0xf0, 0x6e, 0xc9, 0xa7, 0xb1, 0xa2, 0x8f, 0x62, 0xa8, 0xd1, 0xdf, 0x2c, 0x3d, 0x4f, + 0x6c, 0xee, 0xae, 0x2b, 0x99, 0x29, 0x01, 0x85, 0xe4, 0xfe, 0x69, 0x3e, 0xc8, 0x87, 0x1a, 0xbb, + 0xb5, 0x96, 0x31, 0xe5, 0x7b, 0xc0, 0x65, 0x95, 0x24, 0x27, 0x01, 0x77, 0x77, 0x27, 0x5e, 0x3c, + 0x38, 0x53, 0xf5, 0x38, 0xd6, 0x2c, 0xec, 0x2f, 0x0f, 0xe8, 0xb9, 0x2b, 0x6a, 0xcc, 0x7d, 0x5f, + 0xcc, 0xdd, 0x17, 0x32, 0x73, 0xf7, 0x7c, 0xd7, 0xdc, 0x1d, 0xd3, 0xb7, 0xab, 0xa6, 0x66, 0xe3, + 0xbd, 0x36, 0x04, 0xf6, 0xf7, 0x37, 0x30, 0x0b, 0xe8, 0xb5, 0x8e, 0x1b, 0x91, 0x78, 0x39, 0xea, + 0xf8, 0xae, 0xdf, 0x62, 0xd3, 0xb1, 0x6a, 0x5a, 0x40, 0x29, 0x30, 0xce, 0xe2, 0xd3, 0x4d, 0x3d, + 0xfd, 0xe6, 0x37, 0x9d, 0x2d, 0x3e, 0xab, 0x8c, 0xb2, 0x5b, 0x2b, 0xa2, 0x1d, 0x2b, 0x0c, 0xfb, + 0x9b, 0xec, 0x2c, 0xdb, 0xc8, 0x0b, 0xa6, 0x73, 0xc2, 0x63, 0xd7, 0x04, 0xf3, 0x9a, 0x5d, 0x6a, + 0x4e, 0xf0, 0xbb, 0x81, 0x39, 0x0c, 0xdd, 0x86, 0xa1, 0x35, 0x7e, 0x4f, 0x5e, 0x31, 0x75, 0xcc, + 0xc5, 0xa5, 0x7b, 0xec, 0x36, 0x14, 0x79, 0x03, 0xdf, 0x5d, 0xfd, 0x13, 0x4b, 0x6e, 0xf6, 0xef, + 0x57, 0xe0, 0x44, 0xe6, 0x22, 0xd9, 0x54, 0xb5, 0xd4, 0xd2, 0xbe, 0xd5, 0x52, 0x3f, 0x0c, 0xd0, + 0x24, 0xa1, 0x17, 0xec, 0x30, 0x73, 0x6c, 0xe0, 0xc0, 0xe6, 0x98, 0xb2, 0xe0, 0x67, 0x15, 0x15, + 0x6c, 0x50, 0x14, 0x85, 0xca, 0x78, 0xf1, 0xd5, 0x4c, 0xa1, 0x32, 0xe3, 0xb6, 0x83, 0xc1, 0x7b, + 0x7b, 0xdb, 0x81, 0x0b, 0x27, 0x78, 0x17, 0x55, 0xf6, 0xed, 0x21, 0x92, 0x6c, 0x59, 0xfe, 0xc2, + 0x6c, 0x9a, 0x0c, 0xce, 0xd2, 0xbd, 0x9f, 0xf7, 0x44, 0xa3, 0x77, 0x41, 0x4d, 0x7e, 0xe7, 0x78, + 0xbc, 0xa6, 0x2b, 0x18, 0xc8, 0x69, 0xc0, 0xee, 0x6f, 0x16, 0x3f, 0xbb, 0x0a, 0x09, 0xc0, 0xfd, + 0x2a, 0x24, 0x60, 0x7f, 0xb1, 0x44, 0xed, 0x78, 0xde, 0x2f, 0x55, 0x13, 0xe7, 0x49, 0x18, 0x74, + 0x3a, 0xc9, 0x46, 0xd0, 0x75, 0xeb, 0xdf, 0x34, 0x6b, 0xc5, 0x02, 0x8a, 0x16, 0x60, 0xa0, 0xa9, + 0xeb, 0x9c, 0x1c, 0xe4, 0x7b, 0x6a, 0x97, 0xa8, 0x93, 0x10, 0xcc, 0xa8, 0xa0, 0x47, 0x61, 0x20, + 0x71, 0x5a, 0x32, 0xe5, 0x8a, 0xa5, 0xd9, 0xae, 0x3a, 0xad, 0x18, 0xb3, 0x56, 0x53, 0x7d, 0x0f, + 0xec, 0xa3, 0xbe, 0x5f, 0x84, 0xd1, 0xd8, 0x6d, 0xf9, 0x4e, 0xd2, 0x89, 0x88, 0x71, 0xcc, 0xa7, + 0x23, 0x37, 0x4c, 0x20, 0x4e, 0xe3, 0xda, 0xbf, 0x31, 0x02, 0x67, 0x56, 0x66, 0x16, 0x65, 0xf5, + 0xee, 0x63, 0xcb, 0x9a, 0xca, 0xe3, 0x71, 0xef, 0xb2, 0xa6, 0x7a, 0x70, 0xf7, 0x8c, 0xac, 0x29, + 0xcf, 0xc8, 0x9a, 0x4a, 0xa7, 0xb0, 0x94, 0x8b, 0x48, 0x61, 0xc9, 0xeb, 0x41, 0x3f, 0x29, 0x2c, + 0xc7, 0x96, 0x46, 0xb5, 0x67, 0x87, 0x0e, 0x94, 0x46, 0xa5, 0x72, 0xcc, 0x0a, 0x49, 0x2e, 0xe8, + 0xf1, 0xa9, 0x72, 0x73, 0xcc, 0x54, 0x7e, 0x0f, 0x4f, 0x9c, 0x11, 0xa2, 0xfe, 0x95, 0xe2, 0x3b, + 0xd0, 0x47, 0x7e, 0x8f, 0xc8, 0xdd, 0x31, 0x73, 0xca, 0x86, 0x8a, 0xc8, 0x29, 0xcb, 0xeb, 0xce, + 0xbe, 0x39, 0x65, 0x2f, 0xc2, 0x68, 0xc3, 0x0b, 0x7c, 0xb2, 0x1c, 0x05, 0x49, 0xd0, 0x08, 0x3c, + 0x61, 0xd6, 0x2b, 0x91, 0x30, 0x63, 0x02, 0x71, 0x1a, 0xb7, 0x57, 0x42, 0x5a, 0xed, 0xa8, 0x09, + 0x69, 0x70, 0x9f, 0x12, 0xd2, 0x7e, 0x46, 0xa7, 0x4e, 0x0f, 0xb3, 0x2f, 0xf2, 0xe1, 0xe2, 0xbf, + 0x48, 0x3f, 0xf9, 0xd3, 0xe8, 0x4d, 0x7e, 0xed, 0x1e, 0x35, 0x8c, 0x67, 0x82, 0x36, 0x35, 0xfc, + 0x46, 0xd8, 0x90, 0xbc, 0x7a, 0x0c, 0x13, 0xf6, 0xe6, 0x8a, 0x66, 0xa3, 0xae, 0xe2, 0xd3, 0x4d, + 0x38, 0xdd, 0x91, 0xa3, 0xa4, 0x76, 0x7f, 0xb5, 0x04, 0x3f, 0xb0, 0x6f, 0x17, 0xd0, 0x6d, 0x80, + 0xc4, 0x69, 0x89, 0x89, 0x2a, 0x0e, 0x4c, 0x8e, 0x18, 0x5e, 0xb9, 0x2a, 0xe9, 0xf1, 0x9a, 0x24, + 0xea, 0x2f, 0x3b, 0x8a, 0x90, 0xbf, 0x59, 0x54, 0x65, 0xe0, 0x75, 0x95, 0x6e, 0xc4, 0x81, 0x47, + 0x30, 0x83, 0x50, 0xf5, 0x1f, 0x91, 0x96, 0xbe, 0x27, 0x5a, 0x7d, 0x3e, 0xcc, 0x5a, 0xb1, 0x80, + 0xa2, 0xe7, 0x61, 0xd8, 0xf1, 0x3c, 0x9e, 0x1f, 0x43, 0x62, 0x71, 0xef, 0x8e, 0xae, 0x21, 0xa7, + 0x41, 0xd8, 0xc4, 0xb3, 0xff, 0xb4, 0x04, 0x13, 0xfb, 0xc8, 0x94, 0xae, 0x8c, 0xbf, 0x4a, 0xdf, + 0x19, 0x7f, 0x22, 0x47, 0x61, 0xb0, 0x47, 0x8e, 0xc2, 0xf3, 0x30, 0x9c, 0x10, 0xa7, 0x2d, 0x02, + 0xb2, 0x84, 0x27, 0x40, 0x9f, 0x00, 0x6b, 0x10, 0x36, 0xf1, 0xa8, 0x14, 0x1b, 0x73, 0x1a, 0x0d, + 0x12, 0xc7, 0x32, 0x09, 0x41, 0x78, 0x53, 0x0b, 0xcb, 0x70, 0x60, 0x4e, 0xea, 0xe9, 0x14, 0x0b, + 0x9c, 0x61, 0x99, 0x1d, 0xf0, 0x5a, 0x9f, 0x03, 0xfe, 0x8d, 0x12, 0x3c, 0xb6, 0xa7, 0x76, 0xeb, + 0x3b, 0x3f, 0xa4, 0x13, 0x93, 0x28, 0x3b, 0x71, 0xae, 0xc7, 0x24, 0xc2, 0x0c, 0xc2, 0x47, 0x29, + 0x0c, 0x8d, 0x7b, 0xb8, 0x8b, 0x4e, 0x5e, 0xe2, 0xa3, 0x94, 0x62, 0x81, 0x33, 0x2c, 0x0f, 0x3b, + 0x2d, 0xff, 0x5e, 0x09, 0x9e, 0xe8, 0xc3, 0x06, 0x28, 0x30, 0xc9, 0x2b, 0x9d, 0x6a, 0x57, 0xbe, + 0x4f, 0x19, 0x91, 0x87, 0x1c, 0xae, 0x6f, 0x96, 0xe0, 0x5c, 0x6f, 0x55, 0x8c, 0x7e, 0x0c, 0x4e, + 0x44, 0x2a, 0x0a, 0xcb, 0xcc, 0xd2, 0x3b, 0xcd, 0x3d, 0x09, 0x29, 0x10, 0xce, 0xe2, 0xa2, 0x49, + 0x80, 0xd0, 0x49, 0x36, 0xe2, 0x8b, 0xdb, 0x6e, 0x9c, 0x88, 0x2a, 0x34, 0x63, 0xfc, 0xec, 0x4a, + 0xb6, 0x62, 0x03, 0x83, 0xb2, 0x63, 0xff, 0x66, 0x83, 0x6b, 0x41, 0xc2, 0x1f, 0xe2, 0xdb, 0x88, + 0xd3, 0xf2, 0xce, 0x0e, 0x03, 0x84, 0xb3, 0xb8, 0x94, 0x1d, 0x3b, 0x1d, 0xe5, 0x1d, 0xe5, 0xfb, + 0x0b, 0xc6, 0x6e, 0x41, 0xb5, 0x62, 0x03, 0x23, 0x9b, 0x7f, 0x58, 0xd9, 0x3f, 0xff, 0xd0, 0xfe, + 0xc7, 0x25, 0x78, 0xa4, 0xa7, 0x29, 0xd7, 0xdf, 0x02, 0x7c, 0xf0, 0x72, 0x06, 0x0f, 0x37, 0x77, + 0x0e, 0x98, 0xdb, 0xf6, 0xc7, 0x3d, 0x66, 0x9a, 0xc8, 0x6d, 0x3b, 0x7c, 0x72, 0xf8, 0x83, 0x37, + 0x9e, 0x5d, 0xe9, 0x6c, 0x03, 0x07, 0x48, 0x67, 0xcb, 0x7c, 0x8c, 0x4a, 0x9f, 0x0b, 0xf9, 0xcf, + 0xcb, 0x3d, 0x87, 0x97, 0x6e, 0xfd, 0xfa, 0xf2, 0xd3, 0xce, 0xc2, 0x49, 0xd7, 0x67, 0xf7, 0x37, + 0xad, 0x74, 0xd6, 0x44, 0x61, 0x92, 0x52, 0xfa, 0x96, 0xf5, 0xf9, 0x0c, 0x1c, 0x77, 0x3d, 0xf1, + 0x00, 0xa6, 0x17, 0x1e, 0x6e, 0x48, 0x0f, 0x96, 0xe0, 0x8a, 0x96, 0xe0, 0xac, 0x1c, 0x8a, 0x0d, + 0x27, 0x22, 0x4d, 0xa1, 0x46, 0x62, 0x91, 0x50, 0xf1, 0x08, 0x4f, 0xca, 0xc8, 0x41, 0xc0, 0xf9, + 0xcf, 0xb1, 0x2b, 0x73, 0x82, 0xd0, 0x6d, 0x88, 0x4d, 0x8e, 0xbe, 0x32, 0x87, 0x36, 0x62, 0x0e, + 0xb3, 0x3f, 0x0c, 0x35, 0xf5, 0xfe, 0x3c, 0xac, 0x5b, 0x4d, 0xba, 0xae, 0xb0, 0x6e, 0x35, 0xe3, + 0x0c, 0x2c, 0xfa, 0xb5, 0xa8, 0x49, 0x9c, 0x59, 0x3d, 0x57, 0xc9, 0x0e, 0xb3, 0x8f, 0xed, 0x77, + 0xc3, 0x88, 0xf2, 0xb3, 0xf4, 0x7b, 0x91, 0x90, 0xfd, 0xe5, 0x41, 0x18, 0x4d, 0x15, 0x07, 0x4c, + 0x39, 0x58, 0xad, 0x7d, 0x1d, 0xac, 0x2c, 0x4c, 0xbf, 0xe3, 0xcb, 0x5b, 0xc6, 0x8c, 0x30, 0xfd, + 0x8e, 0x4f, 0x30, 0x87, 0x51, 0xf3, 0xb6, 0x19, 0xed, 0xe0, 0x8e, 0x2f, 0xc2, 0x69, 0x95, 0x79, + 0x3b, 0xcb, 0x5a, 0xb1, 0x80, 0xa2, 0x4f, 0x58, 0x30, 0x12, 0x33, 0xef, 0x3d, 0x77, 0x4f, 0x8b, + 0x49, 0x77, 0xe5, 0xe8, 0xb5, 0x0f, 0x55, 0x21, 0x4c, 0x16, 0x21, 0x63, 0xb6, 0xe0, 0x14, 0x47, + 0xf4, 0x69, 0x0b, 0x6a, 0xea, 0x32, 0x14, 0x71, 0x65, 0xe0, 0x4a, 0xb1, 0xb5, 0x17, 0xb9, 0x5f, + 0x53, 0x1d, 0x84, 0xa8, 0x22, 0x78, 0x58, 0x33, 0x46, 0xb1, 0xf2, 0x1d, 0x0f, 0x1d, 0x8f, 0xef, + 0x18, 0x72, 0xfc, 0xc6, 0xef, 0x82, 0x5a, 0xdb, 0xf1, 0xdd, 0x75, 0x12, 0x27, 0xdc, 0x9d, 0x2b, + 0x4b, 0xc2, 0xca, 0x46, 0xac, 0xe1, 0x54, 0x21, 0xc7, 0xec, 0xc5, 0x12, 0xc3, 0xff, 0xca, 0x14, + 0xf2, 0x8a, 0x6e, 0xc6, 0x26, 0x8e, 0xe9, 0x2c, 0x86, 0xfb, 0xea, 0x2c, 0x1e, 0xde, 0xdb, 0x59, + 0x6c, 0xff, 0x03, 0x0b, 0xce, 0xe6, 0x7e, 0xb5, 0x07, 0x37, 0xf0, 0xd1, 0xfe, 0x4a, 0x05, 0x4e, + 0xe7, 0x54, 0xf9, 0x44, 0x3b, 0xe6, 0x7c, 0xb6, 0x8a, 0x88, 0x21, 0x48, 0x1f, 0x89, 0xcb, 0x61, + 0xcc, 0x99, 0xc4, 0x07, 0x3b, 0xaa, 0xd1, 0xc7, 0x25, 0xe5, 0x7b, 0x7b, 0x5c, 0x62, 0x4c, 0xcb, + 0x81, 0xfb, 0x3a, 0x2d, 0x2b, 0xfb, 0x9c, 0x61, 0xfc, 0xaa, 0x05, 0xe3, 0xed, 0x1e, 0xa5, 0xe5, + 0x85, 0xe3, 0xf1, 0xc6, 0xf1, 0x14, 0xae, 0xaf, 0x3f, 0x7a, 0x67, 0x77, 0xa2, 0x67, 0x45, 0x7f, + 0xdc, 0xb3, 0x57, 0xf6, 0x77, 0xca, 0xc0, 0x4a, 0xcc, 0xb2, 0x4a, 0x6e, 0x3b, 0xe8, 0xe3, 0x66, + 0xb1, 0x60, 0xab, 0xa8, 0xc2, 0xb6, 0x9c, 0xb8, 0x2a, 0x36, 0xcc, 0x47, 0x30, 0xaf, 0xf6, 0x70, + 0x56, 0x68, 0x95, 0xfa, 0x10, 0x5a, 0x9e, 0xac, 0xca, 0x5c, 0x2e, 0xbe, 0x2a, 0x73, 0x2d, 0x5b, + 0x91, 0x79, 0xef, 0x4f, 0x3c, 0xf0, 0x40, 0x7e, 0xe2, 0x5f, 0xb0, 0xb8, 0xe0, 0xc9, 0x7c, 0x05, + 0x6d, 0x19, 0x58, 0x7b, 0x58, 0x06, 0x4f, 0x43, 0x35, 0x26, 0xde, 0xfa, 0x65, 0xe2, 0x78, 0xc2, + 0x82, 0xd0, 0xe7, 0xd7, 0xa2, 0x1d, 0x2b, 0x0c, 0x76, 0x6d, 0xab, 0xe7, 0x05, 0xb7, 0x2f, 0xb6, + 0xc3, 0x64, 0x47, 0xd8, 0x12, 0xfa, 0xda, 0x56, 0x05, 0xc1, 0x06, 0x96, 0xfd, 0x37, 0x4b, 0x7c, + 0x06, 0x8a, 0x20, 0x88, 0x17, 0x32, 0x17, 0xed, 0xf5, 0x1f, 0x3f, 0xf0, 0x51, 0x80, 0x86, 0xba, + 0xca, 0x5e, 0x9c, 0x09, 0x5d, 0x3e, 0xf2, 0x3d, 0xdb, 0x82, 0x9e, 0x7e, 0x0d, 0xdd, 0x86, 0x0d, + 0x7e, 0x29, 0x59, 0x5a, 0xde, 0x57, 0x96, 0xa6, 0xc4, 0xca, 0xc0, 0x3e, 0xda, 0xee, 0x4f, 0x2d, + 0x48, 0x59, 0x44, 0x28, 0x84, 0x0a, 0xed, 0xee, 0x4e, 0x31, 0xb7, 0xf4, 0x9b, 0xa4, 0xa9, 0x68, + 0x14, 0xd3, 0x9e, 0xfd, 0xc4, 0x9c, 0x11, 0xf2, 0x44, 0xac, 0x04, 0x1f, 0xd5, 0x6b, 0xc5, 0x31, + 0xbc, 0x1c, 0x04, 0x9b, 0xfc, 0x60, 0x53, 0xc7, 0x5d, 0xd8, 0x2f, 0xc0, 0xa9, 0xae, 0x4e, 0xb1, + 0x3b, 0xb5, 0x02, 0xaa, 0x7d, 0x32, 0xd3, 0x95, 0x25, 0x70, 0x62, 0x0e, 0xb3, 0xbf, 0x69, 0xc1, + 0xc9, 0x2c, 0x79, 0xf4, 0xa6, 0x05, 0xa7, 0xe2, 0x2c, 0xbd, 0xe3, 0x1a, 0x3b, 0x15, 0xef, 0xd8, + 0x05, 0xc2, 0xdd, 0x9d, 0xb0, 0xff, 0xaf, 0x98, 0xfc, 0x37, 0x5d, 0xbf, 0x19, 0xdc, 0x56, 0x86, + 0x89, 0xd5, 0xd3, 0x30, 0xa1, 0xeb, 0xb1, 0xb1, 0x41, 0x9a, 0x1d, 0xaf, 0x2b, 0x73, 0x74, 0x45, + 0xb4, 0x63, 0x85, 0xc1, 0x12, 0xe5, 0x3a, 0xa2, 0x6c, 0x7b, 0x66, 0x52, 0xce, 0x8a, 0x76, 0xac, + 0x30, 0xd0, 0x73, 0x30, 0x62, 0xbc, 0xa4, 0x9c, 0x97, 0xcc, 0x20, 0x37, 0x54, 0x66, 0x8c, 0x53, + 0x58, 0x68, 0x12, 0x40, 0x19, 0x39, 0x52, 0x45, 0x32, 0x47, 0x91, 0x92, 0x44, 0x31, 0x36, 0x30, + 0x58, 0x5a, 0xaa, 0xd7, 0x89, 0x99, 0x8f, 0x7f, 0x50, 0x97, 0x12, 0x9d, 0x11, 0x6d, 0x58, 0x41, + 0xa9, 0x34, 0x69, 0x3b, 0x7e, 0xc7, 0xf1, 0xe8, 0x08, 0x89, 0xad, 0x9f, 0x5a, 0x86, 0x8b, 0x0a, + 0x82, 0x0d, 0x2c, 0xfa, 0xc6, 0x89, 0xdb, 0x26, 0x2f, 0x07, 0xbe, 0x8c, 0x53, 0xd3, 0xc7, 0x3e, + 0xa2, 0x1d, 0x2b, 0x0c, 0xfb, 0xbf, 0x5a, 0x70, 0x42, 0x27, 0xb9, 0xf3, 0xdb, 0xb3, 0xcd, 0x9d, + 0xaa, 0xb5, 0xef, 0x4e, 0x35, 0x9d, 0xfd, 0x5b, 0xea, 0x2b, 0xfb, 0xd7, 0x4c, 0xcc, 0x2d, 0xef, + 0x99, 0x98, 0xfb, 0x43, 0xfa, 0x66, 0x56, 0x9e, 0xc1, 0x3b, 0x9c, 0x77, 0x2b, 0x2b, 0xb2, 0x61, + 0xb0, 0xe1, 0xa8, 0x0a, 0x2f, 0x23, 0x7c, 0xef, 0x30, 0x33, 0xcd, 0x90, 0x04, 0xc4, 0x5e, 0x82, + 0x9a, 0x3a, 0xfd, 0x90, 0x1b, 0x55, 0x2b, 0x7f, 0xa3, 0xda, 0x57, 0x82, 0x60, 0x7d, 0xed, 0x5b, + 0xdf, 0x7d, 0xfc, 0x6d, 0xbf, 0xf7, 0xdd, 0xc7, 0xdf, 0xf6, 0x47, 0xdf, 0x7d, 0xfc, 0x6d, 0x9f, + 0xb8, 0xf3, 0xb8, 0xf5, 0xad, 0x3b, 0x8f, 0x5b, 0xbf, 0x77, 0xe7, 0x71, 0xeb, 0x8f, 0xee, 0x3c, + 0x6e, 0x7d, 0xe7, 0xce, 0xe3, 0xd6, 0x97, 0xfe, 0xd3, 0xe3, 0x6f, 0x7b, 0x39, 0x37, 0x50, 0x91, + 0xfe, 0x78, 0xa6, 0xd1, 0x9c, 0xda, 0xba, 0xc0, 0x62, 0xe5, 0xe8, 0xf2, 0x9a, 0x32, 0xe6, 0xd4, + 0x94, 0x5c, 0x5e, 0xff, 0x2f, 0x00, 0x00, 0xff, 0xff, 0x13, 0x8b, 0x32, 0x8c, 0xdc, 0xe2, 0x00, + 0x00, } func (m *AWSAuthConfig) Marshal() (dAtA []byte, err error) { @@ -6594,6 +6625,20 @@ func (m *ApplicationSetStatus) MarshalToSizedBuffer(dAtA []byte) (int, error) { _ = i var l int _ = l + if len(m.Resources) > 0 { + for iNdEx := len(m.Resources) - 1; iNdEx >= 0; iNdEx-- { + { + size, err := m.Resources[iNdEx].MarshalToSizedBuffer(dAtA[:i]) + if err != nil { + return 0, err + } + i -= size + i = encodeVarintGenerated(dAtA, i, uint64(size)) + } + i-- + dAtA[i] = 0x1a + } + } if len(m.ApplicationStatus) > 0 { for iNdEx := len(m.ApplicationStatus) - 1; iNdEx >= 0; iNdEx-- { { @@ -6955,6 +7000,43 @@ func (m *ApplicationSetTerminalGenerator) MarshalToSizedBuffer(dAtA []byte) (int return len(dAtA) - i, nil } +func (m *ApplicationSetTree) Marshal() (dAtA []byte, err error) { + size := m.Size() + dAtA = make([]byte, size) + n, err := m.MarshalToSizedBuffer(dAtA[:size]) + if err != nil { + return nil, err + } + return dAtA[:n], nil +} + +func (m *ApplicationSetTree) MarshalTo(dAtA []byte) (int, error) { + size := m.Size() + return m.MarshalToSizedBuffer(dAtA[:size]) +} + +func (m *ApplicationSetTree) MarshalToSizedBuffer(dAtA []byte) (int, error) { + i := len(dAtA) + _ = i + var l int + _ = l + if len(m.Nodes) > 0 { + for iNdEx := len(m.Nodes) - 1; iNdEx >= 0; iNdEx-- { + { + size, err := m.Nodes[iNdEx].MarshalToSizedBuffer(dAtA[:i]) + if err != nil { + return 0, err + } + i -= size + i = encodeVarintGenerated(dAtA, i, uint64(size)) + } + i-- + dAtA[i] = 0xa + } + } + return len(dAtA) - i, nil +} + func (m *ApplicationSource) Marshal() (dAtA []byte, err error) { size := m.Size() dAtA = make([]byte, size) @@ -14959,6 +15041,12 @@ func (m *ApplicationSetStatus) Size() (n int) { n += 1 + l + sovGenerated(uint64(l)) } } + if len(m.Resources) > 0 { + for _, e := range m.Resources { + l = e.Size() + n += 1 + l + sovGenerated(uint64(l)) + } + } return n } @@ -15080,6 +15168,21 @@ func (m *ApplicationSetTerminalGenerator) Size() (n int) { return n } +func (m *ApplicationSetTree) Size() (n int) { + if m == nil { + return 0 + } + var l int + _ = l + if len(m.Nodes) > 0 { + for _, e := range m.Nodes { + l = e.Size() + n += 1 + l + sovGenerated(uint64(l)) + } + } + return n +} + func (m *ApplicationSource) Size() (n int) { if m == nil { return 0 @@ -18258,9 +18361,15 @@ func (this *ApplicationSetStatus) String() string { repeatedStringForApplicationStatus += strings.Replace(strings.Replace(f.String(), "ApplicationSetApplicationStatus", "ApplicationSetApplicationStatus", 1), `&`, ``, 1) + "," } repeatedStringForApplicationStatus += "}" + repeatedStringForResources := "[]ResourceStatus{" + for _, f := range this.Resources { + repeatedStringForResources += strings.Replace(strings.Replace(f.String(), "ResourceStatus", "ResourceStatus", 1), `&`, ``, 1) + "," + } + repeatedStringForResources += "}" s := strings.Join([]string{`&ApplicationSetStatus{`, `Conditions:` + repeatedStringForConditions + `,`, `ApplicationStatus:` + repeatedStringForApplicationStatus + `,`, + `Resources:` + repeatedStringForResources + `,`, `}`, }, "") return s @@ -18349,6 +18458,21 @@ func (this *ApplicationSetTerminalGenerator) String() string { }, "") return s } +func (this *ApplicationSetTree) String() string { + if this == nil { + return "nil" + } + repeatedStringForNodes := "[]ResourceNode{" + for _, f := range this.Nodes { + repeatedStringForNodes += strings.Replace(strings.Replace(f.String(), "ResourceNode", "ResourceNode", 1), `&`, ``, 1) + "," + } + repeatedStringForNodes += "}" + s := strings.Join([]string{`&ApplicationSetTree{`, + `Nodes:` + repeatedStringForNodes + `,`, + `}`, + }, "") + return s +} func (this *ApplicationSource) String() string { if this == nil { return "nil" @@ -24703,6 +24827,40 @@ func (m *ApplicationSetStatus) Unmarshal(dAtA []byte) error { return err } iNdEx = postIndex + case 3: + if wireType != 2 { + return fmt.Errorf("proto: wrong wireType = %d for field Resources", wireType) + } + var msglen int + for shift := uint(0); ; shift += 7 { + if shift >= 64 { + return ErrIntOverflowGenerated + } + if iNdEx >= l { + return io.ErrUnexpectedEOF + } + b := dAtA[iNdEx] + iNdEx++ + msglen |= int(b&0x7F) << shift + if b < 0x80 { + break + } + } + if msglen < 0 { + return ErrInvalidLengthGenerated + } + postIndex := iNdEx + msglen + if postIndex < 0 { + return ErrInvalidLengthGenerated + } + if postIndex > l { + return io.ErrUnexpectedEOF + } + m.Resources = append(m.Resources, ResourceStatus{}) + if err := m.Resources[len(m.Resources)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil { + return err + } + iNdEx = postIndex default: iNdEx = preIndex skippy, err := skipGenerated(dAtA[iNdEx:]) @@ -25799,6 +25957,90 @@ func (m *ApplicationSetTerminalGenerator) Unmarshal(dAtA []byte) error { } return nil } +func (m *ApplicationSetTree) Unmarshal(dAtA []byte) error { + l := len(dAtA) + iNdEx := 0 + for iNdEx < l { + preIndex := iNdEx + var wire uint64 + for shift := uint(0); ; shift += 7 { + if shift >= 64 { + return ErrIntOverflowGenerated + } + if iNdEx >= l { + return io.ErrUnexpectedEOF + } + b := dAtA[iNdEx] + iNdEx++ + wire |= uint64(b&0x7F) << shift + if b < 0x80 { + break + } + } + fieldNum := int32(wire >> 3) + wireType := int(wire & 0x7) + if wireType == 4 { + return fmt.Errorf("proto: ApplicationSetTree: wiretype end group for non-group") + } + if fieldNum <= 0 { + return fmt.Errorf("proto: ApplicationSetTree: illegal tag %d (wire type %d)", fieldNum, wire) + } + switch fieldNum { + case 1: + if wireType != 2 { + return fmt.Errorf("proto: wrong wireType = %d for field Nodes", wireType) + } + var msglen int + for shift := uint(0); ; shift += 7 { + if shift >= 64 { + return ErrIntOverflowGenerated + } + if iNdEx >= l { + return io.ErrUnexpectedEOF + } + b := dAtA[iNdEx] + iNdEx++ + msglen |= int(b&0x7F) << shift + if b < 0x80 { + break + } + } + if msglen < 0 { + return ErrInvalidLengthGenerated + } + postIndex := iNdEx + msglen + if postIndex < 0 { + return ErrInvalidLengthGenerated + } + if postIndex > l { + return io.ErrUnexpectedEOF + } + m.Nodes = append(m.Nodes, ResourceNode{}) + if err := m.Nodes[len(m.Nodes)-1].Unmarshal(dAtA[iNdEx:postIndex]); err != nil { + return err + } + iNdEx = postIndex + default: + iNdEx = preIndex + skippy, err := skipGenerated(dAtA[iNdEx:]) + if err != nil { + return err + } + if (skippy < 0) || (iNdEx+skippy) < 0 { + return ErrInvalidLengthGenerated + } + if (iNdEx + skippy) > l { + return io.ErrUnexpectedEOF + } + iNdEx += skippy + } + } + + if iNdEx > l { + return io.ErrUnexpectedEOF + } + return nil +} func (m *ApplicationSource) Unmarshal(dAtA []byte) error { l := len(dAtA) iNdEx := 0 diff --git a/pkg/apis/application/v1alpha1/generated.proto b/pkg/apis/application/v1alpha1/generated.proto index 88ba0d7efe9a9..8acb05ed338c9 100644 --- a/pkg/apis/application/v1alpha1/generated.proto +++ b/pkg/apis/application/v1alpha1/generated.proto @@ -330,6 +330,9 @@ message ApplicationSetStatus { repeated ApplicationSetCondition conditions = 1; repeated ApplicationSetApplicationStatus applicationStatus = 2; + + // Resources is a list of Applications resources managed by this application set. + repeated ResourceStatus resources = 3; } // ApplicationSetStrategy configures how generated Applications are updated in sequence. @@ -395,6 +398,13 @@ message ApplicationSetTerminalGenerator { optional k8s.io.apimachinery.pkg.apis.meta.v1.LabelSelector selector = 8; } +// ApplicationSetTree holds nodes which belongs to the application +// Used to build a tree of an ApplicationSet and its children +message ApplicationSetTree { + // Nodes contains list of nodes which are directly managed by the applicationset + repeated ResourceNode nodes = 1; +} + // ApplicationSource contains all required information about the source of an application message ApplicationSource { // RepoURL is the URL to the repository (Git or Helm) that contains the application manifests diff --git a/pkg/apis/application/v1alpha1/openapi_generated.go b/pkg/apis/application/v1alpha1/openapi_generated.go index ecbcdabe75364..dc65131c9bac3 100644 --- a/pkg/apis/application/v1alpha1/openapi_generated.go +++ b/pkg/apis/application/v1alpha1/openapi_generated.go @@ -41,6 +41,7 @@ func GetOpenAPIDefinitions(ref common.ReferenceCallback) map[string]common.OpenA "github.com/argoproj/argo-cd/v2/pkg/apis/application/v1alpha1.ApplicationSetTemplate": schema_pkg_apis_application_v1alpha1_ApplicationSetTemplate(ref), "github.com/argoproj/argo-cd/v2/pkg/apis/application/v1alpha1.ApplicationSetTemplateMeta": schema_pkg_apis_application_v1alpha1_ApplicationSetTemplateMeta(ref), "github.com/argoproj/argo-cd/v2/pkg/apis/application/v1alpha1.ApplicationSetTerminalGenerator": schema_pkg_apis_application_v1alpha1_ApplicationSetTerminalGenerator(ref), + "github.com/argoproj/argo-cd/v2/pkg/apis/application/v1alpha1.ApplicationSetTree": schema_pkg_apis_application_v1alpha1_ApplicationSetTree(ref), "github.com/argoproj/argo-cd/v2/pkg/apis/application/v1alpha1.ApplicationSource": schema_pkg_apis_application_v1alpha1_ApplicationSource(ref), "github.com/argoproj/argo-cd/v2/pkg/apis/application/v1alpha1.ApplicationSourceDirectory": schema_pkg_apis_application_v1alpha1_ApplicationSourceDirectory(ref), "github.com/argoproj/argo-cd/v2/pkg/apis/application/v1alpha1.ApplicationSourceHelm": schema_pkg_apis_application_v1alpha1_ApplicationSourceHelm(ref), @@ -1338,11 +1339,25 @@ func schema_pkg_apis_application_v1alpha1_ApplicationSetStatus(ref common.Refere }, }, }, + "resources": { + SchemaProps: spec.SchemaProps{ + Description: "Resources is a list of Applications resources managed by this application set.", + Type: []string{"array"}, + Items: &spec.SchemaOrArray{ + Schema: &spec.Schema{ + SchemaProps: spec.SchemaProps{ + Default: map[string]interface{}{}, + Ref: ref("github.com/argoproj/argo-cd/v2/pkg/apis/application/v1alpha1.ResourceStatus"), + }, + }, + }, + }, + }, }, }, }, Dependencies: []string{ - "github.com/argoproj/argo-cd/v2/pkg/apis/application/v1alpha1.ApplicationSetApplicationStatus", "github.com/argoproj/argo-cd/v2/pkg/apis/application/v1alpha1.ApplicationSetCondition"}, + "github.com/argoproj/argo-cd/v2/pkg/apis/application/v1alpha1.ApplicationSetApplicationStatus", "github.com/argoproj/argo-cd/v2/pkg/apis/application/v1alpha1.ApplicationSetCondition", "github.com/argoproj/argo-cd/v2/pkg/apis/application/v1alpha1.ResourceStatus"}, } } @@ -1552,6 +1567,35 @@ func schema_pkg_apis_application_v1alpha1_ApplicationSetTerminalGenerator(ref co } } +func schema_pkg_apis_application_v1alpha1_ApplicationSetTree(ref common.ReferenceCallback) common.OpenAPIDefinition { + return common.OpenAPIDefinition{ + Schema: spec.Schema{ + SchemaProps: spec.SchemaProps{ + Description: "ApplicationSetTree holds nodes which belongs to the application Used to build a tree of an ApplicationSet and its children", + Type: []string{"object"}, + Properties: map[string]spec.Schema{ + "nodes": { + SchemaProps: spec.SchemaProps{ + Description: "Nodes contains list of nodes which are directly managed by the applicationset", + Type: []string{"array"}, + Items: &spec.SchemaOrArray{ + Schema: &spec.Schema{ + SchemaProps: spec.SchemaProps{ + Default: map[string]interface{}{}, + Ref: ref("github.com/argoproj/argo-cd/v2/pkg/apis/application/v1alpha1.ResourceNode"), + }, + }, + }, + }, + }, + }, + }, + }, + Dependencies: []string{ + "github.com/argoproj/argo-cd/v2/pkg/apis/application/v1alpha1.ResourceNode"}, + } +} + func schema_pkg_apis_application_v1alpha1_ApplicationSource(ref common.ReferenceCallback) common.OpenAPIDefinition { return common.OpenAPIDefinition{ Schema: spec.Schema{ diff --git a/pkg/apis/application/v1alpha1/zz_generated.deepcopy.go b/pkg/apis/application/v1alpha1/zz_generated.deepcopy.go index d61af65785b95..9ecec3f0b8793 100644 --- a/pkg/apis/application/v1alpha1/zz_generated.deepcopy.go +++ b/pkg/apis/application/v1alpha1/zz_generated.deepcopy.go @@ -768,6 +768,13 @@ func (in *ApplicationSetStatus) DeepCopyInto(out *ApplicationSetStatus) { (*in)[i].DeepCopyInto(&(*out)[i]) } } + if in.Resources != nil { + in, out := &in.Resources, &out.Resources + *out = make([]ResourceStatus, len(*in)) + for i := range *in { + (*in)[i].DeepCopyInto(&(*out)[i]) + } + } return } @@ -954,6 +961,29 @@ func (in ApplicationSetTerminalGenerators) DeepCopy() ApplicationSetTerminalGene return *out } +// DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil. +func (in *ApplicationSetTree) DeepCopyInto(out *ApplicationSetTree) { + *out = *in + if in.Nodes != nil { + in, out := &in.Nodes, &out.Nodes + *out = make([]ResourceNode, len(*in)) + for i := range *in { + (*in)[i].DeepCopyInto(&(*out)[i]) + } + } + return +} + +// DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ApplicationSetTree. +func (in *ApplicationSetTree) DeepCopy() *ApplicationSetTree { + if in == nil { + return nil + } + out := new(ApplicationSetTree) + in.DeepCopyInto(out) + return out +} + // DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil. func (in *ApplicationSource) DeepCopyInto(out *ApplicationSource) { *out = *in diff --git a/server/applicationset/applicationset.go b/server/applicationset/applicationset.go index d67815bd9a53d..1875d01616858 100644 --- a/server/applicationset/applicationset.go +++ b/server/applicationset/applicationset.go @@ -280,6 +280,52 @@ func (s *Server) Delete(ctx context.Context, q *applicationset.ApplicationSetDel } +func (s *Server) ResourceTree(ctx context.Context, q *applicationset.ApplicationSetTreeQuery) (*v1alpha1.ApplicationSetTree, error) { + namespace := s.appsetNamespaceOrDefault(q.AppsetNamespace) + + if !s.isNamespaceEnabled(namespace) { + return nil, security.NamespaceNotPermittedError(namespace) + } + + a, err := s.appclientset.ArgoprojV1alpha1().ApplicationSets(namespace).Get(ctx, q.Name, metav1.GetOptions{}) + + if err != nil { + return nil, fmt.Errorf("error getting ApplicationSet: %w", err) + } + if err = s.enf.EnforceErr(ctx.Value("claims"), rbacpolicy.ResourceApplicationSets, rbacpolicy.ActionGet, a.RBACName(s.ns)); err != nil { + return nil, err + } + + return s.buildApplicationSetTree(ctx, a) +} + +func (s *Server) buildApplicationSetTree(ctx context.Context, a *v1alpha1.ApplicationSet) (*v1alpha1.ApplicationSetTree, error) { + var tree v1alpha1.ApplicationSetTree + + gvk := v1alpha1.ApplicationSetSchemaGroupVersionKind + parentRefs := []v1alpha1.ResourceRef{ + {Group: gvk.Group, Version: gvk.Version, Kind: gvk.Kind, Name: a.Name, Namespace: a.Namespace, UID: string(a.UID)}, + } + + apps := a.Status.Resources + for _, app := range apps { + tree.Nodes = append(tree.Nodes, v1alpha1.ResourceNode{ + Health: app.Health, + ResourceRef: v1alpha1.ResourceRef{ + Name: app.Name, + Group: app.Group, + Version: app.Version, + Kind: app.Kind, + Namespace: a.Namespace, + }, + ParentRefs: parentRefs, + }) + } + tree.Normalize() + + return &tree, nil +} + func (s *Server) validateAppSet(ctx context.Context, appset *v1alpha1.ApplicationSet) (string, error) { if appset == nil { return "", fmt.Errorf("ApplicationSet cannot be validated for nil value") diff --git a/server/applicationset/applicationset.proto b/server/applicationset/applicationset.proto index 2a857d41a00ce..07ed4e2c89384 100644 --- a/server/applicationset/applicationset.proto +++ b/server/applicationset/applicationset.proto @@ -46,6 +46,11 @@ message ApplicationSetDeleteRequest { string appsetNamespace = 2; } +message ApplicationSetTreeQuery { + string name = 1; + // The application set namespace. Default empty is argocd control plane namespace + string appsetNamespace = 2; +} // ApplicationSetService service ApplicationSetService { @@ -73,4 +78,9 @@ service ApplicationSetService { option (google.api.http).delete = "/api/v1/applicationsets/{name}"; } -} \ No newline at end of file + // ResourceTree returns resource tree + rpc ResourceTree(ApplicationSetTreeQuery) returns (github.com.argoproj.argo_cd.v2.pkg.apis.application.v1alpha1.ApplicationSetTree) { + option (google.api.http).get = "/api/v1/applicationsets/{name}/resource-tree"; + } + +} diff --git a/server/applicationset/applicationset_test.go b/server/applicationset/applicationset_test.go index c49ddb35a7970..e72fec497c9b8 100644 --- a/server/applicationset/applicationset_test.go +++ b/server/applicationset/applicationset_test.go @@ -4,6 +4,7 @@ import ( "context" "testing" + "github.com/argoproj/gitops-engine/pkg/health" "github.com/argoproj/pkg/sync" "github.com/stretchr/testify/assert" v1 "k8s.io/api/core/v1" @@ -474,3 +475,90 @@ func TestUpdateAppSet(t *testing.T) { }) } + +func TestResourceTree(t *testing.T) { + appSet1 := newTestAppSet(func(appset *appsv1.ApplicationSet) { + appset.Name = "AppSet1" + appset.Status.Resources = []appsv1.ResourceStatus{ + { + Name: "app1", + Kind: "Application", + Group: "argoproj.io", + Version: "v1alpha1", + Namespace: "default", + Health: &appsv1.HealthStatus{ + Status: health.HealthStatusHealthy, + Message: "OK", + }, + Status: appsv1.SyncStatusCodeSynced, + }, + } + }) + + appSet2 := newTestAppSet(func(appset *appsv1.ApplicationSet) { + appset.Name = "AppSet2" + }) + + appSet3 := newTestAppSet(func(appset *appsv1.ApplicationSet) { + appset.Name = "AppSet3" + }) + + expectedTree := &appsv1.ApplicationSetTree{ + Nodes: []appsv1.ResourceNode{ + { + ResourceRef: appsv1.ResourceRef{ + Kind: "Application", + Group: "argoproj.io", + Version: "v1alpha1", + Namespace: "default", + Name: "app1", + }, + ParentRefs: []appsv1.ResourceRef{ + { + Kind: "ApplicationSet", + Group: "argoproj.io", + Version: "v1alpha1", + Namespace: "default", + Name: "AppSet1", + }, + }, + Health: &appsv1.HealthStatus{ + Status: health.HealthStatusHealthy, + Message: "OK", + }, + }, + }, + } + + t.Run("ResourceTree in default namespace", func(t *testing.T) { + + appSetServer := newTestAppSetServer(appSet1, appSet2, appSet3) + + appsetQuery := applicationset.ApplicationSetTreeQuery{Name: "AppSet1"} + + res, err := appSetServer.ResourceTree(context.Background(), &appsetQuery) + assert.NoError(t, err) + assert.Equal(t, expectedTree, res) + }) + + t.Run("ResourceTree in named namespace", func(t *testing.T) { + + appSetServer := newTestAppSetServer(appSet1, appSet2, appSet3) + + appsetQuery := applicationset.ApplicationSetTreeQuery{Name: "AppSet1", AppsetNamespace: testNamespace} + + res, err := appSetServer.ResourceTree(context.Background(), &appsetQuery) + assert.NoError(t, err) + assert.Equal(t, expectedTree, res) + }) + + t.Run("ResourceTree in not allowed namespace", func(t *testing.T) { + + appSetServer := newTestAppSetServer(appSet1, appSet2, appSet3) + + appsetQuery := applicationset.ApplicationSetTreeQuery{Name: "AppSet1", AppsetNamespace: "NOT-ALLOWED"} + + _, err := appSetServer.ResourceTree(context.Background(), &appsetQuery) + assert.Equal(t, "namespace 'NOT-ALLOWED' is not permitted", err.Error()) + }) +} From 56a0da8575f1ad0d60d6fe34ac25585df9b14312 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 23 Apr 2024 09:35:16 -0400 Subject: [PATCH 025/206] chore(deps): bump slsa-framework/slsa-github-generator (#17934) Bumps [slsa-framework/slsa-github-generator](https://github.com/slsa-framework/slsa-github-generator) from 1.10.0 to 2.0.0. - [Release notes](https://github.com/slsa-framework/slsa-github-generator/releases) - [Changelog](https://github.com/slsa-framework/slsa-github-generator/blob/main/CHANGELOG.md) - [Commits](https://github.com/slsa-framework/slsa-github-generator/compare/v1.10.0...v2.0.0) --- updated-dependencies: - dependency-name: slsa-framework/slsa-github-generator dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/image.yaml | 2 +- .github/workflows/release.yaml | 6 +++--- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/.github/workflows/image.yaml b/.github/workflows/image.yaml index 99fe724a18ccd..3102e8361aa06 100644 --- a/.github/workflows/image.yaml +++ b/.github/workflows/image.yaml @@ -86,7 +86,7 @@ jobs: packages: write # for uploading attestations. (https://github.com/slsa-framework/slsa-github-generator/blob/main/internal/builders/container/README.md#known-issues) if: ${{ github.repository == 'argoproj/argo-cd' && github.event_name == 'push' }} # Must be refernced by a tag. https://github.com/slsa-framework/slsa-github-generator/blob/main/internal/builders/container/README.md#referencing-the-slsa-generator - uses: slsa-framework/slsa-github-generator/.github/workflows/generator_container_slsa3.yml@v1.10.0 + uses: slsa-framework/slsa-github-generator/.github/workflows/generator_container_slsa3.yml@v2.0.0 with: image: ghcr.io/argoproj/argo-cd/argocd digest: ${{ needs.build-and-publish.outputs.image-digest }} diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml index 930bcdad467e6..d2f34d11d31ba 100644 --- a/.github/workflows/release.yaml +++ b/.github/workflows/release.yaml @@ -38,7 +38,7 @@ jobs: packages: write # for uploading attestations. (https://github.com/slsa-framework/slsa-github-generator/blob/main/internal/builders/container/README.md#known-issues) # Must be refernced by a tag. https://github.com/slsa-framework/slsa-github-generator/blob/main/internal/builders/container/README.md#referencing-the-slsa-generator if: github.repository == 'argoproj/argo-cd' - uses: slsa-framework/slsa-github-generator/.github/workflows/generator_container_slsa3.yml@v1.10.0 + uses: slsa-framework/slsa-github-generator/.github/workflows/generator_container_slsa3.yml@v2.0.0 with: image: quay.io/argoproj/argocd digest: ${{ needs.argocd-image.outputs.image-digest }} @@ -128,7 +128,7 @@ jobs: contents: write # Needed for release uploads if: github.repository == 'argoproj/argo-cd' # Must be refernced by a tag. https://github.com/slsa-framework/slsa-github-generator/blob/main/internal/builders/container/README.md#referencing-the-slsa-generator - uses: slsa-framework/slsa-github-generator/.github/workflows/generator_generic_slsa3.yml@v1.10.0 + uses: slsa-framework/slsa-github-generator/.github/workflows/generator_generic_slsa3.yml@v2.0.0 with: base64-subjects: "${{ needs.goreleaser.outputs.hashes }}" provenance-name: "argocd-cli.intoto.jsonl" @@ -212,7 +212,7 @@ jobs: contents: write # Needed for release uploads if: github.repository == 'argoproj/argo-cd' # Must be refernced by a tag. https://github.com/slsa-framework/slsa-github-generator/blob/main/internal/builders/container/README.md#referencing-the-slsa-generator - uses: slsa-framework/slsa-github-generator/.github/workflows/generator_generic_slsa3.yml@v1.10.0 + uses: slsa-framework/slsa-github-generator/.github/workflows/generator_generic_slsa3.yml@v2.0.0 with: base64-subjects: "${{ needs.generate-sbom.outputs.hashes }}" provenance-name: "argocd-sbom.intoto.jsonl" From 589da837d654d6b9de679128ee9a412569507dc5 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 23 Apr 2024 09:35:45 -0400 Subject: [PATCH 026/206] chore(deps): bump thehanimo/pr-title-checker from 1.4.0 to 1.4.2 (#17933) Bumps [thehanimo/pr-title-checker](https://github.com/thehanimo/pr-title-checker) from 1.4.0 to 1.4.2. - [Release notes](https://github.com/thehanimo/pr-title-checker/releases) - [Commits](https://github.com/thehanimo/pr-title-checker/compare/0cf5902181e78341bb97bb06646396e5bd354b3f...1d8cd483a2b73118406a187f54dca8a9415f1375) --- updated-dependencies: - dependency-name: thehanimo/pr-title-checker dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/pr-title-check.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/pr-title-check.yml b/.github/workflows/pr-title-check.yml index 020535d7b8afa..61c38548cf6ba 100644 --- a/.github/workflows/pr-title-check.yml +++ b/.github/workflows/pr-title-check.yml @@ -23,7 +23,7 @@ jobs: name: Validate PR Title runs-on: ubuntu-latest steps: - - uses: thehanimo/pr-title-checker@0cf5902181e78341bb97bb06646396e5bd354b3f # v1.4.0 + - uses: thehanimo/pr-title-checker@1d8cd483a2b73118406a187f54dca8a9415f1375 # v1.4.2 with: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} configuration_path: ".github/pr-title-checker-config.json" From dec655c712afe5f480b0aebfa6e76362057263fc Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 23 Apr 2024 09:38:02 -0400 Subject: [PATCH 027/206] chore(deps): bump peter-evans/create-pull-request from 5.0.2 to 6.0.4 (#17931) Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request) from 5.0.2 to 6.0.4. - [Release notes](https://github.com/peter-evans/create-pull-request/releases) - [Commits](https://github.com/peter-evans/create-pull-request/compare/153407881ec5c347639a548ade7d8ad1d6740e38...9153d834b60caba6d51c9b9510b087acf9f33f83) --- updated-dependencies: - dependency-name: peter-evans/create-pull-request dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/init-release.yaml | 2 +- .github/workflows/release.yaml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/init-release.yaml b/.github/workflows/init-release.yaml index 0a0430f27f96b..9c5ef7b2ab695 100644 --- a/.github/workflows/init-release.yaml +++ b/.github/workflows/init-release.yaml @@ -64,7 +64,7 @@ jobs: git stash pop - name: Create pull request - uses: peter-evans/create-pull-request@153407881ec5c347639a548ade7d8ad1d6740e38 # v5.0.2 + uses: peter-evans/create-pull-request@9153d834b60caba6d51c9b9510b087acf9f33f83 # v6.0.4 with: commit-message: "Bump version to ${{ inputs.TARGET_VERSION }}" title: "Bump version to ${{ inputs.TARGET_VERSION }} on ${{ inputs.TARGET_BRANCH }} branch" diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml index d2f34d11d31ba..1e6288776fbc4 100644 --- a/.github/workflows/release.yaml +++ b/.github/workflows/release.yaml @@ -295,7 +295,7 @@ jobs: if: ${{ env.UPDATE_VERSION == 'true' }} - name: Create PR to update VERSION on master branch - uses: peter-evans/create-pull-request@153407881ec5c347639a548ade7d8ad1d6740e38 # v5.0.2 + uses: peter-evans/create-pull-request@9153d834b60caba6d51c9b9510b087acf9f33f83 # v6.0.4 with: commit-message: Bump version in master title: "chore: Bump version in master" From 4f40c3e3e2d43e812f8d71d55fb7fe492dd50922 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 23 Apr 2024 09:38:44 -0400 Subject: [PATCH 028/206] chore(deps): bump jlumbroso/free-disk-space (#17932) Bumps [jlumbroso/free-disk-space](https://github.com/jlumbroso/free-disk-space) from 4d9e71b726748f254fe64fa44d273194bd18ec91 to 54081f138730dfa15788a46383842cd2f914a1be. - [Release notes](https://github.com/jlumbroso/free-disk-space/releases) - [Commits](https://github.com/jlumbroso/free-disk-space/compare/4d9e71b726748f254fe64fa44d273194bd18ec91...54081f138730dfa15788a46383842cd2f914a1be) --- updated-dependencies: - dependency-name: jlumbroso/free-disk-space dependency-type: direct:production ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/image-reuse.yaml | 2 +- .github/workflows/release.yaml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/image-reuse.yaml b/.github/workflows/image-reuse.yaml index 5b5a12b346fa1..2ba056b0cadfa 100644 --- a/.github/workflows/image-reuse.yaml +++ b/.github/workflows/image-reuse.yaml @@ -134,7 +134,7 @@ jobs: echo "GIT_TREE_STATE=$(if [ -z "`git status --porcelain`" ]; then echo "clean" ; else echo "dirty"; fi)" >> $GITHUB_ENV - name: Free Disk Space (Ubuntu) - uses: jlumbroso/free-disk-space@4d9e71b726748f254fe64fa44d273194bd18ec91 + uses: jlumbroso/free-disk-space@54081f138730dfa15788a46383842cd2f914a1be with: large-packages: false docker-images: false diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml index 1e6288776fbc4..a3ecf2e5478c0 100644 --- a/.github/workflows/release.yaml +++ b/.github/workflows/release.yaml @@ -88,7 +88,7 @@ jobs: echo "GIT_TREE_STATE=$(if [ -z "`git status --porcelain`" ]; then echo "clean" ; else echo "dirty"; fi)" >> $GITHUB_ENV - name: Free Disk Space (Ubuntu) - uses: jlumbroso/free-disk-space@4d9e71b726748f254fe64fa44d273194bd18ec91 + uses: jlumbroso/free-disk-space@54081f138730dfa15788a46383842cd2f914a1be with: large-packages: false docker-images: false From 634645f32ce0fcc8f81ec35f1f920712b43cb053 Mon Sep 17 00:00:00 2001 From: ChristianCiach Date: Tue, 23 Apr 2024 15:39:57 +0200 Subject: [PATCH 029/206] docs: Mention configmap to enable new git file globbing by name (#17936) Signed-off-by: Christian Ciach --- .../applicationset/Generators-Git-File-Globbing.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/operator-manual/applicationset/Generators-Git-File-Globbing.md b/docs/operator-manual/applicationset/Generators-Git-File-Globbing.md index 4f8967b5937fa..04efabecebab9 100644 --- a/docs/operator-manual/applicationset/Generators-Git-File-Globbing.md +++ b/docs/operator-manual/applicationset/Generators-Git-File-Globbing.md @@ -53,7 +53,7 @@ It can be enabled in any of these ways: 1. Pass `--enable-new-git-file-globbing` to the ApplicationSet controller args. 1. Set `ARGOCD_APPLICATIONSET_CONTROLLER_ENABLE_NEW_GIT_FILE_GLOBBING=true` in the ApplicationSet controller environment variables. -1. Set `applicationsetcontroller.enable.new.git.file.globbing: true` in the Argo CD ConfigMap. +1. Set `applicationsetcontroller.enable.new.git.file.globbing: "true"` in the `argocd-cmd-params-cm` ConfigMap. Note that the default may change in the future. From 56b796dc1c1ac83c0b8576f03516437ae1141384 Mon Sep 17 00:00:00 2001 From: Jakub Ciolek <66125090+jake-ciolek@users.noreply.github.com> Date: Tue, 23 Apr 2024 21:54:17 +0200 Subject: [PATCH 030/206] docs: Add AlphaSense to USERS.md (#17942) Mention AlphaSense as a user. Signed-off-by: Jakub Ciolek --- USERS.md | 1 + 1 file changed, 1 insertion(+) diff --git a/USERS.md b/USERS.md index 9aea46357b639..ab981e827c321 100644 --- a/USERS.md +++ b/USERS.md @@ -18,6 +18,7 @@ Currently, the following organizations are **officially** using Argo CD: 1. [Albert Heijn](https://ah.nl/) 1. [Alibaba Group](https://www.alibabagroup.com/) 1. [Allianz Direct](https://www.allianzdirect.de/) +1. [AlphaSense](https://www.alpha-sense.com/) 1. [Amadeus IT Group](https://amadeus.com/) 1. [Ambassador Labs](https://www.getambassador.io/) 1. [Ancestry](https://www.ancestry.com/) From 719dc83497772a8749fc3b9e11ccb274d214a3c1 Mon Sep 17 00:00:00 2001 From: Keith Chong Date: Tue, 23 Apr 2024 16:34:01 -0400 Subject: [PATCH 031/206] fix: Add Sources tab to show all sources of a multi-source app (#17939) Signed-off-by: Keith Chong --- .../application-parameters.tsx | 14 ++++++++------ 1 file changed, 8 insertions(+), 6 deletions(-) diff --git a/ui/src/app/applications/components/application-parameters/application-parameters.tsx b/ui/src/app/applications/components/application-parameters/application-parameters.tsx index 3028c3a13725c..28698c8eda79f 100644 --- a/ui/src/app/applications/components/application-parameters/application-parameters.tsx +++ b/ui/src/app/applications/components/application-parameters/application-parameters.tsx @@ -189,10 +189,10 @@ export const ApplicationParameters = (props: { } else { const v: models.ApplicationSource[] = new Array(); v.push(app.spec.source); - return getEditablePanel(attributes, props.details, 0, v); + return getEditablePanel(attributes, props.details, 0, v, true); } - function getEditablePanel(panel: EditablePanelItem[], repoAppDetails: models.RepoAppDetails, ind: number, sources: models.ApplicationSource[]): any { + function getEditablePanel(panel: EditablePanelItem[], repoAppDetails: models.RepoAppDetails, ind: number, sources: models.ApplicationSource[], isSingleSource?: boolean): any { const src: models.ApplicationSource = sources[ind]; let descriptionCollapsed: string; let floatingTitle: string; @@ -230,6 +230,8 @@ export const ApplicationParameters = (props: { save={ props.save && (async (input: models.Application) => { + const updatedSrc = isSingleSource ? input.spec.source : input.spec.sources[ind]; + function isDefined(item: any) { return item !== null && item !== undefined; } @@ -237,11 +239,11 @@ export const ApplicationParameters = (props: { return item !== null && item !== undefined && item.match(/:/); } - if (src.helm && src.helm.parameters) { - src.helm.parameters = src.helm.parameters.filter(isDefined); + if (updatedSrc.helm && updatedSrc.helm.parameters) { + updatedSrc.helm.parameters = updatedSrc.helm.parameters.filter(isDefined); } - if (src.kustomize && src.kustomize.images) { - src.kustomize.images = src.kustomize.images.filter(isDefinedWithVersion); + if (updatedSrc.kustomize && updatedSrc.kustomize.images) { + updatedSrc.kustomize.images = updatedSrc.kustomize.images.filter(isDefinedWithVersion); } let params = input.spec?.source?.plugin?.parameters; From 1eec8eb7779e63543ec960de969f752cfa37b6f5 Mon Sep 17 00:00:00 2001 From: rumstead <37445536+rumstead@users.noreply.github.com> Date: Tue, 23 Apr 2024 16:50:11 -0400 Subject: [PATCH 032/206] fix: use cmp vs reflect.DeepEqual for comparing Applications (#17861) (#17940) * fix(compare): appset compare the child apps with cmp vs reflect Signed-off-by: rumstead <37445536+rumstead@users.noreply.github.com> * remove debug lines Signed-off-by: rumstead <37445536+rumstead@users.noreply.github.com> * remove debug lines Signed-off-by: rumstead <37445536+rumstead@users.noreply.github.com> --------- Signed-off-by: rumstead <37445536+rumstead@users.noreply.github.com> --- .../controllers/applicationset_controller.go | 15 +++-- .../applicationset_controller_test.go | 56 +++++++++++++++++++ 2 files changed, 66 insertions(+), 5 deletions(-) diff --git a/applicationset/controllers/applicationset_controller.go b/applicationset/controllers/applicationset_controller.go index e640e78a896bf..f8492a998eec0 100644 --- a/applicationset/controllers/applicationset_controller.go +++ b/applicationset/controllers/applicationset_controller.go @@ -17,9 +17,10 @@ package controllers import ( "context" "fmt" - "reflect" "time" + "github.com/google/go-cmp/cmp" + "github.com/google/go-cmp/cmp/cmpopts" log "github.com/sirupsen/logrus" corev1 "k8s.io/api/core/v1" apierr "k8s.io/apimachinery/pkg/api/errors" @@ -1613,10 +1614,14 @@ func shouldRequeueApplicationSet(appOld *argov1alpha1.Application, appNew *argov } // the applicationset controller owns the application spec, labels, annotations, and finalizers on the applications - if !reflect.DeepEqual(appOld.Spec, appNew.Spec) || - !reflect.DeepEqual(appOld.ObjectMeta.GetAnnotations(), appNew.ObjectMeta.GetAnnotations()) || - !reflect.DeepEqual(appOld.ObjectMeta.GetLabels(), appNew.ObjectMeta.GetLabels()) || - !reflect.DeepEqual(appOld.ObjectMeta.GetFinalizers(), appNew.ObjectMeta.GetFinalizers()) { + // reflect.DeepEqual considers nil slices/maps not equal to empty slices/maps + // https://pkg.go.dev/reflect#DeepEqual + // ApplicationDestination has an unexported field so we can just use the == for comparsion + if !cmp.Equal(appOld.Spec, appNew.Spec, cmpopts.EquateEmpty(), cmpopts.EquateComparable(argov1alpha1.ApplicationDestination{})) || + !cmp.Equal(appOld.ObjectMeta.GetAnnotations(), appNew.ObjectMeta.GetAnnotations(), cmpopts.EquateEmpty()) || + !cmp.Equal(appOld.ObjectMeta.GetLabels(), appNew.ObjectMeta.GetLabels(), cmpopts.EquateEmpty()) || + !cmp.Equal(appOld.ObjectMeta.GetFinalizers(), appNew.ObjectMeta.GetFinalizers(), cmpopts.EquateEmpty()) { + return true } diff --git a/applicationset/controllers/applicationset_controller_test.go b/applicationset/controllers/applicationset_controller_test.go index a5e5858bd9c44..244b2797ac684 100644 --- a/applicationset/controllers/applicationset_controller_test.go +++ b/applicationset/controllers/applicationset_controller_test.go @@ -6385,14 +6385,70 @@ func TestOwnsHandler(t *testing.T) { ObjectOld: &v1alpha1.Application{ObjectMeta: metav1.ObjectMeta{Labels: map[string]string{"foo": "bar"}}}, ObjectNew: &v1alpha1.Application{ObjectMeta: metav1.ObjectMeta{Labels: map[string]string{"bar": "foo"}}}, }}, want: true}, + {name: "DifferentApplicationLabelsNil", args: args{e: event.UpdateEvent{ + ObjectOld: &v1alpha1.Application{ObjectMeta: metav1.ObjectMeta{Labels: map[string]string{}}}, + ObjectNew: &v1alpha1.Application{ObjectMeta: metav1.ObjectMeta{Labels: nil}}, + }}, want: false}, {name: "DifferentApplicationAnnotations", args: args{e: event.UpdateEvent{ ObjectOld: &v1alpha1.Application{ObjectMeta: metav1.ObjectMeta{Annotations: map[string]string{"foo": "bar"}}}, ObjectNew: &v1alpha1.Application{ObjectMeta: metav1.ObjectMeta{Annotations: map[string]string{"bar": "foo"}}}, }}, want: true}, + {name: "DifferentApplicationAnnotationsNil", args: args{e: event.UpdateEvent{ + ObjectOld: &v1alpha1.Application{ObjectMeta: metav1.ObjectMeta{Annotations: map[string]string{}}}, + ObjectNew: &v1alpha1.Application{ObjectMeta: metav1.ObjectMeta{Annotations: nil}}, + }}, want: false}, {name: "DifferentApplicationFinalizers", args: args{e: event.UpdateEvent{ ObjectOld: &v1alpha1.Application{ObjectMeta: metav1.ObjectMeta{Finalizers: []string{"argo"}}}, ObjectNew: &v1alpha1.Application{ObjectMeta: metav1.ObjectMeta{Finalizers: []string{"none"}}}, }}, want: true}, + {name: "DifferentApplicationFinalizersNil", args: args{e: event.UpdateEvent{ + ObjectOld: &v1alpha1.Application{ObjectMeta: metav1.ObjectMeta{Finalizers: []string{}}}, + ObjectNew: &v1alpha1.Application{ObjectMeta: metav1.ObjectMeta{Finalizers: nil}}, + }}, want: false}, + {name: "ApplicationDestinationSame", args: args{e: event.UpdateEvent{ + ObjectOld: &v1alpha1.Application{ + Spec: v1alpha1.ApplicationSpec{ + Destination: v1alpha1.ApplicationDestination{ + Server: "server", + Namespace: "ns", + Name: "name", + }, + }, + }, + ObjectNew: &v1alpha1.Application{ + Spec: v1alpha1.ApplicationSpec{ + Destination: v1alpha1.ApplicationDestination{ + Server: "server", + Namespace: "ns", + Name: "name", + }, + }, + }, + }, + enableProgressiveSyncs: true, + }, want: false}, + {name: "ApplicationDestinationDiff", args: args{e: event.UpdateEvent{ + ObjectOld: &v1alpha1.Application{ + Spec: v1alpha1.ApplicationSpec{ + Destination: v1alpha1.ApplicationDestination{ + Server: "server", + Namespace: "ns", + Name: "name", + }, + }, + }, + ObjectNew: &v1alpha1.Application{ + Spec: v1alpha1.ApplicationSpec{ + Destination: v1alpha1.ApplicationDestination{ + Server: "notSameServer", + Namespace: "ns", + Name: "name", + }, + }, + }, + }, + enableProgressiveSyncs: true, + }, want: true}, {name: "NotAnAppOld", args: args{e: event.UpdateEvent{ ObjectOld: &v1alpha1.AppProject{}, ObjectNew: &v1alpha1.Application{ObjectMeta: metav1.ObjectMeta{Labels: map[string]string{"bar": "foo"}}}, From fcdaee98570afcdd7f2e54cc6b5a50c77c02d14e Mon Sep 17 00:00:00 2001 From: Bulat Saifullin Date: Wed, 24 Apr 2024 14:46:09 +0300 Subject: [PATCH 033/206] fix: jwtTokens are reset when creating new tokens for new role (#17298) * fix: jwtTokens are reset when creating new tokens for new role Signed-off-by: Bulat Saifullin * add back NormalizeJWTTokens Signed-off-by: Bulat Saifullin * add tests Signed-off-by: BulatSaif * add fix Signed-off-by: BulatSaif --------- Signed-off-by: Bulat Saifullin Signed-off-by: BulatSaif Co-authored-by: Soumya Ghosh Dastidar <44349253+gdsoumya@users.noreply.github.com> --- server/project/project.go | 2 ++ test/e2e/project_management_test.go | 10 ++++++++++ 2 files changed, 12 insertions(+) diff --git a/server/project/project.go b/server/project/project.go index 44ddee95eaaff..471ac4ade6ce2 100644 --- a/server/project/project.go +++ b/server/project/project.go @@ -137,6 +137,8 @@ func (s *Server) createToken(ctx context.Context, q *project.ProjectTokenCreateR } id = claims.ID + prj.NormalizeJWTTokens() + items := append(prj.Status.JWTTokensByRole[q.Role].Items, v1alpha1.JWTToken{IssuedAt: issuedAt, ExpiresAt: expiresAt, ID: id}) if _, found := prj.Status.JWTTokensByRole[q.Role]; found { prj.Status.JWTTokensByRole[q.Role] = v1alpha1.JWTTokens{Items: items} diff --git a/test/e2e/project_management_test.go b/test/e2e/project_management_test.go index fb8886a21dbd4..8f60a901b5f41 100644 --- a/test/e2e/project_management_test.go +++ b/test/e2e/project_management_test.go @@ -324,6 +324,7 @@ func TestUseJWTToken(t *testing.T) { projectName := "proj-" + strconv.FormatInt(time.Now().Unix(), 10) appName := "app-" + strconv.FormatInt(time.Now().Unix(), 10) roleName := "roleTest" + roleName2 := "roleTest2" testApp := &v1alpha1.Application{ ObjectMeta: metav1.ObjectMeta{ Name: appName, @@ -365,6 +366,15 @@ func TestUseJWTToken(t *testing.T) { _, err = fixture.RunCli("proj", "role", "create-token", projectName, roleName) assert.NoError(t, err) + // Create second role with kubectl, to test that it will not affect 1st role + _, err = fixture.Run("", "kubectl", "patch", "appproject", projectName, "--type", "merge", + "-n", fixture.TestNamespace(), + "-p", fmt.Sprintf(`{"spec":{"roles":[{"name":"%s"},{"name":"%s"}]}}`, roleName, roleName2)) + assert.NoError(t, err) + + _, err = fixture.RunCli("proj", "role", "create-token", projectName, roleName2) + assert.NoError(t, err) + for _, action := range []string{"get", "update", "sync", "create", "override", "*"} { _, err = fixture.RunCli("proj", "role", "add-policy", projectName, roleName, "-a", action, "-o", "*", "-p", "allow") assert.NoError(t, err) From 2dbe5c17d10a9c5b6ea9359c8c1ac981ec2c0da6 Mon Sep 17 00:00:00 2001 From: g1franc Date: Wed, 24 Apr 2024 15:09:38 +0200 Subject: [PATCH 034/206] Update sync-kubectl.md - Correct indentation for a sample (#17953) Correct indentation for a sample as "hook" element is supposed to be a child of syncStrategy Signed-off-by: g1franc --- docs/user-guide/sync-kubectl.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/user-guide/sync-kubectl.md b/docs/user-guide/sync-kubectl.md index 100ec2cdf70b1..53700afed4f67 100644 --- a/docs/user-guide/sync-kubectl.md +++ b/docs/user-guide/sync-kubectl.md @@ -38,7 +38,7 @@ operation: username: sync: syncStrategy: - hook: {} + hook: {} ``` ```bash From b19a0d0f766297f8e2aa93a8f39ddcf4f3102ce8 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 24 Apr 2024 21:54:36 -0400 Subject: [PATCH 035/206] chore(deps): bump library/node in /test/container (#17946) Bumps library/node from `162d92c` to `c384290`. --- updated-dependencies: - dependency-name: library/node dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- test/container/Dockerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/test/container/Dockerfile b/test/container/Dockerfile index 453dec4ff1326..aa3b0544ad0a2 100644 --- a/test/container/Dockerfile +++ b/test/container/Dockerfile @@ -6,7 +6,7 @@ FROM docker.io/library/redis:7.2.4@sha256:7dd707032d90c6eaafd566f62a00f5b0116ae0 RUN ln -s /usr/lib/$(uname -m)-linux-gnu /usr/lib/linux-gnu # Please make sure to also check the contained yarn version and update the references below when upgrading this image's version -FROM docker.io/library/node:21.7.3@sha256:162d92c5f1467ad877bf6d8a098d9b04d7303879017a2f3644bfb1de1fc88ff0 as node +FROM docker.io/library/node:21.7.3@sha256:c38429049e7dec44ffb0f57f39e79e31214d91ce64108a5b2c0d5b67dd3ae6a8 as node FROM docker.io/library/golang:1.22.1@sha256:0b55ab82ac2a54a6f8f85ec8b943b9e470c39e32c109b766bbc1b801f3fa8d3b as golang From 6d3abb36c20d929e761fd1b08a76db0948b0d8bf Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 25 Apr 2024 00:11:51 -0400 Subject: [PATCH 036/206] chore(deps): bump library/node in /test/container (#17959) Bumps library/node from `c384290` to `bda5312`. --- updated-dependencies: - dependency-name: library/node dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- test/container/Dockerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/test/container/Dockerfile b/test/container/Dockerfile index aa3b0544ad0a2..dcca1673cbc4a 100644 --- a/test/container/Dockerfile +++ b/test/container/Dockerfile @@ -6,7 +6,7 @@ FROM docker.io/library/redis:7.2.4@sha256:7dd707032d90c6eaafd566f62a00f5b0116ae0 RUN ln -s /usr/lib/$(uname -m)-linux-gnu /usr/lib/linux-gnu # Please make sure to also check the contained yarn version and update the references below when upgrading this image's version -FROM docker.io/library/node:21.7.3@sha256:c38429049e7dec44ffb0f57f39e79e31214d91ce64108a5b2c0d5b67dd3ae6a8 as node +FROM docker.io/library/node:21.7.3@sha256:bda531283f4bafd1cb41294493de89ae3c4cf55933da14710e46df970e77365e as node FROM docker.io/library/golang:1.22.1@sha256:0b55ab82ac2a54a6f8f85ec8b943b9e470c39e32c109b766bbc1b801f3fa8d3b as golang From 0f11dfb5961361807962aafc68b11426b8a47490 Mon Sep 17 00:00:00 2001 From: Doug Goldstein Date: Thu, 25 Apr 2024 10:12:21 -0500 Subject: [PATCH 037/206] docs: document helm fileParameters / helm-set-file (#17822) Added documentation for fileParameters in a helm source Application or the --helm-set-file cli option from #2751. Added a note about #13220 so users are aware. #17941 aims to remove this limitation so the warning will be adjusted to mention the version that lands that support. Signed-off-by: Doug Goldstein --- docs/user-guide/helm.md | 22 ++++++++++++++++++++++ 1 file changed, 22 insertions(+) diff --git a/docs/user-guide/helm.md b/docs/user-guide/helm.md index c3b6aa0c6e8fa..74c67a91e17e9 100644 --- a/docs/user-guide/helm.md +++ b/docs/user-guide/helm.md @@ -201,6 +201,28 @@ the result will be param1=value5 The list of parameters seen in the ui is not what is used for resources, rather it is the values/valuesObject merged with parameters (see [this issue](https://github.com/argoproj/argo-cd/issues/9213) incase it has been resolved) As a workaround using parameters instead of values/valuesObject will provide a better overview of what will be used for resources +## Helm --set-file support + +The `--set-file` argument to helm can be used with the following syntax on +the cli: + +```bash +argocd app set helm-guestbook --helm-set-file some.key=path/to/file.ext +``` + +or using the fileParameters for yaml: + +```yaml +source: + helm: + fileParameters: + - name: some.key + value: path/to/file.ext +``` + +!!! warning "Reference in multiple sources not supported" + Please note that using a multiple sources application will not let you load the file by reference. See [argoproj/argo-cd#13220](https://github.com/argoproj/argo-cd/issues/13220) + ## Helm Release Name By default, the Helm release name is equal to the Application name to which it belongs. Sometimes, especially on a centralised Argo CD, From badac515306f1bec31775c74409d666fef3c7e53 Mon Sep 17 00:00:00 2001 From: Cyril Houdellier <163140951+choudellier-1A@users.noreply.github.com> Date: Fri, 26 Apr 2024 06:58:06 +0200 Subject: [PATCH 038/206] feat: Add width change and full revision display for badge (#17502) Signed-off-by: Cyril Houdellier --- docs/user-guide/status-badge.md | 44 ++++++++++++++++-- server/badge/badge.go | 46 +++++++++++++++---- server/badge/badge_test.go | 80 +++++++++++++++++++++++++++++++++ 3 files changed, 159 insertions(+), 11 deletions(-) diff --git a/docs/user-guide/status-badge.md b/docs/user-guide/status-badge.md index 3363227997309..a933a751d2550 100644 --- a/docs/user-guide/status-badge.md +++ b/docs/user-guide/status-badge.md @@ -14,7 +14,45 @@ The URLs for status image are available on application details page: for the status image URL in markdown, html, etc are available . 4. Copy the text and paste it into your README or website. -The application name may optionally be displayed in the status badge by adding the `?showAppName=true` query parameter. +## Additional query parameters options +### showAppName +Display the application name in the status badge. -For example, `${argoCdBaseUrl}/api/badge?name=${appName}&showAppName=true`. -To remove the application name from the badge, remove the query parameter from the URL or set it to `false`. \ No newline at end of file +Available values: `true/false` + +Default value: `false` + +Example: `&showAppName=true` + +### revision +Display revision targeted by the application. + +It will also extend the badge width to 192px. + +Available values: `true/false` + +Default value: `false` + +Example: `&revision=true` +### keepFullRevision +By default, displayed revision is truncated to 7 characters. + +This parameter allows to display it fully if it exceeds that length. + +It will also extend the badge width to 400px. + +Available values: `true/false` + +Default value: `false` + +Example: `&keepFullRevision=true` +### width +Change width of the badge. + +Completely replace current calculated width. + +Available values: `integer` + +Default value: `nil` + +Example: `&width=500` \ No newline at end of file diff --git a/server/badge/badge.go b/server/badge/badge.go index 8a706f67f2b05..5ed445e6643c3 100644 --- a/server/badge/badge.go +++ b/server/badge/badge.go @@ -5,6 +5,7 @@ import ( "fmt" "net/http" "regexp" + "strconv" "strings" healthutil "github.com/argoproj/gitops-engine/pkg/health" @@ -45,18 +46,21 @@ var ( titleTextPattern = regexp.MustCompile(`id="titleText" [^>]*>([^<]*)`) titleRectWidthPattern = regexp.MustCompile(`(id="titleRect" .* width=)("0")`) rightRectWidthPattern = regexp.MustCompile(`(id="rightRect" .* width=)("\d*")`) + revisionRectWidthPattern = regexp.MustCompile(`(id="revisionRect" .* width=)("\d*")`) leftRectYCoodPattern = regexp.MustCompile(`(id="leftRect" .* y=)("\d*")`) rightRectYCoodPattern = regexp.MustCompile(`(id="rightRect" .* y=)("\d*")`) revisionRectYCoodPattern = regexp.MustCompile(`(id="revisionRect" .* y=)("\d*")`) leftTextYCoodPattern = regexp.MustCompile(`(id="leftText" .* y=)("\d*")`) rightTextYCoodPattern = regexp.MustCompile(`(id="rightText" .* y=)("\d*")`) revisionTextYCoodPattern = regexp.MustCompile(`(id="revisionText" .* y=)("\d*")`) + revisionTextXCoodPattern = regexp.MustCompile(`(id="revisionText" x=)("\d*")`) svgHeightPattern = regexp.MustCompile(`^( 7 { - shortRevision = shortRevision[:7] + + adjustWidth = true + displayedRevision = revision + if keepFullRevisionParam, ok := r.URL.Query()["keepFullRevision"]; !(ok && strings.EqualFold(keepFullRevisionParam[0], "true")) && len(revision) > 7 { + displayedRevision = revision[:7] + svgWidth = svgWidthWithRevision + } else { + svgWidth = svgWidthWithFullRevision + } + + badge = replaceFirstGroupSubMatch(revisionTextPattern, badge, fmt.Sprintf("(%s)", displayedRevision)) + } + + if widthParam, ok := r.URL.Query()["width"]; ok && enabled { + width, err := strconv.Atoi(widthParam[0]) + if err == nil { + svgWidth = width + adjustWidth = true + } + } + + // Increase width of SVG + if adjustWidth { + badge = svgWidthPattern.ReplaceAllString(badge, fmt.Sprintf(` Date: Fri, 26 Apr 2024 17:20:39 +0800 Subject: [PATCH 039/206] chore:change file name for readthedocs compatibility (#17978) Signed-off-by: xiaowu.zhu --- .readthedocs.yml => .readthedocs.yaml | 0 1 file changed, 0 insertions(+), 0 deletions(-) rename .readthedocs.yml => .readthedocs.yaml (100%) diff --git a/.readthedocs.yml b/.readthedocs.yaml similarity index 100% rename from .readthedocs.yml rename to .readthedocs.yaml From e23060540f673ae346b32ad363a0b7627a6b6946 Mon Sep 17 00:00:00 2001 From: pasha-codefresh Date: Fri, 26 Apr 2024 12:24:02 +0300 Subject: [PATCH 040/206] Merge pull request from GHSA-9m6p-x4h2-6frq * feat: limit jq.Run with timeout Signed-off-by: pashakostohrys * feat: ignore normalizer jq execution timeout as env variable Signed-off-by: pashakostohrys * feat: customize error message and add doc section Signed-off-by: pashakostohrys * feat: improve log and change a way how to get variable Signed-off-by: pashakostohrys * chore: fix import`s order Signed-off-by: pashakostohrys * chore: rename variable inside sts Signed-off-by: pashakostohrys * chore: fix import order Signed-off-by: pashakostohrys --------- Signed-off-by: pashakostohrys --- .../controllers/applicationset_controller.go | 3 +- applicationset/utils/createOrUpdate.go | 9 ++-- applicationset/utils/createOrUpdate_test.go | 3 +- .../commands/argocd_application_controller.go | 4 ++ cmd/argocd/commands/admin/app.go | 21 ++++++---- cmd/argocd/commands/admin/app_test.go | 2 + cmd/argocd/commands/admin/settings.go | 8 +++- cmd/argocd/commands/app.go | 35 +++++++++------- controller/appcontroller.go | 8 +++- controller/appcontroller_test.go | 3 +- controller/cache/cache.go | 20 +++++---- controller/cache/info.go | 4 +- controller/cache/info_test.go | 3 +- controller/state.go | 6 ++- controller/sync_test.go | 5 ++- docs/user-guide/diffing.md | 13 ++++++ ...cd-application-controller-statefulset.yaml | 6 +++ util/argo/diff/diff.go | 12 +++++- util/argo/diff/diff_test.go | 11 ++--- util/argo/diff/normalize.go | 6 +-- util/argo/diff/normalize_test.go | 3 +- util/argo/normalizers/diff_normalizer.go | 34 +++++++++++++-- util/argo/normalizers/diff_normalizer_test.go | 42 ++++++++++++++----- 23 files changed, 186 insertions(+), 75 deletions(-) diff --git a/applicationset/controllers/applicationset_controller.go b/applicationset/controllers/applicationset_controller.go index f8492a998eec0..614b00ebc38fd 100644 --- a/applicationset/controllers/applicationset_controller.go +++ b/applicationset/controllers/applicationset_controller.go @@ -51,6 +51,7 @@ import ( argov1alpha1 "github.com/argoproj/argo-cd/v2/pkg/apis/application/v1alpha1" appclientset "github.com/argoproj/argo-cd/v2/pkg/client/clientset/versioned" argoutil "github.com/argoproj/argo-cd/v2/util/argo" + "github.com/argoproj/argo-cd/v2/util/argo/normalizers" "github.com/argoproj/argo-cd/v2/pkg/apis/application" ) @@ -674,7 +675,7 @@ func (r *ApplicationSetReconciler) createOrUpdateInCluster(ctx context.Context, }, } - action, err := utils.CreateOrUpdate(ctx, appLog, r.Client, applicationSet.Spec.IgnoreApplicationDifferences, found, func() error { + action, err := utils.CreateOrUpdate(ctx, appLog, r.Client, applicationSet.Spec.IgnoreApplicationDifferences, normalizers.IgnoreNormalizerOpts{}, found, func() error { // Copy only the Application/ObjectMeta fields that are significant, from the generatedApp found.Spec = generatedApp.Spec diff --git a/applicationset/utils/createOrUpdate.go b/applicationset/utils/createOrUpdate.go index 1f2a8a9c4a54c..301d477bab2db 100644 --- a/applicationset/utils/createOrUpdate.go +++ b/applicationset/utils/createOrUpdate.go @@ -20,6 +20,7 @@ import ( argov1alpha1 "github.com/argoproj/argo-cd/v2/pkg/apis/application/v1alpha1" "github.com/argoproj/argo-cd/v2/util/argo" argodiff "github.com/argoproj/argo-cd/v2/util/argo/diff" + "github.com/argoproj/argo-cd/v2/util/argo/normalizers" ) // CreateOrUpdate overrides "sigs.k8s.io/controller-runtime" function @@ -35,7 +36,7 @@ import ( // The MutateFn is called regardless of creating or updating an object. // // It returns the executed operation and an error. -func CreateOrUpdate(ctx context.Context, logCtx *log.Entry, c client.Client, ignoreAppDifferences argov1alpha1.ApplicationSetIgnoreDifferences, obj *argov1alpha1.Application, f controllerutil.MutateFn) (controllerutil.OperationResult, error) { +func CreateOrUpdate(ctx context.Context, logCtx *log.Entry, c client.Client, ignoreAppDifferences argov1alpha1.ApplicationSetIgnoreDifferences, ignoreNormalizerOpts normalizers.IgnoreNormalizerOpts, obj *argov1alpha1.Application, f controllerutil.MutateFn) (controllerutil.OperationResult, error) { key := client.ObjectKeyFromObject(obj) if err := c.Get(ctx, key, obj); err != nil { @@ -60,7 +61,7 @@ func CreateOrUpdate(ctx context.Context, logCtx *log.Entry, c client.Client, ign // Apply ignoreApplicationDifferences rules to remove ignored fields from both the live and the desired state. This // prevents those differences from appearing in the diff and therefore in the patch. - err := applyIgnoreDifferences(ignoreAppDifferences, normalizedLive, obj) + err := applyIgnoreDifferences(ignoreAppDifferences, normalizedLive, obj, ignoreNormalizerOpts) if err != nil { return controllerutil.OperationResultNone, fmt.Errorf("failed to apply ignore differences: %w", err) } @@ -134,14 +135,14 @@ func mutate(f controllerutil.MutateFn, key client.ObjectKey, obj client.Object) } // applyIgnoreDifferences applies the ignore differences rules to the found application. It modifies the applications in place. -func applyIgnoreDifferences(applicationSetIgnoreDifferences argov1alpha1.ApplicationSetIgnoreDifferences, found *argov1alpha1.Application, generatedApp *argov1alpha1.Application) error { +func applyIgnoreDifferences(applicationSetIgnoreDifferences argov1alpha1.ApplicationSetIgnoreDifferences, found *argov1alpha1.Application, generatedApp *argov1alpha1.Application, ignoreNormalizerOpts normalizers.IgnoreNormalizerOpts) error { if len(applicationSetIgnoreDifferences) == 0 { return nil } generatedAppCopy := generatedApp.DeepCopy() diffConfig, err := argodiff.NewDiffConfigBuilder(). - WithDiffSettings(applicationSetIgnoreDifferences.ToApplicationIgnoreDifferences(), nil, false). + WithDiffSettings(applicationSetIgnoreDifferences.ToApplicationIgnoreDifferences(), nil, false, ignoreNormalizerOpts). WithNoCache(). Build() if err != nil { diff --git a/applicationset/utils/createOrUpdate_test.go b/applicationset/utils/createOrUpdate_test.go index a294e89281974..2dc5945d2d2cc 100644 --- a/applicationset/utils/createOrUpdate_test.go +++ b/applicationset/utils/createOrUpdate_test.go @@ -9,6 +9,7 @@ import ( metav1 "k8s.io/apimachinery/pkg/apis/meta/v1" "github.com/argoproj/argo-cd/v2/pkg/apis/application/v1alpha1" + "github.com/argoproj/argo-cd/v2/util/argo/normalizers" ) func Test_applyIgnoreDifferences(t *testing.T) { @@ -222,7 +223,7 @@ spec: generatedApp := v1alpha1.Application{TypeMeta: appMeta} err = yaml.Unmarshal([]byte(tc.generatedApp), &generatedApp) require.NoError(t, err, tc.generatedApp) - err = applyIgnoreDifferences(tc.ignoreDifferences, &foundApp, &generatedApp) + err = applyIgnoreDifferences(tc.ignoreDifferences, &foundApp, &generatedApp, normalizers.IgnoreNormalizerOpts{}) require.NoError(t, err) yamlFound, err := yaml.Marshal(tc.foundApp) require.NoError(t, err) diff --git a/cmd/argocd-application-controller/commands/argocd_application_controller.go b/cmd/argocd-application-controller/commands/argocd_application_controller.go index 3c7fe8bbac107..33d0e12538eed 100644 --- a/cmd/argocd-application-controller/commands/argocd_application_controller.go +++ b/cmd/argocd-application-controller/commands/argocd_application_controller.go @@ -21,6 +21,7 @@ import ( appclientset "github.com/argoproj/argo-cd/v2/pkg/client/clientset/versioned" "github.com/argoproj/argo-cd/v2/pkg/ratelimiter" "github.com/argoproj/argo-cd/v2/reposerver/apiclient" + "github.com/argoproj/argo-cd/v2/util/argo/normalizers" cacheutil "github.com/argoproj/argo-cd/v2/util/cache" appstatecache "github.com/argoproj/argo-cd/v2/util/cache/appstate" "github.com/argoproj/argo-cd/v2/util/cli" @@ -72,6 +73,7 @@ func NewCommand() *cobra.Command { shardingAlgorithm string enableDynamicClusterDistribution bool serverSideDiff bool + ignoreNormalizerOpts normalizers.IgnoreNormalizerOpts ) var command = cobra.Command{ Use: cliName, @@ -169,6 +171,7 @@ func NewCommand() *cobra.Command { &workqueueRateLimit, serverSideDiff, enableDynamicClusterDistribution, + ignoreNormalizerOpts, ) errors.CheckError(err) cacheutil.CollectMetrics(redisClient, appController.GetMetricsServer()) @@ -229,6 +232,7 @@ func NewCommand() *cobra.Command { command.Flags().Float64Var(&workqueueRateLimit.BackoffFactor, "wq-backoff-factor", env.ParseFloat64FromEnv("WORKQUEUE_BACKOFF_FACTOR", 1.5, 0, math.MaxFloat64), "Set Workqueue Per Item Rate Limiter Backoff Factor, default is 1.5") command.Flags().BoolVar(&enableDynamicClusterDistribution, "dynamic-cluster-distribution-enabled", env.ParseBoolFromEnv(common.EnvEnableDynamicClusterDistribution, false), "Enables dynamic cluster distribution.") command.Flags().BoolVar(&serverSideDiff, "server-side-diff-enabled", env.ParseBoolFromEnv(common.EnvServerSideDiff, false), "Feature flag to enable ServerSide diff. Default (\"false\")") + command.Flags().DurationVar(&ignoreNormalizerOpts.JQExecutionTimeout, "", env.ParseDurationFromEnv("ARGOCD_IGNORE_NORMALIZER_JQ_TIMEOUT", 0*time.Second, 0, math.MaxInt64), "Set ignore normalizer JQ execution timeout") cacheSource = appstatecache.AddCacheFlagsToCmd(&command, cacheutil.Options{ OnClientCreated: func(client *redis.Client) { redisClient = client diff --git a/cmd/argocd/commands/admin/app.go b/cmd/argocd/commands/admin/app.go index ebdec7f261ffc..7374a6315978e 100644 --- a/cmd/argocd/commands/admin/app.go +++ b/cmd/argocd/commands/admin/app.go @@ -31,6 +31,7 @@ import ( appinformers "github.com/argoproj/argo-cd/v2/pkg/client/informers/externalversions" reposerverclient "github.com/argoproj/argo-cd/v2/reposerver/apiclient" "github.com/argoproj/argo-cd/v2/util/argo" + "github.com/argoproj/argo-cd/v2/util/argo/normalizers" cacheutil "github.com/argoproj/argo-cd/v2/util/cache" appstatecache "github.com/argoproj/argo-cd/v2/util/cache/appstate" "github.com/argoproj/argo-cd/v2/util/cli" @@ -239,12 +240,13 @@ func diffReconcileResults(res1 reconcileResults, res2 reconcileResults) error { func NewReconcileCommand(clientOpts *argocdclient.ClientOptions) *cobra.Command { var ( - clientConfig clientcmd.ClientConfig - selector string - repoServerAddress string - outputFormat string - refresh bool - serverSideDiff bool + clientConfig clientcmd.ClientConfig + selector string + repoServerAddress string + outputFormat string + refresh bool + serverSideDiff bool + ignoreNormalizerOpts normalizers.IgnoreNormalizerOpts ) var command = &cobra.Command{ @@ -290,7 +292,7 @@ func NewReconcileCommand(clientOpts *argocdclient.ClientOptions) *cobra.Command repoServerAddress = fmt.Sprintf("localhost:%d", repoServerPort) } repoServerClient := reposerverclient.NewRepoServerClientset(repoServerAddress, 60, reposerverclient.TLSConfiguration{DisableTLS: false, StrictValidation: false}) - result, err = reconcileApplications(ctx, kubeClientset, appClientset, namespace, repoServerClient, selector, newLiveStateCache, serverSideDiff) + result, err = reconcileApplications(ctx, kubeClientset, appClientset, namespace, repoServerClient, selector, newLiveStateCache, serverSideDiff, ignoreNormalizerOpts) errors.CheckError(err) } else { appClientset := appclientset.NewForConfigOrDie(cfg) @@ -306,7 +308,7 @@ func NewReconcileCommand(clientOpts *argocdclient.ClientOptions) *cobra.Command command.Flags().StringVar(&outputFormat, "o", "yaml", "Output format (yaml|json)") command.Flags().BoolVar(&refresh, "refresh", false, "If set to true then recalculates apps reconciliation") command.Flags().BoolVar(&serverSideDiff, "server-side-diff", false, "If set to \"true\" will use server-side diff while comparing resources. Default (\"false\")") - + command.Flags().DurationVar(&ignoreNormalizerOpts.JQExecutionTimeout, "ignore-normalizer-jq-execution-timeout", normalizers.DefaultJQExecutionTimeout, "Set ignore normalizer JQ execution timeout") return command } @@ -356,6 +358,7 @@ func reconcileApplications( selector string, createLiveStateCache func(argoDB db.ArgoDB, appInformer kubecache.SharedIndexInformer, settingsMgr *settings.SettingsManager, server *metrics.MetricsServer) cache.LiveStateCache, serverSideDiff bool, + ignoreNormalizerOpts normalizers.IgnoreNormalizerOpts, ) ([]appReconcileResult, error) { settingsMgr := settings.NewSettingsManager(ctx, kubeClientset, namespace) argoDB := db.NewDB(namespace, settingsMgr, kubeClientset) @@ -396,7 +399,7 @@ func reconcileApplications( ) appStateManager := controller.NewAppStateManager( - argoDB, appClientset, repoServerClient, namespace, kubeutil.NewKubectl(), settingsMgr, stateCache, projInformer, server, cache, time.Second, argo.NewResourceTracking(), false, 0, serverSideDiff) + argoDB, appClientset, repoServerClient, namespace, kubeutil.NewKubectl(), settingsMgr, stateCache, projInformer, server, cache, time.Second, argo.NewResourceTracking(), false, 0, serverSideDiff, ignoreNormalizerOpts) appsList, err := appClientset.ArgoprojV1alpha1().Applications(namespace).List(ctx, v1.ListOptions{LabelSelector: selector}) if err != nil { diff --git a/cmd/argocd/commands/admin/app_test.go b/cmd/argocd/commands/admin/app_test.go index a0284fe8ffa09..c7bc515094439 100644 --- a/cmd/argocd/commands/admin/app_test.go +++ b/cmd/argocd/commands/admin/app_test.go @@ -23,6 +23,7 @@ import ( argocdclient "github.com/argoproj/argo-cd/v2/reposerver/apiclient" "github.com/argoproj/argo-cd/v2/reposerver/apiclient/mocks" "github.com/argoproj/argo-cd/v2/test" + "github.com/argoproj/argo-cd/v2/util/argo/normalizers" "github.com/argoproj/argo-cd/v2/util/db" "github.com/argoproj/argo-cd/v2/util/settings" ) @@ -114,6 +115,7 @@ func TestGetReconcileResults_Refresh(t *testing.T) { return &liveStateCache }, false, + normalizers.IgnoreNormalizerOpts{}, ) if !assert.NoError(t, err) { diff --git a/cmd/argocd/commands/admin/settings.go b/cmd/argocd/commands/admin/settings.go index 0274b4a422f09..d739031a7944a 100644 --- a/cmd/argocd/commands/admin/settings.go +++ b/cmd/argocd/commands/admin/settings.go @@ -428,7 +428,7 @@ argocd admin settings resource-overrides ignore-differences ./deploy.yaml --argo // configurations. This requires access to live resources which is not the // purpose of this command. This will just apply jsonPointers and // jqPathExpressions configurations. - normalizer, err := normalizers.NewIgnoreNormalizer(nil, overrides) + normalizer, err := normalizers.NewIgnoreNormalizer(nil, overrides, normalizers.IgnoreNormalizerOpts{}) errors.CheckError(err) normalizedRes := res.DeepCopy() @@ -453,6 +453,9 @@ argocd admin settings resource-overrides ignore-differences ./deploy.yaml --argo } func NewResourceIgnoreResourceUpdatesCommand(cmdCtx commandContext) *cobra.Command { + var ( + ignoreNormalizerOpts normalizers.IgnoreNormalizerOpts + ) var command = &cobra.Command{ Use: "ignore-resource-updates RESOURCE_YAML_PATH", Short: "Renders fields excluded from resource updates", @@ -474,7 +477,7 @@ argocd admin settings resource-overrides ignore-resource-updates ./deploy.yaml - return } - normalizer, err := normalizers.NewIgnoreNormalizer(nil, overrides) + normalizer, err := normalizers.NewIgnoreNormalizer(nil, overrides, ignoreNormalizerOpts) errors.CheckError(err) normalizedRes := res.DeepCopy() @@ -495,6 +498,7 @@ argocd admin settings resource-overrides ignore-resource-updates ./deploy.yaml - }) }, } + command.Flags().DurationVar(&ignoreNormalizerOpts.JQExecutionTimeout, "ignore-normalizer-jq-execution-timeout", normalizers.DefaultJQExecutionTimeout, "Set ignore normalizer JQ execution timeout") return command } diff --git a/cmd/argocd/commands/app.go b/cmd/argocd/commands/app.go index 0c0659b38302f..5709821d41065 100644 --- a/cmd/argocd/commands/app.go +++ b/cmd/argocd/commands/app.go @@ -45,6 +45,7 @@ import ( "github.com/argoproj/argo-cd/v2/reposerver/repository" "github.com/argoproj/argo-cd/v2/util/argo" argodiff "github.com/argoproj/argo-cd/v2/util/argo/diff" + "github.com/argoproj/argo-cd/v2/util/argo/normalizers" "github.com/argoproj/argo-cd/v2/util/cli" "github.com/argoproj/argo-cd/v2/util/errors" "github.com/argoproj/argo-cd/v2/util/git" @@ -1117,17 +1118,18 @@ type objKeyLiveTarget struct { // NewApplicationDiffCommand returns a new instance of an `argocd app diff` command func NewApplicationDiffCommand(clientOpts *argocdclient.ClientOptions) *cobra.Command { var ( - refresh bool - hardRefresh bool - exitCode bool - local string - revision string - localRepoRoot string - serverSideGenerate bool - localIncludes []string - appNamespace string - revisions []string - sourcePositions []int64 + refresh bool + hardRefresh bool + exitCode bool + local string + revision string + localRepoRoot string + serverSideGenerate bool + localIncludes []string + appNamespace string + revisions []string + sourcePositions []int64 + ignoreNormalizerOpts normalizers.IgnoreNormalizerOpts ) shortDesc := "Perform a diff against the target and live state." var command = &cobra.Command{ @@ -1219,7 +1221,7 @@ func NewApplicationDiffCommand(clientOpts *argocdclient.ClientOptions) *cobra.Co } } proj := getProject(c, clientOpts, ctx, app.Spec.Project) - foundDiffs := findandPrintDiff(ctx, app, proj.Project, resources, argoSettings, diffOption) + foundDiffs := findandPrintDiff(ctx, app, proj.Project, resources, argoSettings, diffOption, ignoreNormalizerOpts) if foundDiffs && exitCode { os.Exit(1) } @@ -1236,6 +1238,7 @@ func NewApplicationDiffCommand(clientOpts *argocdclient.ClientOptions) *cobra.Co command.Flags().StringVarP(&appNamespace, "app-namespace", "N", "", "Only render the difference in namespace") command.Flags().StringArrayVar(&revisions, "revisions", []string{}, "Show manifests at specific revisions for source position in source-positions") command.Flags().Int64SliceVar(&sourcePositions, "source-positions", []int64{}, "List of source positions. Default is empty array. Counting start at 1.") + command.Flags().DurationVar(&ignoreNormalizerOpts.JQExecutionTimeout, "ignore-normalizer-jq-execution-timeout", normalizers.DefaultJQExecutionTimeout, "Set ignore normalizer JQ execution timeout") return command } @@ -1252,7 +1255,7 @@ type DifferenceOption struct { } // findandPrintDiff ... Prints difference between application current state and state stored in git or locally, returns boolean as true if difference is found else returns false -func findandPrintDiff(ctx context.Context, app *argoappv1.Application, proj *argoappv1.AppProject, resources *application.ManagedResourcesResponse, argoSettings *settings.Settings, diffOptions *DifferenceOption) bool { +func findandPrintDiff(ctx context.Context, app *argoappv1.Application, proj *argoappv1.AppProject, resources *application.ManagedResourcesResponse, argoSettings *settings.Settings, diffOptions *DifferenceOption, ignoreNormalizerOpts normalizers.IgnoreNormalizerOpts) bool { var foundDiffs bool liveObjs, err := cmdutil.LiveObjects(resources.Items) errors.CheckError(err) @@ -1307,7 +1310,7 @@ func findandPrintDiff(ctx context.Context, app *argoappv1.Application, proj *arg // compareOptions in the protobuf ignoreAggregatedRoles := false diffConfig, err := argodiff.NewDiffConfigBuilder(). - WithDiffSettings(app.Spec.IgnoreDifferences, overrides, ignoreAggregatedRoles). + WithDiffSettings(app.Spec.IgnoreDifferences, overrides, ignoreAggregatedRoles, ignoreNormalizerOpts). WithTracking(argoSettings.AppLabelKey, argoSettings.TrackingMethod). WithNoCache(). WithLogger(logutils.NewLogrusLogger(logutils.NewWithCurrentConfig())). @@ -1830,6 +1833,7 @@ func NewApplicationSyncCommand(clientOpts *argocdclient.ClientOptions) *cobra.Co projects []string output string appNamespace string + ignoreNormalizerOpts normalizers.IgnoreNormalizerOpts ) var command = &cobra.Command{ Use: "sync [APPNAME... | -l selector | --project project-name]", @@ -2061,7 +2065,7 @@ func NewApplicationSyncCommand(clientOpts *argocdclient.ClientOptions) *cobra.Co fmt.Printf("====== Previewing differences between live and desired state of application %s ======\n", appQualifiedName) proj := getProject(c, clientOpts, ctx, app.Spec.Project) - foundDiffs = findandPrintDiff(ctx, app, proj.Project, resources, argoSettings, diffOption) + foundDiffs = findandPrintDiff(ctx, app, proj.Project, resources, argoSettings, diffOption, ignoreNormalizerOpts) if foundDiffs { if !diffChangesConfirm { yesno := cli.AskToProceed(fmt.Sprintf("Please review changes to application %s shown above. Do you want to continue the sync process? (y/n): ", appQualifiedName)) @@ -2120,6 +2124,7 @@ func NewApplicationSyncCommand(clientOpts *argocdclient.ClientOptions) *cobra.Co command.Flags().StringArrayVar(&projects, "project", []string{}, "Sync apps that belong to the specified projects. This option may be specified repeatedly.") command.Flags().StringVarP(&output, "output", "o", "wide", "Output format. One of: json|yaml|wide|tree|tree=detailed") command.Flags().StringVarP(&appNamespace, "app-namespace", "N", "", "Only sync an application in namespace") + command.Flags().DurationVar(&ignoreNormalizerOpts.JQExecutionTimeout, "ignore-normalizer-jq-execution-timeout", normalizers.DefaultJQExecutionTimeout, "Set ignore normalizer JQ execution timeout") return command } diff --git a/controller/appcontroller.go b/controller/appcontroller.go index 9d89b6e6b37d6..13a05c003e660 100644 --- a/controller/appcontroller.go +++ b/controller/appcontroller.go @@ -54,6 +54,7 @@ import ( "github.com/argoproj/argo-cd/v2/reposerver/apiclient" "github.com/argoproj/argo-cd/v2/util/argo" argodiff "github.com/argoproj/argo-cd/v2/util/argo/diff" + "github.com/argoproj/argo-cd/v2/util/argo/normalizers" "github.com/argoproj/argo-cd/v2/util/env" kubeerrors "k8s.io/apimachinery/pkg/api/errors" @@ -129,6 +130,7 @@ type ApplicationController struct { clusterSharding sharding.ClusterShardingCache projByNameCache sync.Map applicationNamespaces []string + ignoreNormalizerOpts normalizers.IgnoreNormalizerOpts // dynamicClusterDistributionEnabled if disabled deploymentInformer is never initialized dynamicClusterDistributionEnabled bool @@ -159,6 +161,7 @@ func NewApplicationController( rateLimiterConfig *ratelimiter.AppControllerRateLimiterConfig, serverSideDiff bool, dynamicClusterDistributionEnabled bool, + ignoreNormalizerOpts normalizers.IgnoreNormalizerOpts, ) (*ApplicationController, error) { log.Infof("appResyncPeriod=%v, appHardResyncPeriod=%v, appResyncJitter=%v", appResyncPeriod, appHardResyncPeriod, appResyncJitter) db := db.NewDB(namespace, settingsMgr, kubeClientset) @@ -190,6 +193,7 @@ func NewApplicationController( projByNameCache: sync.Map{}, applicationNamespaces: applicationNamespaces, dynamicClusterDistributionEnabled: dynamicClusterDistributionEnabled, + ignoreNormalizerOpts: ignoreNormalizerOpts, } if kubectlParallelismLimit > 0 { ctrl.kubectlSemaphore = semaphore.NewWeighted(kubectlParallelismLimit) @@ -277,7 +281,7 @@ func NewApplicationController( } } stateCache := statecache.NewLiveStateCache(db, appInformer, ctrl.settingsMgr, kubectl, ctrl.metricsServer, ctrl.handleObjectUpdated, clusterSharding, argo.NewResourceTracking()) - appStateManager := NewAppStateManager(db, applicationClientset, repoClientset, namespace, kubectl, ctrl.settingsMgr, stateCache, projInformer, ctrl.metricsServer, argoCache, ctrl.statusRefreshTimeout, argo.NewResourceTracking(), persistResourceHealth, repoErrorGracePeriod, serverSideDiff) + appStateManager := NewAppStateManager(db, applicationClientset, repoClientset, namespace, kubectl, ctrl.settingsMgr, stateCache, projInformer, ctrl.metricsServer, argoCache, ctrl.statusRefreshTimeout, argo.NewResourceTracking(), persistResourceHealth, repoErrorGracePeriod, serverSideDiff, ignoreNormalizerOpts) ctrl.appInformer = appInformer ctrl.appLister = appLister ctrl.projInformer = projInformer @@ -728,7 +732,7 @@ func (ctrl *ApplicationController) hideSecretData(app *appv1.Application, compar return nil, fmt.Errorf("error getting cluster cache: %s", err) } diffConfig, err := argodiff.NewDiffConfigBuilder(). - WithDiffSettings(app.Spec.IgnoreDifferences, resourceOverrides, compareOptions.IgnoreAggregatedRoles). + WithDiffSettings(app.Spec.IgnoreDifferences, resourceOverrides, compareOptions.IgnoreAggregatedRoles, ctrl.ignoreNormalizerOpts). WithTracking(appLabelKey, trackingMethod). WithNoCache(). WithLogger(logutils.NewLogrusLogger(logutils.NewWithCurrentConfig())). diff --git a/controller/appcontroller_test.go b/controller/appcontroller_test.go index 37518dad10f1e..87be3743181b6 100644 --- a/controller/appcontroller_test.go +++ b/controller/appcontroller_test.go @@ -42,6 +42,7 @@ import ( "github.com/argoproj/argo-cd/v2/reposerver/apiclient" mockrepoclient "github.com/argoproj/argo-cd/v2/reposerver/apiclient/mocks" "github.com/argoproj/argo-cd/v2/test" + "github.com/argoproj/argo-cd/v2/util/argo/normalizers" cacheutil "github.com/argoproj/argo-cd/v2/util/cache" appstatecache "github.com/argoproj/argo-cd/v2/util/cache/appstate" "github.com/argoproj/argo-cd/v2/util/settings" @@ -158,9 +159,9 @@ func newFakeController(data *fakeData, repoErr error) *ApplicationController { nil, data.applicationNamespaces, nil, - false, false, + normalizers.IgnoreNormalizerOpts{}, ) db := &dbmocks.ArgoDB{} db.On("GetApplicationControllerReplicas").Return(1) diff --git a/controller/cache/cache.go b/controller/cache/cache.go index 826079d62cda3..20879ae4f920a 100644 --- a/controller/cache/cache.go +++ b/controller/cache/cache.go @@ -33,6 +33,7 @@ import ( "github.com/argoproj/argo-cd/v2/pkg/apis/application" appv1 "github.com/argoproj/argo-cd/v2/pkg/apis/application/v1alpha1" "github.com/argoproj/argo-cd/v2/util/argo" + "github.com/argoproj/argo-cd/v2/util/argo/normalizers" "github.com/argoproj/argo-cd/v2/util/db" "github.com/argoproj/argo-cd/v2/util/env" logutils "github.com/argoproj/argo-cd/v2/util/log" @@ -197,14 +198,15 @@ type cacheSettings struct { } type liveStateCache struct { - db db.ArgoDB - appInformer cache.SharedIndexInformer - onObjectUpdated ObjectUpdatedHandler - kubectl kube.Kubectl - settingsMgr *settings.SettingsManager - metricsServer *metrics.MetricsServer - clusterSharding sharding.ClusterShardingCache - resourceTracking argo.ResourceTracking + db db.ArgoDB + appInformer cache.SharedIndexInformer + onObjectUpdated ObjectUpdatedHandler + kubectl kube.Kubectl + settingsMgr *settings.SettingsManager + metricsServer *metrics.MetricsServer + clusterSharding sharding.ClusterShardingCache + resourceTracking argo.ResourceTracking + ignoreNormalizerOpts normalizers.IgnoreNormalizerOpts clusters map[string]clustercache.ClusterCache cacheSettings cacheSettings @@ -496,7 +498,7 @@ func (c *liveStateCache) getCluster(server string) (clustercache.ClusterCache, e gvk := un.GroupVersionKind() if cacheSettings.ignoreResourceUpdatesEnabled && shouldHashManifest(appName, gvk) { - hash, err := generateManifestHash(un, nil, cacheSettings.resourceOverrides) + hash, err := generateManifestHash(un, nil, cacheSettings.resourceOverrides, c.ignoreNormalizerOpts) if err != nil { log.Errorf("Failed to generate manifest hash: %v", err) } else { diff --git a/controller/cache/info.go b/controller/cache/info.go index 53512de6b713a..0734e2d118678 100644 --- a/controller/cache/info.go +++ b/controller/cache/info.go @@ -408,8 +408,8 @@ func populateHostNodeInfo(un *unstructured.Unstructured, res *ResourceInfo) { } } -func generateManifestHash(un *unstructured.Unstructured, ignores []v1alpha1.ResourceIgnoreDifferences, overrides map[string]v1alpha1.ResourceOverride) (string, error) { - normalizer, err := normalizers.NewIgnoreNormalizer(ignores, overrides) +func generateManifestHash(un *unstructured.Unstructured, ignores []v1alpha1.ResourceIgnoreDifferences, overrides map[string]v1alpha1.ResourceOverride, opts normalizers.IgnoreNormalizerOpts) (string, error) { + normalizer, err := normalizers.NewIgnoreNormalizer(ignores, overrides, opts) if err != nil { return "", fmt.Errorf("error creating normalizer: %w", err) } diff --git a/controller/cache/info_test.go b/controller/cache/info_test.go index 7b48040009284..d0d67244ca4f9 100644 --- a/controller/cache/info_test.go +++ b/controller/cache/info_test.go @@ -16,6 +16,7 @@ import ( "sigs.k8s.io/yaml" "github.com/argoproj/argo-cd/v2/pkg/apis/application/v1alpha1" + "github.com/argoproj/argo-cd/v2/util/argo/normalizers" ) func strToUnstructured(jsonStr string) *unstructured.Unstructured { @@ -749,7 +750,7 @@ func TestManifestHash(t *testing.T) { expected := hash(data) - hash, err := generateManifestHash(manifest, ignores, nil) + hash, err := generateManifestHash(manifest, ignores, nil, normalizers.IgnoreNormalizerOpts{}) assert.Equal(t, expected, hash) assert.Nil(t, err) } diff --git a/controller/state.go b/controller/state.go index 17cfbe015e8e2..80678b74790e7 100644 --- a/controller/state.go +++ b/controller/state.go @@ -36,6 +36,7 @@ import ( "github.com/argoproj/argo-cd/v2/util/app/path" "github.com/argoproj/argo-cd/v2/util/argo" argodiff "github.com/argoproj/argo-cd/v2/util/argo/diff" + "github.com/argoproj/argo-cd/v2/util/argo/normalizers" appstatecache "github.com/argoproj/argo-cd/v2/util/cache/appstate" "github.com/argoproj/argo-cd/v2/util/db" "github.com/argoproj/argo-cd/v2/util/gpg" @@ -118,6 +119,7 @@ type appStateManager struct { repoErrorCache goSync.Map repoErrorGracePeriod time.Duration serverSideDiff bool + ignoreNormalizerOpts normalizers.IgnoreNormalizerOpts } // GetRepoObjs will generate the manifests for the given application delegating the @@ -638,7 +640,7 @@ func (m *appStateManager) CompareAppState(app *v1alpha1.Application, project *v1 useDiffCache := useDiffCache(noCache, manifestInfos, sources, app, manifestRevisions, m.statusRefreshTimeout, serverSideDiff, logCtx) diffConfigBuilder := argodiff.NewDiffConfigBuilder(). - WithDiffSettings(app.Spec.IgnoreDifferences, resourceOverrides, compareOptions.IgnoreAggregatedRoles). + WithDiffSettings(app.Spec.IgnoreDifferences, resourceOverrides, compareOptions.IgnoreAggregatedRoles, m.ignoreNormalizerOpts). WithTracking(appLabelKey, string(trackingMethod)) if useDiffCache { @@ -979,6 +981,7 @@ func NewAppStateManager( persistResourceHealth bool, repoErrorGracePeriod time.Duration, serverSideDiff bool, + ignoreNormalizerOpts normalizers.IgnoreNormalizerOpts, ) AppStateManager { return &appStateManager{ liveStateCache: liveStateCache, @@ -996,6 +999,7 @@ func NewAppStateManager( persistResourceHealth: persistResourceHealth, repoErrorGracePeriod: repoErrorGracePeriod, serverSideDiff: serverSideDiff, + ignoreNormalizerOpts: ignoreNormalizerOpts, } } diff --git a/controller/sync_test.go b/controller/sync_test.go index a7916b53e82d7..a526548b089bd 100644 --- a/controller/sync_test.go +++ b/controller/sync_test.go @@ -18,6 +18,7 @@ import ( "github.com/argoproj/argo-cd/v2/reposerver/apiclient" "github.com/argoproj/argo-cd/v2/test" "github.com/argoproj/argo-cd/v2/util/argo/diff" + "github.com/argoproj/argo-cd/v2/util/argo/normalizers" ) func TestPersistRevisionHistory(t *testing.T) { @@ -330,7 +331,7 @@ func TestNormalizeTargetResources(t *testing.T) { setup := func(t *testing.T, ignores []v1alpha1.ResourceIgnoreDifferences) *fixture { t.Helper() dc, err := diff.NewDiffConfigBuilder(). - WithDiffSettings(ignores, nil, true). + WithDiffSettings(ignores, nil, true, normalizers.IgnoreNormalizerOpts{}). WithNoCache(). Build() require.NoError(t, err) @@ -463,7 +464,7 @@ func TestNormalizeTargetResourcesWithList(t *testing.T) { setupHttpProxy := func(t *testing.T, ignores []v1alpha1.ResourceIgnoreDifferences) *fixture { t.Helper() dc, err := diff.NewDiffConfigBuilder(). - WithDiffSettings(ignores, nil, true). + WithDiffSettings(ignores, nil, true, normalizers.IgnoreNormalizerOpts{}). WithNoCache(). Build() require.NoError(t, err) diff --git a/docs/user-guide/diffing.md b/docs/user-guide/diffing.md index 61f799e514d6a..2a69654b4aa1a 100644 --- a/docs/user-guide/diffing.md +++ b/docs/user-guide/diffing.md @@ -185,3 +185,16 @@ The list of supported Kubernetes types is available in [diffing_known_types.txt] * `core/Quantity` * `meta/v1/duration` + + +### JQ Path expression timeout + +By default, the evaluation of a JQPathExpression is limited to one second. If you encounter a "JQ patch execution timed out" error message due to a complex JQPathExpression that requires more time to evaluate, you can extend the timeout period by configuring the `ignore.normalizer.jq.timeout` setting within the `argocd-cmd-params-cm` ConfigMap. + +```yaml +apiVersion: v1 +kind: ConfigMap +metadata: + name: argocd-cmd-params-cm +data: + ignore.normalizer.jq.timeout: "5s" diff --git a/manifests/base/application-controller/argocd-application-controller-statefulset.yaml b/manifests/base/application-controller/argocd-application-controller-statefulset.yaml index d974edffdd618..7b6302a09c449 100644 --- a/manifests/base/application-controller/argocd-application-controller-statefulset.yaml +++ b/manifests/base/application-controller/argocd-application-controller-statefulset.yaml @@ -197,6 +197,12 @@ spec: name: argocd-cmd-params-cm key: controller.diff.server.side optional: true + - name: ARGOCD_IGNORE_NORMALIZER_JQ_TIMEOUT + valueFrom: + configMapKeyRef: + name: argocd-cmd-params-cm + key: controller.ignore.normalizer.jq.timeout + optional: true image: quay.io/argoproj/argocd:latest imagePullPolicy: Always name: argocd-application-controller diff --git a/util/argo/diff/diff.go b/util/argo/diff/diff.go index c99a04354c751..c0dd8f779a6ee 100644 --- a/util/argo/diff/diff.go +++ b/util/argo/diff/diff.go @@ -11,6 +11,7 @@ import ( "github.com/argoproj/argo-cd/v2/pkg/apis/application/v1alpha1" "github.com/argoproj/argo-cd/v2/util/argo" "github.com/argoproj/argo-cd/v2/util/argo/managedfields" + "github.com/argoproj/argo-cd/v2/util/argo/normalizers" appstatecache "github.com/argoproj/argo-cd/v2/util/cache/appstate" "github.com/argoproj/gitops-engine/pkg/diff" @@ -34,7 +35,7 @@ func NewDiffConfigBuilder() *DiffConfigBuilder { } // WithDiffSettings will set the diff settings in the builder. -func (b *DiffConfigBuilder) WithDiffSettings(id []v1alpha1.ResourceIgnoreDifferences, o map[string]v1alpha1.ResourceOverride, ignoreAggregatedRoles bool) *DiffConfigBuilder { +func (b *DiffConfigBuilder) WithDiffSettings(id []v1alpha1.ResourceIgnoreDifferences, o map[string]v1alpha1.ResourceOverride, ignoreAggregatedRoles bool, ignoreNormalizerOpts normalizers.IgnoreNormalizerOpts) *DiffConfigBuilder { ignores := id if ignores == nil { ignores = []v1alpha1.ResourceIgnoreDifferences{} @@ -47,6 +48,7 @@ func (b *DiffConfigBuilder) WithDiffSettings(id []v1alpha1.ResourceIgnoreDiffere } b.diffConfig.overrides = overrides b.diffConfig.ignoreAggregatedRoles = ignoreAggregatedRoles + b.diffConfig.ignoreNormalizerOpts = ignoreNormalizerOpts return b } @@ -161,6 +163,8 @@ type DiffConfig interface { ServerSideDiff() bool ServerSideDryRunner() diff.ServerSideDryRunner IgnoreMutationWebhook() bool + + IgnoreNormalizerOpts() normalizers.IgnoreNormalizerOpts } // diffConfig defines the configurations used while applying diffs. @@ -180,6 +184,7 @@ type diffConfig struct { serverSideDiff bool serverSideDryRunner diff.ServerSideDryRunner ignoreMutationWebhook bool + ignoreNormalizerOpts normalizers.IgnoreNormalizerOpts } func (c *diffConfig) Ignores() []v1alpha1.ResourceIgnoreDifferences { @@ -227,6 +232,9 @@ func (c *diffConfig) ServerSideDiff() bool { func (c *diffConfig) IgnoreMutationWebhook() bool { return c.ignoreMutationWebhook } +func (c *diffConfig) IgnoreNormalizerOpts() normalizers.IgnoreNormalizerOpts { + return c.ignoreNormalizerOpts +} // Validate will check the current state of this diffConfig and return // error if it finds any required configuration missing. @@ -279,7 +287,7 @@ func StateDiffs(lives, configs []*unstructured.Unstructured, diffConfig DiffConf return nil, fmt.Errorf("failed to perform pre-diff normalization: %w", err) } - diffNormalizer, err := newDiffNormalizer(diffConfig.Ignores(), diffConfig.Overrides()) + diffNormalizer, err := newDiffNormalizer(diffConfig.Ignores(), diffConfig.Overrides(), diffConfig.IgnoreNormalizerOpts()) if err != nil { return nil, fmt.Errorf("failed to create diff normalizer: %w", err) } diff --git a/util/argo/diff/diff_test.go b/util/argo/diff/diff_test.go index 2c95d7404d299..151f369c28e9d 100644 --- a/util/argo/diff/diff_test.go +++ b/util/argo/diff/diff_test.go @@ -10,6 +10,7 @@ import ( "github.com/argoproj/argo-cd/v2/pkg/apis/application/v1alpha1" testutil "github.com/argoproj/argo-cd/v2/test" argo "github.com/argoproj/argo-cd/v2/util/argo/diff" + "github.com/argoproj/argo-cd/v2/util/argo/normalizers" "github.com/argoproj/argo-cd/v2/util/argo/testdata" appstatecache "github.com/argoproj/argo-cd/v2/util/cache/appstate" ) @@ -40,7 +41,7 @@ func TestStateDiff(t *testing.T) { diffConfig := func(t *testing.T, params *diffConfigParams) argo.DiffConfig { t.Helper() diffConfig, err := argo.NewDiffConfigBuilder(). - WithDiffSettings(params.ignores, params.overrides, params.ignoreRoles). + WithDiffSettings(params.ignores, params.overrides, params.ignoreRoles, normalizers.IgnoreNormalizerOpts{}). WithTracking(params.label, params.trackingMethod). WithNoCache(). Build() @@ -185,7 +186,7 @@ func TestDiffConfigBuilder(t *testing.T) { // when diffConfig, err := argo.NewDiffConfigBuilder(). - WithDiffSettings(f.ignores, f.overrides, f.ignoreRoles). + WithDiffSettings(f.ignores, f.overrides, f.ignoreRoles, normalizers.IgnoreNormalizerOpts{}). WithTracking(f.label, f.trackingMethod). WithNoCache(). Build() @@ -209,7 +210,7 @@ func TestDiffConfigBuilder(t *testing.T) { // when diffConfig, err := argo.NewDiffConfigBuilder(). - WithDiffSettings(nil, nil, f.ignoreRoles). + WithDiffSettings(nil, nil, f.ignoreRoles, normalizers.IgnoreNormalizerOpts{}). WithTracking(f.label, f.trackingMethod). WithNoCache(). Build() @@ -231,7 +232,7 @@ func TestDiffConfigBuilder(t *testing.T) { // when diffConfig, err := argo.NewDiffConfigBuilder(). - WithDiffSettings(f.ignores, f.overrides, f.ignoreRoles). + WithDiffSettings(f.ignores, f.overrides, f.ignoreRoles, normalizers.IgnoreNormalizerOpts{}). WithTracking(f.label, f.trackingMethod). WithCache(&appstatecache.Cache{}, ""). Build() @@ -246,7 +247,7 @@ func TestDiffConfigBuilder(t *testing.T) { // when diffConfig, err := argo.NewDiffConfigBuilder(). - WithDiffSettings(f.ignores, f.overrides, f.ignoreRoles). + WithDiffSettings(f.ignores, f.overrides, f.ignoreRoles, normalizers.IgnoreNormalizerOpts{}). WithTracking(f.label, f.trackingMethod). WithCache(nil, f.appName). Build() diff --git a/util/argo/diff/normalize.go b/util/argo/diff/normalize.go index 95a9e70a81276..88238fdb88cfd 100644 --- a/util/argo/diff/normalize.go +++ b/util/argo/diff/normalize.go @@ -15,7 +15,7 @@ func Normalize(lives, configs []*unstructured.Unstructured, diffConfig DiffConfi if err != nil { return nil, err } - diffNormalizer, err := newDiffNormalizer(diffConfig.Ignores(), diffConfig.Overrides()) + diffNormalizer, err := newDiffNormalizer(diffConfig.Ignores(), diffConfig.Overrides(), diffConfig.IgnoreNormalizerOpts()) if err != nil { return nil, err } @@ -40,8 +40,8 @@ func Normalize(lives, configs []*unstructured.Unstructured, diffConfig DiffConfi } // newDiffNormalizer creates normalizer that uses Argo CD and application settings to normalize the resource prior to diffing. -func newDiffNormalizer(ignore []v1alpha1.ResourceIgnoreDifferences, overrides map[string]v1alpha1.ResourceOverride) (diff.Normalizer, error) { - ignoreNormalizer, err := normalizers.NewIgnoreNormalizer(ignore, overrides) +func newDiffNormalizer(ignore []v1alpha1.ResourceIgnoreDifferences, overrides map[string]v1alpha1.ResourceOverride, opts normalizers.IgnoreNormalizerOpts) (diff.Normalizer, error) { + ignoreNormalizer, err := normalizers.NewIgnoreNormalizer(ignore, overrides, opts) if err != nil { return nil, err } diff --git a/util/argo/diff/normalize_test.go b/util/argo/diff/normalize_test.go index 2464a2e91ee6b..246f6697355b6 100644 --- a/util/argo/diff/normalize_test.go +++ b/util/argo/diff/normalize_test.go @@ -10,6 +10,7 @@ import ( "github.com/argoproj/argo-cd/v2/pkg/apis/application/v1alpha1" "github.com/argoproj/argo-cd/v2/test" "github.com/argoproj/argo-cd/v2/util/argo/diff" + "github.com/argoproj/argo-cd/v2/util/argo/normalizers" "github.com/argoproj/argo-cd/v2/util/argo/testdata" ) @@ -22,7 +23,7 @@ func TestNormalize(t *testing.T) { setup := func(t *testing.T, ignores []v1alpha1.ResourceIgnoreDifferences) *fixture { t.Helper() dc, err := diff.NewDiffConfigBuilder(). - WithDiffSettings(ignores, nil, true). + WithDiffSettings(ignores, nil, true, normalizers.IgnoreNormalizerOpts{}). WithNoCache(). Build() require.NoError(t, err) diff --git a/util/argo/normalizers/diff_normalizer.go b/util/argo/normalizers/diff_normalizer.go index af2d69fb2488a..5c9bef2a119b7 100644 --- a/util/argo/normalizers/diff_normalizer.go +++ b/util/argo/normalizers/diff_normalizer.go @@ -1,9 +1,11 @@ package normalizers import ( + "context" "encoding/json" "fmt" "strings" + "time" "github.com/argoproj/gitops-engine/pkg/diff" jsonpatch "github.com/evanphx/json-patch" @@ -16,6 +18,11 @@ import ( "github.com/argoproj/argo-cd/v2/util/glob" ) +const ( + // DefaultJQExecutionTimeout is the maximum time allowed for a JQ patch to execute + DefaultJQExecutionTimeout = 1 * time.Second +) + type normalizerPatch interface { GetGroupKind() schema.GroupKind GetNamespace() string @@ -57,7 +64,8 @@ func (np *jsonPatchNormalizerPatch) Apply(data []byte) ([]byte, error) { type jqNormalizerPatch struct { baseNormalizerPatch - code *gojq.Code + code *gojq.Code + jqExecutionTimeout time.Duration } func (np *jqNormalizerPatch) Apply(data []byte) ([]byte, error) { @@ -67,12 +75,18 @@ func (np *jqNormalizerPatch) Apply(data []byte) ([]byte, error) { return nil, err } - iter := np.code.Run(dataJson) + ctx, cancel := context.WithTimeout(context.Background(), np.jqExecutionTimeout) + defer cancel() + + iter := np.code.RunWithContext(ctx, dataJson) first, ok := iter.Next() if !ok { return nil, fmt.Errorf("JQ patch did not return any data") } if err, ok = first.(error); ok { + if err == context.DeadlineExceeded { + return nil, fmt.Errorf("JQ patch execution timed out (%v)", np.jqExecutionTimeout.String()) + } return nil, fmt.Errorf("JQ patch returned error: %w", err) } _, ok = iter.Next() @@ -91,8 +105,19 @@ type ignoreNormalizer struct { patches []normalizerPatch } +type IgnoreNormalizerOpts struct { + JQExecutionTimeout time.Duration +} + +func (opts *IgnoreNormalizerOpts) getJQExecutionTimeout() time.Duration { + if opts == nil || opts.JQExecutionTimeout == 0 { + return DefaultJQExecutionTimeout + } + return opts.JQExecutionTimeout +} + // NewIgnoreNormalizer creates diff normalizer which removes ignored fields according to given application spec and resource overrides -func NewIgnoreNormalizer(ignore []v1alpha1.ResourceIgnoreDifferences, overrides map[string]v1alpha1.ResourceOverride) (diff.Normalizer, error) { +func NewIgnoreNormalizer(ignore []v1alpha1.ResourceIgnoreDifferences, overrides map[string]v1alpha1.ResourceOverride, opts IgnoreNormalizerOpts) (diff.Normalizer, error) { for key, override := range overrides { group, kind, err := getGroupKindForOverrideKey(key) if err != nil { @@ -147,7 +172,8 @@ func NewIgnoreNormalizer(ignore []v1alpha1.ResourceIgnoreDifferences, overrides name: ignore[i].Name, namespace: ignore[i].Namespace, }, - code: jqDeletionCode, + code: jqDeletionCode, + jqExecutionTimeout: opts.getJQExecutionTimeout(), }) } } diff --git a/util/argo/normalizers/diff_normalizer_test.go b/util/argo/normalizers/diff_normalizer_test.go index 1b8c2bcdcebca..fc6de6bc40d53 100644 --- a/util/argo/normalizers/diff_normalizer_test.go +++ b/util/argo/normalizers/diff_normalizer_test.go @@ -19,7 +19,7 @@ func TestNormalizeObjectWithMatchedGroupKind(t *testing.T) { Group: "apps", Kind: "Deployment", JSONPointers: []string{"/not-matching-path", "/spec/template/spec/containers"}, - }}, make(map[string]v1alpha1.ResourceOverride)) + }}, make(map[string]v1alpha1.ResourceOverride), IgnoreNormalizerOpts{}) assert.Nil(t, err) @@ -44,7 +44,7 @@ func TestNormalizeNoMatchedGroupKinds(t *testing.T) { Group: "", Kind: "Service", JSONPointers: []string{"/spec"}, - }}, make(map[string]v1alpha1.ResourceOverride)) + }}, make(map[string]v1alpha1.ResourceOverride), IgnoreNormalizerOpts{}) assert.Nil(t, err) @@ -63,7 +63,7 @@ func TestNormalizeMatchedResourceOverrides(t *testing.T) { "apps/Deployment": { IgnoreDifferences: v1alpha1.OverrideIgnoreDiff{JSONPointers: []string{"/spec/template/spec/containers"}}, }, - }) + }, IgnoreNormalizerOpts{}) assert.Nil(t, err) @@ -118,7 +118,7 @@ func TestNormalizeMissingJsonPointer(t *testing.T) { "apiextensions.k8s.io/CustomResourceDefinition": { IgnoreDifferences: v1alpha1.OverrideIgnoreDiff{JSONPointers: []string{"/spec/additionalPrinterColumns/0/priority"}}, }, - }) + }, IgnoreNormalizerOpts{}) assert.NoError(t, err) deployment := test.NewDeployment() @@ -139,7 +139,7 @@ func TestNormalizeGlobMatch(t *testing.T) { "*/*": { IgnoreDifferences: v1alpha1.OverrideIgnoreDiff{JSONPointers: []string{"/spec/template/spec/containers"}}, }, - }) + }, IgnoreNormalizerOpts{}) assert.Nil(t, err) @@ -161,7 +161,7 @@ func TestNormalizeJQPathExpression(t *testing.T) { Group: "apps", Kind: "Deployment", JQPathExpressions: []string{".spec.template.spec.initContainers[] | select(.name == \"init-container-0\")"}, - }}, make(map[string]v1alpha1.ResourceOverride)) + }}, make(map[string]v1alpha1.ResourceOverride), IgnoreNormalizerOpts{}) assert.Nil(t, err) @@ -197,7 +197,7 @@ func TestNormalizeIllegalJQPathExpression(t *testing.T) { Kind: "Deployment", JQPathExpressions: []string{".spec.template.spec.containers[] | select(.name == \"missing-quote)"}, // JSONPointers: []string{"no-starting-slash"}, - }}, make(map[string]v1alpha1.ResourceOverride)) + }}, make(map[string]v1alpha1.ResourceOverride), IgnoreNormalizerOpts{}) assert.Error(t, err) } @@ -207,7 +207,7 @@ func TestNormalizeJQPathExpressionWithError(t *testing.T) { Group: "apps", Kind: "Deployment", JQPathExpressions: []string{".spec.fakeField.foo[]"}, - }}, make(map[string]v1alpha1.ResourceOverride)) + }}, make(map[string]v1alpha1.ResourceOverride), IgnoreNormalizerOpts{}) assert.Nil(t, err) @@ -230,7 +230,7 @@ func TestNormalizeExpectedErrorAreSilenced(t *testing.T) { JSONPointers: []string{"/invalid", "/invalid/json/path"}, }, }, - }) + }, IgnoreNormalizerOpts{}) assert.Nil(t, err) ignoreNormalizer := normalizer.(*ignoreNormalizer) @@ -254,12 +254,34 @@ func TestNormalizeExpectedErrorAreSilenced(t *testing.T) { } +func TestJqPathExpressionFailWithTimeout(t *testing.T) { + normalizer, err := NewIgnoreNormalizer([]v1alpha1.ResourceIgnoreDifferences{}, map[string]v1alpha1.ResourceOverride{ + "*/*": { + IgnoreDifferences: v1alpha1.OverrideIgnoreDiff{ + JQPathExpressions: []string{"until(true==false; [.] + [1])"}, + }, + }, + }, IgnoreNormalizerOpts{}) + assert.Nil(t, err) + + ignoreNormalizer := normalizer.(*ignoreNormalizer) + assert.Len(t, ignoreNormalizer.patches, 1) + jqPatch := ignoreNormalizer.patches[0] + + deployment := test.NewDeployment() + deploymentData, err := json.Marshal(deployment) + assert.Nil(t, err) + + _, err = jqPatch.Apply(deploymentData) + assert.ErrorContains(t, err, "JQ patch execution timed out") +} + func TestJQPathExpressionReturnsHelpfulError(t *testing.T) { normalizer, err := NewIgnoreNormalizer([]v1alpha1.ResourceIgnoreDifferences{{ Kind: "ConfigMap", // This is a really wild expression, but it does trigger the desired error. JQPathExpressions: []string{`.nothing) | .data["config.yaml"] |= (fromjson | del(.auth) | tojson`}, - }}, nil) + }}, nil, IgnoreNormalizerOpts{}) assert.NoError(t, err) From 57431b21770c0df0c81b77a3f3ea68b7d6a150ca Mon Sep 17 00:00:00 2001 From: pasha-codefresh Date: Fri, 26 Apr 2024 12:24:32 +0300 Subject: [PATCH 041/206] Merge pull request from GHSA-9m6p-x4h2-6frq * feat: limit jq.Run with timeout Signed-off-by: pashakostohrys * feat: ignore normalizer jq execution timeout as env variable Signed-off-by: pashakostohrys * feat: customize error message and add doc section Signed-off-by: pashakostohrys * feat: improve log and change a way how to get variable Signed-off-by: pashakostohrys * chore: fix import`s order Signed-off-by: pashakostohrys * chore: rename variable inside sts Signed-off-by: pashakostohrys * chore: fix import order Signed-off-by: pashakostohrys --------- Signed-off-by: pashakostohrys From 96e796edffa291fe3ce470af96fa2250b2aed468 Mon Sep 17 00:00:00 2001 From: pasha-codefresh Date: Fri, 26 Apr 2024 14:44:39 +0300 Subject: [PATCH 042/206] chore: fix codegen after security fix (#17982) --- .../commands/argocd_application_controller.go | 2 +- .../argocd-application-controller.md | 133 +++++++++--------- .../argocd_admin_app_get-reconcile-results.md | 53 +++---- ...ource-overrides_ignore-resource-updates.md | 3 +- docs/user-guide/commands/argocd_app_diff.md | 25 ++-- docs/user-guide/commands/argocd_app_sync.md | 53 +++---- manifests/core-install.yaml | 6 + manifests/ha/install.yaml | 6 + manifests/ha/namespace-install.yaml | 6 + manifests/install.yaml | 6 + manifests/namespace-install.yaml | 6 + 11 files changed, 167 insertions(+), 132 deletions(-) diff --git a/cmd/argocd-application-controller/commands/argocd_application_controller.go b/cmd/argocd-application-controller/commands/argocd_application_controller.go index 33d0e12538eed..a7c7f92fab2a6 100644 --- a/cmd/argocd-application-controller/commands/argocd_application_controller.go +++ b/cmd/argocd-application-controller/commands/argocd_application_controller.go @@ -232,7 +232,7 @@ func NewCommand() *cobra.Command { command.Flags().Float64Var(&workqueueRateLimit.BackoffFactor, "wq-backoff-factor", env.ParseFloat64FromEnv("WORKQUEUE_BACKOFF_FACTOR", 1.5, 0, math.MaxFloat64), "Set Workqueue Per Item Rate Limiter Backoff Factor, default is 1.5") command.Flags().BoolVar(&enableDynamicClusterDistribution, "dynamic-cluster-distribution-enabled", env.ParseBoolFromEnv(common.EnvEnableDynamicClusterDistribution, false), "Enables dynamic cluster distribution.") command.Flags().BoolVar(&serverSideDiff, "server-side-diff-enabled", env.ParseBoolFromEnv(common.EnvServerSideDiff, false), "Feature flag to enable ServerSide diff. Default (\"false\")") - command.Flags().DurationVar(&ignoreNormalizerOpts.JQExecutionTimeout, "", env.ParseDurationFromEnv("ARGOCD_IGNORE_NORMALIZER_JQ_TIMEOUT", 0*time.Second, 0, math.MaxInt64), "Set ignore normalizer JQ execution timeout") + command.Flags().DurationVar(&ignoreNormalizerOpts.JQExecutionTimeout, "ignore-normalizer-jq-execution-timeout-seconds", env.ParseDurationFromEnv("ARGOCD_IGNORE_NORMALIZER_JQ_TIMEOUT", 0*time.Second, 0, math.MaxInt64), "Set ignore normalizer JQ execution timeout") cacheSource = appstatecache.AddCacheFlagsToCmd(&command, cacheutil.Options{ OnClientCreated: func(client *redis.Client) { redisClient = client diff --git a/docs/operator-manual/server-commands/argocd-application-controller.md b/docs/operator-manual/server-commands/argocd-application-controller.md index 61c0c32119895..caab2770e07aa 100644 --- a/docs/operator-manual/server-commands/argocd-application-controller.md +++ b/docs/operator-manual/server-commands/argocd-application-controller.md @@ -15,71 +15,72 @@ argocd-application-controller [flags] ### Options ``` - --app-hard-resync int Time period in seconds for application hard resync. - --app-resync int Time period in seconds for application resync. (default 180) - --app-resync-jitter int Maximum time period in seconds to add as a delay jitter for application resync. - --app-state-cache-expiration duration Cache expiration for app state (default 1h0m0s) - --application-namespaces strings List of additional namespaces that applications are allowed to be reconciled from - --as string Username to impersonate for the operation - --as-group stringArray Group to impersonate for the operation, this flag can be repeated to specify multiple groups. - --as-uid string UID to impersonate for the operation - --certificate-authority string Path to a cert file for the certificate authority - --client-certificate string Path to a client certificate file for TLS - --client-key string Path to a client key file for TLS - --cluster string The name of the kubeconfig cluster to use - --context string The name of the kubeconfig context to use - --default-cache-expiration duration Cache expiration default (default 24h0m0s) - --disable-compression If true, opt-out of response compression for all requests to the server - --dynamic-cluster-distribution-enabled Enables dynamic cluster distribution. - --gloglevel int Set the glog logging level - -h, --help help for argocd-application-controller - --insecure-skip-tls-verify If true, the server's certificate will not be checked for validity. This will make your HTTPS connections insecure - --kubeconfig string Path to a kube config. Only required if out-of-cluster - --kubectl-parallelism-limit int Number of allowed concurrent kubectl fork/execs. Any value less than 1 means no limit. (default 20) - --logformat string Set the logging format. One of: text|json (default "text") - --loglevel string Set the logging level. One of: debug|info|warn|error (default "info") - --metrics-application-labels strings List of Application labels that will be added to the argocd_application_labels metric - --metrics-cache-expiration duration Prometheus metrics cache expiration (disabled by default. e.g. 24h0m0s) - --metrics-port int Start metrics server on given port (default 8082) - -n, --namespace string If present, the namespace scope for this CLI request - --operation-processors int Number of application operation processors (default 10) - --otlp-address string OpenTelemetry collector address to send traces to - --otlp-attrs strings List of OpenTelemetry collector extra attrs when send traces, each attribute is separated by a colon(e.g. key:value) - --otlp-headers stringToString List of OpenTelemetry collector extra headers sent with traces, headers are comma-separated key-value pairs(e.g. key1=value1,key2=value2) (default []) - --otlp-insecure OpenTelemetry collector insecure mode (default true) - --password string Password for basic authentication to the API server - --persist-resource-health Enables storing the managed resources health in the Application CRD (default true) - --proxy-url string If provided, this URL will be used to connect via proxy - --redis string Redis server hostname and port (e.g. argocd-redis:6379). - --redis-ca-certificate string Path to Redis server CA certificate (e.g. /etc/certs/redis/ca.crt). If not specified, system trusted CAs will be used for server certificate validation. - --redis-client-certificate string Path to Redis client certificate (e.g. /etc/certs/redis/client.crt). - --redis-client-key string Path to Redis client key (e.g. /etc/certs/redis/client.crt). - --redis-compress string Enable compression for data sent to Redis with the required compression algorithm. (possible values: gzip, none) (default "gzip") - --redis-insecure-skip-tls-verify Skip Redis server certificate validation. - --redis-use-tls Use TLS when connecting to Redis. - --redisdb int Redis database. - --repo-error-grace-period-seconds int Grace period in seconds for ignoring consecutive errors while communicating with repo server. (default 180) - --repo-server string Repo server address. (default "argocd-repo-server:8081") - --repo-server-plaintext Disable TLS on connections to repo server - --repo-server-strict-tls Whether to use strict validation of the TLS cert presented by the repo server - --repo-server-timeout-seconds int Repo server RPC call timeout seconds. (default 60) - --request-timeout string The length of time to wait before giving up on a single server request. Non-zero values should contain a corresponding time unit (e.g. 1s, 2m, 3h). A value of zero means don't timeout requests. (default "0") - --self-heal-timeout-seconds int Specifies timeout between application self heal attempts (default 5) - --sentinel stringArray Redis sentinel hostname and port (e.g. argocd-redis-ha-announce-0:6379). - --sentinelmaster string Redis sentinel master group name. (default "master") - --server string The address and port of the Kubernetes API server - --server-side-diff-enabled Feature flag to enable ServerSide diff. Default ("false") - --sharding-method string Enables choice of sharding method. Supported sharding methods are : [legacy, round-robin] (default "legacy") - --status-processors int Number of application status processors (default 20) - --tls-server-name string If provided, this name will be used to validate server certificate. If this is not provided, hostname used to contact the server is used. - --token string Bearer token for authentication to the API server - --user string The name of the kubeconfig user to use - --username string Username for basic authentication to the API server - --wq-backoff-factor float Set Workqueue Per Item Rate Limiter Backoff Factor, default is 1.5 (default 1.5) - --wq-basedelay-ns duration Set Workqueue Per Item Rate Limiter Base Delay duration in nanoseconds, default 1000000 (1ms) (default 1ms) - --wq-bucket-qps float Set Workqueue Rate Limiter Bucket QPS, default set to MaxFloat64 which disables the bucket limiter (default 1.7976931348623157e+308) - --wq-bucket-size int Set Workqueue Rate Limiter Bucket Size, default 500 (default 500) - --wq-cooldown-ns duration Set Workqueue Per Item Rate Limiter Cooldown duration in ns, default 0(per item rate limiter disabled) - --wq-maxdelay-ns duration Set Workqueue Per Item Rate Limiter Max Delay duration in nanoseconds, default 1000000000 (1s) (default 1s) + --app-hard-resync int Time period in seconds for application hard resync. + --app-resync int Time period in seconds for application resync. (default 180) + --app-resync-jitter int Maximum time period in seconds to add as a delay jitter for application resync. + --app-state-cache-expiration duration Cache expiration for app state (default 1h0m0s) + --application-namespaces strings List of additional namespaces that applications are allowed to be reconciled from + --as string Username to impersonate for the operation + --as-group stringArray Group to impersonate for the operation, this flag can be repeated to specify multiple groups. + --as-uid string UID to impersonate for the operation + --certificate-authority string Path to a cert file for the certificate authority + --client-certificate string Path to a client certificate file for TLS + --client-key string Path to a client key file for TLS + --cluster string The name of the kubeconfig cluster to use + --context string The name of the kubeconfig context to use + --default-cache-expiration duration Cache expiration default (default 24h0m0s) + --disable-compression If true, opt-out of response compression for all requests to the server + --dynamic-cluster-distribution-enabled Enables dynamic cluster distribution. + --gloglevel int Set the glog logging level + -h, --help help for argocd-application-controller + --ignore-normalizer-jq-execution-timeout-seconds duration Set ignore normalizer JQ execution timeout + --insecure-skip-tls-verify If true, the server's certificate will not be checked for validity. This will make your HTTPS connections insecure + --kubeconfig string Path to a kube config. Only required if out-of-cluster + --kubectl-parallelism-limit int Number of allowed concurrent kubectl fork/execs. Any value less than 1 means no limit. (default 20) + --logformat string Set the logging format. One of: text|json (default "text") + --loglevel string Set the logging level. One of: debug|info|warn|error (default "info") + --metrics-application-labels strings List of Application labels that will be added to the argocd_application_labels metric + --metrics-cache-expiration duration Prometheus metrics cache expiration (disabled by default. e.g. 24h0m0s) + --metrics-port int Start metrics server on given port (default 8082) + -n, --namespace string If present, the namespace scope for this CLI request + --operation-processors int Number of application operation processors (default 10) + --otlp-address string OpenTelemetry collector address to send traces to + --otlp-attrs strings List of OpenTelemetry collector extra attrs when send traces, each attribute is separated by a colon(e.g. key:value) + --otlp-headers stringToString List of OpenTelemetry collector extra headers sent with traces, headers are comma-separated key-value pairs(e.g. key1=value1,key2=value2) (default []) + --otlp-insecure OpenTelemetry collector insecure mode (default true) + --password string Password for basic authentication to the API server + --persist-resource-health Enables storing the managed resources health in the Application CRD (default true) + --proxy-url string If provided, this URL will be used to connect via proxy + --redis string Redis server hostname and port (e.g. argocd-redis:6379). + --redis-ca-certificate string Path to Redis server CA certificate (e.g. /etc/certs/redis/ca.crt). If not specified, system trusted CAs will be used for server certificate validation. + --redis-client-certificate string Path to Redis client certificate (e.g. /etc/certs/redis/client.crt). + --redis-client-key string Path to Redis client key (e.g. /etc/certs/redis/client.crt). + --redis-compress string Enable compression for data sent to Redis with the required compression algorithm. (possible values: gzip, none) (default "gzip") + --redis-insecure-skip-tls-verify Skip Redis server certificate validation. + --redis-use-tls Use TLS when connecting to Redis. + --redisdb int Redis database. + --repo-error-grace-period-seconds int Grace period in seconds for ignoring consecutive errors while communicating with repo server. (default 180) + --repo-server string Repo server address. (default "argocd-repo-server:8081") + --repo-server-plaintext Disable TLS on connections to repo server + --repo-server-strict-tls Whether to use strict validation of the TLS cert presented by the repo server + --repo-server-timeout-seconds int Repo server RPC call timeout seconds. (default 60) + --request-timeout string The length of time to wait before giving up on a single server request. Non-zero values should contain a corresponding time unit (e.g. 1s, 2m, 3h). A value of zero means don't timeout requests. (default "0") + --self-heal-timeout-seconds int Specifies timeout between application self heal attempts (default 5) + --sentinel stringArray Redis sentinel hostname and port (e.g. argocd-redis-ha-announce-0:6379). + --sentinelmaster string Redis sentinel master group name. (default "master") + --server string The address and port of the Kubernetes API server + --server-side-diff-enabled Feature flag to enable ServerSide diff. Default ("false") + --sharding-method string Enables choice of sharding method. Supported sharding methods are : [legacy, round-robin] (default "legacy") + --status-processors int Number of application status processors (default 20) + --tls-server-name string If provided, this name will be used to validate server certificate. If this is not provided, hostname used to contact the server is used. + --token string Bearer token for authentication to the API server + --user string The name of the kubeconfig user to use + --username string Username for basic authentication to the API server + --wq-backoff-factor float Set Workqueue Per Item Rate Limiter Backoff Factor, default is 1.5 (default 1.5) + --wq-basedelay-ns duration Set Workqueue Per Item Rate Limiter Base Delay duration in nanoseconds, default 1000000 (1ms) (default 1ms) + --wq-bucket-qps float Set Workqueue Rate Limiter Bucket QPS, default set to MaxFloat64 which disables the bucket limiter (default 1.7976931348623157e+308) + --wq-bucket-size int Set Workqueue Rate Limiter Bucket Size, default 500 (default 500) + --wq-cooldown-ns duration Set Workqueue Per Item Rate Limiter Cooldown duration in ns, default 0(per item rate limiter disabled) + --wq-maxdelay-ns duration Set Workqueue Per Item Rate Limiter Max Delay duration in nanoseconds, default 1000000000 (1s) (default 1s) ``` diff --git a/docs/user-guide/commands/argocd_admin_app_get-reconcile-results.md b/docs/user-guide/commands/argocd_admin_app_get-reconcile-results.md index 29fa5d54d9388..4e696bd994903 100644 --- a/docs/user-guide/commands/argocd_admin_app_get-reconcile-results.md +++ b/docs/user-guide/commands/argocd_admin_app_get-reconcile-results.md @@ -11,32 +11,33 @@ argocd admin app get-reconcile-results PATH [flags] ### Options ``` - --as string Username to impersonate for the operation - --as-group stringArray Group to impersonate for the operation, this flag can be repeated to specify multiple groups. - --as-uid string UID to impersonate for the operation - --certificate-authority string Path to a cert file for the certificate authority - --client-certificate string Path to a client certificate file for TLS - --client-key string Path to a client key file for TLS - --cluster string The name of the kubeconfig cluster to use - --context string The name of the kubeconfig context to use - --disable-compression If true, opt-out of response compression for all requests to the server - -h, --help help for get-reconcile-results - --insecure-skip-tls-verify If true, the server's certificate will not be checked for validity. This will make your HTTPS connections insecure - --kubeconfig string Path to a kube config. Only required if out-of-cluster - --l string Label selector - -n, --namespace string If present, the namespace scope for this CLI request - --o string Output format (yaml|json) (default "yaml") - --password string Password for basic authentication to the API server - --proxy-url string If provided, this URL will be used to connect via proxy - --refresh If set to true then recalculates apps reconciliation - --repo-server string Repo server address. - --request-timeout string The length of time to wait before giving up on a single server request. Non-zero values should contain a corresponding time unit (e.g. 1s, 2m, 3h). A value of zero means don't timeout requests. (default "0") - --server string The address and port of the Kubernetes API server - --server-side-diff If set to "true" will use server-side diff while comparing resources. Default ("false") - --tls-server-name string If provided, this name will be used to validate server certificate. If this is not provided, hostname used to contact the server is used. - --token string Bearer token for authentication to the API server - --user string The name of the kubeconfig user to use - --username string Username for basic authentication to the API server + --as string Username to impersonate for the operation + --as-group stringArray Group to impersonate for the operation, this flag can be repeated to specify multiple groups. + --as-uid string UID to impersonate for the operation + --certificate-authority string Path to a cert file for the certificate authority + --client-certificate string Path to a client certificate file for TLS + --client-key string Path to a client key file for TLS + --cluster string The name of the kubeconfig cluster to use + --context string The name of the kubeconfig context to use + --disable-compression If true, opt-out of response compression for all requests to the server + -h, --help help for get-reconcile-results + --ignore-normalizer-jq-execution-timeout duration Set ignore normalizer JQ execution timeout (default 1s) + --insecure-skip-tls-verify If true, the server's certificate will not be checked for validity. This will make your HTTPS connections insecure + --kubeconfig string Path to a kube config. Only required if out-of-cluster + --l string Label selector + -n, --namespace string If present, the namespace scope for this CLI request + --o string Output format (yaml|json) (default "yaml") + --password string Password for basic authentication to the API server + --proxy-url string If provided, this URL will be used to connect via proxy + --refresh If set to true then recalculates apps reconciliation + --repo-server string Repo server address. + --request-timeout string The length of time to wait before giving up on a single server request. Non-zero values should contain a corresponding time unit (e.g. 1s, 2m, 3h). A value of zero means don't timeout requests. (default "0") + --server string The address and port of the Kubernetes API server + --server-side-diff If set to "true" will use server-side diff while comparing resources. Default ("false") + --tls-server-name string If provided, this name will be used to validate server certificate. If this is not provided, hostname used to contact the server is used. + --token string Bearer token for authentication to the API server + --user string The name of the kubeconfig user to use + --username string Username for basic authentication to the API server ``` ### Options inherited from parent commands diff --git a/docs/user-guide/commands/argocd_admin_settings_resource-overrides_ignore-resource-updates.md b/docs/user-guide/commands/argocd_admin_settings_resource-overrides_ignore-resource-updates.md index 69f09208cf42f..0eeefab2713ea 100644 --- a/docs/user-guide/commands/argocd_admin_settings_resource-overrides_ignore-resource-updates.md +++ b/docs/user-guide/commands/argocd_admin_settings_resource-overrides_ignore-resource-updates.md @@ -22,7 +22,8 @@ argocd admin settings resource-overrides ignore-resource-updates ./deploy.yaml - ### Options ``` - -h, --help help for ignore-resource-updates + -h, --help help for ignore-resource-updates + --ignore-normalizer-jq-execution-timeout duration Set ignore normalizer JQ execution timeout (default 1s) ``` ### Options inherited from parent commands diff --git a/docs/user-guide/commands/argocd_app_diff.md b/docs/user-guide/commands/argocd_app_diff.md index 06acfadafed7c..f8c5a15589340 100644 --- a/docs/user-guide/commands/argocd_app_diff.md +++ b/docs/user-guide/commands/argocd_app_diff.md @@ -18,18 +18,19 @@ argocd app diff APPNAME [flags] ### Options ``` - -N, --app-namespace string Only render the difference in namespace - --exit-code Return non-zero exit code when there is a diff (default true) - --hard-refresh Refresh application data as well as target manifests cache - -h, --help help for diff - --local string Compare live app to a local manifests - --local-include stringArray Used with --server-side-generate, specify patterns of filenames to send. Matching is based on filename and not path. (default [*.yaml,*.yml,*.json]) - --local-repo-root string Path to the repository root. Used together with --local allows setting the repository root (default "/") - --refresh Refresh application data when retrieving - --revision string Compare live app to a particular revision - --revisions stringArray Show manifests at specific revisions for source position in source-positions - --server-side-generate Used with --local, this will send your manifests to the server for diffing - --source-positions int64Slice List of source positions. Default is empty array. Counting start at 1. (default []) + -N, --app-namespace string Only render the difference in namespace + --exit-code Return non-zero exit code when there is a diff (default true) + --hard-refresh Refresh application data as well as target manifests cache + -h, --help help for diff + --ignore-normalizer-jq-execution-timeout duration Set ignore normalizer JQ execution timeout (default 1s) + --local string Compare live app to a local manifests + --local-include stringArray Used with --server-side-generate, specify patterns of filenames to send. Matching is based on filename and not path. (default [*.yaml,*.yml,*.json]) + --local-repo-root string Path to the repository root. Used together with --local allows setting the repository root (default "/") + --refresh Refresh application data when retrieving + --revision string Compare live app to a particular revision + --revisions stringArray Show manifests at specific revisions for source position in source-positions + --server-side-generate Used with --local, this will send your manifests to the server for diffing + --source-positions int64Slice List of source positions. Default is empty array. Counting start at 1. (default []) ``` ### Options inherited from parent commands diff --git a/docs/user-guide/commands/argocd_app_sync.md b/docs/user-guide/commands/argocd_app_sync.md index a0a8f8459eeaa..66df10ba94762 100644 --- a/docs/user-guide/commands/argocd_app_sync.md +++ b/docs/user-guide/commands/argocd_app_sync.md @@ -38,32 +38,33 @@ argocd app sync [APPNAME... | -l selector | --project project-name] [flags] ### Options ``` - -N, --app-namespace string Only sync an application in namespace - --apply-out-of-sync-only Sync only out-of-sync resources - --assumeYes Assume yes as answer for all user queries or prompts - --async Do not wait for application to sync before continuing - --dry-run Preview apply without affecting cluster - --force Use a force apply - -h, --help help for sync - --info stringArray A list of key-value pairs during sync process. These infos will be persisted in app. - --label stringArray Sync only specific resources with a label. This option may be specified repeatedly. - --local string Path to a local directory. When this flag is present no git queries will be made - --local-repo-root string Path to the repository root. Used together with --local allows setting the repository root (default "/") - -o, --output string Output format. One of: json|yaml|wide|tree|tree=detailed (default "wide") - --preview-changes Preview difference against the target and live state before syncing app and wait for user confirmation - --project stringArray Sync apps that belong to the specified projects. This option may be specified repeatedly. - --prune Allow deleting unexpected resources - --replace Use a kubectl create/replace instead apply - --resource stringArray Sync only specific resources as GROUP:KIND:NAME or !GROUP:KIND:NAME. Fields may be blank and '*' can be used. This option may be specified repeatedly - --retry-backoff-duration duration Retry backoff base duration. Input needs to be a duration (e.g. 2m, 1h) (default 5s) - --retry-backoff-factor int Factor multiplies the base duration after each failed retry (default 2) - --retry-backoff-max-duration duration Max retry backoff duration. Input needs to be a duration (e.g. 2m, 1h) (default 3m0s) - --retry-limit int Max number of allowed sync retries - --revision string Sync to a specific revision. Preserves parameter overrides - -l, --selector string Sync apps that match this label. Supports '=', '==', '!=', in, notin, exists & not exists. Matching apps must satisfy all of the specified label constraints. - --server-side Use server-side apply while syncing the application - --strategy string Sync strategy (one of: apply|hook) - --timeout uint Time out after this many seconds + -N, --app-namespace string Only sync an application in namespace + --apply-out-of-sync-only Sync only out-of-sync resources + --assumeYes Assume yes as answer for all user queries or prompts + --async Do not wait for application to sync before continuing + --dry-run Preview apply without affecting cluster + --force Use a force apply + -h, --help help for sync + --ignore-normalizer-jq-execution-timeout duration Set ignore normalizer JQ execution timeout (default 1s) + --info stringArray A list of key-value pairs during sync process. These infos will be persisted in app. + --label stringArray Sync only specific resources with a label. This option may be specified repeatedly. + --local string Path to a local directory. When this flag is present no git queries will be made + --local-repo-root string Path to the repository root. Used together with --local allows setting the repository root (default "/") + -o, --output string Output format. One of: json|yaml|wide|tree|tree=detailed (default "wide") + --preview-changes Preview difference against the target and live state before syncing app and wait for user confirmation + --project stringArray Sync apps that belong to the specified projects. This option may be specified repeatedly. + --prune Allow deleting unexpected resources + --replace Use a kubectl create/replace instead apply + --resource stringArray Sync only specific resources as GROUP:KIND:NAME or !GROUP:KIND:NAME. Fields may be blank and '*' can be used. This option may be specified repeatedly + --retry-backoff-duration duration Retry backoff base duration. Input needs to be a duration (e.g. 2m, 1h) (default 5s) + --retry-backoff-factor int Factor multiplies the base duration after each failed retry (default 2) + --retry-backoff-max-duration duration Max retry backoff duration. Input needs to be a duration (e.g. 2m, 1h) (default 3m0s) + --retry-limit int Max number of allowed sync retries + --revision string Sync to a specific revision. Preserves parameter overrides + -l, --selector string Sync apps that match this label. Supports '=', '==', '!=', in, notin, exists & not exists. Matching apps must satisfy all of the specified label constraints. + --server-side Use server-side apply while syncing the application + --strategy string Sync strategy (one of: apply|hook) + --timeout uint Time out after this many seconds ``` ### Options inherited from parent commands diff --git a/manifests/core-install.yaml b/manifests/core-install.yaml index 26e886a8c22c8..946afb8a8ac3c 100644 --- a/manifests/core-install.yaml +++ b/manifests/core-install.yaml @@ -21868,6 +21868,12 @@ spec: key: controller.diff.server.side name: argocd-cmd-params-cm optional: true + - name: ARGOCD_IGNORE_NORMALIZER_JQ_TIMEOUT + valueFrom: + configMapKeyRef: + key: controller.ignore.normalizer.jq.timeout + name: argocd-cmd-params-cm + optional: true image: quay.io/argoproj/argocd:latest imagePullPolicy: Always name: argocd-application-controller diff --git a/manifests/ha/install.yaml b/manifests/ha/install.yaml index 2a61d15ffc9f1..c1d60412b387a 100644 --- a/manifests/ha/install.yaml +++ b/manifests/ha/install.yaml @@ -23813,6 +23813,12 @@ spec: key: controller.diff.server.side name: argocd-cmd-params-cm optional: true + - name: ARGOCD_IGNORE_NORMALIZER_JQ_TIMEOUT + valueFrom: + configMapKeyRef: + key: controller.ignore.normalizer.jq.timeout + name: argocd-cmd-params-cm + optional: true image: quay.io/argoproj/argocd:latest imagePullPolicy: Always name: argocd-application-controller diff --git a/manifests/ha/namespace-install.yaml b/manifests/ha/namespace-install.yaml index f1fe3b2ab1a75..a32b5d005a544 100644 --- a/manifests/ha/namespace-install.yaml +++ b/manifests/ha/namespace-install.yaml @@ -2899,6 +2899,12 @@ spec: key: controller.diff.server.side name: argocd-cmd-params-cm optional: true + - name: ARGOCD_IGNORE_NORMALIZER_JQ_TIMEOUT + valueFrom: + configMapKeyRef: + key: controller.ignore.normalizer.jq.timeout + name: argocd-cmd-params-cm + optional: true image: quay.io/argoproj/argocd:latest imagePullPolicy: Always name: argocd-application-controller diff --git a/manifests/install.yaml b/manifests/install.yaml index 678228d70c36c..6f107373ad140 100644 --- a/manifests/install.yaml +++ b/manifests/install.yaml @@ -22857,6 +22857,12 @@ spec: key: controller.diff.server.side name: argocd-cmd-params-cm optional: true + - name: ARGOCD_IGNORE_NORMALIZER_JQ_TIMEOUT + valueFrom: + configMapKeyRef: + key: controller.ignore.normalizer.jq.timeout + name: argocd-cmd-params-cm + optional: true image: quay.io/argoproj/argocd:latest imagePullPolicy: Always name: argocd-application-controller diff --git a/manifests/namespace-install.yaml b/manifests/namespace-install.yaml index 6655fb5e4c4cc..c2acc80e6cd4e 100644 --- a/manifests/namespace-install.yaml +++ b/manifests/namespace-install.yaml @@ -1943,6 +1943,12 @@ spec: key: controller.diff.server.side name: argocd-cmd-params-cm optional: true + - name: ARGOCD_IGNORE_NORMALIZER_JQ_TIMEOUT + valueFrom: + configMapKeyRef: + key: controller.ignore.normalizer.jq.timeout + name: argocd-cmd-params-cm + optional: true image: quay.io/argoproj/argocd:latest imagePullPolicy: Always name: argocd-application-controller From 575575a78a87c7fc97ce540124509f90c5733e05 Mon Sep 17 00:00:00 2001 From: Joe Bowbeer Date: Fri, 26 Apr 2024 16:41:32 -0700 Subject: [PATCH 043/206] Fix post-delete finalizer in appset (#18003) Signed-off-by: Joe Bowbeer --- .../controllers/applicationset_controller.go | 12 ++++ .../applicationset_controller_test.go | 65 +++++++++++++++++++ 2 files changed, 77 insertions(+) diff --git a/applicationset/controllers/applicationset_controller.go b/applicationset/controllers/applicationset_controller.go index 614b00ebc38fd..abd23746893e8 100644 --- a/applicationset/controllers/applicationset_controller.go +++ b/applicationset/controllers/applicationset_controller.go @@ -17,6 +17,7 @@ package controllers import ( "context" "fmt" + "strings" "time" "github.com/google/go-cmp/cmp" @@ -723,6 +724,17 @@ func (r *ApplicationSetReconciler) createOrUpdateInCluster(ctx context.Context, } } + // Preserve post-delete finalizers: + // https://github.com/argoproj/argo-cd/issues/17181 + for _, finalizer := range found.ObjectMeta.Finalizers { + if strings.HasPrefix(finalizer, argov1alpha1.PostDeleteFinalizerName) { + if generatedApp.Finalizers == nil { + generatedApp.Finalizers = []string{} + } + generatedApp.Finalizers = append(generatedApp.Finalizers, finalizer) + } + } + found.ObjectMeta.Annotations = generatedApp.Annotations found.ObjectMeta.Finalizers = generatedApp.Finalizers diff --git a/applicationset/controllers/applicationset_controller_test.go b/applicationset/controllers/applicationset_controller_test.go index 244b2797ac684..790682d98eead 100644 --- a/applicationset/controllers/applicationset_controller_test.go +++ b/applicationset/controllers/applicationset_controller_test.go @@ -1281,6 +1281,71 @@ func TestCreateOrUpdateInCluster(t *testing.T) { }, }, }, + }, { + name: "Ensure that argocd post-delete finalizers are preserved from an existing app", + appSet: v1alpha1.ApplicationSet{ + ObjectMeta: metav1.ObjectMeta{ + Name: "name", + Namespace: "namespace", + }, + Spec: v1alpha1.ApplicationSetSpec{ + Template: v1alpha1.ApplicationSetTemplate{ + Spec: v1alpha1.ApplicationSpec{ + Project: "project", + }, + }, + }, + }, + existingApps: []v1alpha1.Application{ + { + TypeMeta: metav1.TypeMeta{ + Kind: application.ApplicationKind, + APIVersion: "argoproj.io/v1alpha1", + }, + ObjectMeta: metav1.ObjectMeta{ + Name: "app1", + Namespace: "namespace", + ResourceVersion: "2", + Finalizers: []string{ + v1alpha1.PostDeleteFinalizerName, + v1alpha1.PostDeleteFinalizerName + "/mystage", + }, + }, + Spec: v1alpha1.ApplicationSpec{ + Project: "project", + }, + }, + }, + desiredApps: []v1alpha1.Application{ + { + ObjectMeta: metav1.ObjectMeta{ + Name: "app1", + }, + Spec: v1alpha1.ApplicationSpec{ + Project: "project", + }, + }, + }, + expected: []v1alpha1.Application{ + { + TypeMeta: metav1.TypeMeta{ + Kind: application.ApplicationKind, + APIVersion: "argoproj.io/v1alpha1", + }, + ObjectMeta: metav1.ObjectMeta{ + Name: "app1", + Namespace: "namespace", + ResourceVersion: "2", + Finalizers: []string{ + v1alpha1.PostDeleteFinalizerName, + v1alpha1.PostDeleteFinalizerName + "/mystage", + }, + }, + Spec: v1alpha1.ApplicationSpec{ + Project: "project", + }, + }, + }, }, } { From 5baba937216bfdce45e9671d67e4aff9c64b595c Mon Sep 17 00:00:00 2001 From: Lukas Aldershaab Date: Sun, 28 Apr 2024 11:20:16 +0200 Subject: [PATCH 044/206] chore: update notifications-engine to f4856710 (#17971) * update notifications-engine Signed-off-by: Lukas Peter Aldershaab * Fix build of conflicting git-urls libraries Signed-off-by: Lukas Peter Aldershaab * align telegrom dependency with notifications-engine Signed-off-by: Lukas Peter Aldershaab * fix: codegen Signed-off-by: pashakostohrys --------- Signed-off-by: Lukas Peter Aldershaab Signed-off-by: pashakostohrys Co-authored-by: pashakostohrys --- .../notifications/services/github.md | 25 ++++++----- .../notifications/services/opsgenie.md | 45 ++++++++++++++++--- .../notifications/services/telegram.md | 9 ++++ go.mod | 15 +++---- go.sum | 22 ++++----- util/notification/expression/repo/repo.go | 2 +- 6 files changed, 83 insertions(+), 35 deletions(-) diff --git a/docs/operator-manual/notifications/services/github.md b/docs/operator-manual/notifications/services/github.md index 1fa1a985d2682..36fbda5a100ba 100755 --- a/docs/operator-manual/notifications/services/github.md +++ b/docs/operator-manual/notifications/services/github.md @@ -4,21 +4,21 @@ The GitHub notification service changes commit status using [GitHub Apps](https://docs.github.com/en/developers/apps) and requires specifying the following settings: -* `appID` - the app id -* `installationID` - the app installation id -* `privateKey` - the app private key -* `enterpriseBaseURL` - optional URL, e.g. https://git.example.com/ +- `appID` - the app id +- `installationID` - the app installation id +- `privateKey` - the app private key +- `enterpriseBaseURL` - optional URL, e.g. https://git.example.com/ ## Configuration 1. Create a GitHub Apps using https://github.com/settings/apps/new -2. Change repository permissions to enable write commit statuses and/or deployments and/or pull requests comments -![2](https://user-images.githubusercontent.com/18019529/108397381-3ca57980-725b-11eb-8d17-5b8992dc009e.png) -3. Generate a private key, and download it automatically -![3](https://user-images.githubusercontent.com/18019529/108397926-d4a36300-725b-11eb-83fe-74795c8c3e03.png) -4. Install app to account -5. Store privateKey in `argocd-notifications-secret` Secret and configure GitHub integration -in `argocd-notifications-cm` ConfigMap +1. Change repository permissions to enable write commit statuses and/or deployments and/or pull requests comments + ![2](https://user-images.githubusercontent.com/18019529/108397381-3ca57980-725b-11eb-8d17-5b8992dc009e.png) +1. Generate a private key, and download it automatically + ![3](https://user-images.githubusercontent.com/18019529/108397926-d4a36300-725b-11eb-83fe-74795c8c3e03.png) +1. Install app to account +1. Store privateKey in `argocd-notifications-secret` Secret and configure GitHub integration + in `argocd-notifications-cm` ConfigMap ```yaml apiVersion: v1 @@ -77,6 +77,7 @@ template.app-deployed: | requiredContexts: [] autoMerge: true transientEnvironment: false + reference: v1.0.0 pullRequestComment: content: | Application {{.app.metadata.name}} is now running new version of deployments manifests. @@ -84,9 +85,11 @@ template.app-deployed: | ``` **Notes**: + - If the message is set to 140 characters or more, it will be truncated. - If `github.repoURLPath` and `github.revisionPath` are same as above, they can be omitted. - Automerge is optional and `true` by default for github deployments to ensure the requested ref is up to date with the default branch. Setting this option to `false` is required if you would like to deploy older refs in your default branch. For more information see the [GitHub Deployment API Docs](https://docs.github.com/en/rest/deployments/deployments?apiVersion=2022-11-28#create-a-deployment). - If `github.pullRequestComment.content` is set to 65536 characters or more, it will be truncated. +- Reference is optional. When set, it will be used as the ref to deploy. If not set, the revision will be used as the ref to deploy. diff --git a/docs/operator-manual/notifications/services/opsgenie.md b/docs/operator-manual/notifications/services/opsgenie.md index e92ee99756ab8..2cc1ebff62abf 100755 --- a/docs/operator-manual/notifications/services/opsgenie.md +++ b/docs/operator-manual/notifications/services/opsgenie.md @@ -7,14 +7,23 @@ To be able to send notifications with argocd-notifications you have to create an 3. Click "Teams" in the Menu on the left 4. Select the team that you want to notify 5. In the teams configuration menu select "Integrations" -6. click "Add Integration" in the top right corner +6. Click "Add Integration" in the top right corner 7. Select "API" integration 8. Give your integration a name, copy the "API key" and safe it somewhere for later -9. Make sure the checkboxes for "Create and Update Access" and "enable" are selected, disable the other checkboxes to remove unnecessary permissions -10. Click "Safe Integration" at the bottom -11. Check your browser for the correct server apiURL. If it is "app.opsgenie.com" then use the US/international api url `api.opsgenie.com` in the next step, otherwise use `api.eu.opsgenie.com` (European API). -12. You are finished with configuring Opsgenie. Now you need to configure argocd-notifications. Use the apiUrl, the team name and the apiKey to configure the Opsgenie integration in the `argocd-notifications-secret` secret. +9. Click "Edit" in the integration settings +10. Make sure the checkbox for "Create and Update Access" is selected, disable the other checkboxes to remove unnecessary permissions +11. Click "Save" at the bottom +12. Click "Turn on integration" in the top right corner +13. Check your browser for the correct server apiURL. If it is "app.opsgenie.com" then use the US/international api url `api.opsgenie.com` in the next step, otherwise use `api.eu.opsgenie.com` (European API). +14. You are finished with configuring Opsgenie. Now you need to configure argocd-notifications. Use the apiUrl, the team name and the apiKey to configure the Opsgenie integration in the `argocd-notifications-secret` secret. +15. You can find the example `argocd-notifications-cm` configuration at the below. +| **Option** | **Required** | **Type** | **Description** | **Example** | +| ------------- | ------------ | -------- | -------------------------------------------------------------------------------------------------------- | -------------------------------- | +| `description` | True | `string` | Description field of the alert that is generally used to provide a detailed information about the alert. | `Hello from Argo CD!` | +| `priority` | False | `string` | Priority level of the alert. Possible values are P1, P2, P3, P4 and P5. Default value is P3. | `P1` | +| `alias` | False | `string` | Client-defined identifier of the alert, that is also the key element of Alert De-Duplication. | `Life is too short for no alias` | +| `note` | False | `string` | Additional note that will be added while creating the alert. | `Error from Argo CD!` | ```yaml apiVersion: v1 @@ -26,4 +35,30 @@ data: apiUrl: apiKeys: : + template.opsgenie: | + message: | + [Argo CD] Application {{.app.metadata.name}} has a problem. + opsgenie: + description: | + Application: {{.app.metadata.name}} + Health Status: {{.app.status.health.status}} + Operation State Phase: {{.app.status.operationState.phase}} + Sync Status: {{.app.status.sync.status}} + priority: P1 + alias: {{.app.metadata.name}} + note: Error from Argo CD! + trigger.on-a-problem: | + - description: Application has a problem. + send: + - opsgenie + when: app.status.health.status == 'Degraded' or app.status.operationState.phase in ['Error', 'Failed'] or app.status.sync.status == 'Unknown' +``` + +16. Add annotation in application yaml file to enable notifications for specific Argo CD app. +```yaml + apiVersion: argoproj.io/v1alpha1 + kind: Application + metadata: + annotations: + notifications.argoproj.io/subscribe.on-a-problem.opsgenie: ``` \ No newline at end of file diff --git a/docs/operator-manual/notifications/services/telegram.md b/docs/operator-manual/notifications/services/telegram.md index 8612a09d1ca84..d370e4fc2359b 100755 --- a/docs/operator-manual/notifications/services/telegram.md +++ b/docs/operator-manual/notifications/services/telegram.md @@ -33,3 +33,12 @@ metadata: annotations: notifications.argoproj.io/subscribe.on-sync-succeeded.telegram: -1000000000000 ``` + +If your private chat contains threads, you can optionally specify a thread id by seperating it with a `|`: +```yaml +apiVersion: argoproj.io/v1alpha1 +kind: Application +metadata: + annotations: + notifications.argoproj.io/subscribe.on-sync-succeeded.telegram: -1000000000000|2 +``` diff --git a/go.mod b/go.mod index 2c513749293a5..4b8ec9e02714b 100644 --- a/go.mod +++ b/go.mod @@ -14,7 +14,7 @@ require ( github.com/alicebob/miniredis/v2 v2.30.4 github.com/antonmedv/expr v1.15.2 github.com/argoproj/gitops-engine v0.7.1-0.20240416142647-fbecbb86e412 - github.com/argoproj/notifications-engine v0.4.1-0.20240206192038-2daee6022f41 + github.com/argoproj/notifications-engine v0.4.1-0.20240403133627-f48567108f01 github.com/argoproj/pkg v0.13.7-0.20230626144333-d56162821bd1 github.com/aws/aws-sdk-go v1.50.8 github.com/bmatcuk/doublestar/v4 v4.6.0 @@ -22,6 +22,7 @@ require ( github.com/bradleyfalzon/ghinstallation/v2 v2.6.0 github.com/casbin/casbin/v2 v2.77.2 github.com/cespare/xxhash/v2 v2.2.0 + github.com/chainguard-dev/git-urls v1.0.2 github.com/coreos/go-oidc/v3 v3.6.0 github.com/cyphar/filepath-securejoin v0.2.4 github.com/dustin/go-humanize v1.0.1 @@ -75,7 +76,6 @@ require ( github.com/spf13/pflag v1.0.5 github.com/stretchr/testify v1.8.4 github.com/valyala/fasttemplate v1.2.2 - github.com/whilp/git-urls v1.0.0 github.com/xanzy/go-gitlab v0.91.1 github.com/yuin/gopher-lua v1.1.0 go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.42.0 @@ -106,7 +106,7 @@ require ( oras.land/oras-go/v2 v2.3.0 sigs.k8s.io/controller-runtime v0.14.7 sigs.k8s.io/structured-merge-diff/v4 v4.4.1 - sigs.k8s.io/yaml v1.3.0 + sigs.k8s.io/yaml v1.4.0 ) require ( @@ -254,7 +254,7 @@ require ( github.com/shopspring/decimal v1.2.0 // indirect github.com/skeema/knownhosts v1.2.1 // indirect github.com/slack-go/slack v0.12.2 // indirect - github.com/spf13/cast v1.5.1 // indirect + github.com/spf13/cast v1.6.0 // indirect github.com/stretchr/objx v0.5.0 // indirect github.com/valyala/bytebufferpool v1.0.0 // indirect github.com/vmihailenco/go-tinylfu v0.2.2 // indirect @@ -272,7 +272,7 @@ require ( golang.org/x/net v0.23.0 golang.org/x/sys v0.19.0 // indirect golang.org/x/text v0.14.0 // indirect - golang.org/x/time v0.3.0 + golang.org/x/time v0.5.0 golang.org/x/tools v0.13.0 // indirect gomodules.xyz/envconfig v1.3.1-0.20190308184047-426f31af0d45 // indirect gomodules.xyz/jsonpatch/v2 v2.2.0 // indirect @@ -297,12 +297,11 @@ replace ( // https://github.com/golang/go/issues/33546#issuecomment-519656923 github.com/go-check/check => github.com/go-check/check v0.0.0-20180628173108-788fd7840127 + github.com/go-telegram-bot-api/telegram-bot-api/v5 => github.com/OvyFlash/telegram-bot-api/v5 v5.0.0-20240108230938-63e5c59035bf + github.com/golang/protobuf => github.com/golang/protobuf v1.5.4 github.com/grpc-ecosystem/grpc-gateway => github.com/grpc-ecosystem/grpc-gateway v1.16.0 - // Avoid CVE-2023-46402 - github.com/whilp/git-urls => github.com/chainguard-dev/git-urls v1.0.2 - // Avoid CVE-2022-3064 gopkg.in/yaml.v2 => gopkg.in/yaml.v2 v2.4.0 diff --git a/go.sum b/go.sum index 9dbd5324f04d6..7c719fdff0d1f 100644 --- a/go.sum +++ b/go.sum @@ -653,6 +653,8 @@ github.com/Microsoft/go-winio v0.6.1 h1:9/kr64B9VUZrLm5YYwbGtUJnMgqWVOdUAXu6Migc github.com/Microsoft/go-winio v0.6.1/go.mod h1:LRdKpFKfdobln8UmuiYcKPot9D2v6svN5+sAH+4kjUM= github.com/NYTimes/gziphandler v0.0.0-20170623195520-56545f4a5d46/go.mod h1:3wb06e3pkSAbeQ52E9H9iFoQsEEwGN64994WTCIhntQ= github.com/OneOfOne/xxhash v1.2.2/go.mod h1:HSdplMjZKSmBqAxg5vPj2TmRDmfkzw+cTzAElWljhcU= +github.com/OvyFlash/telegram-bot-api/v5 v5.0.0-20240108230938-63e5c59035bf h1:a7VKhbjKYPO8twGy/1AxMpM2Fp0qT7bf25fmCVMVu4s= +github.com/OvyFlash/telegram-bot-api/v5 v5.0.0-20240108230938-63e5c59035bf/go.mod h1:A2S0CWkNylc2phvKXWBBdD3K0iGnDBGbzRpISP2zBl8= github.com/PagerDuty/go-pagerduty v1.7.0 h1:S1NcMKECxT5hJwV4VT+QzeSsSiv4oWl1s2821dUqG/8= github.com/PagerDuty/go-pagerduty v1.7.0/go.mod h1:PuFyJKRz1liIAH4h5KVXVD18Obpp1ZXRdxHvmGXooro= github.com/ProtonMail/go-crypto v0.0.0-20230217124315-7d5c6f04bbb8/go.mod h1:I0gYDMZ6Z5GRU7l58bNFSkPTFN6Yl12dsUlAZ8xy98g= @@ -695,8 +697,8 @@ github.com/apache/thrift v0.16.0/go.mod h1:PHK3hniurgQaNMZYaCLEqXKsYK8upmhPbmdP2 github.com/appscode/go v0.0.0-20191119085241-0887d8ec2ecc/go.mod h1:OawnOmAL4ZX3YaPdN+8HTNwBveT1jMsqP74moa9XUbE= github.com/argoproj/gitops-engine v0.7.1-0.20240416142647-fbecbb86e412 h1:je2wJpWtaoS55mA5MBPCeDnKMeF42pkxO9Oa5KbWrdg= github.com/argoproj/gitops-engine v0.7.1-0.20240416142647-fbecbb86e412/go.mod h1:gWE8uROi7hIkWGNAVM+8FWkMfo0vZ03SLx/aFw/DBzg= -github.com/argoproj/notifications-engine v0.4.1-0.20240206192038-2daee6022f41 h1:PQE8LbcbRHdtnQzeEWwVU2QHXACKOA30yS3No5HSoTQ= -github.com/argoproj/notifications-engine v0.4.1-0.20240206192038-2daee6022f41/go.mod h1:TsyusmXQWIL0ST7YMRG/ered7WlWDmbmnPpXnS2LJmM= +github.com/argoproj/notifications-engine v0.4.1-0.20240403133627-f48567108f01 h1:/V8+HM0VPPTrdjTwUrkIj5a+SjaU//tJwfIXJ1QAOvg= +github.com/argoproj/notifications-engine v0.4.1-0.20240403133627-f48567108f01/go.mod h1:N0A4sEws2soZjEpY4hgZpQS8mRIEw6otzwfkgc3g9uQ= github.com/argoproj/pkg v0.13.7-0.20230626144333-d56162821bd1 h1:qsHwwOJ21K2Ao0xPju1sNuqphyMnMYkyB3ZLoLtxWpo= github.com/argoproj/pkg v0.13.7-0.20230626144333-d56162821bd1/go.mod h1:CZHlkyAD1/+FbEn6cB2DQTj48IoLGvEYsWEvtzP3238= github.com/armon/circbuf v0.0.0-20150827004946-bbbad097214e/go.mod h1:3U/XgcO3hCbHZ8TKRvWD2dDTCfh9M9ya+I9JpbB7O8o= @@ -901,8 +903,8 @@ github.com/fogleman/gg v1.3.0/go.mod h1:R/bRT+9gY/C5z7JzPU0zXsXHKM4/ayA+zqcVNZzP github.com/franela/goblin v0.0.0-20200105215937-c9ffbefa60db/go.mod h1:7dvUGVsVBjqR7JHJk0brhHOZYGmfBYOrK0ZhYMEtBr4= github.com/franela/goreq v0.0.0-20171204163338-bcd34c9993f8/go.mod h1:ZhphrRTfi2rbfLwlschooIH4+wKKDR4Pdxhh+TRoA20= github.com/frankban/quicktest v1.2.2/go.mod h1:Qh/WofXFeiAFII1aEBu529AtJo6Zg2VHscnEsbBnJ20= -github.com/frankban/quicktest v1.14.4 h1:g2rn0vABPOOXmZUj+vbmUp0lPoXEMuhTpIluN0XL9UY= -github.com/frankban/quicktest v1.14.4/go.mod h1:4ptaffx2x8+WTWXmUCuVU6aPUX1/Mz7zb5vbUoiM6w0= +github.com/frankban/quicktest v1.14.6 h1:7Xjx+VpznH+oBnejlPUj8oUpdxnVs4f8XU8WnHkI4W8= +github.com/frankban/quicktest v1.14.6/go.mod h1:4ptaffx2x8+WTWXmUCuVU6aPUX1/Mz7zb5vbUoiM6w0= github.com/fsnotify/fsnotify v1.4.7/go.mod h1:jwhsz4b93w/PPRr/qN1Yymfu8t87LnFCMoQvtojpjFo= github.com/fsnotify/fsnotify v1.4.9/go.mod h1:znqG4EE+3YCdAaPaxE2ZRY/06pZUdp0tY4IgpuI1SZQ= github.com/fsnotify/fsnotify v1.6.0 h1:n+5WquG0fcWoWp6xPWfHdbskMCQaFnG6PfBrh1Ky4HY= @@ -1018,8 +1020,6 @@ github.com/go-redis/cache/v9 v9.0.0/go.mod h1:cMwi1N8ASBOufbIvk7cdXe2PbPjK/WMRL9 github.com/go-sql-driver/mysql v1.4.0/go.mod h1:zAC/RDZ24gD3HViQzih4MyKcchzm+sOG5ZlKdlhCg5w= github.com/go-stack/stack v1.8.0/go.mod h1:v0f6uXyyMGvRgIKkXu+yp6POWl0qKG85gN/melR3HDY= github.com/go-task/slim-sprig v0.0.0-20210107165309-348f09dbbbc0/go.mod h1:fyg7847qk6SyHyPtNmDHnmrv/HOrqktSC+C9fM+CJOE= -github.com/go-telegram-bot-api/telegram-bot-api/v5 v5.5.1 h1:wG8n/XJQ07TmjbITcGiUaOtXxdrINDz1b0J1w0SzqDc= -github.com/go-telegram-bot-api/telegram-bot-api/v5 v5.5.1/go.mod h1:A2S0CWkNylc2phvKXWBBdD3K0iGnDBGbzRpISP2zBl8= github.com/go-test/deep v1.0.4 h1:u2CU3YKy9I2pmu9pX0eq50wCgjfGIt539SqR7FbHiho= github.com/go-test/deep v1.0.4/go.mod h1:wGDj63lr65AM2AQyKZd/NYHGb0R+1RLqB8NKt3aSFNA= github.com/gobuffalo/attrs v0.0.0-20190224210810-a9411de4debd/go.mod h1:4duuawTqi2wkkpB4ePgWMaai6/Kc6WEz83bhFwpHzj0= @@ -1650,8 +1650,8 @@ github.com/spf13/afero v1.3.3/go.mod h1:5KUK8ByomD5Ti5Artl0RtHeI5pTF7MIDuXL3yY52 github.com/spf13/afero v1.6.0/go.mod h1:Ai8FlHk4v/PARR026UzYexafAt9roJ7LcLMAmO6Z93I= github.com/spf13/afero v1.9.2/go.mod h1:iUV7ddyEEZPO5gA3zD4fJt6iStLlL+Lg4m2cihcDf8Y= github.com/spf13/cast v1.3.1/go.mod h1:Qx5cxh0v+4UWYiBimWS+eyWzqEqokIECu5etghLkUJE= -github.com/spf13/cast v1.5.1 h1:R+kOtfhWQE6TVQzY+4D7wJLBgkdVasCEFxSUBYBYIlA= -github.com/spf13/cast v1.5.1/go.mod h1:b9PdjNptOpzXr7Rq1q9gJML/2cdGQAo69NKzQ10KN48= +github.com/spf13/cast v1.6.0 h1:GEiTHELF+vaR5dhz3VqZfFSzZjYbgeKDpBxQVS4GYJ0= +github.com/spf13/cast v1.6.0/go.mod h1:ancEpBxwJDODSW/UG4rDrAqiKolqNNh2DX3mk86cAdo= github.com/spf13/cobra v0.0.3/go.mod h1:1l0Ry5zgKvJasoi3XT1TypsSe7PqH0Sj9dhYf7v3XqQ= github.com/spf13/cobra v1.7.0 h1:hyqWnYt1ZQShIddO5kBpj3vu05/++x6tJ6dg8EC572I= github.com/spf13/cobra v1.7.0/go.mod h1:uLxZILRyS/50WlhOIKD7W6V5bgeIt+4sICxh6uRMrb0= @@ -2186,8 +2186,9 @@ golang.org/x/time v0.0.0-20190308202827-9d24e82272b4/go.mod h1:tRJNPiyCQ0inRvYxb golang.org/x/time v0.0.0-20191024005414-555d28b269f0/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ= golang.org/x/time v0.0.0-20220922220347-f3bd1da661af/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ= golang.org/x/time v0.1.0/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ= -golang.org/x/time v0.3.0 h1:rg5rLMjNzMS1RkNLzCG38eapWhnYLFYXDXj2gOlr8j4= golang.org/x/time v0.3.0/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ= +golang.org/x/time v0.5.0 h1:o7cqy6amK/52YcAKIPlM3a+Fpj35zvRj2TP+e1xFSfk= +golang.org/x/time v0.5.0/go.mod h1:3BpzKBy/shNhVucY/MWOyx10tF3SFh9QdLuxbVysPQM= golang.org/x/tools v0.0.0-20180221164845-07fd8470d635/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ= golang.org/x/tools v0.0.0-20180525024113-a5b4c53f6e8b/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ= golang.org/x/tools v0.0.0-20180828015842-6cd1fcedba52/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ= @@ -2726,6 +2727,7 @@ sigs.k8s.io/structured-merge-diff/v4 v4.4.1 h1:150L+0vs/8DA78h1u02ooW1/fFq/Lwr+s sigs.k8s.io/structured-merge-diff/v4 v4.4.1/go.mod h1:N8hJocpFajUSSeSJ9bOZ77VzejKZaXsTtZo4/u7Io08= sigs.k8s.io/yaml v1.1.0/go.mod h1:UJmg0vDUVViEyp3mgSv9WPwZCDxu4rQW1olrI1uml+o= sigs.k8s.io/yaml v1.2.0/go.mod h1:yfXDCHCao9+ENCvLSE62v9VSji2MKu5jeNfTrofGhJc= -sigs.k8s.io/yaml v1.3.0 h1:a2VclLzOGrwOHDiV8EfBGhvjHvP46CtW5j6POvhYGGo= sigs.k8s.io/yaml v1.3.0/go.mod h1:GeOyir5tyXNByN85N/dRIT9es5UQNerPYEKK56eTBm8= +sigs.k8s.io/yaml v1.4.0 h1:Mk1wCc2gy/F0THH0TAp1QYyJNzRm2KCLy3o5ASXVI5E= +sigs.k8s.io/yaml v1.4.0/go.mod h1:Ejl7/uTz7PSA4eKMyQCUTnhZYNmLIl+5c2lQPGR2BPY= sourcegraph.com/sourcegraph/appdash v0.0.0-20190731080439-ebfcffb1b5c0/go.mod h1:hI742Nqp5OhwiqlzhgfbWU4mW4yO10fP+LoT9WOswdU= diff --git a/util/notification/expression/repo/repo.go b/util/notification/expression/repo/repo.go index 8456774f0869a..04bd23a45f275 100644 --- a/util/notification/expression/repo/repo.go +++ b/util/notification/expression/repo/repo.go @@ -13,7 +13,7 @@ import ( "github.com/argoproj/argo-cd/v2/util/notification/expression/shared" "github.com/argoproj/notifications-engine/pkg/util/text" - giturls "github.com/whilp/git-urls" + giturls "github.com/chainguard-dev/git-urls" "k8s.io/apimachinery/pkg/apis/meta/v1/unstructured" "github.com/argoproj/argo-cd/v2/pkg/apis/application/v1alpha1" From e6200cae12b0a9d82df9bb0e82a970dbe3716700 Mon Sep 17 00:00:00 2001 From: Takumi Sue <23391543+mikutas@users.noreply.github.com> Date: Mon, 29 Apr 2024 08:26:12 +0900 Subject: [PATCH 045/206] fix(appset): add debug logs around deleting ownerReferences and add warning docs about policy behavior (#18006) * chore(appset): add logs for debug Signed-off-by: mikutas <23391543+mikutas@users.noreply.github.com> * fix(appset): remove finalizer regardless with deleteAllowed Signed-off-by: mikutas <23391543+mikutas@users.noreply.github.com> * docs: update about appset policy Signed-off-by: mikutas <23391543+mikutas@users.noreply.github.com> * fix: wrong log message Signed-off-by: mikutas <23391543+mikutas@users.noreply.github.com> * fix: log messages Signed-off-by: mikutas <23391543+mikutas@users.noreply.github.com> * fix: log message Co-authored-by: Ishita Sequeira <46771830+ishitasequeira@users.noreply.github.com> Signed-off-by: Takumi Sue <23391543+mikutas@users.noreply.github.com> * docs: add explanation Signed-off-by: mikutas <23391543+mikutas@users.noreply.github.com> --------- Signed-off-by: mikutas <23391543+mikutas@users.noreply.github.com> Signed-off-by: Takumi Sue <23391543+mikutas@users.noreply.github.com> Co-authored-by: Ishita Sequeira <46771830+ishitasequeira@users.noreply.github.com> --- .../controllers/applicationset_controller.go | 12 ++++--- .../Controlling-Resource-Modification.md | 32 ++++++++++++++++--- 2 files changed, 35 insertions(+), 9 deletions(-) diff --git a/applicationset/controllers/applicationset_controller.go b/applicationset/controllers/applicationset_controller.go index abd23746893e8..10e2ea35573af 100644 --- a/applicationset/controllers/applicationset_controller.go +++ b/applicationset/controllers/applicationset_controller.go @@ -111,15 +111,19 @@ func (r *ApplicationSetReconciler) Reconcile(ctx context.Context, req ctrl.Reque // Do not attempt to further reconcile the ApplicationSet if it is being deleted. if applicationSetInfo.ObjectMeta.DeletionTimestamp != nil { + appsetName := applicationSetInfo.ObjectMeta.Name + logCtx.Debugf("DeletionTimestamp is set on %s", appsetName) deleteAllowed := utils.DefaultPolicy(applicationSetInfo.Spec.SyncPolicy, r.Policy, r.EnablePolicyOverride).AllowDelete() if !deleteAllowed { + logCtx.Debugf("ApplicationSet policy does not allow to delete") if err := r.removeOwnerReferencesOnDeleteAppSet(ctx, applicationSetInfo); err != nil { return ctrl.Result{}, err } - controllerutil.RemoveFinalizer(&applicationSetInfo, argov1alpha1.ResourcesFinalizerName) - if err := r.Update(ctx, &applicationSetInfo); err != nil { - return ctrl.Result{}, err - } + logCtx.Debugf("ownerReferences referring %s is deleted from generated applications", appsetName) + } + controllerutil.RemoveFinalizer(&applicationSetInfo, argov1alpha1.ResourcesFinalizerName) + if err := r.Update(ctx, &applicationSetInfo); err != nil { + return ctrl.Result{}, err } return ctrl.Result{}, nil } diff --git a/docs/operator-manual/applicationset/Controlling-Resource-Modification.md b/docs/operator-manual/applicationset/Controlling-Resource-Modification.md index d72cee60ad401..ae65fa3462e5b 100644 --- a/docs/operator-manual/applicationset/Controlling-Resource-Modification.md +++ b/docs/operator-manual/applicationset/Controlling-Resource-Modification.md @@ -32,16 +32,19 @@ spec: ``` -- Policy `create-only`: Prevents ApplicationSet controller from modifying or deleting Applications. Prevents Application controller from deleting Applications according to [ownerReferences](https://kubernetes.io/docs/concepts/overview/working-with-objects/owners-dependents/). -- Policy `create-update`: Prevents ApplicationSet controller from deleting Applications. Update is allowed. Prevents Application controller from deleting Applications according to [ownerReferences](https://kubernetes.io/docs/concepts/overview/working-with-objects/owners-dependents/). +- Policy `create-only`: Prevents ApplicationSet controller from modifying or deleting Applications. **WARNING**: It doesn't prevent Application controller from deleting Applications according to [ownerReferences](https://kubernetes.io/docs/concepts/overview/working-with-objects/owners-dependents/) when deleting ApplicationSet. +- Policy `create-update`: Prevents ApplicationSet controller from deleting Applications. Update is allowed. **WARNING**: It doesn't prevent Application controller from deleting Applications according to [ownerReferences](https://kubernetes.io/docs/concepts/overview/working-with-objects/owners-dependents/) when deleting ApplicationSet. - Policy `create-delete`: Prevents ApplicationSet controller from modifying Applications. Delete is allowed. - Policy `sync`: Update and Delete are allowed. If the controller parameter `--policy` is set, it takes precedence on the field `applicationsSync`. It is possible to allow per ApplicationSet sync policy by setting variable `ARGOCD_APPLICATIONSET_CONTROLLER_ENABLE_POLICY_OVERRIDE` to argocd-cmd-params-cm `applicationsetcontroller.enable.policy.override` or directly with controller parameter `--enable-policy-override` (default to `false`). -### Controller parameter +### Policy - `create-only`: Prevent ApplicationSet controller from modifying and deleting Applications + +To allow the ApplicationSet controller to *create* `Application` resources, but prevent any further modification, such as *deletion*, or modification of Application fields, add this parameter in the ApplicationSet controller: + +**WARNING**: "*deletion*" indicates the case as the result of comparing generated Application between before and after, there are Applications which no longer exist. It doesn't indicate the case Applications are deleted according to ownerReferences to ApplicationSet. See [How to prevent Application controller from deleting Applications when deleting ApplicationSet](#how-to-prevent-application-controller-from-deleting-applications-when-deleting-applicationset) -To allow the ApplicationSet controller to *create* `Application` resources, but prevent any further modification, such as deletion, or modification of Application fields, add this parameter in the ApplicationSet controller: ``` --policy create-only ``` @@ -57,9 +60,12 @@ spec: applicationsSync: create-only ``` -## Policy - `create-update`: Prevent ApplicationSet controller from deleting Applications +### Policy - `create-update`: Prevent ApplicationSet controller from deleting Applications To allow the ApplicationSet controller to create or modify `Application` resources, but prevent Applications from being deleted, add the following parameter to the ApplicationSet controller `Deployment`: + +**WARNING**: "*deletion*" indicates the case as the result of comparing generated Application between before and after, there are Applications which no longer exist. It doesn't indicate the case Applications are deleted according to ownerReferences to ApplicationSet. See [How to prevent Application controller from deleting Applications when deleting ApplicationSet](#how-to-prevent-application-controller-from-deleting-applications-when-deleting-applicationset) + ``` --policy create-update ``` @@ -77,6 +83,22 @@ spec: applicationsSync: create-update ``` +### How to prevent Application controller from deleting Applications when deleting ApplicationSet + +By default, `create-only` and `create-update` policy isn't effective against preventing deletion of Applications when deleting ApplicationSet. +You must set the finalizer to ApplicationSet to prevent deletion in such case, and use background cascading deletion. +If you use foreground cascading deletion, there's no guarantee to preserve applications. + +```yaml +apiVersion: argoproj.io/v1alpha1 +kind: ApplicationSet +metadata: + finalizers: + - resources-finalizer.argocd.argoproj.io +spec: + # (...) +``` + ## Ignore certain changes to Applications The ApplicationSet spec includes an `ignoreApplicationDifferences` field, which allows you to specify which fields of From c204f247d3ec1fb4381dc17fc7404d5fcc33e966 Mon Sep 17 00:00:00 2001 From: Ishita Sequeira <46771830+ishitasequeira@users.noreply.github.com> Date: Mon, 29 Apr 2024 04:23:49 -0400 Subject: [PATCH 046/206] feat(cli): add support for multiple sources to sync command (#17808) * update sync command Signed-off-by: ishitasequeira * use arrays instead of map to display ApplicationManifetQuery fields in swagger Signed-off-by: ishitasequeira * rebase and update logic for sync command Signed-off-by: ishitasequeira * update conditions Signed-off-by: ishitasequeira * update displayRevisions on OperationState Signed-off-by: ishitasequeira * remove rerunreport file Signed-off-by: ishitasequeira * fix index 0 out of bounds error Signed-off-by: ishitasequeira * Address comments Signed-off-by: ishitasequeira * fix codegen Signed-off-by: ishitasequeira * rename GetSourcePtrBySourceIndex to GetSourcePtrByIndex Signed-off-by: ishitasequeira * rename GetSourcePtrBySourcePosition to GetSourcePtrByPosition Signed-off-by: ishitasequeira * rebase with master and resolve conflicts Signed-off-by: ishitasequeira * fix codegen Signed-off-by: ishitasequeira * Address feedback and add tests Signed-off-by: ishitasequeira * fix unit test Signed-off-by: ishitasequeira --------- Signed-off-by: ishitasequeira --- assets/swagger.json | 13 + cmd/argocd/commands/app.go | 56 ++- cmd/util/app.go | 14 +- docs/user-guide/commands/argocd_app_sync.md | 5 + pkg/apiclient/application/application.pb.go | 488 +++++++++++++------- pkg/apis/application/v1alpha1/types.go | 11 +- pkg/apis/application/v1alpha1/types_test.go | 47 ++ reposerver/apiclient/repository.pb.go | 322 +++++++------ reposerver/repository/repository.go | 2 +- reposerver/repository/repository.proto | 1 + server/application/application.go | 102 +++- server/application/application.proto | 2 + server/application/application_test.go | 124 +++++ server/repository/repository_test.go | 4 +- util/notification/expression/repo/repo.go | 2 +- 15 files changed, 833 insertions(+), 360 deletions(-) diff --git a/assets/swagger.json b/assets/swagger.json index 1d32691c7389e..edb8da0350657 100644 --- a/assets/swagger.json +++ b/assets/swagger.json @@ -4275,6 +4275,19 @@ "revision": { "type": "string" }, + "revisions": { + "type": "array", + "items": { + "type": "string" + } + }, + "sourcePositions": { + "type": "array", + "items": { + "type": "string", + "format": "int64" + } + }, "strategy": { "$ref": "#/definitions/v1alpha1SyncStrategy" }, diff --git a/cmd/argocd/commands/app.go b/cmd/argocd/commands/app.go index 5709821d41065..1d7ed56668423 100644 --- a/cmd/argocd/commands/app.go +++ b/cmd/argocd/commands/app.go @@ -881,7 +881,7 @@ func NewApplicationUnsetCommand(clientOpts *argocdclient.ClientOptions) *cobra.C } } - source := app.Spec.GetSourcePtr(sourcePosition) + source := app.Spec.GetSourcePtrByPosition(sourcePosition) updated, nothingToUnset := unset(source, opts) if nothingToUnset { @@ -1809,6 +1809,8 @@ func printTreeViewDetailed(nodeMapping map[string]argoappv1.ResourceNode, parent func NewApplicationSyncCommand(clientOpts *argocdclient.ClientOptions) *cobra.Command { var ( revision string + revisions []string + sourcePositions []int64 resources []string labels []string selector string @@ -1851,6 +1853,9 @@ func NewApplicationSyncCommand(clientOpts *argocdclient.ClientOptions) *cobra.Co argocd app sync -l '!app.kubernetes.io/instance' argocd app sync -l 'app.kubernetes.io/instance notin (my-app,other-app)' + # Sync a multi-source application for specific revision of specific sources + argocd app manifests my-app --revisions 0.0.1 --source-positions 1 --revisions 0.0.2 --source-positions 2 + # Sync a specific resource # Resource should be formatted as GROUP:KIND:NAME. If no GROUP is specified then :KIND:NAME argocd app sync my-app --resource :Service:my-service @@ -1869,6 +1874,21 @@ func NewApplicationSyncCommand(clientOpts *argocdclient.ClientOptions) *cobra.Co if len(args) > 1 && selector != "" { log.Fatal("Cannot use selector option when application name(s) passed as argument(s)") } + + if len(args) != 1 && (len(revisions) > 0 || len(sourcePositions) > 0) { + log.Fatal("Cannot use --revisions and --source-positions options when 0 or more than 1 application names are passed as argument(s)") + } + + if len(revisions) != len(sourcePositions) { + log.Fatal("While using --revisions and --source-positions, length of values for both flags should be same.") + } + + for _, pos := range sourcePositions { + if pos <= 0 { + log.Fatal("source-position cannot be less than or equal to 0, Counting starts at 1") + } + } + acdClient := headless.NewClientOrDie(clientOpts, c) conn, appIf := acdClient.NewApplicationClientOrDie() defer argoio.Close(conn) @@ -1910,9 +1930,11 @@ func NewApplicationSyncCommand(clientOpts *argocdclient.ClientOptions) *cobra.Co if len(selectedLabels) > 0 { q := application.ApplicationManifestQuery{ - Name: &appName, - AppNamespace: &appNs, - Revision: &revision, + Name: &appName, + AppNamespace: &appNs, + Revision: &revision, + Revisions: revisions, + SourcePositions: sourcePositions, } res, err := appIf.GetManifests(ctx, &q) @@ -1955,7 +1977,7 @@ func NewApplicationSyncCommand(clientOpts *argocdclient.ClientOptions) *cobra.Co if app.Spec.HasMultipleSources() { if revision != "" { - log.Fatal("argocd cli does not work on multi-source app with --revision flag") + log.Fatal("argocd cli does not work on multi-source app with --revision flag. Use --revisions and --source-position instead.") return } @@ -2020,15 +2042,17 @@ func NewApplicationSyncCommand(clientOpts *argocdclient.ClientOptions) *cobra.Co } syncReq := application.ApplicationSyncRequest{ - Name: &appName, - AppNamespace: &appNs, - DryRun: &dryRun, - Revision: &revision, - Resources: filteredResources, - Prune: &prune, - Manifests: localObjsStrings, - Infos: getInfos(infos), - SyncOptions: syncOptionsFactory(), + Name: &appName, + AppNamespace: &appNs, + DryRun: &dryRun, + Revision: &revision, + Resources: filteredResources, + Prune: &prune, + Manifests: localObjsStrings, + Infos: getInfos(infos), + SyncOptions: syncOptionsFactory(), + Revisions: revisions, + SourcePositions: sourcePositions, } switch strategy { @@ -2125,6 +2149,8 @@ func NewApplicationSyncCommand(clientOpts *argocdclient.ClientOptions) *cobra.Co command.Flags().StringVarP(&output, "output", "o", "wide", "Output format. One of: json|yaml|wide|tree|tree=detailed") command.Flags().StringVarP(&appNamespace, "app-namespace", "N", "", "Only sync an application in namespace") command.Flags().DurationVar(&ignoreNormalizerOpts.JQExecutionTimeout, "ignore-normalizer-jq-execution-timeout", normalizers.DefaultJQExecutionTimeout, "Set ignore normalizer JQ execution timeout") + command.Flags().StringArrayVar(&revisions, "revisions", []string{}, "Show manifests at specific revisions for source position in source-positions") + command.Flags().Int64SliceVar(&sourcePositions, "source-positions", []int64{}, "List of source positions. Default is empty array. Counting start at 1.") return command } @@ -2507,7 +2533,7 @@ func setParameterOverrides(app *argoappv1.Application, parameters []string, sour if len(parameters) == 0 { return } - source := app.Spec.GetSourcePtr(sourcePosition) + source := app.Spec.GetSourcePtrByPosition(sourcePosition) var sourceType argoappv1.ApplicationSourceType if st, _ := source.ExplicitType(); st != nil { sourceType = *st diff --git a/cmd/util/app.go b/cmd/util/app.go index b1693689004c4..cfb356e293afc 100644 --- a/cmd/util/app.go +++ b/cmd/util/app.go @@ -139,21 +139,21 @@ func AddAppFlags(command *cobra.Command, opts *AppOptions) { command.Flags().StringVar(&opts.ref, "ref", "", "Ref is reference to another source within sources field") } -func SetAppSpecOptions(flags *pflag.FlagSet, spec *argoappv1.ApplicationSpec, appOpts *AppOptions, index int) int { +func SetAppSpecOptions(flags *pflag.FlagSet, spec *argoappv1.ApplicationSpec, appOpts *AppOptions, sourcePosition int) int { visited := 0 if flags == nil { return visited } - source := spec.GetSourcePtr(index) + source := spec.GetSourcePtrByPosition(sourcePosition) if source == nil { source = &argoappv1.ApplicationSource{} } source, visited = ConstructSource(source, *appOpts, flags) if spec.HasMultipleSources() { - if index == 0 { - spec.Sources[index] = *source - } else if index > 0 { - spec.Sources[index-1] = *source + if sourcePosition == 0 { + spec.Sources[sourcePosition] = *source + } else if sourcePosition > 0 { + spec.Sources[sourcePosition-1] = *source } else { spec.Sources = append(spec.Sources, *source) } @@ -428,7 +428,7 @@ func SetParameterOverrides(app *argoappv1.Application, parameters []string, inde if len(parameters) == 0 { return } - source := app.Spec.GetSourcePtr(index) + source := app.Spec.GetSourcePtrByIndex(index) var sourceType argoappv1.ApplicationSourceType if st, _ := source.ExplicitType(); st != nil { sourceType = *st diff --git a/docs/user-guide/commands/argocd_app_sync.md b/docs/user-guide/commands/argocd_app_sync.md index 66df10ba94762..1dc6f48bd16ba 100644 --- a/docs/user-guide/commands/argocd_app_sync.md +++ b/docs/user-guide/commands/argocd_app_sync.md @@ -24,6 +24,9 @@ argocd app sync [APPNAME... | -l selector | --project project-name] [flags] argocd app sync -l '!app.kubernetes.io/instance' argocd app sync -l 'app.kubernetes.io/instance notin (my-app,other-app)' + # Sync a multi-source application for specific revision of specific sources + argocd app manifests my-app --revisions 0.0.1 --source-positions 1 --revisions 0.0.2 --source-positions 2 + # Sync a specific resource # Resource should be formatted as GROUP:KIND:NAME. If no GROUP is specified then :KIND:NAME argocd app sync my-app --resource :Service:my-service @@ -61,8 +64,10 @@ argocd app sync [APPNAME... | -l selector | --project project-name] [flags] --retry-backoff-max-duration duration Max retry backoff duration. Input needs to be a duration (e.g. 2m, 1h) (default 3m0s) --retry-limit int Max number of allowed sync retries --revision string Sync to a specific revision. Preserves parameter overrides + --revisions stringArray Show manifests at specific revisions for source position in source-positions -l, --selector string Sync apps that match this label. Supports '=', '==', '!=', in, notin, exists & not exists. Matching apps must satisfy all of the specified label constraints. --server-side Use server-side apply while syncing the application + --source-positions int64Slice List of source positions. Default is empty array. Counting start at 1. (default []) --strategy string Sync strategy (one of: apply|hook) --timeout uint Time out after this many seconds ``` diff --git a/pkg/apiclient/application/application.pb.go b/pkg/apiclient/application/application.pb.go index 716df701ae6ec..2f87272d3ed3e 100644 --- a/pkg/apiclient/application/application.pb.go +++ b/pkg/apiclient/application/application.pb.go @@ -973,6 +973,8 @@ type ApplicationSyncRequest struct { SyncOptions *SyncOptions `protobuf:"bytes,11,opt,name=syncOptions" json:"syncOptions,omitempty"` AppNamespace *string `protobuf:"bytes,12,opt,name=appNamespace" json:"appNamespace,omitempty"` Project *string `protobuf:"bytes,13,opt,name=project" json:"project,omitempty"` + SourcePositions []int64 `protobuf:"varint,14,rep,name=sourcePositions" json:"sourcePositions,omitempty"` + Revisions []string `protobuf:"bytes,15,rep,name=revisions" json:"revisions,omitempty"` XXX_NoUnkeyedLiteral struct{} `json:"-"` XXX_unrecognized []byte `json:"-"` XXX_sizecache int32 `json:"-"` @@ -1095,6 +1097,20 @@ func (m *ApplicationSyncRequest) GetProject() string { return "" } +func (m *ApplicationSyncRequest) GetSourcePositions() []int64 { + if m != nil { + return m.SourcePositions + } + return nil +} + +func (m *ApplicationSyncRequest) GetRevisions() []string { + if m != nil { + return m.Revisions + } + return nil +} + // ApplicationUpdateSpecRequest is a request to update application spec type ApplicationUpdateSpecRequest struct { Name *string `protobuf:"bytes,1,req,name=name" json:"name,omitempty"` @@ -2808,176 +2824,177 @@ func init() { } var fileDescriptor_df6e82b174b5eaec = []byte{ - // 2704 bytes of a gzipped FileDescriptorProto - 0x1f, 0x8b, 0x08, 0x00, 0x00, 0x00, 0x00, 0x00, 0x02, 0xff, 0xcc, 0x5a, 0xcd, 0x8f, 0x1b, 0x49, - 0x15, 0xa7, 0xec, 0xb1, 0xc7, 0xf3, 0x3c, 0x93, 0x8f, 0xda, 0x64, 0xe8, 0x75, 0x66, 0x83, 0xd3, - 0xf9, 0x9a, 0x4c, 0x32, 0x76, 0x62, 0x02, 0xca, 0xce, 0xee, 0x0a, 0x92, 0xc9, 0x27, 0x4c, 0xb2, + // 2711 bytes of a gzipped FileDescriptorProto + 0x1f, 0x8b, 0x08, 0x00, 0x00, 0x00, 0x00, 0x00, 0x02, 0xff, 0xcc, 0x5a, 0x4d, 0x8c, 0x1b, 0x49, + 0x15, 0xa6, 0xec, 0xb1, 0xc7, 0xf3, 0x3c, 0x93, 0x9f, 0xda, 0x64, 0xe8, 0x75, 0x66, 0x83, 0xd3, + 0xf9, 0x9b, 0x4c, 0x32, 0x76, 0x62, 0x02, 0xca, 0xce, 0xee, 0x0a, 0x92, 0xc9, 0x2f, 0x4c, 0xb2, 0xa1, 0x27, 0x21, 0x68, 0x39, 0x40, 0x6d, 0xbb, 0xc6, 0xd3, 0x4c, 0xbb, 0xbb, 0xd3, 0xdd, 0x76, 0x34, 0x0a, 0xb9, 0x2c, 0xca, 0x05, 0xad, 0x40, 0xc0, 0x1e, 0x10, 0x42, 0x80, 0x16, 0xad, 0x84, - 0x10, 0x88, 0x0b, 0x5a, 0x21, 0x21, 0x24, 0xb8, 0x20, 0x38, 0x20, 0xad, 0xe0, 0xc8, 0x05, 0x45, - 0x88, 0x23, 0x5c, 0xf6, 0x0f, 0x40, 0x55, 0x5d, 0xd5, 0x5d, 0xed, 0x8f, 0xb6, 0x07, 0x1b, 0x6d, - 0x6e, 0xfd, 0xca, 0xdd, 0xef, 0xfd, 0xde, 0xab, 0x5f, 0xbd, 0x57, 0xf5, 0xca, 0x70, 0x22, 0xa0, - 0x7e, 0x97, 0xfa, 0x75, 0xe2, 0x79, 0xb6, 0x65, 0x92, 0xd0, 0x72, 0x1d, 0xf5, 0xb9, 0xe6, 0xf9, - 0x6e, 0xe8, 0xe2, 0xb2, 0x32, 0x54, 0x59, 0x6a, 0xb9, 0x6e, 0xcb, 0xa6, 0x75, 0xe2, 0x59, 0x75, - 0xe2, 0x38, 0x6e, 0xc8, 0x87, 0x83, 0xe8, 0xd5, 0x8a, 0xbe, 0x73, 0x29, 0xa8, 0x59, 0x2e, 0xff, - 0xd5, 0x74, 0x7d, 0x5a, 0xef, 0x5e, 0xa8, 0xb7, 0xa8, 0x43, 0x7d, 0x12, 0xd2, 0xa6, 0x78, 0xe7, - 0x62, 0xf2, 0x4e, 0x9b, 0x98, 0xdb, 0x96, 0x43, 0xfd, 0xdd, 0xba, 0xb7, 0xd3, 0x62, 0x03, 0x41, - 0xbd, 0x4d, 0x43, 0x32, 0xe8, 0xab, 0x8d, 0x96, 0x15, 0x6e, 0x77, 0xde, 0xac, 0x99, 0x6e, 0xbb, - 0x4e, 0xfc, 0x96, 0xeb, 0xf9, 0xee, 0xd7, 0xf8, 0xc3, 0xaa, 0xd9, 0xac, 0x77, 0x1b, 0x89, 0x02, - 0xd5, 0x97, 0xee, 0x05, 0x62, 0x7b, 0xdb, 0xa4, 0x5f, 0xdb, 0xb5, 0x11, 0xda, 0x7c, 0xea, 0xb9, - 0x22, 0x36, 0xfc, 0xd1, 0x0a, 0x5d, 0x7f, 0x57, 0x79, 0x8c, 0xd4, 0xe8, 0x1f, 0x22, 0x38, 0x70, - 0x39, 0xb1, 0xf7, 0x85, 0x0e, 0xf5, 0x77, 0x31, 0x86, 0x19, 0x87, 0xb4, 0xa9, 0x86, 0xaa, 0x68, - 0x79, 0xce, 0xe0, 0xcf, 0x58, 0x83, 0x59, 0x9f, 0x6e, 0xf9, 0x34, 0xd8, 0xd6, 0x72, 0x7c, 0x58, - 0x8a, 0xb8, 0x02, 0x25, 0x66, 0x9c, 0x9a, 0x61, 0xa0, 0xe5, 0xab, 0xf9, 0xe5, 0x39, 0x23, 0x96, - 0xf1, 0x32, 0xec, 0xf7, 0x69, 0xe0, 0x76, 0x7c, 0x93, 0x7e, 0x91, 0xfa, 0x81, 0xe5, 0x3a, 0xda, - 0x0c, 0xff, 0xba, 0x77, 0x98, 0x69, 0x09, 0xa8, 0x4d, 0xcd, 0xd0, 0xf5, 0xb5, 0x02, 0x7f, 0x25, - 0x96, 0x19, 0x1e, 0x06, 0x5c, 0x2b, 0x46, 0x78, 0xd8, 0x33, 0xd6, 0x61, 0x9e, 0x78, 0xde, 0x1d, - 0xd2, 0xa6, 0x81, 0x47, 0x4c, 0xaa, 0xcd, 0xf2, 0xdf, 0x52, 0x63, 0x0c, 0xb3, 0x40, 0xa2, 0x95, - 0x38, 0x30, 0x29, 0xea, 0xeb, 0x30, 0x77, 0xc7, 0x6d, 0xd2, 0xe1, 0xee, 0xf6, 0xaa, 0xcf, 0xf5, - 0xab, 0xd7, 0x9f, 0x22, 0x38, 0x6c, 0xd0, 0xae, 0xc5, 0xf0, 0xdf, 0xa6, 0x21, 0x69, 0x92, 0x90, - 0xf4, 0x6a, 0xcc, 0xc5, 0x1a, 0x2b, 0x50, 0xf2, 0xc5, 0xcb, 0x5a, 0x8e, 0x8f, 0xc7, 0x72, 0x9f, - 0xb5, 0x7c, 0xb6, 0x33, 0x51, 0x08, 0x63, 0x67, 0xfe, 0x85, 0xe0, 0xa8, 0x32, 0x87, 0x86, 0x88, - 0xec, 0xb5, 0x2e, 0x75, 0xc2, 0x60, 0x38, 0xa0, 0x73, 0x70, 0x50, 0x4e, 0x42, 0xaf, 0x9f, 0xfd, - 0x3f, 0x30, 0x88, 0xea, 0xa0, 0x84, 0xa8, 0x8e, 0xe1, 0x2a, 0x94, 0xa5, 0x7c, 0xff, 0xd6, 0x55, - 0x01, 0x53, 0x1d, 0xea, 0x73, 0xb4, 0x90, 0xed, 0x68, 0x31, 0xed, 0xe8, 0x07, 0x08, 0x34, 0xc5, - 0xd1, 0xdb, 0xc4, 0xb1, 0xb6, 0x68, 0x10, 0x8e, 0x1b, 0x73, 0x34, 0xbd, 0x98, 0x33, 0x62, 0x47, - 0x5e, 0xdd, 0x65, 0xeb, 0x89, 0xe5, 0x0f, 0xad, 0x50, 0xcd, 0x2f, 0xe7, 0x8d, 0xde, 0x61, 0xbc, - 0x04, 0x73, 0xd2, 0x66, 0xa0, 0x15, 0x39, 0x0d, 0x93, 0x01, 0xfd, 0x18, 0xcc, 0x5d, 0xb7, 0x6c, - 0xba, 0xbe, 0xdd, 0x71, 0x76, 0xf0, 0x21, 0x28, 0x98, 0xec, 0x81, 0xfb, 0x30, 0x6f, 0x44, 0x82, - 0xfe, 0x1d, 0x04, 0xc7, 0x86, 0x79, 0xfd, 0xc0, 0x0a, 0xb7, 0xd9, 0xf7, 0xc1, 0x30, 0xf7, 0xcd, - 0x6d, 0x6a, 0xee, 0x04, 0x9d, 0xb6, 0xa4, 0x9c, 0x94, 0x27, 0xa4, 0xdc, 0xcf, 0x11, 0x2c, 0x8f, - 0xc4, 0xf4, 0xc0, 0x27, 0x9e, 0x47, 0x7d, 0x7c, 0x1d, 0x0a, 0x0f, 0xd9, 0x0f, 0x7c, 0x81, 0x95, - 0x1b, 0xb5, 0x9a, 0x9a, 0xa0, 0x47, 0x6a, 0xb9, 0xf9, 0x31, 0x23, 0xfa, 0x1c, 0xd7, 0x64, 0x78, - 0x72, 0x5c, 0xcf, 0x62, 0x4a, 0x4f, 0x1c, 0x45, 0xf6, 0x3e, 0x7f, 0xed, 0x4a, 0x11, 0x66, 0x3c, - 0xe2, 0x87, 0xfa, 0x61, 0x78, 0x21, 0xbd, 0x3c, 0x3c, 0xd7, 0x09, 0xa8, 0xfe, 0xdb, 0x34, 0x9b, - 0xd6, 0x7d, 0x4a, 0x42, 0x6a, 0xd0, 0x87, 0x1d, 0x1a, 0x84, 0x78, 0x07, 0xd4, 0x9a, 0xc1, 0xa3, - 0x5a, 0x6e, 0xdc, 0xaa, 0x25, 0x49, 0xb7, 0x26, 0x93, 0x2e, 0x7f, 0xf8, 0x8a, 0xd9, 0xac, 0x75, - 0x1b, 0x35, 0x6f, 0xa7, 0x55, 0x63, 0x29, 0x3c, 0x85, 0x4c, 0xa6, 0x70, 0xd5, 0x55, 0x43, 0xd5, - 0x8e, 0x17, 0xa1, 0xd8, 0xf1, 0x02, 0xea, 0x87, 0xdc, 0xb3, 0x92, 0x21, 0x24, 0x36, 0x7f, 0x5d, - 0x62, 0x5b, 0x4d, 0x12, 0x46, 0xf3, 0x53, 0x32, 0x62, 0x59, 0xff, 0x5d, 0x1a, 0xfd, 0x7d, 0xaf, - 0xf9, 0x51, 0xa1, 0x57, 0x51, 0xe6, 0xd2, 0x28, 0x55, 0x06, 0xe5, 0xd3, 0x0c, 0xfa, 0x75, 0x1a, - 0xff, 0x55, 0x6a, 0xd3, 0x04, 0xff, 0x20, 0x32, 0x6b, 0x30, 0x6b, 0x92, 0xc0, 0x24, 0x4d, 0x69, - 0x45, 0x8a, 0x2c, 0x91, 0x79, 0xbe, 0xeb, 0x91, 0x16, 0xd7, 0x74, 0xd7, 0xb5, 0x2d, 0x73, 0x57, - 0x98, 0xeb, 0xff, 0xa1, 0x8f, 0xf8, 0x33, 0xd9, 0xc4, 0x2f, 0xa4, 0x61, 0x1f, 0x87, 0xf2, 0xe6, - 0xae, 0x63, 0xbe, 0xee, 0x45, 0x8b, 0xfb, 0x10, 0x14, 0xac, 0x90, 0xb6, 0x03, 0x0d, 0xf1, 0x85, - 0x1d, 0x09, 0xfa, 0xfb, 0x05, 0x58, 0x54, 0x7c, 0x63, 0x1f, 0x64, 0x79, 0x96, 0x95, 0xa5, 0x16, - 0xa1, 0xd8, 0xf4, 0x77, 0x8d, 0x8e, 0x23, 0x08, 0x20, 0x24, 0x66, 0xd8, 0xf3, 0x3b, 0x4e, 0x04, - 0xbf, 0x64, 0x44, 0x02, 0xde, 0x82, 0x52, 0x10, 0xb2, 0x5d, 0x42, 0x6b, 0x97, 0x03, 0x2f, 0x37, - 0x3e, 0x37, 0xd9, 0xa4, 0x33, 0xe8, 0x9b, 0x42, 0xa3, 0x11, 0xeb, 0xc6, 0x0f, 0x59, 0x4e, 0x8b, - 0x12, 0x5d, 0xa0, 0xcd, 0x56, 0xf3, 0xcb, 0xe5, 0xc6, 0xe6, 0xe4, 0x86, 0x5e, 0xf7, 0xd8, 0x0e, - 0x47, 0xa9, 0x60, 0x46, 0x62, 0x85, 0xa5, 0xd1, 0xb6, 0xc8, 0x0f, 0x81, 0xa8, 0xe6, 0xc9, 0x00, - 0xfe, 0x12, 0x14, 0x2c, 0x67, 0xcb, 0x0d, 0xb4, 0x39, 0x0e, 0xe6, 0xca, 0x64, 0x60, 0x6e, 0x39, - 0x5b, 0xae, 0x11, 0x29, 0xc4, 0x0f, 0x61, 0xc1, 0xa7, 0xa1, 0xbf, 0x2b, 0xa3, 0xa0, 0x01, 0x8f, - 0xeb, 0xe7, 0x27, 0xb3, 0x60, 0xa8, 0x2a, 0x8d, 0xb4, 0x05, 0xbc, 0x06, 0xe5, 0x20, 0xe1, 0x98, - 0x56, 0xe6, 0x06, 0xb5, 0x94, 0x22, 0x85, 0x83, 0x86, 0xfa, 0x72, 0x1f, 0xbb, 0xe7, 0xb3, 0xd9, - 0xbd, 0x90, 0x66, 0xf7, 0x7f, 0x10, 0x2c, 0xf5, 0x25, 0x95, 0x4d, 0x8f, 0x66, 0xd2, 0x97, 0xc0, - 0x4c, 0xe0, 0x51, 0x93, 0x57, 0x98, 0x72, 0xe3, 0xf6, 0xd4, 0xb2, 0x0c, 0xb7, 0xcb, 0x55, 0x67, - 0x25, 0xc2, 0x09, 0xd7, 0xf3, 0x8f, 0x11, 0x7c, 0x5c, 0xb1, 0x79, 0x97, 0x84, 0xe6, 0x76, 0x96, - 0xb3, 0x6c, 0xdd, 0xb1, 0x77, 0x44, 0x3d, 0x8d, 0x04, 0x46, 0x4e, 0xfe, 0x70, 0x6f, 0xd7, 0x63, - 0x00, 0xd9, 0x2f, 0xc9, 0xc0, 0x84, 0x9b, 0x9e, 0x5f, 0x20, 0xa8, 0xa8, 0xb9, 0xd7, 0xb5, 0xed, - 0x37, 0x89, 0xb9, 0x93, 0x05, 0x72, 0x1f, 0xe4, 0xac, 0x26, 0x47, 0x98, 0x37, 0x72, 0x56, 0x73, - 0x8f, 0x49, 0xa4, 0x17, 0x6e, 0x31, 0x1b, 0xee, 0x6c, 0x1a, 0xee, 0x87, 0x3d, 0x70, 0xe5, 0x52, - 0xce, 0x80, 0xbb, 0x04, 0x73, 0x4e, 0xcf, 0x06, 0x34, 0x19, 0x18, 0xb0, 0xf1, 0xcc, 0xf5, 0x6d, - 0x3c, 0x35, 0x98, 0xed, 0xc6, 0xc7, 0x0b, 0xf6, 0xb3, 0x14, 0x99, 0x8b, 0x2d, 0xdf, 0xed, 0x78, - 0x22, 0xe8, 0x91, 0xc0, 0x50, 0xec, 0x58, 0x4e, 0x53, 0x2b, 0x46, 0x28, 0xd8, 0xf3, 0xde, 0x0f, - 0x14, 0x29, 0xb7, 0x7f, 0x99, 0x83, 0x4f, 0x0c, 0x70, 0x7b, 0x24, 0x9f, 0x9e, 0x0f, 0xdf, 0x63, - 0x56, 0xcf, 0x0e, 0x65, 0x75, 0x69, 0x14, 0xab, 0xe7, 0xb2, 0xe3, 0x05, 0xe9, 0x78, 0xfd, 0x2c, - 0x07, 0xd5, 0x01, 0xf1, 0x1a, 0xbd, 0x0d, 0x78, 0x6e, 0x02, 0xb6, 0xe5, 0xfa, 0x82, 0x25, 0x25, - 0x23, 0x12, 0xd8, 0x3a, 0x73, 0x7d, 0x6f, 0x9b, 0x38, 0x9c, 0x1d, 0x25, 0x43, 0x48, 0x13, 0x86, - 0xea, 0x9b, 0x39, 0xd0, 0x64, 0x7c, 0x2e, 0x9b, 0x3c, 0x5a, 0x1d, 0xe7, 0xf9, 0x0f, 0xd1, 0x22, - 0x14, 0x09, 0x47, 0x2b, 0x48, 0x25, 0xa4, 0xbe, 0x60, 0x94, 0xb2, 0x83, 0x31, 0x97, 0x0e, 0xc6, - 0x53, 0x04, 0x47, 0xd2, 0xc1, 0x08, 0x36, 0xac, 0x20, 0x94, 0x9b, 0x7a, 0xbc, 0x05, 0xb3, 0x91, - 0x9d, 0x68, 0x4b, 0x56, 0x6e, 0x6c, 0x4c, 0x5a, 0xa8, 0x53, 0x81, 0x97, 0xca, 0xf5, 0x97, 0xe1, - 0xc8, 0xc0, 0x2c, 0x27, 0x60, 0x54, 0xa0, 0x24, 0x37, 0x27, 0x62, 0x6a, 0x62, 0x59, 0x7f, 0x3a, - 0x93, 0x2e, 0x39, 0x6e, 0x73, 0xc3, 0x6d, 0x65, 0x9c, 0xd3, 0xb3, 0xa7, 0x93, 0x85, 0xca, 0x6d, - 0x2a, 0x47, 0x72, 0x29, 0xb2, 0xef, 0x4c, 0xd7, 0x09, 0x89, 0xe5, 0x50, 0x5f, 0x54, 0xc5, 0x64, - 0x80, 0x4d, 0x43, 0x60, 0x39, 0x26, 0xdd, 0xa4, 0xa6, 0xeb, 0x34, 0x03, 0x3e, 0x9f, 0x79, 0x23, - 0x35, 0x86, 0x6f, 0xc2, 0x1c, 0x97, 0xef, 0x59, 0xed, 0xa8, 0x0c, 0x94, 0x1b, 0x2b, 0xb5, 0xa8, - 0xf7, 0x55, 0x53, 0x7b, 0x5f, 0x49, 0x0c, 0xdb, 0x34, 0x24, 0xb5, 0xee, 0x85, 0x1a, 0xfb, 0xc2, - 0x48, 0x3e, 0x66, 0x58, 0x42, 0x62, 0xd9, 0x1b, 0x96, 0xc3, 0x37, 0x8c, 0xcc, 0x54, 0x32, 0xc0, - 0xa8, 0xb2, 0xe5, 0xda, 0xb6, 0xfb, 0x48, 0xae, 0x9b, 0x48, 0x62, 0x5f, 0x75, 0x9c, 0xd0, 0xb2, - 0xb9, 0xfd, 0x88, 0x08, 0xc9, 0x00, 0xff, 0xca, 0xb2, 0x43, 0xea, 0x8b, 0x05, 0x23, 0xa4, 0x98, - 0x8c, 0xe5, 0xa8, 0x9d, 0x23, 0xd7, 0x6b, 0x44, 0xdb, 0x79, 0x95, 0xb6, 0xbd, 0x4b, 0x61, 0x61, - 0x40, 0x4f, 0x83, 0x77, 0xb7, 0x68, 0xd7, 0x72, 0x3b, 0x81, 0xb6, 0x2f, 0xda, 0x7a, 0x48, 0xb9, - 0x8f, 0xca, 0xfb, 0xb3, 0xa9, 0x7c, 0x20, 0x4d, 0xe5, 0xdf, 0x23, 0x28, 0x6d, 0xb8, 0xad, 0x6b, - 0x4e, 0xe8, 0xef, 0xf2, 0xd3, 0x8d, 0xeb, 0x84, 0xd4, 0x91, 0x7c, 0x91, 0x22, 0x9b, 0x84, 0xd0, - 0x6a, 0xd3, 0xcd, 0x90, 0xb4, 0x3d, 0xb1, 0xc7, 0xda, 0xd3, 0x24, 0xc4, 0x1f, 0xb3, 0xc0, 0xd8, - 0x24, 0x08, 0xf9, 0x8a, 0x2f, 0x19, 0xfc, 0x99, 0xb9, 0x10, 0xbf, 0xb0, 0x19, 0xfa, 0x62, 0xb9, - 0xa7, 0xc6, 0x54, 0x8a, 0x15, 0x22, 0x6c, 0x42, 0xd4, 0xdb, 0xf0, 0x62, 0xbc, 0x69, 0xbf, 0x47, - 0xfd, 0xb6, 0xe5, 0x90, 0xec, 0xec, 0x3d, 0x46, 0x5b, 0x2d, 0xe3, 0xcc, 0xe8, 0xa6, 0x16, 0x1d, - 0xdb, 0x03, 0x3f, 0xb0, 0x9c, 0xa6, 0xfb, 0x28, 0x63, 0xf1, 0x4c, 0x66, 0xf0, 0xaf, 0xe9, 0xce, - 0x9a, 0x62, 0x31, 0x5e, 0xe9, 0x37, 0x61, 0x81, 0xe5, 0x84, 0x2e, 0x15, 0x3f, 0x88, 0xb4, 0xa3, - 0x0f, 0x6b, 0x72, 0x24, 0x3a, 0x8c, 0xf4, 0x87, 0x78, 0x03, 0xf6, 0x93, 0x20, 0xb0, 0x5a, 0x0e, - 0x6d, 0x4a, 0x5d, 0xb9, 0xb1, 0x75, 0xf5, 0x7e, 0x1a, 0x1d, 0x97, 0xf9, 0x1b, 0x62, 0xbe, 0xa5, - 0xa8, 0x7f, 0x03, 0xc1, 0xe1, 0x81, 0x4a, 0xe2, 0x95, 0x83, 0x94, 0x34, 0x5e, 0x81, 0x52, 0x60, - 0x6e, 0xd3, 0x66, 0xc7, 0xa6, 0xb2, 0x87, 0x24, 0x65, 0xf6, 0x5b, 0xb3, 0x13, 0xcd, 0xbe, 0x28, - 0x23, 0xb1, 0x8c, 0x8f, 0x02, 0xb4, 0x89, 0xd3, 0x21, 0x36, 0x87, 0x30, 0xc3, 0x21, 0x28, 0x23, - 0xfa, 0x12, 0x54, 0x06, 0x51, 0x47, 0xf4, 0x66, 0xfe, 0x8d, 0x60, 0x9f, 0x4c, 0xaa, 0x62, 0x76, - 0x97, 0x61, 0xbf, 0x12, 0x86, 0x3b, 0xc9, 0x44, 0xf7, 0x0e, 0x8f, 0x48, 0x98, 0x92, 0x25, 0xf9, - 0x74, 0x73, 0xbb, 0x9b, 0x6a, 0x4f, 0x8f, 0x5d, 0xef, 0xd0, 0x94, 0xf6, 0x8f, 0x5f, 0x07, 0xed, - 0x36, 0x71, 0x48, 0x8b, 0x36, 0x63, 0xb7, 0x63, 0x8a, 0x7d, 0x55, 0x6d, 0x32, 0x4c, 0x7c, 0xa4, - 0x8f, 0xb7, 0x5a, 0xd6, 0xd6, 0x96, 0x6c, 0x58, 0xf8, 0x50, 0xda, 0xb0, 0x9c, 0x1d, 0x76, 0xee, - 0x65, 0x1e, 0x87, 0x56, 0x68, 0xcb, 0xe8, 0x46, 0x02, 0x3e, 0x00, 0xf9, 0x8e, 0x6f, 0x0b, 0x06, - 0xb0, 0x47, 0x5c, 0x85, 0x72, 0x93, 0x06, 0xa6, 0x6f, 0x79, 0x62, 0xfe, 0x79, 0xb3, 0x57, 0x19, - 0x62, 0xf3, 0x60, 0x99, 0xae, 0xb3, 0x6e, 0x93, 0x20, 0x90, 0x05, 0x28, 0x1e, 0xd0, 0x5f, 0x85, - 0x05, 0x66, 0x33, 0x71, 0xf3, 0x6c, 0xda, 0xcd, 0xc3, 0x29, 0xf8, 0x12, 0x9e, 0x44, 0x4c, 0xe0, - 0x05, 0x56, 0xf7, 0x2f, 0x7b, 0x9e, 0x50, 0x32, 0xe6, 0x76, 0x28, 0x3f, 0xa8, 0x7e, 0x0e, 0xec, - 0x71, 0x36, 0xfe, 0x7e, 0x1c, 0xb0, 0xba, 0x4e, 0xa8, 0xdf, 0xb5, 0x4c, 0x8a, 0xbf, 0x8b, 0x60, - 0x86, 0x99, 0xc6, 0x2f, 0x0d, 0x5b, 0x96, 0x9c, 0xaf, 0x95, 0xe9, 0x1d, 0x84, 0x99, 0x35, 0x7d, - 0xe9, 0xad, 0xbf, 0xfd, 0xf3, 0x7b, 0xb9, 0x45, 0x7c, 0x88, 0xdf, 0x4c, 0x75, 0x2f, 0xa8, 0xb7, - 0x44, 0x01, 0x7e, 0x1b, 0x01, 0x16, 0xfb, 0x20, 0xa5, 0xf7, 0x8f, 0xcf, 0x0e, 0x83, 0x38, 0xe0, - 0x8e, 0xa0, 0xf2, 0x92, 0x52, 0x55, 0x6a, 0xa6, 0xeb, 0x53, 0x56, 0x43, 0xf8, 0x0b, 0x1c, 0xc0, - 0x0a, 0x07, 0x70, 0x02, 0xeb, 0x83, 0x00, 0xd4, 0x1f, 0xb3, 0x88, 0x3e, 0xa9, 0xd3, 0xc8, 0xee, - 0xbb, 0x08, 0x0a, 0x0f, 0xf8, 0x19, 0x62, 0x44, 0x90, 0x36, 0xa7, 0x16, 0x24, 0x6e, 0x8e, 0xa3, - 0xd5, 0x8f, 0x73, 0xa4, 0x2f, 0xe1, 0x23, 0x12, 0x69, 0x10, 0xfa, 0x94, 0xb4, 0x53, 0x80, 0xcf, - 0x23, 0xfc, 0x1e, 0x82, 0x62, 0xd4, 0xf4, 0xc5, 0x27, 0x87, 0xa1, 0x4c, 0x35, 0x85, 0x2b, 0xd3, - 0xeb, 0xa0, 0xea, 0x67, 0x38, 0xc6, 0xe3, 0xfa, 0xc0, 0xe9, 0x5c, 0x4b, 0xf5, 0x57, 0xdf, 0x41, - 0x90, 0xbf, 0x41, 0x47, 0xf2, 0x6d, 0x8a, 0xe0, 0xfa, 0x02, 0x38, 0x60, 0xaa, 0xf1, 0x4f, 0x11, - 0xbc, 0x78, 0x83, 0x86, 0x83, 0xcb, 0x23, 0x5e, 0x1e, 0x5d, 0xb3, 0x04, 0xed, 0xce, 0x8e, 0xf1, - 0x66, 0x5c, 0x17, 0xea, 0x1c, 0xd9, 0x19, 0x7c, 0x3a, 0x8b, 0x84, 0xc1, 0xae, 0x63, 0x3e, 0x12, - 0x38, 0xfe, 0x8c, 0xe0, 0x40, 0xef, 0x1d, 0x1d, 0x4e, 0x17, 0xd4, 0x81, 0x57, 0x78, 0x95, 0x3b, - 0x93, 0x66, 0xd9, 0xb4, 0x52, 0xfd, 0x32, 0x47, 0xfe, 0x0a, 0x7e, 0x39, 0x0b, 0x79, 0x7c, 0x2f, - 0x54, 0x7f, 0x2c, 0x1f, 0x9f, 0xf0, 0xfb, 0x64, 0x0e, 0xfb, 0x2f, 0x08, 0x0e, 0x49, 0xbd, 0xeb, - 0xdb, 0xc4, 0x0f, 0xaf, 0x52, 0xb6, 0x87, 0x0e, 0xc6, 0xf2, 0x67, 0xc2, 0xaa, 0xa1, 0xda, 0xd3, - 0xaf, 0x71, 0x5f, 0x3e, 0x83, 0x5f, 0xdb, 0xb3, 0x2f, 0x26, 0x53, 0xd3, 0x14, 0xb0, 0xdf, 0x42, - 0x30, 0x7f, 0x83, 0x86, 0xb7, 0xe3, 0x2e, 0xee, 0xc9, 0xb1, 0x6e, 0x86, 0x2a, 0x4b, 0x35, 0xe5, - 0x1a, 0x5b, 0xfe, 0x14, 0x53, 0x64, 0x95, 0x83, 0x3b, 0x8d, 0x4f, 0x66, 0x81, 0x4b, 0x3a, 0xc7, - 0xef, 0x22, 0x38, 0xac, 0x82, 0x48, 0x6e, 0xd4, 0x3e, 0xb5, 0xb7, 0x7b, 0x2a, 0x71, 0xdb, 0x35, - 0x02, 0x5d, 0x83, 0xa3, 0x3b, 0xa7, 0x0f, 0x26, 0x70, 0xbb, 0x0f, 0xc5, 0x1a, 0x5a, 0x59, 0x46, - 0xf8, 0x0f, 0x08, 0x8a, 0x51, 0x33, 0x76, 0x78, 0x8c, 0x52, 0x37, 0x40, 0xd3, 0xcc, 0x06, 0x62, - 0xb6, 0x2b, 0xe7, 0x07, 0x07, 0x54, 0xfd, 0x5e, 0x52, 0xb5, 0xc6, 0xa3, 0x9c, 0x4e, 0x63, 0xef, - 0x23, 0x80, 0xa4, 0xa1, 0x8c, 0xcf, 0x64, 0xfb, 0xa1, 0x34, 0x9d, 0x2b, 0xd3, 0x6d, 0x29, 0xeb, - 0x35, 0xee, 0xcf, 0x72, 0xa5, 0x9a, 0x99, 0x43, 0x3c, 0x6a, 0xae, 0x45, 0xcd, 0xe7, 0x9f, 0x20, - 0x28, 0xf0, 0x3e, 0x1e, 0x3e, 0x31, 0x0c, 0xb3, 0xda, 0xe6, 0x9b, 0x66, 0xe8, 0x4f, 0x71, 0xa8, - 0xd5, 0x46, 0x56, 0x22, 0x5e, 0x43, 0x2b, 0xb8, 0x0b, 0xc5, 0xa8, 0x73, 0x36, 0x9c, 0x1e, 0xa9, - 0xce, 0x5a, 0xa5, 0x9a, 0xb1, 0x31, 0x88, 0x88, 0x2a, 0x6a, 0xc0, 0xca, 0xa8, 0x1a, 0x30, 0xc3, - 0xd2, 0x34, 0x3e, 0x9e, 0x95, 0xc4, 0xff, 0x0f, 0x81, 0x39, 0xcb, 0xd1, 0x9d, 0xd4, 0xab, 0xa3, - 0xea, 0x00, 0x8b, 0xce, 0xf7, 0x11, 0x1c, 0xe8, 0xdd, 0x5c, 0xe3, 0x23, 0x3d, 0x39, 0x53, 0x3d, - 0x6b, 0x54, 0xd2, 0x51, 0x1c, 0xb6, 0x31, 0xd7, 0x3f, 0xcb, 0x51, 0xac, 0xe1, 0x4b, 0x23, 0x57, - 0xc6, 0x1d, 0x99, 0x75, 0x98, 0xa2, 0xd5, 0xe4, 0x56, 0xeb, 0x37, 0x08, 0xe6, 0xa5, 0xde, 0x7b, - 0x3e, 0xa5, 0xd9, 0xb0, 0xa6, 0xb7, 0x10, 0x98, 0x2d, 0xfd, 0x55, 0x0e, 0xff, 0xd3, 0xf8, 0xe2, - 0x98, 0xf0, 0x25, 0xec, 0xd5, 0x90, 0x21, 0xfd, 0x23, 0x82, 0x83, 0x0f, 0x22, 0xde, 0x7f, 0x44, - 0xf8, 0xd7, 0x39, 0xfe, 0xd7, 0xf0, 0x2b, 0x19, 0xfb, 0xbc, 0x51, 0x6e, 0x9c, 0x47, 0xf8, 0x57, - 0x08, 0x4a, 0xf2, 0x56, 0x05, 0x9f, 0x1e, 0xba, 0x30, 0xd2, 0xf7, 0x2e, 0xd3, 0x24, 0xb3, 0xd8, - 0xd4, 0xe8, 0x27, 0x32, 0xcb, 0xa9, 0xb0, 0xcf, 0x08, 0xfd, 0x0e, 0x02, 0x1c, 0x9f, 0x99, 0xe3, - 0x53, 0x34, 0x3e, 0x95, 0x32, 0x35, 0xb4, 0x31, 0x53, 0x39, 0x3d, 0xf2, 0xbd, 0x74, 0x29, 0x5d, - 0xc9, 0x2c, 0xa5, 0x6e, 0x6c, 0xff, 0x5b, 0x08, 0xca, 0x37, 0x68, 0x7c, 0x06, 0xc9, 0x88, 0x65, - 0xfa, 0x52, 0xa8, 0xb2, 0x3c, 0xfa, 0x45, 0x81, 0xe8, 0x1c, 0x47, 0x74, 0x0a, 0x67, 0x87, 0x4a, - 0x02, 0xf8, 0x21, 0x82, 0x85, 0xbb, 0x2a, 0x45, 0xf1, 0xb9, 0x51, 0x96, 0x52, 0x99, 0x7c, 0x7c, - 0x5c, 0x9f, 0xe4, 0xb8, 0x56, 0xf5, 0xb1, 0x70, 0xad, 0x89, 0xfb, 0x95, 0x1f, 0xa1, 0xe8, 0x10, - 0xdb, 0xd3, 0xcf, 0xfe, 0x5f, 0xe3, 0x96, 0xd1, 0x16, 0xd7, 0x2f, 0x72, 0x7c, 0x35, 0x7c, 0x6e, - 0x1c, 0x7c, 0x75, 0xd1, 0xe4, 0xc6, 0x3f, 0x40, 0x70, 0x90, 0xdf, 0x35, 0xa8, 0x8a, 0x7b, 0x4a, - 0xcc, 0xb0, 0x9b, 0x89, 0x31, 0x4a, 0x8c, 0xc8, 0x3f, 0xfa, 0x9e, 0x40, 0xad, 0xc9, 0x7b, 0x84, - 0x6f, 0x23, 0xd8, 0x27, 0x8b, 0x9a, 0x98, 0xdd, 0xd5, 0x51, 0x81, 0xdb, 0x6b, 0x11, 0x14, 0x74, - 0x5b, 0x19, 0x8f, 0x6e, 0xef, 0x21, 0x98, 0x15, 0xdd, 0xfc, 0x8c, 0xad, 0x82, 0xd2, 0xee, 0xaf, - 0xf4, 0xf4, 0x38, 0x44, 0x33, 0x58, 0xff, 0x32, 0x37, 0x7b, 0x1f, 0xd7, 0xb3, 0xcc, 0x7a, 0x6e, - 0x33, 0xa8, 0x3f, 0x16, 0x9d, 0xd8, 0x27, 0x75, 0xdb, 0x6d, 0x05, 0x6f, 0xe8, 0x38, 0xb3, 0x20, - 0xb2, 0x77, 0xce, 0x23, 0x1c, 0xc2, 0x1c, 0x23, 0x07, 0x6f, 0x9c, 0xe0, 0x6a, 0x4f, 0x9b, 0xa5, - 0xaf, 0xa7, 0x52, 0xa9, 0xf4, 0x35, 0x62, 0x92, 0x0a, 0x28, 0x8e, 0xb1, 0xf8, 0x58, 0xa6, 0x59, - 0x6e, 0xe8, 0x6d, 0x04, 0x07, 0x55, 0xb6, 0x47, 0xe6, 0xc7, 0xe6, 0x7a, 0x16, 0x0a, 0xb1, 0xa9, - 0xc6, 0x2b, 0x63, 0x11, 0x89, 0xc3, 0xb9, 0x72, 0xfd, 0x4f, 0xcf, 0x8e, 0xa2, 0x0f, 0x9e, 0x1d, - 0x45, 0xff, 0x78, 0x76, 0x14, 0xbd, 0x71, 0x69, 0xbc, 0xff, 0xe6, 0x9a, 0xb6, 0x45, 0x9d, 0x50, - 0x55, 0xff, 0xdf, 0x00, 0x00, 0x00, 0xff, 0xff, 0xf0, 0x7f, 0x21, 0xe8, 0x81, 0x2c, 0x00, 0x00, + 0x10, 0x88, 0x0b, 0x42, 0x48, 0x08, 0x09, 0x2e, 0x08, 0x0e, 0x48, 0x2b, 0x38, 0x72, 0x41, 0x11, + 0xe2, 0x08, 0x97, 0x3d, 0x23, 0x54, 0xd5, 0x55, 0xdd, 0xd5, 0xfe, 0x69, 0x7b, 0xb0, 0xd1, 0xe6, + 0xd6, 0xaf, 0x5c, 0xf5, 0xde, 0xf7, 0x5e, 0xbd, 0x7a, 0xef, 0xd5, 0x2b, 0xc3, 0x89, 0x80, 0xfa, + 0x5d, 0xea, 0xd7, 0x89, 0xe7, 0xd9, 0x96, 0x49, 0x42, 0xcb, 0x75, 0xd4, 0xef, 0x9a, 0xe7, 0xbb, + 0xa1, 0x8b, 0xcb, 0xca, 0x50, 0x65, 0xa9, 0xe5, 0xba, 0x2d, 0x9b, 0xd6, 0x89, 0x67, 0xd5, 0x89, + 0xe3, 0xb8, 0x21, 0x1f, 0x0e, 0xa2, 0xa9, 0x15, 0x7d, 0xe7, 0x52, 0x50, 0xb3, 0x5c, 0xfe, 0xab, + 0xe9, 0xfa, 0xb4, 0xde, 0xbd, 0x50, 0x6f, 0x51, 0x87, 0xfa, 0x24, 0xa4, 0x4d, 0x31, 0xe7, 0x62, + 0x32, 0xa7, 0x4d, 0xcc, 0x6d, 0xcb, 0xa1, 0xfe, 0x6e, 0xdd, 0xdb, 0x69, 0xb1, 0x81, 0xa0, 0xde, + 0xa6, 0x21, 0x19, 0xb4, 0x6a, 0xa3, 0x65, 0x85, 0xdb, 0x9d, 0x37, 0x6b, 0xa6, 0xdb, 0xae, 0x13, + 0xbf, 0xe5, 0x7a, 0xbe, 0xfb, 0x15, 0xfe, 0xb1, 0x6a, 0x36, 0xeb, 0xdd, 0x46, 0xc2, 0x40, 0xd5, + 0xa5, 0x7b, 0x81, 0xd8, 0xde, 0x36, 0xe9, 0xe7, 0x76, 0x6d, 0x04, 0x37, 0x9f, 0x7a, 0xae, 0xb0, + 0x0d, 0xff, 0xb4, 0x42, 0xd7, 0xdf, 0x55, 0x3e, 0x23, 0x36, 0xfa, 0x07, 0x08, 0x0e, 0x5c, 0x4e, + 0xe4, 0x7d, 0xae, 0x43, 0xfd, 0x5d, 0x8c, 0x61, 0xc6, 0x21, 0x6d, 0xaa, 0xa1, 0x2a, 0x5a, 0x9e, + 0x33, 0xf8, 0x37, 0xd6, 0x60, 0xd6, 0xa7, 0x5b, 0x3e, 0x0d, 0xb6, 0xb5, 0x1c, 0x1f, 0x96, 0x24, + 0xae, 0x40, 0x89, 0x09, 0xa7, 0x66, 0x18, 0x68, 0xf9, 0x6a, 0x7e, 0x79, 0xce, 0x88, 0x69, 0xbc, + 0x0c, 0xfb, 0x7d, 0x1a, 0xb8, 0x1d, 0xdf, 0xa4, 0x9f, 0xa7, 0x7e, 0x60, 0xb9, 0x8e, 0x36, 0xc3, + 0x57, 0xf7, 0x0e, 0x33, 0x2e, 0x01, 0xb5, 0xa9, 0x19, 0xba, 0xbe, 0x56, 0xe0, 0x53, 0x62, 0x9a, + 0xe1, 0x61, 0xc0, 0xb5, 0x62, 0x84, 0x87, 0x7d, 0x63, 0x1d, 0xe6, 0x89, 0xe7, 0xdd, 0x21, 0x6d, + 0x1a, 0x78, 0xc4, 0xa4, 0xda, 0x2c, 0xff, 0x2d, 0x35, 0xc6, 0x30, 0x0b, 0x24, 0x5a, 0x89, 0x03, + 0x93, 0xa4, 0xbe, 0x0e, 0x73, 0x77, 0xdc, 0x26, 0x1d, 0xae, 0x6e, 0x2f, 0xfb, 0x5c, 0x3f, 0x7b, + 0xfd, 0x29, 0x82, 0xc3, 0x06, 0xed, 0x5a, 0x0c, 0xff, 0x6d, 0x1a, 0x92, 0x26, 0x09, 0x49, 0x2f, + 0xc7, 0x5c, 0xcc, 0xb1, 0x02, 0x25, 0x5f, 0x4c, 0xd6, 0x72, 0x7c, 0x3c, 0xa6, 0xfb, 0xa4, 0xe5, + 0xb3, 0x95, 0x89, 0x4c, 0x18, 0x2b, 0xf3, 0x4f, 0x04, 0x47, 0x95, 0x3d, 0x34, 0x84, 0x65, 0xaf, + 0x75, 0xa9, 0x13, 0x06, 0xc3, 0x01, 0x9d, 0x83, 0x83, 0x72, 0x13, 0x7a, 0xf5, 0xec, 0xff, 0x81, + 0x41, 0x54, 0x07, 0x25, 0x44, 0x75, 0x0c, 0x57, 0xa1, 0x2c, 0xe9, 0xfb, 0xb7, 0xae, 0x0a, 0x98, + 0xea, 0x50, 0x9f, 0xa2, 0x85, 0x6c, 0x45, 0x8b, 0x69, 0x45, 0xdf, 0x47, 0xa0, 0x29, 0x8a, 0xde, + 0x26, 0x8e, 0xb5, 0x45, 0x83, 0x70, 0x5c, 0x9b, 0xa3, 0xe9, 0xd9, 0x9c, 0x39, 0x76, 0xa4, 0xd5, + 0x5d, 0x76, 0x9e, 0x58, 0xfc, 0xd0, 0x0a, 0xd5, 0xfc, 0x72, 0xde, 0xe8, 0x1d, 0xc6, 0x4b, 0x30, + 0x27, 0x65, 0x06, 0x5a, 0x91, 0xbb, 0x61, 0x32, 0xa0, 0x1f, 0x83, 0xb9, 0xeb, 0x96, 0x4d, 0xd7, + 0xb7, 0x3b, 0xce, 0x0e, 0x3e, 0x04, 0x05, 0x93, 0x7d, 0x70, 0x1d, 0xe6, 0x8d, 0x88, 0xd0, 0xbf, + 0x85, 0xe0, 0xd8, 0x30, 0xad, 0x1f, 0x58, 0xe1, 0x36, 0x5b, 0x1f, 0x0c, 0x53, 0xdf, 0xdc, 0xa6, + 0xe6, 0x4e, 0xd0, 0x69, 0x4b, 0x97, 0x93, 0xf4, 0x84, 0x2e, 0xf7, 0x53, 0x04, 0xcb, 0x23, 0x31, + 0x3d, 0xf0, 0x89, 0xe7, 0x51, 0x1f, 0x5f, 0x87, 0xc2, 0x43, 0xf6, 0x03, 0x3f, 0x60, 0xe5, 0x46, + 0xad, 0xa6, 0x06, 0xe8, 0x91, 0x5c, 0x6e, 0x7e, 0xc4, 0x88, 0x96, 0xe3, 0x9a, 0x34, 0x4f, 0x8e, + 0xf3, 0x59, 0x4c, 0xf1, 0x89, 0xad, 0xc8, 0xe6, 0xf3, 0x69, 0x57, 0x8a, 0x30, 0xe3, 0x11, 0x3f, + 0xd4, 0x0f, 0xc3, 0x0b, 0xe9, 0xe3, 0xe1, 0xb9, 0x4e, 0x40, 0xf5, 0xdf, 0xa4, 0xbd, 0x69, 0xdd, + 0xa7, 0x24, 0xa4, 0x06, 0x7d, 0xd8, 0xa1, 0x41, 0x88, 0x77, 0x40, 0xcd, 0x19, 0xdc, 0xaa, 0xe5, + 0xc6, 0xad, 0x5a, 0x12, 0x74, 0x6b, 0x32, 0xe8, 0xf2, 0x8f, 0x2f, 0x99, 0xcd, 0x5a, 0xb7, 0x51, + 0xf3, 0x76, 0x5a, 0x35, 0x16, 0xc2, 0x53, 0xc8, 0x64, 0x08, 0x57, 0x55, 0x35, 0x54, 0xee, 0x78, + 0x11, 0x8a, 0x1d, 0x2f, 0xa0, 0x7e, 0xc8, 0x35, 0x2b, 0x19, 0x82, 0x62, 0xfb, 0xd7, 0x25, 0xb6, + 0xd5, 0x24, 0x61, 0xb4, 0x3f, 0x25, 0x23, 0xa6, 0xf5, 0xdf, 0xa6, 0xd1, 0xdf, 0xf7, 0x9a, 0x1f, + 0x16, 0x7a, 0x15, 0x65, 0x2e, 0x8d, 0x52, 0xf5, 0xa0, 0x7c, 0xda, 0x83, 0x7e, 0x99, 0xc6, 0x7f, + 0x95, 0xda, 0x34, 0xc1, 0x3f, 0xc8, 0x99, 0x35, 0x98, 0x35, 0x49, 0x60, 0x92, 0xa6, 0x94, 0x22, + 0x49, 0x16, 0xc8, 0x3c, 0xdf, 0xf5, 0x48, 0x8b, 0x73, 0xba, 0xeb, 0xda, 0x96, 0xb9, 0x2b, 0xc4, + 0xf5, 0xff, 0xd0, 0xe7, 0xf8, 0x33, 0xd9, 0x8e, 0x5f, 0x48, 0xc3, 0x3e, 0x0e, 0xe5, 0xcd, 0x5d, + 0xc7, 0x7c, 0xdd, 0x8b, 0x0e, 0xf7, 0x21, 0x28, 0x58, 0x21, 0x6d, 0x07, 0x1a, 0xe2, 0x07, 0x3b, + 0x22, 0xf4, 0xff, 0x14, 0x60, 0x51, 0xd1, 0x8d, 0x2d, 0xc8, 0xd2, 0x2c, 0x2b, 0x4a, 0x2d, 0x42, + 0xb1, 0xe9, 0xef, 0x1a, 0x1d, 0x47, 0x38, 0x80, 0xa0, 0x98, 0x60, 0xcf, 0xef, 0x38, 0x11, 0xfc, + 0x92, 0x11, 0x11, 0x78, 0x0b, 0x4a, 0x41, 0xc8, 0xaa, 0x84, 0xd6, 0x2e, 0x07, 0x5e, 0x6e, 0x7c, + 0x66, 0xb2, 0x4d, 0x67, 0xd0, 0x37, 0x05, 0x47, 0x23, 0xe6, 0x8d, 0x1f, 0xb2, 0x98, 0x16, 0x05, + 0xba, 0x40, 0x9b, 0xad, 0xe6, 0x97, 0xcb, 0x8d, 0xcd, 0xc9, 0x05, 0xbd, 0xee, 0xb1, 0x0a, 0x47, + 0xc9, 0x60, 0x46, 0x22, 0x85, 0x85, 0xd1, 0xb6, 0x88, 0x0f, 0x81, 0xc8, 0xe6, 0xc9, 0x00, 0xfe, + 0x02, 0x14, 0x2c, 0x67, 0xcb, 0x0d, 0xb4, 0x39, 0x0e, 0xe6, 0xca, 0x64, 0x60, 0x6e, 0x39, 0x5b, + 0xae, 0x11, 0x31, 0xc4, 0x0f, 0x61, 0xc1, 0xa7, 0xa1, 0xbf, 0x2b, 0xad, 0xa0, 0x01, 0xb7, 0xeb, + 0x67, 0x27, 0x93, 0x60, 0xa8, 0x2c, 0x8d, 0xb4, 0x04, 0xbc, 0x06, 0xe5, 0x20, 0xf1, 0x31, 0xad, + 0xcc, 0x05, 0x6a, 0x29, 0x46, 0x8a, 0x0f, 0x1a, 0xea, 0xe4, 0x3e, 0xef, 0x9e, 0xcf, 0xf6, 0xee, + 0x85, 0x91, 0x59, 0x6d, 0xdf, 0x18, 0x59, 0x6d, 0x7f, 0x6f, 0x56, 0xfb, 0x37, 0x82, 0xa5, 0xbe, + 0xe0, 0xb4, 0xe9, 0xd1, 0xcc, 0x63, 0x40, 0x60, 0x26, 0xf0, 0xa8, 0xc9, 0x33, 0x55, 0xb9, 0x71, + 0x7b, 0x6a, 0xd1, 0x8a, 0xcb, 0xe5, 0xac, 0xb3, 0x02, 0xea, 0x84, 0x71, 0xe1, 0x87, 0x08, 0x3e, + 0xaa, 0xc8, 0xbc, 0x4b, 0x42, 0x73, 0x3b, 0x4b, 0x59, 0x76, 0x7e, 0xd9, 0x1c, 0x91, 0x97, 0x23, + 0x82, 0x59, 0x95, 0x7f, 0xdc, 0xdb, 0xf5, 0x18, 0x40, 0xf6, 0x4b, 0x32, 0x30, 0x61, 0xf1, 0xf4, + 0x33, 0x04, 0x15, 0x35, 0x86, 0xbb, 0xb6, 0xfd, 0x26, 0x31, 0x77, 0xb2, 0x40, 0xee, 0x83, 0x9c, + 0xd5, 0xe4, 0x08, 0xf3, 0x46, 0xce, 0x6a, 0xee, 0x31, 0x18, 0xf5, 0xc2, 0x2d, 0x66, 0xc3, 0x9d, + 0x4d, 0xc3, 0xfd, 0xa0, 0x07, 0xae, 0x0c, 0x09, 0x19, 0x70, 0x97, 0x60, 0xce, 0xe9, 0x29, 0x64, + 0x93, 0x81, 0x01, 0x05, 0x6c, 0xae, 0xaf, 0x80, 0xd5, 0x60, 0xb6, 0x1b, 0x5f, 0x53, 0xd8, 0xcf, + 0x92, 0x64, 0x2a, 0xb6, 0x7c, 0xb7, 0xe3, 0x09, 0xa3, 0x47, 0x04, 0x43, 0xb1, 0x63, 0x39, 0x4d, + 0xad, 0x18, 0xa1, 0x60, 0xdf, 0x7b, 0xbf, 0x98, 0xa4, 0xd4, 0xfe, 0x79, 0x0e, 0x3e, 0x36, 0x40, + 0xed, 0x91, 0xfe, 0xf4, 0x7c, 0xe8, 0x1e, 0x7b, 0xf5, 0xec, 0x50, 0xaf, 0x2e, 0x8d, 0xf2, 0xea, + 0xb9, 0x6c, 0x7b, 0x41, 0xda, 0x5e, 0x3f, 0xc9, 0x41, 0x75, 0x80, 0xbd, 0x46, 0x97, 0x13, 0xcf, + 0x8d, 0xc1, 0xb6, 0x5c, 0x5f, 0x78, 0x49, 0xc9, 0x88, 0x08, 0x76, 0xce, 0x5c, 0xdf, 0xdb, 0x26, + 0x0e, 0xf7, 0x8e, 0x92, 0x21, 0xa8, 0x09, 0x4d, 0xf5, 0xf5, 0x1c, 0x68, 0xd2, 0x3e, 0x97, 0x4d, + 0x6e, 0xad, 0x8e, 0xf3, 0xfc, 0x9b, 0x68, 0x11, 0x8a, 0x84, 0xa3, 0x15, 0x4e, 0x25, 0xa8, 0x3e, + 0x63, 0x94, 0xb2, 0x8d, 0x31, 0x97, 0x36, 0xc6, 0x53, 0x04, 0x47, 0xd2, 0xc6, 0x08, 0x36, 0xac, + 0x20, 0x94, 0x97, 0x03, 0xbc, 0x05, 0xb3, 0x91, 0x9c, 0xa8, 0xb4, 0x2b, 0x37, 0x36, 0x26, 0x4d, + 0xf8, 0x29, 0xc3, 0x4b, 0xe6, 0xfa, 0xcb, 0x70, 0x64, 0x60, 0x94, 0x13, 0x30, 0x2a, 0x50, 0x92, + 0x45, 0x8e, 0xd8, 0x9a, 0x98, 0xd6, 0x9f, 0xce, 0xa4, 0x53, 0x8e, 0xdb, 0xdc, 0x70, 0x5b, 0x19, + 0xf7, 0xfd, 0xec, 0xed, 0x64, 0xa6, 0x72, 0x9b, 0xca, 0xd5, 0x5e, 0x92, 0x6c, 0x9d, 0xe9, 0x3a, + 0x21, 0xb1, 0x1c, 0xea, 0x8b, 0xac, 0x98, 0x0c, 0xb0, 0x6d, 0x08, 0x2c, 0xc7, 0xa4, 0x9b, 0xd4, + 0x74, 0x9d, 0x66, 0xc0, 0xf7, 0x33, 0x6f, 0xa4, 0xc6, 0xf0, 0x4d, 0x98, 0xe3, 0xf4, 0x3d, 0xab, + 0x1d, 0xa5, 0x81, 0x72, 0x63, 0xa5, 0x16, 0xf5, 0xd0, 0x6a, 0x6a, 0x0f, 0x2d, 0xb1, 0x61, 0x9b, + 0x86, 0xa4, 0xd6, 0xbd, 0x50, 0x63, 0x2b, 0x8c, 0x64, 0x31, 0xc3, 0x12, 0x12, 0xcb, 0xde, 0xb0, + 0x1c, 0x5e, 0x78, 0x32, 0x51, 0xc9, 0x00, 0x73, 0x95, 0x2d, 0xd7, 0xb6, 0xdd, 0x47, 0xf2, 0xdc, + 0x44, 0x14, 0x5b, 0xd5, 0x71, 0x42, 0xcb, 0xe6, 0xf2, 0x23, 0x47, 0x48, 0x06, 0xf8, 0x2a, 0xcb, + 0x0e, 0xa9, 0x2f, 0x0e, 0x8c, 0xa0, 0x62, 0x67, 0x2c, 0x47, 0x6d, 0x21, 0x79, 0x5e, 0x23, 0xb7, + 0x9d, 0x57, 0xdd, 0xb6, 0xf7, 0x28, 0x2c, 0x0c, 0xe8, 0x8d, 0xf0, 0x2e, 0x19, 0xed, 0x5a, 0x6e, + 0x87, 0xd5, 0x54, 0xbc, 0xf4, 0x90, 0x74, 0x9f, 0x2b, 0xef, 0xcf, 0x76, 0xe5, 0x03, 0x69, 0x57, + 0xfe, 0x1d, 0x82, 0xd2, 0x86, 0xdb, 0xba, 0xe6, 0x84, 0xfe, 0x2e, 0xbf, 0x25, 0xb9, 0x4e, 0x48, + 0x1d, 0xe9, 0x2f, 0x92, 0x64, 0x9b, 0x10, 0x5a, 0x6d, 0xba, 0x19, 0x92, 0xb6, 0x27, 0x6a, 0xac, + 0x3d, 0x6d, 0x42, 0xbc, 0x98, 0x19, 0xc6, 0x26, 0x41, 0xc8, 0x4f, 0x7c, 0xc9, 0xe0, 0xdf, 0x4c, + 0x85, 0x78, 0xc2, 0x66, 0xe8, 0x8b, 0xe3, 0x9e, 0x1a, 0x53, 0x5d, 0xac, 0x10, 0x61, 0x13, 0xa4, + 0xde, 0x86, 0x17, 0xe3, 0xe2, 0xff, 0x1e, 0xf5, 0xdb, 0x96, 0x43, 0xb2, 0xa3, 0xf7, 0x18, 0xed, + 0xb9, 0x8c, 0xbb, 0xa7, 0x9b, 0x3a, 0x74, 0xac, 0x96, 0x7e, 0x60, 0x39, 0x4d, 0xf7, 0x51, 0xc6, + 0xe1, 0x99, 0x4c, 0xe0, 0x5f, 0xd2, 0x1d, 0x3a, 0x45, 0x62, 0x7c, 0xd2, 0x6f, 0xc2, 0x02, 0x8b, + 0x09, 0x5d, 0x2a, 0x7e, 0x10, 0x61, 0x47, 0x1f, 0xd6, 0x2c, 0x49, 0x78, 0x18, 0xe9, 0x85, 0x78, + 0x03, 0xf6, 0x93, 0x20, 0xb0, 0x5a, 0x0e, 0x6d, 0x4a, 0x5e, 0xb9, 0xb1, 0x79, 0xf5, 0x2e, 0x8d, + 0xae, 0xdd, 0x7c, 0x86, 0xd8, 0x6f, 0x49, 0xea, 0x5f, 0x43, 0x70, 0x78, 0x20, 0x93, 0xf8, 0xe4, + 0x20, 0x25, 0x8c, 0x57, 0xa0, 0x14, 0x98, 0xdb, 0xb4, 0xd9, 0xb1, 0xa9, 0xec, 0x45, 0x49, 0x9a, + 0xfd, 0xd6, 0xec, 0x44, 0xbb, 0x2f, 0xd2, 0x48, 0x4c, 0xe3, 0xa3, 0x00, 0x6d, 0xe2, 0x74, 0x88, + 0xcd, 0x21, 0xcc, 0x70, 0x08, 0xca, 0x88, 0xbe, 0x04, 0x95, 0x41, 0xae, 0x23, 0x7a, 0x3c, 0xff, + 0x42, 0xb0, 0x4f, 0x06, 0x55, 0xb1, 0xbb, 0xcb, 0xb0, 0x5f, 0x31, 0xc3, 0x9d, 0x64, 0xa3, 0x7b, + 0x87, 0x47, 0x04, 0x4c, 0xe9, 0x25, 0xf9, 0x74, 0x93, 0xbc, 0x9b, 0x6a, 0x73, 0x8f, 0x9d, 0xef, + 0xd0, 0x94, 0xea, 0xc7, 0xaf, 0x82, 0x76, 0x9b, 0x38, 0xa4, 0x45, 0x9b, 0xb1, 0xda, 0xb1, 0x8b, + 0x7d, 0x59, 0x6d, 0x56, 0x4c, 0xdc, 0x1a, 0x88, 0x4b, 0x2d, 0x6b, 0x6b, 0x4b, 0x36, 0x3e, 0x7c, + 0x28, 0x6d, 0x58, 0xce, 0x0e, 0xbb, 0x3f, 0x33, 0x8d, 0x43, 0x2b, 0xb4, 0xa5, 0x75, 0x23, 0x02, + 0x1f, 0x80, 0x7c, 0xc7, 0xb7, 0x85, 0x07, 0xb0, 0x4f, 0x5c, 0x85, 0x72, 0x93, 0x06, 0xa6, 0x6f, + 0x79, 0x62, 0xff, 0x79, 0xd3, 0x58, 0x19, 0x62, 0xfb, 0x60, 0x99, 0xae, 0xb3, 0x6e, 0x93, 0x20, + 0x90, 0x09, 0x28, 0x1e, 0xd0, 0x5f, 0x85, 0x05, 0x26, 0x33, 0x51, 0xf3, 0x6c, 0x5a, 0xcd, 0xc3, + 0x29, 0xf8, 0x12, 0x9e, 0x44, 0x4c, 0xe0, 0x05, 0x96, 0xf7, 0x2f, 0x7b, 0x9e, 0x60, 0x32, 0x66, + 0x39, 0x94, 0x1f, 0x94, 0x3f, 0x07, 0xf6, 0x4a, 0x1b, 0x7f, 0x3b, 0x0e, 0x58, 0x3d, 0x27, 0xd4, + 0xef, 0x5a, 0x26, 0xc5, 0xdf, 0x46, 0x30, 0xc3, 0x44, 0xe3, 0x97, 0x86, 0x1d, 0x4b, 0xee, 0xaf, + 0x95, 0xe9, 0x5d, 0x84, 0x99, 0x34, 0x7d, 0xe9, 0xad, 0xbf, 0xfe, 0xe3, 0x3b, 0xb9, 0x45, 0x7c, + 0x88, 0xbf, 0x70, 0x75, 0x2f, 0xa8, 0xaf, 0x4d, 0x01, 0x7e, 0x1b, 0x01, 0x16, 0x75, 0x90, 0xf2, + 0x86, 0x80, 0xcf, 0x0e, 0x83, 0x38, 0xe0, 0xad, 0xa1, 0xf2, 0x92, 0x92, 0x55, 0x6a, 0xa6, 0xeb, + 0x53, 0x96, 0x43, 0xf8, 0x04, 0x0e, 0x60, 0x85, 0x03, 0x38, 0x81, 0xf5, 0x41, 0x00, 0xea, 0x8f, + 0x99, 0x45, 0x9f, 0xd4, 0x69, 0x24, 0xf7, 0x5d, 0x04, 0x85, 0x07, 0xfc, 0x0e, 0x31, 0xc2, 0x48, + 0x9b, 0x53, 0x33, 0x12, 0x17, 0xc7, 0xd1, 0xea, 0xc7, 0x39, 0xd2, 0x97, 0xf0, 0x11, 0x89, 0x34, + 0x08, 0x7d, 0x4a, 0xda, 0x29, 0xc0, 0xe7, 0x11, 0x7e, 0x0f, 0x41, 0x31, 0x6a, 0x1e, 0xe3, 0x93, + 0xc3, 0x50, 0xa6, 0x9a, 0xcb, 0x95, 0xe9, 0x75, 0x62, 0xf5, 0x33, 0x1c, 0xe3, 0x71, 0x7d, 0xe0, + 0x76, 0xae, 0xa5, 0xfa, 0xb4, 0xef, 0x20, 0xc8, 0xdf, 0xa0, 0x23, 0xfd, 0x6d, 0x8a, 0xe0, 0xfa, + 0x0c, 0x38, 0x60, 0xab, 0xf1, 0x8f, 0x11, 0xbc, 0x78, 0x83, 0x86, 0x83, 0xd3, 0x23, 0x5e, 0x1e, + 0x9d, 0xb3, 0x84, 0xdb, 0x9d, 0x1d, 0x63, 0x66, 0x9c, 0x17, 0xea, 0x1c, 0xd9, 0x19, 0x7c, 0x3a, + 0xcb, 0x09, 0x83, 0x5d, 0xc7, 0x7c, 0x24, 0x70, 0xfc, 0x09, 0xc1, 0x81, 0xde, 0xb7, 0x3e, 0x9c, + 0x4e, 0xa8, 0x03, 0x9f, 0x02, 0x2b, 0x77, 0x26, 0x8d, 0xb2, 0x69, 0xa6, 0xfa, 0x65, 0x8e, 0xfc, + 0x15, 0xfc, 0x72, 0x16, 0xf2, 0xb8, 0x13, 0x57, 0x7f, 0x2c, 0x3f, 0x9f, 0xf0, 0x77, 0x69, 0x0e, + 0xfb, 0xcf, 0x08, 0x0e, 0x49, 0xbe, 0xeb, 0xdb, 0xc4, 0x0f, 0xaf, 0x52, 0x56, 0x43, 0x07, 0x63, + 0xe9, 0x33, 0x61, 0xd6, 0x50, 0xe5, 0xe9, 0xd7, 0xb8, 0x2e, 0x9f, 0xc2, 0xaf, 0xed, 0x59, 0x17, + 0x93, 0xb1, 0x69, 0x0a, 0xd8, 0x6f, 0x21, 0x98, 0xbf, 0x41, 0xc3, 0xdb, 0x71, 0x37, 0xf8, 0xe4, + 0x58, 0x2f, 0x4c, 0x95, 0xa5, 0x9a, 0xf2, 0x1c, 0x2e, 0x7f, 0x8a, 0x5d, 0x64, 0x95, 0x83, 0x3b, + 0x8d, 0x4f, 0x66, 0x81, 0x4b, 0x3a, 0xd0, 0xef, 0x22, 0x38, 0xac, 0x82, 0x48, 0x5e, 0xe6, 0x3e, + 0xb1, 0xb7, 0xf7, 0x2e, 0xf1, 0x6a, 0x36, 0x02, 0x5d, 0x83, 0xa3, 0x3b, 0xa7, 0x0f, 0x76, 0xe0, + 0x76, 0x1f, 0x8a, 0x35, 0xb4, 0xb2, 0x8c, 0xf0, 0xef, 0x11, 0x14, 0xa3, 0x66, 0xec, 0x70, 0x1b, + 0xa5, 0x5e, 0x92, 0xa6, 0x19, 0x0d, 0xc4, 0x6e, 0x57, 0xce, 0x0f, 0x36, 0xa8, 0xba, 0x5e, 0xba, + 0x6a, 0x8d, 0x5b, 0x39, 0x1d, 0xc6, 0x7e, 0x85, 0x00, 0x92, 0x86, 0x32, 0x3e, 0x93, 0xad, 0x87, + 0xd2, 0x74, 0xae, 0x4c, 0xb7, 0xa5, 0xac, 0xd7, 0xb8, 0x3e, 0xcb, 0x95, 0x6a, 0x66, 0x0c, 0xf1, + 0xa8, 0xb9, 0x16, 0x35, 0x9f, 0x7f, 0x84, 0xa0, 0xc0, 0xfb, 0x78, 0xf8, 0xc4, 0x30, 0xcc, 0x6a, + 0x9b, 0x6f, 0x9a, 0xa6, 0x3f, 0xc5, 0xa1, 0x56, 0x1b, 0x59, 0x81, 0x78, 0x0d, 0xad, 0xe0, 0x2e, + 0x14, 0xa3, 0xce, 0xd9, 0x70, 0xf7, 0x48, 0x75, 0xd6, 0x2a, 0xd5, 0x8c, 0xc2, 0x20, 0x72, 0x54, + 0x91, 0x03, 0x56, 0x46, 0xe5, 0x80, 0x19, 0x16, 0xa6, 0xf1, 0xf1, 0xac, 0x20, 0xfe, 0x7f, 0x30, + 0xcc, 0x59, 0x8e, 0xee, 0xa4, 0x5e, 0x1d, 0x95, 0x07, 0x98, 0x75, 0xbe, 0x8b, 0xe0, 0x40, 0x6f, + 0x71, 0x8d, 0x8f, 0xf4, 0xc4, 0x4c, 0xf5, 0xae, 0x51, 0x49, 0x5b, 0x71, 0x58, 0x61, 0xae, 0x7f, + 0x9a, 0xa3, 0x58, 0xc3, 0x97, 0x46, 0x9e, 0x8c, 0x3b, 0x32, 0xea, 0x30, 0x46, 0xab, 0xc9, 0xeb, + 0xd8, 0xaf, 0x11, 0xcc, 0x4b, 0xbe, 0xf7, 0x7c, 0x4a, 0xb3, 0x61, 0x4d, 0xef, 0x20, 0x30, 0x59, + 0xfa, 0xab, 0x1c, 0xfe, 0x27, 0xf1, 0xc5, 0x31, 0xe1, 0x4b, 0xd8, 0xab, 0x21, 0x43, 0xfa, 0x07, + 0x04, 0x07, 0x1f, 0x44, 0x7e, 0xff, 0x21, 0xe1, 0x5f, 0xe7, 0xf8, 0x5f, 0xc3, 0xaf, 0x64, 0xd4, + 0x79, 0xa3, 0xd4, 0x38, 0x8f, 0xf0, 0x2f, 0x10, 0x94, 0xe4, 0xab, 0x0a, 0x3e, 0x3d, 0xf4, 0x60, + 0xa4, 0xdf, 0x5d, 0xa6, 0xe9, 0xcc, 0xa2, 0xa8, 0xd1, 0x4f, 0x64, 0xa6, 0x53, 0x21, 0x9f, 0x39, + 0xf4, 0x3b, 0x08, 0x70, 0x7c, 0x67, 0x8e, 0x6f, 0xd1, 0xf8, 0x54, 0x4a, 0xd4, 0xd0, 0xc6, 0x4c, + 0xe5, 0xf4, 0xc8, 0x79, 0xe9, 0x54, 0xba, 0x92, 0x99, 0x4a, 0xdd, 0x58, 0xfe, 0x37, 0x10, 0x94, + 0x6f, 0xd0, 0xf8, 0x0e, 0x92, 0x61, 0xcb, 0xf4, 0xa3, 0x50, 0x65, 0x79, 0xf4, 0x44, 0x81, 0xe8, + 0x1c, 0x47, 0x74, 0x0a, 0x67, 0x9b, 0x4a, 0x02, 0xf8, 0x3e, 0x82, 0x85, 0xbb, 0xaa, 0x8b, 0xe2, + 0x73, 0xa3, 0x24, 0xa5, 0x22, 0xf9, 0xf8, 0xb8, 0x3e, 0xce, 0x71, 0xad, 0xea, 0x63, 0xe1, 0x5a, + 0x13, 0xef, 0x2b, 0x3f, 0x40, 0xd1, 0x25, 0xb6, 0xa7, 0x9f, 0xfd, 0xbf, 0xda, 0x2d, 0xa3, 0x2d, + 0xae, 0x5f, 0xe4, 0xf8, 0x6a, 0xf8, 0xdc, 0x38, 0xf8, 0xea, 0xa2, 0xc9, 0x8d, 0xbf, 0x87, 0xe0, + 0x20, 0x7f, 0x6b, 0x50, 0x19, 0xf7, 0xa4, 0x98, 0x61, 0x2f, 0x13, 0x63, 0xa4, 0x18, 0x11, 0x7f, + 0xf4, 0x3d, 0x81, 0x5a, 0x93, 0xef, 0x08, 0xdf, 0x44, 0xb0, 0x4f, 0x26, 0x35, 0xb1, 0xbb, 0xab, + 0xa3, 0x0c, 0xb7, 0xd7, 0x24, 0x28, 0xdc, 0x6d, 0x65, 0x3c, 0x77, 0x7b, 0x0f, 0xc1, 0xac, 0xe8, + 0xe6, 0x67, 0x94, 0x0a, 0x4a, 0xbb, 0xbf, 0xd2, 0xd3, 0xe3, 0x10, 0xcd, 0x60, 0xfd, 0x8b, 0x5c, + 0xec, 0x7d, 0x5c, 0xcf, 0x12, 0xeb, 0xb9, 0xcd, 0xa0, 0xfe, 0x58, 0x74, 0x62, 0x9f, 0xd4, 0x6d, + 0xb7, 0x15, 0xbc, 0xa1, 0xe3, 0xcc, 0x84, 0xc8, 0xe6, 0x9c, 0x47, 0x38, 0x84, 0x39, 0xe6, 0x1c, + 0xbc, 0x71, 0x82, 0xab, 0x3d, 0x6d, 0x96, 0xbe, 0x9e, 0x4a, 0xa5, 0xd2, 0xd7, 0x88, 0x49, 0x32, + 0xa0, 0xb8, 0xc6, 0xe2, 0x63, 0x99, 0x62, 0xb9, 0xa0, 0xb7, 0x11, 0x1c, 0x54, 0xbd, 0x3d, 0x12, + 0x3f, 0xb6, 0xaf, 0x67, 0xa1, 0x10, 0x45, 0x35, 0x5e, 0x19, 0xcb, 0x91, 0x38, 0x9c, 0x2b, 0xd7, + 0xff, 0xf8, 0xec, 0x28, 0x7a, 0xff, 0xd9, 0x51, 0xf4, 0xf7, 0x67, 0x47, 0xd1, 0x1b, 0x97, 0xc6, + 0xfb, 0x8f, 0xaf, 0x69, 0x5b, 0xd4, 0x09, 0x55, 0xf6, 0xff, 0x0d, 0x00, 0x00, 0xff, 0xff, 0x57, + 0x9a, 0x85, 0xd1, 0xc9, 0x2c, 0x00, 0x00, } // Reference imports to suppress errors if they are not otherwise used. @@ -4981,6 +4998,22 @@ func (m *ApplicationSyncRequest) MarshalToSizedBuffer(dAtA []byte) (int, error) i -= len(m.XXX_unrecognized) copy(dAtA[i:], m.XXX_unrecognized) } + if len(m.Revisions) > 0 { + for iNdEx := len(m.Revisions) - 1; iNdEx >= 0; iNdEx-- { + i -= len(m.Revisions[iNdEx]) + copy(dAtA[i:], m.Revisions[iNdEx]) + i = encodeVarintApplication(dAtA, i, uint64(len(m.Revisions[iNdEx]))) + i-- + dAtA[i] = 0x7a + } + } + if len(m.SourcePositions) > 0 { + for iNdEx := len(m.SourcePositions) - 1; iNdEx >= 0; iNdEx-- { + i = encodeVarintApplication(dAtA, i, uint64(m.SourcePositions[iNdEx])) + i-- + dAtA[i] = 0x70 + } + } if m.Project != nil { i -= len(*m.Project) copy(dAtA[i:], *m.Project) @@ -7009,6 +7042,17 @@ func (m *ApplicationSyncRequest) Size() (n int) { l = len(*m.Project) n += 1 + l + sovApplication(uint64(l)) } + if len(m.SourcePositions) > 0 { + for _, e := range m.SourcePositions { + n += 1 + sovApplication(uint64(e)) + } + } + if len(m.Revisions) > 0 { + for _, s := range m.Revisions { + l = len(s) + n += 1 + l + sovApplication(uint64(l)) + } + } if m.XXX_unrecognized != nil { n += len(m.XXX_unrecognized) } @@ -10305,6 +10349,114 @@ func (m *ApplicationSyncRequest) Unmarshal(dAtA []byte) error { s := string(dAtA[iNdEx:postIndex]) m.Project = &s iNdEx = postIndex + case 14: + if wireType == 0 { + var v int64 + for shift := uint(0); ; shift += 7 { + if shift >= 64 { + return ErrIntOverflowApplication + } + if iNdEx >= l { + return io.ErrUnexpectedEOF + } + b := dAtA[iNdEx] + iNdEx++ + v |= int64(b&0x7F) << shift + if b < 0x80 { + break + } + } + m.SourcePositions = append(m.SourcePositions, v) + } else if wireType == 2 { + var packedLen int + for shift := uint(0); ; shift += 7 { + if shift >= 64 { + return ErrIntOverflowApplication + } + if iNdEx >= l { + return io.ErrUnexpectedEOF + } + b := dAtA[iNdEx] + iNdEx++ + packedLen |= int(b&0x7F) << shift + if b < 0x80 { + break + } + } + if packedLen < 0 { + return ErrInvalidLengthApplication + } + postIndex := iNdEx + packedLen + if postIndex < 0 { + return ErrInvalidLengthApplication + } + if postIndex > l { + return io.ErrUnexpectedEOF + } + var elementCount int + var count int + for _, integer := range dAtA[iNdEx:postIndex] { + if integer < 128 { + count++ + } + } + elementCount = count + if elementCount != 0 && len(m.SourcePositions) == 0 { + m.SourcePositions = make([]int64, 0, elementCount) + } + for iNdEx < postIndex { + var v int64 + for shift := uint(0); ; shift += 7 { + if shift >= 64 { + return ErrIntOverflowApplication + } + if iNdEx >= l { + return io.ErrUnexpectedEOF + } + b := dAtA[iNdEx] + iNdEx++ + v |= int64(b&0x7F) << shift + if b < 0x80 { + break + } + } + m.SourcePositions = append(m.SourcePositions, v) + } + } else { + return fmt.Errorf("proto: wrong wireType = %d for field SourcePositions", wireType) + } + case 15: + if wireType != 2 { + return fmt.Errorf("proto: wrong wireType = %d for field Revisions", wireType) + } + var stringLen uint64 + for shift := uint(0); ; shift += 7 { + if shift >= 64 { + return ErrIntOverflowApplication + } + if iNdEx >= l { + return io.ErrUnexpectedEOF + } + b := dAtA[iNdEx] + iNdEx++ + stringLen |= uint64(b&0x7F) << shift + if b < 0x80 { + break + } + } + intStringLen := int(stringLen) + if intStringLen < 0 { + return ErrInvalidLengthApplication + } + postIndex := iNdEx + intStringLen + if postIndex < 0 { + return ErrInvalidLengthApplication + } + if postIndex > l { + return io.ErrUnexpectedEOF + } + m.Revisions = append(m.Revisions, string(dAtA[iNdEx:postIndex])) + iNdEx = postIndex default: iNdEx = preIndex skippy, err := skipApplication(dAtA[iNdEx:]) diff --git a/pkg/apis/application/v1alpha1/types.go b/pkg/apis/application/v1alpha1/types.go index e00994a512940..a370bec6acc81 100644 --- a/pkg/apis/application/v1alpha1/types.go +++ b/pkg/apis/application/v1alpha1/types.go @@ -230,11 +230,16 @@ func (a *ApplicationSpec) HasMultipleSources() bool { return a.Sources != nil && len(a.Sources) > 0 } -func (a *ApplicationSpec) GetSourcePtr(index int) *ApplicationSource { +func (a *ApplicationSpec) GetSourcePtrByPosition(sourcePosition int) *ApplicationSource { + // if Application has multiple sources, return the first source in sources + return a.GetSourcePtrByIndex(sourcePosition - 1) +} + +func (a *ApplicationSpec) GetSourcePtrByIndex(sourceIndex int) *ApplicationSource { // if Application has multiple sources, return the first source in sources if a.HasMultipleSources() { - if index > 0 { - return &a.Sources[index-1] + if sourceIndex > 0 { + return &a.Sources[sourceIndex] } return &a.Sources[0] } diff --git a/pkg/apis/application/v1alpha1/types_test.go b/pkg/apis/application/v1alpha1/types_test.go index fb78e4d93cbc4..b36fa670af617 100644 --- a/pkg/apis/application/v1alpha1/types_test.go +++ b/pkg/apis/application/v1alpha1/types_test.go @@ -3683,3 +3683,50 @@ func TestOptionalMapEquality(t *testing.T) { }) } } + +func TestApplicationSpec_GetSourcePtrByIndex(t *testing.T) { + testCases := []struct { + name string + application ApplicationSpec + sourceIndex int + expected *ApplicationSource + }{ + { + name: "HasMultipleSources_ReturnsFirstSource", + application: ApplicationSpec{ + Sources: []ApplicationSource{ + {RepoURL: "https://github.com/argoproj/test1.git"}, + {RepoURL: "https://github.com/argoproj/test2.git"}, + }, + }, + sourceIndex: 0, + expected: &ApplicationSource{RepoURL: "https://github.com/argoproj/test1.git"}, + }, + { + name: "HasMultipleSources_ReturnsSourceAtIndex", + application: ApplicationSpec{ + Sources: []ApplicationSource{ + {RepoURL: "https://github.com/argoproj/test1.git"}, + {RepoURL: "https://github.com/argoproj/test2.git"}, + }, + }, + sourceIndex: 1, + expected: &ApplicationSource{RepoURL: "https://github.com/argoproj/test2.git"}, + }, + { + name: "HasSingleSource_ReturnsSource", + application: ApplicationSpec{ + Source: &ApplicationSource{RepoURL: "https://github.com/argoproj/test.git"}, + }, + sourceIndex: 0, + expected: &ApplicationSource{RepoURL: "https://github.com/argoproj/test.git"}, + }, + } + + for _, tc := range testCases { + t.Run(tc.name, func(t *testing.T) { + actual := tc.application.GetSourcePtrByIndex(tc.sourceIndex) + assert.Equal(t, tc.expected, actual) + }) + } +} diff --git a/reposerver/apiclient/repository.pb.go b/reposerver/apiclient/repository.pb.go index 393c6699abf3c..707e1e95d9220 100644 --- a/reposerver/apiclient/repository.pb.go +++ b/reposerver/apiclient/repository.pb.go @@ -557,6 +557,7 @@ type ResolveRevisionRequest struct { Repo *v1alpha1.Repository `protobuf:"bytes,1,opt,name=repo,proto3" json:"repo,omitempty"` App *v1alpha1.Application `protobuf:"bytes,2,opt,name=app,proto3" json:"app,omitempty"` AmbiguousRevision string `protobuf:"bytes,3,opt,name=ambiguousRevision,proto3" json:"ambiguousRevision,omitempty"` + SourceIndex int64 `protobuf:"varint,4,opt,name=sourceIndex,proto3" json:"sourceIndex,omitempty"` XXX_NoUnkeyedLiteral struct{} `json:"-"` XXX_unrecognized []byte `json:"-"` XXX_sizecache int32 `json:"-"` @@ -616,6 +617,13 @@ func (m *ResolveRevisionRequest) GetAmbiguousRevision() string { return "" } +func (m *ResolveRevisionRequest) GetSourceIndex() int64 { + if m != nil { + return m.SourceIndex + } + return 0 +} + // ResolveRevisionResponse type ResolveRevisionResponse struct { // returns the resolved revision @@ -2390,149 +2398,150 @@ func init() { } var fileDescriptor_dd8723cfcc820480 = []byte{ - // 2265 bytes of a gzipped FileDescriptorProto - 0x1f, 0x8b, 0x08, 0x00, 0x00, 0x00, 0x00, 0x00, 0x02, 0xff, 0xdc, 0x1a, 0x5d, 0x6f, 0x1b, 0xc7, - 0x51, 0x47, 0x52, 0x14, 0x39, 0x94, 0x25, 0x6a, 0x63, 0xcb, 0x67, 0xc6, 0x16, 0x94, 0x6b, 0x6d, - 0x38, 0x76, 0x42, 0xc2, 0x32, 0x12, 0xb7, 0x4e, 0x9a, 0x42, 0x71, 0x6c, 0xc9, 0xb1, 0x65, 0xab, - 0x67, 0xa7, 0x85, 0x5b, 0xb7, 0xc5, 0xf2, 0xb8, 0x24, 0x2f, 0x3c, 0xde, 0xad, 0xef, 0xf6, 0x14, - 0xd0, 0x40, 0x1f, 0x8a, 0x16, 0xfd, 0x09, 0x7d, 0xe8, 0xaf, 0x28, 0x50, 0x14, 0x7d, 0xec, 0x43, - 0xd1, 0x8f, 0xc7, 0xa2, 0x7f, 0xa0, 0x85, 0x5f, 0x0a, 0xf4, 0x57, 0x14, 0xfb, 0x71, 0x9f, 0x3c, - 0xd2, 0x4a, 0x69, 0x2b, 0x6d, 0x5f, 0xa4, 0xdb, 0xd9, 0xd9, 0x99, 0xd9, 0xd9, 0xf9, 0xdc, 0x25, - 0x5c, 0xf2, 0x09, 0xf5, 0x02, 0xe2, 0x1f, 0x11, 0xbf, 0x23, 0x3e, 0x6d, 0xe6, 0xf9, 0x93, 0xd4, - 0x67, 0x9b, 0xfa, 0x1e, 0xf3, 0x10, 0x24, 0x90, 0xd6, 0xfd, 0x81, 0xcd, 0x86, 0x61, 0xb7, 0x6d, - 0x79, 0xe3, 0x0e, 0xf6, 0x07, 0x1e, 0xf5, 0xbd, 0xcf, 0xc5, 0xc7, 0xbb, 0x56, 0xaf, 0x73, 0xb4, - 0xd3, 0xa1, 0xa3, 0x41, 0x07, 0x53, 0x3b, 0xe8, 0x60, 0x4a, 0x1d, 0xdb, 0xc2, 0xcc, 0xf6, 0xdc, - 0xce, 0xd1, 0x35, 0xec, 0xd0, 0x21, 0xbe, 0xd6, 0x19, 0x10, 0x97, 0xf8, 0x98, 0x91, 0x9e, 0xa4, - 0xdc, 0x7a, 0x73, 0xe0, 0x79, 0x03, 0x87, 0x74, 0xc4, 0xa8, 0x1b, 0xf6, 0x3b, 0x64, 0x4c, 0x99, - 0x62, 0x6b, 0xfc, 0x6b, 0x15, 0xd6, 0x0f, 0xb0, 0x6b, 0xf7, 0x49, 0xc0, 0x4c, 0xf2, 0x2c, 0x24, - 0x01, 0x43, 0x4f, 0xa1, 0xc2, 0x85, 0xd1, 0xb5, 0x6d, 0xed, 0x72, 0x63, 0x67, 0xbf, 0x9d, 0x48, - 0xd3, 0x8e, 0xa4, 0x11, 0x1f, 0x3f, 0xb6, 0x7a, 0xed, 0xa3, 0x9d, 0x36, 0x1d, 0x0d, 0xda, 0x5c, - 0x9a, 0x76, 0x4a, 0x9a, 0x76, 0x24, 0x4d, 0xdb, 0x8c, 0xb7, 0x65, 0x0a, 0xaa, 0xa8, 0x05, 0x35, - 0x9f, 0x1c, 0xd9, 0x81, 0xed, 0xb9, 0x7a, 0x69, 0x5b, 0xbb, 0x5c, 0x37, 0xe3, 0x31, 0xd2, 0x61, - 0xc5, 0xf5, 0x6e, 0x61, 0x6b, 0x48, 0xf4, 0xf2, 0xb6, 0x76, 0xb9, 0x66, 0x46, 0x43, 0xb4, 0x0d, - 0x0d, 0x4c, 0xe9, 0x7d, 0xdc, 0x25, 0xce, 0x3d, 0x32, 0xd1, 0x2b, 0x62, 0x61, 0x1a, 0xc4, 0xd7, - 0x62, 0x4a, 0x1f, 0xe0, 0x31, 0xd1, 0x97, 0xc5, 0x6c, 0x34, 0x44, 0xe7, 0xa1, 0xee, 0xe2, 0x31, - 0x09, 0x28, 0xb6, 0x88, 0x5e, 0x13, 0x73, 0x09, 0x00, 0xfd, 0x04, 0x36, 0x52, 0x82, 0x3f, 0xf2, - 0x42, 0xdf, 0x22, 0x3a, 0x88, 0xad, 0x3f, 0x5c, 0x6c, 0xeb, 0xbb, 0x79, 0xb2, 0xe6, 0x34, 0x27, - 0xf4, 0x23, 0x58, 0x16, 0x27, 0xaf, 0x37, 0xb6, 0xcb, 0xaf, 0x54, 0xdb, 0x92, 0x2c, 0x72, 0x61, - 0x85, 0x3a, 0xe1, 0xc0, 0x76, 0x03, 0x7d, 0x55, 0x70, 0x78, 0xbc, 0x18, 0x87, 0x5b, 0x9e, 0xdb, - 0xb7, 0x07, 0x07, 0xd8, 0xc5, 0x03, 0x32, 0x26, 0x2e, 0x3b, 0x14, 0xc4, 0xcd, 0x88, 0x09, 0x7a, - 0x0e, 0xcd, 0x51, 0x18, 0x30, 0x6f, 0x6c, 0x3f, 0x27, 0x0f, 0x29, 0x5f, 0x1b, 0xe8, 0xa7, 0x84, - 0x36, 0x1f, 0x2c, 0xc6, 0xf8, 0x5e, 0x8e, 0xaa, 0x39, 0xc5, 0x87, 0x1b, 0xc9, 0x28, 0xec, 0x92, - 0xef, 0x12, 0x5f, 0x58, 0xd7, 0x9a, 0x34, 0x92, 0x14, 0x48, 0x9a, 0x91, 0xad, 0x46, 0x81, 0xbe, - 0xbe, 0x5d, 0x96, 0x66, 0x14, 0x83, 0xd0, 0x65, 0x58, 0x3f, 0x22, 0xbe, 0xdd, 0x9f, 0x3c, 0xb2, - 0x07, 0x2e, 0x66, 0xa1, 0x4f, 0xf4, 0xa6, 0x30, 0xc5, 0x3c, 0x18, 0x8d, 0xe1, 0xd4, 0x90, 0x38, - 0x63, 0xae, 0xf2, 0x5b, 0x3e, 0xe9, 0x05, 0xfa, 0x86, 0xd0, 0xef, 0xde, 0xe2, 0x27, 0x28, 0xc8, - 0x99, 0x59, 0xea, 0x5c, 0x30, 0xd7, 0x33, 0x95, 0xa7, 0x48, 0x1f, 0x41, 0x52, 0xb0, 0x1c, 0x18, - 0x5d, 0x82, 0x35, 0xe6, 0x63, 0x6b, 0x64, 0xbb, 0x83, 0x03, 0xc2, 0x86, 0x5e, 0x4f, 0x7f, 0x43, - 0x68, 0x22, 0x07, 0x45, 0x16, 0x20, 0xe2, 0xe2, 0xae, 0x43, 0x7a, 0xd2, 0x16, 0x1f, 0x4f, 0x28, - 0x09, 0xf4, 0xd3, 0x62, 0x17, 0xd7, 0xdb, 0xa9, 0x08, 0x95, 0x0b, 0x10, 0xed, 0xdb, 0x53, 0xab, - 0x6e, 0xbb, 0xcc, 0x9f, 0x98, 0x05, 0xe4, 0xd0, 0x08, 0x1a, 0x7c, 0x1f, 0x91, 0x29, 0x9c, 0x11, - 0xa6, 0x70, 0x77, 0x31, 0x1d, 0xed, 0x27, 0x04, 0xcd, 0x34, 0x75, 0xd4, 0x06, 0x34, 0xc4, 0xc1, - 0x41, 0xe8, 0x30, 0x9b, 0x3a, 0x44, 0x8a, 0x11, 0xe8, 0x9b, 0x42, 0x4d, 0x05, 0x33, 0xe8, 0x1e, - 0x80, 0x4f, 0xfa, 0x11, 0xde, 0x59, 0xb1, 0xf3, 0xab, 0xf3, 0x76, 0x6e, 0xc6, 0xd8, 0x72, 0xc7, - 0xa9, 0xe5, 0x9c, 0x39, 0xdf, 0x06, 0xb1, 0x98, 0xf2, 0x76, 0xe1, 0xd6, 0xba, 0x30, 0xb1, 0x82, - 0x19, 0x6e, 0x8b, 0x0a, 0x2a, 0x82, 0xd6, 0x39, 0x69, 0xad, 0x29, 0x50, 0xeb, 0x36, 0x9c, 0x9d, - 0xa1, 0x6a, 0xd4, 0x84, 0xf2, 0x88, 0x4c, 0x44, 0x88, 0xae, 0x9b, 0xfc, 0x13, 0x9d, 0x86, 0xe5, - 0x23, 0xec, 0x84, 0x44, 0x04, 0xd5, 0x9a, 0x29, 0x07, 0x37, 0x4b, 0xdf, 0xd0, 0x5a, 0xbf, 0xd0, - 0x60, 0x3d, 0x27, 0x78, 0xc1, 0xfa, 0x1f, 0xa6, 0xd7, 0xbf, 0x02, 0x33, 0xee, 0x3f, 0xc6, 0xfe, - 0x80, 0xb0, 0x94, 0x20, 0xc6, 0xdf, 0x34, 0xd0, 0x73, 0x1a, 0xfd, 0x9e, 0xcd, 0x86, 0x77, 0x6c, - 0x87, 0x04, 0xe8, 0x06, 0xac, 0xf8, 0x12, 0xa6, 0x12, 0xcf, 0x9b, 0x73, 0x0e, 0x62, 0x7f, 0xc9, - 0x8c, 0xb0, 0xd1, 0x47, 0x50, 0x1b, 0x13, 0x86, 0x7b, 0x98, 0x61, 0x25, 0xfb, 0x76, 0xd1, 0x4a, - 0xce, 0xe5, 0x40, 0xe1, 0xed, 0x2f, 0x99, 0xf1, 0x1a, 0xf4, 0x1e, 0x2c, 0x5b, 0xc3, 0xd0, 0x1d, - 0x89, 0x94, 0xd3, 0xd8, 0xb9, 0x30, 0x6b, 0xf1, 0x2d, 0x8e, 0xb4, 0xbf, 0x64, 0x4a, 0xec, 0x8f, - 0xab, 0x50, 0xa1, 0xd8, 0x67, 0xc6, 0x1d, 0x38, 0x5d, 0xc4, 0x82, 0xe7, 0x39, 0x6b, 0x48, 0xac, - 0x51, 0x10, 0x8e, 0x95, 0x9a, 0xe3, 0x31, 0x42, 0x50, 0x09, 0xec, 0xe7, 0x52, 0xd5, 0x65, 0x53, - 0x7c, 0x1b, 0x6f, 0xc3, 0xc6, 0x14, 0x37, 0x7e, 0xa8, 0x52, 0x36, 0x4e, 0x61, 0x55, 0xb1, 0x36, - 0x42, 0x38, 0xf3, 0x58, 0xe8, 0x22, 0x0e, 0xf6, 0x27, 0x91, 0xb9, 0x8d, 0x7d, 0xd8, 0xcc, 0xb3, - 0x0d, 0xa8, 0xe7, 0x06, 0x84, 0x9b, 0xbe, 0x88, 0x8e, 0x36, 0xe9, 0x25, 0xb3, 0x42, 0x8a, 0x9a, - 0x59, 0x30, 0x63, 0xfc, 0xb4, 0x04, 0x9b, 0x26, 0x09, 0x3c, 0xe7, 0x88, 0x44, 0xa1, 0xeb, 0x64, - 0x8a, 0x8f, 0x1f, 0x40, 0x19, 0x53, 0xaa, 0xcc, 0xe4, 0xee, 0x2b, 0x4b, 0xef, 0x26, 0xa7, 0x8a, - 0xde, 0x81, 0x0d, 0x3c, 0xee, 0xda, 0x83, 0xd0, 0x0b, 0x83, 0x68, 0x5b, 0xc2, 0xa8, 0xea, 0xe6, - 0xf4, 0x84, 0x61, 0xc1, 0xd9, 0x29, 0x15, 0x28, 0x75, 0xa6, 0x4b, 0x24, 0x2d, 0x57, 0x22, 0x15, - 0x32, 0x29, 0xcd, 0x62, 0xf2, 0x27, 0x0d, 0x9a, 0x89, 0xeb, 0x28, 0xf2, 0xe7, 0xa1, 0x3e, 0x56, - 0xb0, 0x40, 0xd7, 0x44, 0x7c, 0x4a, 0x00, 0xd9, 0x6a, 0xa9, 0x94, 0xaf, 0x96, 0x36, 0xa1, 0x2a, - 0x8b, 0x59, 0xb5, 0x31, 0x35, 0xca, 0x88, 0x5c, 0xc9, 0x89, 0xbc, 0x05, 0x10, 0xc4, 0xf1, 0x4b, - 0xaf, 0x8a, 0xd9, 0x14, 0x04, 0x19, 0xb0, 0x2a, 0x73, 0xab, 0x49, 0x82, 0xd0, 0x61, 0xfa, 0x8a, - 0xc0, 0xc8, 0xc0, 0x0c, 0x0f, 0xd6, 0xef, 0xdb, 0x7c, 0x0f, 0xfd, 0xe0, 0x64, 0x8c, 0xfd, 0x7d, - 0xa8, 0x70, 0x66, 0x7c, 0x63, 0x5d, 0x1f, 0xbb, 0xd6, 0x90, 0x44, 0xba, 0x8a, 0xc7, 0xdc, 0x8d, - 0x19, 0x1e, 0x04, 0x7a, 0x49, 0xc0, 0xc5, 0xb7, 0xf1, 0xbb, 0x92, 0x94, 0x74, 0x97, 0xd2, 0xe0, - 0xab, 0x2f, 0xa8, 0x8b, 0x53, 0x7c, 0x79, 0x3a, 0xc5, 0xe7, 0x44, 0xfe, 0x32, 0x29, 0xfe, 0x15, - 0xa5, 0x29, 0x23, 0x84, 0x95, 0x5d, 0x4a, 0xb9, 0x20, 0xe8, 0x1a, 0x54, 0x30, 0xa5, 0x52, 0xe1, - 0xb9, 0x88, 0xac, 0x50, 0xf8, 0x7f, 0x25, 0x92, 0x40, 0x6d, 0xdd, 0x80, 0x7a, 0x0c, 0x7a, 0x19, - 0xdb, 0x7a, 0x9a, 0xed, 0x36, 0x80, 0xac, 0x61, 0xef, 0xba, 0x7d, 0x8f, 0x1f, 0x29, 0x37, 0x76, - 0xb5, 0x54, 0x7c, 0x1b, 0x37, 0x23, 0x0c, 0x21, 0xdb, 0x3b, 0xb0, 0x6c, 0x33, 0x32, 0x8e, 0x84, - 0xdb, 0x4c, 0x0b, 0x97, 0x10, 0x32, 0x25, 0x92, 0xf1, 0xe7, 0x1a, 0x9c, 0xe3, 0x27, 0xf6, 0x48, - 0xb8, 0xc9, 0x2e, 0xa5, 0x9f, 0x10, 0x86, 0x6d, 0x27, 0xf8, 0x4e, 0x48, 0xfc, 0xc9, 0x6b, 0x36, - 0x8c, 0x01, 0x54, 0xa5, 0x97, 0xa9, 0x78, 0xf7, 0xca, 0xdb, 0x19, 0x45, 0x3e, 0xe9, 0x61, 0xca, - 0xaf, 0xa7, 0x87, 0x29, 0xea, 0x29, 0x2a, 0x27, 0xd4, 0x53, 0xcc, 0x6e, 0x2b, 0x53, 0xcd, 0x6a, - 0x35, 0xdb, 0xac, 0x16, 0x94, 0xea, 0x2b, 0xc7, 0x2d, 0xd5, 0x6b, 0x85, 0xa5, 0xfa, 0xb8, 0xd0, - 0x8f, 0xeb, 0x42, 0xdd, 0xdf, 0x4a, 0x5b, 0xe0, 0x4c, 0x5b, 0x5b, 0xa4, 0x68, 0x87, 0xd7, 0x5a, - 0xb4, 0x7f, 0x96, 0x29, 0xc2, 0x65, 0x1b, 0xfc, 0xde, 0xf1, 0xf6, 0x34, 0xa7, 0x1c, 0xff, 0xbf, - 0x2b, 0x9e, 0x7f, 0x2e, 0x6a, 0x26, 0xea, 0x25, 0x3a, 0x88, 0x13, 0x3a, 0xcf, 0x43, 0x3c, 0xb5, - 0xaa, 0xa0, 0xc5, 0xbf, 0xd1, 0x55, 0xa8, 0x70, 0x25, 0xab, 0xa2, 0xf6, 0x6c, 0x5a, 0x9f, 0xfc, - 0x24, 0x76, 0x29, 0x7d, 0x44, 0x89, 0x65, 0x0a, 0x24, 0x74, 0x13, 0xea, 0xb1, 0xe1, 0x2b, 0xcf, - 0x3a, 0x9f, 0x5e, 0x11, 0xfb, 0x49, 0xb4, 0x2c, 0x41, 0xe7, 0x6b, 0x7b, 0xb6, 0x4f, 0x2c, 0x51, - 0xf2, 0x2d, 0x4f, 0xaf, 0xfd, 0x24, 0x9a, 0x8c, 0xd7, 0xc6, 0xe8, 0xe8, 0x1a, 0x54, 0xe5, 0xbd, - 0x81, 0xf0, 0xa0, 0xc6, 0xce, 0xb9, 0xe9, 0x60, 0x1a, 0xad, 0x52, 0x88, 0xc6, 0x1f, 0x35, 0x78, - 0x2b, 0x31, 0x88, 0xc8, 0x9b, 0xa2, 0xaa, 0xfb, 0xab, 0xcf, 0xb8, 0x97, 0x60, 0x4d, 0x94, 0xf9, - 0xc9, 0xf5, 0x81, 0xbc, 0xc9, 0xca, 0x41, 0x8d, 0xdf, 0x6a, 0x70, 0x71, 0x7a, 0x1f, 0xb7, 0x86, - 0xd8, 0x67, 0xf1, 0xf1, 0x9e, 0xc4, 0x5e, 0xa2, 0x84, 0x57, 0x4a, 0x12, 0x5e, 0x66, 0x7f, 0xe5, - 0xec, 0xfe, 0x8c, 0xdf, 0x97, 0xa0, 0x91, 0x32, 0xa0, 0xa2, 0x84, 0xc9, 0x0b, 0x3e, 0x61, 0xb7, - 0xa2, 0xb1, 0x13, 0x49, 0xa1, 0x6e, 0xa6, 0x20, 0x68, 0x04, 0x40, 0xb1, 0x8f, 0xc7, 0x84, 0x11, - 0x9f, 0x47, 0x72, 0xee, 0xf1, 0xf7, 0x16, 0x8f, 0x2e, 0x87, 0x11, 0x4d, 0x33, 0x45, 0x9e, 0x57, - 0xac, 0x82, 0x75, 0xa0, 0xe2, 0xb7, 0x1a, 0xa1, 0x2f, 0x60, 0xad, 0x6f, 0x3b, 0xe4, 0x30, 0x11, - 0xa4, 0x2a, 0x04, 0x79, 0xb8, 0xb8, 0x20, 0x77, 0xd2, 0x74, 0xcd, 0x1c, 0x1b, 0xe3, 0x0a, 0x34, - 0xf3, 0xfe, 0xc4, 0x85, 0xb4, 0xc7, 0x78, 0x10, 0x6b, 0x4b, 0x8d, 0x0c, 0x04, 0xcd, 0xbc, 0xff, - 0x18, 0x7f, 0x2f, 0xc1, 0x99, 0x98, 0xdc, 0xae, 0xeb, 0x7a, 0xa1, 0x6b, 0x89, 0xab, 0xb8, 0xc2, - 0xb3, 0x38, 0x0d, 0xcb, 0xcc, 0x66, 0x4e, 0x5c, 0xf8, 0x88, 0x01, 0xcf, 0x5d, 0xcc, 0xf3, 0x1c, - 0x66, 0x53, 0x75, 0xc0, 0xd1, 0x50, 0x9e, 0xfd, 0xb3, 0xd0, 0xf6, 0x49, 0x4f, 0x44, 0x82, 0x9a, - 0x19, 0x8f, 0xf9, 0x1c, 0xaf, 0x6a, 0x44, 0x19, 0x2f, 0x95, 0x19, 0x8f, 0x85, 0xdd, 0x7b, 0x8e, - 0x43, 0x2c, 0xae, 0x8e, 0x54, 0xa1, 0x9f, 0x83, 0x8a, 0x06, 0x82, 0xf9, 0xb6, 0x3b, 0x50, 0x65, - 0xbe, 0x1a, 0x71, 0x39, 0xb1, 0xef, 0xe3, 0x89, 0x5e, 0x13, 0x0a, 0x90, 0x03, 0xf4, 0x21, 0x94, - 0xc7, 0x98, 0xaa, 0x44, 0x77, 0x25, 0x13, 0x1d, 0x8a, 0x34, 0xd0, 0x3e, 0xc0, 0x54, 0x66, 0x02, - 0xbe, 0xac, 0xf5, 0x3e, 0xd4, 0x22, 0xc0, 0x97, 0x2a, 0x09, 0x3f, 0x87, 0x53, 0x99, 0xe0, 0x83, - 0x9e, 0xc0, 0x66, 0x62, 0x51, 0x69, 0x86, 0xaa, 0x08, 0x7c, 0xeb, 0xa5, 0x92, 0x99, 0x33, 0x08, - 0x18, 0xcf, 0x60, 0x83, 0x9b, 0x8c, 0x70, 0xfc, 0x13, 0x6a, 0x6d, 0x3e, 0x80, 0x7a, 0xcc, 0xb2, - 0xd0, 0x66, 0x5a, 0x50, 0x3b, 0x8a, 0xae, 0x48, 0x65, 0x6f, 0x13, 0x8f, 0x8d, 0x5d, 0x40, 0x69, - 0x79, 0x55, 0x06, 0xba, 0x9a, 0x2d, 0x8a, 0xcf, 0xe4, 0xd3, 0x8d, 0x40, 0x8f, 0x6a, 0xe2, 0xdf, - 0x94, 0x60, 0x7d, 0xcf, 0x16, 0xb7, 0x1c, 0x27, 0x14, 0xe4, 0xae, 0x40, 0x33, 0x08, 0xbb, 0x63, - 0xaf, 0x17, 0x3a, 0x44, 0x15, 0x05, 0x2a, 0xd3, 0x4f, 0xc1, 0xe7, 0x05, 0x3f, 0xae, 0x2c, 0x8a, - 0xd9, 0x50, 0x75, 0xb8, 0xe2, 0x1b, 0x7d, 0x08, 0xe7, 0x1e, 0x90, 0x2f, 0xd4, 0x7e, 0xf6, 0x1c, - 0xaf, 0xdb, 0xb5, 0xdd, 0x41, 0xc4, 0x64, 0x59, 0x30, 0x99, 0x8d, 0x50, 0x54, 0x2a, 0x56, 0x0b, - 0x4b, 0x45, 0xe3, 0x67, 0x1a, 0x34, 0x13, 0xad, 0x29, 0xbd, 0xdf, 0x90, 0xfe, 0x21, 0xb5, 0x7e, - 0x31, 0xad, 0xf5, 0x3c, 0xea, 0x7f, 0xee, 0x1a, 0xab, 0x69, 0xd7, 0xf8, 0xa7, 0x06, 0x67, 0xf6, - 0x6c, 0x16, 0x05, 0x25, 0xfb, 0x7f, 0xed, 0x04, 0x0b, 0xf4, 0x5d, 0x29, 0xd6, 0x77, 0x1b, 0x36, - 0xf3, 0x1b, 0x55, 0x4a, 0x3f, 0x0d, 0xcb, 0xfc, 0xe4, 0xa3, 0xfb, 0x00, 0x39, 0x30, 0x7e, 0x5d, - 0x85, 0x0b, 0x9f, 0xd1, 0x1e, 0x66, 0xf1, 0x7d, 0xce, 0x1d, 0xcf, 0x3f, 0xe4, 0x53, 0x27, 0xa3, - 0xa1, 0xdc, 0x0b, 0x59, 0x69, 0xee, 0x0b, 0x59, 0x79, 0xce, 0x0b, 0x59, 0xe5, 0x58, 0x2f, 0x64, - 0xcb, 0x27, 0xf6, 0x42, 0x36, 0xdd, 0x23, 0x55, 0x0b, 0x7b, 0xa4, 0x27, 0x99, 0x3e, 0x62, 0x45, - 0xb8, 0xc4, 0x37, 0xd3, 0x2e, 0x31, 0xf7, 0x74, 0xe6, 0x5e, 0xed, 0xe7, 0x1e, 0x96, 0x6a, 0x2f, - 0x7d, 0x58, 0xaa, 0x4f, 0x3f, 0x2c, 0x15, 0xbf, 0x4d, 0xc0, 0xcc, 0xb7, 0x89, 0x4b, 0xb0, 0x16, - 0x4c, 0x5c, 0x8b, 0xf4, 0xe2, 0x5b, 0xbe, 0x86, 0xdc, 0x76, 0x16, 0x9a, 0xb1, 0xf6, 0xd5, 0x9c, - 0xb5, 0xc7, 0x96, 0x7a, 0x2a, 0x65, 0xa9, 0xff, 0x3d, 0x2d, 0xcd, 0x36, 0x6c, 0xcd, 0x3a, 0x13, - 0xe9, 0x6a, 0x3b, 0x7f, 0x00, 0xd8, 0x48, 0xaa, 0x64, 0xfe, 0xd7, 0xb6, 0x08, 0x7a, 0x08, 0xcd, - 0x3d, 0xf5, 0xc8, 0x1d, 0x5d, 0x6e, 0xa2, 0x79, 0xaf, 0x05, 0xad, 0xf3, 0xc5, 0x93, 0x92, 0x89, - 0xb1, 0x84, 0x2c, 0x38, 0x97, 0x27, 0x98, 0x3c, 0x4c, 0x7c, 0x7d, 0x0e, 0xe5, 0x18, 0xeb, 0x65, - 0x2c, 0x2e, 0x6b, 0xe8, 0x09, 0xac, 0x65, 0xaf, 0xcf, 0x51, 0xa6, 0x6c, 0x28, 0xbc, 0xd1, 0x6f, - 0x19, 0xf3, 0x50, 0x62, 0xf9, 0x9f, 0xf2, 0x03, 0xcd, 0xdc, 0x25, 0x23, 0x23, 0xdb, 0x41, 0x17, - 0xdd, 0xb5, 0xb7, 0xbe, 0x36, 0x17, 0x27, 0xa6, 0xfe, 0x01, 0xd4, 0xa2, 0xbb, 0xd7, 0xac, 0x9a, - 0x73, 0x37, 0xb2, 0xad, 0x66, 0x96, 0x5e, 0x3f, 0x30, 0x96, 0xd0, 0x47, 0x72, 0xf1, 0x2e, 0xa5, - 0x05, 0x8b, 0x53, 0x37, 0x8e, 0xad, 0x37, 0x0a, 0x6e, 0xf9, 0x8c, 0x25, 0xf4, 0x6d, 0x68, 0xf0, - 0xaf, 0x43, 0xf5, 0xbc, 0xbc, 0xd9, 0x96, 0xbf, 0x66, 0x68, 0x47, 0xbf, 0x66, 0x68, 0xdf, 0x1e, - 0x53, 0x36, 0x69, 0x15, 0x5c, 0xc3, 0x29, 0x02, 0x4f, 0xe1, 0xd4, 0x1e, 0x61, 0x49, 0xd7, 0x8c, - 0x2e, 0x1e, 0xeb, 0x6e, 0xa1, 0x65, 0xe4, 0xd1, 0xa6, 0x1b, 0x6f, 0x63, 0x09, 0xfd, 0x52, 0x83, - 0x37, 0xf6, 0x08, 0xcb, 0xf7, 0xa1, 0xe8, 0xdd, 0x62, 0x26, 0x33, 0xfa, 0xd5, 0xd6, 0x83, 0x45, - 0xbd, 0x2b, 0x4b, 0xd6, 0x58, 0x42, 0xbf, 0xd2, 0xe0, 0x6c, 0x4a, 0xb0, 0x74, 0x63, 0x89, 0xae, - 0xcd, 0x17, 0xae, 0xa0, 0x09, 0x6d, 0x7d, 0xba, 0xe0, 0xaf, 0x06, 0x52, 0x24, 0x8d, 0x25, 0x74, - 0x28, 0xce, 0x24, 0xa9, 0x23, 0xd1, 0x85, 0xc2, 0x82, 0x31, 0xe6, 0xbe, 0x35, 0x6b, 0x3a, 0x3e, - 0x87, 0x4f, 0xa1, 0xb1, 0x47, 0x58, 0x54, 0xf4, 0x64, 0x2d, 0x2d, 0x57, 0x6b, 0x66, 0x5d, 0x35, - 0x5f, 0x27, 0x09, 0x8b, 0xd9, 0x90, 0xb4, 0x52, 0xc9, 0x3f, 0xeb, 0xab, 0x85, 0x15, 0x50, 0xd6, - 0x62, 0x8a, 0x6b, 0x07, 0x63, 0x09, 0x3d, 0x83, 0xcd, 0xe2, 0xa0, 0x87, 0xde, 0x3e, 0x76, 0xb2, - 0x6a, 0x5d, 0x39, 0x0e, 0x6a, 0xc4, 0xf2, 0xe3, 0xdd, 0xbf, 0xbc, 0xd8, 0xd2, 0xfe, 0xfa, 0x62, - 0x4b, 0xfb, 0xc7, 0x8b, 0x2d, 0xed, 0xfb, 0xd7, 0x5f, 0xf2, 0xeb, 0xa2, 0xd4, 0x0f, 0x96, 0x30, - 0xb5, 0x2d, 0xc7, 0x26, 0x2e, 0xeb, 0x56, 0x85, 0xbf, 0x5d, 0xff, 0x77, 0x00, 0x00, 0x00, 0xff, - 0xff, 0x0e, 0xc8, 0x27, 0xc7, 0xcf, 0x24, 0x00, 0x00, + // 2285 bytes of a gzipped FileDescriptorProto + 0x1f, 0x8b, 0x08, 0x00, 0x00, 0x00, 0x00, 0x00, 0x02, 0xff, 0xdc, 0x5a, 0x5f, 0x73, 0x1b, 0x49, + 0x11, 0xf7, 0x4a, 0xb2, 0x2c, 0xb5, 0x1d, 0x5b, 0x9e, 0x24, 0xce, 0x46, 0x97, 0xb8, 0x7c, 0x0b, + 0x49, 0xe5, 0x92, 0x3b, 0xa9, 0xe2, 0xd4, 0x5d, 0x20, 0x77, 0x1c, 0xe5, 0xcb, 0x25, 0x76, 0x2e, + 0x71, 0x62, 0x36, 0x39, 0xa8, 0x40, 0x80, 0x1a, 0xad, 0x46, 0xd2, 0x9e, 0x56, 0xbb, 0x93, 0xdd, + 0x59, 0x1f, 0x4a, 0x15, 0x4f, 0x50, 0x7c, 0x04, 0x1e, 0x78, 0xe5, 0x0b, 0x50, 0x45, 0x51, 0x3c, + 0xf2, 0x40, 0xf1, 0xe7, 0x91, 0xe2, 0x0b, 0x40, 0xe5, 0x85, 0x2a, 0x3e, 0x05, 0x35, 0x7f, 0xf6, + 0xaf, 0x56, 0x8a, 0x0f, 0x39, 0x3e, 0xb8, 0x17, 0x7b, 0xa7, 0x67, 0xa6, 0xbb, 0xa7, 0xa7, 0xbb, + 0xe7, 0xd7, 0x33, 0x82, 0xcb, 0x3e, 0xa1, 0x5e, 0x40, 0xfc, 0x43, 0xe2, 0xb7, 0xc5, 0xa7, 0xcd, + 0x3c, 0x7f, 0x9c, 0xfa, 0x6c, 0x51, 0xdf, 0x63, 0x1e, 0x82, 0x84, 0xd2, 0x7c, 0xd0, 0xb7, 0xd9, + 0x20, 0xec, 0xb4, 0x2c, 0x6f, 0xd4, 0xc6, 0x7e, 0xdf, 0xa3, 0xbe, 0xf7, 0x99, 0xf8, 0x78, 0xc7, + 0xea, 0xb6, 0x0f, 0xb7, 0xdb, 0x74, 0xd8, 0x6f, 0x63, 0x6a, 0x07, 0x6d, 0x4c, 0xa9, 0x63, 0x5b, + 0x98, 0xd9, 0x9e, 0xdb, 0x3e, 0xbc, 0x8e, 0x1d, 0x3a, 0xc0, 0xd7, 0xdb, 0x7d, 0xe2, 0x12, 0x1f, + 0x33, 0xd2, 0x95, 0x9c, 0x9b, 0x6f, 0xf4, 0x3d, 0xaf, 0xef, 0x90, 0xb6, 0x68, 0x75, 0xc2, 0x5e, + 0x9b, 0x8c, 0x28, 0x53, 0x62, 0x8d, 0x7f, 0xaf, 0xc0, 0xda, 0x3e, 0x76, 0xed, 0x1e, 0x09, 0x98, + 0x49, 0x9e, 0x87, 0x24, 0x60, 0xe8, 0x19, 0x54, 0xb8, 0x32, 0xba, 0xb6, 0xa5, 0x5d, 0x59, 0xde, + 0xde, 0x6b, 0x25, 0xda, 0xb4, 0x22, 0x6d, 0xc4, 0xc7, 0x8f, 0xad, 0x6e, 0xeb, 0x70, 0xbb, 0x45, + 0x87, 0xfd, 0x16, 0xd7, 0xa6, 0x95, 0xd2, 0xa6, 0x15, 0x69, 0xd3, 0x32, 0xe3, 0x65, 0x99, 0x82, + 0x2b, 0x6a, 0x42, 0xcd, 0x27, 0x87, 0x76, 0x60, 0x7b, 0xae, 0x5e, 0xda, 0xd2, 0xae, 0xd4, 0xcd, + 0xb8, 0x8d, 0x74, 0x58, 0x72, 0xbd, 0xdb, 0xd8, 0x1a, 0x10, 0xbd, 0xbc, 0xa5, 0x5d, 0xa9, 0x99, + 0x51, 0x13, 0x6d, 0xc1, 0x32, 0xa6, 0xf4, 0x01, 0xee, 0x10, 0xe7, 0x3e, 0x19, 0xeb, 0x15, 0x31, + 0x31, 0x4d, 0xe2, 0x73, 0x31, 0xa5, 0x0f, 0xf1, 0x88, 0xe8, 0x8b, 0xa2, 0x37, 0x6a, 0xa2, 0x0b, + 0x50, 0x77, 0xf1, 0x88, 0x04, 0x14, 0x5b, 0x44, 0xaf, 0x89, 0xbe, 0x84, 0x80, 0x7e, 0x0a, 0xeb, + 0x29, 0xc5, 0x1f, 0x7b, 0xa1, 0x6f, 0x11, 0x1d, 0xc4, 0xd2, 0x1f, 0xcd, 0xb7, 0xf4, 0x9d, 0x3c, + 0x5b, 0x73, 0x52, 0x12, 0xfa, 0x11, 0x2c, 0x8a, 0x9d, 0xd7, 0x97, 0xb7, 0xca, 0xc7, 0x6a, 0x6d, + 0xc9, 0x16, 0xb9, 0xb0, 0x44, 0x9d, 0xb0, 0x6f, 0xbb, 0x81, 0xbe, 0x22, 0x24, 0x3c, 0x99, 0x4f, + 0xc2, 0x6d, 0xcf, 0xed, 0xd9, 0xfd, 0x7d, 0xec, 0xe2, 0x3e, 0x19, 0x11, 0x97, 0x1d, 0x08, 0xe6, + 0x66, 0x24, 0x04, 0xbd, 0x80, 0xc6, 0x30, 0x0c, 0x98, 0x37, 0xb2, 0x5f, 0x90, 0x47, 0x94, 0xcf, + 0x0d, 0xf4, 0x53, 0xc2, 0x9a, 0x0f, 0xe7, 0x13, 0x7c, 0x3f, 0xc7, 0xd5, 0x9c, 0x90, 0xc3, 0x9d, + 0x64, 0x18, 0x76, 0xc8, 0x77, 0x89, 0x2f, 0xbc, 0x6b, 0x55, 0x3a, 0x49, 0x8a, 0x24, 0xdd, 0xc8, + 0x56, 0xad, 0x40, 0x5f, 0xdb, 0x2a, 0x4b, 0x37, 0x8a, 0x49, 0xe8, 0x0a, 0xac, 0x1d, 0x12, 0xdf, + 0xee, 0x8d, 0x1f, 0xdb, 0x7d, 0x17, 0xb3, 0xd0, 0x27, 0x7a, 0x43, 0xb8, 0x62, 0x9e, 0x8c, 0x46, + 0x70, 0x6a, 0x40, 0x9c, 0x11, 0x37, 0xf9, 0x6d, 0x9f, 0x74, 0x03, 0x7d, 0x5d, 0xd8, 0x77, 0x77, + 0xfe, 0x1d, 0x14, 0xec, 0xcc, 0x2c, 0x77, 0xae, 0x98, 0xeb, 0x99, 0x2a, 0x52, 0x64, 0x8c, 0x20, + 0xa9, 0x58, 0x8e, 0x8c, 0x2e, 0xc3, 0x2a, 0xf3, 0xb1, 0x35, 0xb4, 0xdd, 0xfe, 0x3e, 0x61, 0x03, + 0xaf, 0xab, 0x9f, 0x16, 0x96, 0xc8, 0x51, 0x91, 0x05, 0x88, 0xb8, 0xb8, 0xe3, 0x90, 0xae, 0xf4, + 0xc5, 0x27, 0x63, 0x4a, 0x02, 0xfd, 0x8c, 0x58, 0xc5, 0x8d, 0x56, 0x2a, 0x43, 0xe5, 0x12, 0x44, + 0xeb, 0xce, 0xc4, 0xac, 0x3b, 0x2e, 0xf3, 0xc7, 0x66, 0x01, 0x3b, 0x34, 0x84, 0x65, 0xbe, 0x8e, + 0xc8, 0x15, 0xce, 0x0a, 0x57, 0xb8, 0x37, 0x9f, 0x8d, 0xf6, 0x12, 0x86, 0x66, 0x9a, 0x3b, 0x6a, + 0x01, 0x1a, 0xe0, 0x60, 0x3f, 0x74, 0x98, 0x4d, 0x1d, 0x22, 0xd5, 0x08, 0xf4, 0x0d, 0x61, 0xa6, + 0x82, 0x1e, 0x74, 0x1f, 0xc0, 0x27, 0xbd, 0x68, 0xdc, 0x39, 0xb1, 0xf2, 0x6b, 0xb3, 0x56, 0x6e, + 0xc6, 0xa3, 0xe5, 0x8a, 0x53, 0xd3, 0xb9, 0x70, 0xbe, 0x0c, 0x62, 0x31, 0x15, 0xed, 0x22, 0xac, + 0x75, 0xe1, 0x62, 0x05, 0x3d, 0xdc, 0x17, 0x15, 0x55, 0x24, 0xad, 0xf3, 0xd2, 0x5b, 0x53, 0xa4, + 0xe6, 0x1d, 0x38, 0x37, 0xc5, 0xd4, 0xa8, 0x01, 0xe5, 0x21, 0x19, 0x8b, 0x14, 0x5d, 0x37, 0xf9, + 0x27, 0x3a, 0x03, 0x8b, 0x87, 0xd8, 0x09, 0x89, 0x48, 0xaa, 0x35, 0x53, 0x36, 0x6e, 0x95, 0xbe, + 0xa1, 0x35, 0x7f, 0xa1, 0xc1, 0x5a, 0x4e, 0xf1, 0x82, 0xf9, 0x3f, 0x4c, 0xcf, 0x3f, 0x06, 0x37, + 0xee, 0x3d, 0xc1, 0x7e, 0x9f, 0xb0, 0x94, 0x22, 0xc6, 0xdf, 0x35, 0xd0, 0x73, 0x16, 0xfd, 0x9e, + 0xcd, 0x06, 0x77, 0x6d, 0x87, 0x04, 0xe8, 0x26, 0x2c, 0xf9, 0x92, 0xa6, 0x0e, 0x9e, 0x37, 0x66, + 0x6c, 0xc4, 0xde, 0x82, 0x19, 0x8d, 0x46, 0x1f, 0x42, 0x6d, 0x44, 0x18, 0xee, 0x62, 0x86, 0x95, + 0xee, 0x5b, 0x45, 0x33, 0xb9, 0x94, 0x7d, 0x35, 0x6e, 0x6f, 0xc1, 0x8c, 0xe7, 0xa0, 0x77, 0x61, + 0xd1, 0x1a, 0x84, 0xee, 0x50, 0x1c, 0x39, 0xcb, 0xdb, 0x17, 0xa7, 0x4d, 0xbe, 0xcd, 0x07, 0xed, + 0x2d, 0x98, 0x72, 0xf4, 0x47, 0x55, 0xa8, 0x50, 0xec, 0x33, 0xe3, 0x2e, 0x9c, 0x29, 0x12, 0xc1, + 0xcf, 0x39, 0x6b, 0x40, 0xac, 0x61, 0x10, 0x8e, 0x94, 0x99, 0xe3, 0x36, 0x42, 0x50, 0x09, 0xec, + 0x17, 0xd2, 0xd4, 0x65, 0x53, 0x7c, 0x1b, 0x6f, 0xc1, 0xfa, 0x84, 0x34, 0xbe, 0xa9, 0x52, 0x37, + 0xce, 0x61, 0x45, 0x89, 0x36, 0x42, 0x38, 0xfb, 0x44, 0xd8, 0x22, 0x4e, 0xf6, 0x27, 0x71, 0x72, + 0x1b, 0x7b, 0xb0, 0x91, 0x17, 0x1b, 0x50, 0xcf, 0x0d, 0x08, 0x77, 0x7d, 0x91, 0x1d, 0x6d, 0xd2, + 0x4d, 0x7a, 0x85, 0x16, 0x35, 0xb3, 0xa0, 0xc7, 0xf8, 0x75, 0x09, 0x36, 0x4c, 0x12, 0x78, 0xce, + 0x21, 0x89, 0x52, 0xd7, 0xc9, 0x80, 0x8f, 0x1f, 0x40, 0x19, 0x53, 0xaa, 0xdc, 0xe4, 0xde, 0xb1, + 0x1d, 0xef, 0x26, 0xe7, 0x8a, 0xde, 0x86, 0x75, 0x3c, 0xea, 0xd8, 0xfd, 0xd0, 0x0b, 0x83, 0x68, + 0x59, 0xc2, 0xa9, 0xea, 0xe6, 0x64, 0x07, 0x0f, 0xff, 0x40, 0x44, 0xe4, 0x3d, 0xb7, 0x4b, 0x7e, + 0x22, 0x10, 0x4d, 0xd9, 0x4c, 0x93, 0x0c, 0x0b, 0xce, 0x4d, 0x18, 0x49, 0x19, 0x3c, 0x0d, 0xa2, + 0xb4, 0x1c, 0x88, 0x2a, 0x54, 0xa3, 0x34, 0x45, 0x0d, 0xe3, 0xcf, 0x1a, 0x34, 0x92, 0xe0, 0x52, + 0xec, 0x2f, 0x40, 0x7d, 0xa4, 0x68, 0x81, 0xae, 0x89, 0x0c, 0x96, 0x10, 0xb2, 0x78, 0xaa, 0x94, + 0xc7, 0x53, 0x1b, 0x50, 0x95, 0x70, 0x57, 0x2d, 0x5d, 0xb5, 0x32, 0x2a, 0x57, 0x72, 0x2a, 0x6f, + 0x02, 0x04, 0x71, 0x86, 0xd3, 0xab, 0xa2, 0x37, 0x45, 0x41, 0x06, 0xac, 0xc8, 0xd3, 0xd7, 0x24, + 0x41, 0xe8, 0x30, 0x7d, 0x49, 0x8c, 0xc8, 0xd0, 0x0c, 0x0f, 0xd6, 0x1e, 0xd8, 0x7c, 0x0d, 0xbd, + 0xe0, 0x64, 0xc2, 0xe1, 0x3d, 0xa8, 0x70, 0x61, 0x7c, 0x61, 0x1d, 0x1f, 0xbb, 0xd6, 0x80, 0x44, + 0xb6, 0x8a, 0xdb, 0x3c, 0xd0, 0x19, 0xee, 0x07, 0x7a, 0x49, 0xd0, 0xc5, 0xb7, 0xf1, 0xfb, 0x92, + 0xd4, 0x74, 0x87, 0xd2, 0xe0, 0xcb, 0x87, 0xdc, 0xc5, 0x20, 0xa0, 0x3c, 0x09, 0x02, 0x72, 0x2a, + 0x7f, 0x11, 0x10, 0x70, 0x4c, 0x07, 0x99, 0x11, 0xc2, 0xd2, 0x0e, 0xa5, 0x5c, 0x11, 0x74, 0x1d, + 0x2a, 0x98, 0x52, 0x69, 0xf0, 0x5c, 0xce, 0x56, 0x43, 0xf8, 0x7f, 0xa5, 0x92, 0x18, 0xda, 0xbc, + 0x09, 0xf5, 0x98, 0xf4, 0x2a, 0xb1, 0xf5, 0xb4, 0xd8, 0x2d, 0x00, 0x89, 0x72, 0xef, 0xb9, 0x3d, + 0x8f, 0x6f, 0x29, 0x77, 0x76, 0x35, 0x55, 0x7c, 0x1b, 0xb7, 0xa2, 0x11, 0x42, 0xb7, 0xb7, 0x61, + 0xd1, 0x66, 0x64, 0x14, 0x29, 0xb7, 0x91, 0x56, 0x2e, 0x61, 0x64, 0xca, 0x41, 0xc6, 0x5f, 0x6a, + 0x70, 0x9e, 0xef, 0xd8, 0x63, 0x11, 0x26, 0x3b, 0x94, 0x7e, 0x4c, 0x18, 0xb6, 0x9d, 0xe0, 0x3b, + 0x21, 0xf1, 0xc7, 0xaf, 0xd9, 0x31, 0xfa, 0x50, 0x95, 0x51, 0xa6, 0x32, 0xe2, 0xb1, 0x17, 0x3c, + 0x8a, 0x7d, 0x52, 0xe5, 0x94, 0x5f, 0x4f, 0x95, 0x53, 0x54, 0x75, 0x54, 0x4e, 0xa8, 0xea, 0x98, + 0x5e, 0x78, 0xa6, 0xca, 0xd9, 0x6a, 0xb6, 0x9c, 0x2d, 0x00, 0xf3, 0x4b, 0x47, 0x05, 0xf3, 0xb5, + 0x42, 0x30, 0x3f, 0x2a, 0x8c, 0xe3, 0xba, 0x30, 0xf7, 0xb7, 0xd2, 0x1e, 0x38, 0xd5, 0xd7, 0xe6, + 0x81, 0xf5, 0xf0, 0x5a, 0x61, 0xfd, 0xa7, 0x19, 0x98, 0x2e, 0x0b, 0xe5, 0x77, 0x8f, 0xb6, 0xa6, + 0x19, 0x80, 0xfd, 0x2b, 0x07, 0xaf, 0x7f, 0x2e, 0x50, 0x15, 0xf5, 0x12, 0x1b, 0xc4, 0x07, 0x3a, + 0x3f, 0x87, 0xf8, 0xd1, 0xaa, 0x92, 0x16, 0xff, 0x46, 0xd7, 0xa0, 0xc2, 0x8d, 0xac, 0x60, 0xef, + 0xb9, 0xb4, 0x3d, 0xf9, 0x4e, 0xec, 0x50, 0xfa, 0x98, 0x12, 0xcb, 0x14, 0x83, 0xd0, 0x2d, 0xa8, + 0xc7, 0x8e, 0xaf, 0x22, 0xeb, 0x42, 0x7a, 0x46, 0x1c, 0x27, 0xd1, 0xb4, 0x64, 0x38, 0x9f, 0xdb, + 0xb5, 0x7d, 0x62, 0x09, 0x50, 0xb8, 0x38, 0x39, 0xf7, 0xe3, 0xa8, 0x33, 0x9e, 0x1b, 0x0f, 0x47, + 0xd7, 0xa1, 0x2a, 0x6f, 0x16, 0x44, 0x04, 0x2d, 0x6f, 0x9f, 0x9f, 0x4c, 0xa6, 0xd1, 0x2c, 0x35, + 0xd0, 0xf8, 0x93, 0x06, 0x6f, 0x26, 0x0e, 0x11, 0x45, 0x53, 0x84, 0xcb, 0xbf, 0xfc, 0x13, 0xf7, + 0x32, 0xac, 0x8a, 0x42, 0x20, 0xb9, 0x60, 0x90, 0x77, 0x5d, 0x39, 0xaa, 0xf1, 0x3b, 0x0d, 0x2e, + 0x4d, 0xae, 0xe3, 0xf6, 0x00, 0xfb, 0x2c, 0xde, 0xde, 0x93, 0x58, 0x4b, 0x74, 0xe0, 0x95, 0x92, + 0x03, 0x2f, 0xb3, 0xbe, 0x72, 0x76, 0x7d, 0xc6, 0x1f, 0x4a, 0xb0, 0x9c, 0x72, 0xa0, 0xa2, 0x03, + 0x93, 0x03, 0x3e, 0xe1, 0xb7, 0xa2, 0xf4, 0x13, 0x87, 0x42, 0xdd, 0x4c, 0x51, 0xd0, 0x10, 0x80, + 0x62, 0x1f, 0x8f, 0x08, 0x23, 0x3e, 0xcf, 0xe4, 0x3c, 0xe2, 0xef, 0xcf, 0x9f, 0x5d, 0x0e, 0x22, + 0x9e, 0x66, 0x8a, 0x3d, 0x47, 0xac, 0x42, 0x74, 0xa0, 0xf2, 0xb7, 0x6a, 0xa1, 0xcf, 0x61, 0xb5, + 0x67, 0x3b, 0xe4, 0x20, 0x51, 0xa4, 0x2a, 0x14, 0x79, 0x34, 0xbf, 0x22, 0x77, 0xd3, 0x7c, 0xcd, + 0x9c, 0x18, 0xe3, 0x2a, 0x34, 0xf2, 0xf1, 0xc4, 0x95, 0xb4, 0x47, 0xb8, 0x1f, 0x5b, 0x4b, 0xb5, + 0x0c, 0x04, 0x8d, 0x7c, 0xfc, 0x18, 0xff, 0x28, 0xc1, 0xd9, 0x98, 0xdd, 0x8e, 0xeb, 0x7a, 0xa1, + 0x6b, 0x89, 0xcb, 0xba, 0xc2, 0xbd, 0x38, 0x03, 0x8b, 0xcc, 0x66, 0x4e, 0x0c, 0x7c, 0x44, 0x83, + 0x9f, 0x5d, 0xcc, 0xf3, 0x1c, 0x66, 0x53, 0xb5, 0xc1, 0x51, 0x53, 0xee, 0xfd, 0xf3, 0xd0, 0xf6, + 0x49, 0x57, 0x64, 0x82, 0x9a, 0x19, 0xb7, 0x79, 0x1f, 0x47, 0x35, 0x02, 0xc6, 0x4b, 0x63, 0xc6, + 0x6d, 0xe1, 0xf7, 0x9e, 0xe3, 0x10, 0x8b, 0x9b, 0x23, 0x05, 0xf4, 0x73, 0x54, 0x51, 0x40, 0x30, + 0xdf, 0x76, 0xfb, 0x0a, 0xe6, 0xab, 0x16, 0xd7, 0x13, 0xfb, 0x3e, 0x1e, 0xeb, 0x35, 0x61, 0x00, + 0xd9, 0x40, 0x1f, 0x40, 0x79, 0x84, 0xa9, 0x3a, 0xe8, 0xae, 0x66, 0xb2, 0x43, 0x91, 0x05, 0x5a, + 0xfb, 0x98, 0xca, 0x93, 0x80, 0x4f, 0x6b, 0xbe, 0x07, 0xb5, 0x88, 0xf0, 0x85, 0x20, 0xe1, 0x67, + 0x70, 0x2a, 0x93, 0x7c, 0xd0, 0x53, 0xd8, 0x48, 0x3c, 0x2a, 0x2d, 0x50, 0x81, 0xc0, 0x37, 0x5f, + 0xa9, 0x99, 0x39, 0x85, 0x81, 0xf1, 0x1c, 0xd6, 0xb9, 0xcb, 0x88, 0xc0, 0x3f, 0xa1, 0xd2, 0xe6, + 0x7d, 0xa8, 0xc7, 0x22, 0x0b, 0x7d, 0xa6, 0x09, 0xb5, 0xc3, 0xe8, 0x12, 0x55, 0xd6, 0x36, 0x71, + 0xdb, 0xd8, 0x01, 0x94, 0xd6, 0x57, 0x9d, 0x40, 0xd7, 0xb2, 0xa0, 0xf8, 0x6c, 0xfe, 0xb8, 0x11, + 0xc3, 0x23, 0x4c, 0xfc, 0xdb, 0x12, 0xac, 0xed, 0xda, 0xe2, 0x1e, 0xe4, 0x84, 0x92, 0xdc, 0x55, + 0x68, 0x04, 0x61, 0x67, 0xe4, 0x75, 0x43, 0x87, 0x28, 0x50, 0xa0, 0x4e, 0xfa, 0x09, 0xfa, 0xac, + 0xe4, 0xc7, 0x8d, 0x45, 0x31, 0x1b, 0xa8, 0x0a, 0x57, 0x7c, 0xa3, 0x0f, 0xe0, 0xfc, 0x43, 0xf2, + 0xb9, 0x5a, 0xcf, 0xae, 0xe3, 0x75, 0x3a, 0xb6, 0xdb, 0x8f, 0x84, 0x2c, 0x0a, 0x21, 0xd3, 0x07, + 0x14, 0x41, 0xc5, 0x6a, 0x21, 0x54, 0x34, 0x7e, 0xa6, 0x41, 0x23, 0xb1, 0x9a, 0xb2, 0xfb, 0x4d, + 0x19, 0x1f, 0xd2, 0xea, 0x97, 0xd2, 0x56, 0xcf, 0x0f, 0xfd, 0xef, 0x43, 0x63, 0x25, 0x1d, 0x1a, + 0xff, 0xd2, 0xe0, 0xec, 0xae, 0xcd, 0xa2, 0xa4, 0x64, 0xff, 0xbf, 0xed, 0x60, 0x81, 0xbd, 0x2b, + 0xc5, 0xf6, 0x6e, 0xc1, 0x46, 0x7e, 0xa1, 0xca, 0xe8, 0x67, 0x60, 0x91, 0xef, 0x7c, 0x74, 0x1f, + 0x20, 0x1b, 0xc6, 0x6f, 0xaa, 0x70, 0xf1, 0x53, 0xda, 0xc5, 0x2c, 0xbe, 0xcf, 0xb9, 0xeb, 0xf9, + 0x07, 0xbc, 0xeb, 0x64, 0x2c, 0x94, 0x7b, 0x43, 0x2b, 0xcd, 0x7c, 0x43, 0x2b, 0xcf, 0x78, 0x43, + 0xab, 0x1c, 0xe9, 0x0d, 0x6d, 0xf1, 0xc4, 0xde, 0xd0, 0x26, 0x6b, 0xa4, 0x6a, 0x61, 0x8d, 0xf4, + 0x34, 0x53, 0x47, 0x2c, 0x89, 0x90, 0xf8, 0x66, 0x3a, 0x24, 0x66, 0xee, 0xce, 0xcc, 0xcb, 0xff, + 0xdc, 0xd3, 0x53, 0xed, 0x95, 0x4f, 0x4f, 0xf5, 0xc9, 0xa7, 0xa7, 0xe2, 0xd7, 0x0b, 0x98, 0xfa, + 0x7a, 0x71, 0x19, 0x56, 0x83, 0xb1, 0x6b, 0x91, 0x6e, 0x7c, 0xcb, 0xb7, 0x2c, 0x97, 0x9d, 0xa5, + 0x66, 0xbc, 0x7d, 0x25, 0xe7, 0xed, 0xb1, 0xa7, 0x9e, 0x4a, 0x79, 0xea, 0xff, 0x4e, 0x49, 0xb3, + 0x05, 0x9b, 0xd3, 0xf6, 0x44, 0x86, 0xda, 0xf6, 0x1f, 0x01, 0xd6, 0x13, 0x94, 0xcc, 0xff, 0xda, + 0x16, 0x41, 0x8f, 0xa0, 0xb1, 0xab, 0x9e, 0xc1, 0xa3, 0xcb, 0x4d, 0x34, 0xeb, 0x3d, 0xa1, 0x79, + 0xa1, 0xb8, 0x53, 0x0a, 0x31, 0x16, 0x90, 0x05, 0xe7, 0xf3, 0x0c, 0x93, 0xa7, 0x8b, 0xaf, 0xcf, + 0xe0, 0x1c, 0x8f, 0x7a, 0x95, 0x88, 0x2b, 0x1a, 0x7a, 0x0a, 0xab, 0xd9, 0x0b, 0x76, 0x94, 0x81, + 0x0d, 0x85, 0x77, 0xfe, 0x4d, 0x63, 0xd6, 0x90, 0x58, 0xff, 0x67, 0x7c, 0x43, 0x33, 0x77, 0xc9, + 0xc8, 0xc8, 0x56, 0xd0, 0x45, 0xb7, 0xf1, 0xcd, 0xaf, 0xcd, 0x1c, 0x13, 0x73, 0x7f, 0x1f, 0x6a, + 0xd1, 0xdd, 0x6b, 0xd6, 0xcc, 0xb9, 0x1b, 0xd9, 0x66, 0x23, 0xcb, 0xaf, 0x17, 0x18, 0x0b, 0xe8, + 0x43, 0x39, 0x79, 0x87, 0xd2, 0x82, 0xc9, 0xa9, 0x1b, 0xc7, 0xe6, 0xe9, 0x82, 0x5b, 0x3e, 0x63, + 0x01, 0x7d, 0x1b, 0x96, 0xf9, 0xd7, 0x81, 0x7a, 0x80, 0xde, 0x68, 0xc9, 0xdf, 0x3b, 0xb4, 0xa2, + 0xdf, 0x3b, 0xb4, 0xee, 0x8c, 0x28, 0x1b, 0x37, 0x0b, 0xae, 0xe1, 0x14, 0x83, 0x67, 0x70, 0x6a, + 0x97, 0xb0, 0xa4, 0x6a, 0x46, 0x97, 0x8e, 0x74, 0xb7, 0xd0, 0x34, 0xf2, 0xc3, 0x26, 0x0b, 0x6f, + 0x63, 0x01, 0xfd, 0x52, 0x83, 0xd3, 0xbb, 0x84, 0xe5, 0xeb, 0x50, 0xf4, 0x4e, 0xb1, 0x90, 0x29, + 0xf5, 0x6a, 0xf3, 0xe1, 0xbc, 0xd1, 0x95, 0x65, 0x6b, 0x2c, 0xa0, 0x5f, 0x69, 0x70, 0x2e, 0xa5, + 0x58, 0xba, 0xb0, 0x44, 0xd7, 0x67, 0x2b, 0x57, 0x50, 0x84, 0x36, 0x3f, 0x99, 0xf3, 0x77, 0x05, + 0x29, 0x96, 0xc6, 0x02, 0x3a, 0x10, 0x7b, 0x92, 0xe0, 0x48, 0x74, 0xb1, 0x10, 0x30, 0xc6, 0xd2, + 0x37, 0xa7, 0x75, 0xc7, 0xfb, 0xf0, 0x09, 0x2c, 0xef, 0x12, 0x16, 0x81, 0x9e, 0xac, 0xa7, 0xe5, + 0xb0, 0x66, 0x36, 0x54, 0xf3, 0x38, 0x49, 0x78, 0xcc, 0xba, 0xe4, 0x95, 0x3a, 0xfc, 0xb3, 0xb1, + 0x5a, 0x88, 0x80, 0xb2, 0x1e, 0x53, 0x8c, 0x1d, 0x8c, 0x05, 0xf4, 0x1c, 0x36, 0x8a, 0x93, 0x1e, + 0x7a, 0xeb, 0xc8, 0x87, 0x55, 0xf3, 0xea, 0x51, 0x86, 0x46, 0x22, 0x3f, 0xda, 0xf9, 0xeb, 0xcb, + 0x4d, 0xed, 0x6f, 0x2f, 0x37, 0xb5, 0x7f, 0xbe, 0xdc, 0xd4, 0xbe, 0x7f, 0xe3, 0x15, 0xbf, 0x3f, + 0x4a, 0xfd, 0xa4, 0x09, 0x53, 0xdb, 0x72, 0x6c, 0xe2, 0xb2, 0x4e, 0x55, 0xc4, 0xdb, 0x8d, 0xff, + 0x04, 0x00, 0x00, 0xff, 0xff, 0x0f, 0x5b, 0x4a, 0xde, 0xf1, 0x24, 0x00, 0x00, } // Reference imports to suppress errors if they are not otherwise used. @@ -3710,6 +3719,11 @@ func (m *ResolveRevisionRequest) MarshalToSizedBuffer(dAtA []byte) (int, error) i -= len(m.XXX_unrecognized) copy(dAtA[i:], m.XXX_unrecognized) } + if m.SourceIndex != 0 { + i = encodeVarintRepository(dAtA, i, uint64(m.SourceIndex)) + i-- + dAtA[i] = 0x20 + } if len(m.AmbiguousRevision) > 0 { i -= len(m.AmbiguousRevision) copy(dAtA[i:], m.AmbiguousRevision) @@ -5582,6 +5596,9 @@ func (m *ResolveRevisionRequest) Size() (n int) { if l > 0 { n += 1 + l + sovRepository(uint64(l)) } + if m.SourceIndex != 0 { + n += 1 + sovRepository(uint64(m.SourceIndex)) + } if m.XXX_unrecognized != nil { n += len(m.XXX_unrecognized) } @@ -7849,6 +7866,25 @@ func (m *ResolveRevisionRequest) Unmarshal(dAtA []byte) error { } m.AmbiguousRevision = string(dAtA[iNdEx:postIndex]) iNdEx = postIndex + case 4: + if wireType != 0 { + return fmt.Errorf("proto: wrong wireType = %d for field SourceIndex", wireType) + } + m.SourceIndex = 0 + for shift := uint(0); ; shift += 7 { + if shift >= 64 { + return ErrIntOverflowRepository + } + if iNdEx >= l { + return io.ErrUnexpectedEOF + } + b := dAtA[iNdEx] + iNdEx++ + m.SourceIndex |= int64(b&0x7F) << shift + if b < 0x80 { + break + } + } default: iNdEx = preIndex skippy, err := skipRepository(dAtA[iNdEx:]) diff --git a/reposerver/repository/repository.go b/reposerver/repository/repository.go index 83cc149f68c8a..1527c4b372c27 100644 --- a/reposerver/repository/repository.go +++ b/reposerver/repository/repository.go @@ -2512,7 +2512,7 @@ func (s *Service) ResolveRevision(ctx context.Context, q *apiclient.ResolveRevis app := q.App ambiguousRevision := q.AmbiguousRevision var revision string - var source = app.Spec.GetSource() + var source = app.Spec.GetSourcePtrByIndex(int(q.SourceIndex)) if source.IsHelm() { _, revision, err := s.newHelmClientResolveRevision(repo, ambiguousRevision, source.Chart, true) diff --git a/reposerver/repository/repository.proto b/reposerver/repository/repository.proto index 253714a72bd50..f715ff8ce4c8c 100644 --- a/reposerver/repository/repository.proto +++ b/reposerver/repository/repository.proto @@ -73,6 +73,7 @@ message ResolveRevisionRequest { github.com.argoproj.argo_cd.v2.pkg.apis.application.v1alpha1.Repository repo = 1; github.com.argoproj.argo_cd.v2.pkg.apis.application.v1alpha1.Application app = 2; string ambiguousRevision = 3; + int64 sourceIndex = 4; } // ResolveRevisionResponse diff --git a/server/application/application.go b/server/application/application.go index 77c74783018c2..164eda5937321 100644 --- a/server/application/application.go +++ b/server/application/application.go @@ -472,11 +472,10 @@ func (s *Server) GetManifests(ctx context.Context, q *application.ApplicationMan if a.Spec.HasMultipleSources() { numOfSources := int64(len(a.Spec.GetSources())) for i, pos := range q.SourcePositions { - if pos <= numOfSources { - a.Spec.Sources[pos-1].TargetRevision = q.Revisions[i] - } else { - return fmt.Errorf("source position cannot be greater than number of sources in the application") + if pos <= 0 || pos > numOfSources { + return fmt.Errorf("source position is out of range") } + a.Spec.Sources[pos-1].TargetRevision = q.Revisions[i] } sources = a.Spec.GetSources() } else { @@ -1811,8 +1810,6 @@ func (s *Server) Sync(ctx context.Context, syncReq *application.ApplicationSyncR return nil, err } - source := a.Spec.GetSource() - if syncReq.Manifests != nil { if err := s.enf.EnforceErr(ctx.Value("claims"), rbacpolicy.ResourceApplications, rbacpolicy.ActionOverride, a.RBACName(s.ns)); err != nil { return nil, err @@ -1824,14 +1821,10 @@ func (s *Server) Sync(ctx context.Context, syncReq *application.ApplicationSyncR if a.DeletionTimestamp != nil { return nil, status.Errorf(codes.FailedPrecondition, "application is deleting") } - if a.Spec.SyncPolicy != nil && a.Spec.SyncPolicy.Automated != nil && !syncReq.GetDryRun() { - if syncReq.GetRevision() != "" && syncReq.GetRevision() != text.FirstNonEmpty(source.TargetRevision, "HEAD") { - return nil, status.Errorf(codes.FailedPrecondition, "Cannot sync to %s: auto-sync currently set to %s", syncReq.GetRevision(), source.TargetRevision) - } - } - revision, displayRevision, err := s.resolveRevision(ctx, a, syncReq) + + revision, displayRevision, sourceRevisions, displayRevisions, err := s.resolveSourceRevisions(ctx, a, syncReq) if err != nil { - return nil, status.Errorf(codes.FailedPrecondition, err.Error()) + return nil, err } var retry *appv1.RetryStrategy @@ -1869,6 +1862,8 @@ func (s *Server) Sync(ctx context.Context, syncReq *application.ApplicationSyncR SyncStrategy: syncReq.Strategy, Resources: resources, Manifests: syncReq.Manifests, + Sources: a.Spec.Sources, + Revisions: sourceRevisions, }, InitiatedBy: appv1.OperationInitiator{Username: session.Username(ctx)}, Info: syncReq.Infos, @@ -1888,7 +1883,12 @@ func (s *Server) Sync(ctx context.Context, syncReq *application.ApplicationSyncR if len(syncReq.Resources) > 0 { partial = "partial " } - reason := fmt.Sprintf("initiated %ssync to %s", partial, displayRevision) + var reason string + if a.Spec.HasMultipleSources() { + reason = fmt.Sprintf("initiated %ssync to %s", partial, strings.Join(displayRevisions, ",")) + } else { + reason = fmt.Sprintf("initiated %ssync to %s", partial, displayRevision) + } if syncReq.Manifests != nil { reason = fmt.Sprintf("initiated %ssync locally", partial) } @@ -1896,6 +1896,48 @@ func (s *Server) Sync(ctx context.Context, syncReq *application.ApplicationSyncR return a, nil } +func (s *Server) resolveSourceRevisions(ctx context.Context, a *appv1.Application, syncReq *application.ApplicationSyncRequest) (string, string, []string, []string, error) { + if a.Spec.HasMultipleSources() { + numOfSources := int64(len(a.Spec.GetSources())) + sourceRevisions := make([]string, numOfSources) + displayRevisions := make([]string, numOfSources) + + sources := a.Spec.GetSources() + for i, pos := range syncReq.SourcePositions { + if pos <= 0 || pos > numOfSources { + return "", "", nil, nil, fmt.Errorf("source position is out of range") + } + sources[pos-1].TargetRevision = syncReq.Revisions[i] + } + for index, source := range sources { + if a.Spec.SyncPolicy != nil && a.Spec.SyncPolicy.Automated != nil && !syncReq.GetDryRun() { + if text.FirstNonEmpty(a.Spec.GetSources()[index].TargetRevision, "HEAD") != text.FirstNonEmpty(source.TargetRevision, "HEAD") { + return "", "", nil, nil, status.Errorf(codes.FailedPrecondition, "Cannot sync source %s to %s: auto-sync currently set to %s", source.RepoURL, source.TargetRevision, a.Spec.Sources[index].TargetRevision) + } + } + revision, displayRevision, err := s.resolveRevision(ctx, a, syncReq, index) + if err != nil { + return "", "", nil, nil, status.Errorf(codes.FailedPrecondition, err.Error()) + } + sourceRevisions[index] = revision + displayRevisions[index] = displayRevision + } + return "", "", sourceRevisions, displayRevisions, nil + } else { + source := a.Spec.GetSource() + if a.Spec.SyncPolicy != nil && a.Spec.SyncPolicy.Automated != nil && !syncReq.GetDryRun() { + if syncReq.GetRevision() != "" && syncReq.GetRevision() != text.FirstNonEmpty(source.TargetRevision, "HEAD") { + return "", "", nil, nil, status.Errorf(codes.FailedPrecondition, "Cannot sync to %s: auto-sync currently set to %s", syncReq.GetRevision(), source.TargetRevision) + } + } + revision, displayRevision, err := s.resolveRevision(ctx, a, syncReq, -1) + if err != nil { + return "", "", nil, nil, status.Errorf(codes.FailedPrecondition, err.Error()) + } + return revision, displayRevision, nil, nil, nil + } +} + func (s *Server) Rollback(ctx context.Context, rollbackReq *application.ApplicationRollbackRequest) (*appv1.Application, error) { a, _, err := s.getApplicationEnforceRBACClient(ctx, rbacpolicy.ActionSync, rollbackReq.GetProject(), rollbackReq.GetAppNamespace(), rollbackReq.GetName(), "") if err != nil { @@ -2068,16 +2110,35 @@ func (s *Server) ListResourceLinks(ctx context.Context, req *application.Applica return finalList, nil } +func getAmbiguousRevision(app *appv1.Application, syncReq *application.ApplicationSyncRequest, sourceIndex int) string { + ambiguousRevision := "" + if app.Spec.HasMultipleSources() { + for i, pos := range syncReq.SourcePositions { + if pos == int64(sourceIndex) { + ambiguousRevision = syncReq.Revisions[i] + } + } + if ambiguousRevision == "" { + ambiguousRevision = app.Spec.Sources[sourceIndex].TargetRevision + } + } else { + ambiguousRevision = syncReq.GetRevision() + if ambiguousRevision == "" { + ambiguousRevision = app.Spec.GetSource().TargetRevision + } + } + return ambiguousRevision +} + // resolveRevision resolves the revision specified either in the sync request, or the // application source, into a concrete revision that will be used for a sync operation. -func (s *Server) resolveRevision(ctx context.Context, app *appv1.Application, syncReq *application.ApplicationSyncRequest) (string, string, error) { +func (s *Server) resolveRevision(ctx context.Context, app *appv1.Application, syncReq *application.ApplicationSyncRequest, sourceIndex int) (string, string, error) { if syncReq.Manifests != nil { return "", "", nil } - ambiguousRevision := syncReq.GetRevision() - if ambiguousRevision == "" { - ambiguousRevision = app.Spec.GetSource().TargetRevision - } + + ambiguousRevision := getAmbiguousRevision(app, syncReq, sourceIndex) + repo, err := s.db.GetRepository(ctx, app.Spec.GetSource().RepoURL) if err != nil { return "", "", fmt.Errorf("error getting repository by URL: %w", err) @@ -2088,7 +2149,7 @@ func (s *Server) resolveRevision(ctx context.Context, app *appv1.Application, sy } defer ioutil.Close(conn) - source := app.Spec.GetSource() + source := app.Spec.GetSourcePtrByIndex(sourceIndex) if !source.IsHelm() { if git.IsCommitSHA(ambiguousRevision) { // If it's already a commit SHA, then no need to look it up @@ -2100,6 +2161,7 @@ func (s *Server) resolveRevision(ctx context.Context, app *appv1.Application, sy Repo: repo, App: app, AmbiguousRevision: ambiguousRevision, + SourceIndex: int64(sourceIndex), }) if err != nil { return "", "", fmt.Errorf("error resolving repo revision: %w", err) diff --git a/server/application/application.proto b/server/application/application.proto index c01c09a9a8ace..2a70e1c518c09 100644 --- a/server/application/application.proto +++ b/server/application/application.proto @@ -131,6 +131,8 @@ message ApplicationSyncRequest { optional SyncOptions syncOptions = 11; optional string appNamespace = 12; optional string project = 13; + repeated int64 sourcePositions = 14; + repeated string revisions = 15; } // ApplicationUpdateSpecRequest is a request to update application spec diff --git a/server/application/application_test.go b/server/application/application_test.go index e82a011895544..81bba66764d7e 100644 --- a/server/application/application_test.go +++ b/server/application/application_test.go @@ -43,6 +43,7 @@ import ( "github.com/argoproj/argo-cd/v2/common" "github.com/argoproj/argo-cd/v2/pkg/apiclient/application" appsv1 "github.com/argoproj/argo-cd/v2/pkg/apis/application/v1alpha1" + appv1 "github.com/argoproj/argo-cd/v2/pkg/apis/application/v1alpha1" apps "github.com/argoproj/argo-cd/v2/pkg/client/clientset/versioned/fake" appinformer "github.com/argoproj/argo-cd/v2/pkg/client/informers/externalversions" "github.com/argoproj/argo-cd/v2/reposerver/apiclient" @@ -2720,3 +2721,126 @@ func TestAppNamespaceRestrictions(t *testing.T) { assert.Equal(t, 0, len(links.Items)) }) } + +func TestGetAmbiguousRevision_MultiSource(t *testing.T) { + app := &appv1.Application{ + Spec: appv1.ApplicationSpec{ + Sources: []appv1.ApplicationSource{ + { + TargetRevision: "revision1", + }, + { + TargetRevision: "revision2", + }, + }, + }, + } + syncReq := &application.ApplicationSyncRequest{ + SourcePositions: []int64{0, 1}, + Revisions: []string{"rev1", "rev2"}, + } + + sourceIndex := 0 + expected := "rev1" + result := getAmbiguousRevision(app, syncReq, sourceIndex) + if result != expected { + t.Errorf("Expected ambiguous revision to be %s, but got %s", expected, result) + } + + sourceIndex = 1 + expected = "rev2" + result = getAmbiguousRevision(app, syncReq, sourceIndex) + if result != expected { + t.Errorf("Expected ambiguous revision to be %s, but got %s", expected, result) + } + + // Test when app.Spec.HasMultipleSources() is false + app.Spec = appv1.ApplicationSpec{ + Source: &appv1.ApplicationSource{ + TargetRevision: "revision3", + }, + Sources: nil, + } + syncReq = &application.ApplicationSyncRequest{ + Revision: strToPtr("revision3"), + } + expected = "revision3" + result = getAmbiguousRevision(app, syncReq, sourceIndex) + if result != expected { + t.Errorf("Expected ambiguous revision to be %s, but got %s", expected, result) + } +} + +func TestGetAmbiguousRevision_SingleSource(t *testing.T) { + app := &appv1.Application{ + Spec: appv1.ApplicationSpec{ + Source: &appv1.ApplicationSource{ + TargetRevision: "revision1", + }, + }, + } + syncReq := &application.ApplicationSyncRequest{ + Revision: strToPtr("rev1"), + } + + // Test when app.Spec.HasMultipleSources() is true + sourceIndex := 1 + expected := "rev1" + result := getAmbiguousRevision(app, syncReq, sourceIndex) + if result != expected { + t.Errorf("Expected ambiguous revision to be %s, but got %s", expected, result) + } +} + +func TestServer_ResolveSourceRevisions_MultiSource(t *testing.T) { + s := newTestAppServer(t) + + ctx := context.Background() + a := &appv1.Application{ + Spec: appv1.ApplicationSpec{ + Sources: []appv1.ApplicationSource{ + { + RepoURL: "https://github.com/example/repo.git", + }, + }, + }, + } + + syncReq := &application.ApplicationSyncRequest{ + SourcePositions: []int64{1}, + Revisions: []string{"HEAD"}, + } + + revision, displayRevision, sourceRevisions, displayRevisions, err := s.resolveSourceRevisions(ctx, a, syncReq) + + assert.NoError(t, err) + assert.Equal(t, "", revision) + assert.Equal(t, "", displayRevision) + assert.Equal(t, []string{fakeResolveRevisionResponse().Revision}, sourceRevisions) + assert.Equal(t, []string{fakeResolveRevisionResponse().AmbiguousRevision}, displayRevisions) +} + +func TestServer_ResolveSourceRevisions_SingleSource(t *testing.T) { + s := newTestAppServer(t) + + ctx := context.Background() + a := &appv1.Application{ + Spec: appv1.ApplicationSpec{ + Source: &appv1.ApplicationSource{ + RepoURL: "https://github.com/example/repo.git", + }, + }, + } + + syncReq := &application.ApplicationSyncRequest{ + Revision: strToPtr("HEAD"), + } + + revision, displayRevision, sourceRevisions, displayRevisions, err := s.resolveSourceRevisions(ctx, a, syncReq) + + assert.NoError(t, err) + assert.Equal(t, fakeResolveRevisionResponse().Revision, revision) + assert.Equal(t, fakeResolveRevisionResponse().AmbiguousRevision, displayRevision) + assert.Equal(t, ([]string)(nil), sourceRevisions) + assert.Equal(t, ([]string)(nil), displayRevisions) +} diff --git a/server/repository/repository_test.go b/server/repository/repository_test.go index 55bf7ab7220ac..e77ae2e8a962c 100644 --- a/server/repository/repository_test.go +++ b/server/repository/repository_test.go @@ -654,7 +654,7 @@ func TestRepositoryServerGetAppDetails(t *testing.T) { s := NewServer(&repoServerClientset, db, enforcer, newFixtures().Cache, appLister, projLister, testNamespace, settingsMgr) resp, err := s.GetAppDetails(context.TODO(), &repository.RepoAppDetailsQuery{ - Source: guestbookApp.Spec.GetSourcePtr(0), + Source: guestbookApp.Spec.GetSourcePtrByIndex(0), AppName: "guestbook", AppProject: "default", }) @@ -752,7 +752,7 @@ func TestRepositoryServerGetAppDetails(t *testing.T) { s := NewServer(&repoServerClientset, db, enforcer, newFixtures().Cache, appLister, projLister, testNamespace, settingsMgr) resp, err := s.GetAppDetails(context.TODO(), &repository.RepoAppDetailsQuery{ - Source: guestbookApp.Spec.GetSourcePtr(0), + Source: guestbookApp.Spec.GetSourcePtrByIndex(0), AppName: "guestbook", AppProject: "mismatch", }) diff --git a/util/notification/expression/repo/repo.go b/util/notification/expression/repo/repo.go index 04bd23a45f275..ada7a353e3d32 100644 --- a/util/notification/expression/repo/repo.go +++ b/util/notification/expression/repo/repo.go @@ -33,7 +33,7 @@ func getApplicationSourceAndName(obj *unstructured.Unstructured) (*v1alpha1.Appl if err != nil { return nil, "", err } - return application.Spec.GetSourcePtr(0), application.GetName(), nil + return application.Spec.GetSourcePtrByIndex(0), application.GetName(), nil } func getAppDetails(app *unstructured.Unstructured, argocdService service.Service) (*shared.AppDetail, error) { From 7581c20e92af1bce925404ecfcdd2ac3a8f061f0 Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" <41898282+github-actions[bot]@users.noreply.github.com> Date: Mon, 29 Apr 2024 11:26:54 +0300 Subject: [PATCH 047/206] [Bot] docs: Update Snyk reports (#18008) Signed-off-by: CI Co-authored-by: CI Co-authored-by: pasha-codefresh --- docs/snyk/index.md | 58 +- docs/snyk/master/argocd-iac-install.html | 80 +- .../master/argocd-iac-namespace-install.html | 4 +- docs/snyk/master/argocd-test.html | 4 +- .../master/ghcr.io_dexidp_dex_v2.38.0.html | 34 +- docs/snyk/master/haproxy_2.6.14-alpine.html | 34 +- .../quay.io_argoproj_argocd_latest.html | 83 +- docs/snyk/master/redis_7.0.15-alpine.html | 2 +- docs/snyk/v2.10.7/redis_7.0.14-alpine.html | 1165 --------- .../argocd-iac-install.html | 4 +- .../argocd-iac-namespace-install.html | 4 +- .../{v2.10.7 => v2.10.8}/argocd-test.html | 2 +- .../ghcr.io_dexidp_dex_v2.37.0.html | 34 +- .../haproxy_2.6.14-alpine.html | 34 +- .../quay.io_argoproj_argocd_v2.10.8.html} | 1227 +++------ docs/snyk/v2.10.8/redis_7.0.15-alpine.html | 657 +++++ docs/snyk/v2.11.0-rc2/argocd-iac-install.html | 2 +- .../argocd-iac-namespace-install.html | 2 +- docs/snyk/v2.11.0-rc2/argocd-test.html | 2 +- .../ghcr.io_dexidp_dex_v2.38.0.html | 34 +- .../v2.11.0-rc2/haproxy_2.6.14-alpine.html | 34 +- .../quay.io_argoproj_argocd_v2.11.0-rc2.html | 160 +- .../snyk/v2.11.0-rc2/redis_7.0.14-alpine.html | 34 +- docs/snyk/v2.8.16/redis_7.0.11-alpine.html | 2204 ----------------- .../argocd-iac-install.html | 4 +- .../argocd-iac-namespace-install.html | 4 +- .../{v2.8.16 => v2.8.17}/argocd-test.html | 223 +- .../ghcr.io_dexidp_dex_v2.37.0.html | 34 +- .../haproxy_2.6.14-alpine.html | 34 +- .../quay.io_argoproj_argocd_v2.8.17.html} | 1139 ++++----- docs/snyk/v2.8.17/redis_7.0.15-alpine.html | 657 +++++ docs/snyk/v2.9.12/redis_7.0.11-alpine.html | 2204 ----------------- .../argocd-iac-install.html | 4 +- .../argocd-iac-namespace-install.html | 4 +- .../{v2.9.12 => v2.9.13}/argocd-test.html | 223 +- .../ghcr.io_dexidp_dex_v2.37.0.html | 34 +- .../haproxy_2.6.14-alpine.html | 34 +- .../quay.io_argoproj_argocd_v2.9.13.html} | 964 +++---- docs/snyk/v2.9.13/redis_7.0.15-alpine.html | 657 +++++ 39 files changed, 4318 insertions(+), 7799 deletions(-) delete mode 100644 docs/snyk/v2.10.7/redis_7.0.14-alpine.html rename docs/snyk/{v2.10.7 => v2.10.8}/argocd-iac-install.html (99%) rename docs/snyk/{v2.10.7 => v2.10.8}/argocd-iac-namespace-install.html (99%) rename docs/snyk/{v2.10.7 => v2.10.8}/argocd-test.html (99%) rename docs/snyk/{v2.8.16 => v2.10.8}/ghcr.io_dexidp_dex_v2.37.0.html (98%) rename docs/snyk/{v2.8.16 => v2.10.8}/haproxy_2.6.14-alpine.html (96%) rename docs/snyk/{v2.8.16/quay.io_argoproj_argocd_v2.8.16.html => v2.10.8/quay.io_argoproj_argocd_v2.10.8.html} (83%) create mode 100644 docs/snyk/v2.10.8/redis_7.0.15-alpine.html delete mode 100644 docs/snyk/v2.8.16/redis_7.0.11-alpine.html rename docs/snyk/{v2.8.16 => v2.8.17}/argocd-iac-install.html (99%) rename docs/snyk/{v2.8.16 => v2.8.17}/argocd-iac-namespace-install.html (99%) rename docs/snyk/{v2.8.16 => v2.8.17}/argocd-test.html (96%) rename docs/snyk/{v2.9.12 => v2.8.17}/ghcr.io_dexidp_dex_v2.37.0.html (98%) rename docs/snyk/{v2.10.7 => v2.8.17}/haproxy_2.6.14-alpine.html (96%) rename docs/snyk/{v2.9.12/quay.io_argoproj_argocd_v2.9.12.html => v2.8.17/quay.io_argoproj_argocd_v2.8.17.html} (91%) create mode 100644 docs/snyk/v2.8.17/redis_7.0.15-alpine.html delete mode 100644 docs/snyk/v2.9.12/redis_7.0.11-alpine.html rename docs/snyk/{v2.9.12 => v2.9.13}/argocd-iac-install.html (99%) rename docs/snyk/{v2.9.12 => v2.9.13}/argocd-iac-namespace-install.html (99%) rename docs/snyk/{v2.9.12 => v2.9.13}/argocd-test.html (96%) rename docs/snyk/{v2.10.7 => v2.9.13}/ghcr.io_dexidp_dex_v2.37.0.html (98%) rename docs/snyk/{v2.9.12 => v2.9.13}/haproxy_2.6.14-alpine.html (96%) rename docs/snyk/{v2.10.7/quay.io_argoproj_argocd_v2.10.7.html => v2.9.13/quay.io_argoproj_argocd_v2.9.13.html} (90%) create mode 100644 docs/snyk/v2.9.13/redis_7.0.15-alpine.html diff --git a/docs/snyk/index.md b/docs/snyk/index.md index 8076ff1cda8ef..66daffb7bd393 100644 --- a/docs/snyk/index.md +++ b/docs/snyk/index.md @@ -17,7 +17,7 @@ recent minor releases. | [ui/yarn.lock](master/argocd-test.html) | 0 | 0 | 1 | 0 | | [dex:v2.38.0](master/ghcr.io_dexidp_dex_v2.38.0.html) | 0 | 0 | 2 | 2 | | [haproxy:2.6.14-alpine](master/haproxy_2.6.14-alpine.html) | 0 | 1 | 3 | 2 | -| [argocd:latest](master/quay.io_argoproj_argocd_latest.html) | 0 | 0 | 6 | 14 | +| [argocd:latest](master/quay.io_argoproj_argocd_latest.html) | 0 | 0 | 7 | 14 | | [redis:7.0.15-alpine](master/redis_7.0.15-alpine.html) | 0 | 0 | 0 | 1 | | [install.yaml](master/argocd-iac-install.html) | - | - | - | - | | [namespace-install.yaml](master/argocd-iac-namespace-install.html) | - | - | - | - | @@ -30,46 +30,46 @@ recent minor releases. | [ui/yarn.lock](v2.11.0-rc2/argocd-test.html) | 0 | 0 | 1 | 0 | | [dex:v2.38.0](v2.11.0-rc2/ghcr.io_dexidp_dex_v2.38.0.html) | 0 | 0 | 2 | 2 | | [haproxy:2.6.14-alpine](v2.11.0-rc2/haproxy_2.6.14-alpine.html) | 0 | 1 | 3 | 2 | -| [argocd:v2.11.0-rc2](v2.11.0-rc2/quay.io_argoproj_argocd_v2.11.0-rc2.html) | 0 | 0 | 7 | 14 | +| [argocd:v2.11.0-rc2](v2.11.0-rc2/quay.io_argoproj_argocd_v2.11.0-rc2.html) | 0 | 0 | 9 | 14 | | [redis:7.0.14-alpine](v2.11.0-rc2/redis_7.0.14-alpine.html) | 0 | 0 | 2 | 2 | | [install.yaml](v2.11.0-rc2/argocd-iac-install.html) | - | - | - | - | | [namespace-install.yaml](v2.11.0-rc2/argocd-iac-namespace-install.html) | - | - | - | - | -### v2.10.7 +### v2.10.8 | | Critical | High | Medium | Low | |---:|:--------:|:----:|:------:|:---:| -| [go.mod](v2.10.7/argocd-test.html) | 0 | 1 | 12 | 0 | -| [ui/yarn.lock](v2.10.7/argocd-test.html) | 0 | 0 | 1 | 0 | -| [dex:v2.37.0](v2.10.7/ghcr.io_dexidp_dex_v2.37.0.html) | 1 | 1 | 6 | 2 | -| [haproxy:2.6.14-alpine](v2.10.7/haproxy_2.6.14-alpine.html) | 0 | 1 | 3 | 2 | -| [argocd:v2.10.7](v2.10.7/quay.io_argoproj_argocd_v2.10.7.html) | 0 | 0 | 9 | 14 | -| [redis:7.0.14-alpine](v2.10.7/redis_7.0.14-alpine.html) | 0 | 0 | 2 | 2 | -| [install.yaml](v2.10.7/argocd-iac-install.html) | - | - | - | - | -| [namespace-install.yaml](v2.10.7/argocd-iac-namespace-install.html) | - | - | - | - | +| [go.mod](v2.10.8/argocd-test.html) | 0 | 1 | 12 | 0 | +| [ui/yarn.lock](v2.10.8/argocd-test.html) | 0 | 0 | 1 | 0 | +| [dex:v2.37.0](v2.10.8/ghcr.io_dexidp_dex_v2.37.0.html) | 1 | 1 | 6 | 2 | +| [haproxy:2.6.14-alpine](v2.10.8/haproxy_2.6.14-alpine.html) | 0 | 1 | 3 | 2 | +| [argocd:v2.10.8](v2.10.8/quay.io_argoproj_argocd_v2.10.8.html) | 0 | 0 | 7 | 14 | +| [redis:7.0.15-alpine](v2.10.8/redis_7.0.15-alpine.html) | 0 | 0 | 0 | 1 | +| [install.yaml](v2.10.8/argocd-iac-install.html) | - | - | - | - | +| [namespace-install.yaml](v2.10.8/argocd-iac-namespace-install.html) | - | - | - | - | -### v2.9.12 +### v2.9.13 | | Critical | High | Medium | Low | |---:|:--------:|:----:|:------:|:---:| -| [go.mod](v2.9.12/argocd-test.html) | 0 | 2 | 11 | 0 | -| [ui/yarn.lock](v2.9.12/argocd-test.html) | 0 | 0 | 1 | 0 | -| [dex:v2.37.0](v2.9.12/ghcr.io_dexidp_dex_v2.37.0.html) | 1 | 1 | 6 | 2 | -| [haproxy:2.6.14-alpine](v2.9.12/haproxy_2.6.14-alpine.html) | 0 | 1 | 3 | 2 | -| [argocd:v2.9.12](v2.9.12/quay.io_argoproj_argocd_v2.9.12.html) | 0 | 0 | 9 | 14 | -| [redis:7.0.11-alpine](v2.9.12/redis_7.0.11-alpine.html) | 1 | 1 | 6 | 2 | -| [install.yaml](v2.9.12/argocd-iac-install.html) | - | - | - | - | -| [namespace-install.yaml](v2.9.12/argocd-iac-namespace-install.html) | - | - | - | - | +| [go.mod](v2.9.13/argocd-test.html) | 0 | 2 | 12 | 0 | +| [ui/yarn.lock](v2.9.13/argocd-test.html) | 0 | 0 | 1 | 0 | +| [dex:v2.37.0](v2.9.13/ghcr.io_dexidp_dex_v2.37.0.html) | 1 | 1 | 6 | 2 | +| [haproxy:2.6.14-alpine](v2.9.13/haproxy_2.6.14-alpine.html) | 0 | 1 | 3 | 2 | +| [argocd:v2.9.13](v2.9.13/quay.io_argoproj_argocd_v2.9.13.html) | 0 | 0 | 7 | 14 | +| [redis:7.0.15-alpine](v2.9.13/redis_7.0.15-alpine.html) | 0 | 0 | 0 | 1 | +| [install.yaml](v2.9.13/argocd-iac-install.html) | - | - | - | - | +| [namespace-install.yaml](v2.9.13/argocd-iac-namespace-install.html) | - | - | - | - | -### v2.8.16 +### v2.8.17 | | Critical | High | Medium | Low | |---:|:--------:|:----:|:------:|:---:| -| [go.mod](v2.8.16/argocd-test.html) | 0 | 2 | 11 | 0 | -| [ui/yarn.lock](v2.8.16/argocd-test.html) | 0 | 0 | 1 | 0 | -| [dex:v2.37.0](v2.8.16/ghcr.io_dexidp_dex_v2.37.0.html) | 1 | 1 | 6 | 2 | -| [haproxy:2.6.14-alpine](v2.8.16/haproxy_2.6.14-alpine.html) | 0 | 1 | 3 | 2 | -| [argocd:v2.8.16](v2.8.16/quay.io_argoproj_argocd_v2.8.16.html) | 0 | 0 | 9 | 14 | -| [redis:7.0.11-alpine](v2.8.16/redis_7.0.11-alpine.html) | 1 | 1 | 6 | 2 | -| [install.yaml](v2.8.16/argocd-iac-install.html) | - | - | - | - | -| [namespace-install.yaml](v2.8.16/argocd-iac-namespace-install.html) | - | - | - | - | +| [go.mod](v2.8.17/argocd-test.html) | 0 | 2 | 12 | 0 | +| [ui/yarn.lock](v2.8.17/argocd-test.html) | 0 | 0 | 1 | 0 | +| [dex:v2.37.0](v2.8.17/ghcr.io_dexidp_dex_v2.37.0.html) | 1 | 1 | 6 | 2 | +| [haproxy:2.6.14-alpine](v2.8.17/haproxy_2.6.14-alpine.html) | 0 | 1 | 3 | 2 | +| [argocd:v2.8.17](v2.8.17/quay.io_argoproj_argocd_v2.8.17.html) | 0 | 0 | 7 | 14 | +| [redis:7.0.15-alpine](v2.8.17/redis_7.0.15-alpine.html) | 0 | 0 | 0 | 1 | +| [install.yaml](v2.8.17/argocd-iac-install.html) | - | - | - | - | +| [namespace-install.yaml](v2.8.17/argocd-iac-namespace-install.html) | - | - | - | - | diff --git a/docs/snyk/master/argocd-iac-install.html b/docs/snyk/master/argocd-iac-install.html index 722a0a591a4e8..fd04604d4cad3 100644 --- a/docs/snyk/master/argocd-iac-install.html +++ b/docs/snyk/master/argocd-iac-install.html @@ -456,7 +456,7 @@

                                                                                    Snyk test report

                                                                                    -

                                                                                    April 21st 2024, 12:17:41 am (UTC+00:00)

                                                                                    +

                                                                                    April 28th 2024, 12:17:57 am (UTC+00:00)

                                                                                    Scanned the following path: @@ -507,7 +507,7 @@

                                                                                    Role or ClusterRole with dangerous permissions

                                                                                  • - Line number: 21039 + Line number: 21070
                                                                                  @@ -553,7 +553,7 @@

                                                                                  Role or ClusterRole with dangerous permissions

                                                                                • - Line number: 20748 + Line number: 20779
                                                                                @@ -599,7 +599,7 @@

                                                                                Role or ClusterRole with dangerous permissions

                                                                              • - Line number: 20833 + Line number: 20864
                                                                              @@ -645,7 +645,7 @@

                                                                              Role or ClusterRole with dangerous permissions

                                                                            • - Line number: 20861 + Line number: 20892
                                                                            @@ -691,7 +691,7 @@

                                                                            Role or ClusterRole with dangerous permissions

                                                                          • - Line number: 20891 + Line number: 20922
                                                                          @@ -737,7 +737,7 @@

                                                                          Role or ClusterRole with dangerous permissions

                                                                        • - Line number: 20909 + Line number: 20940
                                                                        @@ -783,7 +783,7 @@

                                                                        Role or ClusterRole with dangerous permissions

                                                                      • - Line number: 20925 + Line number: 20956
                                                                      @@ -835,7 +835,7 @@

                                                                      Container could be running with outdated image

                                                                    • - Line number: 22219 + Line number: 22250
                                                                    @@ -893,7 +893,7 @@

                                                                    Container has no CPU limit

                                                                  • - Line number: 21516 + Line number: 21547
                                                                  @@ -951,7 +951,7 @@

                                                                  Container has no CPU limit

                                                                • - Line number: 21767 + Line number: 21798
                                                                @@ -1009,7 +1009,7 @@

                                                                Container has no CPU limit

                                                              • - Line number: 21733 + Line number: 21764
                                                              @@ -1067,7 +1067,7 @@

                                                              Container has no CPU limit

                                                            • - Line number: 21827 + Line number: 21858
                                                            @@ -1125,7 +1125,7 @@

                                                            Container has no CPU limit

                                                          • - Line number: 21926 + Line number: 21957
                                                          @@ -1183,7 +1183,7 @@

                                                          Container has no CPU limit

                                                        • - Line number: 22219 + Line number: 22250
                                                        @@ -1241,7 +1241,7 @@

                                                        Container has no CPU limit

                                                      • - Line number: 21983 + Line number: 22014
                                                      @@ -1299,7 +1299,7 @@

                                                      Container has no CPU limit

                                                    • - Line number: 22304 + Line number: 22335
                                                    @@ -1357,7 +1357,7 @@

                                                    Container has no CPU limit

                                                  • - Line number: 22650 + Line number: 22681
                                                  @@ -1409,7 +1409,7 @@

                                                  Container is running with multiple open ports

                                                • - Line number: 21747 + Line number: 21778
                                                @@ -1461,7 +1461,7 @@

                                                Container is running without liveness probe

                                              • - Line number: 21516 + Line number: 21547
                                              @@ -1513,7 +1513,7 @@

                                              Container is running without liveness probe

                                            • - Line number: 21733 + Line number: 21764
                                            @@ -1565,7 +1565,7 @@

                                            Container is running without liveness probe

                                          • - Line number: 21926 + Line number: 21957
                                          @@ -1623,7 +1623,7 @@

                                          Container is running without memory limit

                                        • - Line number: 21516 + Line number: 21547
                                        @@ -1681,7 +1681,7 @@

                                        Container is running without memory limit

                                      • - Line number: 21733 + Line number: 21764
                                      @@ -1739,7 +1739,7 @@

                                      Container is running without memory limit

                                    • - Line number: 21767 + Line number: 21798
                                    @@ -1797,7 +1797,7 @@

                                    Container is running without memory limit

                                  • - Line number: 21827 + Line number: 21858
                                  @@ -1855,7 +1855,7 @@

                                  Container is running without memory limit

                                • - Line number: 21926 + Line number: 21957
                                @@ -1913,7 +1913,7 @@

                                Container is running without memory limit

                              • - Line number: 22219 + Line number: 22250
                              @@ -1971,7 +1971,7 @@

                              Container is running without memory limit

                            • - Line number: 21983 + Line number: 22014
                            @@ -2029,7 +2029,7 @@

                            Container is running without memory limit

                          • - Line number: 22304 + Line number: 22335
                          @@ -2087,7 +2087,7 @@

                          Container is running without memory limit

                        • - Line number: 22650 + Line number: 22681
                        @@ -2143,7 +2143,7 @@

                        Container's or Pod's UID could clash with hos

                      • - Line number: 21657 + Line number: 21688
                      @@ -2199,7 +2199,7 @@

                      Container's or Pod's UID could clash with hos

                    • - Line number: 21775 + Line number: 21806
                    @@ -2255,7 +2255,7 @@

                    Container's or Pod's UID could clash with hos

                  • - Line number: 21750 + Line number: 21781
                  @@ -2311,7 +2311,7 @@

                  Container's or Pod's UID could clash with hos

                • - Line number: 21860 + Line number: 21891
                @@ -2367,7 +2367,7 @@

                Container's or Pod's UID could clash with hos

              • - Line number: 21936 + Line number: 21967
              @@ -2423,7 +2423,7 @@

              Container's or Pod's UID could clash with hos

            • - Line number: 22226 + Line number: 22257
            @@ -2479,7 +2479,7 @@

            Container's or Pod's UID could clash with hos

          • - Line number: 22192 + Line number: 22223
          @@ -2535,7 +2535,7 @@

          Container's or Pod's UID could clash with hos

        • - Line number: 22560 + Line number: 22591
        @@ -2591,7 +2591,7 @@

        Container's or Pod's UID could clash with hos

      • - Line number: 22840 + Line number: 22877
      diff --git a/docs/snyk/master/argocd-iac-namespace-install.html b/docs/snyk/master/argocd-iac-namespace-install.html index aaba566ec489b..34f68f21d1209 100644 --- a/docs/snyk/master/argocd-iac-namespace-install.html +++ b/docs/snyk/master/argocd-iac-namespace-install.html @@ -456,7 +456,7 @@

      Snyk test report

      -

      April 21st 2024, 12:17:50 am (UTC+00:00)

      +

      April 28th 2024, 12:18:05 am (UTC+00:00)

      Scanned the following path: @@ -2545,7 +2545,7 @@

      Container's or Pod's UID could clash with hos

    • - Line number: 1957 + Line number: 1963
    diff --git a/docs/snyk/master/argocd-test.html b/docs/snyk/master/argocd-test.html index 767993c021d68..1bd1432ba6134 100644 --- a/docs/snyk/master/argocd-test.html +++ b/docs/snyk/master/argocd-test.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    April 21st 2024, 12:15:40 am (UTC+00:00)

    +

    April 28th 2024, 12:16:04 am (UTC+00:00)

    Scanned the following paths: @@ -469,7 +469,7 @@

    Snyk test report

    8 known vulnerabilities
    31 vulnerable dependency paths
    -
    2043 dependencies
    +
    2044 dependencies
    diff --git a/docs/snyk/master/ghcr.io_dexidp_dex_v2.38.0.html b/docs/snyk/master/ghcr.io_dexidp_dex_v2.38.0.html index ed8c2460a3b06..d985ce03c90da 100644 --- a/docs/snyk/master/ghcr.io_dexidp_dex_v2.38.0.html +++ b/docs/snyk/master/ghcr.io_dexidp_dex_v2.38.0.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    April 21st 2024, 12:15:50 am (UTC+00:00)

    +

    April 28th 2024, 12:16:12 am (UTC+00:00)

    Scanned the following paths: @@ -713,6 +713,8 @@

    References

  • https://www.openssl.org/news/secadv/20240109.txt
  • http://www.openwall.com/lists/oss-security/2024/01/09/1
  • https://security.netapp.com/advisory/ntap-20240216-0009/
    • +
  • https://security.netapp.com/advisory/ntap-20240426-0008/
    • +
  • https://security.netapp.com/advisory/ntap-20240426-0013/
    • @@ -2622,9 +2624,37 @@

    Detailed paths

    NVD Description

    -

    This vulnerability has not been analyzed by NVD yet.

    +

    Note: Versions mentioned in the description apply only to the upstream openssl package and not the openssl package as distributed by Alpine. + See How to fix? for Alpine:3.19 relevant fixed versions and status.

    +

    Issue summary: Checking excessively long invalid RSA public keys may take + a long time.

    +

    Impact summary: Applications that use the function EVP_PKEY_public_check() + to check RSA public keys may experience long delays. Where the key that + is being checked has been obtained from an untrusted source this may lead + to a Denial of Service.

    +

    When function EVP_PKEY_public_check() is called on RSA public keys, + a computation is done to confirm that the RSA modulus, n, is composite. + For valid RSA keys, n is a product of two or more large primes and this + computation completes quickly. However, if n is an overly large prime, + then this computation would take a long time.

    +

    An application that calls EVP_PKEY_public_check() and supplies an RSA key + obtained from an untrusted source could be vulnerable to a Denial of Service + attack.

    +

    The function EVP_PKEY_public_check() is not called from other OpenSSL + functions however it is called from the OpenSSL pkey command line + application. For that reason that application is also vulnerable if used + with the '-pubin' and '-check' options on untrusted data.

    +

    The OpenSSL SSL/TLS implementation is not affected by this issue.

    +

    The OpenSSL 3.0 and 3.1 FIPS providers are affected by this issue.

    Remediation

    Upgrade Alpine:3.19 openssl to version 3.1.4-r4 or higher.

    +

    References

    +
    diff --git a/docs/snyk/master/haproxy_2.6.14-alpine.html b/docs/snyk/master/haproxy_2.6.14-alpine.html index ea7a7364ba882..dfea5e7acd528 100644 --- a/docs/snyk/master/haproxy_2.6.14-alpine.html +++ b/docs/snyk/master/haproxy_2.6.14-alpine.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    April 21st 2024, 12:15:57 am (UTC+00:00)

    +

    April 28th 2024, 12:16:17 am (UTC+00:00)

    Scanned the following path: @@ -1036,6 +1036,8 @@

    References

  • https://www.openssl.org/news/secadv/20240109.txt
  • http://www.openwall.com/lists/oss-security/2024/01/09/1
  • https://security.netapp.com/advisory/ntap-20240216-0009/
    • +
  • https://security.netapp.com/advisory/ntap-20240426-0008/
    • +
  • https://security.netapp.com/advisory/ntap-20240426-0013/
    • @@ -1357,9 +1359,37 @@

    Detailed paths

    NVD Description

    -

    This vulnerability has not been analyzed by NVD yet.

    +

    Note: Versions mentioned in the description apply only to the upstream openssl package and not the openssl package as distributed by Alpine. + See How to fix? for Alpine:3.18 relevant fixed versions and status.

    +

    Issue summary: Checking excessively long invalid RSA public keys may take + a long time.

    +

    Impact summary: Applications that use the function EVP_PKEY_public_check() + to check RSA public keys may experience long delays. Where the key that + is being checked has been obtained from an untrusted source this may lead + to a Denial of Service.

    +

    When function EVP_PKEY_public_check() is called on RSA public keys, + a computation is done to confirm that the RSA modulus, n, is composite. + For valid RSA keys, n is a product of two or more large primes and this + computation completes quickly. However, if n is an overly large prime, + then this computation would take a long time.

    +

    An application that calls EVP_PKEY_public_check() and supplies an RSA key + obtained from an untrusted source could be vulnerable to a Denial of Service + attack.

    +

    The function EVP_PKEY_public_check() is not called from other OpenSSL + functions however it is called from the OpenSSL pkey command line + application. For that reason that application is also vulnerable if used + with the '-pubin' and '-check' options on untrusted data.

    +

    The OpenSSL SSL/TLS implementation is not affected by this issue.

    +

    The OpenSSL 3.0 and 3.1 FIPS providers are affected by this issue.

    Remediation

    Upgrade Alpine:3.18 openssl to version 3.1.4-r4 or higher.

    +

    References

    +
    diff --git a/docs/snyk/master/quay.io_argoproj_argocd_latest.html b/docs/snyk/master/quay.io_argoproj_argocd_latest.html index 4c3fc071322f4..19b922d2bb5df 100644 --- a/docs/snyk/master/quay.io_argoproj_argocd_latest.html +++ b/docs/snyk/master/quay.io_argoproj_argocd_latest.html @@ -7,7 +7,7 @@ Snyk test report - + @@ -456,7 +456,7 @@

    Snyk test report

    -

    April 21st 2024, 12:16:16 am (UTC+00:00)

    +

    April 28th 2024, 12:16:35 am (UTC+00:00)

    Scanned the following paths: @@ -470,9 +470,9 @@

    Snyk test report

    -
    28 known vulnerabilities
    -
    161 vulnerable dependency paths
    -
    2281 dependencies
    +
    29 known vulnerabilities
    +
    162 vulnerable dependency paths
    +
    2282 dependencies
    @@ -906,6 +906,7 @@

    References

  • http://people.ubuntu.com/~ubuntu-security/cve/CVE-2024-2236
  • https://access.redhat.com/security/cve/CVE-2024-2236
  • https://bugzilla.redhat.com/show_bug.cgi?id=2268268
    • +
  • https://bugzilla.redhat.com/show_bug.cgi?id=2245218
    • @@ -914,6 +915,78 @@

    References

    More about this vulnerability

    +
    +
    +

    CVE-2024-32487

    +
    + +
    + medium severity +
    + +
    + +
      +
    • + Manifest file: quay.io/argoproj/argocd:latest/argoproj/argocd Dockerfile +
      • +
    • + Package Manager: ubuntu:22.04 +
      • +
    • + Vulnerable module: + + less +
      • + +
    • Introduced through: + + docker-image|quay.io/argoproj/argocd@latest and less@590-1ubuntu0.22.04.2 + +
      • +
    + +
    + + +

    Detailed paths

    + +
      +
    • + Introduced through: + docker-image|quay.io/argoproj/argocd@latest + + less@590-1ubuntu0.22.04.2 + + + +
      • +
    + +
    + +
    + +

    NVD Description

    +

    Note: Versions mentioned in the description apply only to the upstream less package and not the less package as distributed by Ubuntu. + See How to fix? for Ubuntu:22.04 relevant fixed versions and status.

    +

    less through 653 allows OS command execution via a newline character in the name of a file, because quoting is mishandled in filename.c. Exploitation typically requires use with attacker-controlled file names, such as the files extracted from an untrusted archive. Exploitation also requires the LESSOPEN environment variable, but this is set by default in many common cases.

    +

    Remediation

    +

    There is no fixed version for Ubuntu:22.04 less.

    +

    References

    + + +
    + +
    +

    More about this vulnerability

    +
    +

    CVE-2024-26461

    diff --git a/docs/snyk/master/redis_7.0.15-alpine.html b/docs/snyk/master/redis_7.0.15-alpine.html index 667ef5636c50b..8f3a59a0fb30c 100644 --- a/docs/snyk/master/redis_7.0.15-alpine.html +++ b/docs/snyk/master/redis_7.0.15-alpine.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    April 21st 2024, 12:16:23 am (UTC+00:00)

    +

    April 28th 2024, 12:16:41 am (UTC+00:00)

    Scanned the following paths: diff --git a/docs/snyk/v2.10.7/redis_7.0.14-alpine.html b/docs/snyk/v2.10.7/redis_7.0.14-alpine.html deleted file mode 100644 index 2f7c053c86148..0000000000000 --- a/docs/snyk/v2.10.7/redis_7.0.14-alpine.html +++ /dev/null @@ -1,1165 +0,0 @@ - - - - - - - - - Snyk test report - - - - - - - - - -
    -
    -
    -
    - - - Snyk - Open Source Security - - - - - - - -
    -

    Snyk test report

    - -

    April 21st 2024, 12:20:37 am (UTC+00:00)

    -
    -
    - Scanned the following paths: -
      -
    • redis:7.0.14-alpine (apk)
      • -
    • redis:7.0.14-alpine/tianon/gosu//usr/local/bin/gosu (gomodules)
      • -
    -
    - -
    -
    4 known vulnerabilities
    -
    36 vulnerable dependency paths
    -
    19 dependencies
    -
    -
    -
    -
    - -
    -
    -
    -

    Out-of-bounds Write

    -
    - -
    - medium severity -
    - -
    - -
      -
    • - Package Manager: alpine:3.19 -
      • -
    • - Vulnerable module: - - openssl/libcrypto3 -
      • - -
    • Introduced through: - - docker-image|redis@7.0.14-alpine and openssl/libcrypto3@3.1.4-r2 - -
      • -
    - -
    - - -

    Detailed paths

    - -
      -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - openssl/libcrypto3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - .redis-rundeps@20231208.201137 - - openssl/libcrypto3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - apk-tools/apk-tools@2.14.0-r5 - - openssl/libcrypto3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - busybox/ssl_client@1.36.1-r15 - - openssl/libcrypto3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - .redis-rundeps@20231208.201137 - - openssl/libssl3@3.1.4-r2 - - openssl/libcrypto3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - openssl/libssl3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - .redis-rundeps@20231208.201137 - - openssl/libssl3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - apk-tools/apk-tools@2.14.0-r5 - - openssl/libssl3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - busybox/ssl_client@1.36.1-r15 - - openssl/libssl3@3.1.4-r2 - - - -
      • -
    - -
    - -
    - -

    NVD Description

    -

    Note: Versions mentioned in the description apply only to the upstream openssl package and not the openssl package as distributed by Alpine. - See How to fix? for Alpine:3.19 relevant fixed versions and status.

    -

    Issue summary: The POLY1305 MAC (message authentication code) implementation - contains a bug that might corrupt the internal state of applications running - on PowerPC CPU based platforms if the CPU provides vector instructions.

    -

    Impact summary: If an attacker can influence whether the POLY1305 MAC - algorithm is used, the application state might be corrupted with various - application dependent consequences.

    -

    The POLY1305 MAC (message authentication code) implementation in OpenSSL for - PowerPC CPUs restores the contents of vector registers in a different order - than they are saved. Thus the contents of some of these vector registers - are corrupted when returning to the caller. The vulnerable code is used only - on newer PowerPC processors supporting the PowerISA 2.07 instructions.

    -

    The consequences of this kind of internal application state corruption can - be various - from no consequences, if the calling application does not - depend on the contents of non-volatile XMM registers at all, to the worst - consequences, where the attacker could get complete control of the application - process. However unless the compiler uses the vector registers for storing - pointers, the most likely consequence, if any, would be an incorrect result - of some application dependent calculations or a crash leading to a denial of - service.

    -

    The POLY1305 MAC algorithm is most frequently used as part of the - CHACHA20-POLY1305 AEAD (authenticated encryption with associated data) - algorithm. The most common usage of this AEAD cipher is with TLS protocol - versions 1.2 and 1.3. If this cipher is enabled on the server a malicious - client can influence whether this AEAD cipher is used. This implies that - TLS server applications using OpenSSL can be potentially impacted. However - we are currently not aware of any concrete application that would be affected - by this issue therefore we consider this a Low severity security issue.

    -

    Remediation

    -

    Upgrade Alpine:3.19 openssl to version 3.1.4-r3 or higher.

    -

    References

    - - -
    - -
    -

    More about this vulnerability

    -
    - -
    -
    -

    CVE-2024-0727

    -
    - -
    - medium severity -
    - -
    - -
      -
    • - Package Manager: alpine:3.19 -
      • -
    • - Vulnerable module: - - openssl/libcrypto3 -
      • - -
    • Introduced through: - - docker-image|redis@7.0.14-alpine and openssl/libcrypto3@3.1.4-r2 - -
      • -
    - -
    - - -

    Detailed paths

    - -
      -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - openssl/libcrypto3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - .redis-rundeps@20231208.201137 - - openssl/libcrypto3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - apk-tools/apk-tools@2.14.0-r5 - - openssl/libcrypto3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - busybox/ssl_client@1.36.1-r15 - - openssl/libcrypto3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - .redis-rundeps@20231208.201137 - - openssl/libssl3@3.1.4-r2 - - openssl/libcrypto3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - openssl/libssl3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - .redis-rundeps@20231208.201137 - - openssl/libssl3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - apk-tools/apk-tools@2.14.0-r5 - - openssl/libssl3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - busybox/ssl_client@1.36.1-r15 - - openssl/libssl3@3.1.4-r2 - - - -
      • -
    - -
    - -
    - -

    NVD Description

    -

    Note: Versions mentioned in the description apply only to the upstream openssl package and not the openssl package as distributed by Alpine. - See How to fix? for Alpine:3.19 relevant fixed versions and status.

    -

    Issue summary: Processing a maliciously formatted PKCS12 file may lead OpenSSL - to crash leading to a potential Denial of Service attack

    -

    Impact summary: Applications loading files in the PKCS12 format from untrusted - sources might terminate abruptly.

    -

    A file in PKCS12 format can contain certificates and keys and may come from an - untrusted source. The PKCS12 specification allows certain fields to be NULL, but - OpenSSL does not correctly check for this case. This can lead to a NULL pointer - dereference that results in OpenSSL crashing. If an application processes PKCS12 - files from an untrusted source using the OpenSSL APIs then that application will - be vulnerable to this issue.

    -

    OpenSSL APIs that are vulnerable to this are: PKCS12_parse(), - PKCS12_unpack_p7data(), PKCS12_unpack_p7encdata(), PKCS12_unpack_authsafes() - and PKCS12_newpass().

    -

    We have also fixed a similar issue in SMIME_write_PKCS7(). However since this - function is related to writing data we do not consider it security significant.

    -

    The FIPS modules in 3.2, 3.1 and 3.0 are not affected by this issue.

    -

    Remediation

    -

    Upgrade Alpine:3.19 openssl to version 3.1.4-r5 or higher.

    -

    References

    - - -
    - -
    -

    More about this vulnerability

    -
    - -
    -
    -

    CVE-2023-6237

    -
    - -
    - low severity -
    - -
    - -
      -
    • - Package Manager: alpine:3.19 -
      • -
    • - Vulnerable module: - - openssl/libcrypto3 -
      • - -
    • Introduced through: - - docker-image|redis@7.0.14-alpine and openssl/libcrypto3@3.1.4-r2 - -
      • -
    - -
    - - -

    Detailed paths

    - -
      -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - openssl/libcrypto3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - .redis-rundeps@20231208.201137 - - openssl/libcrypto3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - apk-tools/apk-tools@2.14.0-r5 - - openssl/libcrypto3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - busybox/ssl_client@1.36.1-r15 - - openssl/libcrypto3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - .redis-rundeps@20231208.201137 - - openssl/libssl3@3.1.4-r2 - - openssl/libcrypto3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - openssl/libssl3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - .redis-rundeps@20231208.201137 - - openssl/libssl3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - apk-tools/apk-tools@2.14.0-r5 - - openssl/libssl3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - busybox/ssl_client@1.36.1-r15 - - openssl/libssl3@3.1.4-r2 - - - -
      • -
    - -
    - -
    - -

    NVD Description

    -

    This vulnerability has not been analyzed by NVD yet.

    -

    Remediation

    -

    Upgrade Alpine:3.19 openssl to version 3.1.4-r4 or higher.

    - -
    - -
    -

    More about this vulnerability

    -
    - -
    -
    -

    CVE-2024-2511

    -
    - -
    - low severity -
    - -
    - -
      -
    • - Package Manager: alpine:3.19 -
      • -
    • - Vulnerable module: - - openssl/libcrypto3 -
      • - -
    • Introduced through: - - docker-image|redis@7.0.14-alpine and openssl/libcrypto3@3.1.4-r2 - -
      • -
    - -
    - - -

    Detailed paths

    - -
      -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - openssl/libcrypto3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - .redis-rundeps@20231208.201137 - - openssl/libcrypto3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - apk-tools/apk-tools@2.14.0-r5 - - openssl/libcrypto3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - busybox/ssl_client@1.36.1-r15 - - openssl/libcrypto3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - .redis-rundeps@20231208.201137 - - openssl/libssl3@3.1.4-r2 - - openssl/libcrypto3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - openssl/libssl3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - .redis-rundeps@20231208.201137 - - openssl/libssl3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - apk-tools/apk-tools@2.14.0-r5 - - openssl/libssl3@3.1.4-r2 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.14-alpine - - busybox/ssl_client@1.36.1-r15 - - openssl/libssl3@3.1.4-r2 - - - -
      • -
    - -
    - -
    - -

    NVD Description

    -

    Note: Versions mentioned in the description apply only to the upstream openssl package and not the openssl package as distributed by Alpine. - See How to fix? for Alpine:3.19 relevant fixed versions and status.

    -

    Issue summary: Some non-default TLS server configurations can cause unbounded - memory growth when processing TLSv1.3 sessions

    -

    Impact summary: An attacker may exploit certain server configurations to trigger - unbounded memory growth that would lead to a Denial of Service

    -

    This problem can occur in TLSv1.3 if the non-default SSL_OP_NO_TICKET option is - being used (but not if early_data support is also configured and the default - anti-replay protection is in use). In this case, under certain conditions, the - session cache can get into an incorrect state and it will fail to flush properly - as it fills. The session cache will continue to grow in an unbounded manner. A - malicious client could deliberately create the scenario for this failure to - force a Denial of Service. It may also happen by accident in normal operation.

    -

    This issue only affects TLS servers supporting TLSv1.3. It does not affect TLS - clients.

    -

    The FIPS modules in 3.2, 3.1 and 3.0 are not affected by this issue. OpenSSL - 1.0.2 is also not affected by this issue.

    -

    Remediation

    -

    Upgrade Alpine:3.19 openssl to version 3.1.4-r6 or higher.

    -

    References

    - - -
    - -
    -

    More about this vulnerability

    -
    - -
    -
    -
    -
    - - - diff --git a/docs/snyk/v2.10.7/argocd-iac-install.html b/docs/snyk/v2.10.8/argocd-iac-install.html similarity index 99% rename from docs/snyk/v2.10.7/argocd-iac-install.html rename to docs/snyk/v2.10.8/argocd-iac-install.html index 0c86141ea839d..363ede40d19d0 100644 --- a/docs/snyk/v2.10.7/argocd-iac-install.html +++ b/docs/snyk/v2.10.8/argocd-iac-install.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    April 21st 2024, 12:21:55 am (UTC+00:00)

    +

    April 28th 2024, 12:22:10 am (UTC+00:00)

    Scanned the following path: @@ -2591,7 +2591,7 @@

    Container's or Pod's UID could clash with hos
  • - Line number: 22660 + Line number: 22666
    • diff --git a/docs/snyk/v2.10.7/argocd-iac-namespace-install.html b/docs/snyk/v2.10.8/argocd-iac-namespace-install.html similarity index 99% rename from docs/snyk/v2.10.7/argocd-iac-namespace-install.html rename to docs/snyk/v2.10.8/argocd-iac-namespace-install.html index 5b28482f76e70..1c2419138eaa7 100644 --- a/docs/snyk/v2.10.7/argocd-iac-namespace-install.html +++ b/docs/snyk/v2.10.8/argocd-iac-namespace-install.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    April 21st 2024, 12:22:04 am (UTC+00:00)

    +

    April 28th 2024, 12:22:20 am (UTC+00:00)

    Scanned the following path: @@ -2545,7 +2545,7 @@

    Container's or Pod's UID could clash with hos
  • - Line number: 1945 + Line number: 1951
    • diff --git a/docs/snyk/v2.10.7/argocd-test.html b/docs/snyk/v2.10.8/argocd-test.html similarity index 99% rename from docs/snyk/v2.10.7/argocd-test.html rename to docs/snyk/v2.10.8/argocd-test.html index 2007d3c149d19..223eb189dee63 100644 --- a/docs/snyk/v2.10.7/argocd-test.html +++ b/docs/snyk/v2.10.8/argocd-test.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    April 21st 2024, 12:20:07 am (UTC+00:00)

    +

    April 28th 2024, 12:20:22 am (UTC+00:00)

    Scanned the following paths: diff --git a/docs/snyk/v2.8.16/ghcr.io_dexidp_dex_v2.37.0.html b/docs/snyk/v2.10.8/ghcr.io_dexidp_dex_v2.37.0.html similarity index 98% rename from docs/snyk/v2.8.16/ghcr.io_dexidp_dex_v2.37.0.html rename to docs/snyk/v2.10.8/ghcr.io_dexidp_dex_v2.37.0.html index aef6e795cbcff..339452ac27e19 100644 --- a/docs/snyk/v2.8.16/ghcr.io_dexidp_dex_v2.37.0.html +++ b/docs/snyk/v2.10.8/ghcr.io_dexidp_dex_v2.37.0.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    April 21st 2024, 12:24:36 am (UTC+00:00)

    +

    April 28th 2024, 12:20:28 am (UTC+00:00)

    Scanned the following paths: @@ -2045,6 +2045,8 @@

    References

  • https://www.openssl.org/news/secadv/20240109.txt
  • http://www.openwall.com/lists/oss-security/2024/01/09/1
  • https://security.netapp.com/advisory/ntap-20240216-0009/
    • +
  • https://security.netapp.com/advisory/ntap-20240426-0008/
    • +
  • https://security.netapp.com/advisory/ntap-20240426-0013/
    • @@ -4406,9 +4408,37 @@

    Detailed paths

    NVD Description

    -

    This vulnerability has not been analyzed by NVD yet.

    +

    Note: Versions mentioned in the description apply only to the upstream openssl package and not the openssl package as distributed by Alpine. + See How to fix? for Alpine:3.18 relevant fixed versions and status.

    +

    Issue summary: Checking excessively long invalid RSA public keys may take + a long time.

    +

    Impact summary: Applications that use the function EVP_PKEY_public_check() + to check RSA public keys may experience long delays. Where the key that + is being checked has been obtained from an untrusted source this may lead + to a Denial of Service.

    +

    When function EVP_PKEY_public_check() is called on RSA public keys, + a computation is done to confirm that the RSA modulus, n, is composite. + For valid RSA keys, n is a product of two or more large primes and this + computation completes quickly. However, if n is an overly large prime, + then this computation would take a long time.

    +

    An application that calls EVP_PKEY_public_check() and supplies an RSA key + obtained from an untrusted source could be vulnerable to a Denial of Service + attack.

    +

    The function EVP_PKEY_public_check() is not called from other OpenSSL + functions however it is called from the OpenSSL pkey command line + application. For that reason that application is also vulnerable if used + with the '-pubin' and '-check' options on untrusted data.

    +

    The OpenSSL SSL/TLS implementation is not affected by this issue.

    +

    The OpenSSL 3.0 and 3.1 FIPS providers are affected by this issue.

    Remediation

    Upgrade Alpine:3.18 openssl to version 3.1.4-r4 or higher.

    +

    References

    +
    diff --git a/docs/snyk/v2.8.16/haproxy_2.6.14-alpine.html b/docs/snyk/v2.10.8/haproxy_2.6.14-alpine.html similarity index 96% rename from docs/snyk/v2.8.16/haproxy_2.6.14-alpine.html rename to docs/snyk/v2.10.8/haproxy_2.6.14-alpine.html index be84d8b7f6e06..6d858518bfd53 100644 --- a/docs/snyk/v2.8.16/haproxy_2.6.14-alpine.html +++ b/docs/snyk/v2.10.8/haproxy_2.6.14-alpine.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    April 21st 2024, 12:24:39 am (UTC+00:00)

    +

    April 28th 2024, 12:20:32 am (UTC+00:00)

    Scanned the following path: @@ -1036,6 +1036,8 @@

    References

  • https://www.openssl.org/news/secadv/20240109.txt
  • http://www.openwall.com/lists/oss-security/2024/01/09/1
  • https://security.netapp.com/advisory/ntap-20240216-0009/
    • +
  • https://security.netapp.com/advisory/ntap-20240426-0008/
    • +
  • https://security.netapp.com/advisory/ntap-20240426-0013/
    • @@ -1357,9 +1359,37 @@

    Detailed paths

    NVD Description

    -

    This vulnerability has not been analyzed by NVD yet.

    +

    Note: Versions mentioned in the description apply only to the upstream openssl package and not the openssl package as distributed by Alpine. + See How to fix? for Alpine:3.18 relevant fixed versions and status.

    +

    Issue summary: Checking excessively long invalid RSA public keys may take + a long time.

    +

    Impact summary: Applications that use the function EVP_PKEY_public_check() + to check RSA public keys may experience long delays. Where the key that + is being checked has been obtained from an untrusted source this may lead + to a Denial of Service.

    +

    When function EVP_PKEY_public_check() is called on RSA public keys, + a computation is done to confirm that the RSA modulus, n, is composite. + For valid RSA keys, n is a product of two or more large primes and this + computation completes quickly. However, if n is an overly large prime, + then this computation would take a long time.

    +

    An application that calls EVP_PKEY_public_check() and supplies an RSA key + obtained from an untrusted source could be vulnerable to a Denial of Service + attack.

    +

    The function EVP_PKEY_public_check() is not called from other OpenSSL + functions however it is called from the OpenSSL pkey command line + application. For that reason that application is also vulnerable if used + with the '-pubin' and '-check' options on untrusted data.

    +

    The OpenSSL SSL/TLS implementation is not affected by this issue.

    +

    The OpenSSL 3.0 and 3.1 FIPS providers are affected by this issue.

    Remediation

    Upgrade Alpine:3.18 openssl to version 3.1.4-r4 or higher.

    +

    References

    +
    diff --git a/docs/snyk/v2.8.16/quay.io_argoproj_argocd_v2.8.16.html b/docs/snyk/v2.10.8/quay.io_argoproj_argocd_v2.10.8.html similarity index 83% rename from docs/snyk/v2.8.16/quay.io_argoproj_argocd_v2.8.16.html rename to docs/snyk/v2.10.8/quay.io_argoproj_argocd_v2.10.8.html index ba55018506817..0b24853fce6d5 100644 --- a/docs/snyk/v2.8.16/quay.io_argoproj_argocd_v2.8.16.html +++ b/docs/snyk/v2.10.8/quay.io_argoproj_argocd_v2.10.8.html @@ -7,7 +7,7 @@ Snyk test report - + @@ -456,23 +456,23 @@

    Snyk test report

    -

    April 21st 2024, 12:24:56 am (UTC+00:00)

    +

    April 28th 2024, 12:20:49 am (UTC+00:00)

    Scanned the following paths:
      -
    • quay.io/argoproj/argocd:v2.8.16/argoproj/argocd/Dockerfile (deb)
      • -
    • quay.io/argoproj/argocd:v2.8.16/argoproj/argo-cd/v2//usr/local/bin/argocd (gomodules)
      • -
    • quay.io/argoproj/argocd:v2.8.16/kustomize/kustomize/v5//usr/local/bin/kustomize (gomodules)
      • -
    • quay.io/argoproj/argocd:v2.8.16/helm/v3//usr/local/bin/helm (gomodules)
      • -
    • quay.io/argoproj/argocd:v2.8.16/git-lfs/git-lfs//usr/bin/git-lfs (gomodules)
      • +
    • quay.io/argoproj/argocd:v2.10.8/argoproj/argocd/Dockerfile (deb)
      • +
    • quay.io/argoproj/argocd:v2.10.8/argoproj/argo-cd/v2//usr/local/bin/argocd (gomodules)
      • +
    • quay.io/argoproj/argocd:v2.10.8//usr/local/bin/kustomize (gomodules)
      • +
    • quay.io/argoproj/argocd:v2.10.8/helm/v3//usr/local/bin/helm (gomodules)
      • +
    • quay.io/argoproj/argocd:v2.10.8/git-lfs/git-lfs//usr/bin/git-lfs (gomodules)
    -
    40 known vulnerabilities
    -
    185 vulnerable dependency paths
    -
    2120 dependencies
    +
    34 known vulnerabilities
    +
    168 vulnerable dependency paths
    +
    2275 dependencies
    @@ -492,7 +492,7 @@

    Allocation of Resources Without Limits or Throttling

  • - Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.10.8/argoproj/argo-cd/v2 /usr/local/bin/argocd
  • Package Manager: golang @@ -529,7 +529,7 @@

    Detailed paths

    Introduced through: helm.sh/helm/v3@* - golang.org/x/net/http2@v0.8.0 + golang.org/x/net/http2@v0.17.0 @@ -559,259 +559,6 @@

    References

    More about this vulnerability

    • -
    -
    -

    Denial of Service (DoS)

    -
    - -
    - high severity -
    - -
    - -
      -
    • - Manifest file: quay.io/argoproj/argocd:v2.8.16/helm/v3 /usr/local/bin/helm -
      • -
    • - Package Manager: golang -
      • -
    • - Vulnerable module: - - golang.org/x/net/http2 -
      • - -
    • Introduced through: - - helm.sh/helm/v3@* and golang.org/x/net/http2@v0.8.0 - -
      • -
    - -
    - - -

    Detailed paths

    - -
      -
    • - Introduced through: - helm.sh/helm/v3@* - - golang.org/x/net/http2@v0.8.0 - - - -
      • -
    - -
    - -
    - -

    Overview

    -

    golang.org/x/net/http2 is a work-in-progress HTTP/2 implementation for Go.

    -

    Affected versions of this package are vulnerable to Denial of Service (DoS) in the implementation of the HTTP/2 protocol. An attacker can cause a denial of service (including via DDoS) by rapidly resetting many streams through request cancellation.

    -

    Remediation

    -

    Upgrade golang.org/x/net/http2 to version 0.17.0 or higher.

    -

    References

    - - -
    - -
    -

    More about this vulnerability

    -
    - -
    -
    -

    Denial of Service (DoS)

    -
    - -
    - high severity -
    - -
    - -
      -
    • - Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argo-cd/v2 /usr/local/bin/argocd -
      • -
    • - Package Manager: golang -
      • -
    • - Vulnerable module: - - github.com/go-jose/go-jose/v3 -
      • - -
    • Introduced through: - - github.com/argoproj/argo-cd/v2@* and github.com/go-jose/go-jose/v3@v3.0.0 - -
      • -
    - -
    - - -

    Detailed paths

    - -
      -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@* - - github.com/go-jose/go-jose/v3@v3.0.0 - - - -
      • -
    - -
    - -
    - -

    Overview

    -

    Affected versions of this package are vulnerable to Denial of Service (DoS) when decrypting JWE inputs. An attacker can cause a denial-of-service by providing a PBES2 encrypted JWE blob with a very large p2c value.

    -

    Details

    -

    Denial of Service (DoS) describes a family of attacks, all aimed at making a system inaccessible to its intended and legitimate users.

    -

    Unlike other vulnerabilities, DoS attacks usually do not aim at breaching security. Rather, they are focused on making websites and services unavailable to genuine users resulting in downtime.

    -

    One popular Denial of Service vulnerability is DDoS (a Distributed Denial of Service), an attack that attempts to clog network pipes to the system by generating a large volume of traffic from many machines.

    -

    When it comes to open source libraries, DoS vulnerabilities allow attackers to trigger such a crash or crippling of the service by using a flaw either in the application code or from the use of open source libraries.

    -

    Two common types of DoS vulnerabilities:

    -
      -

    • High CPU/Memory Consumption- An attacker sending crafted requests that could cause the system to take a disproportionate amount of time to process. For example, commons-fileupload:commons-fileupload.

      -
      • -

    • Crash - An attacker sending crafted requests that could cause the system to crash. For Example, npm ws package

      -
      • -
    -

    Remediation

    -

    Upgrade github.com/go-jose/go-jose/v3 to version 3.0.1 or higher.

    -

    References

    - - -
    - -
    -

    More about this vulnerability

    -
    - -
    -
    -

    Directory Traversal

    -
    - -
    - high severity -
    - -
    - -
      -
    • - Manifest file: quay.io/argoproj/argocd:v2.8.16/helm/v3 /usr/local/bin/helm -
      • -
    • - Package Manager: golang -
      • -
    • - Vulnerable module: - - github.com/cyphar/filepath-securejoin -
      • - -
    • Introduced through: - - helm.sh/helm/v3@* and github.com/cyphar/filepath-securejoin@v0.2.3 - -
      • -
    - -
    - - -

    Detailed paths

    - -
      -
    • - Introduced through: - helm.sh/helm/v3@* - - github.com/cyphar/filepath-securejoin@v0.2.3 - - - -
      • -
    - -
    - -
    - -

    Overview

    -

    Affected versions of this package are vulnerable to Directory Traversal via the filepath.FromSlash() function, allwoing attackers to generate paths that were outside of the provided rootfs.

    -

    Note: - This vulnerability is only exploitable on Windows OS.

    -

    Details

    -

    A Directory Traversal attack (also known as path traversal) aims to access files and directories that are stored outside the intended folder. By manipulating files with "dot-dot-slash (../)" sequences and its variations, or by using absolute file paths, it may be possible to access arbitrary files and directories stored on file system, including application source code, configuration, and other critical system files.

    -

    Directory Traversal vulnerabilities can be generally divided into two types:

    -
      -
    • Information Disclosure: Allows the attacker to gain information about the folder structure or read the contents of sensitive files on the system.
      • -
    -

    st is a module for serving static files on web pages, and contains a vulnerability of this type. In our example, we will serve files from the public route.

    -

    If an attacker requests the following URL from our server, it will in turn leak the sensitive private key of the root user.

    - 
    curl http://localhost:8080/public/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/root/.ssh/id_rsa
-
    -

    Note %2e is the URL encoded version of . (dot).

    -
      -
    • Writing arbitrary files: Allows the attacker to create or replace existing files. This type of vulnerability is also known as Zip-Slip.
      • -
    -

    One way to achieve this is by using a malicious zip archive that holds path traversal filenames. When each filename in the zip archive gets concatenated to the target extraction folder, without validation, the final path ends up outside of the target folder. If an executable or a configuration file is overwritten with a file containing malicious code, the problem can turn into an arbitrary code execution issue quite easily.

    -

    The following is an example of a zip archive with one benign file and one malicious file. Extracting the malicious file will result in traversing out of the target folder, ending up in /root/.ssh/ overwriting the authorized_keys file:

    - 
    2018-04-15 22:04:29 .....           19           19  good.txt
-        2018-04-15 22:04:42 .....           20           20  ../../../../../../root/.ssh/authorized_keys
-
    -

    Remediation

    -

    Upgrade github.com/cyphar/filepath-securejoin to version 0.2.4 or higher.

    -

    References

    - - -
    - -
    -

    More about this vulnerability

    -
    -

    CVE-2020-22916

    @@ -825,7 +572,7 @@

    CVE-2020-22916

    • - Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.8/argoproj/argocd Dockerfile
    • Package Manager: ubuntu:22.04 @@ -838,7 +585,7 @@

      CVE-2020-22916

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 and xz-utils/liblzma5@5.2.5-2ubuntu1 + docker-image|quay.io/argoproj/argocd@v2.10.8 and xz-utils/liblzma5@5.2.5-2ubuntu1
    @@ -851,7 +598,7 @@

    Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 xz-utils/liblzma5@5.2.5-2ubuntu1 @@ -901,7 +648,7 @@

      CVE-2023-51767

      • - Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.8/argoproj/argocd Dockerfile
      • Package Manager: ubuntu:22.04 @@ -914,7 +661,7 @@

        CVE-2023-51767

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 and openssh/openssh-client@1:8.9p1-3ubuntu0.6 + docker-image|quay.io/argoproj/argocd@v2.10.8 and openssh/openssh-client@1:8.9p1-3ubuntu0.7
      @@ -927,9 +674,9 @@

      Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 - openssh/openssh-client@1:8.9p1-3ubuntu0.6 + openssh/openssh-client@1:8.9p1-3ubuntu0.7 @@ -977,7 +724,7 @@

        Information Exposure

        • - Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.8/argoproj/argocd Dockerfile
        • Package Manager: ubuntu:22.04 @@ -990,7 +737,7 @@

          Information Exposure

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 and libgcrypt20@1.9.4-3ubuntu3 + docker-image|quay.io/argoproj/argocd@v2.10.8 and libgcrypt20@1.9.4-3ubuntu3
        @@ -1003,7 +750,7 @@

        Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 libgcrypt20@1.9.4-3ubuntu3 @@ -1012,7 +759,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 gnupg2/dirmngr@2.2.27-3ubuntu2.1 @@ -1023,7 +770,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -1034,7 +781,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 apt@2.4.12 @@ -1047,7 +794,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 apt@2.4.12 @@ -1060,7 +807,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -1073,7 +820,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -1086,7 +833,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -1099,7 +846,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -1112,7 +859,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -1125,7 +872,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -1138,7 +885,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 apt@2.4.12 @@ -1168,6 +915,7 @@

          References

        • http://people.ubuntu.com/~ubuntu-security/cve/CVE-2024-2236
        • https://access.redhat.com/security/cve/CVE-2024-2236
        • https://bugzilla.redhat.com/show_bug.cgi?id=2268268
          • +
        • https://bugzilla.redhat.com/show_bug.cgi?id=2245218
        @@ -1176,6 +924,78 @@

        References

        More about this vulnerability

    +

    +
    +

    CVE-2024-32487

    +
    + +
    + medium severity +
    + +
    + +
      +
    • + Manifest file: quay.io/argoproj/argocd:v2.10.8/argoproj/argocd Dockerfile +
      • +
    • + Package Manager: ubuntu:22.04 +
      • +
    • + Vulnerable module: + + less +
      • + +
    • Introduced through: + + docker-image|quay.io/argoproj/argocd@v2.10.8 and less@590-1ubuntu0.22.04.2 + +
      • +
    + +
    + + +

    Detailed paths

    + +
      +
    • + Introduced through: + docker-image|quay.io/argoproj/argocd@v2.10.8 + + less@590-1ubuntu0.22.04.2 + + + +
      • +
    + +
    + +
    + +

    NVD Description

    +

    Note: Versions mentioned in the description apply only to the upstream less package and not the less package as distributed by Ubuntu. + See How to fix? for Ubuntu:22.04 relevant fixed versions and status.

    +

    less through 653 allows OS command execution via a newline character in the name of a file, because quoting is mishandled in filename.c. Exploitation typically requires use with attacker-controlled file names, such as the files extracted from an untrusted archive. Exploitation also requires the LESSOPEN environment variable, but this is set by default in many common cases.

    +

    Remediation

    +

    There is no fixed version for Ubuntu:22.04 less.

    +

    References

    + + +
    + +
    +

    More about this vulnerability

    +
    +

    CVE-2024-26461

    @@ -1189,7 +1009,7 @@

    CVE-2024-26461

    • - Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.8/argoproj/argocd Dockerfile
    • Package Manager: ubuntu:22.04 @@ -1202,7 +1022,7 @@

      CVE-2024-26461

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 and krb5/libk5crypto3@1.19.2-2ubuntu0.3 + docker-image|quay.io/argoproj/argocd@v2.10.8 and krb5/libk5crypto3@1.19.2-2ubuntu0.3
    @@ -1215,7 +1035,7 @@

    Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 krb5/libk5crypto3@1.19.2-2ubuntu0.3 @@ -1224,7 +1044,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 adduser@3.118ubuntu5 @@ -1245,7 +1065,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 adduser@3.118ubuntu5 @@ -1268,7 +1088,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 krb5/libkrb5-3@1.19.2-2ubuntu0.3 @@ -1277,7 +1097,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 adduser@3.118ubuntu5 @@ -1298,7 +1118,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -1307,9 +1127,9 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 - openssh/openssh-client@1:8.9p1-3ubuntu0.6 + openssh/openssh-client@1:8.9p1-3ubuntu0.7 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -1318,7 +1138,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 git@1:2.34.1-1ubuntu1.10 @@ -1331,7 +1151,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 git@1:2.34.1-1ubuntu1.10 @@ -1346,7 +1166,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 adduser@3.118ubuntu5 @@ -1365,7 +1185,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 krb5/libkrb5support0@1.19.2-2ubuntu0.3 @@ -1409,7 +1229,7 @@

      CVE-2024-26462

      • - Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.8/argoproj/argocd Dockerfile
      • Package Manager: ubuntu:22.04 @@ -1422,7 +1242,7 @@

        CVE-2024-26462

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 and krb5/libk5crypto3@1.19.2-2ubuntu0.3 + docker-image|quay.io/argoproj/argocd@v2.10.8 and krb5/libk5crypto3@1.19.2-2ubuntu0.3
      @@ -1435,7 +1255,7 @@

      Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 krb5/libk5crypto3@1.19.2-2ubuntu0.3 @@ -1444,7 +1264,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 adduser@3.118ubuntu5 @@ -1465,7 +1285,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 adduser@3.118ubuntu5 @@ -1488,7 +1308,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 krb5/libkrb5-3@1.19.2-2ubuntu0.3 @@ -1497,7 +1317,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 adduser@3.118ubuntu5 @@ -1518,7 +1338,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -1527,9 +1347,9 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 - openssh/openssh-client@1:8.9p1-3ubuntu0.6 + openssh/openssh-client@1:8.9p1-3ubuntu0.7 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -1538,7 +1358,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 git@1:2.34.1-1ubuntu1.10 @@ -1551,7 +1371,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 git@1:2.34.1-1ubuntu1.10 @@ -1566,7 +1386,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 adduser@3.118ubuntu5 @@ -1585,7 +1405,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 krb5/libkrb5support0@1.19.2-2ubuntu0.3 @@ -1629,7 +1449,7 @@

        CVE-2024-26458

        • - Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.8/argoproj/argocd Dockerfile
        • Package Manager: ubuntu:22.04 @@ -1642,7 +1462,7 @@

          CVE-2024-26458

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 and krb5/libk5crypto3@1.19.2-2ubuntu0.3 + docker-image|quay.io/argoproj/argocd@v2.10.8 and krb5/libk5crypto3@1.19.2-2ubuntu0.3
        @@ -1655,7 +1475,7 @@

        Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 krb5/libk5crypto3@1.19.2-2ubuntu0.3 @@ -1664,7 +1484,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 adduser@3.118ubuntu5 @@ -1685,7 +1505,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 adduser@3.118ubuntu5 @@ -1708,7 +1528,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 krb5/libkrb5-3@1.19.2-2ubuntu0.3 @@ -1717,7 +1537,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 adduser@3.118ubuntu5 @@ -1738,7 +1558,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -1747,9 +1567,9 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 - openssh/openssh-client@1:8.9p1-3ubuntu0.6 + openssh/openssh-client@1:8.9p1-3ubuntu0.7 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -1758,7 +1578,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 git@1:2.34.1-1ubuntu1.10 @@ -1771,7 +1591,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 git@1:2.34.1-1ubuntu1.10 @@ -1786,7 +1606,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 adduser@3.118ubuntu5 @@ -1805,7 +1625,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 krb5/libkrb5support0@1.19.2-2ubuntu0.3 @@ -1849,7 +1669,7 @@

          LGPL-3.0 license

          • - Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.10.8/argoproj/argo-cd/v2 /usr/local/bin/argocd
          • Package Manager: golang @@ -1909,7 +1729,7 @@

            Infinite loop

            • - Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.10.8/argoproj/argo-cd/v2 /usr/local/bin/argocd
            • Package Manager: golang @@ -1980,7 +1800,7 @@

              Stack-based Buffer Overflow

              • - Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.10.8/argoproj/argo-cd/v2 /usr/local/bin/argocd
              • Package Manager: golang @@ -2048,7 +1868,7 @@

                Infinite loop

                • - Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.10.8/argoproj/argo-cd/v2 /usr/local/bin/argocd
                • Package Manager: golang @@ -2108,7 +1928,7 @@

                  References

    -

    Allocation of Resources Without Limits or Throttling

    +

    Authentication Bypass by Capture-replay

    @@ -2119,7 +1939,7 @@

    Allocation of Resources Without Limits or Throttling

  • - Manifest file: quay.io/argoproj/argocd:v2.8.16/helm/v3 /usr/local/bin/helm + Manifest file: quay.io/argoproj/argocd:v2.10.8/argoproj/argo-cd/v2 /usr/local/bin/argocd
  • Package Manager: golang @@ -2127,12 +1947,12 @@

    Allocation of Resources Without Limits or Throttling

    Vulnerable module: - golang.org/x/net/http2 + golang.org/x/crypto/ssh
  • Introduced through: - helm.sh/helm/v3@* and golang.org/x/net/http2@v0.8.0 + github.com/argoproj/argo-cd/v2@* and golang.org/x/crypto/ssh@v0.16.0
    • @@ -2145,9 +1965,9 @@

    Detailed paths

    • Introduced through: - helm.sh/helm/v3@* + github.com/argoproj/argo-cd/v2@* - golang.org/x/net/http2@v0.8.0 + golang.org/x/crypto/ssh@v0.16.0 @@ -2159,80 +1979,8 @@

      Detailed paths

      Overview

      -

      golang.org/x/net/http2 is a work-in-progress HTTP/2 implementation for Go.

      -

      Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling when MaxConcurrentStreams handler goroutines running. A a handler is started until one of the existing handlers exits.

      -

      Note:

      -

      This issue is related to CVE-2023-44487

      -

      Remediation

      -

      Upgrade golang.org/x/net/http2 to version 0.17.0 or higher.

      -

      References

      - - -
      - -
      -

      More about this vulnerability

      -
      - -
    -
    -

    Authentication Bypass by Capture-replay

    -
    - -
    - medium severity -
    - -
    - -
      -
    • - Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argo-cd/v2 /usr/local/bin/argocd -
      • -
    • - Package Manager: golang -
      • -
    • - Vulnerable module: - - golang.org/x/crypto/ssh -
      • - -
    • Introduced through: - - github.com/argoproj/argo-cd/v2@* and golang.org/x/crypto/ssh@v0.16.0 - -
      • -
    - -
    - - -

    Detailed paths

    - -
      -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@* - - golang.org/x/crypto/ssh@v0.16.0 - - - -
      • -
    - -
    - -
    - -

    Overview

    -

    golang.org/x/crypto/ssh is a SSH client and server

    -

    Affected versions of this package are vulnerable to Authentication Bypass by Capture-replay during the establishment of the secure channel. An attacker can manipulate handshake sequence numbers to delete messages sent immediately after the channel is established.

    +

    golang.org/x/crypto/ssh is a SSH client and server

    +

    Affected versions of this package are vulnerable to Authentication Bypass by Capture-replay during the establishment of the secure channel. An attacker can manipulate handshake sequence numbers to delete messages sent immediately after the channel is established.

    Note:

    1. Sequence numbers are only validated once the channel is established and arbitrary messages are allowed during the handshake, allowing them to manipulate the sequence numbers.

      @@ -2276,367 +2024,6 @@

      References

      More about this vulnerability

    -
    -
    -

    Information Exposure

    -
    - -
    - medium severity -
    - -
    - -
      -
    • - Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argocd Dockerfile -
      • -
    • - Package Manager: ubuntu:22.04 -
      • -
    • - Vulnerable module: - - gnutls28/libgnutls30 -
      • - -
    • Introduced through: - - docker-image|quay.io/argoproj/argocd@v2.8.16 and gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - -
      • -
    - -
    - - -

    Detailed paths

    - -
      -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
      • -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 - - apt@2.4.12 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
      • -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 - - gnupg2/dirmngr@2.2.27-3ubuntu2.1 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
      • -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 - - git@1:2.34.1-1ubuntu1.10 - - curl/libcurl3-gnutls@7.81.0-1ubuntu1.16 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
      • -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 - - git@1:2.34.1-1ubuntu1.10 - - curl/libcurl3-gnutls@7.81.0-1ubuntu1.16 - - openldap/libldap-2.5-0@2.5.17+dfsg-0ubuntu0.22.04.1 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
      • -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 - - git@1:2.34.1-1ubuntu1.10 - - curl/libcurl3-gnutls@7.81.0-1ubuntu1.16 - - rtmpdump/librtmp1@2.4+20151223.gitfa8646d.1-2build4 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
      • -
    - -
    - -
    - -

    NVD Description

    -

    Note: Versions mentioned in the description apply only to the upstream gnutls28 package and not the gnutls28 package as distributed by Ubuntu. - See How to fix? for Ubuntu:22.04 relevant fixed versions and status.

    -

    A flaw was found in GnuTLS. The Minerva attack is a cryptographic vulnerability that exploits deterministic behavior in systems like GnuTLS, leading to side-channel leaks. In specific scenarios, such as when using the GNUTLS_PRIVKEY_FLAG_REPRODUCIBLE flag, it can result in a noticeable step in nonce size from 513 to 512 bits, exposing a potential timing side-channel.

    -

    Remediation

    -

    Upgrade Ubuntu:22.04 gnutls28 to version 3.7.3-4ubuntu1.5 or higher.

    -

    References

    - - -
    - -
    -

    More about this vulnerability

    -
    - -
    -
    -

    Uncaught Exception

    -
    - -
    - medium severity -
    - -
    - -
      -
    • - Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argocd Dockerfile -
      • -
    • - Package Manager: ubuntu:22.04 -
      • -
    • - Vulnerable module: - - gnutls28/libgnutls30 -
      • - -
    • Introduced through: - - docker-image|quay.io/argoproj/argocd@v2.8.16 and gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - -
      • -
    - -
    - - -

    Detailed paths

    - -
      -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
      • -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 - - apt@2.4.12 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
      • -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 - - gnupg2/dirmngr@2.2.27-3ubuntu2.1 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
      • -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 - - git@1:2.34.1-1ubuntu1.10 - - curl/libcurl3-gnutls@7.81.0-1ubuntu1.16 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
      • -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 - - git@1:2.34.1-1ubuntu1.10 - - curl/libcurl3-gnutls@7.81.0-1ubuntu1.16 - - openldap/libldap-2.5-0@2.5.17+dfsg-0ubuntu0.22.04.1 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
      • -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 - - git@1:2.34.1-1ubuntu1.10 - - curl/libcurl3-gnutls@7.81.0-1ubuntu1.16 - - rtmpdump/librtmp1@2.4+20151223.gitfa8646d.1-2build4 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
      • -
    - -
    - -
    - -

    NVD Description

    -

    Note: Versions mentioned in the description apply only to the upstream gnutls28 package and not the gnutls28 package as distributed by Ubuntu. - See How to fix? for Ubuntu:22.04 relevant fixed versions and status.

    -

    A flaw has been discovered in GnuTLS where an application crash can be induced when attempting to verify a specially crafted .pem bundle using the "certtool --verify-chain" command.

    -

    Remediation

    -

    Upgrade Ubuntu:22.04 gnutls28 to version 3.7.3-4ubuntu1.5 or higher.

    -

    References

    - - -
    - -
    -

    More about this vulnerability

    -
    - -
    -
    -

    CVE-2024-2961

    -
    - -
    - medium severity -
    - -
    - -
      -
    • - Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argocd Dockerfile -
      • -
    • - Package Manager: ubuntu:22.04 -
      • -
    • - Vulnerable module: - - glibc/libc-bin -
      • - -
    • Introduced through: - - docker-image|quay.io/argoproj/argocd@v2.8.16 and glibc/libc-bin@2.35-0ubuntu3.6 - -
      • -
    - -
    - - -

    Detailed paths

    - -
      -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 - - glibc/libc-bin@2.35-0ubuntu3.6 - - - -
      • -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 - - glibc/libc6@2.35-0ubuntu3.6 - - - -
      • -
    - -
    - -
    - -

    NVD Description

    -

    Note: Versions mentioned in the description apply only to the upstream glibc package and not the glibc package as distributed by Ubuntu. - See How to fix? for Ubuntu:22.04 relevant fixed versions and status.

    -

    The iconv() function in the GNU C Library versions 2.39 and older may overflow the output buffer passed to it by up to 4 bytes when converting strings to the ISO-2022-CN-EXT character set, which may be used to crash an application or overwrite a neighbouring variable.

    -

    Remediation

    -

    Upgrade Ubuntu:22.04 glibc to version 2.35-0ubuntu3.7 or higher.

    -

    References

    - - -
    - -
    -

    More about this vulnerability

    -
    -

    MPL-2.0 license

    @@ -2650,7 +2037,7 @@

    MPL-2.0 license

    • - Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.10.8/argoproj/argo-cd/v2 /usr/local/bin/argocd
    • Package Manager: golang @@ -2710,7 +2097,7 @@

      MPL-2.0 license

      • - Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.10.8/argoproj/argo-cd/v2 /usr/local/bin/argocd
      • Package Manager: golang @@ -2770,7 +2157,7 @@

        MPL-2.0 license

        • - Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.10.8/argoproj/argo-cd/v2 /usr/local/bin/argocd
        • Package Manager: golang @@ -2830,7 +2217,7 @@

          MPL-2.0 license

          • - Manifest file: quay.io/argoproj/argocd:v2.8.16/helm/v3 /usr/local/bin/helm + Manifest file: quay.io/argoproj/argocd:v2.10.8/helm/v3 /usr/local/bin/helm
          • Package Manager: golang @@ -2890,7 +2277,7 @@

            MPL-2.0 license

            • - Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.10.8/argoproj/argo-cd/v2 /usr/local/bin/argocd
            • Package Manager: golang @@ -2950,7 +2337,7 @@

              MPL-2.0 license

              • - Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.10.8/argoproj/argo-cd/v2 /usr/local/bin/argocd
              • Package Manager: golang @@ -3010,7 +2397,7 @@

                Improper Handling of Highly Compressed Data (Data Amplif
                • - Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.10.8/argoproj/argo-cd/v2 /usr/local/bin/argocd
                • Package Manager: golang @@ -3023,7 +2410,7 @@

                  Improper Handling of Highly Compressed Data (Data Amplif
                • Introduced through: - github.com/argoproj/argo-cd/v2@* and github.com/go-jose/go-jose/v3@v3.0.0 + github.com/argoproj/argo-cd/v2@* and github.com/go-jose/go-jose/v3@v3.0.1

                @@ -3038,7 +2425,7 @@

                Detailed paths

                Introduced through: github.com/argoproj/argo-cd/v2@* - github.com/go-jose/go-jose/v3@v3.0.0 + github.com/go-jose/go-jose/v3@v3.0.1 @@ -3079,7 +2466,7 @@

                CVE-2023-7008

                • - Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.8/argoproj/argocd Dockerfile
                • Package Manager: ubuntu:22.04 @@ -3092,7 +2479,7 @@

                  CVE-2023-7008

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 and systemd/libsystemd0@249.11-0ubuntu3.12 + docker-image|quay.io/argoproj/argocd@v2.10.8 and systemd/libsystemd0@249.11-0ubuntu3.12
                @@ -3105,7 +2492,7 @@

                Detailed paths

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 systemd/libsystemd0@249.11-0ubuntu3.12 @@ -3114,7 +2501,7 @@

                  Detailed paths

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 apt@2.4.12 @@ -3125,7 +2512,7 @@

                  Detailed paths

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 procps/libprocps8@2:3.3.17-6ubuntu2.1 @@ -3136,7 +2523,7 @@

                  Detailed paths

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 util-linux@2.37.2-4ubuntu3.4 @@ -3147,7 +2534,7 @@

                  Detailed paths

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 util-linux/bsdutils@1:2.37.2-4ubuntu3.4 @@ -3158,7 +2545,7 @@

                  Detailed paths

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 apt@2.4.12 @@ -3171,7 +2558,7 @@

                  Detailed paths

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 systemd/libudev1@249.11-0ubuntu3.12 @@ -3180,7 +2567,7 @@

                  Detailed paths

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 libfido2/libfido2-1@1.10.0-1 @@ -3191,7 +2578,7 @@

                  Detailed paths

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 util-linux@2.37.2-4ubuntu3.4 @@ -3202,7 +2589,7 @@

                  Detailed paths

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 apt@2.4.12 @@ -3255,7 +2642,7 @@

                  Arbitrary Code Injection

                  • - Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.8/argoproj/argocd Dockerfile
                  • Package Manager: ubuntu:22.04 @@ -3268,7 +2655,7 @@

                    Arbitrary Code Injection

                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 and shadow/passwd@1:4.8.1-2ubuntu2.2 + docker-image|quay.io/argoproj/argocd@v2.10.8 and shadow/passwd@1:4.8.1-2ubuntu2.2
                  @@ -3281,7 +2668,7 @@

                  Detailed paths

                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 shadow/passwd@1:4.8.1-2ubuntu2.2 @@ -3290,7 +2677,7 @@

                    Detailed paths

                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 adduser@3.118ubuntu5 @@ -3301,9 +2688,9 @@

                    Detailed paths

                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 - openssh/openssh-client@1:8.9p1-3ubuntu0.6 + openssh/openssh-client@1:8.9p1-3ubuntu0.7 shadow/passwd@1:4.8.1-2ubuntu2.2 @@ -3312,7 +2699,7 @@

                    Detailed paths

                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 shadow/login@1:4.8.1-2ubuntu2.2 @@ -3359,7 +2746,7 @@

                    Uncontrolled Recursion

                    • - Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.8/argoproj/argocd Dockerfile
                    • Package Manager: ubuntu:22.04 @@ -3372,7 +2759,7 @@

                      Uncontrolled Recursion

                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 and pcre3/libpcre3@2:8.39-13ubuntu0.22.04.1 + docker-image|quay.io/argoproj/argocd@v2.10.8 and pcre3/libpcre3@2:8.39-13ubuntu0.22.04.1
                    @@ -3385,7 +2772,7 @@

                    Detailed paths

                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 pcre3/libpcre3@2:8.39-13ubuntu0.22.04.1 @@ -3394,7 +2781,7 @@

                      Detailed paths

                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 grep@3.7-1build1 @@ -3447,7 +2834,7 @@

                      Release of Invalid Pointer or Reference

                      • - Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.8/argoproj/argocd Dockerfile
                      • Package Manager: ubuntu:22.04 @@ -3460,7 +2847,7 @@

                        Release of Invalid Pointer or Reference

                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 and patch@2.7.6-7build2 + docker-image|quay.io/argoproj/argocd@v2.10.8 and patch@2.7.6-7build2
                      @@ -3473,7 +2860,7 @@

                      Detailed paths

                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 patch@2.7.6-7build2 @@ -3517,7 +2904,7 @@

                        Double Free

                        • - Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.8/argoproj/argocd Dockerfile
                        • Package Manager: ubuntu:22.04 @@ -3530,7 +2917,7 @@

                          Double Free

                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 and patch@2.7.6-7build2 + docker-image|quay.io/argoproj/argocd@v2.10.8 and patch@2.7.6-7build2
                        @@ -3543,7 +2930,7 @@

                        Detailed paths

                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 patch@2.7.6-7build2 @@ -3592,7 +2979,7 @@

                          CVE-2023-50495

                          • - Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.8/argoproj/argocd Dockerfile
                          • Package Manager: ubuntu:22.04 @@ -3605,7 +2992,7 @@

                            CVE-2023-50495

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 and ncurses/libtinfo6@6.3-2ubuntu0.1 + docker-image|quay.io/argoproj/argocd@v2.10.8 and ncurses/libtinfo6@6.3-2ubuntu0.1
                          @@ -3618,7 +3005,7 @@

                          Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 ncurses/libtinfo6@6.3-2ubuntu0.1 @@ -3627,7 +3014,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 bash@5.1-6ubuntu1.1 @@ -3638,7 +3025,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 ncurses/libncursesw6@6.3-2ubuntu0.1 @@ -3649,7 +3036,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 less@590-1ubuntu0.22.04.2 @@ -3660,7 +3047,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 libedit/libedit2@3.1-20210910-1build1 @@ -3671,7 +3058,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 ncurses/libncurses6@6.3-2ubuntu0.1 @@ -3682,7 +3069,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 ncurses/ncurses-bin@6.3-2ubuntu0.1 @@ -3693,7 +3080,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 procps@2:3.3.17-6ubuntu2.1 @@ -3704,7 +3091,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 util-linux@2.37.2-4ubuntu3.4 @@ -3715,7 +3102,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -3730,7 +3117,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3745,7 +3132,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 ncurses/libncursesw6@6.3-2ubuntu0.1 @@ -3754,7 +3141,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 procps@2:3.3.17-6ubuntu2.1 @@ -3765,7 +3152,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3780,7 +3167,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 ncurses/libncurses6@6.3-2ubuntu0.1 @@ -3789,7 +3176,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 procps@2:3.3.17-6ubuntu2.1 @@ -3800,7 +3187,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 ncurses/ncurses-base@6.3-2ubuntu0.1 @@ -3809,7 +3196,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 ncurses/ncurses-bin@6.3-2ubuntu0.1 @@ -3856,7 +3243,7 @@

                            CVE-2023-45918

                            • - Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.8/argoproj/argocd Dockerfile
                            • Package Manager: ubuntu:22.04 @@ -3869,7 +3256,7 @@

                              CVE-2023-45918

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 and ncurses/libtinfo6@6.3-2ubuntu0.1 + docker-image|quay.io/argoproj/argocd@v2.10.8 and ncurses/libtinfo6@6.3-2ubuntu0.1
                            @@ -3882,7 +3269,7 @@

                            Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 ncurses/libtinfo6@6.3-2ubuntu0.1 @@ -3891,7 +3278,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 bash@5.1-6ubuntu1.1 @@ -3902,7 +3289,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 ncurses/libncursesw6@6.3-2ubuntu0.1 @@ -3913,7 +3300,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 less@590-1ubuntu0.22.04.2 @@ -3924,7 +3311,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 libedit/libedit2@3.1-20210910-1build1 @@ -3935,7 +3322,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 ncurses/libncurses6@6.3-2ubuntu0.1 @@ -3946,7 +3333,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 ncurses/ncurses-bin@6.3-2ubuntu0.1 @@ -3957,7 +3344,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 procps@2:3.3.17-6ubuntu2.1 @@ -3968,7 +3355,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 util-linux@2.37.2-4ubuntu3.4 @@ -3979,7 +3366,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -3994,7 +3381,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4009,7 +3396,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 ncurses/libncursesw6@6.3-2ubuntu0.1 @@ -4018,7 +3405,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 procps@2:3.3.17-6ubuntu2.1 @@ -4029,7 +3416,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4044,7 +3431,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 ncurses/libncurses6@6.3-2ubuntu0.1 @@ -4053,7 +3440,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 procps@2:3.3.17-6ubuntu2.1 @@ -4064,7 +3451,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 ncurses/ncurses-base@6.3-2ubuntu0.1 @@ -4073,7 +3460,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 ncurses/ncurses-bin@6.3-2ubuntu0.1 @@ -4118,7 +3505,7 @@

                              Resource Exhaustion

                              • - Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.8/argoproj/argocd Dockerfile
                              • Package Manager: ubuntu:22.04 @@ -4131,7 +3518,7 @@

                                Resource Exhaustion

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 and libzstd/libzstd1@1.4.8+dfsg-3build1 + docker-image|quay.io/argoproj/argocd@v2.10.8 and libzstd/libzstd1@1.4.8+dfsg-3build1
                              @@ -4144,7 +3531,7 @@

                              Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 libzstd/libzstd1@1.4.8+dfsg-3build1 @@ -4195,7 +3582,7 @@

                                Integer Overflow or Wraparound

                                • - Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.8/argoproj/argocd Dockerfile
                                • Package Manager: ubuntu:22.04 @@ -4208,7 +3595,7 @@

                                  Integer Overflow or Wraparound

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 and krb5/libk5crypto3@1.19.2-2ubuntu0.3 + docker-image|quay.io/argoproj/argocd@v2.10.8 and krb5/libk5crypto3@1.19.2-2ubuntu0.3
                                @@ -4221,7 +3608,7 @@

                                Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 krb5/libk5crypto3@1.19.2-2ubuntu0.3 @@ -4230,7 +3617,7 @@

                                  Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 adduser@3.118ubuntu5 @@ -4251,7 +3638,7 @@

                                  Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 adduser@3.118ubuntu5 @@ -4274,7 +3661,7 @@

                                  Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 krb5/libkrb5-3@1.19.2-2ubuntu0.3 @@ -4283,7 +3670,7 @@

                                  Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 adduser@3.118ubuntu5 @@ -4304,7 +3691,7 @@

                                  Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -4313,9 +3700,9 @@

                                  Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 - openssh/openssh-client@1:8.9p1-3ubuntu0.6 + openssh/openssh-client@1:8.9p1-3ubuntu0.7 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -4324,7 +3711,7 @@

                                  Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 git@1:2.34.1-1ubuntu1.10 @@ -4337,7 +3724,7 @@

                                  Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 git@1:2.34.1-1ubuntu1.10 @@ -4352,7 +3739,7 @@

                                  Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 adduser@3.118ubuntu5 @@ -4371,7 +3758,7 @@

                                  Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 krb5/libkrb5support0@1.19.2-2ubuntu0.3 @@ -4419,7 +3806,7 @@

                                  Out-of-bounds Write

                                  • - Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.8/argoproj/argocd Dockerfile
                                  • Package Manager: ubuntu:22.04 @@ -4432,7 +3819,7 @@

                                    Out-of-bounds Write

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 and gnupg2/gpgv@2.2.27-3ubuntu2.1 + docker-image|quay.io/argoproj/argocd@v2.10.8 and gnupg2/gpgv@2.2.27-3ubuntu2.1
                                  @@ -4445,7 +3832,7 @@

                                  Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 gnupg2/gpgv@2.2.27-3ubuntu2.1 @@ -4454,7 +3841,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 apt@2.4.12 @@ -4465,7 +3852,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4476,7 +3863,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 gnupg2/dirmngr@2.2.27-3ubuntu2.1 @@ -4487,7 +3874,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -4498,7 +3885,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4511,7 +3898,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4524,7 +3911,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 gnupg2/dirmngr@2.2.27-3ubuntu2.1 @@ -4533,7 +3920,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4544,7 +3931,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4557,7 +3944,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 gnupg2/gnupg-l10n@2.2.27-3ubuntu2.1 @@ -4566,7 +3953,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4577,7 +3964,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 gnupg2/gnupg-utils@2.2.27-3ubuntu2.1 @@ -4586,7 +3973,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4597,7 +3984,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -4606,7 +3993,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4617,7 +4004,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4630,7 +4017,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4643,7 +4030,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 gnupg2/gpg-agent@2.2.27-3ubuntu2.1 @@ -4652,7 +4039,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4663,7 +4050,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4676,7 +4063,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4689,7 +4076,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 gnupg2/gpg-wks-client@2.2.27-3ubuntu2.1 @@ -4698,7 +4085,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4709,7 +4096,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 gnupg2/gpg-wks-server@2.2.27-3ubuntu2.1 @@ -4718,7 +4105,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4729,7 +4116,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 gnupg2/gpgsm@2.2.27-3ubuntu2.1 @@ -4738,7 +4125,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4749,7 +4136,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4798,7 +4185,7 @@

                                    Allocation of Resources Without Limits or Throttling

                                  • - Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.8/argoproj/argocd Dockerfile
                                  • Package Manager: ubuntu:22.04 @@ -4811,7 +4198,7 @@

                                    Allocation of Resources Without Limits or Throttling

                                    Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 and glibc/libc-bin@2.35-0ubuntu3.6 + docker-image|quay.io/argoproj/argocd@v2.10.8 and glibc/libc-bin@2.35-0ubuntu3.7
                                  @@ -4824,18 +4211,18 @@

                                  Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 - glibc/libc-bin@2.35-0ubuntu3.6 + glibc/libc-bin@2.35-0ubuntu3.7
                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 - glibc/libc6@2.35-0ubuntu3.6 + glibc/libc6@2.35-0ubuntu3.7 @@ -4879,7 +4266,7 @@

                                    Improper Input Validation

                                    • - Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.8/argoproj/argocd Dockerfile
                                    • Package Manager: ubuntu:22.04 @@ -4893,7 +4280,7 @@

                                      Improper Input Validation

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16, git@1:2.34.1-1ubuntu1.10 and others + docker-image|quay.io/argoproj/argocd@v2.10.8, git@1:2.34.1-1ubuntu1.10 and others
                                    @@ -4905,7 +4292,7 @@

                                    Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 git@1:2.34.1-1ubuntu1.10 @@ -4916,7 +4303,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 git@1:2.34.1-1ubuntu1.10 @@ -4925,7 +4312,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 git-lfs@3.0.2-1ubuntu0.2 @@ -4972,7 +4359,7 @@

                                      Uncontrolled Recursion

                                      • - Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.8/argoproj/argocd Dockerfile
                                      • Package Manager: ubuntu:22.04 @@ -4985,7 +4372,7 @@

                                        Uncontrolled Recursion

                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 and gcc-12/libstdc++6@12.3.0-1ubuntu1~22.04 + docker-image|quay.io/argoproj/argocd@v2.10.8 and gcc-12/libstdc++6@12.3.0-1ubuntu1~22.04
                                      @@ -4998,7 +4385,7 @@

                                      Detailed paths

                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 gcc-12/libstdc++6@12.3.0-1ubuntu1~22.04 @@ -5007,7 +4394,7 @@

                                        Detailed paths

                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 apt@2.4.12 @@ -5018,7 +4405,7 @@

                                        Detailed paths

                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 apt@2.4.12 @@ -5031,7 +4418,7 @@

                                        Detailed paths

                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 gcc-12/gcc-12-base@12.3.0-1ubuntu1~22.04 @@ -5040,7 +4427,7 @@

                                        Detailed paths

                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 gcc-12/libgcc-s1@12.3.0-1ubuntu1~22.04 @@ -5087,7 +4474,7 @@

                                        Improper Input Validation

                                        • - Manifest file: quay.io/argoproj/argocd:v2.8.16/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.8/argoproj/argocd Dockerfile
                                        • Package Manager: ubuntu:22.04 @@ -5100,7 +4487,7 @@

                                          Improper Input Validation

                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 and coreutils@8.32-4.1ubuntu1.2 + docker-image|quay.io/argoproj/argocd@v2.10.8 and coreutils@8.32-4.1ubuntu1.2
                                        @@ -5113,7 +4500,7 @@

                                        Detailed paths

                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.16 + docker-image|quay.io/argoproj/argocd@v2.10.8 coreutils@8.32-4.1ubuntu1.2 diff --git a/docs/snyk/v2.10.8/redis_7.0.15-alpine.html b/docs/snyk/v2.10.8/redis_7.0.15-alpine.html new file mode 100644 index 0000000000000..c10b8fb04e70b --- /dev/null +++ b/docs/snyk/v2.10.8/redis_7.0.15-alpine.html @@ -0,0 +1,657 @@ + + + + + + + + + Snyk test report + + + + + + + + + +
                                          +
                                          +
                                          +
                                          + + + Snyk - Open Source Security + + + + + + + +
                                          +

                                          Snyk test report

                                          + +

                                          April 28th 2024, 12:20:54 am (UTC+00:00)

                                          +
                                          +
                                          + Scanned the following paths: +
                                            +
                                          • redis:7.0.15-alpine (apk)
                                            • +
                                          • redis:7.0.15-alpine/tianon/gosu//usr/local/bin/gosu (gomodules)
                                            • +
                                          +
                                          + +
                                          +
                                          1 known vulnerabilities
                                          +
                                          9 vulnerable dependency paths
                                          +
                                          19 dependencies
                                          +
                                          +
                                          +
                                          +
                                          + +
                                          +
                                          +
                                          +

                                          CVE-2024-2511

                                          +
                                          + +
                                          + low severity +
                                          + +
                                          + +
                                            +
                                          • + Package Manager: alpine:3.19 +
                                            • +
                                          • + Vulnerable module: + + openssl/libcrypto3 +
                                            • + +
                                          • Introduced through: + + docker-image|redis@7.0.15-alpine and openssl/libcrypto3@3.1.4-r5 + +
                                            • +
                                          + +
                                          + + +

                                          Detailed paths

                                          + +
                                            +
                                          • + Introduced through: + docker-image|redis@7.0.15-alpine + + openssl/libcrypto3@3.1.4-r5 + + + +
                                            • +
                                          • + Introduced through: + docker-image|redis@7.0.15-alpine + + .redis-rundeps@20240315.235535 + + openssl/libcrypto3@3.1.4-r5 + + + +
                                            • +
                                          • + Introduced through: + docker-image|redis@7.0.15-alpine + + apk-tools/apk-tools@2.14.0-r5 + + openssl/libcrypto3@3.1.4-r5 + + + +
                                            • +
                                          • + Introduced through: + docker-image|redis@7.0.15-alpine + + busybox/ssl_client@1.36.1-r15 + + openssl/libcrypto3@3.1.4-r5 + + + +
                                            • +
                                          • + Introduced through: + docker-image|redis@7.0.15-alpine + + .redis-rundeps@20240315.235535 + + openssl/libssl3@3.1.4-r5 + + openssl/libcrypto3@3.1.4-r5 + + + +
                                            • +
                                          • + Introduced through: + docker-image|redis@7.0.15-alpine + + openssl/libssl3@3.1.4-r5 + + + +
                                            • +
                                          • + Introduced through: + docker-image|redis@7.0.15-alpine + + .redis-rundeps@20240315.235535 + + openssl/libssl3@3.1.4-r5 + + + +
                                            • +
                                          • + Introduced through: + docker-image|redis@7.0.15-alpine + + apk-tools/apk-tools@2.14.0-r5 + + openssl/libssl3@3.1.4-r5 + + + +
                                            • +
                                          • + Introduced through: + docker-image|redis@7.0.15-alpine + + busybox/ssl_client@1.36.1-r15 + + openssl/libssl3@3.1.4-r5 + + + +
                                            • +
                                          + +
                                          + +
                                          + +

                                          NVD Description

                                          +

                                          Note: Versions mentioned in the description apply only to the upstream openssl package and not the openssl package as distributed by Alpine. + See How to fix? for Alpine:3.19 relevant fixed versions and status.

                                          +

                                          Issue summary: Some non-default TLS server configurations can cause unbounded + memory growth when processing TLSv1.3 sessions

                                          +

                                          Impact summary: An attacker may exploit certain server configurations to trigger + unbounded memory growth that would lead to a Denial of Service

                                          +

                                          This problem can occur in TLSv1.3 if the non-default SSL_OP_NO_TICKET option is + being used (but not if early_data support is also configured and the default + anti-replay protection is in use). In this case, under certain conditions, the + session cache can get into an incorrect state and it will fail to flush properly + as it fills. The session cache will continue to grow in an unbounded manner. A + malicious client could deliberately create the scenario for this failure to + force a Denial of Service. It may also happen by accident in normal operation.

                                          +

                                          This issue only affects TLS servers supporting TLSv1.3. It does not affect TLS + clients.

                                          +

                                          The FIPS modules in 3.2, 3.1 and 3.0 are not affected by this issue. OpenSSL + 1.0.2 is also not affected by this issue.

                                          +

                                          Remediation

                                          +

                                          Upgrade Alpine:3.19 openssl to version 3.1.4-r6 or higher.

                                          +

                                          References

                                          + + +
                                          + +
                                          +

                                          More about this vulnerability

                                          +
                                          + +
                                          +
                                          +
                                          +
                                          + + + diff --git a/docs/snyk/v2.11.0-rc2/argocd-iac-install.html b/docs/snyk/v2.11.0-rc2/argocd-iac-install.html index 787399c8e9f6f..85b1abab5bdf4 100644 --- a/docs/snyk/v2.11.0-rc2/argocd-iac-install.html +++ b/docs/snyk/v2.11.0-rc2/argocd-iac-install.html @@ -456,7 +456,7 @@

                                          Snyk test report

                                          -

                                          April 21st 2024, 12:19:48 am (UTC+00:00)

                                          +

                                          April 28th 2024, 12:20:03 am (UTC+00:00)

                                          Scanned the following path: diff --git a/docs/snyk/v2.11.0-rc2/argocd-iac-namespace-install.html b/docs/snyk/v2.11.0-rc2/argocd-iac-namespace-install.html index c4e90bafd0756..47b02ad37cf03 100644 --- a/docs/snyk/v2.11.0-rc2/argocd-iac-namespace-install.html +++ b/docs/snyk/v2.11.0-rc2/argocd-iac-namespace-install.html @@ -456,7 +456,7 @@

                                          Snyk test report

                                          -

                                          April 21st 2024, 12:19:56 am (UTC+00:00)

                                          +

                                          April 28th 2024, 12:20:13 am (UTC+00:00)

                                          Scanned the following path: diff --git a/docs/snyk/v2.11.0-rc2/argocd-test.html b/docs/snyk/v2.11.0-rc2/argocd-test.html index 3810bb4f8b72d..294013c30117c 100644 --- a/docs/snyk/v2.11.0-rc2/argocd-test.html +++ b/docs/snyk/v2.11.0-rc2/argocd-test.html @@ -456,7 +456,7 @@

                                          Snyk test report

                                          -

                                          April 21st 2024, 12:17:59 am (UTC+00:00)

                                          +

                                          April 28th 2024, 12:18:15 am (UTC+00:00)

                                          Scanned the following paths: diff --git a/docs/snyk/v2.11.0-rc2/ghcr.io_dexidp_dex_v2.38.0.html b/docs/snyk/v2.11.0-rc2/ghcr.io_dexidp_dex_v2.38.0.html index 61831ad5c5035..2f991543459d0 100644 --- a/docs/snyk/v2.11.0-rc2/ghcr.io_dexidp_dex_v2.38.0.html +++ b/docs/snyk/v2.11.0-rc2/ghcr.io_dexidp_dex_v2.38.0.html @@ -456,7 +456,7 @@

                                          Snyk test report

                                          -

                                          April 21st 2024, 12:18:04 am (UTC+00:00)

                                          +

                                          April 28th 2024, 12:18:20 am (UTC+00:00)

                                          Scanned the following paths: @@ -713,6 +713,8 @@

                                          References

                                        • https://www.openssl.org/news/secadv/20240109.txt
                                        • http://www.openwall.com/lists/oss-security/2024/01/09/1
                                        • https://security.netapp.com/advisory/ntap-20240216-0009/
                                          • +
                                        • https://security.netapp.com/advisory/ntap-20240426-0008/
                                          • +
                                        • https://security.netapp.com/advisory/ntap-20240426-0013/
                                        @@ -2622,9 +2624,37 @@

                                        Detailed paths

                                        NVD Description

                                        -

                                        This vulnerability has not been analyzed by NVD yet.

                                        +

                                        Note: Versions mentioned in the description apply only to the upstream openssl package and not the openssl package as distributed by Alpine. + See How to fix? for Alpine:3.19 relevant fixed versions and status.

                                        +

                                        Issue summary: Checking excessively long invalid RSA public keys may take + a long time.

                                        +

                                        Impact summary: Applications that use the function EVP_PKEY_public_check() + to check RSA public keys may experience long delays. Where the key that + is being checked has been obtained from an untrusted source this may lead + to a Denial of Service.

                                        +

                                        When function EVP_PKEY_public_check() is called on RSA public keys, + a computation is done to confirm that the RSA modulus, n, is composite. + For valid RSA keys, n is a product of two or more large primes and this + computation completes quickly. However, if n is an overly large prime, + then this computation would take a long time.

                                        +

                                        An application that calls EVP_PKEY_public_check() and supplies an RSA key + obtained from an untrusted source could be vulnerable to a Denial of Service + attack.

                                        +

                                        The function EVP_PKEY_public_check() is not called from other OpenSSL + functions however it is called from the OpenSSL pkey command line + application. For that reason that application is also vulnerable if used + with the '-pubin' and '-check' options on untrusted data.

                                        +

                                        The OpenSSL SSL/TLS implementation is not affected by this issue.

                                        +

                                        The OpenSSL 3.0 and 3.1 FIPS providers are affected by this issue.

                                        Remediation

                                        Upgrade Alpine:3.19 openssl to version 3.1.4-r4 or higher.

                                        +

                                        References

                                        +
                                        diff --git a/docs/snyk/v2.11.0-rc2/haproxy_2.6.14-alpine.html b/docs/snyk/v2.11.0-rc2/haproxy_2.6.14-alpine.html index ec0fde3db6177..fea8477a51f0a 100644 --- a/docs/snyk/v2.11.0-rc2/haproxy_2.6.14-alpine.html +++ b/docs/snyk/v2.11.0-rc2/haproxy_2.6.14-alpine.html @@ -456,7 +456,7 @@

                                        Snyk test report

                                        -

                                        April 21st 2024, 12:18:08 am (UTC+00:00)

                                        +

                                        April 28th 2024, 12:18:25 am (UTC+00:00)

                                        Scanned the following path: @@ -1036,6 +1036,8 @@

                                        References

                                      • https://www.openssl.org/news/secadv/20240109.txt
                                      • http://www.openwall.com/lists/oss-security/2024/01/09/1
                                      • https://security.netapp.com/advisory/ntap-20240216-0009/
                                        • +
                                      • https://security.netapp.com/advisory/ntap-20240426-0008/
                                        • +
                                      • https://security.netapp.com/advisory/ntap-20240426-0013/
                                      @@ -1357,9 +1359,37 @@

                                      Detailed paths

                                      NVD Description

                                      -

                                      This vulnerability has not been analyzed by NVD yet.

                                      +

                                      Note: Versions mentioned in the description apply only to the upstream openssl package and not the openssl package as distributed by Alpine. + See How to fix? for Alpine:3.18 relevant fixed versions and status.

                                      +

                                      Issue summary: Checking excessively long invalid RSA public keys may take + a long time.

                                      +

                                      Impact summary: Applications that use the function EVP_PKEY_public_check() + to check RSA public keys may experience long delays. Where the key that + is being checked has been obtained from an untrusted source this may lead + to a Denial of Service.

                                      +

                                      When function EVP_PKEY_public_check() is called on RSA public keys, + a computation is done to confirm that the RSA modulus, n, is composite. + For valid RSA keys, n is a product of two or more large primes and this + computation completes quickly. However, if n is an overly large prime, + then this computation would take a long time.

                                      +

                                      An application that calls EVP_PKEY_public_check() and supplies an RSA key + obtained from an untrusted source could be vulnerable to a Denial of Service + attack.

                                      +

                                      The function EVP_PKEY_public_check() is not called from other OpenSSL + functions however it is called from the OpenSSL pkey command line + application. For that reason that application is also vulnerable if used + with the '-pubin' and '-check' options on untrusted data.

                                      +

                                      The OpenSSL SSL/TLS implementation is not affected by this issue.

                                      +

                                      The OpenSSL 3.0 and 3.1 FIPS providers are affected by this issue.

                                      Remediation

                                      Upgrade Alpine:3.18 openssl to version 3.1.4-r4 or higher.

                                      +

                                      References

                                      +
                                      diff --git a/docs/snyk/v2.11.0-rc2/quay.io_argoproj_argocd_v2.11.0-rc2.html b/docs/snyk/v2.11.0-rc2/quay.io_argoproj_argocd_v2.11.0-rc2.html index 8be03cfd4bcab..6f676b0935df4 100644 --- a/docs/snyk/v2.11.0-rc2/quay.io_argoproj_argocd_v2.11.0-rc2.html +++ b/docs/snyk/v2.11.0-rc2/quay.io_argoproj_argocd_v2.11.0-rc2.html @@ -7,7 +7,7 @@ Snyk test report - + @@ -456,7 +456,7 @@

                                      Snyk test report

                                      -

                                      April 21st 2024, 12:18:25 am (UTC+00:00)

                                      +

                                      April 28th 2024, 12:18:41 am (UTC+00:00)

                                      Scanned the following paths: @@ -470,8 +470,8 @@

                                      Snyk test report

                                      -
                                      32 known vulnerabilities
                                      -
                                      167 vulnerable dependency paths
                                      +
                                      34 known vulnerabilities
                                      +
                                      169 vulnerable dependency paths
                                      2276 dependencies
    @@ -711,6 +711,85 @@

    References

    More about this vulnerability

    +

    +
    +

    CVE-2024-28182

    +
    + +
    + medium severity +
    + +
    + +
      +
    • + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argocd Dockerfile +
      • +
    • + Package Manager: ubuntu:22.04 +
      • +
    • + Vulnerable module: + + nghttp2/libnghttp2-14 +
      • + +
    • Introduced through: + + + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2, git@1:2.34.1-1ubuntu1.10 and others +
      • +
    + +
    + + +

    Detailed paths

    + +
      +
    • + Introduced through: + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + + git@1:2.34.1-1ubuntu1.10 + + curl/libcurl3-gnutls@7.81.0-1ubuntu1.16 + + nghttp2/libnghttp2-14@1.43.0-1ubuntu0.1 + + + +
      • +
    + +
    + +
    + +

    NVD Description

    +

    Note: Versions mentioned in the description apply only to the upstream nghttp2 package and not the nghttp2 package as distributed by Ubuntu. + See How to fix? for Ubuntu:22.04 relevant fixed versions and status.

    +

    nghttp2 is an implementation of the Hypertext Transfer Protocol version 2 in C. The nghttp2 library prior to version 1.61.0 keeps reading the unbounded number of HTTP/2 CONTINUATION frames even after a stream is reset to keep HPACK context in sync. This causes excessive CPU usage to decode HPACK stream. nghttp2 v1.61.0 mitigates this vulnerability by limiting the number of CONTINUATION frames it accepts per stream. There is no workaround for this vulnerability.

    +

    Remediation

    +

    Upgrade Ubuntu:22.04 nghttp2 to version 1.43.0-1ubuntu0.2 or higher.

    +

    References

    + + +
    + +
    +

    More about this vulnerability

    +
    +

    Information Exposure

    @@ -915,6 +994,7 @@

    References

  • http://people.ubuntu.com/~ubuntu-security/cve/CVE-2024-2236
  • https://access.redhat.com/security/cve/CVE-2024-2236
  • https://bugzilla.redhat.com/show_bug.cgi?id=2268268
    • +
  • https://bugzilla.redhat.com/show_bug.cgi?id=2245218
    • @@ -923,6 +1003,78 @@

    References

    More about this vulnerability

    +
    +
    +

    CVE-2024-32487

    +
    + +
    + medium severity +
    + +
    + +
      +
    • + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argocd Dockerfile +
      • +
    • + Package Manager: ubuntu:22.04 +
      • +
    • + Vulnerable module: + + less +
      • + +
    • Introduced through: + + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 and less@590-1ubuntu0.22.04.2 + +
      • +
    + +
    + + +

    Detailed paths

    + +
      +
    • + Introduced through: + docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + + less@590-1ubuntu0.22.04.2 + + + +
      • +
    + +
    + +
    + +

    NVD Description

    +

    Note: Versions mentioned in the description apply only to the upstream less package and not the less package as distributed by Ubuntu. + See How to fix? for Ubuntu:22.04 relevant fixed versions and status.

    +

    less through 653 allows OS command execution via a newline character in the name of a file, because quoting is mishandled in filename.c. Exploitation typically requires use with attacker-controlled file names, such as the files extracted from an untrusted archive. Exploitation also requires the LESSOPEN environment variable, but this is set by default in many common cases.

    +

    Remediation

    +

    There is no fixed version for Ubuntu:22.04 less.

    +

    References

    + + +
    + +
    +

    More about this vulnerability

    +
    +

    CVE-2024-26461

    diff --git a/docs/snyk/v2.11.0-rc2/redis_7.0.14-alpine.html b/docs/snyk/v2.11.0-rc2/redis_7.0.14-alpine.html index 226f64188d30d..de6ed18290d85 100644 --- a/docs/snyk/v2.11.0-rc2/redis_7.0.14-alpine.html +++ b/docs/snyk/v2.11.0-rc2/redis_7.0.14-alpine.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    April 21st 2024, 12:18:30 am (UTC+00:00)

    +

    April 28th 2024, 12:18:47 am (UTC+00:00)

    Scanned the following paths: @@ -653,6 +653,8 @@

    References

  • https://www.openssl.org/news/secadv/20240109.txt
  • http://www.openwall.com/lists/oss-security/2024/01/09/1
  • https://security.netapp.com/advisory/ntap-20240216-0009/
    • +
  • https://security.netapp.com/advisory/ntap-20240426-0008/
    • +
  • https://security.netapp.com/advisory/ntap-20240426-0013/
    • @@ -974,9 +976,37 @@

    Detailed paths

    NVD Description

    -

    This vulnerability has not been analyzed by NVD yet.

    +

    Note: Versions mentioned in the description apply only to the upstream openssl package and not the openssl package as distributed by Alpine. + See How to fix? for Alpine:3.19 relevant fixed versions and status.

    +

    Issue summary: Checking excessively long invalid RSA public keys may take + a long time.

    +

    Impact summary: Applications that use the function EVP_PKEY_public_check() + to check RSA public keys may experience long delays. Where the key that + is being checked has been obtained from an untrusted source this may lead + to a Denial of Service.

    +

    When function EVP_PKEY_public_check() is called on RSA public keys, + a computation is done to confirm that the RSA modulus, n, is composite. + For valid RSA keys, n is a product of two or more large primes and this + computation completes quickly. However, if n is an overly large prime, + then this computation would take a long time.

    +

    An application that calls EVP_PKEY_public_check() and supplies an RSA key + obtained from an untrusted source could be vulnerable to a Denial of Service + attack.

    +

    The function EVP_PKEY_public_check() is not called from other OpenSSL + functions however it is called from the OpenSSL pkey command line + application. For that reason that application is also vulnerable if used + with the '-pubin' and '-check' options on untrusted data.

    +

    The OpenSSL SSL/TLS implementation is not affected by this issue.

    +

    The OpenSSL 3.0 and 3.1 FIPS providers are affected by this issue.

    Remediation

    Upgrade Alpine:3.19 openssl to version 3.1.4-r4 or higher.

    +

    References

    +
    diff --git a/docs/snyk/v2.8.16/redis_7.0.11-alpine.html b/docs/snyk/v2.8.16/redis_7.0.11-alpine.html deleted file mode 100644 index 0128e35c967d4..0000000000000 --- a/docs/snyk/v2.8.16/redis_7.0.11-alpine.html +++ /dev/null @@ -1,2204 +0,0 @@ - - - - - - - - - Snyk test report - - - - - - - - - -
    -
    -
    -
    - - - Snyk - Open Source Security - - - - - - - -
    -

    Snyk test report

    - -

    April 21st 2024, 12:25:00 am (UTC+00:00)

    -
    -
    - Scanned the following path: -
      -
    • redis:7.0.11-alpine (apk)
      • -
    -
    - -
    -
    10 known vulnerabilities
    -
    86 vulnerable dependency paths
    -
    18 dependencies
    -
    -
    -
    -
    -
    - - - - - - - -
    Project docker-image|redis
    Path redis:7.0.11-alpine
    Package Manager apk
    -
    -
    -
    -
    -

    Out-of-bounds Write

    -
    - -
    - critical severity -
    - -
    - -
      -
    • - Package Manager: alpine:3.18 -
      • -
    • - Vulnerable module: - - busybox/busybox -
      • - -
    • Introduced through: - - docker-image|redis@7.0.11-alpine and busybox/busybox@1.36.1-r0 - -
      • -
    - -
    - - -

    Detailed paths

    - -
      -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - busybox/busybox@1.36.1-r0 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - alpine-baselayout/alpine-baselayout@3.4.3-r1 - - busybox/busybox-binsh@1.36.1-r0 - - busybox/busybox@1.36.1-r0 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - busybox/busybox-binsh@1.36.1-r0 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - alpine-baselayout/alpine-baselayout@3.4.3-r1 - - busybox/busybox-binsh@1.36.1-r0 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - busybox/ssl_client@1.36.1-r0 - - - -
      • -
    - -
    - -
    - -

    NVD Description

    -

    Note: Versions mentioned in the description apply only to the upstream busybox package and not the busybox package as distributed by Alpine. - See How to fix? for Alpine:3.18 relevant fixed versions and status.

    -

    There is a stack overflow vulnerability in ash.c:6030 in busybox before 1.35. In the environment of Internet of Vehicles, this vulnerability can be executed from command to arbitrary code execution.

    -

    Remediation

    -

    Upgrade Alpine:3.18 busybox to version 1.36.1-r1 or higher.

    -

    References

    - - -
    - -
    -

    More about this vulnerability

    -
    - -
    -
    -

    CVE-2023-5363

    -
    - -
    - high severity -
    - -
    - -
      -
    • - Package Manager: alpine:3.18 -
      • -
    • - Vulnerable module: - - openssl/libcrypto3 -
      • - -
    • Introduced through: - - docker-image|redis@7.0.11-alpine and openssl/libcrypto3@3.1.1-r1 - -
      • -
    - -
    - - -

    Detailed paths

    - -
      -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - openssl/libcrypto3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libcrypto3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - apk-tools/apk-tools@2.14.0-r2 - - openssl/libcrypto3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - busybox/ssl_client@1.36.1-r0 - - openssl/libcrypto3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libssl3@3.1.1-r1 - - openssl/libcrypto3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - openssl/libssl3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libssl3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - apk-tools/apk-tools@2.14.0-r2 - - openssl/libssl3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - busybox/ssl_client@1.36.1-r0 - - openssl/libssl3@3.1.1-r1 - - - -
      • -
    - -
    - -
    - -

    NVD Description

    -

    Note: Versions mentioned in the description apply only to the upstream openssl package and not the openssl package as distributed by Alpine. - See How to fix? for Alpine:3.18 relevant fixed versions and status.

    -

    Issue summary: A bug has been identified in the processing of key and - initialisation vector (IV) lengths. This can lead to potential truncation - or overruns during the initialisation of some symmetric ciphers.

    -

    Impact summary: A truncation in the IV can result in non-uniqueness, - which could result in loss of confidentiality for some cipher modes.

    -

    When calling EVP_EncryptInit_ex2(), EVP_DecryptInit_ex2() or - EVP_CipherInit_ex2() the provided OSSL_PARAM array is processed after - the key and IV have been established. Any alterations to the key length, - via the "keylen" parameter or the IV length, via the "ivlen" parameter, - within the OSSL_PARAM array will not take effect as intended, potentially - causing truncation or overreading of these values. The following ciphers - and cipher modes are impacted: RC2, RC4, RC5, CCM, GCM and OCB.

    -

    For the CCM, GCM and OCB cipher modes, truncation of the IV can result in - loss of confidentiality. For example, when following NIST's SP 800-38D - section 8.2.1 guidance for constructing a deterministic IV for AES in - GCM mode, truncation of the counter portion could lead to IV reuse.

    -

    Both truncations and overruns of the key and overruns of the IV will - produce incorrect results and could, in some cases, trigger a memory - exception. However, these issues are not currently assessed as security - critical.

    -

    Changing the key and/or IV lengths is not considered to be a common operation - and the vulnerable API was recently introduced. Furthermore it is likely that - application developers will have spotted this problem during testing since - decryption would fail unless both peers in the communication were similarly - vulnerable. For these reasons we expect the probability of an application being - vulnerable to this to be quite low. However if an application is vulnerable then - this issue is considered very serious. For these reasons we have assessed this - issue as Moderate severity overall.

    -

    The OpenSSL SSL/TLS implementation is not affected by this issue.

    -

    The OpenSSL 3.0 and 3.1 FIPS providers are not affected by this because - the issue lies outside of the FIPS provider boundary.

    -

    OpenSSL 3.1 and 3.0 are vulnerable to this issue.

    -

    Remediation

    -

    Upgrade Alpine:3.18 openssl to version 3.1.4-r0 or higher.

    -

    References

    - - -
    - -
    -

    More about this vulnerability

    -
    - -
    -
    -

    Improper Authentication

    -
    - -
    - medium severity -
    - -
    - -
      -
    • - Package Manager: alpine:3.18 -
      • -
    • - Vulnerable module: - - openssl/libcrypto3 -
      • - -
    • Introduced through: - - docker-image|redis@7.0.11-alpine and openssl/libcrypto3@3.1.1-r1 - -
      • -
    - -
    - - -

    Detailed paths

    - -
      -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - openssl/libcrypto3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libcrypto3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - apk-tools/apk-tools@2.14.0-r2 - - openssl/libcrypto3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - busybox/ssl_client@1.36.1-r0 - - openssl/libcrypto3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libssl3@3.1.1-r1 - - openssl/libcrypto3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - openssl/libssl3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libssl3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - apk-tools/apk-tools@2.14.0-r2 - - openssl/libssl3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - busybox/ssl_client@1.36.1-r0 - - openssl/libssl3@3.1.1-r1 - - - -
      • -
    - -
    - -
    - -

    NVD Description

    -

    Note: Versions mentioned in the description apply only to the upstream openssl package and not the openssl package as distributed by Alpine. - See How to fix? for Alpine:3.18 relevant fixed versions and status.

    -

    Issue summary: The AES-SIV cipher implementation contains a bug that causes - it to ignore empty associated data entries which are unauthenticated as - a consequence.

    -

    Impact summary: Applications that use the AES-SIV algorithm and want to - authenticate empty data entries as associated data can be mislead by removing - adding or reordering such empty entries as these are ignored by the OpenSSL - implementation. We are currently unaware of any such applications.

    -

    The AES-SIV algorithm allows for authentication of multiple associated - data entries along with the encryption. To authenticate empty data the - application has to call EVP_EncryptUpdate() (or EVP_CipherUpdate()) with - NULL pointer as the output buffer and 0 as the input buffer length. - The AES-SIV implementation in OpenSSL just returns success for such a call - instead of performing the associated data authentication operation. - The empty data thus will not be authenticated.

    -

    As this issue does not affect non-empty associated data authentication and - we expect it to be rare for an application to use empty associated data - entries this is qualified as Low severity issue.

    -

    Remediation

    -

    Upgrade Alpine:3.18 openssl to version 3.1.1-r2 or higher.

    -

    References

    - - -
    - -
    -

    More about this vulnerability

    -
    - -
    -
    -

    Inefficient Regular Expression Complexity

    -
    - -
    - medium severity -
    - -
    - -
      -
    • - Package Manager: alpine:3.18 -
      • -
    • - Vulnerable module: - - openssl/libcrypto3 -
      • - -
    • Introduced through: - - docker-image|redis@7.0.11-alpine and openssl/libcrypto3@3.1.1-r1 - -
      • -
    - -
    - - -

    Detailed paths

    - -
      -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - openssl/libcrypto3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libcrypto3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - apk-tools/apk-tools@2.14.0-r2 - - openssl/libcrypto3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - busybox/ssl_client@1.36.1-r0 - - openssl/libcrypto3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libssl3@3.1.1-r1 - - openssl/libcrypto3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - openssl/libssl3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libssl3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - apk-tools/apk-tools@2.14.0-r2 - - openssl/libssl3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - busybox/ssl_client@1.36.1-r0 - - openssl/libssl3@3.1.1-r1 - - - -
      • -
    - -
    - -
    - -

    NVD Description

    -

    Note: Versions mentioned in the description apply only to the upstream openssl package and not the openssl package as distributed by Alpine. - See How to fix? for Alpine:3.18 relevant fixed versions and status.

    -

    Issue summary: Checking excessively long DH keys or parameters may be very slow.

    -

    Impact summary: Applications that use the functions DH_check(), DH_check_ex() - or EVP_PKEY_param_check() to check a DH key or DH parameters may experience long - delays. Where the key or parameters that are being checked have been obtained - from an untrusted source this may lead to a Denial of Service.

    -

    The function DH_check() performs various checks on DH parameters. One of those - checks confirms that the modulus ('p' parameter) is not too large. Trying to use - a very large modulus is slow and OpenSSL will not normally use a modulus which - is over 10,000 bits in length.

    -

    However the DH_check() function checks numerous aspects of the key or parameters - that have been supplied. Some of those checks use the supplied modulus value - even if it has already been found to be too large.

    -

    An application that calls DH_check() and supplies a key or parameters obtained - from an untrusted source could be vulernable to a Denial of Service attack.

    -

    The function DH_check() is itself called by a number of other OpenSSL functions. - An application calling any of those other functions may similarly be affected. - The other functions affected by this are DH_check_ex() and - EVP_PKEY_param_check().

    -

    Also vulnerable are the OpenSSL dhparam and pkeyparam command line applications - when using the '-check' option.

    -

    The OpenSSL SSL/TLS implementation is not affected by this issue. - The OpenSSL 3.0 and 3.1 FIPS providers are not affected by this issue.

    -

    Remediation

    -

    Upgrade Alpine:3.18 openssl to version 3.1.1-r3 or higher.

    -

    References

    - - -
    - -
    -

    More about this vulnerability

    -
    - -
    -
    -

    Excessive Iteration

    -
    - -
    - medium severity -
    - -
    - -
      -
    • - Package Manager: alpine:3.18 -
      • -
    • - Vulnerable module: - - openssl/libcrypto3 -
      • - -
    • Introduced through: - - docker-image|redis@7.0.11-alpine and openssl/libcrypto3@3.1.1-r1 - -
      • -
    - -
    - - -

    Detailed paths

    - -
      -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - openssl/libcrypto3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libcrypto3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - apk-tools/apk-tools@2.14.0-r2 - - openssl/libcrypto3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - busybox/ssl_client@1.36.1-r0 - - openssl/libcrypto3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libssl3@3.1.1-r1 - - openssl/libcrypto3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - openssl/libssl3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libssl3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - apk-tools/apk-tools@2.14.0-r2 - - openssl/libssl3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - busybox/ssl_client@1.36.1-r0 - - openssl/libssl3@3.1.1-r1 - - - -
      • -
    - -
    - -
    - -

    NVD Description

    -

    Note: Versions mentioned in the description apply only to the upstream openssl package and not the openssl package as distributed by Alpine. - See How to fix? for Alpine:3.18 relevant fixed versions and status.

    -

    Issue summary: Checking excessively long DH keys or parameters may be very slow.

    -

    Impact summary: Applications that use the functions DH_check(), DH_check_ex() - or EVP_PKEY_param_check() to check a DH key or DH parameters may experience long - delays. Where the key or parameters that are being checked have been obtained - from an untrusted source this may lead to a Denial of Service.

    -

    The function DH_check() performs various checks on DH parameters. After fixing - CVE-2023-3446 it was discovered that a large q parameter value can also trigger - an overly long computation during some of these checks. A correct q value, - if present, cannot be larger than the modulus p parameter, thus it is - unnecessary to perform these checks if q is larger than p.

    -

    An application that calls DH_check() and supplies a key or parameters obtained - from an untrusted source could be vulnerable to a Denial of Service attack.

    -

    The function DH_check() is itself called by a number of other OpenSSL functions. - An application calling any of those other functions may similarly be affected. - The other functions affected by this are DH_check_ex() and - EVP_PKEY_param_check().

    -

    Also vulnerable are the OpenSSL dhparam and pkeyparam command line applications - when using the "-check" option.

    -

    The OpenSSL SSL/TLS implementation is not affected by this issue.

    -

    The OpenSSL 3.0 and 3.1 FIPS providers are not affected by this issue.

    -

    Remediation

    -

    Upgrade Alpine:3.18 openssl to version 3.1.2-r0 or higher.

    -

    References

    - - -
    - -
    -

    More about this vulnerability

    -
    - -
    -
    -

    Improper Check for Unusual or Exceptional Conditions

    -
    - -
    - medium severity -
    - -
    - -
      -
    • - Package Manager: alpine:3.18 -
      • -
    • - Vulnerable module: - - openssl/libcrypto3 -
      • - -
    • Introduced through: - - docker-image|redis@7.0.11-alpine and openssl/libcrypto3@3.1.1-r1 - -
      • -
    - -
    - - -

    Detailed paths

    - -
      -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - openssl/libcrypto3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libcrypto3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - apk-tools/apk-tools@2.14.0-r2 - - openssl/libcrypto3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - busybox/ssl_client@1.36.1-r0 - - openssl/libcrypto3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libssl3@3.1.1-r1 - - openssl/libcrypto3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - openssl/libssl3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libssl3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - apk-tools/apk-tools@2.14.0-r2 - - openssl/libssl3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - busybox/ssl_client@1.36.1-r0 - - openssl/libssl3@3.1.1-r1 - - - -
      • -
    - -
    - -
    - -

    NVD Description

    -

    Note: Versions mentioned in the description apply only to the upstream openssl package and not the openssl package as distributed by Alpine. - See How to fix? for Alpine:3.18 relevant fixed versions and status.

    -

    Issue summary: Generating excessively long X9.42 DH keys or checking - excessively long X9.42 DH keys or parameters may be very slow.

    -

    Impact summary: Applications that use the functions DH_generate_key() to - generate an X9.42 DH key may experience long delays. Likewise, applications - that use DH_check_pub_key(), DH_check_pub_key_ex() or EVP_PKEY_public_check() - to check an X9.42 DH key or X9.42 DH parameters may experience long delays. - Where the key or parameters that are being checked have been obtained from - an untrusted source this may lead to a Denial of Service.

    -

    While DH_check() performs all the necessary checks (as of CVE-2023-3817), - DH_check_pub_key() doesn't make any of these checks, and is therefore - vulnerable for excessively large P and Q parameters.

    -

    Likewise, while DH_generate_key() performs a check for an excessively large - P, it doesn't check for an excessively large Q.

    -

    An application that calls DH_generate_key() or DH_check_pub_key() and - supplies a key or parameters obtained from an untrusted source could be - vulnerable to a Denial of Service attack.

    -

    DH_generate_key() and DH_check_pub_key() are also called by a number of - other OpenSSL functions. An application calling any of those other - functions may similarly be affected. The other functions affected by this - are DH_check_pub_key_ex(), EVP_PKEY_public_check(), and EVP_PKEY_generate().

    -

    Also vulnerable are the OpenSSL pkey command line application when using the - "-pubcheck" option, as well as the OpenSSL genpkey command line application.

    -

    The OpenSSL SSL/TLS implementation is not affected by this issue.

    -

    The OpenSSL 3.0 and 3.1 FIPS providers are not affected by this issue.

    -

    Remediation

    -

    Upgrade Alpine:3.18 openssl to version 3.1.4-r1 or higher.

    -

    References

    - - -
    - -
    -

    More about this vulnerability

    -
    - -
    -
    -

    Out-of-bounds Write

    -
    - -
    - medium severity -
    - -
    - -
      -
    • - Package Manager: alpine:3.18 -
      • -
    • - Vulnerable module: - - openssl/libcrypto3 -
      • - -
    • Introduced through: - - docker-image|redis@7.0.11-alpine and openssl/libcrypto3@3.1.1-r1 - -
      • -
    - -
    - - -

    Detailed paths

    - -
      -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - openssl/libcrypto3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libcrypto3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - apk-tools/apk-tools@2.14.0-r2 - - openssl/libcrypto3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - busybox/ssl_client@1.36.1-r0 - - openssl/libcrypto3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libssl3@3.1.1-r1 - - openssl/libcrypto3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - openssl/libssl3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libssl3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - apk-tools/apk-tools@2.14.0-r2 - - openssl/libssl3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - busybox/ssl_client@1.36.1-r0 - - openssl/libssl3@3.1.1-r1 - - - -
      • -
    - -
    - -
    - -

    NVD Description

    -

    Note: Versions mentioned in the description apply only to the upstream openssl package and not the openssl package as distributed by Alpine. - See How to fix? for Alpine:3.18 relevant fixed versions and status.

    -

    Issue summary: The POLY1305 MAC (message authentication code) implementation - contains a bug that might corrupt the internal state of applications running - on PowerPC CPU based platforms if the CPU provides vector instructions.

    -

    Impact summary: If an attacker can influence whether the POLY1305 MAC - algorithm is used, the application state might be corrupted with various - application dependent consequences.

    -

    The POLY1305 MAC (message authentication code) implementation in OpenSSL for - PowerPC CPUs restores the contents of vector registers in a different order - than they are saved. Thus the contents of some of these vector registers - are corrupted when returning to the caller. The vulnerable code is used only - on newer PowerPC processors supporting the PowerISA 2.07 instructions.

    -

    The consequences of this kind of internal application state corruption can - be various - from no consequences, if the calling application does not - depend on the contents of non-volatile XMM registers at all, to the worst - consequences, where the attacker could get complete control of the application - process. However unless the compiler uses the vector registers for storing - pointers, the most likely consequence, if any, would be an incorrect result - of some application dependent calculations or a crash leading to a denial of - service.

    -

    The POLY1305 MAC algorithm is most frequently used as part of the - CHACHA20-POLY1305 AEAD (authenticated encryption with associated data) - algorithm. The most common usage of this AEAD cipher is with TLS protocol - versions 1.2 and 1.3. If this cipher is enabled on the server a malicious - client can influence whether this AEAD cipher is used. This implies that - TLS server applications using OpenSSL can be potentially impacted. However - we are currently not aware of any concrete application that would be affected - by this issue therefore we consider this a Low severity security issue.

    -

    Remediation

    -

    Upgrade Alpine:3.18 openssl to version 3.1.4-r3 or higher.

    -

    References

    - - -
    - -
    -

    More about this vulnerability

    -
    - -
    -
    -

    CVE-2024-0727

    -
    - -
    - medium severity -
    - -
    - -
      -
    • - Package Manager: alpine:3.18 -
      • -
    • - Vulnerable module: - - openssl/libcrypto3 -
      • - -
    • Introduced through: - - docker-image|redis@7.0.11-alpine and openssl/libcrypto3@3.1.1-r1 - -
      • -
    - -
    - - -

    Detailed paths

    - -
      -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - openssl/libcrypto3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libcrypto3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - apk-tools/apk-tools@2.14.0-r2 - - openssl/libcrypto3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - busybox/ssl_client@1.36.1-r0 - - openssl/libcrypto3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libssl3@3.1.1-r1 - - openssl/libcrypto3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - openssl/libssl3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libssl3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - apk-tools/apk-tools@2.14.0-r2 - - openssl/libssl3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - busybox/ssl_client@1.36.1-r0 - - openssl/libssl3@3.1.1-r1 - - - -
      • -
    - -
    - -
    - -

    NVD Description

    -

    Note: Versions mentioned in the description apply only to the upstream openssl package and not the openssl package as distributed by Alpine. - See How to fix? for Alpine:3.18 relevant fixed versions and status.

    -

    Issue summary: Processing a maliciously formatted PKCS12 file may lead OpenSSL - to crash leading to a potential Denial of Service attack

    -

    Impact summary: Applications loading files in the PKCS12 format from untrusted - sources might terminate abruptly.

    -

    A file in PKCS12 format can contain certificates and keys and may come from an - untrusted source. The PKCS12 specification allows certain fields to be NULL, but - OpenSSL does not correctly check for this case. This can lead to a NULL pointer - dereference that results in OpenSSL crashing. If an application processes PKCS12 - files from an untrusted source using the OpenSSL APIs then that application will - be vulnerable to this issue.

    -

    OpenSSL APIs that are vulnerable to this are: PKCS12_parse(), - PKCS12_unpack_p7data(), PKCS12_unpack_p7encdata(), PKCS12_unpack_authsafes() - and PKCS12_newpass().

    -

    We have also fixed a similar issue in SMIME_write_PKCS7(). However since this - function is related to writing data we do not consider it security significant.

    -

    The FIPS modules in 3.2, 3.1 and 3.0 are not affected by this issue.

    -

    Remediation

    -

    Upgrade Alpine:3.18 openssl to version 3.1.4-r5 or higher.

    -

    References

    - - -
    - -
    -

    More about this vulnerability

    -
    - -
    -
    -

    CVE-2023-6237

    -
    - -
    - low severity -
    - -
    - -
      -
    • - Package Manager: alpine:3.18 -
      • -
    • - Vulnerable module: - - openssl/libcrypto3 -
      • - -
    • Introduced through: - - docker-image|redis@7.0.11-alpine and openssl/libcrypto3@3.1.1-r1 - -
      • -
    - -
    - - -

    Detailed paths

    - -
      -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - openssl/libcrypto3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libcrypto3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - apk-tools/apk-tools@2.14.0-r2 - - openssl/libcrypto3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - busybox/ssl_client@1.36.1-r0 - - openssl/libcrypto3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libssl3@3.1.1-r1 - - openssl/libcrypto3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - openssl/libssl3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libssl3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - apk-tools/apk-tools@2.14.0-r2 - - openssl/libssl3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - busybox/ssl_client@1.36.1-r0 - - openssl/libssl3@3.1.1-r1 - - - -
      • -
    - -
    - -
    - -

    NVD Description

    -

    This vulnerability has not been analyzed by NVD yet.

    -

    Remediation

    -

    Upgrade Alpine:3.18 openssl to version 3.1.4-r4 or higher.

    - -
    - -
    -

    More about this vulnerability

    -
    - -
    -
    -

    CVE-2024-2511

    -
    - -
    - low severity -
    - -
    - -
      -
    • - Package Manager: alpine:3.18 -
      • -
    • - Vulnerable module: - - openssl/libcrypto3 -
      • - -
    • Introduced through: - - docker-image|redis@7.0.11-alpine and openssl/libcrypto3@3.1.1-r1 - -
      • -
    - -
    - - -

    Detailed paths

    - -
      -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - openssl/libcrypto3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libcrypto3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - apk-tools/apk-tools@2.14.0-r2 - - openssl/libcrypto3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - busybox/ssl_client@1.36.1-r0 - - openssl/libcrypto3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libssl3@3.1.1-r1 - - openssl/libcrypto3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - openssl/libssl3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libssl3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - apk-tools/apk-tools@2.14.0-r2 - - openssl/libssl3@3.1.1-r1 - - - -
      • -
    • - Introduced through: - docker-image|redis@7.0.11-alpine - - busybox/ssl_client@1.36.1-r0 - - openssl/libssl3@3.1.1-r1 - - - -
      • -
    - -
    - -
    - -

    NVD Description

    -

    Note: Versions mentioned in the description apply only to the upstream openssl package and not the openssl package as distributed by Alpine. - See How to fix? for Alpine:3.18 relevant fixed versions and status.

    -

    Issue summary: Some non-default TLS server configurations can cause unbounded - memory growth when processing TLSv1.3 sessions

    -

    Impact summary: An attacker may exploit certain server configurations to trigger - unbounded memory growth that would lead to a Denial of Service

    -

    This problem can occur in TLSv1.3 if the non-default SSL_OP_NO_TICKET option is - being used (but not if early_data support is also configured and the default - anti-replay protection is in use). In this case, under certain conditions, the - session cache can get into an incorrect state and it will fail to flush properly - as it fills. The session cache will continue to grow in an unbounded manner. A - malicious client could deliberately create the scenario for this failure to - force a Denial of Service. It may also happen by accident in normal operation.

    -

    This issue only affects TLS servers supporting TLSv1.3. It does not affect TLS - clients.

    -

    The FIPS modules in 3.2, 3.1 and 3.0 are not affected by this issue. OpenSSL - 1.0.2 is also not affected by this issue.

    -

    Remediation

    -

    Upgrade Alpine:3.18 openssl to version 3.1.4-r6 or higher.

    -

    References

    - - -
    - -
    -

    More about this vulnerability

    -
    - -
    -
    -
    -
    - - - diff --git a/docs/snyk/v2.8.16/argocd-iac-install.html b/docs/snyk/v2.8.17/argocd-iac-install.html similarity index 99% rename from docs/snyk/v2.8.16/argocd-iac-install.html rename to docs/snyk/v2.8.17/argocd-iac-install.html index f72bf79bda97b..e40b425071427 100644 --- a/docs/snyk/v2.8.16/argocd-iac-install.html +++ b/docs/snyk/v2.8.17/argocd-iac-install.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    April 21st 2024, 12:26:06 am (UTC+00:00)

    +

    April 28th 2024, 12:26:25 am (UTC+00:00)

    Scanned the following path: @@ -2545,7 +2545,7 @@

    Container's or Pod's UID could clash with hos
  • - Line number: 20310 + Line number: 20316
    • diff --git a/docs/snyk/v2.8.16/argocd-iac-namespace-install.html b/docs/snyk/v2.8.17/argocd-iac-namespace-install.html similarity index 99% rename from docs/snyk/v2.8.16/argocd-iac-namespace-install.html rename to docs/snyk/v2.8.17/argocd-iac-namespace-install.html index 0ed3548b2ecc0..0cb2e3e2deeea 100644 --- a/docs/snyk/v2.8.16/argocd-iac-namespace-install.html +++ b/docs/snyk/v2.8.17/argocd-iac-namespace-install.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    April 21st 2024, 12:26:14 am (UTC+00:00)

    +

    April 28th 2024, 12:26:34 am (UTC+00:00)

    Scanned the following path: @@ -2545,7 +2545,7 @@

    Container's or Pod's UID could clash with hos
  • - Line number: 1822 + Line number: 1828
    • diff --git a/docs/snyk/v2.8.16/argocd-test.html b/docs/snyk/v2.8.17/argocd-test.html similarity index 96% rename from docs/snyk/v2.8.16/argocd-test.html rename to docs/snyk/v2.8.17/argocd-test.html index 277070c2d0430..b273ffe971176 100644 --- a/docs/snyk/v2.8.16/argocd-test.html +++ b/docs/snyk/v2.8.17/argocd-test.html @@ -7,7 +7,7 @@ Snyk test report - + @@ -456,7 +456,7 @@

    Snyk test report

    -

    April 21st 2024, 12:24:29 am (UTC+00:00)

    +

    April 28th 2024, 12:24:48 am (UTC+00:00)

    Scanned the following paths: @@ -467,8 +467,8 @@

    Snyk test report

    -
    14 known vulnerabilities
    -
    231 vulnerable dependency paths
    +
    15 known vulnerabilities
    +
    237 vulnerable dependency paths
    1856 dependencies

    @@ -4780,6 +4780,221 @@

    References

    More about this vulnerability

    +
    +
    +

    Regular Expression Denial of Service (ReDoS)

    +
    + +
    + medium severity +
    + +
    + +
      +
    • + Manifest file: /argo-cd/argoproj/argo-cd/v2 go.mod +
      • +
    • + Package Manager: golang +
      • +
    • + Vulnerable module: + + github.com/whilp/git-urls +
      • + +
    • Introduced through: + + github.com/argoproj/argo-cd/v2@0.0.0 and github.com/whilp/git-urls@1.0.2 + +
      • +
    + +
    + + +

    Detailed paths

    + +
      +
    • + Introduced through: + github.com/argoproj/argo-cd/v2@0.0.0 + + github.com/whilp/git-urls@1.0.2 + + + +
      • +
    • + Introduced through: + github.com/argoproj/argo-cd/v2@0.0.0 + + github.com/argoproj/notifications-engine/pkg/services@#3446d4ae8520 + + github.com/whilp/git-urls@1.0.2 + + + +
      • +
    • + Introduced through: + github.com/argoproj/argo-cd/v2@0.0.0 + + github.com/argoproj/notifications-engine/pkg/cmd@#3446d4ae8520 + + github.com/argoproj/notifications-engine/pkg/services@#3446d4ae8520 + + github.com/whilp/git-urls@1.0.2 + + + +
      • +
    • + Introduced through: + github.com/argoproj/argo-cd/v2@0.0.0 + + github.com/argoproj/notifications-engine/pkg/subscriptions@#3446d4ae8520 + + github.com/argoproj/notifications-engine/pkg/services@#3446d4ae8520 + + github.com/whilp/git-urls@1.0.2 + + + +
      • +
    • + Introduced through: + github.com/argoproj/argo-cd/v2@0.0.0 + + github.com/argoproj/notifications-engine/pkg/api@#3446d4ae8520 + + github.com/argoproj/notifications-engine/pkg/subscriptions@#3446d4ae8520 + + github.com/argoproj/notifications-engine/pkg/services@#3446d4ae8520 + + github.com/whilp/git-urls@1.0.2 + + + +
      • +
    • + Introduced through: + github.com/argoproj/argo-cd/v2@0.0.0 + + github.com/argoproj/notifications-engine/pkg/controller@#3446d4ae8520 + + github.com/argoproj/notifications-engine/pkg/subscriptions@#3446d4ae8520 + + github.com/argoproj/notifications-engine/pkg/services@#3446d4ae8520 + + github.com/whilp/git-urls@1.0.2 + + + +
      • +
    + +
    + +
    + +

    Overview

    +

    github.com/whilp/git-urls is a Git URLs parser

    +

    Affected versions of this package are vulnerable to Regular Expression Denial of Service (ReDoS) due to the usage of an insecure regular expression in scpSyntax. Exploiting this vulnerability is possible when a long input is provided inside the directory path of the git URL.

    +

    Note: + This vulnerability has existed since commit 4a18977c6eecbf4ce0ca1e486e9ba77072ba4395.

    +

    PoC

    + 
    
+        var payload = strings.Repeat("////", 19000000) //payload used, the number can be tweaked to cause 7 second delay
+        malicious_url := "6en6ar@-:0////" + payload + "\"
+        begin := time.Now()
+        //u, err := giturls.ParseScp("remote_username@10.10.0.2:/remote/directory")// normal git url
+        _, err := giturls.ParseScp(malicious_url)
+        if err != nil {
+        fmt.Errorf("[ - ] Error ->" + err.Error())
+        }
+        //fmt.Println("[ + ] Url --> " + u.Host)
+        elapse := time.Since(begin)
+        fmt.Printf("Function took %s", elapse)
+
    +

    Details

    +

    Denial of Service (DoS) describes a family of attacks, all aimed at making a system inaccessible to its original and legitimate users. There are many types of DoS attacks, ranging from trying to clog the network pipes to the system by generating a large volume of traffic from many machines (a Distributed Denial of Service - DDoS - attack) to sending crafted requests that cause a system to crash or take a disproportional amount of time to process.

    +

    The Regular expression Denial of Service (ReDoS) is a type of Denial of Service attack. Regular expressions are incredibly powerful, but they aren't very intuitive and can ultimately end up making it easy for attackers to take your site down.

    +

    Let’s take the following regular expression as an example:

    + 
    regex = /A(B|C+)+D/
+
    +

    This regular expression accomplishes the following:

    +
      +
    • A The string must start with the letter 'A'
      • +
    • (B|C+)+ The string must then follow the letter A with either the letter 'B' or some number of occurrences of the letter 'C' (the + matches one or more times). The + at the end of this section states that we can look for one or more matches of this section.
      • +
    • D Finally, we ensure this section of the string ends with a 'D'
      • +
    +

    The expression would match inputs such as ABBD, ABCCCCD, ABCBCCCD and ACCCCCD

    +

    It most cases, it doesn't take very long for a regex engine to find a match:

    + 
    $ time node -e '/A(B|C+)+D/.test("ACCCCCCCCCCCCCCCCCCCCCCCCCCCCD")'
+        0.04s user 0.01s system 95% cpu 0.052 total
+        
+        $ time node -e '/A(B|C+)+D/.test("ACCCCCCCCCCCCCCCCCCCCCCCCCCCCX")'
+        1.79s user 0.02s system 99% cpu 1.812 total
+
    +

    The entire process of testing it against a 30 characters long string takes around ~52ms. But when given an invalid string, it takes nearly two seconds to complete the test, over ten times as long as it took to test a valid string. The dramatic difference is due to the way regular expressions get evaluated.

    +

    Most Regex engines will work very similarly (with minor differences). The engine will match the first possible way to accept the current character and proceed to the next one. If it then fails to match the next one, it will backtrack and see if there was another way to digest the previous character. If it goes too far down the rabbit hole only to find out the string doesn’t match in the end, and if many characters have multiple valid regex paths, the number of backtracking steps can become very large, resulting in what is known as catastrophic backtracking.

    +

    Let's look at how our expression runs into this problem, using a shorter string: "ACCCX". While it seems fairly straightforward, there are still four different ways that the engine could match those three C's:

    +
      +
    1. CCC
      2. +
    2. CC+C
      3. +
    3. C+CC
      4. +
    4. C+C+C.
      5. +
    +

    The engine has to try each of those combinations to see if any of them potentially match against the expression. When you combine that with the other steps the engine must take, we can use RegEx 101 debugger to see the engine has to take a total of 38 steps before it can determine the string doesn't match.

    +

    From there, the number of steps the engine must use to validate a string just continues to grow.

    + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
    StringNumber of C'sNumber of steps
    ACCCX338
    ACCCCX471
    ACCCCCX5136
    ACCCCCCCCCCCCCCX1465,553
    +

    By the time the string includes 14 C's, the engine has to take over 65,000 steps just to see if the string is valid. These extreme situations can cause them to work very slowly (exponentially related to input size, as shown above), allowing an attacker to exploit this and can cause the service to excessively consume CPU, resulting in a Denial of Service.

    +

    Remediation

    +

    There is no fixed version for github.com/whilp/git-urls.

    +

    References

    + + +
    + +
    +

    More about this vulnerability

    +
    +

    MPL-2.0 license

    diff --git a/docs/snyk/v2.9.12/ghcr.io_dexidp_dex_v2.37.0.html b/docs/snyk/v2.8.17/ghcr.io_dexidp_dex_v2.37.0.html similarity index 98% rename from docs/snyk/v2.9.12/ghcr.io_dexidp_dex_v2.37.0.html rename to docs/snyk/v2.8.17/ghcr.io_dexidp_dex_v2.37.0.html index ac1eea048f911..7e842f96a5cba 100644 --- a/docs/snyk/v2.9.12/ghcr.io_dexidp_dex_v2.37.0.html +++ b/docs/snyk/v2.8.17/ghcr.io_dexidp_dex_v2.37.0.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    April 21st 2024, 12:22:25 am (UTC+00:00)

    +

    April 28th 2024, 12:24:54 am (UTC+00:00)

    Scanned the following paths: @@ -2045,6 +2045,8 @@

    References

  • https://www.openssl.org/news/secadv/20240109.txt
  • http://www.openwall.com/lists/oss-security/2024/01/09/1
  • https://security.netapp.com/advisory/ntap-20240216-0009/
    • +
  • https://security.netapp.com/advisory/ntap-20240426-0008/
    • +
  • https://security.netapp.com/advisory/ntap-20240426-0013/
    • @@ -4406,9 +4408,37 @@

    Detailed paths

    NVD Description

    -

    This vulnerability has not been analyzed by NVD yet.

    +

    Note: Versions mentioned in the description apply only to the upstream openssl package and not the openssl package as distributed by Alpine. + See How to fix? for Alpine:3.18 relevant fixed versions and status.

    +

    Issue summary: Checking excessively long invalid RSA public keys may take + a long time.

    +

    Impact summary: Applications that use the function EVP_PKEY_public_check() + to check RSA public keys may experience long delays. Where the key that + is being checked has been obtained from an untrusted source this may lead + to a Denial of Service.

    +

    When function EVP_PKEY_public_check() is called on RSA public keys, + a computation is done to confirm that the RSA modulus, n, is composite. + For valid RSA keys, n is a product of two or more large primes and this + computation completes quickly. However, if n is an overly large prime, + then this computation would take a long time.

    +

    An application that calls EVP_PKEY_public_check() and supplies an RSA key + obtained from an untrusted source could be vulnerable to a Denial of Service + attack.

    +

    The function EVP_PKEY_public_check() is not called from other OpenSSL + functions however it is called from the OpenSSL pkey command line + application. For that reason that application is also vulnerable if used + with the '-pubin' and '-check' options on untrusted data.

    +

    The OpenSSL SSL/TLS implementation is not affected by this issue.

    +

    The OpenSSL 3.0 and 3.1 FIPS providers are affected by this issue.

    Remediation

    Upgrade Alpine:3.18 openssl to version 3.1.4-r4 or higher.

    +

    References

    +
    diff --git a/docs/snyk/v2.10.7/haproxy_2.6.14-alpine.html b/docs/snyk/v2.8.17/haproxy_2.6.14-alpine.html similarity index 96% rename from docs/snyk/v2.10.7/haproxy_2.6.14-alpine.html rename to docs/snyk/v2.8.17/haproxy_2.6.14-alpine.html index 9fa7c9a0e8cbc..1c1a5ba55c308 100644 --- a/docs/snyk/v2.10.7/haproxy_2.6.14-alpine.html +++ b/docs/snyk/v2.8.17/haproxy_2.6.14-alpine.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    April 21st 2024, 12:20:17 am (UTC+00:00)

    +

    April 28th 2024, 12:24:57 am (UTC+00:00)

    Scanned the following path: @@ -1036,6 +1036,8 @@

    References

  • https://www.openssl.org/news/secadv/20240109.txt
  • http://www.openwall.com/lists/oss-security/2024/01/09/1
  • https://security.netapp.com/advisory/ntap-20240216-0009/
    • +
  • https://security.netapp.com/advisory/ntap-20240426-0008/
    • +
  • https://security.netapp.com/advisory/ntap-20240426-0013/
    • @@ -1357,9 +1359,37 @@

    Detailed paths

    NVD Description

    -

    This vulnerability has not been analyzed by NVD yet.

    +

    Note: Versions mentioned in the description apply only to the upstream openssl package and not the openssl package as distributed by Alpine. + See How to fix? for Alpine:3.18 relevant fixed versions and status.

    +

    Issue summary: Checking excessively long invalid RSA public keys may take + a long time.

    +

    Impact summary: Applications that use the function EVP_PKEY_public_check() + to check RSA public keys may experience long delays. Where the key that + is being checked has been obtained from an untrusted source this may lead + to a Denial of Service.

    +

    When function EVP_PKEY_public_check() is called on RSA public keys, + a computation is done to confirm that the RSA modulus, n, is composite. + For valid RSA keys, n is a product of two or more large primes and this + computation completes quickly. However, if n is an overly large prime, + then this computation would take a long time.

    +

    An application that calls EVP_PKEY_public_check() and supplies an RSA key + obtained from an untrusted source could be vulnerable to a Denial of Service + attack.

    +

    The function EVP_PKEY_public_check() is not called from other OpenSSL + functions however it is called from the OpenSSL pkey command line + application. For that reason that application is also vulnerable if used + with the '-pubin' and '-check' options on untrusted data.

    +

    The OpenSSL SSL/TLS implementation is not affected by this issue.

    +

    The OpenSSL 3.0 and 3.1 FIPS providers are affected by this issue.

    Remediation

    Upgrade Alpine:3.18 openssl to version 3.1.4-r4 or higher.

    +

    References

    +
    diff --git a/docs/snyk/v2.9.12/quay.io_argoproj_argocd_v2.9.12.html b/docs/snyk/v2.8.17/quay.io_argoproj_argocd_v2.8.17.html similarity index 91% rename from docs/snyk/v2.9.12/quay.io_argoproj_argocd_v2.9.12.html rename to docs/snyk/v2.8.17/quay.io_argoproj_argocd_v2.8.17.html index 5e8abae49720a..9a0771753b320 100644 --- a/docs/snyk/v2.9.12/quay.io_argoproj_argocd_v2.9.12.html +++ b/docs/snyk/v2.8.17/quay.io_argoproj_argocd_v2.8.17.html @@ -7,7 +7,7 @@ Snyk test report - + @@ -456,23 +456,23 @@

    Snyk test report

    -

    April 21st 2024, 12:22:46 am (UTC+00:00)

    +

    April 28th 2024, 12:25:15 am (UTC+00:00)

    Scanned the following paths:
      -
    • quay.io/argoproj/argocd:v2.9.12/argoproj/argocd/Dockerfile (deb)
      • -
    • quay.io/argoproj/argocd:v2.9.12/argoproj/argo-cd/v2//usr/local/bin/argocd (gomodules)
      • -
    • quay.io/argoproj/argocd:v2.9.12//usr/local/bin/kustomize (gomodules)
      • -
    • quay.io/argoproj/argocd:v2.9.12/helm/v3//usr/local/bin/helm (gomodules)
      • -
    • quay.io/argoproj/argocd:v2.9.12/git-lfs/git-lfs//usr/bin/git-lfs (gomodules)
      • +
    • quay.io/argoproj/argocd:v2.8.17/argoproj/argocd/Dockerfile (deb)
      • +
    • quay.io/argoproj/argocd:v2.8.17/argoproj/argo-cd/v2//usr/local/bin/argocd (gomodules)
      • +
    • quay.io/argoproj/argocd:v2.8.17/kustomize/kustomize/v5//usr/local/bin/kustomize (gomodules)
      • +
    • quay.io/argoproj/argocd:v2.8.17/helm/v3//usr/local/bin/helm (gomodules)
      • +
    • quay.io/argoproj/argocd:v2.8.17/git-lfs/git-lfs//usr/bin/git-lfs (gomodules)
    -
    37 known vulnerabilities
    -
    182 vulnerable dependency paths
    -
    2189 dependencies
    +
    38 known vulnerabilities
    +
    172 vulnerable dependency paths
    +
    2120 dependencies
    @@ -481,7 +481,7 @@

    Snyk test report

    -

    Denial of Service (DoS)

    +

    Allocation of Resources Without Limits or Throttling

    @@ -492,7 +492,7 @@

    Denial of Service (DoS)

    • - Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argo-cd/v2 /usr/local/bin/argocd
    • Package Manager: golang @@ -500,12 +500,12 @@

      Denial of Service (DoS)

    • Vulnerable module: - google.golang.org/grpc + golang.org/x/net/http2
    • Introduced through: - github.com/argoproj/argo-cd/v2@* and google.golang.org/grpc@v1.56.2 + github.com/argoproj/argo-cd/v2@* and golang.org/x/net/http2@v0.19.0
    @@ -520,7 +520,87 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@* - google.golang.org/grpc@v1.56.2 + golang.org/x/net/http2@v0.19.0 + + + + +
  • + Introduced through: + helm.sh/helm/v3@* + + golang.org/x/net/http2@v0.8.0 + + + +
    • + + +
    + +
    + +

    Overview

    +

    golang.org/x/net/http2 is a work-in-progress HTTP/2 implementation for Go.

    +

    Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling when reading header data from CONTINUATION frames. As part of the HPACK flow, all incoming HEADERS and CONTINUATION frames are read even if their payloads exceed MaxHeaderBytes and will be discarded. An attacker can send excessive data over a connection to render it unresponsive.

    +

    Remediation

    +

    Upgrade golang.org/x/net/http2 to version 0.23.0 or higher.

    +

    References

    + + +
    + +
    +

    More about this vulnerability

    +
    + +
    +
    +

    Denial of Service (DoS)

    +
    + +
    + high severity +
    + +
    + +
      +
    • + Manifest file: quay.io/argoproj/argocd:v2.8.17/helm/v3 /usr/local/bin/helm +
      • +
    • + Package Manager: golang +
      • +
    • + Vulnerable module: + + golang.org/x/net/http2 +
      • + +
    • Introduced through: + + helm.sh/helm/v3@* and golang.org/x/net/http2@v0.8.0 + +
      • +
    + +
    + + +

    Detailed paths

    + +
      +
    • + Introduced through: + helm.sh/helm/v3@* + + golang.org/x/net/http2@v0.8.0 @@ -532,10 +612,10 @@

      Detailed paths

      Overview

      -

      google.golang.org/grpc is a Go implementation of gRPC

      +

      golang.org/x/net/http2 is a work-in-progress HTTP/2 implementation for Go.

      Affected versions of this package are vulnerable to Denial of Service (DoS) in the implementation of the HTTP/2 protocol. An attacker can cause a denial of service (including via DDoS) by rapidly resetting many streams through request cancellation.

      Remediation

      -

      Upgrade google.golang.org/grpc to version 1.56.3, 1.57.1, 1.58.3 or higher.

      +

      Upgrade golang.org/x/net/http2 to version 0.17.0 or higher.

      References

    -

    Allocation of Resources Without Limits or Throttling

    +

    Denial of Service (DoS)

    @@ -574,7 +654,7 @@

    Allocation of Resources Without Limits or Throttling

  • - Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argo-cd/v2 /usr/local/bin/argocd
  • Package Manager: golang @@ -582,12 +662,12 @@

    Allocation of Resources Without Limits or Throttling

    Vulnerable module: - golang.org/x/net/http2 + github.com/go-jose/go-jose/v3
  • Introduced through: - github.com/argoproj/argo-cd/v2@* and golang.org/x/net/http2@v0.19.0 + github.com/argoproj/argo-cd/v2@* and github.com/go-jose/go-jose/v3@v3.0.0
    • @@ -602,16 +682,88 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@* - golang.org/x/net/http2@v0.19.0 + github.com/go-jose/go-jose/v3@v3.0.0 + + +
    + +
    + +

    Overview

    +

    Affected versions of this package are vulnerable to Denial of Service (DoS) when decrypting JWE inputs. An attacker can cause a denial-of-service by providing a PBES2 encrypted JWE blob with a very large p2c value.

    +

    Details

    +

    Denial of Service (DoS) describes a family of attacks, all aimed at making a system inaccessible to its intended and legitimate users.

    +

    Unlike other vulnerabilities, DoS attacks usually do not aim at breaching security. Rather, they are focused on making websites and services unavailable to genuine users resulting in downtime.

    +

    One popular Denial of Service vulnerability is DDoS (a Distributed Denial of Service), an attack that attempts to clog network pipes to the system by generating a large volume of traffic from many machines.

    +

    When it comes to open source libraries, DoS vulnerabilities allow attackers to trigger such a crash or crippling of the service by using a flaw either in the application code or from the use of open source libraries.

    +

    Two common types of DoS vulnerabilities:

    +
      +

    • High CPU/Memory Consumption- An attacker sending crafted requests that could cause the system to take a disproportionate amount of time to process. For example, commons-fileupload:commons-fileupload.

      +
      • +

    • Crash - An attacker sending crafted requests that could cause the system to crash. For Example, npm ws package

      +
      • +
    +

    Remediation

    +

    Upgrade github.com/go-jose/go-jose/v3 to version 3.0.1 or higher.

    +

    References

    + + +
    + +
    +

    More about this vulnerability

    +
    + +
    +
    +

    Directory Traversal

    +
    + +
    + high severity +
    + +
    + +
      +
    • + Manifest file: quay.io/argoproj/argocd:v2.8.17/helm/v3 /usr/local/bin/helm +
      • +
    • + Package Manager: golang +
      • +
    • + Vulnerable module: + + github.com/cyphar/filepath-securejoin +
      • + +
    • Introduced through: + + helm.sh/helm/v3@* and github.com/cyphar/filepath-securejoin@v0.2.3 + +
      • +
    + +
    + + +

    Detailed paths

    + +
    • Introduced through: helm.sh/helm/v3@* - golang.org/x/net/http2@v0.17.0 + github.com/cyphar/filepath-securejoin@v0.2.3 @@ -623,22 +775,41 @@

      Detailed paths

      Overview

      -

      golang.org/x/net/http2 is a work-in-progress HTTP/2 implementation for Go.

      -

      Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling when reading header data from CONTINUATION frames. As part of the HPACK flow, all incoming HEADERS and CONTINUATION frames are read even if their payloads exceed MaxHeaderBytes and will be discarded. An attacker can send excessive data over a connection to render it unresponsive.

      +

      Affected versions of this package are vulnerable to Directory Traversal via the filepath.FromSlash() function, allwoing attackers to generate paths that were outside of the provided rootfs.

      +

      Note: + This vulnerability is only exploitable on Windows OS.

      +

      Details

      +

      A Directory Traversal attack (also known as path traversal) aims to access files and directories that are stored outside the intended folder. By manipulating files with "dot-dot-slash (../)" sequences and its variations, or by using absolute file paths, it may be possible to access arbitrary files and directories stored on file system, including application source code, configuration, and other critical system files.

      +

      Directory Traversal vulnerabilities can be generally divided into two types:

      +
        +
      • Information Disclosure: Allows the attacker to gain information about the folder structure or read the contents of sensitive files on the system.
        • +
      +

      st is a module for serving static files on web pages, and contains a vulnerability of this type. In our example, we will serve files from the public route.

      +

      If an attacker requests the following URL from our server, it will in turn leak the sensitive private key of the root user.

      + 
      curl http://localhost:8080/public/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/root/.ssh/id_rsa
+
      +

      Note %2e is the URL encoded version of . (dot).

      +
        +
      • Writing arbitrary files: Allows the attacker to create or replace existing files. This type of vulnerability is also known as Zip-Slip.
        • +
      +

      One way to achieve this is by using a malicious zip archive that holds path traversal filenames. When each filename in the zip archive gets concatenated to the target extraction folder, without validation, the final path ends up outside of the target folder. If an executable or a configuration file is overwritten with a file containing malicious code, the problem can turn into an arbitrary code execution issue quite easily.

      +

      The following is an example of a zip archive with one benign file and one malicious file. Extracting the malicious file will result in traversing out of the target folder, ending up in /root/.ssh/ overwriting the authorized_keys file:

      + 
      2018-04-15 22:04:29 .....           19           19  good.txt
+        2018-04-15 22:04:42 .....           20           20  ../../../../../../root/.ssh/authorized_keys
+

      Remediation

      -

      Upgrade golang.org/x/net/http2 to version 0.23.0 or higher.

      +

      Upgrade github.com/cyphar/filepath-securejoin to version 0.2.4 or higher.

      References

      -

      More about this vulnerability

      +

      More about this vulnerability

    @@ -654,7 +825,7 @@

    CVE-2020-22916

    • - Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argocd Dockerfile
    • Package Manager: ubuntu:22.04 @@ -667,7 +838,7 @@

      CVE-2020-22916

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 and xz-utils/liblzma5@5.2.5-2ubuntu1 + docker-image|quay.io/argoproj/argocd@v2.8.17 and xz-utils/liblzma5@5.2.5-2ubuntu1
    @@ -680,7 +851,7 @@

    Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 xz-utils/liblzma5@5.2.5-2ubuntu1 @@ -730,7 +901,7 @@

      CVE-2023-51767

      • - Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argocd Dockerfile
      • Package Manager: ubuntu:22.04 @@ -743,7 +914,7 @@

        CVE-2023-51767

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 and openssh/openssh-client@1:8.9p1-3ubuntu0.6 + docker-image|quay.io/argoproj/argocd@v2.8.17 and openssh/openssh-client@1:8.9p1-3ubuntu0.7
      @@ -756,9 +927,9 @@

      Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 - openssh/openssh-client@1:8.9p1-3ubuntu0.6 + openssh/openssh-client@1:8.9p1-3ubuntu0.7 @@ -806,7 +977,7 @@

        Information Exposure

        • - Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argocd Dockerfile
        • Package Manager: ubuntu:22.04 @@ -819,7 +990,7 @@

          Information Exposure

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 and libgcrypt20@1.9.4-3ubuntu3 + docker-image|quay.io/argoproj/argocd@v2.8.17 and libgcrypt20@1.9.4-3ubuntu3
        @@ -832,7 +1003,7 @@

        Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 libgcrypt20@1.9.4-3ubuntu3 @@ -841,7 +1012,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 gnupg2/dirmngr@2.2.27-3ubuntu2.1 @@ -852,7 +1023,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -863,7 +1034,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 apt@2.4.12 @@ -876,7 +1047,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 apt@2.4.12 @@ -889,7 +1060,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -902,7 +1073,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -915,7 +1086,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -928,7 +1099,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -941,7 +1112,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -954,7 +1125,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -967,7 +1138,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 apt@2.4.12 @@ -997,6 +1168,7 @@

          References

        • http://people.ubuntu.com/~ubuntu-security/cve/CVE-2024-2236
        • https://access.redhat.com/security/cve/CVE-2024-2236
        • https://bugzilla.redhat.com/show_bug.cgi?id=2268268
          • +
        • https://bugzilla.redhat.com/show_bug.cgi?id=2245218
        @@ -1005,6 +1177,78 @@

        References

        More about this vulnerability

    +
    +
    +

    CVE-2024-32487

    +
    + +
    + medium severity +
    + +
    + +
      +
    • + Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argocd Dockerfile +
      • +
    • + Package Manager: ubuntu:22.04 +
      • +
    • + Vulnerable module: + + less +
      • + +
    • Introduced through: + + docker-image|quay.io/argoproj/argocd@v2.8.17 and less@590-1ubuntu0.22.04.2 + +
      • +
    + +
    + + +

    Detailed paths

    + +
      +
    • + Introduced through: + docker-image|quay.io/argoproj/argocd@v2.8.17 + + less@590-1ubuntu0.22.04.2 + + + +
      • +
    + +
    + +
    + +

    NVD Description

    +

    Note: Versions mentioned in the description apply only to the upstream less package and not the less package as distributed by Ubuntu. + See How to fix? for Ubuntu:22.04 relevant fixed versions and status.

    +

    less through 653 allows OS command execution via a newline character in the name of a file, because quoting is mishandled in filename.c. Exploitation typically requires use with attacker-controlled file names, such as the files extracted from an untrusted archive. Exploitation also requires the LESSOPEN environment variable, but this is set by default in many common cases.

    +

    Remediation

    +

    There is no fixed version for Ubuntu:22.04 less.

    +

    References

    + + +
    + +
    +

    More about this vulnerability

    +
    +

    CVE-2024-26461

    @@ -1018,7 +1262,7 @@

    CVE-2024-26461

    • - Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argocd Dockerfile
    • Package Manager: ubuntu:22.04 @@ -1031,7 +1275,7 @@

      CVE-2024-26461

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 and krb5/libk5crypto3@1.19.2-2ubuntu0.3 + docker-image|quay.io/argoproj/argocd@v2.8.17 and krb5/libk5crypto3@1.19.2-2ubuntu0.3
    @@ -1044,7 +1288,7 @@

    Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 krb5/libk5crypto3@1.19.2-2ubuntu0.3 @@ -1053,7 +1297,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 adduser@3.118ubuntu5 @@ -1074,7 +1318,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 adduser@3.118ubuntu5 @@ -1097,7 +1341,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 krb5/libkrb5-3@1.19.2-2ubuntu0.3 @@ -1106,7 +1350,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 adduser@3.118ubuntu5 @@ -1127,7 +1371,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -1136,9 +1380,9 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 - openssh/openssh-client@1:8.9p1-3ubuntu0.6 + openssh/openssh-client@1:8.9p1-3ubuntu0.7 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -1147,7 +1391,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 git@1:2.34.1-1ubuntu1.10 @@ -1160,7 +1404,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 git@1:2.34.1-1ubuntu1.10 @@ -1175,7 +1419,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 adduser@3.118ubuntu5 @@ -1194,7 +1438,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 krb5/libkrb5support0@1.19.2-2ubuntu0.3 @@ -1238,7 +1482,7 @@

      CVE-2024-26462

      • - Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argocd Dockerfile
      • Package Manager: ubuntu:22.04 @@ -1251,7 +1495,7 @@

        CVE-2024-26462

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 and krb5/libk5crypto3@1.19.2-2ubuntu0.3 + docker-image|quay.io/argoproj/argocd@v2.8.17 and krb5/libk5crypto3@1.19.2-2ubuntu0.3
      @@ -1264,7 +1508,7 @@

      Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 krb5/libk5crypto3@1.19.2-2ubuntu0.3 @@ -1273,7 +1517,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 adduser@3.118ubuntu5 @@ -1294,7 +1538,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 adduser@3.118ubuntu5 @@ -1317,7 +1561,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 krb5/libkrb5-3@1.19.2-2ubuntu0.3 @@ -1326,7 +1570,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 adduser@3.118ubuntu5 @@ -1347,7 +1591,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -1356,9 +1600,9 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 - openssh/openssh-client@1:8.9p1-3ubuntu0.6 + openssh/openssh-client@1:8.9p1-3ubuntu0.7 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -1367,7 +1611,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 git@1:2.34.1-1ubuntu1.10 @@ -1380,7 +1624,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 git@1:2.34.1-1ubuntu1.10 @@ -1395,7 +1639,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 adduser@3.118ubuntu5 @@ -1414,7 +1658,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 krb5/libkrb5support0@1.19.2-2ubuntu0.3 @@ -1458,7 +1702,7 @@

        CVE-2024-26458

        • - Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argocd Dockerfile
        • Package Manager: ubuntu:22.04 @@ -1471,7 +1715,7 @@

          CVE-2024-26458

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 and krb5/libk5crypto3@1.19.2-2ubuntu0.3 + docker-image|quay.io/argoproj/argocd@v2.8.17 and krb5/libk5crypto3@1.19.2-2ubuntu0.3
        @@ -1484,7 +1728,7 @@

        Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 krb5/libk5crypto3@1.19.2-2ubuntu0.3 @@ -1493,7 +1737,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 adduser@3.118ubuntu5 @@ -1514,7 +1758,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 adduser@3.118ubuntu5 @@ -1537,7 +1781,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 krb5/libkrb5-3@1.19.2-2ubuntu0.3 @@ -1546,7 +1790,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 adduser@3.118ubuntu5 @@ -1567,7 +1811,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -1576,9 +1820,9 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 - openssh/openssh-client@1:8.9p1-3ubuntu0.6 + openssh/openssh-client@1:8.9p1-3ubuntu0.7 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -1587,7 +1831,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 git@1:2.34.1-1ubuntu1.10 @@ -1600,7 +1844,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 git@1:2.34.1-1ubuntu1.10 @@ -1615,7 +1859,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 adduser@3.118ubuntu5 @@ -1634,7 +1878,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 krb5/libkrb5support0@1.19.2-2ubuntu0.3 @@ -1678,7 +1922,7 @@

          LGPL-3.0 license

          • - Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argo-cd/v2 /usr/local/bin/argocd
          • Package Manager: golang @@ -1738,7 +1982,7 @@

            Infinite loop

            • - Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argo-cd/v2 /usr/local/bin/argocd
            • Package Manager: golang @@ -1809,7 +2053,7 @@

              Stack-based Buffer Overflow

              • - Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argo-cd/v2 /usr/local/bin/argocd
              • Package Manager: golang @@ -1877,7 +2121,7 @@

                Infinite loop

                • - Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argo-cd/v2 /usr/local/bin/argocd
                • Package Manager: golang @@ -1937,7 +2181,7 @@

                  References

    -

    Authentication Bypass by Capture-replay

    +

    Allocation of Resources Without Limits or Throttling

    @@ -1948,7 +2192,7 @@

    Authentication Bypass by Capture-replay

    • - Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.8.17/helm/v3 /usr/local/bin/helm
    • Package Manager: golang @@ -1956,12 +2200,12 @@

      Authentication Bypass by Capture-replay

    • Vulnerable module: - golang.org/x/crypto/ssh + golang.org/x/net/http2
    • Introduced through: - github.com/argoproj/argo-cd/v2@* and golang.org/x/crypto/ssh@v0.16.0 + helm.sh/helm/v3@* and golang.org/x/net/http2@v0.8.0
    @@ -1974,9 +2218,9 @@

    Detailed paths

    • Introduced through: - github.com/argoproj/argo-cd/v2@* + helm.sh/helm/v3@* - golang.org/x/crypto/ssh@v0.16.0 + golang.org/x/net/http2@v0.8.0 @@ -1988,333 +2232,28 @@

      Detailed paths

      Overview

      -

      golang.org/x/crypto/ssh is a SSH client and server

      -

      Affected versions of this package are vulnerable to Authentication Bypass by Capture-replay during the establishment of the secure channel. An attacker can manipulate handshake sequence numbers to delete messages sent immediately after the channel is established.

      +

      golang.org/x/net/http2 is a work-in-progress HTTP/2 implementation for Go.

      +

      Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling when MaxConcurrentStreams handler goroutines running. A a handler is started until one of the existing handlers exits.

      Note:

      -
        -

      1. Sequence numbers are only validated once the channel is established and arbitrary messages are allowed during the handshake, allowing them to manipulate the sequence numbers.

        -
        2. -

      2. The potential consequences of the general Terrapin attack are dependent on the messages exchanged after the handshake concludes. If you are using a custom SSH service and do not resort to the authentication protocol, you should check that dropping the first few messages of a connection does not yield security risks.

        -
        3. -
      -

      Impact:

      -

      While cryptographically novel, there is no discernable impact on the integrity of SSH traffic beyond giving the attacker the ability to delete the message that enables some features related to keystroke timing obfuscation. To successfully carry out the exploitation, the connection needs to be protected using either the ChaCha20-Poly1305 or CBC with Encrypt-then-MAC encryption methods. The attacker must also be able to intercept and modify the connection's traffic.

      -

      Workaround

      -

      Temporarily disable the affected chacha20-poly1305@openssh.com encryption and *-etm@openssh.com MAC algorithms in the affected configuration, and use unaffected algorithms like AES-GCM instead.

      +

      This issue is related to CVE-2023-44487

      Remediation

      -

      Upgrade golang.org/x/crypto/ssh to version 0.17.0 or higher.

      +

      Upgrade golang.org/x/net/http2 to version 0.17.0 or higher.

      References

      -

      More about this vulnerability

      +

      More about this vulnerability

    -

    Information Exposure

    -
    - -
    - medium severity -
    - -
    - -
      -
    • - Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argocd Dockerfile -
      • -
    • - Package Manager: ubuntu:22.04 -
      • -
    • - Vulnerable module: - - gnutls28/libgnutls30 -
      • - -
    • Introduced through: - - docker-image|quay.io/argoproj/argocd@v2.9.12 and gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - -
      • -
    - -
    - - -

    Detailed paths

    - -
      -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
      • -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 - - apt@2.4.12 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
      • -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 - - gnupg2/dirmngr@2.2.27-3ubuntu2.1 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
      • -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 - - git@1:2.34.1-1ubuntu1.10 - - curl/libcurl3-gnutls@7.81.0-1ubuntu1.16 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
      • -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 - - git@1:2.34.1-1ubuntu1.10 - - curl/libcurl3-gnutls@7.81.0-1ubuntu1.16 - - openldap/libldap-2.5-0@2.5.17+dfsg-0ubuntu0.22.04.1 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
      • -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 - - git@1:2.34.1-1ubuntu1.10 - - curl/libcurl3-gnutls@7.81.0-1ubuntu1.16 - - rtmpdump/librtmp1@2.4+20151223.gitfa8646d.1-2build4 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
      • -
    - -
    - -
    - -

    NVD Description

    -

    Note: Versions mentioned in the description apply only to the upstream gnutls28 package and not the gnutls28 package as distributed by Ubuntu. - See How to fix? for Ubuntu:22.04 relevant fixed versions and status.

    -

    A flaw was found in GnuTLS. The Minerva attack is a cryptographic vulnerability that exploits deterministic behavior in systems like GnuTLS, leading to side-channel leaks. In specific scenarios, such as when using the GNUTLS_PRIVKEY_FLAG_REPRODUCIBLE flag, it can result in a noticeable step in nonce size from 513 to 512 bits, exposing a potential timing side-channel.

    -

    Remediation

    -

    Upgrade Ubuntu:22.04 gnutls28 to version 3.7.3-4ubuntu1.5 or higher.

    -

    References

    - - -
    - -
    -

    More about this vulnerability

    -
    - -
    -
    -

    Uncaught Exception

    -
    - -
    - medium severity -
    - -
    - -
      -
    • - Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argocd Dockerfile -
      • -
    • - Package Manager: ubuntu:22.04 -
      • -
    • - Vulnerable module: - - gnutls28/libgnutls30 -
      • - -
    • Introduced through: - - docker-image|quay.io/argoproj/argocd@v2.9.12 and gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - -
      • -
    - -
    - - -

    Detailed paths

    - -
      -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
      • -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 - - apt@2.4.12 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
      • -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 - - gnupg2/dirmngr@2.2.27-3ubuntu2.1 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
      • -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 - - git@1:2.34.1-1ubuntu1.10 - - curl/libcurl3-gnutls@7.81.0-1ubuntu1.16 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
      • -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 - - git@1:2.34.1-1ubuntu1.10 - - curl/libcurl3-gnutls@7.81.0-1ubuntu1.16 - - openldap/libldap-2.5-0@2.5.17+dfsg-0ubuntu0.22.04.1 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
      • -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 - - git@1:2.34.1-1ubuntu1.10 - - curl/libcurl3-gnutls@7.81.0-1ubuntu1.16 - - rtmpdump/librtmp1@2.4+20151223.gitfa8646d.1-2build4 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
      • -
    - -
    - -
    - -

    NVD Description

    -

    Note: Versions mentioned in the description apply only to the upstream gnutls28 package and not the gnutls28 package as distributed by Ubuntu. - See How to fix? for Ubuntu:22.04 relevant fixed versions and status.

    -

    A flaw has been discovered in GnuTLS where an application crash can be induced when attempting to verify a specially crafted .pem bundle using the "certtool --verify-chain" command.

    -

    Remediation

    -

    Upgrade Ubuntu:22.04 gnutls28 to version 3.7.3-4ubuntu1.5 or higher.

    -

    References

    - - -
    - -
    -

    More about this vulnerability

    -
    - -
    -
    -

    CVE-2024-2961

    +

    Authentication Bypass by Capture-replay

    @@ -2325,20 +2264,20 @@

    CVE-2024-2961

    • - Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argo-cd/v2 /usr/local/bin/argocd
    • - Package Manager: ubuntu:22.04 + Package Manager: golang
    • Vulnerable module: - glibc/libc-bin + golang.org/x/crypto/ssh
    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 and glibc/libc-bin@2.35-0ubuntu3.6 + github.com/argoproj/argo-cd/v2@* and golang.org/x/crypto/ssh@v0.16.0
    @@ -2351,18 +2290,9 @@

    Detailed paths

    @@ -2407,7 +2362,7 @@

    MPL-2.0 license

    • - Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argo-cd/v2 /usr/local/bin/argocd
    • Package Manager: golang @@ -2467,7 +2422,7 @@

      MPL-2.0 license

      • - Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argo-cd/v2 /usr/local/bin/argocd
      • Package Manager: golang @@ -2527,7 +2482,7 @@

        MPL-2.0 license

        • - Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argo-cd/v2 /usr/local/bin/argocd
        • Package Manager: golang @@ -2587,7 +2542,7 @@

          MPL-2.0 license

          • - Manifest file: quay.io/argoproj/argocd:v2.9.12/helm/v3 /usr/local/bin/helm + Manifest file: quay.io/argoproj/argocd:v2.8.17/helm/v3 /usr/local/bin/helm
          • Package Manager: golang @@ -2647,7 +2602,7 @@

            MPL-2.0 license

            • - Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argo-cd/v2 /usr/local/bin/argocd
            • Package Manager: golang @@ -2707,7 +2662,7 @@

              MPL-2.0 license

              • - Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argo-cd/v2 /usr/local/bin/argocd
              • Package Manager: golang @@ -2767,7 +2722,7 @@

                Improper Handling of Highly Compressed Data (Data Amplif
                • - Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argo-cd/v2 /usr/local/bin/argocd
                • Package Manager: golang @@ -2780,7 +2735,7 @@

                  Improper Handling of Highly Compressed Data (Data Amplif
                • Introduced through: - github.com/argoproj/argo-cd/v2@* and github.com/go-jose/go-jose/v3@v3.0.1 + github.com/argoproj/argo-cd/v2@* and github.com/go-jose/go-jose/v3@v3.0.0

                @@ -2795,7 +2750,7 @@

                Detailed paths

                Introduced through: github.com/argoproj/argo-cd/v2@* - github.com/go-jose/go-jose/v3@v3.0.1 + github.com/go-jose/go-jose/v3@v3.0.0 @@ -2836,7 +2791,7 @@

                CVE-2023-7008

                • - Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argocd Dockerfile
                • Package Manager: ubuntu:22.04 @@ -2849,7 +2804,7 @@

                  CVE-2023-7008

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 and systemd/libsystemd0@249.11-0ubuntu3.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 and systemd/libsystemd0@249.11-0ubuntu3.12
                @@ -2862,7 +2817,7 @@

                Detailed paths

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 systemd/libsystemd0@249.11-0ubuntu3.12 @@ -2871,7 +2826,7 @@

                  Detailed paths

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 apt@2.4.12 @@ -2882,7 +2837,7 @@

                  Detailed paths

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 procps/libprocps8@2:3.3.17-6ubuntu2.1 @@ -2893,7 +2848,7 @@

                  Detailed paths

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 util-linux@2.37.2-4ubuntu3.4 @@ -2904,7 +2859,7 @@

                  Detailed paths

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 util-linux/bsdutils@1:2.37.2-4ubuntu3.4 @@ -2915,7 +2870,7 @@

                  Detailed paths

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 apt@2.4.12 @@ -2928,7 +2883,7 @@

                  Detailed paths

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 systemd/libudev1@249.11-0ubuntu3.12 @@ -2937,7 +2892,7 @@

                  Detailed paths

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 libfido2/libfido2-1@1.10.0-1 @@ -2948,7 +2903,7 @@

                  Detailed paths

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 util-linux@2.37.2-4ubuntu3.4 @@ -2959,7 +2914,7 @@

                  Detailed paths

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 apt@2.4.12 @@ -3012,7 +2967,7 @@

                  Arbitrary Code Injection

                  • - Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argocd Dockerfile
                  • Package Manager: ubuntu:22.04 @@ -3025,7 +2980,7 @@

                    Arbitrary Code Injection

                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 and shadow/passwd@1:4.8.1-2ubuntu2.2 + docker-image|quay.io/argoproj/argocd@v2.8.17 and shadow/passwd@1:4.8.1-2ubuntu2.2
                  @@ -3038,7 +2993,7 @@

                  Detailed paths

                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 shadow/passwd@1:4.8.1-2ubuntu2.2 @@ -3047,7 +3002,7 @@

                    Detailed paths

                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 adduser@3.118ubuntu5 @@ -3058,9 +3013,9 @@

                    Detailed paths

                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 - openssh/openssh-client@1:8.9p1-3ubuntu0.6 + openssh/openssh-client@1:8.9p1-3ubuntu0.7 shadow/passwd@1:4.8.1-2ubuntu2.2 @@ -3069,7 +3024,7 @@

                    Detailed paths

                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 shadow/login@1:4.8.1-2ubuntu2.2 @@ -3116,7 +3071,7 @@

                    Uncontrolled Recursion

                    • - Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argocd Dockerfile
                    • Package Manager: ubuntu:22.04 @@ -3129,7 +3084,7 @@

                      Uncontrolled Recursion

                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 and pcre3/libpcre3@2:8.39-13ubuntu0.22.04.1 + docker-image|quay.io/argoproj/argocd@v2.8.17 and pcre3/libpcre3@2:8.39-13ubuntu0.22.04.1
                    @@ -3142,7 +3097,7 @@

                    Detailed paths

                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 pcre3/libpcre3@2:8.39-13ubuntu0.22.04.1 @@ -3151,7 +3106,7 @@

                      Detailed paths

                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 grep@3.7-1build1 @@ -3204,7 +3159,7 @@

                      Release of Invalid Pointer or Reference

                      • - Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argocd Dockerfile
                      • Package Manager: ubuntu:22.04 @@ -3217,7 +3172,7 @@

                        Release of Invalid Pointer or Reference

                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 and patch@2.7.6-7build2 + docker-image|quay.io/argoproj/argocd@v2.8.17 and patch@2.7.6-7build2
                      @@ -3230,7 +3185,7 @@

                      Detailed paths

                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 patch@2.7.6-7build2 @@ -3274,7 +3229,7 @@

                        Double Free

                        • - Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argocd Dockerfile
                        • Package Manager: ubuntu:22.04 @@ -3287,7 +3242,7 @@

                          Double Free

                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 and patch@2.7.6-7build2 + docker-image|quay.io/argoproj/argocd@v2.8.17 and patch@2.7.6-7build2
                        @@ -3300,7 +3255,7 @@

                        Detailed paths

                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 patch@2.7.6-7build2 @@ -3349,7 +3304,7 @@

                          CVE-2023-50495

                          • - Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argocd Dockerfile
                          • Package Manager: ubuntu:22.04 @@ -3362,7 +3317,7 @@

                            CVE-2023-50495

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 and ncurses/libtinfo6@6.3-2ubuntu0.1 + docker-image|quay.io/argoproj/argocd@v2.8.17 and ncurses/libtinfo6@6.3-2ubuntu0.1
                          @@ -3375,7 +3330,7 @@

                          Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 ncurses/libtinfo6@6.3-2ubuntu0.1 @@ -3384,7 +3339,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 bash@5.1-6ubuntu1.1 @@ -3395,7 +3350,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 ncurses/libncursesw6@6.3-2ubuntu0.1 @@ -3406,7 +3361,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 less@590-1ubuntu0.22.04.2 @@ -3417,7 +3372,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 libedit/libedit2@3.1-20210910-1build1 @@ -3428,7 +3383,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 ncurses/libncurses6@6.3-2ubuntu0.1 @@ -3439,7 +3394,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 ncurses/ncurses-bin@6.3-2ubuntu0.1 @@ -3450,7 +3405,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 procps@2:3.3.17-6ubuntu2.1 @@ -3461,7 +3416,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 util-linux@2.37.2-4ubuntu3.4 @@ -3472,7 +3427,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -3487,7 +3442,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3502,7 +3457,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 ncurses/libncursesw6@6.3-2ubuntu0.1 @@ -3511,7 +3466,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 procps@2:3.3.17-6ubuntu2.1 @@ -3522,7 +3477,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3537,7 +3492,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 ncurses/libncurses6@6.3-2ubuntu0.1 @@ -3546,7 +3501,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 procps@2:3.3.17-6ubuntu2.1 @@ -3557,7 +3512,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 ncurses/ncurses-base@6.3-2ubuntu0.1 @@ -3566,7 +3521,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 ncurses/ncurses-bin@6.3-2ubuntu0.1 @@ -3613,7 +3568,7 @@

                            CVE-2023-45918

                            • - Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argocd Dockerfile
                            • Package Manager: ubuntu:22.04 @@ -3626,7 +3581,7 @@

                              CVE-2023-45918

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 and ncurses/libtinfo6@6.3-2ubuntu0.1 + docker-image|quay.io/argoproj/argocd@v2.8.17 and ncurses/libtinfo6@6.3-2ubuntu0.1
                            @@ -3639,7 +3594,7 @@

                            Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 ncurses/libtinfo6@6.3-2ubuntu0.1 @@ -3648,7 +3603,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 bash@5.1-6ubuntu1.1 @@ -3659,7 +3614,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 ncurses/libncursesw6@6.3-2ubuntu0.1 @@ -3670,7 +3625,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 less@590-1ubuntu0.22.04.2 @@ -3681,7 +3636,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 libedit/libedit2@3.1-20210910-1build1 @@ -3692,7 +3647,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 ncurses/libncurses6@6.3-2ubuntu0.1 @@ -3703,7 +3658,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 ncurses/ncurses-bin@6.3-2ubuntu0.1 @@ -3714,7 +3669,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 procps@2:3.3.17-6ubuntu2.1 @@ -3725,7 +3680,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 util-linux@2.37.2-4ubuntu3.4 @@ -3736,7 +3691,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -3751,7 +3706,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3766,7 +3721,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 ncurses/libncursesw6@6.3-2ubuntu0.1 @@ -3775,7 +3730,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 procps@2:3.3.17-6ubuntu2.1 @@ -3786,7 +3741,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3801,7 +3756,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 ncurses/libncurses6@6.3-2ubuntu0.1 @@ -3810,7 +3765,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 procps@2:3.3.17-6ubuntu2.1 @@ -3821,7 +3776,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 ncurses/ncurses-base@6.3-2ubuntu0.1 @@ -3830,7 +3785,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 ncurses/ncurses-bin@6.3-2ubuntu0.1 @@ -3875,7 +3830,7 @@

                              Resource Exhaustion

                              • - Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argocd Dockerfile
                              • Package Manager: ubuntu:22.04 @@ -3888,7 +3843,7 @@

                                Resource Exhaustion

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 and libzstd/libzstd1@1.4.8+dfsg-3build1 + docker-image|quay.io/argoproj/argocd@v2.8.17 and libzstd/libzstd1@1.4.8+dfsg-3build1
                              @@ -3901,7 +3856,7 @@

                              Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 libzstd/libzstd1@1.4.8+dfsg-3build1 @@ -3952,7 +3907,7 @@

                                Integer Overflow or Wraparound

                                • - Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argocd Dockerfile
                                • Package Manager: ubuntu:22.04 @@ -3965,7 +3920,7 @@

                                  Integer Overflow or Wraparound

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 and krb5/libk5crypto3@1.19.2-2ubuntu0.3 + docker-image|quay.io/argoproj/argocd@v2.8.17 and krb5/libk5crypto3@1.19.2-2ubuntu0.3
                                @@ -3978,7 +3933,7 @@

                                Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 krb5/libk5crypto3@1.19.2-2ubuntu0.3 @@ -3987,7 +3942,7 @@

                                  Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 adduser@3.118ubuntu5 @@ -4008,7 +3963,7 @@

                                  Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 adduser@3.118ubuntu5 @@ -4031,7 +3986,7 @@

                                  Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 krb5/libkrb5-3@1.19.2-2ubuntu0.3 @@ -4040,7 +3995,7 @@

                                  Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 adduser@3.118ubuntu5 @@ -4061,7 +4016,7 @@

                                  Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -4070,9 +4025,9 @@

                                  Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 - openssh/openssh-client@1:8.9p1-3ubuntu0.6 + openssh/openssh-client@1:8.9p1-3ubuntu0.7 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -4081,7 +4036,7 @@

                                  Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 git@1:2.34.1-1ubuntu1.10 @@ -4094,7 +4049,7 @@

                                  Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 git@1:2.34.1-1ubuntu1.10 @@ -4109,7 +4064,7 @@

                                  Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 adduser@3.118ubuntu5 @@ -4128,7 +4083,7 @@

                                  Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 krb5/libkrb5support0@1.19.2-2ubuntu0.3 @@ -4176,7 +4131,7 @@

                                  Out-of-bounds Write

                                  • - Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argocd Dockerfile
                                  • Package Manager: ubuntu:22.04 @@ -4189,7 +4144,7 @@

                                    Out-of-bounds Write

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 and gnupg2/gpgv@2.2.27-3ubuntu2.1 + docker-image|quay.io/argoproj/argocd@v2.8.17 and gnupg2/gpgv@2.2.27-3ubuntu2.1
                                  @@ -4202,7 +4157,7 @@

                                  Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 gnupg2/gpgv@2.2.27-3ubuntu2.1 @@ -4211,7 +4166,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 apt@2.4.12 @@ -4222,7 +4177,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4233,7 +4188,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 gnupg2/dirmngr@2.2.27-3ubuntu2.1 @@ -4244,7 +4199,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -4255,7 +4210,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4268,7 +4223,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4281,7 +4236,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 gnupg2/dirmngr@2.2.27-3ubuntu2.1 @@ -4290,7 +4245,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4301,7 +4256,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4314,7 +4269,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 gnupg2/gnupg-l10n@2.2.27-3ubuntu2.1 @@ -4323,7 +4278,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4334,7 +4289,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 gnupg2/gnupg-utils@2.2.27-3ubuntu2.1 @@ -4343,7 +4298,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4354,7 +4309,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -4363,7 +4318,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4374,7 +4329,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4387,7 +4342,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4400,7 +4355,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 gnupg2/gpg-agent@2.2.27-3ubuntu2.1 @@ -4409,7 +4364,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4420,7 +4375,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4433,7 +4388,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4446,7 +4401,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 gnupg2/gpg-wks-client@2.2.27-3ubuntu2.1 @@ -4455,7 +4410,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4466,7 +4421,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 gnupg2/gpg-wks-server@2.2.27-3ubuntu2.1 @@ -4475,7 +4430,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4486,7 +4441,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 gnupg2/gpgsm@2.2.27-3ubuntu2.1 @@ -4495,7 +4450,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4506,7 +4461,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4555,7 +4510,7 @@

                                    Allocation of Resources Without Limits or Throttling

                                  • - Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argocd Dockerfile
                                  • Package Manager: ubuntu:22.04 @@ -4568,7 +4523,7 @@

                                    Allocation of Resources Without Limits or Throttling

                                    Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 and glibc/libc-bin@2.35-0ubuntu3.6 + docker-image|quay.io/argoproj/argocd@v2.8.17 and glibc/libc-bin@2.35-0ubuntu3.7
                                  @@ -4581,18 +4536,18 @@

                                  Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 - glibc/libc-bin@2.35-0ubuntu3.6 + glibc/libc-bin@2.35-0ubuntu3.7
                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 - glibc/libc6@2.35-0ubuntu3.6 + glibc/libc6@2.35-0ubuntu3.7 @@ -4636,7 +4591,7 @@

                                    Improper Input Validation

                                    • - Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argocd Dockerfile
                                    • Package Manager: ubuntu:22.04 @@ -4650,7 +4605,7 @@

                                      Improper Input Validation

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12, git@1:2.34.1-1ubuntu1.10 and others + docker-image|quay.io/argoproj/argocd@v2.8.17, git@1:2.34.1-1ubuntu1.10 and others
                                    @@ -4662,7 +4617,7 @@

                                    Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 git@1:2.34.1-1ubuntu1.10 @@ -4673,7 +4628,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 git@1:2.34.1-1ubuntu1.10 @@ -4682,7 +4637,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 git-lfs@3.0.2-1ubuntu0.2 @@ -4729,7 +4684,7 @@

                                      Uncontrolled Recursion

                                      • - Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argocd Dockerfile
                                      • Package Manager: ubuntu:22.04 @@ -4742,7 +4697,7 @@

                                        Uncontrolled Recursion

                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 and gcc-12/libstdc++6@12.3.0-1ubuntu1~22.04 + docker-image|quay.io/argoproj/argocd@v2.8.17 and gcc-12/libstdc++6@12.3.0-1ubuntu1~22.04
                                      @@ -4755,7 +4710,7 @@

                                      Detailed paths

                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 gcc-12/libstdc++6@12.3.0-1ubuntu1~22.04 @@ -4764,7 +4719,7 @@

                                        Detailed paths

                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 apt@2.4.12 @@ -4775,7 +4730,7 @@

                                        Detailed paths

                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 apt@2.4.12 @@ -4788,7 +4743,7 @@

                                        Detailed paths

                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 gcc-12/gcc-12-base@12.3.0-1ubuntu1~22.04 @@ -4797,7 +4752,7 @@

                                        Detailed paths

                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 gcc-12/libgcc-s1@12.3.0-1ubuntu1~22.04 @@ -4844,7 +4799,7 @@

                                        Improper Input Validation

                                        • - Manifest file: quay.io/argoproj/argocd:v2.9.12/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argocd Dockerfile
                                        • Package Manager: ubuntu:22.04 @@ -4857,7 +4812,7 @@

                                          Improper Input Validation

                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 and coreutils@8.32-4.1ubuntu1.2 + docker-image|quay.io/argoproj/argocd@v2.8.17 and coreutils@8.32-4.1ubuntu1.2
                                        @@ -4870,7 +4825,7 @@

                                        Detailed paths

                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.12 + docker-image|quay.io/argoproj/argocd@v2.8.17 coreutils@8.32-4.1ubuntu1.2 diff --git a/docs/snyk/v2.8.17/redis_7.0.15-alpine.html b/docs/snyk/v2.8.17/redis_7.0.15-alpine.html new file mode 100644 index 0000000000000..45913276ad075 --- /dev/null +++ b/docs/snyk/v2.8.17/redis_7.0.15-alpine.html @@ -0,0 +1,657 @@ + + + + + + + + + Snyk test report + + + + + + + + + +
                                          +
                                          +
                                          +
                                          + + + Snyk - Open Source Security + + + + + + + +
                                          +

                                          Snyk test report

                                          + +

                                          April 28th 2024, 12:25:19 am (UTC+00:00)

                                          +
                                          +
                                          + Scanned the following paths: +
                                            +
                                          • redis:7.0.15-alpine (apk)
                                            • +
                                          • redis:7.0.15-alpine/tianon/gosu//usr/local/bin/gosu (gomodules)
                                            • +
                                          +
                                          + +
                                          +
                                          1 known vulnerabilities
                                          +
                                          9 vulnerable dependency paths
                                          +
                                          19 dependencies
                                          +
                                          +
                                          +
                                          +
                                          + +
                                          +
                                          +
                                          +

                                          CVE-2024-2511

                                          +
                                          + +
                                          + low severity +
                                          + +
                                          + +
                                            +
                                          • + Package Manager: alpine:3.19 +
                                            • +
                                          • + Vulnerable module: + + openssl/libcrypto3 +
                                            • + +
                                          • Introduced through: + + docker-image|redis@7.0.15-alpine and openssl/libcrypto3@3.1.4-r5 + +
                                            • +
                                          + +
                                          + + +

                                          Detailed paths

                                          + +
                                            +
                                          • + Introduced through: + docker-image|redis@7.0.15-alpine + + openssl/libcrypto3@3.1.4-r5 + + + +
                                            • +
                                          • + Introduced through: + docker-image|redis@7.0.15-alpine + + .redis-rundeps@20240315.235535 + + openssl/libcrypto3@3.1.4-r5 + + + +
                                            • +
                                          • + Introduced through: + docker-image|redis@7.0.15-alpine + + apk-tools/apk-tools@2.14.0-r5 + + openssl/libcrypto3@3.1.4-r5 + + + +
                                            • +
                                          • + Introduced through: + docker-image|redis@7.0.15-alpine + + busybox/ssl_client@1.36.1-r15 + + openssl/libcrypto3@3.1.4-r5 + + + +
                                            • +
                                          • + Introduced through: + docker-image|redis@7.0.15-alpine + + .redis-rundeps@20240315.235535 + + openssl/libssl3@3.1.4-r5 + + openssl/libcrypto3@3.1.4-r5 + + + +
                                            • +
                                          • + Introduced through: + docker-image|redis@7.0.15-alpine + + openssl/libssl3@3.1.4-r5 + + + +
                                            • +
                                          • + Introduced through: + docker-image|redis@7.0.15-alpine + + .redis-rundeps@20240315.235535 + + openssl/libssl3@3.1.4-r5 + + + +
                                            • +
                                          • + Introduced through: + docker-image|redis@7.0.15-alpine + + apk-tools/apk-tools@2.14.0-r5 + + openssl/libssl3@3.1.4-r5 + + + +
                                            • +
                                          • + Introduced through: + docker-image|redis@7.0.15-alpine + + busybox/ssl_client@1.36.1-r15 + + openssl/libssl3@3.1.4-r5 + + + +
                                            • +
                                          + +
                                          + +
                                          + +

                                          NVD Description

                                          +

                                          Note: Versions mentioned in the description apply only to the upstream openssl package and not the openssl package as distributed by Alpine. + See How to fix? for Alpine:3.19 relevant fixed versions and status.

                                          +

                                          Issue summary: Some non-default TLS server configurations can cause unbounded + memory growth when processing TLSv1.3 sessions

                                          +

                                          Impact summary: An attacker may exploit certain server configurations to trigger + unbounded memory growth that would lead to a Denial of Service

                                          +

                                          This problem can occur in TLSv1.3 if the non-default SSL_OP_NO_TICKET option is + being used (but not if early_data support is also configured and the default + anti-replay protection is in use). In this case, under certain conditions, the + session cache can get into an incorrect state and it will fail to flush properly + as it fills. The session cache will continue to grow in an unbounded manner. A + malicious client could deliberately create the scenario for this failure to + force a Denial of Service. It may also happen by accident in normal operation.

                                          +

                                          This issue only affects TLS servers supporting TLSv1.3. It does not affect TLS + clients.

                                          +

                                          The FIPS modules in 3.2, 3.1 and 3.0 are not affected by this issue. OpenSSL + 1.0.2 is also not affected by this issue.

                                          +

                                          Remediation

                                          +

                                          Upgrade Alpine:3.19 openssl to version 3.1.4-r6 or higher.

                                          +

                                          References

                                          + + +
                                          + +
                                          +

                                          More about this vulnerability

                                          +
                                          + +
                                          +
                                          +
                                          +
                                          + + + diff --git a/docs/snyk/v2.9.12/redis_7.0.11-alpine.html b/docs/snyk/v2.9.12/redis_7.0.11-alpine.html deleted file mode 100644 index 623fb7fffd626..0000000000000 --- a/docs/snyk/v2.9.12/redis_7.0.11-alpine.html +++ /dev/null @@ -1,2204 +0,0 @@ - - - - - - - - - Snyk test report - - - - - - - - - -
                                          -
                                          -
                                          -
                                          - - - Snyk - Open Source Security - - - - - - - -
                                          -

                                          Snyk test report

                                          - -

                                          April 21st 2024, 12:22:52 am (UTC+00:00)

                                          -
                                          -
                                          - Scanned the following path: -
                                            -
                                          • redis:7.0.11-alpine (apk)
                                            • -
                                          -
                                          - -
                                          -
                                          10 known vulnerabilities
                                          -
                                          86 vulnerable dependency paths
                                          -
                                          18 dependencies
                                          -
                                          -
                                          -
                                          -
                                          -
                                          - - - - - - - -
                                          Project docker-image|redis
                                          Path redis:7.0.11-alpine
                                          Package Manager apk
                                          -
                                          -
                                          -
                                          -
                                          -

                                          Out-of-bounds Write

                                          -
                                          - -
                                          - critical severity -
                                          - -
                                          - -
                                            -
                                          • - Package Manager: alpine:3.18 -
                                            • -
                                          • - Vulnerable module: - - busybox/busybox -
                                            • - -
                                          • Introduced through: - - docker-image|redis@7.0.11-alpine and busybox/busybox@1.36.1-r0 - -
                                            • -
                                          - -
                                          - - -

                                          Detailed paths

                                          - -
                                            -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - busybox/busybox@1.36.1-r0 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - alpine-baselayout/alpine-baselayout@3.4.3-r1 - - busybox/busybox-binsh@1.36.1-r0 - - busybox/busybox@1.36.1-r0 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - busybox/busybox-binsh@1.36.1-r0 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - alpine-baselayout/alpine-baselayout@3.4.3-r1 - - busybox/busybox-binsh@1.36.1-r0 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - busybox/ssl_client@1.36.1-r0 - - - -
                                            • -
                                          - -
                                          - -
                                          - -

                                          NVD Description

                                          -

                                          Note: Versions mentioned in the description apply only to the upstream busybox package and not the busybox package as distributed by Alpine. - See How to fix? for Alpine:3.18 relevant fixed versions and status.

                                          -

                                          There is a stack overflow vulnerability in ash.c:6030 in busybox before 1.35. In the environment of Internet of Vehicles, this vulnerability can be executed from command to arbitrary code execution.

                                          -

                                          Remediation

                                          -

                                          Upgrade Alpine:3.18 busybox to version 1.36.1-r1 or higher.

                                          -

                                          References

                                          - - -
                                          - -
                                          -

                                          More about this vulnerability

                                          -
                                          - -
                                          -
                                          -

                                          CVE-2023-5363

                                          -
                                          - -
                                          - high severity -
                                          - -
                                          - -
                                            -
                                          • - Package Manager: alpine:3.18 -
                                            • -
                                          • - Vulnerable module: - - openssl/libcrypto3 -
                                            • - -
                                          • Introduced through: - - docker-image|redis@7.0.11-alpine and openssl/libcrypto3@3.1.1-r1 - -
                                            • -
                                          - -
                                          - - -

                                          Detailed paths

                                          - -
                                            -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - openssl/libcrypto3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libcrypto3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - apk-tools/apk-tools@2.14.0-r2 - - openssl/libcrypto3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - busybox/ssl_client@1.36.1-r0 - - openssl/libcrypto3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libssl3@3.1.1-r1 - - openssl/libcrypto3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - openssl/libssl3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libssl3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - apk-tools/apk-tools@2.14.0-r2 - - openssl/libssl3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - busybox/ssl_client@1.36.1-r0 - - openssl/libssl3@3.1.1-r1 - - - -
                                            • -
                                          - -
                                          - -
                                          - -

                                          NVD Description

                                          -

                                          Note: Versions mentioned in the description apply only to the upstream openssl package and not the openssl package as distributed by Alpine. - See How to fix? for Alpine:3.18 relevant fixed versions and status.

                                          -

                                          Issue summary: A bug has been identified in the processing of key and - initialisation vector (IV) lengths. This can lead to potential truncation - or overruns during the initialisation of some symmetric ciphers.

                                          -

                                          Impact summary: A truncation in the IV can result in non-uniqueness, - which could result in loss of confidentiality for some cipher modes.

                                          -

                                          When calling EVP_EncryptInit_ex2(), EVP_DecryptInit_ex2() or - EVP_CipherInit_ex2() the provided OSSL_PARAM array is processed after - the key and IV have been established. Any alterations to the key length, - via the "keylen" parameter or the IV length, via the "ivlen" parameter, - within the OSSL_PARAM array will not take effect as intended, potentially - causing truncation or overreading of these values. The following ciphers - and cipher modes are impacted: RC2, RC4, RC5, CCM, GCM and OCB.

                                          -

                                          For the CCM, GCM and OCB cipher modes, truncation of the IV can result in - loss of confidentiality. For example, when following NIST's SP 800-38D - section 8.2.1 guidance for constructing a deterministic IV for AES in - GCM mode, truncation of the counter portion could lead to IV reuse.

                                          -

                                          Both truncations and overruns of the key and overruns of the IV will - produce incorrect results and could, in some cases, trigger a memory - exception. However, these issues are not currently assessed as security - critical.

                                          -

                                          Changing the key and/or IV lengths is not considered to be a common operation - and the vulnerable API was recently introduced. Furthermore it is likely that - application developers will have spotted this problem during testing since - decryption would fail unless both peers in the communication were similarly - vulnerable. For these reasons we expect the probability of an application being - vulnerable to this to be quite low. However if an application is vulnerable then - this issue is considered very serious. For these reasons we have assessed this - issue as Moderate severity overall.

                                          -

                                          The OpenSSL SSL/TLS implementation is not affected by this issue.

                                          -

                                          The OpenSSL 3.0 and 3.1 FIPS providers are not affected by this because - the issue lies outside of the FIPS provider boundary.

                                          -

                                          OpenSSL 3.1 and 3.0 are vulnerable to this issue.

                                          -

                                          Remediation

                                          -

                                          Upgrade Alpine:3.18 openssl to version 3.1.4-r0 or higher.

                                          -

                                          References

                                          - - -
                                          - -
                                          -

                                          More about this vulnerability

                                          -
                                          - -
                                          -
                                          -

                                          Improper Authentication

                                          -
                                          - -
                                          - medium severity -
                                          - -
                                          - -
                                            -
                                          • - Package Manager: alpine:3.18 -
                                            • -
                                          • - Vulnerable module: - - openssl/libcrypto3 -
                                            • - -
                                          • Introduced through: - - docker-image|redis@7.0.11-alpine and openssl/libcrypto3@3.1.1-r1 - -
                                            • -
                                          - -
                                          - - -

                                          Detailed paths

                                          - -
                                            -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - openssl/libcrypto3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libcrypto3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - apk-tools/apk-tools@2.14.0-r2 - - openssl/libcrypto3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - busybox/ssl_client@1.36.1-r0 - - openssl/libcrypto3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libssl3@3.1.1-r1 - - openssl/libcrypto3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - openssl/libssl3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libssl3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - apk-tools/apk-tools@2.14.0-r2 - - openssl/libssl3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - busybox/ssl_client@1.36.1-r0 - - openssl/libssl3@3.1.1-r1 - - - -
                                            • -
                                          - -
                                          - -
                                          - -

                                          NVD Description

                                          -

                                          Note: Versions mentioned in the description apply only to the upstream openssl package and not the openssl package as distributed by Alpine. - See How to fix? for Alpine:3.18 relevant fixed versions and status.

                                          -

                                          Issue summary: The AES-SIV cipher implementation contains a bug that causes - it to ignore empty associated data entries which are unauthenticated as - a consequence.

                                          -

                                          Impact summary: Applications that use the AES-SIV algorithm and want to - authenticate empty data entries as associated data can be mislead by removing - adding or reordering such empty entries as these are ignored by the OpenSSL - implementation. We are currently unaware of any such applications.

                                          -

                                          The AES-SIV algorithm allows for authentication of multiple associated - data entries along with the encryption. To authenticate empty data the - application has to call EVP_EncryptUpdate() (or EVP_CipherUpdate()) with - NULL pointer as the output buffer and 0 as the input buffer length. - The AES-SIV implementation in OpenSSL just returns success for such a call - instead of performing the associated data authentication operation. - The empty data thus will not be authenticated.

                                          -

                                          As this issue does not affect non-empty associated data authentication and - we expect it to be rare for an application to use empty associated data - entries this is qualified as Low severity issue.

                                          -

                                          Remediation

                                          -

                                          Upgrade Alpine:3.18 openssl to version 3.1.1-r2 or higher.

                                          -

                                          References

                                          - - -
                                          - -
                                          -

                                          More about this vulnerability

                                          -
                                          - -
                                          -
                                          -

                                          Inefficient Regular Expression Complexity

                                          -
                                          - -
                                          - medium severity -
                                          - -
                                          - -
                                            -
                                          • - Package Manager: alpine:3.18 -
                                            • -
                                          • - Vulnerable module: - - openssl/libcrypto3 -
                                            • - -
                                          • Introduced through: - - docker-image|redis@7.0.11-alpine and openssl/libcrypto3@3.1.1-r1 - -
                                            • -
                                          - -
                                          - - -

                                          Detailed paths

                                          - -
                                            -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - openssl/libcrypto3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libcrypto3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - apk-tools/apk-tools@2.14.0-r2 - - openssl/libcrypto3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - busybox/ssl_client@1.36.1-r0 - - openssl/libcrypto3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libssl3@3.1.1-r1 - - openssl/libcrypto3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - openssl/libssl3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libssl3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - apk-tools/apk-tools@2.14.0-r2 - - openssl/libssl3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - busybox/ssl_client@1.36.1-r0 - - openssl/libssl3@3.1.1-r1 - - - -
                                            • -
                                          - -
                                          - -
                                          - -

                                          NVD Description

                                          -

                                          Note: Versions mentioned in the description apply only to the upstream openssl package and not the openssl package as distributed by Alpine. - See How to fix? for Alpine:3.18 relevant fixed versions and status.

                                          -

                                          Issue summary: Checking excessively long DH keys or parameters may be very slow.

                                          -

                                          Impact summary: Applications that use the functions DH_check(), DH_check_ex() - or EVP_PKEY_param_check() to check a DH key or DH parameters may experience long - delays. Where the key or parameters that are being checked have been obtained - from an untrusted source this may lead to a Denial of Service.

                                          -

                                          The function DH_check() performs various checks on DH parameters. One of those - checks confirms that the modulus ('p' parameter) is not too large. Trying to use - a very large modulus is slow and OpenSSL will not normally use a modulus which - is over 10,000 bits in length.

                                          -

                                          However the DH_check() function checks numerous aspects of the key or parameters - that have been supplied. Some of those checks use the supplied modulus value - even if it has already been found to be too large.

                                          -

                                          An application that calls DH_check() and supplies a key or parameters obtained - from an untrusted source could be vulernable to a Denial of Service attack.

                                          -

                                          The function DH_check() is itself called by a number of other OpenSSL functions. - An application calling any of those other functions may similarly be affected. - The other functions affected by this are DH_check_ex() and - EVP_PKEY_param_check().

                                          -

                                          Also vulnerable are the OpenSSL dhparam and pkeyparam command line applications - when using the '-check' option.

                                          -

                                          The OpenSSL SSL/TLS implementation is not affected by this issue. - The OpenSSL 3.0 and 3.1 FIPS providers are not affected by this issue.

                                          -

                                          Remediation

                                          -

                                          Upgrade Alpine:3.18 openssl to version 3.1.1-r3 or higher.

                                          -

                                          References

                                          - - -
                                          - -
                                          -

                                          More about this vulnerability

                                          -
                                          - -
                                          -
                                          -

                                          Excessive Iteration

                                          -
                                          - -
                                          - medium severity -
                                          - -
                                          - -
                                            -
                                          • - Package Manager: alpine:3.18 -
                                            • -
                                          • - Vulnerable module: - - openssl/libcrypto3 -
                                            • - -
                                          • Introduced through: - - docker-image|redis@7.0.11-alpine and openssl/libcrypto3@3.1.1-r1 - -
                                            • -
                                          - -
                                          - - -

                                          Detailed paths

                                          - -
                                            -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - openssl/libcrypto3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libcrypto3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - apk-tools/apk-tools@2.14.0-r2 - - openssl/libcrypto3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - busybox/ssl_client@1.36.1-r0 - - openssl/libcrypto3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libssl3@3.1.1-r1 - - openssl/libcrypto3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - openssl/libssl3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libssl3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - apk-tools/apk-tools@2.14.0-r2 - - openssl/libssl3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - busybox/ssl_client@1.36.1-r0 - - openssl/libssl3@3.1.1-r1 - - - -
                                            • -
                                          - -
                                          - -
                                          - -

                                          NVD Description

                                          -

                                          Note: Versions mentioned in the description apply only to the upstream openssl package and not the openssl package as distributed by Alpine. - See How to fix? for Alpine:3.18 relevant fixed versions and status.

                                          -

                                          Issue summary: Checking excessively long DH keys or parameters may be very slow.

                                          -

                                          Impact summary: Applications that use the functions DH_check(), DH_check_ex() - or EVP_PKEY_param_check() to check a DH key or DH parameters may experience long - delays. Where the key or parameters that are being checked have been obtained - from an untrusted source this may lead to a Denial of Service.

                                          -

                                          The function DH_check() performs various checks on DH parameters. After fixing - CVE-2023-3446 it was discovered that a large q parameter value can also trigger - an overly long computation during some of these checks. A correct q value, - if present, cannot be larger than the modulus p parameter, thus it is - unnecessary to perform these checks if q is larger than p.

                                          -

                                          An application that calls DH_check() and supplies a key or parameters obtained - from an untrusted source could be vulnerable to a Denial of Service attack.

                                          -

                                          The function DH_check() is itself called by a number of other OpenSSL functions. - An application calling any of those other functions may similarly be affected. - The other functions affected by this are DH_check_ex() and - EVP_PKEY_param_check().

                                          -

                                          Also vulnerable are the OpenSSL dhparam and pkeyparam command line applications - when using the "-check" option.

                                          -

                                          The OpenSSL SSL/TLS implementation is not affected by this issue.

                                          -

                                          The OpenSSL 3.0 and 3.1 FIPS providers are not affected by this issue.

                                          -

                                          Remediation

                                          -

                                          Upgrade Alpine:3.18 openssl to version 3.1.2-r0 or higher.

                                          -

                                          References

                                          - - -
                                          - -
                                          -

                                          More about this vulnerability

                                          -
                                          - -
                                          -
                                          -

                                          Improper Check for Unusual or Exceptional Conditions

                                          -
                                          - -
                                          - medium severity -
                                          - -
                                          - -
                                            -
                                          • - Package Manager: alpine:3.18 -
                                            • -
                                          • - Vulnerable module: - - openssl/libcrypto3 -
                                            • - -
                                          • Introduced through: - - docker-image|redis@7.0.11-alpine and openssl/libcrypto3@3.1.1-r1 - -
                                            • -
                                          - -
                                          - - -

                                          Detailed paths

                                          - -
                                            -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - openssl/libcrypto3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libcrypto3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - apk-tools/apk-tools@2.14.0-r2 - - openssl/libcrypto3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - busybox/ssl_client@1.36.1-r0 - - openssl/libcrypto3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libssl3@3.1.1-r1 - - openssl/libcrypto3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - openssl/libssl3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libssl3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - apk-tools/apk-tools@2.14.0-r2 - - openssl/libssl3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - busybox/ssl_client@1.36.1-r0 - - openssl/libssl3@3.1.1-r1 - - - -
                                            • -
                                          - -
                                          - -
                                          - -

                                          NVD Description

                                          -

                                          Note: Versions mentioned in the description apply only to the upstream openssl package and not the openssl package as distributed by Alpine. - See How to fix? for Alpine:3.18 relevant fixed versions and status.

                                          -

                                          Issue summary: Generating excessively long X9.42 DH keys or checking - excessively long X9.42 DH keys or parameters may be very slow.

                                          -

                                          Impact summary: Applications that use the functions DH_generate_key() to - generate an X9.42 DH key may experience long delays. Likewise, applications - that use DH_check_pub_key(), DH_check_pub_key_ex() or EVP_PKEY_public_check() - to check an X9.42 DH key or X9.42 DH parameters may experience long delays. - Where the key or parameters that are being checked have been obtained from - an untrusted source this may lead to a Denial of Service.

                                          -

                                          While DH_check() performs all the necessary checks (as of CVE-2023-3817), - DH_check_pub_key() doesn't make any of these checks, and is therefore - vulnerable for excessively large P and Q parameters.

                                          -

                                          Likewise, while DH_generate_key() performs a check for an excessively large - P, it doesn't check for an excessively large Q.

                                          -

                                          An application that calls DH_generate_key() or DH_check_pub_key() and - supplies a key or parameters obtained from an untrusted source could be - vulnerable to a Denial of Service attack.

                                          -

                                          DH_generate_key() and DH_check_pub_key() are also called by a number of - other OpenSSL functions. An application calling any of those other - functions may similarly be affected. The other functions affected by this - are DH_check_pub_key_ex(), EVP_PKEY_public_check(), and EVP_PKEY_generate().

                                          -

                                          Also vulnerable are the OpenSSL pkey command line application when using the - "-pubcheck" option, as well as the OpenSSL genpkey command line application.

                                          -

                                          The OpenSSL SSL/TLS implementation is not affected by this issue.

                                          -

                                          The OpenSSL 3.0 and 3.1 FIPS providers are not affected by this issue.

                                          -

                                          Remediation

                                          -

                                          Upgrade Alpine:3.18 openssl to version 3.1.4-r1 or higher.

                                          -

                                          References

                                          - - -
                                          - -
                                          -

                                          More about this vulnerability

                                          -
                                          - -
                                          -
                                          -

                                          Out-of-bounds Write

                                          -
                                          - -
                                          - medium severity -
                                          - -
                                          - -
                                            -
                                          • - Package Manager: alpine:3.18 -
                                            • -
                                          • - Vulnerable module: - - openssl/libcrypto3 -
                                            • - -
                                          • Introduced through: - - docker-image|redis@7.0.11-alpine and openssl/libcrypto3@3.1.1-r1 - -
                                            • -
                                          - -
                                          - - -

                                          Detailed paths

                                          - -
                                            -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - openssl/libcrypto3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libcrypto3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - apk-tools/apk-tools@2.14.0-r2 - - openssl/libcrypto3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - busybox/ssl_client@1.36.1-r0 - - openssl/libcrypto3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libssl3@3.1.1-r1 - - openssl/libcrypto3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - openssl/libssl3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libssl3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - apk-tools/apk-tools@2.14.0-r2 - - openssl/libssl3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - busybox/ssl_client@1.36.1-r0 - - openssl/libssl3@3.1.1-r1 - - - -
                                            • -
                                          - -
                                          - -
                                          - -

                                          NVD Description

                                          -

                                          Note: Versions mentioned in the description apply only to the upstream openssl package and not the openssl package as distributed by Alpine. - See How to fix? for Alpine:3.18 relevant fixed versions and status.

                                          -

                                          Issue summary: The POLY1305 MAC (message authentication code) implementation - contains a bug that might corrupt the internal state of applications running - on PowerPC CPU based platforms if the CPU provides vector instructions.

                                          -

                                          Impact summary: If an attacker can influence whether the POLY1305 MAC - algorithm is used, the application state might be corrupted with various - application dependent consequences.

                                          -

                                          The POLY1305 MAC (message authentication code) implementation in OpenSSL for - PowerPC CPUs restores the contents of vector registers in a different order - than they are saved. Thus the contents of some of these vector registers - are corrupted when returning to the caller. The vulnerable code is used only - on newer PowerPC processors supporting the PowerISA 2.07 instructions.

                                          -

                                          The consequences of this kind of internal application state corruption can - be various - from no consequences, if the calling application does not - depend on the contents of non-volatile XMM registers at all, to the worst - consequences, where the attacker could get complete control of the application - process. However unless the compiler uses the vector registers for storing - pointers, the most likely consequence, if any, would be an incorrect result - of some application dependent calculations or a crash leading to a denial of - service.

                                          -

                                          The POLY1305 MAC algorithm is most frequently used as part of the - CHACHA20-POLY1305 AEAD (authenticated encryption with associated data) - algorithm. The most common usage of this AEAD cipher is with TLS protocol - versions 1.2 and 1.3. If this cipher is enabled on the server a malicious - client can influence whether this AEAD cipher is used. This implies that - TLS server applications using OpenSSL can be potentially impacted. However - we are currently not aware of any concrete application that would be affected - by this issue therefore we consider this a Low severity security issue.

                                          -

                                          Remediation

                                          -

                                          Upgrade Alpine:3.18 openssl to version 3.1.4-r3 or higher.

                                          -

                                          References

                                          - - -
                                          - -
                                          -

                                          More about this vulnerability

                                          -
                                          - -
                                          -
                                          -

                                          CVE-2024-0727

                                          -
                                          - -
                                          - medium severity -
                                          - -
                                          - -
                                            -
                                          • - Package Manager: alpine:3.18 -
                                            • -
                                          • - Vulnerable module: - - openssl/libcrypto3 -
                                            • - -
                                          • Introduced through: - - docker-image|redis@7.0.11-alpine and openssl/libcrypto3@3.1.1-r1 - -
                                            • -
                                          - -
                                          - - -

                                          Detailed paths

                                          - -
                                            -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - openssl/libcrypto3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libcrypto3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - apk-tools/apk-tools@2.14.0-r2 - - openssl/libcrypto3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - busybox/ssl_client@1.36.1-r0 - - openssl/libcrypto3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libssl3@3.1.1-r1 - - openssl/libcrypto3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - openssl/libssl3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libssl3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - apk-tools/apk-tools@2.14.0-r2 - - openssl/libssl3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - busybox/ssl_client@1.36.1-r0 - - openssl/libssl3@3.1.1-r1 - - - -
                                            • -
                                          - -
                                          - -
                                          - -

                                          NVD Description

                                          -

                                          Note: Versions mentioned in the description apply only to the upstream openssl package and not the openssl package as distributed by Alpine. - See How to fix? for Alpine:3.18 relevant fixed versions and status.

                                          -

                                          Issue summary: Processing a maliciously formatted PKCS12 file may lead OpenSSL - to crash leading to a potential Denial of Service attack

                                          -

                                          Impact summary: Applications loading files in the PKCS12 format from untrusted - sources might terminate abruptly.

                                          -

                                          A file in PKCS12 format can contain certificates and keys and may come from an - untrusted source. The PKCS12 specification allows certain fields to be NULL, but - OpenSSL does not correctly check for this case. This can lead to a NULL pointer - dereference that results in OpenSSL crashing. If an application processes PKCS12 - files from an untrusted source using the OpenSSL APIs then that application will - be vulnerable to this issue.

                                          -

                                          OpenSSL APIs that are vulnerable to this are: PKCS12_parse(), - PKCS12_unpack_p7data(), PKCS12_unpack_p7encdata(), PKCS12_unpack_authsafes() - and PKCS12_newpass().

                                          -

                                          We have also fixed a similar issue in SMIME_write_PKCS7(). However since this - function is related to writing data we do not consider it security significant.

                                          -

                                          The FIPS modules in 3.2, 3.1 and 3.0 are not affected by this issue.

                                          -

                                          Remediation

                                          -

                                          Upgrade Alpine:3.18 openssl to version 3.1.4-r5 or higher.

                                          -

                                          References

                                          - - -
                                          - -
                                          -

                                          More about this vulnerability

                                          -
                                          - -
                                          -
                                          -

                                          CVE-2023-6237

                                          -
                                          - -
                                          - low severity -
                                          - -
                                          - -
                                            -
                                          • - Package Manager: alpine:3.18 -
                                            • -
                                          • - Vulnerable module: - - openssl/libcrypto3 -
                                            • - -
                                          • Introduced through: - - docker-image|redis@7.0.11-alpine and openssl/libcrypto3@3.1.1-r1 - -
                                            • -
                                          - -
                                          - - -

                                          Detailed paths

                                          - -
                                            -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - openssl/libcrypto3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libcrypto3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - apk-tools/apk-tools@2.14.0-r2 - - openssl/libcrypto3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - busybox/ssl_client@1.36.1-r0 - - openssl/libcrypto3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libssl3@3.1.1-r1 - - openssl/libcrypto3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - openssl/libssl3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libssl3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - apk-tools/apk-tools@2.14.0-r2 - - openssl/libssl3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - busybox/ssl_client@1.36.1-r0 - - openssl/libssl3@3.1.1-r1 - - - -
                                            • -
                                          - -
                                          - -
                                          - -

                                          NVD Description

                                          -

                                          This vulnerability has not been analyzed by NVD yet.

                                          -

                                          Remediation

                                          -

                                          Upgrade Alpine:3.18 openssl to version 3.1.4-r4 or higher.

                                          - -
                                          - -
                                          -

                                          More about this vulnerability

                                          -
                                          - -
                                          -
                                          -

                                          CVE-2024-2511

                                          -
                                          - -
                                          - low severity -
                                          - -
                                          - -
                                            -
                                          • - Package Manager: alpine:3.18 -
                                            • -
                                          • - Vulnerable module: - - openssl/libcrypto3 -
                                            • - -
                                          • Introduced through: - - docker-image|redis@7.0.11-alpine and openssl/libcrypto3@3.1.1-r1 - -
                                            • -
                                          - -
                                          - - -

                                          Detailed paths

                                          - -
                                            -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - openssl/libcrypto3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libcrypto3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - apk-tools/apk-tools@2.14.0-r2 - - openssl/libcrypto3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - busybox/ssl_client@1.36.1-r0 - - openssl/libcrypto3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libssl3@3.1.1-r1 - - openssl/libcrypto3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - openssl/libssl3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - .redis-rundeps@20230614.215749 - - openssl/libssl3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - apk-tools/apk-tools@2.14.0-r2 - - openssl/libssl3@3.1.1-r1 - - - -
                                            • -
                                          • - Introduced through: - docker-image|redis@7.0.11-alpine - - busybox/ssl_client@1.36.1-r0 - - openssl/libssl3@3.1.1-r1 - - - -
                                            • -
                                          - -
                                          - -
                                          - -

                                          NVD Description

                                          -

                                          Note: Versions mentioned in the description apply only to the upstream openssl package and not the openssl package as distributed by Alpine. - See How to fix? for Alpine:3.18 relevant fixed versions and status.

                                          -

                                          Issue summary: Some non-default TLS server configurations can cause unbounded - memory growth when processing TLSv1.3 sessions

                                          -

                                          Impact summary: An attacker may exploit certain server configurations to trigger - unbounded memory growth that would lead to a Denial of Service

                                          -

                                          This problem can occur in TLSv1.3 if the non-default SSL_OP_NO_TICKET option is - being used (but not if early_data support is also configured and the default - anti-replay protection is in use). In this case, under certain conditions, the - session cache can get into an incorrect state and it will fail to flush properly - as it fills. The session cache will continue to grow in an unbounded manner. A - malicious client could deliberately create the scenario for this failure to - force a Denial of Service. It may also happen by accident in normal operation.

                                          -

                                          This issue only affects TLS servers supporting TLSv1.3. It does not affect TLS - clients.

                                          -

                                          The FIPS modules in 3.2, 3.1 and 3.0 are not affected by this issue. OpenSSL - 1.0.2 is also not affected by this issue.

                                          -

                                          Remediation

                                          -

                                          Upgrade Alpine:3.18 openssl to version 3.1.4-r6 or higher.

                                          -

                                          References

                                          - - -
                                          - -
                                          -

                                          More about this vulnerability

                                          -
                                          - -
                                          -
                                          -
                                          -
                                          - - - diff --git a/docs/snyk/v2.9.12/argocd-iac-install.html b/docs/snyk/v2.9.13/argocd-iac-install.html similarity index 99% rename from docs/snyk/v2.9.12/argocd-iac-install.html rename to docs/snyk/v2.9.13/argocd-iac-install.html index 81aeb8c3a6c56..e933d17b7c1ec 100644 --- a/docs/snyk/v2.9.12/argocd-iac-install.html +++ b/docs/snyk/v2.9.13/argocd-iac-install.html @@ -456,7 +456,7 @@

                                          Snyk test report

                                          -

                                          April 21st 2024, 12:24:05 am (UTC+00:00)

                                          +

                                          April 28th 2024, 12:24:23 am (UTC+00:00)

                                          Scanned the following path: @@ -2545,7 +2545,7 @@

                                          Container's or Pod's UID could clash with hos

                                        • - Line number: 22188 + Line number: 22194
                                        diff --git a/docs/snyk/v2.9.12/argocd-iac-namespace-install.html b/docs/snyk/v2.9.13/argocd-iac-namespace-install.html similarity index 99% rename from docs/snyk/v2.9.12/argocd-iac-namespace-install.html rename to docs/snyk/v2.9.13/argocd-iac-namespace-install.html index 07e019012d369..3d4c0e2f1aa76 100644 --- a/docs/snyk/v2.9.12/argocd-iac-namespace-install.html +++ b/docs/snyk/v2.9.13/argocd-iac-namespace-install.html @@ -456,7 +456,7 @@

                                        Snyk test report

                                        -

                                        April 21st 2024, 12:24:14 am (UTC+00:00)

                                        +

                                        April 28th 2024, 12:24:32 am (UTC+00:00)

                                        Scanned the following path: @@ -2545,7 +2545,7 @@

                                        Container's or Pod's UID could clash with hos

                                      • - Line number: 1843 + Line number: 1849
                                      diff --git a/docs/snyk/v2.9.12/argocd-test.html b/docs/snyk/v2.9.13/argocd-test.html similarity index 96% rename from docs/snyk/v2.9.12/argocd-test.html rename to docs/snyk/v2.9.13/argocd-test.html index 4c59fc32c358b..dba6599c95117 100644 --- a/docs/snyk/v2.9.12/argocd-test.html +++ b/docs/snyk/v2.9.13/argocd-test.html @@ -7,7 +7,7 @@ Snyk test report - + @@ -456,7 +456,7 @@

                                      Snyk test report

                                      -

                                      April 21st 2024, 12:22:20 am (UTC+00:00)

                                      +

                                      April 28th 2024, 12:22:38 am (UTC+00:00)

                                      Scanned the following paths: @@ -467,8 +467,8 @@

                                      Snyk test report

                                      -
                                      14 known vulnerabilities
                                      -
                                      260 vulnerable dependency paths
                                      +
                                      15 known vulnerabilities
                                      +
                                      266 vulnerable dependency paths
                                      1917 dependencies
    @@ -5167,6 +5167,221 @@

    References

    More about this vulnerability

    +
    +
    +

    Regular Expression Denial of Service (ReDoS)

    +
    + +
    + medium severity +
    + +
    + +
      +
    • + Manifest file: /argo-cd/argoproj/argo-cd/v2 go.mod +
      • +
    • + Package Manager: golang +
      • +
    • + Vulnerable module: + + github.com/whilp/git-urls +
      • + +
    • Introduced through: + + github.com/argoproj/argo-cd/v2@0.0.0 and github.com/whilp/git-urls@1.0.2 + +
      • +
    + +
    + + +

    Detailed paths

    + +
      +
    • + Introduced through: + github.com/argoproj/argo-cd/v2@0.0.0 + + github.com/whilp/git-urls@1.0.2 + + + +
      • +
    • + Introduced through: + github.com/argoproj/argo-cd/v2@0.0.0 + + github.com/argoproj/notifications-engine/pkg/services@#9dcecdc3eebf + + github.com/whilp/git-urls@1.0.2 + + + +
      • +
    • + Introduced through: + github.com/argoproj/argo-cd/v2@0.0.0 + + github.com/argoproj/notifications-engine/pkg/subscriptions@#9dcecdc3eebf + + github.com/argoproj/notifications-engine/pkg/services@#9dcecdc3eebf + + github.com/whilp/git-urls@1.0.2 + + + +
      • +
    • + Introduced through: + github.com/argoproj/argo-cd/v2@0.0.0 + + github.com/argoproj/notifications-engine/pkg/cmd@#9dcecdc3eebf + + github.com/argoproj/notifications-engine/pkg/services@#9dcecdc3eebf + + github.com/whilp/git-urls@1.0.2 + + + +
      • +
    • + Introduced through: + github.com/argoproj/argo-cd/v2@0.0.0 + + github.com/argoproj/notifications-engine/pkg/api@#9dcecdc3eebf + + github.com/argoproj/notifications-engine/pkg/subscriptions@#9dcecdc3eebf + + github.com/argoproj/notifications-engine/pkg/services@#9dcecdc3eebf + + github.com/whilp/git-urls@1.0.2 + + + +
      • +
    • + Introduced through: + github.com/argoproj/argo-cd/v2@0.0.0 + + github.com/argoproj/notifications-engine/pkg/controller@#9dcecdc3eebf + + github.com/argoproj/notifications-engine/pkg/subscriptions@#9dcecdc3eebf + + github.com/argoproj/notifications-engine/pkg/services@#9dcecdc3eebf + + github.com/whilp/git-urls@1.0.2 + + + +
      • +
    + +
    + +
    + +

    Overview

    +

    github.com/whilp/git-urls is a Git URLs parser

    +

    Affected versions of this package are vulnerable to Regular Expression Denial of Service (ReDoS) due to the usage of an insecure regular expression in scpSyntax. Exploiting this vulnerability is possible when a long input is provided inside the directory path of the git URL.

    +

    Note: + This vulnerability has existed since commit 4a18977c6eecbf4ce0ca1e486e9ba77072ba4395.

    +

    PoC

    + 
    
+        var payload = strings.Repeat("////", 19000000) //payload used, the number can be tweaked to cause 7 second delay
+        malicious_url := "6en6ar@-:0////" + payload + "\"
+        begin := time.Now()
+        //u, err := giturls.ParseScp("remote_username@10.10.0.2:/remote/directory")// normal git url
+        _, err := giturls.ParseScp(malicious_url)
+        if err != nil {
+        fmt.Errorf("[ - ] Error ->" + err.Error())
+        }
+        //fmt.Println("[ + ] Url --> " + u.Host)
+        elapse := time.Since(begin)
+        fmt.Printf("Function took %s", elapse)
+
    +

    Details

    +

    Denial of Service (DoS) describes a family of attacks, all aimed at making a system inaccessible to its original and legitimate users. There are many types of DoS attacks, ranging from trying to clog the network pipes to the system by generating a large volume of traffic from many machines (a Distributed Denial of Service - DDoS - attack) to sending crafted requests that cause a system to crash or take a disproportional amount of time to process.

    +

    The Regular expression Denial of Service (ReDoS) is a type of Denial of Service attack. Regular expressions are incredibly powerful, but they aren't very intuitive and can ultimately end up making it easy for attackers to take your site down.

    +

    Let’s take the following regular expression as an example:

    + 
    regex = /A(B|C+)+D/
+
    +

    This regular expression accomplishes the following:

    +
      +
    • A The string must start with the letter 'A'
      • +
    • (B|C+)+ The string must then follow the letter A with either the letter 'B' or some number of occurrences of the letter 'C' (the + matches one or more times). The + at the end of this section states that we can look for one or more matches of this section.
      • +
    • D Finally, we ensure this section of the string ends with a 'D'
      • +
    +

    The expression would match inputs such as ABBD, ABCCCCD, ABCBCCCD and ACCCCCD

    +

    It most cases, it doesn't take very long for a regex engine to find a match:

    + 
    $ time node -e '/A(B|C+)+D/.test("ACCCCCCCCCCCCCCCCCCCCCCCCCCCCD")'
+        0.04s user 0.01s system 95% cpu 0.052 total
+        
+        $ time node -e '/A(B|C+)+D/.test("ACCCCCCCCCCCCCCCCCCCCCCCCCCCCX")'
+        1.79s user 0.02s system 99% cpu 1.812 total
+
    +

    The entire process of testing it against a 30 characters long string takes around ~52ms. But when given an invalid string, it takes nearly two seconds to complete the test, over ten times as long as it took to test a valid string. The dramatic difference is due to the way regular expressions get evaluated.

    +

    Most Regex engines will work very similarly (with minor differences). The engine will match the first possible way to accept the current character and proceed to the next one. If it then fails to match the next one, it will backtrack and see if there was another way to digest the previous character. If it goes too far down the rabbit hole only to find out the string doesn’t match in the end, and if many characters have multiple valid regex paths, the number of backtracking steps can become very large, resulting in what is known as catastrophic backtracking.

    +

    Let's look at how our expression runs into this problem, using a shorter string: "ACCCX". While it seems fairly straightforward, there are still four different ways that the engine could match those three C's:

    +
      +
    1. CCC
      2. +
    2. CC+C
      3. +
    3. C+CC
      4. +
    4. C+C+C.
      5. +
    +

    The engine has to try each of those combinations to see if any of them potentially match against the expression. When you combine that with the other steps the engine must take, we can use RegEx 101 debugger to see the engine has to take a total of 38 steps before it can determine the string doesn't match.

    +

    From there, the number of steps the engine must use to validate a string just continues to grow.

    + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
    StringNumber of C'sNumber of steps
    ACCCX338
    ACCCCX471
    ACCCCCX5136
    ACCCCCCCCCCCCCCX1465,553
    +

    By the time the string includes 14 C's, the engine has to take over 65,000 steps just to see if the string is valid. These extreme situations can cause them to work very slowly (exponentially related to input size, as shown above), allowing an attacker to exploit this and can cause the service to excessively consume CPU, resulting in a Denial of Service.

    +

    Remediation

    +

    There is no fixed version for github.com/whilp/git-urls.

    +

    References

    + + +
    + +
    +

    More about this vulnerability

    +
    +

    MPL-2.0 license

    diff --git a/docs/snyk/v2.10.7/ghcr.io_dexidp_dex_v2.37.0.html b/docs/snyk/v2.9.13/ghcr.io_dexidp_dex_v2.37.0.html similarity index 98% rename from docs/snyk/v2.10.7/ghcr.io_dexidp_dex_v2.37.0.html rename to docs/snyk/v2.9.13/ghcr.io_dexidp_dex_v2.37.0.html index ec4ba77354db2..da07b86437353 100644 --- a/docs/snyk/v2.10.7/ghcr.io_dexidp_dex_v2.37.0.html +++ b/docs/snyk/v2.9.13/ghcr.io_dexidp_dex_v2.37.0.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    April 21st 2024, 12:20:13 am (UTC+00:00)

    +

    April 28th 2024, 12:22:43 am (UTC+00:00)

    Scanned the following paths: @@ -2045,6 +2045,8 @@

    References

  • https://www.openssl.org/news/secadv/20240109.txt
  • http://www.openwall.com/lists/oss-security/2024/01/09/1
  • https://security.netapp.com/advisory/ntap-20240216-0009/
    • +
  • https://security.netapp.com/advisory/ntap-20240426-0008/
    • +
  • https://security.netapp.com/advisory/ntap-20240426-0013/
    • @@ -4406,9 +4408,37 @@

    Detailed paths

    NVD Description

    -

    This vulnerability has not been analyzed by NVD yet.

    +

    Note: Versions mentioned in the description apply only to the upstream openssl package and not the openssl package as distributed by Alpine. + See How to fix? for Alpine:3.18 relevant fixed versions and status.

    +

    Issue summary: Checking excessively long invalid RSA public keys may take + a long time.

    +

    Impact summary: Applications that use the function EVP_PKEY_public_check() + to check RSA public keys may experience long delays. Where the key that + is being checked has been obtained from an untrusted source this may lead + to a Denial of Service.

    +

    When function EVP_PKEY_public_check() is called on RSA public keys, + a computation is done to confirm that the RSA modulus, n, is composite. + For valid RSA keys, n is a product of two or more large primes and this + computation completes quickly. However, if n is an overly large prime, + then this computation would take a long time.

    +

    An application that calls EVP_PKEY_public_check() and supplies an RSA key + obtained from an untrusted source could be vulnerable to a Denial of Service + attack.

    +

    The function EVP_PKEY_public_check() is not called from other OpenSSL + functions however it is called from the OpenSSL pkey command line + application. For that reason that application is also vulnerable if used + with the '-pubin' and '-check' options on untrusted data.

    +

    The OpenSSL SSL/TLS implementation is not affected by this issue.

    +

    The OpenSSL 3.0 and 3.1 FIPS providers are affected by this issue.

    Remediation

    Upgrade Alpine:3.18 openssl to version 3.1.4-r4 or higher.

    +

    References

    +
    diff --git a/docs/snyk/v2.9.12/haproxy_2.6.14-alpine.html b/docs/snyk/v2.9.13/haproxy_2.6.14-alpine.html similarity index 96% rename from docs/snyk/v2.9.12/haproxy_2.6.14-alpine.html rename to docs/snyk/v2.9.13/haproxy_2.6.14-alpine.html index 92a3cb3a756af..6eb66eb2025ec 100644 --- a/docs/snyk/v2.9.12/haproxy_2.6.14-alpine.html +++ b/docs/snyk/v2.9.13/haproxy_2.6.14-alpine.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    April 21st 2024, 12:22:29 am (UTC+00:00)

    +

    April 28th 2024, 12:22:46 am (UTC+00:00)

    Scanned the following path: @@ -1036,6 +1036,8 @@

    References

  • https://www.openssl.org/news/secadv/20240109.txt
  • http://www.openwall.com/lists/oss-security/2024/01/09/1
  • https://security.netapp.com/advisory/ntap-20240216-0009/
    • +
  • https://security.netapp.com/advisory/ntap-20240426-0008/
    • +
  • https://security.netapp.com/advisory/ntap-20240426-0013/
    • @@ -1357,9 +1359,37 @@

    Detailed paths

    NVD Description

    -

    This vulnerability has not been analyzed by NVD yet.

    +

    Note: Versions mentioned in the description apply only to the upstream openssl package and not the openssl package as distributed by Alpine. + See How to fix? for Alpine:3.18 relevant fixed versions and status.

    +

    Issue summary: Checking excessively long invalid RSA public keys may take + a long time.

    +

    Impact summary: Applications that use the function EVP_PKEY_public_check() + to check RSA public keys may experience long delays. Where the key that + is being checked has been obtained from an untrusted source this may lead + to a Denial of Service.

    +

    When function EVP_PKEY_public_check() is called on RSA public keys, + a computation is done to confirm that the RSA modulus, n, is composite. + For valid RSA keys, n is a product of two or more large primes and this + computation completes quickly. However, if n is an overly large prime, + then this computation would take a long time.

    +

    An application that calls EVP_PKEY_public_check() and supplies an RSA key + obtained from an untrusted source could be vulnerable to a Denial of Service + attack.

    +

    The function EVP_PKEY_public_check() is not called from other OpenSSL + functions however it is called from the OpenSSL pkey command line + application. For that reason that application is also vulnerable if used + with the '-pubin' and '-check' options on untrusted data.

    +

    The OpenSSL SSL/TLS implementation is not affected by this issue.

    +

    The OpenSSL 3.0 and 3.1 FIPS providers are affected by this issue.

    Remediation

    Upgrade Alpine:3.18 openssl to version 3.1.4-r4 or higher.

    +

    References

    +
    diff --git a/docs/snyk/v2.10.7/quay.io_argoproj_argocd_v2.10.7.html b/docs/snyk/v2.9.13/quay.io_argoproj_argocd_v2.9.13.html similarity index 90% rename from docs/snyk/v2.10.7/quay.io_argoproj_argocd_v2.10.7.html rename to docs/snyk/v2.9.13/quay.io_argoproj_argocd_v2.9.13.html index 93ad8fc908e90..53b766a58014d 100644 --- a/docs/snyk/v2.10.7/quay.io_argoproj_argocd_v2.10.7.html +++ b/docs/snyk/v2.9.13/quay.io_argoproj_argocd_v2.9.13.html @@ -7,7 +7,7 @@ Snyk test report - + @@ -456,23 +456,23 @@

    Snyk test report

    -

    April 21st 2024, 12:20:33 am (UTC+00:00)

    +

    April 28th 2024, 12:23:05 am (UTC+00:00)

    Scanned the following paths:
      -
    • quay.io/argoproj/argocd:v2.10.7/argoproj/argocd/Dockerfile (deb)
      • -
    • quay.io/argoproj/argocd:v2.10.7/argoproj/argo-cd/v2//usr/local/bin/argocd (gomodules)
      • -
    • quay.io/argoproj/argocd:v2.10.7//usr/local/bin/kustomize (gomodules)
      • -
    • quay.io/argoproj/argocd:v2.10.7/helm/v3//usr/local/bin/helm (gomodules)
      • -
    • quay.io/argoproj/argocd:v2.10.7/git-lfs/git-lfs//usr/bin/git-lfs (gomodules)
      • +
    • quay.io/argoproj/argocd:v2.9.13/argoproj/argocd/Dockerfile (deb)
      • +
    • quay.io/argoproj/argocd:v2.9.13/argoproj/argo-cd/v2//usr/local/bin/argocd (gomodules)
      • +
    • quay.io/argoproj/argocd:v2.9.13//usr/local/bin/kustomize (gomodules)
      • +
    • quay.io/argoproj/argocd:v2.9.13/helm/v3//usr/local/bin/helm (gomodules)
      • +
    • quay.io/argoproj/argocd:v2.9.13/git-lfs/git-lfs//usr/bin/git-lfs (gomodules)
    -
    36 known vulnerabilities
    -
    181 vulnerable dependency paths
    -
    2275 dependencies
    +
    35 known vulnerabilities
    +
    169 vulnerable dependency paths
    +
    2189 dependencies
    @@ -480,6 +480,88 @@

    Snyk test report

    +
    +

    Denial of Service (DoS)

    +
    + +
    + high severity +
    + +
    + +
      +
    • + Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argo-cd/v2 /usr/local/bin/argocd +
      • +
    • + Package Manager: golang +
      • +
    • + Vulnerable module: + + google.golang.org/grpc +
      • + +
    • Introduced through: + + github.com/argoproj/argo-cd/v2@* and google.golang.org/grpc@v1.56.2 + +
      • +
    + +
    + + +

    Detailed paths

    + +
      +
    • + Introduced through: + github.com/argoproj/argo-cd/v2@* + + google.golang.org/grpc@v1.56.2 + + + +
      • +
    + +
    + +
    + +

    Overview

    +

    google.golang.org/grpc is a Go implementation of gRPC

    +

    Affected versions of this package are vulnerable to Denial of Service (DoS) in the implementation of the HTTP/2 protocol. An attacker can cause a denial of service (including via DDoS) by rapidly resetting many streams through request cancellation.

    +

    Remediation

    +

    Upgrade google.golang.org/grpc to version 1.56.3, 1.57.1, 1.58.3 or higher.

    +

    References

    + + +
    + +
    +

    More about this vulnerability

    +
    + +

    Allocation of Resources Without Limits or Throttling

    @@ -492,7 +574,7 @@

    Allocation of Resources Without Limits or Throttling

  • - Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argo-cd/v2 /usr/local/bin/argocd
  • Package Manager: golang @@ -572,7 +654,7 @@

    CVE-2020-22916

    • - Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argocd Dockerfile
    • Package Manager: ubuntu:22.04 @@ -585,7 +667,7 @@

      CVE-2020-22916

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 and xz-utils/liblzma5@5.2.5-2ubuntu1 + docker-image|quay.io/argoproj/argocd@v2.9.13 and xz-utils/liblzma5@5.2.5-2ubuntu1
    @@ -598,7 +680,7 @@

    Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 xz-utils/liblzma5@5.2.5-2ubuntu1 @@ -648,7 +730,7 @@

      CVE-2023-51767

      • - Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argocd Dockerfile
      • Package Manager: ubuntu:22.04 @@ -661,7 +743,7 @@

        CVE-2023-51767

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 and openssh/openssh-client@1:8.9p1-3ubuntu0.6 + docker-image|quay.io/argoproj/argocd@v2.9.13 and openssh/openssh-client@1:8.9p1-3ubuntu0.7
      @@ -674,9 +756,9 @@

      Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 - openssh/openssh-client@1:8.9p1-3ubuntu0.6 + openssh/openssh-client@1:8.9p1-3ubuntu0.7 @@ -724,7 +806,7 @@

        Information Exposure

        • - Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argocd Dockerfile
        • Package Manager: ubuntu:22.04 @@ -737,7 +819,7 @@

          Information Exposure

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 and libgcrypt20@1.9.4-3ubuntu3 + docker-image|quay.io/argoproj/argocd@v2.9.13 and libgcrypt20@1.9.4-3ubuntu3
        @@ -750,7 +832,7 @@

        Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 libgcrypt20@1.9.4-3ubuntu3 @@ -759,7 +841,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 gnupg2/dirmngr@2.2.27-3ubuntu2.1 @@ -770,7 +852,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -781,7 +863,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 apt@2.4.12 @@ -794,7 +876,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 apt@2.4.12 @@ -807,7 +889,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -820,7 +902,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -833,7 +915,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -846,7 +928,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -859,7 +941,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -872,7 +954,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -885,7 +967,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 apt@2.4.12 @@ -915,6 +997,7 @@

          References

        • http://people.ubuntu.com/~ubuntu-security/cve/CVE-2024-2236
        • https://access.redhat.com/security/cve/CVE-2024-2236
        • https://bugzilla.redhat.com/show_bug.cgi?id=2268268
          • +
        • https://bugzilla.redhat.com/show_bug.cgi?id=2245218
        @@ -923,6 +1006,78 @@

        References

        More about this vulnerability

    • +
    +
    +

    CVE-2024-32487

    +
    + +
    + medium severity +
    + +
    + +
      +
    • + Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argocd Dockerfile +
      • +
    • + Package Manager: ubuntu:22.04 +
      • +
    • + Vulnerable module: + + less +
      • + +
    • Introduced through: + + docker-image|quay.io/argoproj/argocd@v2.9.13 and less@590-1ubuntu0.22.04.2 + +
      • +
    + +
    + + +

    Detailed paths

    + +
      +
    • + Introduced through: + docker-image|quay.io/argoproj/argocd@v2.9.13 + + less@590-1ubuntu0.22.04.2 + + + +
      • +
    + +
    + +
    + +

    NVD Description

    +

    Note: Versions mentioned in the description apply only to the upstream less package and not the less package as distributed by Ubuntu. + See How to fix? for Ubuntu:22.04 relevant fixed versions and status.

    +

    less through 653 allows OS command execution via a newline character in the name of a file, because quoting is mishandled in filename.c. Exploitation typically requires use with attacker-controlled file names, such as the files extracted from an untrusted archive. Exploitation also requires the LESSOPEN environment variable, but this is set by default in many common cases.

    +

    Remediation

    +

    There is no fixed version for Ubuntu:22.04 less.

    +

    References

    + + +
    + +
    +

    More about this vulnerability

    +
    +

    CVE-2024-26461

    @@ -936,7 +1091,7 @@

    CVE-2024-26461

    • - Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argocd Dockerfile
    • Package Manager: ubuntu:22.04 @@ -949,7 +1104,7 @@

      CVE-2024-26461

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 and krb5/libk5crypto3@1.19.2-2ubuntu0.3 + docker-image|quay.io/argoproj/argocd@v2.9.13 and krb5/libk5crypto3@1.19.2-2ubuntu0.3
    @@ -962,7 +1117,7 @@

    Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 krb5/libk5crypto3@1.19.2-2ubuntu0.3 @@ -971,7 +1126,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 adduser@3.118ubuntu5 @@ -992,7 +1147,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 adduser@3.118ubuntu5 @@ -1015,7 +1170,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 krb5/libkrb5-3@1.19.2-2ubuntu0.3 @@ -1024,7 +1179,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 adduser@3.118ubuntu5 @@ -1045,7 +1200,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -1054,9 +1209,9 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 - openssh/openssh-client@1:8.9p1-3ubuntu0.6 + openssh/openssh-client@1:8.9p1-3ubuntu0.7 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -1065,7 +1220,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 git@1:2.34.1-1ubuntu1.10 @@ -1078,7 +1233,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 git@1:2.34.1-1ubuntu1.10 @@ -1093,7 +1248,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 adduser@3.118ubuntu5 @@ -1112,7 +1267,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 krb5/libkrb5support0@1.19.2-2ubuntu0.3 @@ -1156,7 +1311,7 @@

      CVE-2024-26462

      • - Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argocd Dockerfile
      • Package Manager: ubuntu:22.04 @@ -1169,7 +1324,7 @@

        CVE-2024-26462

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 and krb5/libk5crypto3@1.19.2-2ubuntu0.3 + docker-image|quay.io/argoproj/argocd@v2.9.13 and krb5/libk5crypto3@1.19.2-2ubuntu0.3
      @@ -1182,7 +1337,7 @@

      Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 krb5/libk5crypto3@1.19.2-2ubuntu0.3 @@ -1191,7 +1346,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 adduser@3.118ubuntu5 @@ -1212,7 +1367,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 adduser@3.118ubuntu5 @@ -1235,7 +1390,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 krb5/libkrb5-3@1.19.2-2ubuntu0.3 @@ -1244,7 +1399,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 adduser@3.118ubuntu5 @@ -1265,7 +1420,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -1274,9 +1429,9 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 - openssh/openssh-client@1:8.9p1-3ubuntu0.6 + openssh/openssh-client@1:8.9p1-3ubuntu0.7 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -1285,7 +1440,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 git@1:2.34.1-1ubuntu1.10 @@ -1298,7 +1453,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 git@1:2.34.1-1ubuntu1.10 @@ -1313,7 +1468,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 adduser@3.118ubuntu5 @@ -1332,7 +1487,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 krb5/libkrb5support0@1.19.2-2ubuntu0.3 @@ -1376,7 +1531,7 @@

        CVE-2024-26458

        • - Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argocd Dockerfile
        • Package Manager: ubuntu:22.04 @@ -1389,7 +1544,7 @@

          CVE-2024-26458

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 and krb5/libk5crypto3@1.19.2-2ubuntu0.3 + docker-image|quay.io/argoproj/argocd@v2.9.13 and krb5/libk5crypto3@1.19.2-2ubuntu0.3
        @@ -1402,7 +1557,7 @@

        Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 krb5/libk5crypto3@1.19.2-2ubuntu0.3 @@ -1411,7 +1566,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 adduser@3.118ubuntu5 @@ -1432,7 +1587,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 adduser@3.118ubuntu5 @@ -1455,7 +1610,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 krb5/libkrb5-3@1.19.2-2ubuntu0.3 @@ -1464,7 +1619,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 adduser@3.118ubuntu5 @@ -1485,7 +1640,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -1494,9 +1649,9 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 - openssh/openssh-client@1:8.9p1-3ubuntu0.6 + openssh/openssh-client@1:8.9p1-3ubuntu0.7 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -1505,7 +1660,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 git@1:2.34.1-1ubuntu1.10 @@ -1518,7 +1673,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 git@1:2.34.1-1ubuntu1.10 @@ -1533,7 +1688,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 adduser@3.118ubuntu5 @@ -1552,7 +1707,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 krb5/libkrb5support0@1.19.2-2ubuntu0.3 @@ -1596,7 +1751,7 @@

          LGPL-3.0 license

          • - Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argo-cd/v2 /usr/local/bin/argocd
          • Package Manager: golang @@ -1656,7 +1811,7 @@

            Infinite loop

            • - Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argo-cd/v2 /usr/local/bin/argocd
            • Package Manager: golang @@ -1727,7 +1882,7 @@

              Stack-based Buffer Overflow

              • - Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argo-cd/v2 /usr/local/bin/argocd
              • Package Manager: golang @@ -1795,7 +1950,7 @@

                Infinite loop

                • - Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argo-cd/v2 /usr/local/bin/argocd
                • Package Manager: golang @@ -1866,7 +2021,7 @@

                  Authentication Bypass by Capture-replay

                  • - Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argo-cd/v2 /usr/local/bin/argocd
                  • Package Manager: golang @@ -1951,367 +2106,6 @@

                    References

                    More about this vulnerability

    -
    -
    -

    Information Exposure

    -
    - -
    - medium severity -
    - -
    - -
      -
    • - Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argocd Dockerfile -
      • -
    • - Package Manager: ubuntu:22.04 -
      • -
    • - Vulnerable module: - - gnutls28/libgnutls30 -
      • - -
    • Introduced through: - - docker-image|quay.io/argoproj/argocd@v2.10.7 and gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - -
      • -
    - -
    - - -

    Detailed paths

    - -
      -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
      • -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 - - apt@2.4.12 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
      • -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 - - gnupg2/dirmngr@2.2.27-3ubuntu2.1 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
      • -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 - - git@1:2.34.1-1ubuntu1.10 - - curl/libcurl3-gnutls@7.81.0-1ubuntu1.16 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
      • -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 - - git@1:2.34.1-1ubuntu1.10 - - curl/libcurl3-gnutls@7.81.0-1ubuntu1.16 - - openldap/libldap-2.5-0@2.5.17+dfsg-0ubuntu0.22.04.1 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
      • -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 - - git@1:2.34.1-1ubuntu1.10 - - curl/libcurl3-gnutls@7.81.0-1ubuntu1.16 - - rtmpdump/librtmp1@2.4+20151223.gitfa8646d.1-2build4 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
      • -
    - -
    - -
    - -

    NVD Description

    -

    Note: Versions mentioned in the description apply only to the upstream gnutls28 package and not the gnutls28 package as distributed by Ubuntu. - See How to fix? for Ubuntu:22.04 relevant fixed versions and status.

    -

    A flaw was found in GnuTLS. The Minerva attack is a cryptographic vulnerability that exploits deterministic behavior in systems like GnuTLS, leading to side-channel leaks. In specific scenarios, such as when using the GNUTLS_PRIVKEY_FLAG_REPRODUCIBLE flag, it can result in a noticeable step in nonce size from 513 to 512 bits, exposing a potential timing side-channel.

    -

    Remediation

    -

    Upgrade Ubuntu:22.04 gnutls28 to version 3.7.3-4ubuntu1.5 or higher.

    -

    References

    - - -
    - -
    -

    More about this vulnerability

    -
    - -
    -
    -

    Uncaught Exception

    -
    - -
    - medium severity -
    - -
    - -
      -
    • - Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argocd Dockerfile -
      • -
    • - Package Manager: ubuntu:22.04 -
      • -
    • - Vulnerable module: - - gnutls28/libgnutls30 -
      • - -
    • Introduced through: - - docker-image|quay.io/argoproj/argocd@v2.10.7 and gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - -
      • -
    - -
    - - -

    Detailed paths

    - -
      -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
      • -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 - - apt@2.4.12 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
      • -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 - - gnupg2/dirmngr@2.2.27-3ubuntu2.1 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
      • -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 - - git@1:2.34.1-1ubuntu1.10 - - curl/libcurl3-gnutls@7.81.0-1ubuntu1.16 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
      • -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 - - git@1:2.34.1-1ubuntu1.10 - - curl/libcurl3-gnutls@7.81.0-1ubuntu1.16 - - openldap/libldap-2.5-0@2.5.17+dfsg-0ubuntu0.22.04.1 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
      • -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 - - git@1:2.34.1-1ubuntu1.10 - - curl/libcurl3-gnutls@7.81.0-1ubuntu1.16 - - rtmpdump/librtmp1@2.4+20151223.gitfa8646d.1-2build4 - - gnutls28/libgnutls30@3.7.3-4ubuntu1.4 - - - -
      • -
    - -
    - -
    - -

    NVD Description

    -

    Note: Versions mentioned in the description apply only to the upstream gnutls28 package and not the gnutls28 package as distributed by Ubuntu. - See How to fix? for Ubuntu:22.04 relevant fixed versions and status.

    -

    A flaw has been discovered in GnuTLS where an application crash can be induced when attempting to verify a specially crafted .pem bundle using the "certtool --verify-chain" command.

    -

    Remediation

    -

    Upgrade Ubuntu:22.04 gnutls28 to version 3.7.3-4ubuntu1.5 or higher.

    -

    References

    - - -
    - -
    -

    More about this vulnerability

    -
    - -
    -
    -

    CVE-2024-2961

    -
    - -
    - medium severity -
    - -
    - -
      -
    • - Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argocd Dockerfile -
      • -
    • - Package Manager: ubuntu:22.04 -
      • -
    • - Vulnerable module: - - glibc/libc-bin -
      • - -
    • Introduced through: - - docker-image|quay.io/argoproj/argocd@v2.10.7 and glibc/libc-bin@2.35-0ubuntu3.6 - -
      • -
    - -
    - - -

    Detailed paths

    - -
      -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 - - glibc/libc-bin@2.35-0ubuntu3.6 - - - -
      • -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 - - glibc/libc6@2.35-0ubuntu3.6 - - - -
      • -
    - -
    - -
    - -

    NVD Description

    -

    Note: Versions mentioned in the description apply only to the upstream glibc package and not the glibc package as distributed by Ubuntu. - See How to fix? for Ubuntu:22.04 relevant fixed versions and status.

    -

    The iconv() function in the GNU C Library versions 2.39 and older may overflow the output buffer passed to it by up to 4 bytes when converting strings to the ISO-2022-CN-EXT character set, which may be used to crash an application or overwrite a neighbouring variable.

    -

    Remediation

    -

    Upgrade Ubuntu:22.04 glibc to version 2.35-0ubuntu3.7 or higher.

    -

    References

    - - -
    - -
    -

    More about this vulnerability

    -
    -

    MPL-2.0 license

    @@ -2325,7 +2119,7 @@

    MPL-2.0 license

    • - Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argo-cd/v2 /usr/local/bin/argocd
    • Package Manager: golang @@ -2385,7 +2179,7 @@

      MPL-2.0 license

      • - Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argo-cd/v2 /usr/local/bin/argocd
      • Package Manager: golang @@ -2445,7 +2239,7 @@

        MPL-2.0 license

        • - Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argo-cd/v2 /usr/local/bin/argocd
        • Package Manager: golang @@ -2505,7 +2299,7 @@

          MPL-2.0 license

          • - Manifest file: quay.io/argoproj/argocd:v2.10.7/helm/v3 /usr/local/bin/helm + Manifest file: quay.io/argoproj/argocd:v2.9.13/helm/v3 /usr/local/bin/helm
          • Package Manager: golang @@ -2565,7 +2359,7 @@

            MPL-2.0 license

            • - Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argo-cd/v2 /usr/local/bin/argocd
            • Package Manager: golang @@ -2625,7 +2419,7 @@

              MPL-2.0 license

              • - Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argo-cd/v2 /usr/local/bin/argocd
              • Package Manager: golang @@ -2685,7 +2479,7 @@

                Improper Handling of Highly Compressed Data (Data Amplif
                • - Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argo-cd/v2 /usr/local/bin/argocd
                • Package Manager: golang @@ -2754,7 +2548,7 @@

                  CVE-2023-7008

                  • - Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argocd Dockerfile
                  • Package Manager: ubuntu:22.04 @@ -2767,7 +2561,7 @@

                    CVE-2023-7008

                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 and systemd/libsystemd0@249.11-0ubuntu3.12 + docker-image|quay.io/argoproj/argocd@v2.9.13 and systemd/libsystemd0@249.11-0ubuntu3.12
                  @@ -2780,7 +2574,7 @@

                  Detailed paths

                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 systemd/libsystemd0@249.11-0ubuntu3.12 @@ -2789,7 +2583,7 @@

                    Detailed paths

                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 apt@2.4.12 @@ -2800,7 +2594,7 @@

                    Detailed paths

                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 procps/libprocps8@2:3.3.17-6ubuntu2.1 @@ -2811,7 +2605,7 @@

                    Detailed paths

                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 util-linux@2.37.2-4ubuntu3.4 @@ -2822,7 +2616,7 @@

                    Detailed paths

                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 util-linux/bsdutils@1:2.37.2-4ubuntu3.4 @@ -2833,7 +2627,7 @@

                    Detailed paths

                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 apt@2.4.12 @@ -2846,7 +2640,7 @@

                    Detailed paths

                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 systemd/libudev1@249.11-0ubuntu3.12 @@ -2855,7 +2649,7 @@

                    Detailed paths

                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 libfido2/libfido2-1@1.10.0-1 @@ -2866,7 +2660,7 @@

                    Detailed paths

                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 util-linux@2.37.2-4ubuntu3.4 @@ -2877,7 +2671,7 @@

                    Detailed paths

                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 apt@2.4.12 @@ -2930,7 +2724,7 @@

                    Arbitrary Code Injection

                    • - Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argocd Dockerfile
                    • Package Manager: ubuntu:22.04 @@ -2943,7 +2737,7 @@

                      Arbitrary Code Injection

                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 and shadow/passwd@1:4.8.1-2ubuntu2.2 + docker-image|quay.io/argoproj/argocd@v2.9.13 and shadow/passwd@1:4.8.1-2ubuntu2.2
                    @@ -2956,7 +2750,7 @@

                    Detailed paths

                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 shadow/passwd@1:4.8.1-2ubuntu2.2 @@ -2965,7 +2759,7 @@

                      Detailed paths

                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 adduser@3.118ubuntu5 @@ -2976,9 +2770,9 @@

                      Detailed paths

                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 - openssh/openssh-client@1:8.9p1-3ubuntu0.6 + openssh/openssh-client@1:8.9p1-3ubuntu0.7 shadow/passwd@1:4.8.1-2ubuntu2.2 @@ -2987,7 +2781,7 @@

                      Detailed paths

                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 shadow/login@1:4.8.1-2ubuntu2.2 @@ -3034,7 +2828,7 @@

                      Uncontrolled Recursion

                      • - Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argocd Dockerfile
                      • Package Manager: ubuntu:22.04 @@ -3047,7 +2841,7 @@

                        Uncontrolled Recursion

                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 and pcre3/libpcre3@2:8.39-13ubuntu0.22.04.1 + docker-image|quay.io/argoproj/argocd@v2.9.13 and pcre3/libpcre3@2:8.39-13ubuntu0.22.04.1
                      @@ -3060,7 +2854,7 @@

                      Detailed paths

                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 pcre3/libpcre3@2:8.39-13ubuntu0.22.04.1 @@ -3069,7 +2863,7 @@

                        Detailed paths

                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 grep@3.7-1build1 @@ -3122,7 +2916,7 @@

                        Release of Invalid Pointer or Reference

                        • - Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argocd Dockerfile
                        • Package Manager: ubuntu:22.04 @@ -3135,7 +2929,7 @@

                          Release of Invalid Pointer or Reference

                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 and patch@2.7.6-7build2 + docker-image|quay.io/argoproj/argocd@v2.9.13 and patch@2.7.6-7build2
                        @@ -3148,7 +2942,7 @@

                        Detailed paths

                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 patch@2.7.6-7build2 @@ -3192,7 +2986,7 @@

                          Double Free

                          • - Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argocd Dockerfile
                          • Package Manager: ubuntu:22.04 @@ -3205,7 +2999,7 @@

                            Double Free

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 and patch@2.7.6-7build2 + docker-image|quay.io/argoproj/argocd@v2.9.13 and patch@2.7.6-7build2
                          @@ -3218,7 +3012,7 @@

                          Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 patch@2.7.6-7build2 @@ -3267,7 +3061,7 @@

                            CVE-2023-50495

                            • - Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argocd Dockerfile
                            • Package Manager: ubuntu:22.04 @@ -3280,7 +3074,7 @@

                              CVE-2023-50495

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 and ncurses/libtinfo6@6.3-2ubuntu0.1 + docker-image|quay.io/argoproj/argocd@v2.9.13 and ncurses/libtinfo6@6.3-2ubuntu0.1
                            @@ -3293,7 +3087,7 @@

                            Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 ncurses/libtinfo6@6.3-2ubuntu0.1 @@ -3302,7 +3096,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 bash@5.1-6ubuntu1.1 @@ -3313,7 +3107,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 ncurses/libncursesw6@6.3-2ubuntu0.1 @@ -3324,7 +3118,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 less@590-1ubuntu0.22.04.2 @@ -3335,7 +3129,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 libedit/libedit2@3.1-20210910-1build1 @@ -3346,7 +3140,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 ncurses/libncurses6@6.3-2ubuntu0.1 @@ -3357,7 +3151,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 ncurses/ncurses-bin@6.3-2ubuntu0.1 @@ -3368,7 +3162,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 procps@2:3.3.17-6ubuntu2.1 @@ -3379,7 +3173,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 util-linux@2.37.2-4ubuntu3.4 @@ -3390,7 +3184,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -3405,7 +3199,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3420,7 +3214,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 ncurses/libncursesw6@6.3-2ubuntu0.1 @@ -3429,7 +3223,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 procps@2:3.3.17-6ubuntu2.1 @@ -3440,7 +3234,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3455,7 +3249,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 ncurses/libncurses6@6.3-2ubuntu0.1 @@ -3464,7 +3258,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 procps@2:3.3.17-6ubuntu2.1 @@ -3475,7 +3269,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 ncurses/ncurses-base@6.3-2ubuntu0.1 @@ -3484,7 +3278,7 @@

                              Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 ncurses/ncurses-bin@6.3-2ubuntu0.1 @@ -3531,7 +3325,7 @@

                              CVE-2023-45918

                              • - Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argocd Dockerfile
                              • Package Manager: ubuntu:22.04 @@ -3544,7 +3338,7 @@

                                CVE-2023-45918

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 and ncurses/libtinfo6@6.3-2ubuntu0.1 + docker-image|quay.io/argoproj/argocd@v2.9.13 and ncurses/libtinfo6@6.3-2ubuntu0.1
                              @@ -3557,7 +3351,7 @@

                              Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 ncurses/libtinfo6@6.3-2ubuntu0.1 @@ -3566,7 +3360,7 @@

                                Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 bash@5.1-6ubuntu1.1 @@ -3577,7 +3371,7 @@

                                Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 ncurses/libncursesw6@6.3-2ubuntu0.1 @@ -3588,7 +3382,7 @@

                                Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 less@590-1ubuntu0.22.04.2 @@ -3599,7 +3393,7 @@

                                Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 libedit/libedit2@3.1-20210910-1build1 @@ -3610,7 +3404,7 @@

                                Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 ncurses/libncurses6@6.3-2ubuntu0.1 @@ -3621,7 +3415,7 @@

                                Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 ncurses/ncurses-bin@6.3-2ubuntu0.1 @@ -3632,7 +3426,7 @@

                                Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 procps@2:3.3.17-6ubuntu2.1 @@ -3643,7 +3437,7 @@

                                Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 util-linux@2.37.2-4ubuntu3.4 @@ -3654,7 +3448,7 @@

                                Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -3669,7 +3463,7 @@

                                Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3684,7 +3478,7 @@

                                Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 ncurses/libncursesw6@6.3-2ubuntu0.1 @@ -3693,7 +3487,7 @@

                                Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 procps@2:3.3.17-6ubuntu2.1 @@ -3704,7 +3498,7 @@

                                Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3719,7 +3513,7 @@

                                Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 ncurses/libncurses6@6.3-2ubuntu0.1 @@ -3728,7 +3522,7 @@

                                Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 procps@2:3.3.17-6ubuntu2.1 @@ -3739,7 +3533,7 @@

                                Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 ncurses/ncurses-base@6.3-2ubuntu0.1 @@ -3748,7 +3542,7 @@

                                Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 ncurses/ncurses-bin@6.3-2ubuntu0.1 @@ -3793,7 +3587,7 @@

                                Resource Exhaustion

                                • - Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argocd Dockerfile
                                • Package Manager: ubuntu:22.04 @@ -3806,7 +3600,7 @@

                                  Resource Exhaustion

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 and libzstd/libzstd1@1.4.8+dfsg-3build1 + docker-image|quay.io/argoproj/argocd@v2.9.13 and libzstd/libzstd1@1.4.8+dfsg-3build1
                                @@ -3819,7 +3613,7 @@

                                Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 libzstd/libzstd1@1.4.8+dfsg-3build1 @@ -3870,7 +3664,7 @@

                                  Integer Overflow or Wraparound

                                  • - Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argocd Dockerfile
                                  • Package Manager: ubuntu:22.04 @@ -3883,7 +3677,7 @@

                                    Integer Overflow or Wraparound

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 and krb5/libk5crypto3@1.19.2-2ubuntu0.3 + docker-image|quay.io/argoproj/argocd@v2.9.13 and krb5/libk5crypto3@1.19.2-2ubuntu0.3
                                  @@ -3896,7 +3690,7 @@

                                  Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 krb5/libk5crypto3@1.19.2-2ubuntu0.3 @@ -3905,7 +3699,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 adduser@3.118ubuntu5 @@ -3926,7 +3720,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 adduser@3.118ubuntu5 @@ -3949,7 +3743,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 krb5/libkrb5-3@1.19.2-2ubuntu0.3 @@ -3958,7 +3752,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 adduser@3.118ubuntu5 @@ -3979,7 +3773,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -3988,9 +3782,9 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 - openssh/openssh-client@1:8.9p1-3ubuntu0.6 + openssh/openssh-client@1:8.9p1-3ubuntu0.7 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -3999,7 +3793,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 git@1:2.34.1-1ubuntu1.10 @@ -4012,7 +3806,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 git@1:2.34.1-1ubuntu1.10 @@ -4027,7 +3821,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 adduser@3.118ubuntu5 @@ -4046,7 +3840,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 krb5/libkrb5support0@1.19.2-2ubuntu0.3 @@ -4094,7 +3888,7 @@

                                    Out-of-bounds Write

                                    • - Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argocd Dockerfile
                                    • Package Manager: ubuntu:22.04 @@ -4107,7 +3901,7 @@

                                      Out-of-bounds Write

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 and gnupg2/gpgv@2.2.27-3ubuntu2.1 + docker-image|quay.io/argoproj/argocd@v2.9.13 and gnupg2/gpgv@2.2.27-3ubuntu2.1
                                    @@ -4120,7 +3914,7 @@

                                    Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 gnupg2/gpgv@2.2.27-3ubuntu2.1 @@ -4129,7 +3923,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 apt@2.4.12 @@ -4140,7 +3934,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4151,7 +3945,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 gnupg2/dirmngr@2.2.27-3ubuntu2.1 @@ -4162,7 +3956,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -4173,7 +3967,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4186,7 +3980,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4199,7 +3993,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 gnupg2/dirmngr@2.2.27-3ubuntu2.1 @@ -4208,7 +4002,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4219,7 +4013,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4232,7 +4026,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 gnupg2/gnupg-l10n@2.2.27-3ubuntu2.1 @@ -4241,7 +4035,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4252,7 +4046,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 gnupg2/gnupg-utils@2.2.27-3ubuntu2.1 @@ -4261,7 +4055,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4272,7 +4066,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -4281,7 +4075,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4292,7 +4086,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4305,7 +4099,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4318,7 +4112,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 gnupg2/gpg-agent@2.2.27-3ubuntu2.1 @@ -4327,7 +4121,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4338,7 +4132,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4351,7 +4145,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4364,7 +4158,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 gnupg2/gpg-wks-client@2.2.27-3ubuntu2.1 @@ -4373,7 +4167,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4384,7 +4178,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 gnupg2/gpg-wks-server@2.2.27-3ubuntu2.1 @@ -4393,7 +4187,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4404,7 +4198,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 gnupg2/gpgsm@2.2.27-3ubuntu2.1 @@ -4413,7 +4207,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4424,7 +4218,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4473,7 +4267,7 @@

                                      Allocation of Resources Without Limits or Throttling

                                    • - Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argocd Dockerfile
                                    • Package Manager: ubuntu:22.04 @@ -4486,7 +4280,7 @@

                                      Allocation of Resources Without Limits or Throttling

                                      Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 and glibc/libc-bin@2.35-0ubuntu3.6 + docker-image|quay.io/argoproj/argocd@v2.9.13 and glibc/libc-bin@2.35-0ubuntu3.7
                                    @@ -4499,18 +4293,18 @@

                                    Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 - glibc/libc-bin@2.35-0ubuntu3.6 + glibc/libc-bin@2.35-0ubuntu3.7
                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 - glibc/libc6@2.35-0ubuntu3.6 + glibc/libc6@2.35-0ubuntu3.7 @@ -4554,7 +4348,7 @@

                                      Improper Input Validation

                                      • - Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argocd Dockerfile
                                      • Package Manager: ubuntu:22.04 @@ -4568,7 +4362,7 @@

                                        Improper Input Validation

                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7, git@1:2.34.1-1ubuntu1.10 and others + docker-image|quay.io/argoproj/argocd@v2.9.13, git@1:2.34.1-1ubuntu1.10 and others
                                      @@ -4580,7 +4374,7 @@

                                      Detailed paths

                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 git@1:2.34.1-1ubuntu1.10 @@ -4591,7 +4385,7 @@

                                        Detailed paths

                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 git@1:2.34.1-1ubuntu1.10 @@ -4600,7 +4394,7 @@

                                        Detailed paths

                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 git-lfs@3.0.2-1ubuntu0.2 @@ -4647,7 +4441,7 @@

                                        Uncontrolled Recursion

                                        • - Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argocd Dockerfile
                                        • Package Manager: ubuntu:22.04 @@ -4660,7 +4454,7 @@

                                          Uncontrolled Recursion

                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 and gcc-12/libstdc++6@12.3.0-1ubuntu1~22.04 + docker-image|quay.io/argoproj/argocd@v2.9.13 and gcc-12/libstdc++6@12.3.0-1ubuntu1~22.04
                                        @@ -4673,7 +4467,7 @@

                                        Detailed paths

                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 gcc-12/libstdc++6@12.3.0-1ubuntu1~22.04 @@ -4682,7 +4476,7 @@

                                          Detailed paths

                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 apt@2.4.12 @@ -4693,7 +4487,7 @@

                                          Detailed paths

                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 apt@2.4.12 @@ -4706,7 +4500,7 @@

                                          Detailed paths

                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 gcc-12/gcc-12-base@12.3.0-1ubuntu1~22.04 @@ -4715,7 +4509,7 @@

                                          Detailed paths

                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 gcc-12/libgcc-s1@12.3.0-1ubuntu1~22.04 @@ -4762,7 +4556,7 @@

                                          Improper Input Validation

                                          • - Manifest file: quay.io/argoproj/argocd:v2.10.7/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argocd Dockerfile
                                          • Package Manager: ubuntu:22.04 @@ -4775,7 +4569,7 @@

                                            Improper Input Validation

                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 and coreutils@8.32-4.1ubuntu1.2 + docker-image|quay.io/argoproj/argocd@v2.9.13 and coreutils@8.32-4.1ubuntu1.2
                                          @@ -4788,7 +4582,7 @@

                                          Detailed paths

                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.7 + docker-image|quay.io/argoproj/argocd@v2.9.13 coreutils@8.32-4.1ubuntu1.2 diff --git a/docs/snyk/v2.9.13/redis_7.0.15-alpine.html b/docs/snyk/v2.9.13/redis_7.0.15-alpine.html new file mode 100644 index 0000000000000..f287402b77fef --- /dev/null +++ b/docs/snyk/v2.9.13/redis_7.0.15-alpine.html @@ -0,0 +1,657 @@ + + + + + + + + + Snyk test report + + + + + + + + + +
                                            +
                                            +
                                            +
                                            + + + Snyk - Open Source Security + + + + + + + +
                                            +

                                            Snyk test report

                                            + +

                                            April 28th 2024, 12:23:09 am (UTC+00:00)

                                            +
                                            +
                                            + Scanned the following paths: +
                                              +
                                            • redis:7.0.15-alpine (apk)
                                              • +
                                            • redis:7.0.15-alpine/tianon/gosu//usr/local/bin/gosu (gomodules)
                                              • +
                                            +
                                            + +
                                            +
                                            1 known vulnerabilities
                                            +
                                            9 vulnerable dependency paths
                                            +
                                            19 dependencies
                                            +
                                            +
                                            +
                                            +
                                            + +
                                            +
                                            +
                                            +

                                            CVE-2024-2511

                                            +
                                            + +
                                            + low severity +
                                            + +
                                            + +
                                              +
                                            • + Package Manager: alpine:3.19 +
                                              • +
                                            • + Vulnerable module: + + openssl/libcrypto3 +
                                              • + +
                                            • Introduced through: + + docker-image|redis@7.0.15-alpine and openssl/libcrypto3@3.1.4-r5 + +
                                              • +
                                            + +
                                            + + +

                                            Detailed paths

                                            + +
                                              +
                                            • + Introduced through: + docker-image|redis@7.0.15-alpine + + openssl/libcrypto3@3.1.4-r5 + + + +
                                              • +
                                            • + Introduced through: + docker-image|redis@7.0.15-alpine + + .redis-rundeps@20240315.235535 + + openssl/libcrypto3@3.1.4-r5 + + + +
                                              • +
                                            • + Introduced through: + docker-image|redis@7.0.15-alpine + + apk-tools/apk-tools@2.14.0-r5 + + openssl/libcrypto3@3.1.4-r5 + + + +
                                              • +
                                            • + Introduced through: + docker-image|redis@7.0.15-alpine + + busybox/ssl_client@1.36.1-r15 + + openssl/libcrypto3@3.1.4-r5 + + + +
                                              • +
                                            • + Introduced through: + docker-image|redis@7.0.15-alpine + + .redis-rundeps@20240315.235535 + + openssl/libssl3@3.1.4-r5 + + openssl/libcrypto3@3.1.4-r5 + + + +
                                              • +
                                            • + Introduced through: + docker-image|redis@7.0.15-alpine + + openssl/libssl3@3.1.4-r5 + + + +
                                              • +
                                            • + Introduced through: + docker-image|redis@7.0.15-alpine + + .redis-rundeps@20240315.235535 + + openssl/libssl3@3.1.4-r5 + + + +
                                              • +
                                            • + Introduced through: + docker-image|redis@7.0.15-alpine + + apk-tools/apk-tools@2.14.0-r5 + + openssl/libssl3@3.1.4-r5 + + + +
                                              • +
                                            • + Introduced through: + docker-image|redis@7.0.15-alpine + + busybox/ssl_client@1.36.1-r15 + + openssl/libssl3@3.1.4-r5 + + + +
                                              • +
                                            + +
                                            + +
                                            + +

                                            NVD Description

                                            +

                                            Note: Versions mentioned in the description apply only to the upstream openssl package and not the openssl package as distributed by Alpine. + See How to fix? for Alpine:3.19 relevant fixed versions and status.

                                            +

                                            Issue summary: Some non-default TLS server configurations can cause unbounded + memory growth when processing TLSv1.3 sessions

                                            +

                                            Impact summary: An attacker may exploit certain server configurations to trigger + unbounded memory growth that would lead to a Denial of Service

                                            +

                                            This problem can occur in TLSv1.3 if the non-default SSL_OP_NO_TICKET option is + being used (but not if early_data support is also configured and the default + anti-replay protection is in use). In this case, under certain conditions, the + session cache can get into an incorrect state and it will fail to flush properly + as it fills. The session cache will continue to grow in an unbounded manner. A + malicious client could deliberately create the scenario for this failure to + force a Denial of Service. It may also happen by accident in normal operation.

                                            +

                                            This issue only affects TLS servers supporting TLSv1.3. It does not affect TLS + clients.

                                            +

                                            The FIPS modules in 3.2, 3.1 and 3.0 are not affected by this issue. OpenSSL + 1.0.2 is also not affected by this issue.

                                            +

                                            Remediation

                                            +

                                            Upgrade Alpine:3.19 openssl to version 3.1.4-r6 or higher.

                                            +

                                            References

                                            + + +
                                            + +
                                            +

                                            More about this vulnerability

                                            +
                                            + +
                                            +
                                            +
                                            +
                                            + + + From 17cca81c09ef6a41cf9c0f5a705224be4bee28a0 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 29 Apr 2024 15:14:58 +0300 Subject: [PATCH 048/206] chore(deps): bump bitnami/kubectl from 1.27 to 1.30 in /test/container (#18012) Bumps bitnami/kubectl from 1.27 to 1.30. --- updated-dependencies: - dependency-name: bitnami/kubectl dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- test/container/Dockerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/test/container/Dockerfile b/test/container/Dockerfile index dcca1673cbc4a..1f324917968b5 100644 --- a/test/container/Dockerfile +++ b/test/container/Dockerfile @@ -12,7 +12,7 @@ FROM docker.io/library/golang:1.22.1@sha256:0b55ab82ac2a54a6f8f85ec8b943b9e470c3 FROM docker.io/library/registry:2.8@sha256:fb9c9aef62af3955f6014613456551c92e88a67dcf1fc51f5f91bcbd1832813f as registry -FROM docker.io/bitnami/kubectl:1.27@sha256:14ab746e857d96c105df4989cc2bf841292f2d143f7c60f9d7f549ae660eab43 as kubectl +FROM docker.io/bitnami/kubectl:1.30@sha256:b909f3a93813f25192bcb57f5c1e482d53ba01413db69c8143fca882e6e930e5 as kubectl FROM docker.io/library/ubuntu:22.04@sha256:1b8d8ff4777f36f19bfe73ee4df61e3a0b789caeff29caa019539ec7c9a57f95 From 2a05ae02ab90ae06fefa97ed6b9310590d317783 Mon Sep 17 00:00:00 2001 From: Alex Ellis Date: Mon, 29 Apr 2024 19:19:12 +0100 Subject: [PATCH 049/206] Add health status for OpenFaaS functions (#18015) Adds test-case for Progressing, Degraded, Healthy and Suspended, to avoid users having to update their Argo ConfigMaps by hand. Signed-off-by: Alex Ellis (OpenFaaS Ltd) --- .../openfaas.com/Function/health.lua | 31 ++++++++++++ .../openfaas.com/Function/health_test.yaml | 17 +++++++ .../Function/testdata/degraded_no_secret.yaml | 48 +++++++++++++++++++ .../Function/testdata/healthy.yaml | 36 ++++++++++++++ .../Function/testdata/progressing.yaml | 30 ++++++++++++ .../testdata/suspended_zero_replicas.yaml | 35 ++++++++++++++ 6 files changed, 197 insertions(+) create mode 100644 resource_customizations/openfaas.com/Function/health.lua create mode 100644 resource_customizations/openfaas.com/Function/health_test.yaml create mode 100644 resource_customizations/openfaas.com/Function/testdata/degraded_no_secret.yaml create mode 100644 resource_customizations/openfaas.com/Function/testdata/healthy.yaml create mode 100644 resource_customizations/openfaas.com/Function/testdata/progressing.yaml create mode 100644 resource_customizations/openfaas.com/Function/testdata/suspended_zero_replicas.yaml diff --git a/resource_customizations/openfaas.com/Function/health.lua b/resource_customizations/openfaas.com/Function/health.lua new file mode 100644 index 0000000000000..df72e228b04fa --- /dev/null +++ b/resource_customizations/openfaas.com/Function/health.lua @@ -0,0 +1,31 @@ +hs = {} +if obj.status ~= nil then + if obj.status.conditions ~= nil then + for i, condition in ipairs(obj.status.conditions) do + if condition.type == "Ready" and condition.status == "False" then + hs.status = "Degraded" + hs.message = condition.message + return hs + end + if condition.type == "Stalled" and condition.status == "True" then + hs.status = "Degraded" + hs.message = condition.message + return hs + end + if condition.type == "Ready" and condition.status == "True" then + if obj.status.replicas ~= nil and obj.status.replicas > 0 then + hs.status = "Healthy" + hs.message = condition.message + else + hs.status = "Suspended" + hs.message = "No replicas available" + end + return hs + end + end + end +end + +hs.status = "Progressing" +hs.message = "Waiting for Function" +return hs diff --git a/resource_customizations/openfaas.com/Function/health_test.yaml b/resource_customizations/openfaas.com/Function/health_test.yaml new file mode 100644 index 0000000000000..750089fac48ea --- /dev/null +++ b/resource_customizations/openfaas.com/Function/health_test.yaml @@ -0,0 +1,17 @@ +tests: +- healthStatus: + status: Progressing + message: "Waiting for Function" + inputPath: testdata/progressing.yaml +- healthStatus: + status: Degraded + message: "Secret missing: secrets \"missing-secret\" not found" + inputPath: testdata/degraded_no_secret.yaml +- healthStatus: + status: Healthy + message: "Deployment and service reconciled" + inputPath: testdata/healthy.yaml +- healthStatus: + status: Suspended + message: "No replicas available" + inputPath: testdata/suspended_zero_replicas.yaml diff --git a/resource_customizations/openfaas.com/Function/testdata/degraded_no_secret.yaml b/resource_customizations/openfaas.com/Function/testdata/degraded_no_secret.yaml new file mode 100644 index 0000000000000..a1c0c981f1176 --- /dev/null +++ b/resource_customizations/openfaas.com/Function/testdata/degraded_no_secret.yaml @@ -0,0 +1,48 @@ +{ + "apiVersion": "openfaas.com/v1", + "kind": "Function", + "metadata": { + "annotations": { + "kubectl.kubernetes.io/last-applied-configuration": "{\"apiVersion\":\"openfaas.com/v1\",\"kind\":\"Function\",\"metadata\":{\"annotations\":{},\"name\":\"env\",\"namespace\":\"openfaas-fn\"},\"spec\":{\"annotations\":{},\"environment\":{\"fprocess\":\"env\",\"test\":\"yes\"},\"image\":\"ghcr.io/openfaas/alpine:latest\",\"labels\":{},\"name\":\"env\",\"secrets\":[\"missing-secret\"]}}\n" + }, + "creationTimestamp": "2024-04-29T13:42:46Z", + "generation": 1, + "name": "env", + "namespace": "openfaas-fn", + "resourceVersion": "580675", + "uid": "7a00bc7b-eb01-4f6a-b5f7-7893422ace7d" + }, + "spec": { + "annotations": {}, + "environment": { + "fprocess": "env", + "test": "yes" + }, + "image": "ghcr.io/openfaas/alpine:latest", + "labels": {}, + "name": "env", + "secrets": [ + "missing-secret" + ] + }, + "status": { + "conditions": [ + { + "lastTransitionTime": "2024-04-29T13:42:46Z", + "message": "Function queued for creation", + "observedGeneration": 1, + "reason": "Reconciling", + "status": "True", + "type": "Reconciling" + }, + { + "lastTransitionTime": "2024-04-29T13:42:46Z", + "message": "Secret missing: secrets \"missing-secret\" not found", + "observedGeneration": 1, + "reason": "SecretMissing", + "status": "True", + "type": "Stalled" + } + ] + } +} diff --git a/resource_customizations/openfaas.com/Function/testdata/healthy.yaml b/resource_customizations/openfaas.com/Function/testdata/healthy.yaml new file mode 100644 index 0000000000000..7d09972561710 --- /dev/null +++ b/resource_customizations/openfaas.com/Function/testdata/healthy.yaml @@ -0,0 +1,36 @@ +apiVersion: openfaas.com/v1 +kind: Function +metadata: + annotations: + kubectl.kubernetes.io/last-applied-configuration: | + {"apiVersion":"openfaas.com/v1","kind":"Function","metadata":{"annotations":{},"name":"env","namespace":"openfaas-fn"},"spec":{"annotations":{},"environment":{"fprocess":"env","test":"yes"},"image":"ghcr.io/openfaas/alpine:latest","labels":{},"name":"env"}} + creationTimestamp: "2024-04-29T13:38:50Z" + generation: 1 + name: env + namespace: openfaas-fn + resourceVersion: "580323" + uid: 865f74b9-cbc5-455a-abd7-4a1cdeae22d1 +spec: + annotations: {} + environment: + fprocess: env + test: "yes" + image: ghcr.io/openfaas/alpine:latest + labels: {} + name: env +status: + availableReplicas: 1 + conditions: + - lastTransitionTime: "2024-04-29T13:38:50Z" + message: Deployment and service reconciled + observedGeneration: 1 + reason: Ready + status: "True" + type: Ready + - lastTransitionTime: "2024-04-29T13:38:53Z" + message: At least one replica available + observedGeneration: 1 + reason: ReplicaAvailable + status: "True" + type: Healthy + replicas: 1 diff --git a/resource_customizations/openfaas.com/Function/testdata/progressing.yaml b/resource_customizations/openfaas.com/Function/testdata/progressing.yaml new file mode 100644 index 0000000000000..4b70ad08c19aa --- /dev/null +++ b/resource_customizations/openfaas.com/Function/testdata/progressing.yaml @@ -0,0 +1,30 @@ +--- +apiVersion: openfaas.com/v1 +kind: Function +metadata: + annotations: + kubectl.kubernetes.io/last-applied-configuration: | + {"apiVersion":"openfaas.com/v1","kind":"Function","metadata":{"annotations":{},"name":"env","namespace":"openfaas-fn"},"spec":{"annotations":{},"environment":{"fprocess":"env","test":"yes"},"image":"ghcr.io/openfaas/alpine:latest","labels":{},"name":"env"}} + creationTimestamp: "2024-04-29T13:38:50Z" + generation: 1 + name: env + namespace: openfaas-fn + resourceVersion: "580277" + uid: 865f74b9-cbc5-455a-abd7-4a1cdeae22d1 +spec: + annotations: {} + environment: + fprocess: env + test: "yes" + image: ghcr.io/openfaas/alpine:latest + labels: {} + name: env +status: + conditions: + - lastTransitionTime: "2024-04-29T13:38:50Z" + message: Function queued for creation + observedGeneration: 1 + reason: Reconciling + status: "True" + type: Reconciling +--- diff --git a/resource_customizations/openfaas.com/Function/testdata/suspended_zero_replicas.yaml b/resource_customizations/openfaas.com/Function/testdata/suspended_zero_replicas.yaml new file mode 100644 index 0000000000000..3307dfd8e4fe4 --- /dev/null +++ b/resource_customizations/openfaas.com/Function/testdata/suspended_zero_replicas.yaml @@ -0,0 +1,35 @@ +--- +apiVersion: openfaas.com/v1 +kind: Function +metadata: + annotations: + kubectl.kubernetes.io/last-applied-configuration: | + {"apiVersion":"openfaas.com/v1","kind":"Function","metadata":{"annotations":{},"name":"env","namespace":"openfaas-fn"},"spec":{"annotations":{},"environment":{"fprocess":"env","test":"yes"},"image":"ghcr.io/openfaas/alpine:latest","labels":{},"name":"env"}} + creationTimestamp: "2024-04-29T13:38:50Z" + generation: 1 + name: env + namespace: openfaas-fn + resourceVersion: "580543" + uid: 865f74b9-cbc5-455a-abd7-4a1cdeae22d1 +spec: + annotations: {} + environment: + fprocess: env + test: "yes" + image: ghcr.io/openfaas/alpine:latest + labels: {} + name: env +status: + conditions: + - lastTransitionTime: "2024-04-29T13:38:50Z" + message: Deployment and service reconciled + observedGeneration: 1 + reason: Ready + status: "True" + type: Ready + - lastTransitionTime: "2024-04-29T13:41:27Z" + message: At least one replica available + observedGeneration: 1 + reason: ReplicaAvailable + status: "False" + type: Healthy From c38c8a9aa39bd478698fe434bb01fb2194aaeeab Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 29 Apr 2024 22:43:30 +0300 Subject: [PATCH 050/206] chore(deps): bump library/ubuntu from 22.04 to 24.04 in /test/container (#17976) Bumps library/ubuntu from 22.04 to 24.04. --- updated-dependencies: - dependency-name: library/ubuntu dependency-type: direct:production ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- test/container/Dockerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/test/container/Dockerfile b/test/container/Dockerfile index 1f324917968b5..7f5b9fdb9c017 100644 --- a/test/container/Dockerfile +++ b/test/container/Dockerfile @@ -14,7 +14,7 @@ FROM docker.io/library/registry:2.8@sha256:fb9c9aef62af3955f6014613456551c92e88a FROM docker.io/bitnami/kubectl:1.30@sha256:b909f3a93813f25192bcb57f5c1e482d53ba01413db69c8143fca882e6e930e5 as kubectl -FROM docker.io/library/ubuntu:22.04@sha256:1b8d8ff4777f36f19bfe73ee4df61e3a0b789caeff29caa019539ec7c9a57f95 +FROM docker.io/library/ubuntu:24.04@sha256:562456a05a0dbd62a671c1854868862a4687bf979a96d48ae8e766642cd911e8 ENV DEBIAN_FRONTEND=noninteractive RUN apt-get update && apt-get install --fix-missing -y \ From ba1556932247b90d2489b80c5f5d3b165f70d5b9 Mon Sep 17 00:00:00 2001 From: Radon Rosborough <69264599+raxod502-plaid@users.noreply.github.com> Date: Mon, 29 Apr 2024 17:47:50 -0700 Subject: [PATCH 051/206] Document units for argocd_app_reconcile (#18018) Signed-off-by: Radon Rosborough --- controller/metrics/metrics.go | 2 +- controller/metrics/metrics_test.go | 2 +- docs/operator-manual/high_availability.md | 2 +- docs/operator-manual/metrics.md | 2 +- 4 files changed, 4 insertions(+), 4 deletions(-) diff --git a/controller/metrics/metrics.go b/controller/metrics/metrics.go index 94405b51eac75..b195c3bff8870 100644 --- a/controller/metrics/metrics.go +++ b/controller/metrics/metrics.go @@ -113,7 +113,7 @@ var ( reconcileHistogram = prometheus.NewHistogramVec( prometheus.HistogramOpts{ Name: "argocd_app_reconcile", - Help: "Application reconciliation performance.", + Help: "Application reconciliation performance in seconds.", // Buckets chosen after observing a ~2100ms mean reconcile time Buckets: []float64{0.25, .5, 1, 2, 4, 8, 16}, }, diff --git a/controller/metrics/metrics_test.go b/controller/metrics/metrics_test.go index 6d88933410ffc..81e724e9274f3 100644 --- a/controller/metrics/metrics_test.go +++ b/controller/metrics/metrics_test.go @@ -391,7 +391,7 @@ func TestReconcileMetrics(t *testing.T) { assert.NoError(t, err) appReconcileMetrics := ` -# HELP argocd_app_reconcile Application reconciliation performance. +# HELP argocd_app_reconcile Application reconciliation performance in seconds. # TYPE argocd_app_reconcile histogram argocd_app_reconcile_bucket{dest_server="https://localhost:6443",namespace="argocd",le="0.25"} 0 argocd_app_reconcile_bucket{dest_server="https://localhost:6443",namespace="argocd",le="0.5"} 0 diff --git a/docs/operator-manual/high_availability.md b/docs/operator-manual/high_availability.md index 00f493350aa41..8b03f61aac993 100644 --- a/docs/operator-manual/high_availability.md +++ b/docs/operator-manual/high_availability.md @@ -126,7 +126,7 @@ stringData: **metrics** -* `argocd_app_reconcile` - reports application reconciliation duration. Can be used to build reconciliation duration heat map to get a high-level reconciliation performance picture. +* `argocd_app_reconcile` - reports application reconciliation duration in seconds. Can be used to build reconciliation duration heat map to get a high-level reconciliation performance picture. * `argocd_app_k8s_request_total` - number of k8s requests per application. The number of fallback Kubernetes API queries - useful to identify which application has a resource with non-preferred version and causes performance issues. diff --git a/docs/operator-manual/metrics.md b/docs/operator-manual/metrics.md index a3ddbfe9904d3..5aebb9245c0ae 100644 --- a/docs/operator-manual/metrics.md +++ b/docs/operator-manual/metrics.md @@ -10,7 +10,7 @@ Metrics about applications. Scraped at the `argocd-metrics:8082/metrics` endpoin | `argocd_app_info` | gauge | Information about Applications. It contains labels such as `sync_status` and `health_status` that reflect the application state in Argo CD. | | `argocd_app_k8s_request_total` | counter | Number of Kubernetes requests executed during application reconciliation | | `argocd_app_labels` | gauge | Argo Application labels converted to Prometheus labels. Disabled by default. See section below about how to enable it. | -| `argocd_app_reconcile` | histogram | Application reconciliation performance. | +| `argocd_app_reconcile` | histogram | Application reconciliation performance in seconds. | | `argocd_app_sync_total` | counter | Counter for application sync history | | `argocd_cluster_api_resource_objects` | gauge | Number of k8s resource objects in the cache. | | `argocd_cluster_api_resources` | gauge | Number of monitored Kubernetes API resources. | From 737f7428a19dfa724d322a313d8f7fb9419eb4d8 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 30 Apr 2024 10:27:22 +0300 Subject: [PATCH 052/206] chore(deps): bump library/node from 21.7.3 to 22.0.0 in /ui-test (#18024) Bumps library/node from 21.7.3 to 22.0.0. --- updated-dependencies: - dependency-name: library/node dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- ui-test/Dockerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/ui-test/Dockerfile b/ui-test/Dockerfile index 1b6bf3e4262fc..12917dcf41a70 100644 --- a/ui-test/Dockerfile +++ b/ui-test/Dockerfile @@ -1,4 +1,4 @@ -FROM docker.io/library/node:21.7.3@sha256:162d92c5f1467ad877bf6d8a098d9b04d7303879017a2f3644bfb1de1fc88ff0 as node +FROM docker.io/library/node:22.0.0@sha256:cbd62dc7ba7e50d01520f2c0a8d9853ec872187fa806ed61d0f87081c220386d as node RUN apt-get update && apt-get install --no-install-recommends -y \ software-properties-common From 7003d06dc4a61d222050a178e6a6ec2732964bbd Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 30 Apr 2024 10:47:58 +0300 Subject: [PATCH 053/206] chore(deps): bump library/busybox in /test/e2e/multiarch-container (#18023) Bumps library/busybox from `c3839dd` to `bb02074`. --- updated-dependencies: - dependency-name: library/busybox dependency-type: direct:production ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- test/e2e/multiarch-container/Dockerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/test/e2e/multiarch-container/Dockerfile b/test/e2e/multiarch-container/Dockerfile index 681a4bd44e61e..f82e45b8addaf 100644 --- a/test/e2e/multiarch-container/Dockerfile +++ b/test/e2e/multiarch-container/Dockerfile @@ -1,2 +1,2 @@ -FROM docker.io/library/busybox@sha256:c3839dd800b9eb7603340509769c43e146a74c63dca3045a8e7dc8ee07e53966 +FROM docker.io/library/busybox@sha256:bb02074c822cfe6180486e4c3a50f2654c0447175b4a58ad8fa1a5d6ecdc1028 CMD exec sh -c "trap : TERM INT; echo 'Hi' && tail -f /dev/null" From ba2ea258c6c5fccc21f7a97ac0a14a3c8406367e Mon Sep 17 00:00:00 2001 From: "Daniel R. Dagfinrud" Date: Tue, 30 Apr 2024 11:27:03 +0200 Subject: [PATCH 054/206] docs: update wording in diffing.md (#18027) * docs: update wording in diffing.md The wording in "If you have a slash / in your pointer path, you can use the ~1 character" is inaccurate. The ~1 character is mandatory if you have a slash. Signed-off-by: Daniel R. Dagfinrud * docs: update wording in docs/user-guide/diffing.md Co-authored-by: Blake Pettersson Signed-off-by: Daniel R. Dagfinrud --------- Signed-off-by: Daniel R. Dagfinrud Co-authored-by: Blake Pettersson --- docs/user-guide/diffing.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/user-guide/diffing.md b/docs/user-guide/diffing.md index 2a69654b4aa1a..95fe7f0ace3ac 100644 --- a/docs/user-guide/diffing.md +++ b/docs/user-guide/diffing.md @@ -68,7 +68,7 @@ spec: The above configuration will ignore differences from all fields owned by `kube-controller-manager` for all resources belonging to this application. -If you have a slash `/` in your pointer path, you can use the `~1` character. For example: +If you have a slash `/` in your pointer path, you need to replace it with the `~1` character. For example: ```yaml spec: From 1e6ca4d7afd924be13592f16e295b0d745a20396 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 30 Apr 2024 12:32:30 +0300 Subject: [PATCH 055/206] chore(deps): bump library/node from 21.7.3 to 22.0.0 in /test/container (#18022) Bumps library/node from 21.7.3 to 22.0.0. --- updated-dependencies: - dependency-name: library/node dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: pasha-codefresh --- test/container/Dockerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/test/container/Dockerfile b/test/container/Dockerfile index 7f5b9fdb9c017..11d931fa805fc 100644 --- a/test/container/Dockerfile +++ b/test/container/Dockerfile @@ -6,7 +6,7 @@ FROM docker.io/library/redis:7.2.4@sha256:7dd707032d90c6eaafd566f62a00f5b0116ae0 RUN ln -s /usr/lib/$(uname -m)-linux-gnu /usr/lib/linux-gnu # Please make sure to also check the contained yarn version and update the references below when upgrading this image's version -FROM docker.io/library/node:21.7.3@sha256:bda531283f4bafd1cb41294493de89ae3c4cf55933da14710e46df970e77365e as node +FROM docker.io/library/node:22.0.0@sha256:cbd62dc7ba7e50d01520f2c0a8d9853ec872187fa806ed61d0f87081c220386d as node FROM docker.io/library/golang:1.22.1@sha256:0b55ab82ac2a54a6f8f85ec8b943b9e470c39e32c109b766bbc1b801f3fa8d3b as golang From a63068d06fdeb0463f9fb4f6cb705a0b1cf7cece Mon Sep 17 00:00:00 2001 From: Marc Arndt Date: Tue, 30 Apr 2024 15:12:52 +0200 Subject: [PATCH 056/206] fix: enable sha256 and sha512 for git ssh (#18028) * fix: bumping the knownhosts to v1.2.2 since this contains a fix that allows for sha256 and sha512 algorithms when using git ssh Signed-off-by: Marc Arndt Signed-off-by: Marc Arndt * chore: remove older version of module from go sum Signed-off-by: Marc Arndt --------- Signed-off-by: Marc Arndt Signed-off-by: Marc Arndt Co-authored-by: Marc Arndt --- go.mod | 2 +- go.sum | 4 ++-- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/go.mod b/go.mod index 4b8ec9e02714b..486451df114b0 100644 --- a/go.mod +++ b/go.mod @@ -252,7 +252,7 @@ require ( github.com/russross/blackfriday/v2 v2.1.0 // indirect github.com/sergi/go-diff v1.1.0 // indirect github.com/shopspring/decimal v1.2.0 // indirect - github.com/skeema/knownhosts v1.2.1 // indirect + github.com/skeema/knownhosts v1.2.2 // indirect github.com/slack-go/slack v0.12.2 // indirect github.com/spf13/cast v1.6.0 // indirect github.com/stretchr/objx v0.5.0 // indirect diff --git a/go.sum b/go.sum index 7c719fdff0d1f..c8b733a32fd79 100644 --- a/go.sum +++ b/go.sum @@ -1629,8 +1629,8 @@ github.com/sirupsen/logrus v1.8.1/go.mod h1:yWOB1SBYBC5VeMP7gHvWumXLIWorT60ONWic github.com/sirupsen/logrus v1.9.2/go.mod h1:naHLuLoDiP4jHNo9R0sCBMtWGeIprob74mVsIT4qYEQ= github.com/sirupsen/logrus v1.9.3 h1:dueUQJ1C2q9oE3F7wvmSGAaVtTmUizReu6fjN8uqzbQ= github.com/sirupsen/logrus v1.9.3/go.mod h1:naHLuLoDiP4jHNo9R0sCBMtWGeIprob74mVsIT4qYEQ= -github.com/skeema/knownhosts v1.2.1 h1:SHWdIUa82uGZz+F+47k8SY4QhhI291cXCpopT1lK2AQ= -github.com/skeema/knownhosts v1.2.1/go.mod h1:xYbVRSPxqBZFrdmDyMmsOs+uX1UZC3nTN3ThzgDxUwo= +github.com/skeema/knownhosts v1.2.2 h1:Iug2P4fLmDw9f41PB6thxUkNUkJzB5i+1/exaj40L3A= +github.com/skeema/knownhosts v1.2.2/go.mod h1:xYbVRSPxqBZFrdmDyMmsOs+uX1UZC3nTN3ThzgDxUwo= github.com/skratchdot/open-golang v0.0.0-20160302144031-75fb7ed4208c h1:fyKiXKO1/I/B6Y2U8T7WdQGWzwehOuGIrljPtt7YTTI= github.com/skratchdot/open-golang v0.0.0-20160302144031-75fb7ed4208c/go.mod h1:sUM3LWHvSMaG192sy56D9F7CNvL7jUJVXoqM1QKLnog= github.com/slack-go/slack v0.12.2 h1:x3OppyMyGIbbiyFhsBmpf9pwkUzMhthJMRNmNlA4LaQ= From ca75b60692efeeb554b3c09babbd1665eb62ab11 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 1 May 2024 10:44:31 +0300 Subject: [PATCH 057/206] chore(deps): bump library/busybox in /test/e2e/multiarch-container (#18039) Bumps library/busybox from `bb02074` to `6776a33`. --- updated-dependencies: - dependency-name: library/busybox dependency-type: direct:production ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- test/e2e/multiarch-container/Dockerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/test/e2e/multiarch-container/Dockerfile b/test/e2e/multiarch-container/Dockerfile index f82e45b8addaf..97f665320188f 100644 --- a/test/e2e/multiarch-container/Dockerfile +++ b/test/e2e/multiarch-container/Dockerfile @@ -1,2 +1,2 @@ -FROM docker.io/library/busybox@sha256:bb02074c822cfe6180486e4c3a50f2654c0447175b4a58ad8fa1a5d6ecdc1028 +FROM docker.io/library/busybox@sha256:6776a33c72b3af7582a5b301e3a08186f2c21a3409f0d2b52dfddbdbe24a5b04 CMD exec sh -c "trap : TERM INT; echo 'Hi' && tail -f /dev/null" From 3ab8e266b480a77af203fe5e84f76df57b9faa7f Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 1 May 2024 10:45:01 +0300 Subject: [PATCH 058/206] chore(deps): bump library/registry in /test/container (#18040) Bumps library/registry from `fb9c9ae` to `4fac7a8`. --- updated-dependencies: - dependency-name: library/registry dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- test/container/Dockerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/test/container/Dockerfile b/test/container/Dockerfile index 11d931fa805fc..98e7bbda717bb 100644 --- a/test/container/Dockerfile +++ b/test/container/Dockerfile @@ -10,7 +10,7 @@ FROM docker.io/library/node:22.0.0@sha256:cbd62dc7ba7e50d01520f2c0a8d9853ec87218 FROM docker.io/library/golang:1.22.1@sha256:0b55ab82ac2a54a6f8f85ec8b943b9e470c39e32c109b766bbc1b801f3fa8d3b as golang -FROM docker.io/library/registry:2.8@sha256:fb9c9aef62af3955f6014613456551c92e88a67dcf1fc51f5f91bcbd1832813f as registry +FROM docker.io/library/registry:2.8@sha256:4fac7a8257b1d7a86599043fcc181dfbdf9c8f57e337db763ac94b0e67c6cfb5 as registry FROM docker.io/bitnami/kubectl:1.30@sha256:b909f3a93813f25192bcb57f5c1e482d53ba01413db69c8143fca882e6e930e5 as kubectl From b738f1fec471a639478876d3919b6543d42ec471 Mon Sep 17 00:00:00 2001 From: Max Gautier Date: Wed, 1 May 2024 14:11:41 +0000 Subject: [PATCH 059/206] docs: add soft documentation for `ignoreMissingValueFiles` (#17996) The Helm source has the ability to ignore missing values files since 99d1dcad0 (feat: added a new Helm option ignoreMissingValueFiles, 2022-01-03). This is however not obvious from reading the user guide on Helm. Document the parameters along with a reference to the use case which motivated it. Signed-off-by: Max Gautier --- docs/user-guide/helm.md | 16 ++++++++++++++++ 1 file changed, 16 insertions(+) diff --git a/docs/user-guide/helm.md b/docs/user-guide/helm.md index 74c67a91e17e9..3b5a5de0dc262 100644 --- a/docs/user-guide/helm.md +++ b/docs/user-guide/helm.md @@ -72,6 +72,22 @@ source: - values-production.yaml ``` +If Helm is passed a non-existing value file during template expansion, it will error out. Missing +values files can be ignored (meaning, not passed to Helm) using the `--ignore-missing-value-files`. This can be +particularly helpful to implement a [default/override +pattern](https://github.com/argoproj/argo-cd/issues/7767#issue-1060611415) with [Application +Sets](./application-set.md). + +In the declarative syntax: +```yaml +source: + helm: + valueFiles: + - values-common.yaml + - values-optional-override.yaml + ignoreMissingValueFiles: true +``` + ## Values Argo CD supports the equivalent of a values file directly in the Application manifest using the `source.helm.valuesObject` key. From 50027733db96e793c057fa64690cbbc38b76fda4 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Rodolfo=20Mart=C3=ADnez=20Vega?= Date: Wed, 1 May 2024 08:28:06 -0600 Subject: [PATCH 060/206] docs: Update Getting started documentation (#17975) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit This PR adds some sentences to explain the process of "Syncing via UI" screenshots to have a good understanding of the process on the UI. Signed-off-by: Rodolfo Martínez Vega --- docs/getting_started.md | 8 +++++++- 1 file changed, 7 insertions(+), 1 deletion(-) diff --git a/docs/getting_started.md b/docs/getting_started.md index 68d9f8f9e8872..2058464265d14 100644 --- a/docs/getting_started.md +++ b/docs/getting_started.md @@ -214,6 +214,12 @@ events, and assessed health status. ### Syncing via UI +On the Applications page, click on *Sync* button of the guestbook application: + ![guestbook app](assets/guestbook-app.png) -![view app](assets/guestbook-tree.png) +A panel will be opened and then, click on *Synchronize* button. + +You can see more details by clicking at the guestbook application: + +![view app](assets/guestbook-tree.png) From 220dee0200fb5e80f466433c12baa26a8902d1cc Mon Sep 17 00:00:00 2001 From: Michael Haigh Date: Wed, 1 May 2024 12:22:23 -0400 Subject: [PATCH 061/206] Adding astra.netapp.io CRD health checks (#17999) --- .../astra.netapp.io/AppVault/health.lua | 13 ++ .../astra.netapp.io/AppVault/health_test.yaml | 13 ++ .../AppVault/testdata/degraded.yaml | 23 ++++ .../AppVault/testdata/healthy.yaml | 21 ++++ .../testdata/progressing_nostatus.yaml | 18 +++ .../astra.netapp.io/Application/health.lua | 17 +++ .../Application/health_test.yaml | 13 ++ .../Application/testdata/degraded.yaml | 26 ++++ .../Application/testdata/healthy.yaml | 24 ++++ .../Application/testdata/progressing.yaml | 16 +++ .../astra.netapp.io/Backup/health.lua | 16 +++ .../astra.netapp.io/Backup/health_test.yaml | 17 +++ .../Backup/testdata/degraded.yaml | 79 ++++++++++++ .../Backup/testdata/healthy.yaml | 116 ++++++++++++++++++ .../Backup/testdata/progressing_nostatus.yaml | 26 ++++ .../Backup/testdata/progressing_status.yaml | 76 ++++++++++++ .../astra.netapp.io/ExecHook/health.lua | 13 ++ .../astra.netapp.io/ExecHook/health_test.yaml | 13 ++ .../ExecHook/testdata/healthy.yaml | 23 ++++ .../testdata/progressing_nostatus.yaml | 22 ++++ .../ExecHook/testdata/suspended.yaml | 23 ++++ .../astra.netapp.io/ExecHooksRun/health.lua | 16 +++ .../ExecHooksRun/health_test.yaml | 17 +++ .../ExecHooksRun/testdata/degraded.yaml | 71 +++++++++++ .../ExecHooksRun/testdata/healthy.yaml | 71 +++++++++++ .../testdata/progressing_nostatus.yaml | 26 ++++ .../testdata/progressing_status.yaml | 69 +++++++++++ .../astra.netapp.io/ResourceBackup/health.lua | 16 +++ .../ResourceBackup/health_test.yaml | 17 +++ .../ResourceBackup/testdata/degraded.yaml | 52 ++++++++ .../ResourceBackup/testdata/healthy.yaml | 49 ++++++++ .../testdata/progressing_nostatus.yaml | 24 ++++ .../testdata/progressing_status.yaml | 48 ++++++++ .../ResticVolumeBackup/health.lua | 16 +++ .../ResticVolumeBackup/health_test.yaml | 17 +++ .../ResticVolumeBackup/testdata/degraded.yaml | 99 +++++++++++++++ .../ResticVolumeBackup/testdata/healthy.yaml | 94 ++++++++++++++ .../testdata/progressing_nostatus.yaml | 49 ++++++++ .../testdata/progressing_status.yaml | 92 ++++++++++++++ .../astra.netapp.io/Schedule/health.lua | 7 ++ .../astra.netapp.io/Schedule/health_test.yaml | 9 ++ .../Schedule/testdata/healthy_nostatus.yaml | 28 +++++ .../Schedule/testdata/healthy_status.yaml | 30 +++++ .../astra.netapp.io/Snapshot/health.lua | 16 +++ .../astra.netapp.io/Snapshot/health_test.yaml | 17 +++ .../Snapshot/testdata/degraded.yaml | 80 ++++++++++++ .../Snapshot/testdata/healthy.yaml | 81 ++++++++++++ .../testdata/progressing_nostatus.yaml | 24 ++++ .../Snapshot/testdata/progressing_status.yaml | 73 +++++++++++ 49 files changed, 1816 insertions(+) create mode 100644 resource_customizations/astra.netapp.io/AppVault/health.lua create mode 100644 resource_customizations/astra.netapp.io/AppVault/health_test.yaml create mode 100644 resource_customizations/astra.netapp.io/AppVault/testdata/degraded.yaml create mode 100644 resource_customizations/astra.netapp.io/AppVault/testdata/healthy.yaml create mode 100644 resource_customizations/astra.netapp.io/AppVault/testdata/progressing_nostatus.yaml create mode 100644 resource_customizations/astra.netapp.io/Application/health.lua create mode 100644 resource_customizations/astra.netapp.io/Application/health_test.yaml create mode 100644 resource_customizations/astra.netapp.io/Application/testdata/degraded.yaml create mode 100644 resource_customizations/astra.netapp.io/Application/testdata/healthy.yaml create mode 100644 resource_customizations/astra.netapp.io/Application/testdata/progressing.yaml create mode 100644 resource_customizations/astra.netapp.io/Backup/health.lua create mode 100644 resource_customizations/astra.netapp.io/Backup/health_test.yaml create mode 100644 resource_customizations/astra.netapp.io/Backup/testdata/degraded.yaml create mode 100644 resource_customizations/astra.netapp.io/Backup/testdata/healthy.yaml create mode 100644 resource_customizations/astra.netapp.io/Backup/testdata/progressing_nostatus.yaml create mode 100644 resource_customizations/astra.netapp.io/Backup/testdata/progressing_status.yaml create mode 100644 resource_customizations/astra.netapp.io/ExecHook/health.lua create mode 100644 resource_customizations/astra.netapp.io/ExecHook/health_test.yaml create mode 100644 resource_customizations/astra.netapp.io/ExecHook/testdata/healthy.yaml create mode 100644 resource_customizations/astra.netapp.io/ExecHook/testdata/progressing_nostatus.yaml create mode 100644 resource_customizations/astra.netapp.io/ExecHook/testdata/suspended.yaml create mode 100644 resource_customizations/astra.netapp.io/ExecHooksRun/health.lua create mode 100644 resource_customizations/astra.netapp.io/ExecHooksRun/health_test.yaml create mode 100644 resource_customizations/astra.netapp.io/ExecHooksRun/testdata/degraded.yaml create mode 100644 resource_customizations/astra.netapp.io/ExecHooksRun/testdata/healthy.yaml create mode 100644 resource_customizations/astra.netapp.io/ExecHooksRun/testdata/progressing_nostatus.yaml create mode 100644 resource_customizations/astra.netapp.io/ExecHooksRun/testdata/progressing_status.yaml create mode 100644 resource_customizations/astra.netapp.io/ResourceBackup/health.lua create mode 100644 resource_customizations/astra.netapp.io/ResourceBackup/health_test.yaml create mode 100644 resource_customizations/astra.netapp.io/ResourceBackup/testdata/degraded.yaml create mode 100644 resource_customizations/astra.netapp.io/ResourceBackup/testdata/healthy.yaml create mode 100644 resource_customizations/astra.netapp.io/ResourceBackup/testdata/progressing_nostatus.yaml create mode 100644 resource_customizations/astra.netapp.io/ResourceBackup/testdata/progressing_status.yaml create mode 100644 resource_customizations/astra.netapp.io/ResticVolumeBackup/health.lua create mode 100644 resource_customizations/astra.netapp.io/ResticVolumeBackup/health_test.yaml create mode 100644 resource_customizations/astra.netapp.io/ResticVolumeBackup/testdata/degraded.yaml create mode 100644 resource_customizations/astra.netapp.io/ResticVolumeBackup/testdata/healthy.yaml create mode 100644 resource_customizations/astra.netapp.io/ResticVolumeBackup/testdata/progressing_nostatus.yaml create mode 100644 resource_customizations/astra.netapp.io/ResticVolumeBackup/testdata/progressing_status.yaml create mode 100644 resource_customizations/astra.netapp.io/Schedule/health.lua create mode 100644 resource_customizations/astra.netapp.io/Schedule/health_test.yaml create mode 100644 resource_customizations/astra.netapp.io/Schedule/testdata/healthy_nostatus.yaml create mode 100644 resource_customizations/astra.netapp.io/Schedule/testdata/healthy_status.yaml create mode 100644 resource_customizations/astra.netapp.io/Snapshot/health.lua create mode 100644 resource_customizations/astra.netapp.io/Snapshot/health_test.yaml create mode 100644 resource_customizations/astra.netapp.io/Snapshot/testdata/degraded.yaml create mode 100644 resource_customizations/astra.netapp.io/Snapshot/testdata/healthy.yaml create mode 100644 resource_customizations/astra.netapp.io/Snapshot/testdata/progressing_nostatus.yaml create mode 100644 resource_customizations/astra.netapp.io/Snapshot/testdata/progressing_status.yaml diff --git a/resource_customizations/astra.netapp.io/AppVault/health.lua b/resource_customizations/astra.netapp.io/AppVault/health.lua new file mode 100644 index 0000000000000..7490ed2a89fd0 --- /dev/null +++ b/resource_customizations/astra.netapp.io/AppVault/health.lua @@ -0,0 +1,13 @@ +hs = { status = "Progressing", message = "No status available" } +if obj.status ~= nil then + if obj.status.state ~= nil then + if obj.status.state == "available" or obj.status.state == "Available" then + hs.status = "Healthy" + hs.message = obj.kind .. " Available" + elseif obj.status.state == "failed" or obj.status.state == "Failed" then + hs.status = "Degraded" + hs.message = obj.kind .. " Failed" + end + end +end +return hs diff --git a/resource_customizations/astra.netapp.io/AppVault/health_test.yaml b/resource_customizations/astra.netapp.io/AppVault/health_test.yaml new file mode 100644 index 0000000000000..03918c3ecaa56 --- /dev/null +++ b/resource_customizations/astra.netapp.io/AppVault/health_test.yaml @@ -0,0 +1,13 @@ +tests: + - healthStatus: + status: Progressing + message: "No status available" + inputPath: testdata/progressing_nostatus.yaml + - healthStatus: + status: Healthy + message: "AppVault Available" + inputPath: testdata/healthy.yaml + - healthStatus: + status: Degraded + message: "AppVault Failed" + inputPath: testdata/degraded.yaml diff --git a/resource_customizations/astra.netapp.io/AppVault/testdata/degraded.yaml b/resource_customizations/astra.netapp.io/AppVault/testdata/degraded.yaml new file mode 100644 index 0000000000000..0ece84574b9b2 --- /dev/null +++ b/resource_customizations/astra.netapp.io/AppVault/testdata/degraded.yaml @@ -0,0 +1,23 @@ +apiVersion: astra.netapp.io/v1 +kind: AppVault +metadata: + creationTimestamp: "2024-04-26T14:25:45Z" + generation: 1 + name: astra-gcp-backup-743cfd150129 + namespace: astra-connector + resourceVersion: "12094908" + uid: 12943b68-323a-4e8a-ba78-604da0801d11 +spec: + providerConfig: + bucketName: astra-gcp-backup-743cfd150129 + providerCredentials: + credentials: + valueFromSecret: + key: credentials.json + name: astra-gcp-backup-734ced050128-5rdt4 + providerType: gcp +status: + error: + 'failed to close GCP object "appVault.json" in bucket "astra-gcp-backup-743cfd150129": + googleapi: Error 404: The specified bucket does not exist., notFound' + state: failed diff --git a/resource_customizations/astra.netapp.io/AppVault/testdata/healthy.yaml b/resource_customizations/astra.netapp.io/AppVault/testdata/healthy.yaml new file mode 100644 index 0000000000000..3ea713e8ef74e --- /dev/null +++ b/resource_customizations/astra.netapp.io/AppVault/testdata/healthy.yaml @@ -0,0 +1,21 @@ +apiVersion: astra.netapp.io/v1 +kind: AppVault +metadata: + creationTimestamp: "2024-04-11T21:28:27Z" + generation: 1 + name: astra-gcp-backup-743cfd150129 + namespace: astra-connector + resourceVersion: "70908" + uid: d1b552b2-5d8e-467b-829b-1e6af7240400 +spec: + providerConfig: + bucketName: astra-gcp-backup-743cfd150129 + providerCredentials: + credentials: + valueFromSecret: + key: credentials.json + name: astra-gcp-backup-743cfd150129-5rdt4 + providerType: gcp +status: + state: available + uid: c708262e-3944-49bf-af96-ad1c3eb6cafb diff --git a/resource_customizations/astra.netapp.io/AppVault/testdata/progressing_nostatus.yaml b/resource_customizations/astra.netapp.io/AppVault/testdata/progressing_nostatus.yaml new file mode 100644 index 0000000000000..d6987da72c348 --- /dev/null +++ b/resource_customizations/astra.netapp.io/AppVault/testdata/progressing_nostatus.yaml @@ -0,0 +1,18 @@ +apiVersion: astra.netapp.io/v1 +kind: AppVault +metadata: + creationTimestamp: "2024-04-26T14:25:45Z" + generation: 1 + name: astra-gcp-backup-743cfd150129 + namespace: astra-connector + resourceVersion: "12094608" + uid: 12943b68-323a-4e8a-ba78-604da0801d11 +spec: + providerConfig: + bucketName: astra-gcp-backup-743cfd150129 + providerCredentials: + credentials: + valueFromSecret: + key: credentials.json + name: astra-gcp-backup-734ced050128-5rdt4 + providerType: gcp diff --git a/resource_customizations/astra.netapp.io/Application/health.lua b/resource_customizations/astra.netapp.io/Application/health.lua new file mode 100644 index 0000000000000..967400d8819b0 --- /dev/null +++ b/resource_customizations/astra.netapp.io/Application/health.lua @@ -0,0 +1,17 @@ +hs = { status = "Progressing", message = "No status available" } +if obj.status ~= nil then + if obj.status.conditions ~= nil then + for _, condition in ipairs(obj.status.conditions) do + if condition.type == "Ready" and condition.status == "True" then + hs.status = "Healthy" + hs.message = "Astra Application Ready, protectionState: " .. obj.status.protectionState + return hs + elseif condition.type == "Ready" and condition.status == "False" then + hs.status = "Degraded" + hs.message = "Astra Application Degraded, message: " .. condition.message + return hs + end + end + end +end +return hs diff --git a/resource_customizations/astra.netapp.io/Application/health_test.yaml b/resource_customizations/astra.netapp.io/Application/health_test.yaml new file mode 100644 index 0000000000000..d1c2bc9b769cb --- /dev/null +++ b/resource_customizations/astra.netapp.io/Application/health_test.yaml @@ -0,0 +1,13 @@ +tests: + - healthStatus: + status: Progressing + message: "No status available" + inputPath: testdata/progressing.yaml + - healthStatus: + status: Healthy + message: "Astra Application Ready, protectionState: protected" + inputPath: testdata/healthy.yaml + - healthStatus: + status: Degraded + message: "Astra Application Degraded, message: namespace wordpress is in terminating state" + inputPath: testdata/degraded.yaml diff --git a/resource_customizations/astra.netapp.io/Application/testdata/degraded.yaml b/resource_customizations/astra.netapp.io/Application/testdata/degraded.yaml new file mode 100644 index 0000000000000..9b25186fa9587 --- /dev/null +++ b/resource_customizations/astra.netapp.io/Application/testdata/degraded.yaml @@ -0,0 +1,26 @@ +apiVersion: astra.netapp.io/v1 +kind: Application +metadata: + creationTimestamp: "2024-04-15T20:59:56Z" + finalizers: + - astra.netapp.io/finalizer + generation: 2 + name: wordpress + namespace: astra-connector + resourceVersion: "10484469" + uid: 5ab7cd7d-7a9b-4508-9da2-c7dcb10a69b3 +spec: + includedNamespaces: + - labelSelector: {} + namespace: wordpress +status: + conditions: + - lastTransitionTime: "2024-04-24T16:13:26Z" + message: namespace wordpress is in terminating state + reason: Ready + status: "False" + type: Ready + protectionState: partial + protectionStateDetails: + - Active backup schedule missing + - Application unavailable diff --git a/resource_customizations/astra.netapp.io/Application/testdata/healthy.yaml b/resource_customizations/astra.netapp.io/Application/testdata/healthy.yaml new file mode 100644 index 0000000000000..f42f84b1a60ae --- /dev/null +++ b/resource_customizations/astra.netapp.io/Application/testdata/healthy.yaml @@ -0,0 +1,24 @@ +apiVersion: astra.netapp.io/v1 +kind: Application +metadata: + creationTimestamp: "2024-04-15T20:46:16Z" + finalizers: + - astra.netapp.io/finalizer + generation: 3 + labels: + argocd.argoproj.io/instance: ghost-demo + name: ghost + namespace: astra-connector + resourceVersion: "3235325" + uid: 0af10ee8-772b-4367-8334-44f9e4ad2849 +spec: + includedNamespaces: + - namespace: ghost +status: + conditions: + - lastTransitionTime: "2024-04-15T20:46:16Z" + message: "" + reason: Ready + status: "True" + type: Ready + protectionState: protected diff --git a/resource_customizations/astra.netapp.io/Application/testdata/progressing.yaml b/resource_customizations/astra.netapp.io/Application/testdata/progressing.yaml new file mode 100644 index 0000000000000..64450c1aebc8a --- /dev/null +++ b/resource_customizations/astra.netapp.io/Application/testdata/progressing.yaml @@ -0,0 +1,16 @@ +apiVersion: astra.netapp.io/v1 +kind: Application +metadata: + creationTimestamp: "2024-04-15T20:46:16Z" + finalizers: + - astra.netapp.io/finalizer + generation: 3 + labels: + argocd.argoproj.io/instance: ghost-demo + name: ghost + namespace: astra-connector + resourceVersion: "3235325" + uid: 0af10ee8-772b-4367-8334-44f9e4ad2849 +spec: + includedNamespaces: + - namespace: ghost diff --git a/resource_customizations/astra.netapp.io/Backup/health.lua b/resource_customizations/astra.netapp.io/Backup/health.lua new file mode 100644 index 0000000000000..39de4ac74eb68 --- /dev/null +++ b/resource_customizations/astra.netapp.io/Backup/health.lua @@ -0,0 +1,16 @@ +hs = { status = "Progressing", message = "No status available" } +if obj.status ~= nil then + if obj.status.state ~= nil then + if obj.status.state == "Completed" then + hs.status = "Healthy" + hs.message = obj.kind .. " Completed" + elseif obj.status.state == "Running" then + hs.status = "Progressing" + hs.message = obj.kind .. " Running" + else + hs.status = "Degraded" + hs.message = obj.status.state + end + end +end +return hs diff --git a/resource_customizations/astra.netapp.io/Backup/health_test.yaml b/resource_customizations/astra.netapp.io/Backup/health_test.yaml new file mode 100644 index 0000000000000..56385a102f681 --- /dev/null +++ b/resource_customizations/astra.netapp.io/Backup/health_test.yaml @@ -0,0 +1,17 @@ +tests: + - healthStatus: + status: Progressing + message: "No status available" + inputPath: testdata/progressing_nostatus.yaml + - healthStatus: + status: Progressing + message: "Backup Running" + inputPath: testdata/progressing_status.yaml + - healthStatus: + status: Healthy + message: "Backup Completed" + inputPath: testdata/healthy.yaml + - healthStatus: + status: Degraded + message: "Failed" + inputPath: testdata/degraded.yaml diff --git a/resource_customizations/astra.netapp.io/Backup/testdata/degraded.yaml b/resource_customizations/astra.netapp.io/Backup/testdata/degraded.yaml new file mode 100644 index 0000000000000..8dbe9ca86c361 --- /dev/null +++ b/resource_customizations/astra.netapp.io/Backup/testdata/degraded.yaml @@ -0,0 +1,79 @@ +apiVersion: astra.netapp.io/v1 +kind: Backup +metadata: + creationTimestamp: "2024-04-24T19:54:18Z" + finalizers: + - astra.netapp.io/finalizer + generation: 1 + name: backup-20240424193746 + namespace: astra-connector + ownerReferences: + - apiVersion: astra.netapp.io/v1 + kind: Application + name: ghost + uid: 0af10ee8-772b-4367-8334-44f9e4ad2849 + resourceVersion: "10641332" + uid: ad301b6a-6536-4313-89c1-d10ad0275430 +spec: + appVaultRef: astra-gcp-backup-743cfd150129 + applicationRef: ghost +status: + conditions: + - lastTransitionTime: "2024-04-24T19:54:18Z" + message: Successfully reconciled + reason: Done + status: "True" + type: AppOwnerReferenceCreated + - lastTransitionTime: "2024-04-24T19:54:18Z" + message: Successfully reconciled + reason: Done + status: "True" + type: SourceSnapshotExists + - lastTransitionTime: "2024-04-24T19:54:19Z" + message: + "Source snapshot failed with permanent error: reconcile timeout of 1h0m0s + exceeded" + reason: Failed + status: "False" + type: SourceSnapshotCompleted + - lastTransitionTime: "2024-04-24T19:54:18Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: SnapshotAppArchiveCopied + - lastTransitionTime: "2024-04-24T19:54:18Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: PreBackupExecHooksRunCompleted + - lastTransitionTime: "2024-04-24T19:54:18Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: VolumeBackupsCompleted + - lastTransitionTime: "2024-04-24T19:54:18Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: PostBackupExecHooksRunCompleted + - lastTransitionTime: "2024-04-24T19:54:18Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: TemporarySnapshotCleanedUp + - lastTransitionTime: "2024-04-24T19:54:18Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: Completed + - lastTransitionTime: "2024-04-24T19:54:18Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: OnFailurePostBackupExecHooksRunCompleted + error: + "Source snapshot failed with permanent error: reconcile timeout of 1h0m0s + exceeded" + progress: {} + sourceSnapshotName: backup-ad301b6a-6536-4313-89c1-d10ad0275430 + state: Failed diff --git a/resource_customizations/astra.netapp.io/Backup/testdata/healthy.yaml b/resource_customizations/astra.netapp.io/Backup/testdata/healthy.yaml new file mode 100644 index 0000000000000..d3f32fbf93d20 --- /dev/null +++ b/resource_customizations/astra.netapp.io/Backup/testdata/healthy.yaml @@ -0,0 +1,116 @@ +apiVersion: astra.netapp.io/v1 +kind: Backup +metadata: + annotations: + astra.netapp.io/correlationid: 3c492b7e-8b1f-491a-af99-aa3fca9d54cf + created-by-astra-schedule-name: ghost-daily + created-by-astra-schedule-namespace: astra-connector + creationTimestamp: "2024-04-24T01:00:00Z" + finalizers: + - astra.netapp.io/finalizer + generation: 1 + labels: + created-by-astra-schedule-uid: a2736922-6801-482c-a199-03ef8a3f35d7 + name: daily-a4587-20240424010000 + namespace: astra-connector + ownerReferences: + - apiVersion: astra.netapp.io/v1 + kind: Application + name: ghost + uid: 0af10ee8-772b-4367-8334-44f9e4ad2849 + resourceVersion: "9965658" + uid: d4b61932-5c8e-4310-82a5-37a0b671aa2d +spec: + appVaultRef: astra-gcp-backup-743cfd150129 + applicationRef: ghost + snapshotRef: daily-a4587-20240424010000 +status: + appArchivePath: ghost_0af10ee8-772b-4367-8334-44f9e4ad2849/backups/daily-a4587-20240424010000_d4b61932-5c8e-4310-82a5-37a0b671aa2d + completionTimestamp: "2024-04-24T01:02:30Z" + conditions: + - lastTransitionTime: "2024-04-24T01:00:00Z" + message: Successfully reconciled + reason: Done + status: "True" + type: AppOwnerReferenceCreated + - lastTransitionTime: "2024-04-24T01:00:00Z" + message: Successfully reconciled + reason: Done + status: "True" + type: SourceSnapshotExists + - lastTransitionTime: "2024-04-24T01:00:30Z" + message: Successfully reconciled + reason: Done + status: "True" + type: SourceSnapshotCompleted + - lastTransitionTime: "2024-04-24T01:00:33Z" + message: Successfully reconciled + reason: Done + status: "True" + type: SnapshotAppArchiveCopied + - lastTransitionTime: "2024-04-24T01:00:34Z" + message: Successfully reconciled + reason: Done + status: "True" + type: PreBackupExecHooksRunCompleted + - lastTransitionTime: "2024-04-24T01:02:30Z" + message: Successfully reconciled + reason: Done + status: "True" + type: VolumeBackupsCompleted + - lastTransitionTime: "2024-04-24T01:02:30Z" + message: Successfully reconciled + reason: Done + status: "True" + type: PostBackupExecHooksRunCompleted + - lastTransitionTime: "2024-04-24T01:02:30Z" + message: Successfully reconciled + reason: Done + status: "True" + type: TemporarySnapshotCleanedUp + - lastTransitionTime: "2024-04-24T01:02:31Z" + message: Successfully reconciled + reason: Done + status: "True" + type: Completed + - lastTransitionTime: "2024-04-24T01:00:00Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: OnFailurePostBackupExecHooksRunCompleted + postBackupExecHooksRunResults: [] + postSnapshotExecHooksRunResults: [] + preBackupExecHooksRunResults: [] + preSnapshotExecHooksRunResults: [] + progress: + volumeBackups: + - completionTimestamp: "2024-04-24T01:02:30Z" + pvcUid: b9ff9e05-5049-4862-82c6-dea080c2fe0d + resticRepositoryPath: gs:astra-gcp-backup-743cfd150129://ghost_0af10ee8-772b-4367-8334-44f9e4ad2849/restic/ghost/ghost_b9ff9e05-5049-4862-82c6-dea080c2fe0d + resticSnapshotID: 5d066ee6e4626ec2e3eff50d766f080ba90b2339df5b9f7baf46c281d0763da6 + resticVolumeBackupCompleted: true + resticVolumeBackupCreated: true + sourceVolumeSnapshot: + name: snapshot-71804332-e19d-42a0-bc02-56bd606b9f66-pvc-b9ff9e05-5049-4862-82c6-dea080c2fe0d + namespace: ghost + volumeSnapshotContentCopyName: backup-d4b61932-5c8e-4310-82a5-37a0b671aa2d-vsc-ab718bad-fa67-4159-a761-6d1eb5de5330 + volumeSnapshotCopied: true + volumeSnapshotCopyDeleted: true + volumeSnapshotCopyName: backup-d4b61932-5c8e-4310-82a5-37a0b671aa2d-vs-d55f9b97-11e5-4fb7-89c0-a2559eba753d + volumeSnapshotCopyReadyToUse: true + - completionTimestamp: "2024-04-24T01:02:30Z" + pvcUid: 38c468b3-eed6-48f2-b43b-15083dd1c030 + resticRepositoryPath: gs:astra-gcp-backup-743cfd150129://ghost_0af10ee8-772b-4367-8334-44f9e4ad2849/restic/ghost/mysql-pv-claim_38c468b3-eed6-48f2-b43b-15083dd1c030 + resticSnapshotID: dc601d5db3ed78823b134326c6cc9607f1636530783707eb8cd02a018b244e07 + resticVolumeBackupCompleted: true + resticVolumeBackupCreated: true + sourceVolumeSnapshot: + name: snapshot-71804332-e19d-42a0-bc02-56bd606b9f66-pvc-38c468b3-eed6-48f2-b43b-15083dd1c030 + namespace: ghost + volumeSnapshotContentCopyName: backup-d4b61932-5c8e-4310-82a5-37a0b671aa2d-vsc-df43df62-1501-406b-b7ba-90aafcd763d5 + volumeSnapshotCopied: true + volumeSnapshotCopyDeleted: true + volumeSnapshotCopyName: backup-d4b61932-5c8e-4310-82a5-37a0b671aa2d-vs-ecf680cf-1665-4320-9f84-c99911b48a2b + volumeSnapshotCopyReadyToUse: true + sourceSnapshotName: daily-a4587-20240424010000 + state: Completed diff --git a/resource_customizations/astra.netapp.io/Backup/testdata/progressing_nostatus.yaml b/resource_customizations/astra.netapp.io/Backup/testdata/progressing_nostatus.yaml new file mode 100644 index 0000000000000..9cc87d827cb11 --- /dev/null +++ b/resource_customizations/astra.netapp.io/Backup/testdata/progressing_nostatus.yaml @@ -0,0 +1,26 @@ +apiVersion: astra.netapp.io/v1 +kind: Backup +metadata: + annotations: + astra.netapp.io/correlationid: 3c492b7e-8b1f-491a-af99-aa3fca9d54cf + created-by-astra-schedule-name: ghost-daily + created-by-astra-schedule-namespace: astra-connector + creationTimestamp: "2024-04-24T01:00:00Z" + finalizers: + - astra.netapp.io/finalizer + generation: 1 + labels: + created-by-astra-schedule-uid: a2736922-6801-482c-a199-03ef8a3f35d7 + name: daily-a4587-20240424010000 + namespace: astra-connector + ownerReferences: + - apiVersion: astra.netapp.io/v1 + kind: Application + name: ghost + uid: 0af10ee8-772b-4367-8334-44f9e4ad2849 + resourceVersion: "9965658" + uid: d4b61932-5c8e-4310-82a5-37a0b671aa2d +spec: + appVaultRef: astra-gcp-backup-743cfd150129 + applicationRef: ghost + snapshotRef: daily-a4587-20240424010000 diff --git a/resource_customizations/astra.netapp.io/Backup/testdata/progressing_status.yaml b/resource_customizations/astra.netapp.io/Backup/testdata/progressing_status.yaml new file mode 100644 index 0000000000000..38477b5a3f02c --- /dev/null +++ b/resource_customizations/astra.netapp.io/Backup/testdata/progressing_status.yaml @@ -0,0 +1,76 @@ +apiVersion: astra.netapp.io/v1 +kind: Backup +metadata: + annotations: + astra.netapp.io/correlationid: cd272631-d0a8-4a61-9cde-6a7202074051 + creationTimestamp: "2024-04-24T19:39:34Z" + finalizers: + - astra.netapp.io/finalizer + generation: 1 + name: backup-20240424193745 + namespace: astra-connector + ownerReferences: + - apiVersion: astra.netapp.io/v1 + kind: Application + name: ghost + uid: 0af10ee8-772b-4367-8334-44f9e4ad2849 + resourceVersion: "10599529" + uid: fea5520e-553c-400d-8539-e9d2bbe5b762 +spec: + appVaultRef: astra-gcp-backup-743cfd150129 + applicationRef: ghost +status: + conditions: + - lastTransitionTime: "2024-04-24T19:39:34Z" + message: Successfully reconciled + reason: Done + status: "True" + type: AppOwnerReferenceCreated + - lastTransitionTime: "2024-04-24T19:39:34Z" + message: Successfully reconciled + reason: Done + status: "True" + type: SourceSnapshotExists + - lastTransitionTime: "2024-04-24T19:39:34Z" + message: Waiting for source Snapshot to complete + reason: Waiting + status: "False" + type: SourceSnapshotCompleted + - lastTransitionTime: "2024-04-24T19:39:34Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: SnapshotAppArchiveCopied + - lastTransitionTime: "2024-04-24T19:39:34Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: PreBackupExecHooksRunCompleted + - lastTransitionTime: "2024-04-24T19:39:34Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: VolumeBackupsCompleted + - lastTransitionTime: "2024-04-24T19:39:34Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: PostBackupExecHooksRunCompleted + - lastTransitionTime: "2024-04-24T19:39:34Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: TemporarySnapshotCleanedUp + - lastTransitionTime: "2024-04-24T19:39:34Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: Completed + - lastTransitionTime: "2024-04-24T19:39:34Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: OnFailurePostBackupExecHooksRunCompleted + progress: {} + sourceSnapshotName: backup-fea5520e-553c-400d-8539-e9d2bbe5b762 + state: Running diff --git a/resource_customizations/astra.netapp.io/ExecHook/health.lua b/resource_customizations/astra.netapp.io/ExecHook/health.lua new file mode 100644 index 0000000000000..6d7389ccf0704 --- /dev/null +++ b/resource_customizations/astra.netapp.io/ExecHook/health.lua @@ -0,0 +1,13 @@ +hs = { status = "Progressing", message = "No status available" } +if obj.spec ~= nil then + if obj.spec.enabled ~= nil then + if obj.spec.enabled == true then + hs.status = "Healthy" + hs.message = obj.kind .. " enabled" + elseif obj.spec.enabled == false then + hs.status = "Suspended" + hs.message = obj.kind .. " disabled" + end + end +end +return hs diff --git a/resource_customizations/astra.netapp.io/ExecHook/health_test.yaml b/resource_customizations/astra.netapp.io/ExecHook/health_test.yaml new file mode 100644 index 0000000000000..abe46b3f6714e --- /dev/null +++ b/resource_customizations/astra.netapp.io/ExecHook/health_test.yaml @@ -0,0 +1,13 @@ +tests: + - healthStatus: + status: Progressing + message: "No status available" + inputPath: testdata/progressing_nostatus.yaml + - healthStatus: + status: Healthy + message: "ExecHook enabled" + inputPath: testdata/healthy.yaml + - healthStatus: + status: Suspended + message: "ExecHook disabled" + inputPath: testdata/suspended.yaml diff --git a/resource_customizations/astra.netapp.io/ExecHook/testdata/healthy.yaml b/resource_customizations/astra.netapp.io/ExecHook/testdata/healthy.yaml new file mode 100644 index 0000000000000..fd0e7ad1af15b --- /dev/null +++ b/resource_customizations/astra.netapp.io/ExecHook/testdata/healthy.yaml @@ -0,0 +1,23 @@ +apiVersion: astra.netapp.io/v1 +kind: ExecHook +metadata: + creationTimestamp: "2024-04-25T14:17:52Z" + generation: 1 + labels: + argocd.argoproj.io/instance: ghost-demo + name: pre-snapshot + namespace: astra-connector + resourceVersion: "11239151" + uid: 105679e3-4acc-4618-a3c2-53e0e5949f65 +spec: + action: snapshot + applicationRef: ghost + arguments: + - pre + enabled: true + hookSource: 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 + matchingCriteria: + - type: containerImage + value: mysql + stage: pre + timeout: 25 diff --git a/resource_customizations/astra.netapp.io/ExecHook/testdata/progressing_nostatus.yaml b/resource_customizations/astra.netapp.io/ExecHook/testdata/progressing_nostatus.yaml new file mode 100644 index 0000000000000..ba5af3f288bf4 --- /dev/null +++ b/resource_customizations/astra.netapp.io/ExecHook/testdata/progressing_nostatus.yaml @@ -0,0 +1,22 @@ +apiVersion: astra.netapp.io/v1 +kind: ExecHook +metadata: + creationTimestamp: "2024-04-25T14:17:52Z" + generation: 3 + labels: + argocd.argoproj.io/instance: ghost-demo + name: pre-snapshot + namespace: astra-connector + resourceVersion: "11342335" + uid: 105679e3-4acc-4618-a3c2-53e0e5949f65 +spec: + action: snapshot + applicationRef: ghost + arguments: + - pre + hookSource: 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 + matchingCriteria: + - type: containerImage + value: mysql + stage: pre + timeout: 25 diff --git a/resource_customizations/astra.netapp.io/ExecHook/testdata/suspended.yaml b/resource_customizations/astra.netapp.io/ExecHook/testdata/suspended.yaml new file mode 100644 index 0000000000000..607b3df616164 --- /dev/null +++ b/resource_customizations/astra.netapp.io/ExecHook/testdata/suspended.yaml @@ -0,0 +1,23 @@ +apiVersion: astra.netapp.io/v1 +kind: ExecHook +metadata: + creationTimestamp: "2024-04-25T14:17:52Z" + generation: 3 + labels: + argocd.argoproj.io/instance: ghost-demo + name: pre-snapshot + namespace: astra-connector + resourceVersion: "11342335" + uid: 105679e3-4acc-4618-a3c2-53e0e5949f65 +spec: + action: snapshot + applicationRef: ghost + arguments: + - pre + enabled: false + hookSource: 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 + matchingCriteria: + - type: containerImage + value: mysql + stage: pre + timeout: 25 diff --git a/resource_customizations/astra.netapp.io/ExecHooksRun/health.lua b/resource_customizations/astra.netapp.io/ExecHooksRun/health.lua new file mode 100644 index 0000000000000..39de4ac74eb68 --- /dev/null +++ b/resource_customizations/astra.netapp.io/ExecHooksRun/health.lua @@ -0,0 +1,16 @@ +hs = { status = "Progressing", message = "No status available" } +if obj.status ~= nil then + if obj.status.state ~= nil then + if obj.status.state == "Completed" then + hs.status = "Healthy" + hs.message = obj.kind .. " Completed" + elseif obj.status.state == "Running" then + hs.status = "Progressing" + hs.message = obj.kind .. " Running" + else + hs.status = "Degraded" + hs.message = obj.status.state + end + end +end +return hs diff --git a/resource_customizations/astra.netapp.io/ExecHooksRun/health_test.yaml b/resource_customizations/astra.netapp.io/ExecHooksRun/health_test.yaml new file mode 100644 index 0000000000000..52b629e5e7013 --- /dev/null +++ b/resource_customizations/astra.netapp.io/ExecHooksRun/health_test.yaml @@ -0,0 +1,17 @@ +tests: + - healthStatus: + status: Progressing + message: "No status available" + inputPath: testdata/progressing_nostatus.yaml + - healthStatus: + status: Progressing + message: "ExecHooksRun Running" + inputPath: testdata/progressing_status.yaml + - healthStatus: + status: Healthy + message: "ExecHooksRun Completed" + inputPath: testdata/healthy.yaml + - healthStatus: + status: Degraded + message: "Failed" + inputPath: testdata/degraded.yaml diff --git a/resource_customizations/astra.netapp.io/ExecHooksRun/testdata/degraded.yaml b/resource_customizations/astra.netapp.io/ExecHooksRun/testdata/degraded.yaml new file mode 100644 index 0000000000000..d8822c311f449 --- /dev/null +++ b/resource_customizations/astra.netapp.io/ExecHooksRun/testdata/degraded.yaml @@ -0,0 +1,71 @@ +apiVersion: astra.netapp.io/v1 +kind: ExecHooksRun +metadata: + annotations: + astra.netapp.io/correlationid: 1c47a636-f819-43f3-baee-054793424bb5 + creationTimestamp: "2024-04-25T17:00:50Z" + generation: 1 + name: post-snapshot-073d13d7-4a0c-4c5e-914f-331ef6d00de2 + namespace: astra-connector + ownerReferences: + - apiVersion: astra.netapp.io/v1 + blockOwnerDeletion: true + controller: true + kind: Snapshot + name: argo-presync-20240425163524 + uid: 073d13d7-4a0c-4c5e-914f-331ef6d00de2 + resourceVersion: "11335239" + uid: 9bfcda95-2731-47dc-8eb2-6e83ae19da00 +spec: + action: snapshot + appArchivePath: ghost_0af10ee8-772b-4367-8334-44f9e4ad2849/snapshots/20240425163526_argo-presync-20240425163524_073d13d7-4a0c-4c5e-914f-331ef6d00de2 + appVaultRef: astra-gcp-backup-743cfd150129 + applicationRef: ghost + completionTimeout: 0s + resourceFilter: {} + stage: post +status: + completionTimestamp: "2024-04-25T17:00:56Z" + conditions: + - lastTransitionTime: "2024-04-25T17:00:50Z" + message: failed to get application archive + reason: Done + status: "False" + type: RetrievedMatchingContainers + - lastTransitionTime: "2024-04-25T17:00:50Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: WaitForReadiness + - lastTransitionTime: "2024-04-25T17:00:56Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: ProcessMatchingContainers + - lastTransitionTime: "2024-04-25T17:00:56Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: ArchiveExecHooksUsed + - lastTransitionTime: "2024-04-25T17:00:56Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: Completed + - lastTransitionTime: "2024-04-25T17:00:50Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: OnFailureArchiveExecHooksUsed + matchingContainers: + - completionTimestamp: "2024-04-25T17:00:56Z" + containerImage: docker.io/bitnami/mysql:8.0.32-debian-11-r8 + containerName: mysql + execHookRef: post-snapshot + execHookUID: 2cafb1b4-2575-426c-8102-29437ebee48b + jobName: ehr-47223ea8dd0115ca18a986c77380aeb3 + namespace: ghost + podName: ghost-mysql-5bfb6bc8f5-stw4w + podUID: 15ddfce0-1565-4574-89a6-80662450aedd + startTimestamp: "2024-04-25T17:00:50Z" + state: Failed diff --git a/resource_customizations/astra.netapp.io/ExecHooksRun/testdata/healthy.yaml b/resource_customizations/astra.netapp.io/ExecHooksRun/testdata/healthy.yaml new file mode 100644 index 0000000000000..0d237f0eb75a5 --- /dev/null +++ b/resource_customizations/astra.netapp.io/ExecHooksRun/testdata/healthy.yaml @@ -0,0 +1,71 @@ +apiVersion: astra.netapp.io/v1 +kind: ExecHooksRun +metadata: + annotations: + astra.netapp.io/correlationid: 1c47a636-f819-43f3-baee-054793424bb5 + creationTimestamp: "2024-04-25T17:00:50Z" + generation: 1 + name: post-snapshot-073d13d7-4a0c-4c5e-914f-331ef6d00de2 + namespace: astra-connector + ownerReferences: + - apiVersion: astra.netapp.io/v1 + blockOwnerDeletion: true + controller: true + kind: Snapshot + name: argo-presync-20240425163524 + uid: 073d13d7-4a0c-4c5e-914f-331ef6d00de2 + resourceVersion: "11335239" + uid: 9bfcda95-2731-47dc-8eb2-6e83ae19da00 +spec: + action: snapshot + appArchivePath: ghost_0af10ee8-772b-4367-8334-44f9e4ad2849/snapshots/20240425163526_argo-presync-20240425163524_073d13d7-4a0c-4c5e-914f-331ef6d00de2 + appVaultRef: astra-gcp-backup-743cfd150129 + applicationRef: ghost + completionTimeout: 0s + resourceFilter: {} + stage: post +status: + completionTimestamp: "2024-04-25T17:00:56Z" + conditions: + - lastTransitionTime: "2024-04-25T17:00:50Z" + message: Found 1 matching container/exechook pairs + reason: Done + status: "True" + type: RetrievedMatchingContainers + - lastTransitionTime: "2024-04-25T17:00:50Z" + message: Wait only needed on a restore + reason: Done + status: "True" + type: WaitForReadiness + - lastTransitionTime: "2024-04-25T17:00:56Z" + message: Successfully reconciled + reason: Done + status: "True" + type: ProcessMatchingContainers + - lastTransitionTime: "2024-04-25T17:00:56Z" + message: Successfully reconciled + reason: Done + status: "True" + type: ArchiveExecHooksUsed + - lastTransitionTime: "2024-04-25T17:00:56Z" + message: Successfully reconciled + reason: Done + status: "True" + type: Completed + - lastTransitionTime: "2024-04-25T17:00:50Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: OnFailureArchiveExecHooksUsed + matchingContainers: + - completionTimestamp: "2024-04-25T17:00:56Z" + containerImage: docker.io/bitnami/mysql:8.0.32-debian-11-r8 + containerName: mysql + execHookRef: post-snapshot + execHookUID: 2cafb1b4-2575-426c-8102-29437ebee48b + jobName: ehr-47223ea8dd0115ca18a986c77380aeb3 + namespace: ghost + podName: ghost-mysql-5bfb6bc8f5-stw4w + podUID: 15ddfce0-1565-4574-89a6-80662450aedd + startTimestamp: "2024-04-25T17:00:50Z" + state: Completed diff --git a/resource_customizations/astra.netapp.io/ExecHooksRun/testdata/progressing_nostatus.yaml b/resource_customizations/astra.netapp.io/ExecHooksRun/testdata/progressing_nostatus.yaml new file mode 100644 index 0000000000000..4d3b6704d4d20 --- /dev/null +++ b/resource_customizations/astra.netapp.io/ExecHooksRun/testdata/progressing_nostatus.yaml @@ -0,0 +1,26 @@ +apiVersion: astra.netapp.io/v1 +kind: ExecHooksRun +metadata: + annotations: + astra.netapp.io/correlationid: 1c47a636-f819-43f3-baee-054793424bb5 + creationTimestamp: "2024-04-25T16:35:34Z" + generation: 1 + name: pre-snapshot-073d13d7-4a0c-4c5e-914f-331ef6d00de2 + namespace: astra-connector + ownerReferences: + - apiVersion: astra.netapp.io/v1 + blockOwnerDeletion: true + controller: true + kind: Snapshot + name: argo-presync-20240425163524 + uid: 073d13d7-4a0c-4c5e-914f-331ef6d00de2 + resourceVersion: "11320392" + uid: 064199e2-d540-4628-b4ec-5b417bb85128 +spec: + action: snapshot + appArchivePath: ghost_0af10ee8-772b-4367-8334-44f9e4ad2849/snapshots/20240425163526_argo-presync-20240425163524_073d13d7-4a0c-4c5e-914f-331ef6d00de2 + appVaultRef: astra-gcp-backup-734ced050128 + applicationRef: ghost + completionTimeout: 0s + resourceFilter: {} + stage: pre diff --git a/resource_customizations/astra.netapp.io/ExecHooksRun/testdata/progressing_status.yaml b/resource_customizations/astra.netapp.io/ExecHooksRun/testdata/progressing_status.yaml new file mode 100644 index 0000000000000..44578700d61dd --- /dev/null +++ b/resource_customizations/astra.netapp.io/ExecHooksRun/testdata/progressing_status.yaml @@ -0,0 +1,69 @@ +apiVersion: astra.netapp.io/v1 +kind: ExecHooksRun +metadata: + annotations: + astra.netapp.io/correlationid: 1c47a636-f819-43f3-baee-054793424bb5 + creationTimestamp: "2024-04-25T16:35:34Z" + generation: 1 + name: pre-snapshot-073d13d7-4a0c-4c5e-914f-331ef6d00de2 + namespace: astra-connector + ownerReferences: + - apiVersion: astra.netapp.io/v1 + blockOwnerDeletion: true + controller: true + kind: Snapshot + name: argo-presync-20240425163524 + uid: 073d13d7-4a0c-4c5e-914f-331ef6d00de2 + resourceVersion: "11320407" + uid: 064199e2-d540-4628-b4ec-5b417bb85128 +spec: + action: snapshot + appArchivePath: ghost_0af10ee8-772b-4367-8334-44f9e4ad2849/snapshots/20240425163526_argo-presync-20240425163524_073d13d7-4a0c-4c5e-914f-331ef6d00de2 + appVaultRef: astra-gcp-backup-743cfd150129 + applicationRef: ghost + completionTimeout: 0s + resourceFilter: {} + stage: pre +status: + conditions: + - lastTransitionTime: "2024-04-25T16:35:34Z" + message: Found 1 matching container/exechook pairs + reason: Done + status: "True" + type: RetrievedMatchingContainers + - lastTransitionTime: "2024-04-25T16:35:34Z" + message: Wait only needed on a restore + reason: Done + status: "True" + type: WaitForReadiness + - lastTransitionTime: "2024-04-25T16:35:34Z" + message: Waiting + reason: Waiting + status: "False" + type: ProcessMatchingContainers + - lastTransitionTime: "2024-04-25T16:35:34Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: ArchiveExecHooksUsed + - lastTransitionTime: "2024-04-25T16:35:34Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: Completed + - lastTransitionTime: "2024-04-25T16:35:34Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: OnFailureArchiveExecHooksUsed + matchingContainers: + - containerImage: docker.io/bitnami/mysql:8.0.32-debian-11-r8 + containerName: mysql + execHookRef: pre-snapshot + execHookUID: 105679e3-4acc-4618-a3c2-53e0e5949f65 + jobName: ehr-ea0e89c8221790b54e94b4ac937aeac2 + namespace: ghost + podName: ghost-mysql-5bfb6bc8f5-stw4w + podUID: 15ddfce0-1565-4574-89a6-80662450aedd + startTimestamp: "2024-04-25T16:35:34Z" + state: Running diff --git a/resource_customizations/astra.netapp.io/ResourceBackup/health.lua b/resource_customizations/astra.netapp.io/ResourceBackup/health.lua new file mode 100644 index 0000000000000..39de4ac74eb68 --- /dev/null +++ b/resource_customizations/astra.netapp.io/ResourceBackup/health.lua @@ -0,0 +1,16 @@ +hs = { status = "Progressing", message = "No status available" } +if obj.status ~= nil then + if obj.status.state ~= nil then + if obj.status.state == "Completed" then + hs.status = "Healthy" + hs.message = obj.kind .. " Completed" + elseif obj.status.state == "Running" then + hs.status = "Progressing" + hs.message = obj.kind .. " Running" + else + hs.status = "Degraded" + hs.message = obj.status.state + end + end +end +return hs diff --git a/resource_customizations/astra.netapp.io/ResourceBackup/health_test.yaml b/resource_customizations/astra.netapp.io/ResourceBackup/health_test.yaml new file mode 100644 index 0000000000000..21668ca2006eb --- /dev/null +++ b/resource_customizations/astra.netapp.io/ResourceBackup/health_test.yaml @@ -0,0 +1,17 @@ +tests: + - healthStatus: + status: Progressing + message: "No status available" + inputPath: testdata/progressing_nostatus.yaml + - healthStatus: + status: Progressing + message: "ResourceBackup Running" + inputPath: testdata/progressing_status.yaml + - healthStatus: + status: Healthy + message: "ResourceBackup Completed" + inputPath: testdata/healthy.yaml + - healthStatus: + status: Degraded + message: "Error" + inputPath: testdata/degraded.yaml diff --git a/resource_customizations/astra.netapp.io/ResourceBackup/testdata/degraded.yaml b/resource_customizations/astra.netapp.io/ResourceBackup/testdata/degraded.yaml new file mode 100644 index 0000000000000..dc8bcd087f06c --- /dev/null +++ b/resource_customizations/astra.netapp.io/ResourceBackup/testdata/degraded.yaml @@ -0,0 +1,52 @@ +apiVersion: astra.netapp.io/v1 +kind: ResourceBackup +metadata: + annotations: + astra.netapp.io/correlationid: 6094b54d-b02b-475a-b5db-136729841240 + creationTimestamp: "2024-04-24T19:54:19Z" + finalizers: + - astra.netapp.io/finalizer + generation: 1 + name: snapshot-7b0d4f5e-53d0-4742-adec-15ef5d527865 + namespace: astra-connector + ownerReferences: + - apiVersion: astra.netapp.io/v1 + blockOwnerDeletion: true + controller: true + kind: Snapshot + name: backup-ad301b6a-6536-4313-89c1-d10ad0275430 + uid: 7b0d4f5e-53d0-4742-adec-15ef5d527865 + resourceVersion: "10608354" + uid: 9f8505a1-29ac-4755-92b5-536e6d825c35 +spec: + appArchivePath: ghost_0af10ee8-772b-4367-8334-44f9e4ad2849/snapshots/20240424195419_backup-ad301b6a-6536-4313-89c1-d10ad0275430_7b0d4f5e-53d0-4742-adec-15ef5d527865 + appVaultRef: astra-gcp-backup-743cfd150129 + applicationRef: ghost +status: + conditions: + - lastTransitionTime: "2024-04-24T19:54:19Z" + message: Successfully reconciled + reason: Done + status: "True" + type: AppOwnerReferenceCreated + - lastTransitionTime: "2024-04-24T19:54:19Z" + message: + 'unable to fetch appVault: AppVault.astra.netapp.io "astra-gcp-backup-743cfd150129" + not found' + reason: Error + status: "False" + type: JobCreated + - lastTransitionTime: "2024-04-24T19:54:19Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: JobCompleted + - lastTransitionTime: "2024-04-24T19:54:19Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: JobCleanedUp + error: + 'unable to fetch appVault: AppVault.astra.netapp.io "astra-gcp-backup-743cfd150129" + not found' + state: Error diff --git a/resource_customizations/astra.netapp.io/ResourceBackup/testdata/healthy.yaml b/resource_customizations/astra.netapp.io/ResourceBackup/testdata/healthy.yaml new file mode 100644 index 0000000000000..047ccbf583b5a --- /dev/null +++ b/resource_customizations/astra.netapp.io/ResourceBackup/testdata/healthy.yaml @@ -0,0 +1,49 @@ +apiVersion: astra.netapp.io/v1 +kind: ResourceBackup +metadata: + annotations: + astra.netapp.io/correlationid: 5b89a58c-9b7c-42e8-b426-c8f863e88f41 + creationTimestamp: "2024-04-18T02:00:00Z" + finalizers: + - astra.netapp.io/finalizer + generation: 1 + name: snapshot-0b1c9d28-33bd-45ce-b75b-2a45721e7218 + namespace: astra-connector + ownerReferences: + - apiVersion: astra.netapp.io/v1 + blockOwnerDeletion: true + controller: true + kind: Snapshot + name: daily-02c95-20240418020000 + uid: 0b1c9d28-33bd-45ce-b75b-2a45721e7218 + resourceVersion: "5060306" + uid: 28c08689-2f8d-4b1e-bfa4-ac8c8795adff +spec: + appArchivePath: wordpress_5ab7cd7d-7a9b-4508-9da2-c7dcb10a69b3/snapshots/20240418020000_daily-02c95-20240418020000_0b1c9d28-33bd-45ce-b75b-2a45721e7218 + appVaultRef: astra-gcp-backup-743cfd150129 + applicationRef: wordpress +status: + appArchivePath: wordpress_5ab7cd7d-7a9b-4508-9da2-c7dcb10a69b3/snapshots/20240418020000_daily-02c95-20240418020000_0b1c9d28-33bd-45ce-b75b-2a45721e7218 + completionTimestamp: "2024-04-18T02:00:09Z" + conditions: + - lastTransitionTime: "2024-04-18T02:00:00Z" + message: Successfully reconciled + reason: Done + status: "True" + type: AppOwnerReferenceCreated + - lastTransitionTime: "2024-04-18T02:00:00Z" + message: Successfully reconciled + reason: Done + status: "True" + type: JobCreated + - lastTransitionTime: "2024-04-18T02:00:09Z" + message: Successfully reconciled + reason: Done + status: "True" + type: JobCompleted + - lastTransitionTime: "2024-04-18T02:00:10Z" + message: Successfully reconciled + reason: Done + status: "True" + type: JobCleanedUp + state: Completed diff --git a/resource_customizations/astra.netapp.io/ResourceBackup/testdata/progressing_nostatus.yaml b/resource_customizations/astra.netapp.io/ResourceBackup/testdata/progressing_nostatus.yaml new file mode 100644 index 0000000000000..e4e5f9f6512d5 --- /dev/null +++ b/resource_customizations/astra.netapp.io/ResourceBackup/testdata/progressing_nostatus.yaml @@ -0,0 +1,24 @@ +apiVersion: astra.netapp.io/v1 +kind: ResourceBackup +metadata: + annotations: + astra.netapp.io/correlationid: ee3baf3b-c470-486f-a327-47a6eada0722 + creationTimestamp: "2024-04-24T21:30:21Z" + finalizers: + - astra.netapp.io/finalizer + generation: 1 + name: snapshot-0796d78d-e751-4835-a0d4-be61b9f9076a + namespace: astra-connector + ownerReferences: + - apiVersion: astra.netapp.io/v1 + blockOwnerDeletion: true + controller: true + kind: Snapshot + name: argo-presync-20240424213020 + uid: 0796d78d-e751-4835-a0d4-be61b9f9076a + resourceVersion: "10661760" + uid: 6ed660f0-95be-4369-b548-15cb094a44c2 +spec: + appArchivePath: ghost_0af10ee8-772b-4367-8334-44f9e4ad2849/snapshots/20240424213020_argo-presync-20240424213020_0796d78d-e751-4835-a0d4-be61b9f9076a + appVaultRef: astra-gcp-backup-743cfd150129 + applicationRef: ghost diff --git a/resource_customizations/astra.netapp.io/ResourceBackup/testdata/progressing_status.yaml b/resource_customizations/astra.netapp.io/ResourceBackup/testdata/progressing_status.yaml new file mode 100644 index 0000000000000..ba27f3627f798 --- /dev/null +++ b/resource_customizations/astra.netapp.io/ResourceBackup/testdata/progressing_status.yaml @@ -0,0 +1,48 @@ +apiVersion: astra.netapp.io/v1 +kind: ResourceBackup +metadata: + annotations: + astra.netapp.io/correlationid: ee3baf3b-c470-486f-a327-47a6eada0722 + creationTimestamp: "2024-04-24T21:30:21Z" + finalizers: + - astra.netapp.io/finalizer + generation: 1 + name: snapshot-0796d78d-e751-4835-a0d4-be61b9f9076a + namespace: astra-connector + ownerReferences: + - apiVersion: astra.netapp.io/v1 + blockOwnerDeletion: true + controller: true + kind: Snapshot + name: argo-presync-20240424213020 + uid: 0796d78d-e751-4835-a0d4-be61b9f9076a + resourceVersion: "10661760" + uid: 6ed660f0-95be-4369-b548-15cb094a44c2 +spec: + appArchivePath: ghost_0af10ee8-772b-4367-8334-44f9e4ad2849/snapshots/20240424213020_argo-presync-20240424213020_0796d78d-e751-4835-a0d4-be61b9f9076a + appVaultRef: astra-gcp-backup-743cfd150129 + applicationRef: ghost +status: + appArchivePath: ghost_0af10ee8-772b-4367-8334-44f9e4ad2849/snapshots/20240424213020_argo-presync-20240424213020_0796d78d-e751-4835-a0d4-be61b9f9076a + conditions: + - lastTransitionTime: "2024-04-24T21:30:21Z" + message: Successfully reconciled + reason: Done + status: "True" + type: AppOwnerReferenceCreated + - lastTransitionTime: "2024-04-24T21:30:21Z" + message: Successfully reconciled + reason: Done + status: "True" + type: JobCreated + - lastTransitionTime: "2024-04-24T21:30:21Z" + message: waiting for resource backup job to complete + reason: Waiting + status: "False" + type: JobCompleted + - lastTransitionTime: "2024-04-24T21:30:21Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: JobCleanedUp + state: Running diff --git a/resource_customizations/astra.netapp.io/ResticVolumeBackup/health.lua b/resource_customizations/astra.netapp.io/ResticVolumeBackup/health.lua new file mode 100644 index 0000000000000..39de4ac74eb68 --- /dev/null +++ b/resource_customizations/astra.netapp.io/ResticVolumeBackup/health.lua @@ -0,0 +1,16 @@ +hs = { status = "Progressing", message = "No status available" } +if obj.status ~= nil then + if obj.status.state ~= nil then + if obj.status.state == "Completed" then + hs.status = "Healthy" + hs.message = obj.kind .. " Completed" + elseif obj.status.state == "Running" then + hs.status = "Progressing" + hs.message = obj.kind .. " Running" + else + hs.status = "Degraded" + hs.message = obj.status.state + end + end +end +return hs diff --git a/resource_customizations/astra.netapp.io/ResticVolumeBackup/health_test.yaml b/resource_customizations/astra.netapp.io/ResticVolumeBackup/health_test.yaml new file mode 100644 index 0000000000000..2038e85656a2f --- /dev/null +++ b/resource_customizations/astra.netapp.io/ResticVolumeBackup/health_test.yaml @@ -0,0 +1,17 @@ +tests: + - healthStatus: + status: Progressing + message: "No status available" + inputPath: testdata/progressing_nostatus.yaml + - healthStatus: + status: Progressing + message: "ResticVolumeBackup Running" + inputPath: testdata/progressing_status.yaml + - healthStatus: + status: Healthy + message: "ResticVolumeBackup Completed" + inputPath: testdata/healthy.yaml + - healthStatus: + status: Degraded + message: "Failed" + inputPath: testdata/degraded.yaml diff --git a/resource_customizations/astra.netapp.io/ResticVolumeBackup/testdata/degraded.yaml b/resource_customizations/astra.netapp.io/ResticVolumeBackup/testdata/degraded.yaml new file mode 100644 index 0000000000000..dd1e080791b2a --- /dev/null +++ b/resource_customizations/astra.netapp.io/ResticVolumeBackup/testdata/degraded.yaml @@ -0,0 +1,99 @@ +apiVersion: astra.netapp.io/v1 +kind: ResticVolumeBackup +metadata: + annotations: + astra.netapp.io/correlationid: 26d34f64-38cc-4775-881d-a2fa12437f4b + creationTimestamp: "2024-04-17T13:50:44Z" + deletionGracePeriodSeconds: 0 + deletionTimestamp: "2024-04-17T14:51:28Z" + finalizers: + - astra.netapp.io/finalizer + generation: 2 + name: backup-8f2ae7bd-82fc-4b4f-a22d-d08edc2e4e27-vs-54c8ec7f-42e8-48aa-b347-d4acab7b877b + namespace: astra-connector + ownerReferences: + - apiVersion: astra.netapp.io/v1 + blockOwnerDeletion: true + controller: true + kind: Backup + name: hourly-acde9-20240417135000 + uid: 8f2ae7bd-82fc-4b4f-a22d-d08edc2e4e27 + resourceVersion: "4675672" + uid: ba90a4f7-a68f-4978-bc04-86902281adc2 +spec: + clonePVC: + metadata: {} + spec: + accessModes: + - ReadWriteMany + resources: + requests: + storage: 100Gi + storageClassName: netapp-cvs-perf-premium + dataSourceRef: + apiGroup: snapshot.storage.k8s.io + kind: VolumeSnapshot + name: backup-8f2ae7bd-82fc-4b4f-a22d-d08edc2e4e27-vs-54c8ec7f-42e8-48aa-b347-d4acab7b877b + resticEnv: + - name: GOOGLE_PROJECT_ID + - name: GOOGLE_APPLICATION_CREDENTIALS + value: /var/run/secrets/neptune/astra-gcp-backup-743cfd150129-5rdt4/credentials.json + - name: RESTIC_PASSWORD + value: password + resticRepository: gs:astra-gcp-backup-743cfd150129://ghost_0af10ee8-772b-4367-8334-44f9e4ad2849/restic/ghost/ghost_b9ff9e05-5049-4862-82c6-dea080c2fe0d + resticVolumeMounts: + - mount: + mountPath: /var/run/secrets/neptune/astra-gcp-backup-743cfd150129-5rdt4 + name: secret-astra-gcp-backup-743cfd150129-5rdt4 + readOnly: true + source: + items: + - key: credentials.json + path: credentials.json + secretName: astra-gcp-backup-743cfd150129-5rdt4 +status: + clonePVCName: restic-volume-backup-ba90a4f7-a68f-4978-bc04-86902281adc2 + clonePVName: "" + conditions: + - lastTransitionTime: "2024-04-17T13:50:44Z" + message: Successfully reconciled + reason: Done + status: "True" + type: SourcePVCExists + - lastTransitionTime: "2024-04-17T13:50:44Z" + message: Successfully reconciled + reason: Done + status: "True" + type: ResticJobCreated + - lastTransitionTime: "2024-04-17T13:50:44Z" + message: + "restic job restic-volume-backup-ba90a4f7-a68f-4978-bc04-86902281adc2 + failed: permanent error" + reason: Failed + status: "False" + type: ResticJobCompleted + - lastTransitionTime: "2024-04-17T13:50:44Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: ResticJobCleanedUp + - lastTransitionTime: "2024-04-17T13:50:44Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: TemporaryPVCCloneCleanedUp + - lastTransitionTime: "2024-04-17T13:50:44Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: TemporaryPVCloneCleanedUp + - lastTransitionTime: "2024-04-17T13:50:44Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: Completed + error: + "restic job restic-volume-backup-ba90a4f7-a68f-4978-bc04-86902281adc2 failed: + permanent error" + resticJobName: restic-volume-backup-ba90a4f7-a68f-4978-bc04-86902281adc2 + state: Failed diff --git a/resource_customizations/astra.netapp.io/ResticVolumeBackup/testdata/healthy.yaml b/resource_customizations/astra.netapp.io/ResticVolumeBackup/testdata/healthy.yaml new file mode 100644 index 0000000000000..55d5fdf49055e --- /dev/null +++ b/resource_customizations/astra.netapp.io/ResticVolumeBackup/testdata/healthy.yaml @@ -0,0 +1,94 @@ +apiVersion: astra.netapp.io/v1 +kind: ResticVolumeBackup +metadata: + annotations: + astra.netapp.io/correlationid: 2d54c3e9-2b18-4ce9-958e-4c307619e4e7 + creationTimestamp: "2024-04-25T20:30:15Z" + finalizers: + - astra.netapp.io/finalizer + generation: 1 + name: backup-40b1dc7d-f1c0-4c3d-b34e-d7db5cc26d14-vs-78b36b0d-52db-4b24-afe4-ceec56209bbb + namespace: astra-connector + ownerReferences: + - apiVersion: astra.netapp.io/v1 + blockOwnerDeletion: true + controller: true + kind: Backup + name: hourly-acde9-20240425195000 + uid: 40b1dc7d-f1c0-4c3d-b34e-d7db5cc26d14 + resourceVersion: "11460297" + uid: f3424a57-862e-4609-88ce-e534a655a5d6 +spec: + clonePVC: + metadata: {} + spec: + accessModes: + - ReadWriteOnce + resources: + requests: + storage: 100Gi + storageClassName: netapp-cvs-perf-premium + dataSourceRef: + apiGroup: snapshot.storage.k8s.io + kind: VolumeSnapshot + name: backup-40b1dc7d-f1c0-4c3d-b34e-d7db5cc26d14-vs-78b36b0d-52db-4b24-afe4-ceec56209bbb + resticEnv: + - name: GOOGLE_PROJECT_ID + - name: GOOGLE_APPLICATION_CREDENTIALS + value: /var/run/secrets/neptune/astra-gcp-backup-743cfd150129-5rdt4/credentials.json + - name: RESTIC_PASSWORD + value: password + resticRepository: gs:astra-gcp-backup-743cfd150129://ghost_0af10ee8-772b-4367-8334-44f9e4ad2849/restic/ghost/mysql-pv-claim_5749beb5-e09a-4286-8cb4-1af9750f6929 + resticVolumeMounts: + - mount: + mountPath: /var/run/secrets/neptune/astra-gcp-backup-743cfd150129-5rdt4 + name: secret-astra-gcp-backup-743cfd150129-5rdt4 + readOnly: true + source: + items: + - key: credentials.json + path: credentials.json + secretName: astra-gcp-backup-743cfd150129-5rdt4 +status: + clonePVCName: restic-volume-backup-f3424a57-862e-4609-88ce-e534a655a5d6 + clonePVName: pvc-90470af6-7d44-4500-80c1-99f925193654 + completionTimestamp: "2024-04-25T20:31:57Z" + conditions: + - lastTransitionTime: "2024-04-25T20:30:15Z" + message: Successfully reconciled + reason: Done + status: "True" + type: SourcePVCExists + - lastTransitionTime: "2024-04-25T20:30:15Z" + message: Successfully reconciled + reason: Done + status: "True" + type: ResticJobCreated + - lastTransitionTime: "2024-04-25T20:30:54Z" + message: Successfully reconciled + reason: Done + status: "True" + type: ResticJobCompleted + - lastTransitionTime: "2024-04-25T20:30:54Z" + message: Successfully reconciled + reason: Done + status: "True" + type: ResticJobCleanedUp + - lastTransitionTime: "2024-04-25T20:30:54Z" + message: Successfully reconciled + reason: Done + status: "True" + type: TemporaryPVCCloneCleanedUp + - lastTransitionTime: "2024-04-25T20:31:57Z" + message: Successfully reconciled + reason: Done + status: "True" + type: TemporaryPVCloneCleanedUp + - lastTransitionTime: "2024-04-25T20:31:57Z" + message: Successfully reconciled + reason: Done + status: "True" + type: Completed + resticJobName: restic-volume-backup-f3424a57-862e-4609-88ce-e534a655a5d6 + resticSnapshotID: 88c5684cf3e0cd73e57d96f11d20b1c6b03c913cf574cb73cb40da95078d6694 + state: Completed diff --git a/resource_customizations/astra.netapp.io/ResticVolumeBackup/testdata/progressing_nostatus.yaml b/resource_customizations/astra.netapp.io/ResticVolumeBackup/testdata/progressing_nostatus.yaml new file mode 100644 index 0000000000000..b622e552015f1 --- /dev/null +++ b/resource_customizations/astra.netapp.io/ResticVolumeBackup/testdata/progressing_nostatus.yaml @@ -0,0 +1,49 @@ +apiVersion: astra.netapp.io/v1 +kind: ResticVolumeBackup +metadata: + creationTimestamp: "2024-04-25T20:30:15Z" + finalizers: + - astra.netapp.io/finalizer + generation: 1 + name: backup-40b1dc7d-f1c0-4c3d-b34e-d7db5cc26d14-vs-78b36b0d-52db-4b24-afe4-ceec56209bbb + namespace: astra-connector + ownerReferences: + - apiVersion: astra.netapp.io/v1 + blockOwnerDeletion: true + controller: true + kind: Backup + name: hourly-acde9-20240425195000 + uid: 40b1dc7d-f1c0-4c3d-b34e-d7db5cc26d14 + resourceVersion: "11459172" + uid: f3424a57-862e-4609-88ce-e534a655a5d6 +spec: + clonePVC: + metadata: {} + spec: + accessModes: + - ReadWriteOnce + resources: + requests: + storage: 100Gi + storageClassName: netapp-cvs-perf-premium + dataSourceRef: + apiGroup: snapshot.storage.k8s.io + kind: VolumeSnapshot + name: backup-40b1dc7d-f1c0-4c3d-b34e-d7db5cc26d14-vs-78b36b0d-52db-4b24-afe4-ceec56209bbb + resticEnv: + - name: GOOGLE_PROJECT_ID + - name: GOOGLE_APPLICATION_CREDENTIALS + value: /var/run/secrets/neptune/astra-gcp-backup-743cfd150129-5rdt4/credentials.json + - name: RESTIC_PASSWORD + value: password + resticRepository: gs:astra-gcp-backup-743cfd150129://ghost_0af10ee8-772b-4367-8334-44f9e4ad2849/restic/ghost/mysql-pv-claim_5749beb5-e09a-4286-8cb4-1af9750f6929 + resticVolumeMounts: + - mount: + mountPath: /var/run/secrets/neptune/astra-gcp-backup-743cfd150129-5rdt4 + name: secret-astra-gcp-backup-743cfd150129-5rdt4 + readOnly: true + source: + items: + - key: credentials.json + path: credentials.json + secretName: astra-gcp-backup-743cfd150129-5rdt4 diff --git a/resource_customizations/astra.netapp.io/ResticVolumeBackup/testdata/progressing_status.yaml b/resource_customizations/astra.netapp.io/ResticVolumeBackup/testdata/progressing_status.yaml new file mode 100644 index 0000000000000..e0889bf955fdd --- /dev/null +++ b/resource_customizations/astra.netapp.io/ResticVolumeBackup/testdata/progressing_status.yaml @@ -0,0 +1,92 @@ +apiVersion: astra.netapp.io/v1 +kind: ResticVolumeBackup +metadata: + annotations: + astra.netapp.io/correlationid: 2d54c3e9-2b18-4ce9-958e-4c307619e4e7 + creationTimestamp: "2024-04-25T20:30:15Z" + finalizers: + - astra.netapp.io/finalizer + generation: 1 + name: backup-40b1dc7d-f1c0-4c3d-b34e-d7db5cc26d14-vs-78b36b0d-52db-4b24-afe4-ceec56209bbb + namespace: astra-connector + ownerReferences: + - apiVersion: astra.netapp.io/v1 + blockOwnerDeletion: true + controller: true + kind: Backup + name: hourly-acde9-20240425195000 + uid: 40b1dc7d-f1c0-4c3d-b34e-d7db5cc26d14 + resourceVersion: "11459181" + uid: f3424a57-862e-4609-88ce-e534a655a5d6 +spec: + clonePVC: + metadata: {} + spec: + accessModes: + - ReadWriteOnce + resources: + requests: + storage: 100Gi + storageClassName: netapp-cvs-perf-premium + dataSourceRef: + apiGroup: snapshot.storage.k8s.io + kind: VolumeSnapshot + name: backup-40b1dc7d-f1c0-4c3d-b34e-d7db5cc26d14-vs-78b36b0d-52db-4b24-afe4-ceec56209bbb + resticEnv: + - name: GOOGLE_PROJECT_ID + - name: GOOGLE_APPLICATION_CREDENTIALS + value: /var/run/secrets/neptune/astra-gcp-backup-743cfd150129-5rdt4/credentials.json + - name: RESTIC_PASSWORD + value: password + resticRepository: gs:astra-gcp-backup-743cfd150129://ghost_0af10ee8-772b-4367-8334-44f9e4ad2849/restic/ghost/mysql-pv-claim_5749beb5-e09a-4286-8cb4-1af9750f6929 + resticVolumeMounts: + - mount: + mountPath: /var/run/secrets/neptune/astra-gcp-backup-743cfd150129-5rdt4 + name: secret-astra-gcp-backup-743cfd150129-5rdt4 + readOnly: true + source: + items: + - key: credentials.json + path: credentials.json + secretName: astra-gcp-backup-743cfd150129-5rdt4 +status: + clonePVCName: restic-volume-backup-f3424a57-862e-4609-88ce-e534a655a5d6 + clonePVName: "" + conditions: + - lastTransitionTime: "2024-04-25T20:30:15Z" + message: Successfully reconciled + reason: Done + status: "True" + type: SourcePVCExists + - lastTransitionTime: "2024-04-25T20:30:15Z" + message: Successfully reconciled + reason: Done + status: "True" + type: ResticJobCreated + - lastTransitionTime: "2024-04-25T20:30:15Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: ResticJobCompleted + - lastTransitionTime: "2024-04-25T20:30:15Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: ResticJobCleanedUp + - lastTransitionTime: "2024-04-25T20:30:15Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: TemporaryPVCCloneCleanedUp + - lastTransitionTime: "2024-04-25T20:30:15Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: TemporaryPVCloneCleanedUp + - lastTransitionTime: "2024-04-25T20:30:15Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: Completed + resticJobName: restic-volume-backup-f3424a57-862e-4609-88ce-e534a655a5d6 + state: Running diff --git a/resource_customizations/astra.netapp.io/Schedule/health.lua b/resource_customizations/astra.netapp.io/Schedule/health.lua new file mode 100644 index 0000000000000..5d122593e5b08 --- /dev/null +++ b/resource_customizations/astra.netapp.io/Schedule/health.lua @@ -0,0 +1,7 @@ +hs = { status = "Healthy", message = "Protection policy not yet executed" } +if obj.status ~= nil then + if obj.status.lastScheduleTime ~= nil then + hs.message = "Protection policy lastScheduleTime: " .. obj.status.lastScheduleTime + end +end +return hs diff --git a/resource_customizations/astra.netapp.io/Schedule/health_test.yaml b/resource_customizations/astra.netapp.io/Schedule/health_test.yaml new file mode 100644 index 0000000000000..73414e0b58d5a --- /dev/null +++ b/resource_customizations/astra.netapp.io/Schedule/health_test.yaml @@ -0,0 +1,9 @@ +tests: + - healthStatus: + status: Healthy + message: "Protection policy not yet executed" + inputPath: testdata/healthy_nostatus.yaml + - healthStatus: + status: Healthy + message: "Protection policy lastScheduleTime: 2024-04-24T01:00:00Z" + inputPath: testdata/healthy_status.yaml diff --git a/resource_customizations/astra.netapp.io/Schedule/testdata/healthy_nostatus.yaml b/resource_customizations/astra.netapp.io/Schedule/testdata/healthy_nostatus.yaml new file mode 100644 index 0000000000000..0456fb39fc0f6 --- /dev/null +++ b/resource_customizations/astra.netapp.io/Schedule/testdata/healthy_nostatus.yaml @@ -0,0 +1,28 @@ +apiVersion: astra.netapp.io/v1 +kind: Schedule +metadata: + creationTimestamp: "2024-04-15T20:46:16Z" + generation: 2 + labels: + argocd.argoproj.io/instance: ghost-demo + name: ghost-monthly + namespace: astra-connector + ownerReferences: + - apiVersion: astra.netapp.io/v1 + kind: Application + name: ghost + uid: 0af10ee8-772b-4367-8334-44f9e4ad2849 + resourceVersion: "3231157" + uid: f75ebc6f-627c-4b34-ba36-e64ddc3948e3 +spec: + appVaultRef: astra-gcp-backup-743cfd150129 + applicationRef: ghost + backupRetention: "1" + dayOfMonth: "1" + dayOfWeek: "" + enabled: true + granularity: monthly + hour: "2" + minute: "0" + recurrenceRule: "" + snapshotRetention: "1" diff --git a/resource_customizations/astra.netapp.io/Schedule/testdata/healthy_status.yaml b/resource_customizations/astra.netapp.io/Schedule/testdata/healthy_status.yaml new file mode 100644 index 0000000000000..71f99ddf23299 --- /dev/null +++ b/resource_customizations/astra.netapp.io/Schedule/testdata/healthy_status.yaml @@ -0,0 +1,30 @@ +apiVersion: astra.netapp.io/v1 +kind: Schedule +metadata: + creationTimestamp: "2024-04-15T20:46:16Z" + generation: 2 + labels: + argocd.argoproj.io/instance: ghost-demo + name: ghost-daily + namespace: astra-connector + ownerReferences: + - apiVersion: astra.netapp.io/v1 + kind: Application + name: ghost + uid: 0af10ee8-772b-4367-8334-44f9e4ad2849 + resourceVersion: "9963815" + uid: a2736922-6801-482c-a199-03ef8a3f35d7 +spec: + appVaultRef: astra-gcp-backup-743cfd150129 + applicationRef: ghost + backupRetention: "1" + dayOfMonth: "" + dayOfWeek: "" + enabled: true + granularity: daily + hour: "1" + minute: "0" + recurrenceRule: "" + snapshotRetention: "1" +status: + lastScheduleTime: "2024-04-24T01:00:00Z" diff --git a/resource_customizations/astra.netapp.io/Snapshot/health.lua b/resource_customizations/astra.netapp.io/Snapshot/health.lua new file mode 100644 index 0000000000000..39de4ac74eb68 --- /dev/null +++ b/resource_customizations/astra.netapp.io/Snapshot/health.lua @@ -0,0 +1,16 @@ +hs = { status = "Progressing", message = "No status available" } +if obj.status ~= nil then + if obj.status.state ~= nil then + if obj.status.state == "Completed" then + hs.status = "Healthy" + hs.message = obj.kind .. " Completed" + elseif obj.status.state == "Running" then + hs.status = "Progressing" + hs.message = obj.kind .. " Running" + else + hs.status = "Degraded" + hs.message = obj.status.state + end + end +end +return hs diff --git a/resource_customizations/astra.netapp.io/Snapshot/health_test.yaml b/resource_customizations/astra.netapp.io/Snapshot/health_test.yaml new file mode 100644 index 0000000000000..c15b3d8b3a9f0 --- /dev/null +++ b/resource_customizations/astra.netapp.io/Snapshot/health_test.yaml @@ -0,0 +1,17 @@ +tests: + - healthStatus: + status: Progressing + message: "No status available" + inputPath: testdata/progressing_nostatus.yaml + - healthStatus: + status: Progressing + message: "Snapshot Running" + inputPath: testdata/progressing_status.yaml + - healthStatus: + status: Healthy + message: "Snapshot Completed" + inputPath: testdata/healthy.yaml + - healthStatus: + status: Degraded + message: "Failed" + inputPath: testdata/degraded.yaml diff --git a/resource_customizations/astra.netapp.io/Snapshot/testdata/degraded.yaml b/resource_customizations/astra.netapp.io/Snapshot/testdata/degraded.yaml new file mode 100644 index 0000000000000..89851bbe5dc0b --- /dev/null +++ b/resource_customizations/astra.netapp.io/Snapshot/testdata/degraded.yaml @@ -0,0 +1,80 @@ +apiVersion: astra.netapp.io/v1 +kind: Snapshot +metadata: + annotations: + astra.netapp.io/correlationid: 6094b54d-b02b-475a-b5db-136729841240 + creationTimestamp: "2024-04-24T19:54:18Z" + finalizers: + - astra.netapp.io/finalizer + generation: 1 + name: backup-ad301b6a-6536-4313-89c1-d10ad0275430 + namespace: astra-connector + ownerReferences: + - apiVersion: astra.netapp.io/v1 + blockOwnerDeletion: true + controller: true + kind: Backup + name: backup-20240424193746 + uid: ad301b6a-6536-4313-89c1-d10ad0275430 + - apiVersion: astra.netapp.io/v1 + kind: Application + name: ghost + uid: 0af10ee8-772b-4367-8334-44f9e4ad2849 + resourceVersion: "10641329" + uid: 7b0d4f5e-53d0-4742-adec-15ef5d527865 +spec: + appVaultRef: astra-gcp-backup-743cfd150129 + applicationRef: ghost + completionTimeout: 0s + volumeSnapshotsCreatedTimeout: 0s + volumeSnapshotsReadyToUseTimeout: 0s +status: + appArchivePath: ghost_0af10ee8-772b-4367-8334-44f9e4ad2849/snapshots/20240424195419_backup-ad301b6a-6536-4313-89c1-d10ad0275430_7b0d4f5e-53d0-4742-adec-15ef5d527865 + conditions: + - lastTransitionTime: "2024-04-24T19:54:19Z" + message: Successfully reconciled + reason: Done + status: "True" + type: AppOwnerReferenceCreated + - lastTransitionTime: "2024-04-24T19:54:19Z" + message: Successfully reconciled + reason: Done + status: "True" + type: AppArchivePathNameGenerated + - lastTransitionTime: "2024-04-24T19:54:19Z" + message: reconcile timeout of 1h0m0s exceeded + reason: Timeout + status: "False" + type: ResourceBackupCompleted + - lastTransitionTime: "2024-04-24T19:54:19Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: PreSnapshotExecHooksRunCompleted + - lastTransitionTime: "2024-04-24T19:54:19Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: VolumeSnapshotsCreated + - lastTransitionTime: "2024-04-24T19:54:19Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: PostSnapshotExecHooksRunCompleted + - lastTransitionTime: "2024-04-24T19:54:19Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: VolumeSnapshotsReady + - lastTransitionTime: "2024-04-24T19:54:19Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: Completed + - lastTransitionTime: "2024-04-24T19:54:19Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: OnFailurePostSnapshotExecHooksRunCompleted + error: reconcile timeout of 1h0m0s exceeded + state: Failed diff --git a/resource_customizations/astra.netapp.io/Snapshot/testdata/healthy.yaml b/resource_customizations/astra.netapp.io/Snapshot/testdata/healthy.yaml new file mode 100644 index 0000000000000..7073f9c5147b5 --- /dev/null +++ b/resource_customizations/astra.netapp.io/Snapshot/testdata/healthy.yaml @@ -0,0 +1,81 @@ +apiVersion: astra.netapp.io/v1 +kind: Snapshot +metadata: + annotations: + astra.netapp.io/correlationid: 87091676-6489-4c76-8728-6b81bf4936b0 + creationTimestamp: "2024-04-24T14:23:18Z" + finalizers: + - astra.netapp.io/finalizer + generation: 2 + name: argo-presync-20240424142317 + namespace: astra-connector + ownerReferences: + - apiVersion: astra.netapp.io/v1 + kind: Application + name: ghost + uid: 0af10ee8-772b-4367-8334-44f9e4ad2849 + resourceVersion: "10421471" + uid: 152faab3-0374-4cef-bac9-6e7940b06aa9 +spec: + appVaultRef: astra-gcp-backup-743cfd150129 + applicationRef: ghost + completionTimeout: 0s + volumeSnapshotsCreatedTimeout: 0s + volumeSnapshotsReadyToUseTimeout: 0s +status: + appArchivePath: ghost_0af10ee8-772b-4367-8334-44f9e4ad2849/snapshots/20240424142318_argo-presync-20240424142317_152faab3-0374-4cef-bac9-6e7940b06aa9 + completionTimestamp: "2024-04-24T14:23:43Z" + conditions: + - lastTransitionTime: "2024-04-24T14:23:18Z" + message: Successfully reconciled + reason: Done + status: "True" + type: AppOwnerReferenceCreated + - lastTransitionTime: "2024-04-24T14:23:18Z" + message: Successfully reconciled + reason: Done + status: "True" + type: AppArchivePathNameGenerated + - lastTransitionTime: "2024-04-24T14:23:30Z" + message: Successfully reconciled + reason: Done + status: "True" + type: ResourceBackupCompleted + - lastTransitionTime: "2024-04-24T14:23:31Z" + message: Successfully reconciled + reason: Done + status: "True" + type: PreSnapshotExecHooksRunCompleted + - lastTransitionTime: "2024-04-24T14:23:41Z" + message: Successfully reconciled + reason: Done + status: "True" + type: VolumeSnapshotsCreated + - lastTransitionTime: "2024-04-24T14:23:42Z" + message: Successfully reconciled + reason: Done + status: "True" + type: PostSnapshotExecHooksRunCompleted + - lastTransitionTime: "2024-04-24T14:23:43Z" + message: Successfully reconciled + reason: Done + status: "True" + type: VolumeSnapshotsReady + - lastTransitionTime: "2024-04-24T14:23:43Z" + message: Successfully reconciled + reason: Done + status: "True" + type: Completed + - lastTransitionTime: "2024-04-24T14:23:18Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: OnFailurePostSnapshotExecHooksRunCompleted + postSnapshotExecHooksRunResults: [] + preSnapshotExecHooksRunResults: [] + state: Completed + volumeSnapshots: + - name: snapshot-152faab3-0374-4cef-bac9-6e7940b06aa9-pvc-b9ff9e05-5049-4862-82c6-dea080c2fe0d + namespace: ghost + - name: snapshot-152faab3-0374-4cef-bac9-6e7940b06aa9-pvc-38c468b3-eed6-48f2-b43b-15083dd1c030 + namespace: ghost diff --git a/resource_customizations/astra.netapp.io/Snapshot/testdata/progressing_nostatus.yaml b/resource_customizations/astra.netapp.io/Snapshot/testdata/progressing_nostatus.yaml new file mode 100644 index 0000000000000..28501e28fd95f --- /dev/null +++ b/resource_customizations/astra.netapp.io/Snapshot/testdata/progressing_nostatus.yaml @@ -0,0 +1,24 @@ +apiVersion: astra.netapp.io/v1 +kind: Snapshot +metadata: + annotations: + astra.netapp.io/correlationid: de2315e9-4733-4733-91a0-1abec5f1e44e + creationTimestamp: "2024-04-24T21:17:04Z" + finalizers: + - astra.netapp.io/finalizer + generation: 2 + name: argo-presync-20240424211703 + namespace: astra-connector + ownerReferences: + - apiVersion: astra.netapp.io/v1 + kind: Application + name: ghost + uid: 0af10ee8-772b-4367-8334-44f9e4ad2849 + resourceVersion: "10654224" + uid: b200db48-c186-4ae8-9748-1ba7bec23d6d +spec: + appVaultRef: astra-gcp-backup-743cfd150129 + applicationRef: ghost + completionTimeout: 0s + volumeSnapshotsCreatedTimeout: 0s + volumeSnapshotsReadyToUseTimeout: 0s diff --git a/resource_customizations/astra.netapp.io/Snapshot/testdata/progressing_status.yaml b/resource_customizations/astra.netapp.io/Snapshot/testdata/progressing_status.yaml new file mode 100644 index 0000000000000..08951648c6d74 --- /dev/null +++ b/resource_customizations/astra.netapp.io/Snapshot/testdata/progressing_status.yaml @@ -0,0 +1,73 @@ +apiVersion: astra.netapp.io/v1 +kind: Snapshot +metadata: + annotations: + astra.netapp.io/correlationid: de2315e9-4733-4733-91a0-1abec5f1e44e + creationTimestamp: "2024-04-24T21:17:04Z" + finalizers: + - astra.netapp.io/finalizer + generation: 2 + name: argo-presync-20240424211703 + namespace: astra-connector + ownerReferences: + - apiVersion: astra.netapp.io/v1 + kind: Application + name: ghost + uid: 0af10ee8-772b-4367-8334-44f9e4ad2849 + resourceVersion: "10654224" + uid: b200db48-c186-4ae8-9748-1ba7bec23d6d +spec: + appVaultRef: astra-gcp-backup-743cfd150129 + applicationRef: ghost + completionTimeout: 0s + volumeSnapshotsCreatedTimeout: 0s + volumeSnapshotsReadyToUseTimeout: 0s +status: + appArchivePath: ghost_0af10ee8-772b-4367-8334-44f9e4ad2849/snapshots/20240424211704_argo-presync-20240424211703_b200db48-c186-4ae8-9748-1ba7bec23d6d + conditions: + - lastTransitionTime: "2024-04-24T21:17:04Z" + message: Successfully reconciled + reason: Done + status: "True" + type: AppOwnerReferenceCreated + - lastTransitionTime: "2024-04-24T21:17:04Z" + message: Successfully reconciled + reason: Done + status: "True" + type: AppArchivePathNameGenerated + - lastTransitionTime: "2024-04-24T21:17:04Z" + message: Waiting for ResourceBackup to complete + reason: Waiting + status: "False" + type: ResourceBackupCompleted + - lastTransitionTime: "2024-04-24T21:17:04Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: PreSnapshotExecHooksRunCompleted + - lastTransitionTime: "2024-04-24T21:17:04Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: VolumeSnapshotsCreated + - lastTransitionTime: "2024-04-24T21:17:04Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: PostSnapshotExecHooksRunCompleted + - lastTransitionTime: "2024-04-24T21:17:04Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: VolumeSnapshotsReady + - lastTransitionTime: "2024-04-24T21:17:04Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: Completed + - lastTransitionTime: "2024-04-24T21:17:04Z" + message: Not yet reconciled + reason: Pending + status: Unknown + type: OnFailurePostSnapshotExecHooksRunCompleted + state: Running From 4c096ed2cb067b9a467d6913c69ed45f7f1809c5 Mon Sep 17 00:00:00 2001 From: Joe Bowbeer Date: Thu, 2 May 2024 12:56:02 -0700 Subject: [PATCH 062/206] docs: use compliant name in Generators-List.md (#18062) Signed-off-by: Joe Bowbeer --- docs/operator-manual/applicationset/Generators-List.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/operator-manual/applicationset/Generators-List.md b/docs/operator-manual/applicationset/Generators-List.md index e5696f37b9745..cd9b4301bf50e 100644 --- a/docs/operator-manual/applicationset/Generators-List.md +++ b/docs/operator-manual/applicationset/Generators-List.md @@ -61,7 +61,7 @@ The List generator can also dynamically generate its elements based on a yaml/js apiVersion: argoproj.io/v1alpha1 kind: ApplicationSet metadata: - name: elementsYaml + name: elements-yaml namespace: argocd spec: goTemplate: true From 8e66b3e4f2d81ae33754c34c0ca6384a22a8e198 Mon Sep 17 00:00:00 2001 From: David Costa Date: Fri, 3 May 2024 12:02:17 +0200 Subject: [PATCH 063/206] Update kustomize.md (#18065) typo in docs: managment -> management Signed-off-by: David Costa --- docs/user-guide/kustomize.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/user-guide/kustomize.md b/docs/user-guide/kustomize.md index 1aa876fb74224..d8f5330667973 100644 --- a/docs/user-guide/kustomize.md +++ b/docs/user-guide/kustomize.md @@ -212,7 +212,7 @@ argocd app set --kustomize-version v3.5.4 ## Build Environment -Kustomize apps have access to the [standard build environment](build-environment.md) which can be used in combination with a [config managment plugin](../operator-manual/config-management-plugins.md) to alter the rendered manifests. +Kustomize apps have access to the [standard build environment](build-environment.md) which can be used in combination with a [config management plugin](../operator-manual/config-management-plugins.md) to alter the rendered manifests. You can use these build environment variables in your Argo CD Application manifests. You can enable this by setting `.spec.source.kustomize.commonAnnotationsEnvsubst` to `true` in your Application manifest. From ec09937fe047058ba53d19aafc9110933e589bf6 Mon Sep 17 00:00:00 2001 From: Alexander Matyushentsev Date: Fri, 3 May 2024 08:03:50 -0700 Subject: [PATCH 064/206] fix: status.sync.comparedTo should use replace patch strategy (#18061) * fix: status.sync.comparedTo should use replace patch strategy Signed-off-by: Alexander Matyushentsev * add e2e tests Signed-off-by: Alexander Matyushentsev --------- Signed-off-by: Alexander Matyushentsev --- controller/appcontroller_test.go | 4 +- pkg/apis/application/v1alpha1/generated.proto | 1 + .../application/v1alpha1/openapi_generated.go | 5 ++ pkg/apis/application/v1alpha1/types.go | 3 +- pkg/apis/application/v1alpha1/types_test.go | 35 ++++++++ test/e2e/app_management_test.go | 42 +++++++++ test/e2e/applicationset_test.go | 85 +++++++++++++++++++ 7 files changed, 172 insertions(+), 3 deletions(-) diff --git a/controller/appcontroller_test.go b/controller/appcontroller_test.go index 87be3743181b6..81299fe65f562 100644 --- a/controller/appcontroller_test.go +++ b/controller/appcontroller_test.go @@ -989,7 +989,7 @@ func TestNormalizeApplication(t *testing.T) { normalized := false fakeAppCs.AddReactor("patch", "*", func(action kubetesting.Action) (handled bool, ret runtime.Object, err error) { if patchAction, ok := action.(kubetesting.PatchAction); ok { - if string(patchAction.GetPatch()) == `{"spec":{"project":"default"}}` { + if string(patchAction.GetPatch()) == `{"spec":{"project":"default"},"status":{"sync":{"comparedTo":{"destination":{},"source":{"repoURL":""}}}}}` { normalized = true } } @@ -1011,7 +1011,7 @@ func TestNormalizeApplication(t *testing.T) { normalized := false fakeAppCs.AddReactor("patch", "*", func(action kubetesting.Action) (handled bool, ret runtime.Object, err error) { if patchAction, ok := action.(kubetesting.PatchAction); ok { - if string(patchAction.GetPatch()) == `{"spec":{"project":"default"}}` { + if string(patchAction.GetPatch()) == `{"spec":{"project":"default"},"status":{"sync":{"comparedTo":{"destination":{},"source":{"repoURL":""}}}}}` { normalized = true } } diff --git a/pkg/apis/application/v1alpha1/generated.proto b/pkg/apis/application/v1alpha1/generated.proto index 8acb05ed338c9..f81fe77229a93 100644 --- a/pkg/apis/application/v1alpha1/generated.proto +++ b/pkg/apis/application/v1alpha1/generated.proto @@ -2237,6 +2237,7 @@ message SyncStatus { optional string status = 1; // ComparedTo contains information about what has been compared + // +patchStrategy=replace optional ComparedTo comparedTo = 2; // Revision contains information about the revision the comparison has been performed to diff --git a/pkg/apis/application/v1alpha1/openapi_generated.go b/pkg/apis/application/v1alpha1/openapi_generated.go index dc65131c9bac3..bf72c3819aedb 100644 --- a/pkg/apis/application/v1alpha1/openapi_generated.go +++ b/pkg/apis/application/v1alpha1/openapi_generated.go @@ -7749,6 +7749,11 @@ func schema_pkg_apis_application_v1alpha1_SyncStatus(ref common.ReferenceCallbac }, }, "comparedTo": { + VendorExtensible: spec.VendorExtensible{ + Extensions: spec.Extensions{ + "x-kubernetes-patch-strategy": "replace", + }, + }, SchemaProps: spec.SchemaProps{ Description: "ComparedTo contains information about what has been compared", Default: map[string]interface{}{}, diff --git a/pkg/apis/application/v1alpha1/types.go b/pkg/apis/application/v1alpha1/types.go index a370bec6acc81..eb120b79bd4a5 100644 --- a/pkg/apis/application/v1alpha1/types.go +++ b/pkg/apis/application/v1alpha1/types.go @@ -1509,7 +1509,8 @@ type SyncStatus struct { // Status is the sync state of the comparison Status SyncStatusCode `json:"status" protobuf:"bytes,1,opt,name=status,casttype=SyncStatusCode"` // ComparedTo contains information about what has been compared - ComparedTo ComparedTo `json:"comparedTo,omitempty" protobuf:"bytes,2,opt,name=comparedTo"` + // +patchStrategy=replace + ComparedTo ComparedTo `json:"comparedTo,omitempty" protobuf:"bytes,2,opt,name=comparedTo" patchStrategy:"replace"` // Revision contains information about the revision the comparison has been performed to Revision string `json:"revision,omitempty" protobuf:"bytes,3,opt,name=revision"` // Revisions contains information about the revisions of multiple sources the comparison has been performed to diff --git a/pkg/apis/application/v1alpha1/types_test.go b/pkg/apis/application/v1alpha1/types_test.go index b36fa670af617..5d34e1dcf739c 100644 --- a/pkg/apis/application/v1alpha1/types_test.go +++ b/pkg/apis/application/v1alpha1/types_test.go @@ -11,7 +11,10 @@ import ( "testing" "time" + "github.com/argoproj/gitops-engine/pkg/diff" "github.com/stretchr/testify/require" + "k8s.io/apimachinery/pkg/apis/meta/v1/unstructured" + "k8s.io/apimachinery/pkg/runtime" "k8s.io/utils/pointer" argocdcommon "github.com/argoproj/argo-cd/v2/common" @@ -3730,3 +3733,35 @@ func TestApplicationSpec_GetSourcePtrByIndex(t *testing.T) { }) } } + +func TestHelmValuesObjectHasReplaceStrategy(t *testing.T) { + app := Application{ + Status: ApplicationStatus{Sync: SyncStatus{ComparedTo: ComparedTo{ + Source: ApplicationSource{ + Helm: &ApplicationSourceHelm{ + ValuesObject: &runtime.RawExtension{ + Object: &unstructured.Unstructured{Object: map[string]interface{}{"key": []string{"value"}}}, + }, + }, + }, + }}}, + } + + appModified := Application{ + Status: ApplicationStatus{Sync: SyncStatus{ComparedTo: ComparedTo{ + Source: ApplicationSource{ + Helm: &ApplicationSourceHelm{ + ValuesObject: &runtime.RawExtension{ + Object: &unstructured.Unstructured{Object: map[string]interface{}{"key": []string{"value-modified1"}}}, + }, + }, + }, + }}}, + } + + patch, _, err := diff.CreateTwoWayMergePatch( + app, + appModified, Application{}) + require.NoError(t, err) + assert.Equal(t, `{"status":{"sync":{"comparedTo":{"destination":{},"source":{"helm":{"valuesObject":{"key":["value-modified1"]}},"repoURL":""}}}}}`, string(patch)) +} diff --git a/test/e2e/app_management_test.go b/test/e2e/app_management_test.go index 378af7b033330..257e8a27ecbd0 100644 --- a/test/e2e/app_management_test.go +++ b/test/e2e/app_management_test.go @@ -21,6 +21,7 @@ import ( rbacv1 "k8s.io/api/rbac/v1" metav1 "k8s.io/apimachinery/pkg/apis/meta/v1" "k8s.io/apimachinery/pkg/apis/meta/v1/unstructured" + "k8s.io/apimachinery/pkg/runtime" "k8s.io/apimachinery/pkg/runtime/schema" "k8s.io/apimachinery/pkg/types" "k8s.io/apimachinery/pkg/util/intstr" @@ -2846,3 +2847,44 @@ func TestAnnotationTrackingExtraResources(t *testing.T) { Expect(HealthIs(health.HealthStatusHealthy)) } + +// Test designed to cover #15126. +// The issue occurs in the controller, when a valuesObject field that contains non-strings (eg, a nested map) gets +// merged/patched. +// Note: Failure is observed by the test timing out, because the controller cannot 'merge' the patch. +func TestPatchValuesObject(t *testing.T) { + + Given(t). + Timeout(30). + Path("helm"). + When(). + // app should be auto-synced once created + CreateFromFile(func(app *Application) { + app.Spec.Source.Helm = &ApplicationSourceHelm{ + ValuesObject: &runtime.RawExtension{ + // Setup by using nested YAML objects, which is what causes the patch error: + // "unable to find api field in struct RawExtension for the json field "some"" + Raw: []byte(`{"some": {"foo": "bar"}}`), + }, + } + }). + Then(). + When(). + PatchApp(`[{ + "op": "add", + "path": "/spec/source/helm/valuesObject", + "value": {"some":{"foo":"bar","new":"field"}} + }]`). + Refresh(RefreshTypeNormal). + Sync(). + Then(). + Expect(Success("")). + Expect(OperationPhaseIs(OperationSucceeded)). + Expect(SyncStatusIs(SyncStatusCodeSynced)). + Expect(NoConditions()). + And(func(app *Application) { + // Check that the patch was a success. + assert.Equal(t, `{"some":{"foo":"bar","new":"field"}}`, string(app.Spec.Source.Helm.ValuesObject.Raw)) + }) + +} diff --git a/test/e2e/applicationset_test.go b/test/e2e/applicationset_test.go index 0d4d8ea3498f5..f28fde1f977df 100644 --- a/test/e2e/applicationset_test.go +++ b/test/e2e/applicationset_test.go @@ -2676,3 +2676,88 @@ func TestGitGeneratorPrivateRepoGoTemplate(t *testing.T) { When(). Delete().Then().Expect(ApplicationsDoNotExist(expectedAppsNewNamespace)) } + +func TestUpdateHelmValuesObject(t *testing.T) { + + expectedApp := argov1alpha1.Application{ + TypeMeta: metav1.TypeMeta{ + Kind: application.ApplicationKind, + APIVersion: "argoproj.io/v1alpha1", + }, + ObjectMeta: metav1.ObjectMeta{ + Name: "my-cluster-guestbook", + Namespace: fixture.TestNamespace(), + Finalizers: []string{"resources-finalizer.argocd.argoproj.io"}, + }, + Spec: argov1alpha1.ApplicationSpec{ + Project: "default", + Source: &argov1alpha1.ApplicationSource{ + RepoURL: "https://github.com/argoproj/argocd-example-apps.git", + TargetRevision: "HEAD", + Path: "helm-guestbook", + Helm: &argov1alpha1.ApplicationSourceHelm{ + ValuesObject: &runtime.RawExtension{ + // This will always be converted as yaml + Raw: []byte(`{"some":{"foo":"bar"}}`), + }, + }, + }, + Destination: argov1alpha1.ApplicationDestination{ + Server: "https://kubernetes.default.svc", + Namespace: "guestbook", + }, + }, + } + + Given(t). + // Create a ListGenerator-based ApplicationSet + When().Create(v1alpha1.ApplicationSet{ObjectMeta: metav1.ObjectMeta{ + Name: "test-values-object-patch", + }, + Spec: v1alpha1.ApplicationSetSpec{ + GoTemplate: true, + Template: v1alpha1.ApplicationSetTemplate{ + ApplicationSetTemplateMeta: v1alpha1.ApplicationSetTemplateMeta{Name: "{{.cluster}}-guestbook"}, + Spec: argov1alpha1.ApplicationSpec{ + Project: "default", + Source: &argov1alpha1.ApplicationSource{ + RepoURL: "https://github.com/argoproj/argocd-example-apps.git", + TargetRevision: "HEAD", + Path: "helm-guestbook", + Helm: &argov1alpha1.ApplicationSourceHelm{ + ValuesObject: &runtime.RawExtension{ + Raw: []byte(`{"some":{"string":"{{.test}}"}}`), + }, + }, + }, + Destination: argov1alpha1.ApplicationDestination{ + Server: "{{.url}}", + Namespace: "guestbook", + }, + }, + }, + Generators: []v1alpha1.ApplicationSetGenerator{ + { + List: &v1alpha1.ListGenerator{ + Elements: []apiextensionsv1.JSON{{ + Raw: []byte(`{"cluster": "my-cluster","url": "https://kubernetes.default.svc", "test": "Hello world"}`), + }}, + }, + }, + }, + }, + }).Then(). + Expect(ApplicationSetHasConditions("test-values-object-patch", ExpectedConditions)). + When(). + // Update the app spec with some knew ValuesObject to force a merge + Update(func(as *argov1alpha1.ApplicationSet) { + as.Spec.Template.Spec.Source.Helm.ValuesObject = &runtime.RawExtension{ + Raw: []byte(`{"some":{"foo":"bar"}}`), + } + }). + Then(). + Expect(ApplicationsExist([]argov1alpha1.Application{expectedApp})). + When(). + // Delete the ApplicationSet, and verify it deletes the Applications + Delete().Then().Expect(ApplicationsDoNotExist([]argov1alpha1.Application{expectedApp})) +} From a2a0360cd89b5dbcf6204cafe44e220acfff0433 Mon Sep 17 00:00:00 2001 From: Andrew Jeffree <1837237+andrewjeffree@users.noreply.github.com> Date: Sat, 4 May 2024 04:31:11 +1000 Subject: [PATCH 065/206] feat(paths): Add support for glob patterns (#18055) as per https://github.com/argoproj/argo-cd/issues/17825 Signed-off-by: Andrew Jeffree --- docs/operator-manual/high_availability.md | 19 +++++++++++++++++++ util/app/path/path.go | 8 +++----- util/app/path/path_test.go | 10 +++++++++- 3 files changed, 31 insertions(+), 6 deletions(-) diff --git a/docs/operator-manual/high_availability.md b/docs/operator-manual/high_availability.md index 8b03f61aac993..75160aba197b4 100644 --- a/docs/operator-manual/high_availability.md +++ b/docs/operator-manual/high_availability.md @@ -248,6 +248,25 @@ spec: # ... ``` +* **Glob paths** The annotation might contain a glob pattern path, which can be any pattern supported by the [Go filepath Match function](https://pkg.go.dev/path/filepath#Match): + +```yaml +apiVersion: argoproj.io/v1alpha1 +kind: Application +metadata: + name: guestbook + namespace: argocd + annotations: + # resolves to any file matching the pattern of *-secret.yaml in the top level shared folder + argocd.argoproj.io/manifest-generate-paths: "/shared/*-secret.yaml" +spec: + source: + repoURL: https://github.com/argoproj/argocd-example-apps.git + targetRevision: HEAD + path: guestbook +# ... +``` + ### Application Sync Timeout & Jitter Argo CD has a timeout for application syncs. It will trigger a refresh for each application periodically when the timeout expires. diff --git a/util/app/path/path.go b/util/app/path/path.go index d2bb166fa1b26..fe08c3e86c3b9 100644 --- a/util/app/path/path.go +++ b/util/app/path/path.go @@ -131,13 +131,11 @@ func AppFilesHaveChanged(refreshPaths []string, changedFiles []string) bool { f = ensureAbsPath(f) for _, item := range refreshPaths { item = ensureAbsPath(item) - changed := false if f == item { - changed = true + return true } else if _, err := security.EnforceToCurrentRoot(item, f); err == nil { - changed = true - } - if changed { + return true + } else if matched, err := filepath.Match(item, f); err == nil && matched { return true } } diff --git a/util/app/path/path_test.go b/util/app/path/path_test.go index 11c746a87f3b6..b7afd47734082 100644 --- a/util/app/path/path_test.go +++ b/util/app/path/path_test.go @@ -144,6 +144,14 @@ func Test_AppFilesHaveChanged(t *testing.T) { {"absolute path, multi source - matching #2", getMultiSourceApp("/source/path", "other/path", "source/path"), []string{"source/path/my-deployment.yaml"}, true}, {"absolute path - not matching", getApp("/source/path1", "source/path"), []string{"source/path/my-deployment.yaml"}, false}, {"absolute path, multi source - not matching", getMultiSourceApp("/source/path1", "other/path", "source/path"), []string{"source/path/my-deployment.yaml"}, false}, + {"glob path * - matching", getApp("/source/**/my-deployment.yaml", "source/path"), []string{"source/path/my-deployment.yaml"}, true}, + {"glob path * - not matching", getApp("/source/**/my-service.yaml", "source/path"), []string{"source/path/my-deployment.yaml"}, false}, + {"glob path ? - matching", getApp("/source/path/my-deployment-?.yaml", "source/path"), []string{"source/path/my-deployment-0.yaml"}, true}, + {"glob path ? - not matching", getApp("/source/path/my-deployment-?.yaml", "source/path"), []string{"source/path/my-deployment.yaml"}, false}, + {"glob path char range - matching", getApp("/source/path[0-9]/my-deployment.yaml", "source/path"), []string{"source/path1/my-deployment.yaml"}, true}, + {"glob path char range - not matching", getApp("/source/path[0-9]/my-deployment.yaml", "source/path"), []string{"source/path/my-deployment.yaml"}, false}, + {"mixed glob path - matching", getApp("/source/path[0-9]/my-*.yaml", "source/path"), []string{"source/path1/my-deployment.yaml"}, true}, + {"mixed glob path - not matching", getApp("/source/path[0-9]/my-*.yaml", "source/path"), []string{"README.md"}, false}, {"two relative paths - matching", getApp(".;../shared", "my-app"), []string{"shared/my-deployment.yaml"}, true}, {"two relative paths, multi source - matching #1", getMultiSourceApp(".;../shared", "my-app", "other/path"), []string{"shared/my-deployment.yaml"}, true}, {"two relative paths, multi source - matching #2", getMultiSourceApp(".;../shared", "my-app", "other/path"), []string{"shared/my-deployment.yaml"}, true}, @@ -185,12 +193,12 @@ func Test_GetAppRefreshPaths(t *testing.T) { }{ {"default no path", &v1alpha1.Application{}, []string{}}, {"relative path", getApp(".", "source/path"), []string{"source/path"}}, - {"absolute path", getApp("/source/path", "source/path"), []string{"source/path"}}, {"absolute path - multi source", getMultiSourceApp("/source/path", "source/path", "other/path"), []string{"source/path"}}, {"two relative paths ", getApp(".;../shared", "my-app"), []string{"my-app", "shared"}}, {"file relative path", getApp("./my-deployment.yaml", "source/path"), []string{"source/path/my-deployment.yaml"}}, {"file absolute path", getApp("/source/path/my-deployment.yaml", "source/path"), []string{"source/path/my-deployment.yaml"}}, {"file two relative paths", getApp("./README.md;../shared/my-deployment.yaml", "my-app"), []string{"my-app/README.md", "shared/my-deployment.yaml"}}, + {"glob path", getApp("/source/*/my-deployment.yaml", "source/path"), []string{"source/*/my-deployment.yaml"}}, {"empty path", getApp(".;", "source/path"), []string{"source/path"}}, } for _, tt := range tests { From 8aa88b67311a93af868d32dec039b2f63125c363 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 6 May 2024 14:36:14 -0400 Subject: [PATCH 066/206] chore(deps): bump jinja2 from 3.0.3 to 3.1.4 in /docs (#18091) Bumps [jinja2](https://github.com/pallets/jinja) from 3.0.3 to 3.1.4. - [Release notes](https://github.com/pallets/jinja/releases) - [Changelog](https://github.com/pallets/jinja/blob/main/CHANGES.rst) - [Commits](https://github.com/pallets/jinja/compare/3.0.3...3.1.4) --- updated-dependencies: - dependency-name: jinja2 dependency-type: direct:production ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- docs/requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/requirements.txt b/docs/requirements.txt index d350ac4870ee2..7245c6823c935 100644 --- a/docs/requirements.txt +++ b/docs/requirements.txt @@ -4,6 +4,6 @@ mkdocs==1.3.0 mkdocs-material==7.1.8 markdown_include==0.6.0 pygments==2.15.0 -jinja2==3.0.3 +jinja2==3.1.4 markdown==3.3.7 pymdown-extensions==10.2.1 \ No newline at end of file From 37c813bd824e35e40c93ef57a583ef644efff72c Mon Sep 17 00:00:00 2001 From: Lawrence Aiello Date: Tue, 7 May 2024 05:22:48 -0400 Subject: [PATCH 067/206] docs: add rogo to users.md (#18074) * chore: add Rogo to users Signed-off-by: aiell0 * sign off Signed-off-by: aiell0 --------- Signed-off-by: aiell0 --- USERS.md | 1 + 1 file changed, 1 insertion(+) diff --git a/USERS.md b/USERS.md index ab981e827c321..202d91243368e 100644 --- a/USERS.md +++ b/USERS.md @@ -261,6 +261,7 @@ Currently, the following organizations are **officially** using Argo CD: 1. [Riskified](https://www.riskified.com/) 1. [Robotinfra](https://www.robotinfra.com) 1. [Rocket.Chat](https://rocket.chat) +1. [Rogo](https://rogodata.com) 1. [Rubin Observatory](https://www.lsst.org) 1. [Saildrone](https://www.saildrone.com/) 1. [Salad Technologies](https://salad.com/) From 5c175e38c50542ec868b3ccd53876e6a9c82540c Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" <41898282+github-actions[bot]@users.noreply.github.com> Date: Tue, 7 May 2024 12:57:43 +0000 Subject: [PATCH 068/206] [Bot] docs: Update Snyk reports (#18080) Signed-off-by: CI Co-authored-by: CI --- docs/snyk/index.md | 76 +- docs/snyk/master/argocd-iac-install.html | 2 +- .../master/argocd-iac-namespace-install.html | 2 +- docs/snyk/master/argocd-test.html | 291 +------ .../master/ghcr.io_dexidp_dex_v2.38.0.html | 8 +- docs/snyk/master/haproxy_2.6.14-alpine.html | 9 +- .../quay.io_argoproj_argocd_latest.html | 161 +--- docs/snyk/master/redis_7.0.15-alpine.html | 4 +- .../argocd-iac-install.html | 2 +- .../argocd-iac-namespace-install.html | 2 +- .../{v2.10.8 => v2.10.9}/argocd-test.html | 14 +- .../ghcr.io_dexidp_dex_v2.37.0.html | 9 +- .../haproxy_2.6.14-alpine.html | 9 +- .../quay.io_argoproj_argocd_v2.10.9.html} | 661 +++++---------- .../redis_7.0.15-alpine.html | 4 +- .../argocd-iac-install.html | 4 +- .../argocd-iac-namespace-install.html | 4 +- .../argocd-test.html | 545 ++++--------- .../ghcr.io_dexidp_dex_v2.38.0.html | 8 +- .../haproxy_2.6.14-alpine.html | 9 +- .../quay.io_argoproj_argocd_v2.11.0-rc3.html} | 750 ++++++------------ .../redis_7.0.14-alpine.html | 8 +- .../argocd-iac-install.html | 2 +- .../argocd-iac-namespace-install.html | 2 +- .../{v2.8.17 => v2.8.18}/argocd-test.html | 14 +- .../ghcr.io_dexidp_dex_v2.37.0.html | 9 +- .../haproxy_2.6.14-alpine.html | 9 +- .../quay.io_argoproj_argocd_v2.8.18.html} | 585 +++++--------- .../redis_7.0.15-alpine.html | 4 +- .../argocd-iac-install.html | 2 +- .../argocd-iac-namespace-install.html | 2 +- .../{v2.9.13 => v2.9.14}/argocd-test.html | 14 +- .../ghcr.io_dexidp_dex_v2.37.0.html | 9 +- .../haproxy_2.6.14-alpine.html | 9 +- .../quay.io_argoproj_argocd_v2.9.14.html} | 629 +++++++-------- .../redis_7.0.15-alpine.html | 4 +- 36 files changed, 1316 insertions(+), 2560 deletions(-) rename docs/snyk/{v2.10.8 => v2.10.9}/argocd-iac-install.html (99%) rename docs/snyk/{v2.10.8 => v2.10.9}/argocd-iac-namespace-install.html (99%) rename docs/snyk/{v2.10.8 => v2.10.9}/argocd-test.html (99%) rename docs/snyk/{v2.8.17 => v2.10.9}/ghcr.io_dexidp_dex_v2.37.0.html (99%) rename docs/snyk/{v2.8.17 => v2.10.9}/haproxy_2.6.14-alpine.html (98%) rename docs/snyk/{v2.9.13/quay.io_argoproj_argocd_v2.9.13.html => v2.10.9/quay.io_argoproj_argocd_v2.10.9.html} (91%) rename docs/snyk/{v2.10.8 => v2.10.9}/redis_7.0.15-alpine.html (98%) rename docs/snyk/{v2.11.0-rc2 => v2.11.0-rc3}/argocd-iac-install.html (99%) rename docs/snyk/{v2.11.0-rc2 => v2.11.0-rc3}/argocd-iac-namespace-install.html (99%) rename docs/snyk/{v2.11.0-rc2 => v2.11.0-rc3}/argocd-test.html (95%) rename docs/snyk/{v2.11.0-rc2 => v2.11.0-rc3}/ghcr.io_dexidp_dex_v2.38.0.html (99%) rename docs/snyk/{v2.9.13 => v2.11.0-rc3}/haproxy_2.6.14-alpine.html (98%) rename docs/snyk/{v2.11.0-rc2/quay.io_argoproj_argocd_v2.11.0-rc2.html => v2.11.0-rc3/quay.io_argoproj_argocd_v2.11.0-rc3.html} (89%) rename docs/snyk/{v2.11.0-rc2 => v2.11.0-rc3}/redis_7.0.14-alpine.html (98%) rename docs/snyk/{v2.8.17 => v2.8.18}/argocd-iac-install.html (99%) rename docs/snyk/{v2.8.17 => v2.8.18}/argocd-iac-namespace-install.html (99%) rename docs/snyk/{v2.8.17 => v2.8.18}/argocd-test.html (99%) rename docs/snyk/{v2.9.13 => v2.8.18}/ghcr.io_dexidp_dex_v2.37.0.html (99%) rename docs/snyk/{v2.10.8 => v2.8.18}/haproxy_2.6.14-alpine.html (98%) rename docs/snyk/{v2.8.17/quay.io_argoproj_argocd_v2.8.17.html => v2.8.18/quay.io_argoproj_argocd_v2.8.18.html} (94%) rename docs/snyk/{v2.8.17 => v2.8.18}/redis_7.0.15-alpine.html (98%) rename docs/snyk/{v2.9.13 => v2.9.14}/argocd-iac-install.html (99%) rename docs/snyk/{v2.9.13 => v2.9.14}/argocd-iac-namespace-install.html (99%) rename docs/snyk/{v2.9.13 => v2.9.14}/argocd-test.html (99%) rename docs/snyk/{v2.10.8 => v2.9.14}/ghcr.io_dexidp_dex_v2.37.0.html (99%) rename docs/snyk/{v2.11.0-rc2 => v2.9.14}/haproxy_2.6.14-alpine.html (98%) rename docs/snyk/{v2.10.8/quay.io_argoproj_argocd_v2.10.8.html => v2.9.14/quay.io_argoproj_argocd_v2.9.14.html} (94%) rename docs/snyk/{v2.9.13 => v2.9.14}/redis_7.0.15-alpine.html (98%) diff --git a/docs/snyk/index.md b/docs/snyk/index.md index 66daffb7bd393..eb60e85f03604 100644 --- a/docs/snyk/index.md +++ b/docs/snyk/index.md @@ -13,63 +13,63 @@ recent minor releases. | | Critical | High | Medium | Low | |---:|:--------:|:----:|:------:|:---:| -| [go.mod](master/argocd-test.html) | 0 | 0 | 7 | 0 | +| [go.mod](master/argocd-test.html) | 0 | 0 | 6 | 0 | | [ui/yarn.lock](master/argocd-test.html) | 0 | 0 | 1 | 0 | | [dex:v2.38.0](master/ghcr.io_dexidp_dex_v2.38.0.html) | 0 | 0 | 2 | 2 | | [haproxy:2.6.14-alpine](master/haproxy_2.6.14-alpine.html) | 0 | 1 | 3 | 2 | -| [argocd:latest](master/quay.io_argoproj_argocd_latest.html) | 0 | 0 | 7 | 14 | +| [argocd:latest](master/quay.io_argoproj_argocd_latest.html) | 0 | 0 | 5 | 14 | | [redis:7.0.15-alpine](master/redis_7.0.15-alpine.html) | 0 | 0 | 0 | 1 | | [install.yaml](master/argocd-iac-install.html) | - | - | - | - | | [namespace-install.yaml](master/argocd-iac-namespace-install.html) | - | - | - | - | -### v2.11.0-rc2 +### v2.11.0-rc3 | | Critical | High | Medium | Low | |---:|:--------:|:----:|:------:|:---:| -| [go.mod](v2.11.0-rc2/argocd-test.html) | 0 | 1 | 10 | 0 | -| [ui/yarn.lock](v2.11.0-rc2/argocd-test.html) | 0 | 0 | 1 | 0 | -| [dex:v2.38.0](v2.11.0-rc2/ghcr.io_dexidp_dex_v2.38.0.html) | 0 | 0 | 2 | 2 | -| [haproxy:2.6.14-alpine](v2.11.0-rc2/haproxy_2.6.14-alpine.html) | 0 | 1 | 3 | 2 | -| [argocd:v2.11.0-rc2](v2.11.0-rc2/quay.io_argoproj_argocd_v2.11.0-rc2.html) | 0 | 0 | 9 | 14 | -| [redis:7.0.14-alpine](v2.11.0-rc2/redis_7.0.14-alpine.html) | 0 | 0 | 2 | 2 | -| [install.yaml](v2.11.0-rc2/argocd-iac-install.html) | - | - | - | - | -| [namespace-install.yaml](v2.11.0-rc2/argocd-iac-namespace-install.html) | - | - | - | - | +| [go.mod](v2.11.0-rc3/argocd-test.html) | 0 | 1 | 9 | 0 | +| [ui/yarn.lock](v2.11.0-rc3/argocd-test.html) | 0 | 0 | 1 | 0 | +| [dex:v2.38.0](v2.11.0-rc3/ghcr.io_dexidp_dex_v2.38.0.html) | 0 | 0 | 2 | 2 | +| [haproxy:2.6.14-alpine](v2.11.0-rc3/haproxy_2.6.14-alpine.html) | 0 | 1 | 3 | 2 | +| [argocd:v2.11.0-rc3](v2.11.0-rc3/quay.io_argoproj_argocd_v2.11.0-rc3.html) | 0 | 0 | 5 | 14 | +| [redis:7.0.14-alpine](v2.11.0-rc3/redis_7.0.14-alpine.html) | 0 | 0 | 2 | 2 | +| [install.yaml](v2.11.0-rc3/argocd-iac-install.html) | - | - | - | - | +| [namespace-install.yaml](v2.11.0-rc3/argocd-iac-namespace-install.html) | - | - | - | - | -### v2.10.8 +### v2.10.9 | | Critical | High | Medium | Low | |---:|:--------:|:----:|:------:|:---:| -| [go.mod](v2.10.8/argocd-test.html) | 0 | 1 | 12 | 0 | -| [ui/yarn.lock](v2.10.8/argocd-test.html) | 0 | 0 | 1 | 0 | -| [dex:v2.37.0](v2.10.8/ghcr.io_dexidp_dex_v2.37.0.html) | 1 | 1 | 6 | 2 | -| [haproxy:2.6.14-alpine](v2.10.8/haproxy_2.6.14-alpine.html) | 0 | 1 | 3 | 2 | -| [argocd:v2.10.8](v2.10.8/quay.io_argoproj_argocd_v2.10.8.html) | 0 | 0 | 7 | 14 | -| [redis:7.0.15-alpine](v2.10.8/redis_7.0.15-alpine.html) | 0 | 0 | 0 | 1 | -| [install.yaml](v2.10.8/argocd-iac-install.html) | - | - | - | - | -| [namespace-install.yaml](v2.10.8/argocd-iac-namespace-install.html) | - | - | - | - | +| [go.mod](v2.10.9/argocd-test.html) | 0 | 1 | 12 | 0 | +| [ui/yarn.lock](v2.10.9/argocd-test.html) | 0 | 0 | 1 | 0 | +| [dex:v2.37.0](v2.10.9/ghcr.io_dexidp_dex_v2.37.0.html) | 1 | 1 | 6 | 2 | +| [haproxy:2.6.14-alpine](v2.10.9/haproxy_2.6.14-alpine.html) | 0 | 1 | 3 | 2 | +| [argocd:v2.10.9](v2.10.9/quay.io_argoproj_argocd_v2.10.9.html) | 0 | 0 | 5 | 14 | +| [redis:7.0.15-alpine](v2.10.9/redis_7.0.15-alpine.html) | 0 | 0 | 0 | 1 | +| [install.yaml](v2.10.9/argocd-iac-install.html) | - | - | - | - | +| [namespace-install.yaml](v2.10.9/argocd-iac-namespace-install.html) | - | - | - | - | -### v2.9.13 +### v2.9.14 | | Critical | High | Medium | Low | |---:|:--------:|:----:|:------:|:---:| -| [go.mod](v2.9.13/argocd-test.html) | 0 | 2 | 12 | 0 | -| [ui/yarn.lock](v2.9.13/argocd-test.html) | 0 | 0 | 1 | 0 | -| [dex:v2.37.0](v2.9.13/ghcr.io_dexidp_dex_v2.37.0.html) | 1 | 1 | 6 | 2 | -| [haproxy:2.6.14-alpine](v2.9.13/haproxy_2.6.14-alpine.html) | 0 | 1 | 3 | 2 | -| [argocd:v2.9.13](v2.9.13/quay.io_argoproj_argocd_v2.9.13.html) | 0 | 0 | 7 | 14 | -| [redis:7.0.15-alpine](v2.9.13/redis_7.0.15-alpine.html) | 0 | 0 | 0 | 1 | -| [install.yaml](v2.9.13/argocd-iac-install.html) | - | - | - | - | -| [namespace-install.yaml](v2.9.13/argocd-iac-namespace-install.html) | - | - | - | - | +| [go.mod](v2.9.14/argocd-test.html) | 0 | 2 | 12 | 0 | +| [ui/yarn.lock](v2.9.14/argocd-test.html) | 0 | 0 | 1 | 0 | +| [dex:v2.37.0](v2.9.14/ghcr.io_dexidp_dex_v2.37.0.html) | 1 | 1 | 6 | 2 | +| [haproxy:2.6.14-alpine](v2.9.14/haproxy_2.6.14-alpine.html) | 0 | 1 | 3 | 2 | +| [argocd:v2.9.14](v2.9.14/quay.io_argoproj_argocd_v2.9.14.html) | 0 | 0 | 5 | 14 | +| [redis:7.0.15-alpine](v2.9.14/redis_7.0.15-alpine.html) | 0 | 0 | 0 | 1 | +| [install.yaml](v2.9.14/argocd-iac-install.html) | - | - | - | - | +| [namespace-install.yaml](v2.9.14/argocd-iac-namespace-install.html) | - | - | - | - | -### v2.8.17 +### v2.8.18 | | Critical | High | Medium | Low | |---:|:--------:|:----:|:------:|:---:| -| [go.mod](v2.8.17/argocd-test.html) | 0 | 2 | 12 | 0 | -| [ui/yarn.lock](v2.8.17/argocd-test.html) | 0 | 0 | 1 | 0 | -| [dex:v2.37.0](v2.8.17/ghcr.io_dexidp_dex_v2.37.0.html) | 1 | 1 | 6 | 2 | -| [haproxy:2.6.14-alpine](v2.8.17/haproxy_2.6.14-alpine.html) | 0 | 1 | 3 | 2 | -| [argocd:v2.8.17](v2.8.17/quay.io_argoproj_argocd_v2.8.17.html) | 0 | 0 | 7 | 14 | -| [redis:7.0.15-alpine](v2.8.17/redis_7.0.15-alpine.html) | 0 | 0 | 0 | 1 | -| [install.yaml](v2.8.17/argocd-iac-install.html) | - | - | - | - | -| [namespace-install.yaml](v2.8.17/argocd-iac-namespace-install.html) | - | - | - | - | +| [go.mod](v2.8.18/argocd-test.html) | 0 | 2 | 12 | 0 | +| [ui/yarn.lock](v2.8.18/argocd-test.html) | 0 | 0 | 1 | 0 | +| [dex:v2.37.0](v2.8.18/ghcr.io_dexidp_dex_v2.37.0.html) | 1 | 1 | 6 | 2 | +| [haproxy:2.6.14-alpine](v2.8.18/haproxy_2.6.14-alpine.html) | 0 | 1 | 3 | 2 | +| [argocd:v2.8.18](v2.8.18/quay.io_argoproj_argocd_v2.8.18.html) | 0 | 0 | 5 | 14 | +| [redis:7.0.15-alpine](v2.8.18/redis_7.0.15-alpine.html) | 0 | 0 | 0 | 1 | +| [install.yaml](v2.8.18/argocd-iac-install.html) | - | - | - | - | +| [namespace-install.yaml](v2.8.18/argocd-iac-namespace-install.html) | - | - | - | - | diff --git a/docs/snyk/master/argocd-iac-install.html b/docs/snyk/master/argocd-iac-install.html index fd04604d4cad3..c58d1909aebde 100644 --- a/docs/snyk/master/argocd-iac-install.html +++ b/docs/snyk/master/argocd-iac-install.html @@ -456,7 +456,7 @@

                                            Snyk test report

                                            -

                                            April 28th 2024, 12:17:57 am (UTC+00:00)

                                            +

                                            May 5th 2024, 12:17:54 am (UTC+00:00)

                                            Scanned the following path: diff --git a/docs/snyk/master/argocd-iac-namespace-install.html b/docs/snyk/master/argocd-iac-namespace-install.html index 34f68f21d1209..88bee89daa134 100644 --- a/docs/snyk/master/argocd-iac-namespace-install.html +++ b/docs/snyk/master/argocd-iac-namespace-install.html @@ -456,7 +456,7 @@

                                            Snyk test report

                                            -

                                            April 28th 2024, 12:18:05 am (UTC+00:00)

                                            +

                                            May 5th 2024, 12:18:04 am (UTC+00:00)

                                            Scanned the following path: diff --git a/docs/snyk/master/argocd-test.html b/docs/snyk/master/argocd-test.html index 1bd1432ba6134..45385faf00d73 100644 --- a/docs/snyk/master/argocd-test.html +++ b/docs/snyk/master/argocd-test.html @@ -7,7 +7,7 @@ Snyk test report - + @@ -456,7 +456,7 @@

                                            Snyk test report

                                            -

                                            April 28th 2024, 12:16:04 am (UTC+00:00)

                                            +

                                            May 5th 2024, 12:15:44 am (UTC+00:00)

                                            Scanned the following paths: @@ -467,9 +467,9 @@

                                            Snyk test report

                                            -
                                            8 known vulnerabilities
                                            -
                                            31 vulnerable dependency paths
                                            -
                                            2044 dependencies
                                            +
                                            7 known vulnerabilities
                                            +
                                            25 vulnerable dependency paths
                                            +
                                            2045 dependencies
                                            @@ -538,221 +538,6 @@

                                            Detailed paths

                                            More about this vulnerability

                                            -

    -
    -

    Regular Expression Denial of Service (ReDoS)

    -
    - -
    - medium severity -
    - -
    - -
      -
    • - Manifest file: /argo-cd/argoproj/argo-cd/v2 go.mod -
      • -
    • - Package Manager: golang -
      • -
    • - Vulnerable module: - - github.com/whilp/git-urls -
      • - -
    • Introduced through: - - github.com/argoproj/argo-cd/v2@0.0.0 and github.com/whilp/git-urls@1.0.2 - -
      • -
    - -
    - - -

    Detailed paths

    - -
      -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/whilp/git-urls@1.0.2 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 - - github.com/whilp/git-urls@1.0.2 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 - - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 - - github.com/whilp/git-urls@1.0.2 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/argoproj/notifications-engine/pkg/cmd@#2daee6022f41 - - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 - - github.com/whilp/git-urls@1.0.2 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/argoproj/notifications-engine/pkg/api@#2daee6022f41 - - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 - - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 - - github.com/whilp/git-urls@1.0.2 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/argoproj/notifications-engine/pkg/controller@#2daee6022f41 - - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 - - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 - - github.com/whilp/git-urls@1.0.2 - - - -
      • -
    - -
    - -
    - -

    Overview

    -

    github.com/whilp/git-urls is a Git URLs parser

    -

    Affected versions of this package are vulnerable to Regular Expression Denial of Service (ReDoS) due to the usage of an insecure regular expression in scpSyntax. Exploiting this vulnerability is possible when a long input is provided inside the directory path of the git URL.

    -

    Note: - This vulnerability has existed since commit 4a18977c6eecbf4ce0ca1e486e9ba77072ba4395.

    -

    PoC

    - 
    
-        var payload = strings.Repeat("////", 19000000) //payload used, the number can be tweaked to cause 7 second delay
-        malicious_url := "6en6ar@-:0////" + payload + "\"
-        begin := time.Now()
-        //u, err := giturls.ParseScp("remote_username@10.10.0.2:/remote/directory")// normal git url
-        _, err := giturls.ParseScp(malicious_url)
-        if err != nil {
-        fmt.Errorf("[ - ] Error ->" + err.Error())
-        }
-        //fmt.Println("[ + ] Url --> " + u.Host)
-        elapse := time.Since(begin)
-        fmt.Printf("Function took %s", elapse)
-
    -

    Details

    -

    Denial of Service (DoS) describes a family of attacks, all aimed at making a system inaccessible to its original and legitimate users. There are many types of DoS attacks, ranging from trying to clog the network pipes to the system by generating a large volume of traffic from many machines (a Distributed Denial of Service - DDoS - attack) to sending crafted requests that cause a system to crash or take a disproportional amount of time to process.

    -

    The Regular expression Denial of Service (ReDoS) is a type of Denial of Service attack. Regular expressions are incredibly powerful, but they aren't very intuitive and can ultimately end up making it easy for attackers to take your site down.

    -

    Let’s take the following regular expression as an example:

    - 
    regex = /A(B|C+)+D/
-
    -

    This regular expression accomplishes the following:

    -
      -
    • A The string must start with the letter 'A'
      • -
    • (B|C+)+ The string must then follow the letter A with either the letter 'B' or some number of occurrences of the letter 'C' (the + matches one or more times). The + at the end of this section states that we can look for one or more matches of this section.
      • -
    • D Finally, we ensure this section of the string ends with a 'D'
      • -
    -

    The expression would match inputs such as ABBD, ABCCCCD, ABCBCCCD and ACCCCCD

    -

    It most cases, it doesn't take very long for a regex engine to find a match:

    - 
    $ time node -e '/A(B|C+)+D/.test("ACCCCCCCCCCCCCCCCCCCCCCCCCCCCD")'
-        0.04s user 0.01s system 95% cpu 0.052 total
-        
-        $ time node -e '/A(B|C+)+D/.test("ACCCCCCCCCCCCCCCCCCCCCCCCCCCCX")'
-        1.79s user 0.02s system 99% cpu 1.812 total
-
    -

    The entire process of testing it against a 30 characters long string takes around ~52ms. But when given an invalid string, it takes nearly two seconds to complete the test, over ten times as long as it took to test a valid string. The dramatic difference is due to the way regular expressions get evaluated.

    -

    Most Regex engines will work very similarly (with minor differences). The engine will match the first possible way to accept the current character and proceed to the next one. If it then fails to match the next one, it will backtrack and see if there was another way to digest the previous character. If it goes too far down the rabbit hole only to find out the string doesn’t match in the end, and if many characters have multiple valid regex paths, the number of backtracking steps can become very large, resulting in what is known as catastrophic backtracking.

    -

    Let's look at how our expression runs into this problem, using a shorter string: "ACCCX". While it seems fairly straightforward, there are still four different ways that the engine could match those three C's:

    -
      -
    1. CCC
      2. -
    2. CC+C
      3. -
    3. C+CC
      4. -
    4. C+C+C.
      5. -
    -

    The engine has to try each of those combinations to see if any of them potentially match against the expression. When you combine that with the other steps the engine must take, we can use RegEx 101 debugger to see the engine has to take a total of 38 steps before it can determine the string doesn't match.

    -

    From there, the number of steps the engine must use to validate a string just continues to grow.

    - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
    StringNumber of C'sNumber of steps
    ACCCX338
    ACCCCX471
    ACCCCCX5136
    ACCCCCCCCCCCCCCX1465,553
    -

    By the time the string includes 14 C's, the engine has to take over 65,000 steps just to see if the string is valid. These extreme situations can cause them to work very slowly (exponentially related to input size, as shown above), allowing an attacker to exploit this and can cause the service to excessively consume CPU, resulting in a Denial of Service.

    -

    Remediation

    -

    There is no fixed version for github.com/whilp/git-urls.

    -

    References

    - - -
    - -
    -

    More about this vulnerability

    -
    -

    MPL-2.0 license

    @@ -925,7 +710,7 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 github.com/hashicorp/go-retryablehttp@0.7.4 @@ -947,9 +732,9 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 github.com/hashicorp/go-retryablehttp@0.7.4 @@ -960,9 +745,9 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/cmd@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/cmd@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 github.com/hashicorp/go-retryablehttp@0.7.4 @@ -973,7 +758,7 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 github.com/opsgenie/opsgenie-go-sdk-v2/client@1.0.5 @@ -986,11 +771,11 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/api@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/api@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 github.com/hashicorp/go-retryablehttp@0.7.4 @@ -1001,11 +786,11 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/controller@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/controller@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 github.com/hashicorp/go-retryablehttp@0.7.4 @@ -1016,9 +801,9 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 github.com/opsgenie/opsgenie-go-sdk-v2/client@1.0.5 @@ -1031,9 +816,9 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/cmd@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/cmd@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 github.com/opsgenie/opsgenie-go-sdk-v2/client@1.0.5 @@ -1046,11 +831,11 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/api@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/api@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 github.com/opsgenie/opsgenie-go-sdk-v2/client@1.0.5 @@ -1063,11 +848,11 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/controller@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/controller@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 github.com/opsgenie/opsgenie-go-sdk-v2/client@1.0.5 @@ -1166,7 +951,7 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 github.com/opsgenie/opsgenie-go-sdk-v2/client@1.0.5 @@ -1181,9 +966,9 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 github.com/opsgenie/opsgenie-go-sdk-v2/client@1.0.5 @@ -1198,9 +983,9 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/cmd@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/cmd@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 github.com/opsgenie/opsgenie-go-sdk-v2/client@1.0.5 @@ -1215,11 +1000,11 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/api@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/api@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 github.com/opsgenie/opsgenie-go-sdk-v2/client@1.0.5 @@ -1234,11 +1019,11 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/controller@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/controller@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 github.com/opsgenie/opsgenie-go-sdk-v2/client@1.0.5 diff --git a/docs/snyk/master/ghcr.io_dexidp_dex_v2.38.0.html b/docs/snyk/master/ghcr.io_dexidp_dex_v2.38.0.html index d985ce03c90da..a8b34e1212383 100644 --- a/docs/snyk/master/ghcr.io_dexidp_dex_v2.38.0.html +++ b/docs/snyk/master/ghcr.io_dexidp_dex_v2.38.0.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    April 28th 2024, 12:16:12 am (UTC+00:00)

    +

    May 5th 2024, 12:15:58 am (UTC+00:00)

    Scanned the following paths: @@ -715,6 +715,8 @@

    References

  • https://security.netapp.com/advisory/ntap-20240216-0009/
  • https://security.netapp.com/advisory/ntap-20240426-0008/
  • https://security.netapp.com/advisory/ntap-20240426-0013/
    • +
  • http://www.openwall.com/lists/oss-security/2024/03/11/1
    • +
  • https://security.netapp.com/advisory/ntap-20240503-0011/
    • @@ -868,6 +870,7 @@

    References

  • https://github.openssl.org/openssl/extended-releases/commit/aebaa5883e31122b404e450732dc833dc9dee539
  • https://www.openssl.org/news/secadv/20240125.txt
  • https://security.netapp.com/advisory/ntap-20240208-0006/
    • +
  • http://www.openwall.com/lists/oss-security/2024/03/11/1
    • @@ -2654,6 +2657,7 @@

    References

  • https://github.com/openssl/openssl/commit/18c02492138d1eb8b6548cb26e7b625fb2414a2a
  • https://github.com/openssl/openssl/commit/a830f551557d3d66a84bbb18a5b889c640c36294
  • https://www.openssl.org/news/secadv/20240115.txt
    • +
  • http://www.openwall.com/lists/oss-security/2024/03/11/1
    • @@ -2804,6 +2808,8 @@

    References

  • https://github.com/openssl/openssl/commit/e9d7083e241670332e0443da0f0d4ffb52829f08
  • https://github.openssl.org/openssl/extended-releases/commit/5f8d25770ae6437db119dfc951e207271a326640
  • https://www.openssl.org/news/secadv/20240408.txt
    • +
  • http://www.openwall.com/lists/oss-security/2024/04/08/5
    • +
  • https://security.netapp.com/advisory/ntap-20240503-0013/
    • diff --git a/docs/snyk/master/haproxy_2.6.14-alpine.html b/docs/snyk/master/haproxy_2.6.14-alpine.html index dfea5e7acd528..bb13bc1cb2a26 100644 --- a/docs/snyk/master/haproxy_2.6.14-alpine.html +++ b/docs/snyk/master/haproxy_2.6.14-alpine.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    April 28th 2024, 12:16:17 am (UTC+00:00)

    +

    May 5th 2024, 12:16:08 am (UTC+00:00)

    Scanned the following path: @@ -851,6 +851,7 @@

    References

  • https://www.openssl.org/news/secadv/20231106.txt
  • http://www.openwall.com/lists/oss-security/2023/11/06/2
  • https://security.netapp.com/advisory/ntap-20231130-0010/
    • +
  • http://www.openwall.com/lists/oss-security/2024/03/11/1
    • @@ -1038,6 +1039,8 @@

    References

  • https://security.netapp.com/advisory/ntap-20240216-0009/
  • https://security.netapp.com/advisory/ntap-20240426-0008/
  • https://security.netapp.com/advisory/ntap-20240426-0013/
    • +
  • http://www.openwall.com/lists/oss-security/2024/03/11/1
    • +
  • https://security.netapp.com/advisory/ntap-20240503-0011/
    • @@ -1213,6 +1216,7 @@

    References

  • https://github.openssl.org/openssl/extended-releases/commit/aebaa5883e31122b404e450732dc833dc9dee539
  • https://www.openssl.org/news/secadv/20240125.txt
  • https://security.netapp.com/advisory/ntap-20240208-0006/
    • +
  • http://www.openwall.com/lists/oss-security/2024/03/11/1
    • @@ -1389,6 +1393,7 @@

    References

  • https://github.com/openssl/openssl/commit/18c02492138d1eb8b6548cb26e7b625fb2414a2a
  • https://github.com/openssl/openssl/commit/a830f551557d3d66a84bbb18a5b889c640c36294
  • https://www.openssl.org/news/secadv/20240115.txt
    • +
  • http://www.openwall.com/lists/oss-security/2024/03/11/1
    • @@ -1561,6 +1566,8 @@

    References

  • https://github.com/openssl/openssl/commit/e9d7083e241670332e0443da0f0d4ffb52829f08
  • https://github.openssl.org/openssl/extended-releases/commit/5f8d25770ae6437db119dfc951e207271a326640
  • https://www.openssl.org/news/secadv/20240408.txt
    • +
  • http://www.openwall.com/lists/oss-security/2024/04/08/5
    • +
  • https://security.netapp.com/advisory/ntap-20240503-0013/
    • diff --git a/docs/snyk/master/quay.io_argoproj_argocd_latest.html b/docs/snyk/master/quay.io_argoproj_argocd_latest.html index 19b922d2bb5df..d77bb8858c3d3 100644 --- a/docs/snyk/master/quay.io_argoproj_argocd_latest.html +++ b/docs/snyk/master/quay.io_argoproj_argocd_latest.html @@ -7,7 +7,7 @@ Snyk test report - + @@ -456,7 +456,7 @@

    Snyk test report

    -

    April 28th 2024, 12:16:35 am (UTC+00:00)

    +

    May 5th 2024, 12:16:29 am (UTC+00:00)

    Scanned the following paths: @@ -470,8 +470,8 @@

    Snyk test report

    -
    29 known vulnerabilities
    -
    162 vulnerable dependency paths
    +
    27 known vulnerabilities
    +
    160 vulnerable dependency paths
    2282 dependencies
    @@ -626,82 +626,6 @@

    References

    More about this vulnerability

    -
    -
    -

    CVE-2023-51767

    -
    - -
    - medium severity -
    - -
    - -
      -
    • - Manifest file: quay.io/argoproj/argocd:latest/argoproj/argocd Dockerfile -
      • -
    • - Package Manager: ubuntu:22.04 -
      • -
    • - Vulnerable module: - - openssh/openssh-client -
      • - -
    • Introduced through: - - docker-image|quay.io/argoproj/argocd@latest and openssh/openssh-client@1:8.9p1-3ubuntu0.7 - -
      • -
    - -
    - - -

    Detailed paths

    - -
      -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@latest - - openssh/openssh-client@1:8.9p1-3ubuntu0.7 - - - -
      • -
    - -
    - -
    - -

    NVD Description

    -

    Note: Versions mentioned in the description apply only to the upstream openssh package and not the openssh package as distributed by Ubuntu. - See How to fix? for Ubuntu:22.04 relevant fixed versions and status.

    -

    OpenSSH through 9.6, when common types of DRAM are used, might allow row hammer attacks (for authentication bypass) because the integer value of authenticated in mm_answer_authpassword does not resist flips of a single bit. NOTE: this is applicable to a certain threat model of attacker-victim co-location in which the attacker has user privileges.

    -

    Remediation

    -

    There is no fixed version for Ubuntu:22.04 openssh.

    -

    References

    - - -
    - -
    -

    More about this vulnerability

    -
    -

    Information Exposure

    @@ -915,78 +839,6 @@

    References

    More about this vulnerability

    -
    -
    -

    CVE-2024-32487

    -
    - -
    - medium severity -
    - -
    - -
      -
    • - Manifest file: quay.io/argoproj/argocd:latest/argoproj/argocd Dockerfile -
      • -
    • - Package Manager: ubuntu:22.04 -
      • -
    • - Vulnerable module: - - less -
      • - -
    • Introduced through: - - docker-image|quay.io/argoproj/argocd@latest and less@590-1ubuntu0.22.04.2 - -
      • -
    - -
    - - -

    Detailed paths

    - -
      -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@latest - - less@590-1ubuntu0.22.04.2 - - - -
      • -
    - -
    - -
    - -

    NVD Description

    -

    Note: Versions mentioned in the description apply only to the upstream less package and not the less package as distributed by Ubuntu. - See How to fix? for Ubuntu:22.04 relevant fixed versions and status.

    -

    less through 653 allows OS command execution via a newline character in the name of a file, because quoting is mishandled in filename.c. Exploitation typically requires use with attacker-controlled file names, such as the files extracted from an untrusted archive. Exploitation also requires the LESSOPEN environment variable, but this is set by default in many common cases.

    -

    Remediation

    -

    There is no fixed version for Ubuntu:22.04 less.

    -

    References

    - - -
    - -
    -

    More about this vulnerability

    -
    -

    CVE-2024-26461

    @@ -2235,6 +2087,7 @@

    References

  • https://github.com/systemd/systemd/issues/25676
  • https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QHNBXGKJWISJETTTDTZKTBFIBJUOSLKL/
  • https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4GMDEG5PKONWNHOEYSUDRT6JEOISRMN2/
    • +
  • https://access.redhat.com/errata/RHSA-2024:2463
    • @@ -2652,7 +2505,7 @@

    Detailed paths

    Introduced through: docker-image|quay.io/argoproj/argocd@latest - less@590-1ubuntu0.22.04.2 + less@590-1ubuntu0.22.04.3 ncurses/libtinfo6@6.3-2ubuntu0.1 @@ -2916,7 +2769,7 @@

    Detailed paths

    Introduced through: docker-image|quay.io/argoproj/argocd@latest - less@590-1ubuntu0.22.04.2 + less@590-1ubuntu0.22.04.3 ncurses/libtinfo6@6.3-2ubuntu0.1 diff --git a/docs/snyk/master/redis_7.0.15-alpine.html b/docs/snyk/master/redis_7.0.15-alpine.html index 8f3a59a0fb30c..26d3c74a390ca 100644 --- a/docs/snyk/master/redis_7.0.15-alpine.html +++ b/docs/snyk/master/redis_7.0.15-alpine.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    April 28th 2024, 12:16:41 am (UTC+00:00)

    +

    May 5th 2024, 12:16:36 am (UTC+00:00)

    Scanned the following paths: @@ -640,6 +640,8 @@

    References

  • https://github.com/openssl/openssl/commit/e9d7083e241670332e0443da0f0d4ffb52829f08
  • https://github.openssl.org/openssl/extended-releases/commit/5f8d25770ae6437db119dfc951e207271a326640
  • https://www.openssl.org/news/secadv/20240408.txt
    • +
  • http://www.openwall.com/lists/oss-security/2024/04/08/5
    • +
  • https://security.netapp.com/advisory/ntap-20240503-0013/
    • diff --git a/docs/snyk/v2.10.8/argocd-iac-install.html b/docs/snyk/v2.10.9/argocd-iac-install.html similarity index 99% rename from docs/snyk/v2.10.8/argocd-iac-install.html rename to docs/snyk/v2.10.9/argocd-iac-install.html index 363ede40d19d0..77f83e382a406 100644 --- a/docs/snyk/v2.10.8/argocd-iac-install.html +++ b/docs/snyk/v2.10.9/argocd-iac-install.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    April 28th 2024, 12:22:10 am (UTC+00:00)

    +

    May 5th 2024, 12:22:34 am (UTC+00:00)

    Scanned the following path: diff --git a/docs/snyk/v2.10.8/argocd-iac-namespace-install.html b/docs/snyk/v2.10.9/argocd-iac-namespace-install.html similarity index 99% rename from docs/snyk/v2.10.8/argocd-iac-namespace-install.html rename to docs/snyk/v2.10.9/argocd-iac-namespace-install.html index 1c2419138eaa7..d1027993f915b 100644 --- a/docs/snyk/v2.10.8/argocd-iac-namespace-install.html +++ b/docs/snyk/v2.10.9/argocd-iac-namespace-install.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    April 28th 2024, 12:22:20 am (UTC+00:00)

    +

    May 5th 2024, 12:22:45 am (UTC+00:00)

    Scanned the following path: diff --git a/docs/snyk/v2.10.8/argocd-test.html b/docs/snyk/v2.10.9/argocd-test.html similarity index 99% rename from docs/snyk/v2.10.8/argocd-test.html rename to docs/snyk/v2.10.9/argocd-test.html index 223eb189dee63..3f6d212bee664 100644 --- a/docs/snyk/v2.10.8/argocd-test.html +++ b/docs/snyk/v2.10.9/argocd-test.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    April 28th 2024, 12:20:22 am (UTC+00:00)

    +

    May 5th 2024, 12:20:40 am (UTC+00:00)

    Scanned the following paths: @@ -5896,7 +5896,7 @@

    Detailed paths

    github.com/go-git/go-git/v5/plumbing/transport/ssh@5.11.0 - github.com/skeema/knownhosts@1.2.1 + github.com/skeema/knownhosts@1.2.2 golang.org/x/crypto/ssh@0.16.0 @@ -5922,7 +5922,7 @@

    Detailed paths

    github.com/go-git/go-git/v5/plumbing/transport/ssh@5.11.0 - github.com/skeema/knownhosts@1.2.1 + github.com/skeema/knownhosts@1.2.2 golang.org/x/crypto/ssh/knownhosts@0.16.0 @@ -5939,7 +5939,7 @@

    Detailed paths

    github.com/go-git/go-git/v5/plumbing/transport/ssh@5.11.0 - github.com/skeema/knownhosts@1.2.1 + github.com/skeema/knownhosts@1.2.2 golang.org/x/crypto/ssh@0.16.0 @@ -5984,7 +5984,7 @@

    Detailed paths

    github.com/go-git/go-git/v5/plumbing/transport/ssh@5.11.0 - github.com/skeema/knownhosts@1.2.1 + github.com/skeema/knownhosts@1.2.2 golang.org/x/crypto/ssh/knownhosts@0.16.0 @@ -6003,7 +6003,7 @@

    Detailed paths

    github.com/go-git/go-git/v5/plumbing/transport/ssh@5.11.0 - github.com/skeema/knownhosts@1.2.1 + github.com/skeema/knownhosts@1.2.2 golang.org/x/crypto/ssh@0.16.0 @@ -6037,7 +6037,7 @@

    Detailed paths

    github.com/go-git/go-git/v5/plumbing/transport/ssh@5.11.0 - github.com/skeema/knownhosts@1.2.1 + github.com/skeema/knownhosts@1.2.2 golang.org/x/crypto/ssh/knownhosts@0.16.0 diff --git a/docs/snyk/v2.8.17/ghcr.io_dexidp_dex_v2.37.0.html b/docs/snyk/v2.10.9/ghcr.io_dexidp_dex_v2.37.0.html similarity index 99% rename from docs/snyk/v2.8.17/ghcr.io_dexidp_dex_v2.37.0.html rename to docs/snyk/v2.10.9/ghcr.io_dexidp_dex_v2.37.0.html index 7e842f96a5cba..f388b196b9e93 100644 --- a/docs/snyk/v2.8.17/ghcr.io_dexidp_dex_v2.37.0.html +++ b/docs/snyk/v2.10.9/ghcr.io_dexidp_dex_v2.37.0.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    April 28th 2024, 12:24:54 am (UTC+00:00)

    +

    May 5th 2024, 12:20:48 am (UTC+00:00)

    Scanned the following paths: @@ -1882,6 +1882,7 @@

    References

  • https://www.openssl.org/news/secadv/20231106.txt
  • http://www.openwall.com/lists/oss-security/2023/11/06/2
  • https://security.netapp.com/advisory/ntap-20231130-0010/
    • +
  • http://www.openwall.com/lists/oss-security/2024/03/11/1
    • @@ -2047,6 +2048,8 @@

    References

  • https://security.netapp.com/advisory/ntap-20240216-0009/
  • https://security.netapp.com/advisory/ntap-20240426-0008/
  • https://security.netapp.com/advisory/ntap-20240426-0013/
    • +
  • http://www.openwall.com/lists/oss-security/2024/03/11/1
    • +
  • https://security.netapp.com/advisory/ntap-20240503-0011/
    • @@ -2200,6 +2203,7 @@

    References

  • https://github.openssl.org/openssl/extended-releases/commit/aebaa5883e31122b404e450732dc833dc9dee539
  • https://www.openssl.org/news/secadv/20240125.txt
  • https://security.netapp.com/advisory/ntap-20240208-0006/
    • +
  • http://www.openwall.com/lists/oss-security/2024/03/11/1
    • @@ -4438,6 +4442,7 @@

    References

  • https://github.com/openssl/openssl/commit/18c02492138d1eb8b6548cb26e7b625fb2414a2a
  • https://github.com/openssl/openssl/commit/a830f551557d3d66a84bbb18a5b889c640c36294
  • https://www.openssl.org/news/secadv/20240115.txt
    • +
  • http://www.openwall.com/lists/oss-security/2024/03/11/1
    • @@ -4588,6 +4593,8 @@

    References

  • https://github.com/openssl/openssl/commit/e9d7083e241670332e0443da0f0d4ffb52829f08
  • https://github.openssl.org/openssl/extended-releases/commit/5f8d25770ae6437db119dfc951e207271a326640
  • https://www.openssl.org/news/secadv/20240408.txt
    • +
  • http://www.openwall.com/lists/oss-security/2024/04/08/5
    • +
  • https://security.netapp.com/advisory/ntap-20240503-0013/
    • diff --git a/docs/snyk/v2.8.17/haproxy_2.6.14-alpine.html b/docs/snyk/v2.10.9/haproxy_2.6.14-alpine.html similarity index 98% rename from docs/snyk/v2.8.17/haproxy_2.6.14-alpine.html rename to docs/snyk/v2.10.9/haproxy_2.6.14-alpine.html index 1c1a5ba55c308..22f27bd619126 100644 --- a/docs/snyk/v2.8.17/haproxy_2.6.14-alpine.html +++ b/docs/snyk/v2.10.9/haproxy_2.6.14-alpine.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    April 28th 2024, 12:24:57 am (UTC+00:00)

    +

    May 5th 2024, 12:20:52 am (UTC+00:00)

    Scanned the following path: @@ -851,6 +851,7 @@

    References

  • https://www.openssl.org/news/secadv/20231106.txt
  • http://www.openwall.com/lists/oss-security/2023/11/06/2
  • https://security.netapp.com/advisory/ntap-20231130-0010/
    • +
  • http://www.openwall.com/lists/oss-security/2024/03/11/1
    • @@ -1038,6 +1039,8 @@

    References

  • https://security.netapp.com/advisory/ntap-20240216-0009/
  • https://security.netapp.com/advisory/ntap-20240426-0008/
  • https://security.netapp.com/advisory/ntap-20240426-0013/
    • +
  • http://www.openwall.com/lists/oss-security/2024/03/11/1
    • +
  • https://security.netapp.com/advisory/ntap-20240503-0011/
    • @@ -1213,6 +1216,7 @@

    References

  • https://github.openssl.org/openssl/extended-releases/commit/aebaa5883e31122b404e450732dc833dc9dee539
  • https://www.openssl.org/news/secadv/20240125.txt
  • https://security.netapp.com/advisory/ntap-20240208-0006/
    • +
  • http://www.openwall.com/lists/oss-security/2024/03/11/1
    • @@ -1389,6 +1393,7 @@

    References

  • https://github.com/openssl/openssl/commit/18c02492138d1eb8b6548cb26e7b625fb2414a2a
  • https://github.com/openssl/openssl/commit/a830f551557d3d66a84bbb18a5b889c640c36294
  • https://www.openssl.org/news/secadv/20240115.txt
    • +
  • http://www.openwall.com/lists/oss-security/2024/03/11/1
    • @@ -1561,6 +1566,8 @@

    References

  • https://github.com/openssl/openssl/commit/e9d7083e241670332e0443da0f0d4ffb52829f08
  • https://github.openssl.org/openssl/extended-releases/commit/5f8d25770ae6437db119dfc951e207271a326640
  • https://www.openssl.org/news/secadv/20240408.txt
    • +
  • http://www.openwall.com/lists/oss-security/2024/04/08/5
    • +
  • https://security.netapp.com/advisory/ntap-20240503-0013/
    • diff --git a/docs/snyk/v2.9.13/quay.io_argoproj_argocd_v2.9.13.html b/docs/snyk/v2.10.9/quay.io_argoproj_argocd_v2.10.9.html similarity index 91% rename from docs/snyk/v2.9.13/quay.io_argoproj_argocd_v2.9.13.html rename to docs/snyk/v2.10.9/quay.io_argoproj_argocd_v2.10.9.html index 53b766a58014d..93cf1c001a823 100644 --- a/docs/snyk/v2.9.13/quay.io_argoproj_argocd_v2.9.13.html +++ b/docs/snyk/v2.10.9/quay.io_argoproj_argocd_v2.10.9.html @@ -7,7 +7,7 @@ Snyk test report - + @@ -456,23 +456,23 @@

    Snyk test report

    -

    April 28th 2024, 12:23:05 am (UTC+00:00)

    +

    May 5th 2024, 12:21:10 am (UTC+00:00)

    Scanned the following paths:
      -
    • quay.io/argoproj/argocd:v2.9.13/argoproj/argocd/Dockerfile (deb)
      • -
    • quay.io/argoproj/argocd:v2.9.13/argoproj/argo-cd/v2//usr/local/bin/argocd (gomodules)
      • -
    • quay.io/argoproj/argocd:v2.9.13//usr/local/bin/kustomize (gomodules)
      • -
    • quay.io/argoproj/argocd:v2.9.13/helm/v3//usr/local/bin/helm (gomodules)
      • -
    • quay.io/argoproj/argocd:v2.9.13/git-lfs/git-lfs//usr/bin/git-lfs (gomodules)
      • +
    • quay.io/argoproj/argocd:v2.10.9/argoproj/argocd/Dockerfile (deb)
      • +
    • quay.io/argoproj/argocd:v2.10.9/argoproj/argo-cd/v2//usr/local/bin/argocd (gomodules)
      • +
    • quay.io/argoproj/argocd:v2.10.9//usr/local/bin/kustomize (gomodules)
      • +
    • quay.io/argoproj/argocd:v2.10.9/helm/v3//usr/local/bin/helm (gomodules)
      • +
    • quay.io/argoproj/argocd:v2.10.9/git-lfs/git-lfs//usr/bin/git-lfs (gomodules)
    -
    35 known vulnerabilities
    -
    169 vulnerable dependency paths
    -
    2189 dependencies
    +
    32 known vulnerabilities
    +
    166 vulnerable dependency paths
    +
    2275 dependencies
    @@ -480,88 +480,6 @@

    Snyk test report

    -
    -

    Denial of Service (DoS)

    -
    - -
    - high severity -
    - -
    - -
      -
    • - Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argo-cd/v2 /usr/local/bin/argocd -
      • -
    • - Package Manager: golang -
      • -
    • - Vulnerable module: - - google.golang.org/grpc -
      • - -
    • Introduced through: - - github.com/argoproj/argo-cd/v2@* and google.golang.org/grpc@v1.56.2 - -
      • -
    - -
    - - -

    Detailed paths

    - -
      -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@* - - google.golang.org/grpc@v1.56.2 - - - -
      • -
    - -
    - -
    - -

    Overview

    -

    google.golang.org/grpc is a Go implementation of gRPC

    -

    Affected versions of this package are vulnerable to Denial of Service (DoS) in the implementation of the HTTP/2 protocol. An attacker can cause a denial of service (including via DDoS) by rapidly resetting many streams through request cancellation.

    -

    Remediation

    -

    Upgrade google.golang.org/grpc to version 1.56.3, 1.57.1, 1.58.3 or higher.

    -

    References

    - - -
    - -
    -

    More about this vulnerability

    -
    - -

    Allocation of Resources Without Limits or Throttling

    @@ -574,7 +492,7 @@

    Allocation of Resources Without Limits or Throttling

  • - Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.10.9/argoproj/argo-cd/v2 /usr/local/bin/argocd
  • Package Manager: golang @@ -654,7 +572,7 @@

    CVE-2020-22916

    • - Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.9/argoproj/argocd Dockerfile
    • Package Manager: ubuntu:22.04 @@ -667,7 +585,7 @@

      CVE-2020-22916

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 and xz-utils/liblzma5@5.2.5-2ubuntu1 + docker-image|quay.io/argoproj/argocd@v2.10.9 and xz-utils/liblzma5@5.2.5-2ubuntu1
    @@ -680,7 +598,7 @@

    Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 xz-utils/liblzma5@5.2.5-2ubuntu1 @@ -717,82 +635,6 @@

      References

      More about this vulnerability

    • -
    -
    -

    CVE-2023-51767

    -
    - -
    - medium severity -
    - -
    - -
      -
    • - Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argocd Dockerfile -
      • -
    • - Package Manager: ubuntu:22.04 -
      • -
    • - Vulnerable module: - - openssh/openssh-client -
      • - -
    • Introduced through: - - docker-image|quay.io/argoproj/argocd@v2.9.13 and openssh/openssh-client@1:8.9p1-3ubuntu0.7 - -
      • -
    - -
    - - -

    Detailed paths

    - -
      -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 - - openssh/openssh-client@1:8.9p1-3ubuntu0.7 - - - -
      • -
    - -
    - -
    - -

    NVD Description

    -

    Note: Versions mentioned in the description apply only to the upstream openssh package and not the openssh package as distributed by Ubuntu. - See How to fix? for Ubuntu:22.04 relevant fixed versions and status.

    -

    OpenSSH through 9.6, when common types of DRAM are used, might allow row hammer attacks (for authentication bypass) because the integer value of authenticated in mm_answer_authpassword does not resist flips of a single bit. NOTE: this is applicable to a certain threat model of attacker-victim co-location in which the attacker has user privileges.

    -

    Remediation

    -

    There is no fixed version for Ubuntu:22.04 openssh.

    -

    References

    - - -
    - -
    -

    More about this vulnerability

    -
    -

    Information Exposure

    @@ -806,7 +648,7 @@

    Information Exposure

    • - Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.9/argoproj/argocd Dockerfile
    • Package Manager: ubuntu:22.04 @@ -819,7 +661,7 @@

      Information Exposure

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 and libgcrypt20@1.9.4-3ubuntu3 + docker-image|quay.io/argoproj/argocd@v2.10.9 and libgcrypt20@1.9.4-3ubuntu3
    @@ -832,7 +674,7 @@

    Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 libgcrypt20@1.9.4-3ubuntu3 @@ -841,7 +683,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 gnupg2/dirmngr@2.2.27-3ubuntu2.1 @@ -852,7 +694,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -863,7 +705,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 apt@2.4.12 @@ -876,7 +718,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 apt@2.4.12 @@ -889,7 +731,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -902,7 +744,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -915,7 +757,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -928,7 +770,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -941,7 +783,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -954,7 +796,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -967,7 +809,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 apt@2.4.12 @@ -1006,78 +848,6 @@

      References

      More about this vulnerability

    -
    -
    -

    CVE-2024-32487

    -
    - -
    - medium severity -
    - -
    - -
      -
    • - Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argocd Dockerfile -
      • -
    • - Package Manager: ubuntu:22.04 -
      • -
    • - Vulnerable module: - - less -
      • - -
    • Introduced through: - - docker-image|quay.io/argoproj/argocd@v2.9.13 and less@590-1ubuntu0.22.04.2 - -
      • -
    - -
    - - -

    Detailed paths

    - -
      -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 - - less@590-1ubuntu0.22.04.2 - - - -
      • -
    - -
    - -
    - -

    NVD Description

    -

    Note: Versions mentioned in the description apply only to the upstream less package and not the less package as distributed by Ubuntu. - See How to fix? for Ubuntu:22.04 relevant fixed versions and status.

    -

    less through 653 allows OS command execution via a newline character in the name of a file, because quoting is mishandled in filename.c. Exploitation typically requires use with attacker-controlled file names, such as the files extracted from an untrusted archive. Exploitation also requires the LESSOPEN environment variable, but this is set by default in many common cases.

    -

    Remediation

    -

    There is no fixed version for Ubuntu:22.04 less.

    -

    References

    - - -
    - -
    -

    More about this vulnerability

    -
    -

    CVE-2024-26461

    @@ -1091,7 +861,7 @@

    CVE-2024-26461

    • - Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.9/argoproj/argocd Dockerfile
    • Package Manager: ubuntu:22.04 @@ -1104,7 +874,7 @@

      CVE-2024-26461

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 and krb5/libk5crypto3@1.19.2-2ubuntu0.3 + docker-image|quay.io/argoproj/argocd@v2.10.9 and krb5/libk5crypto3@1.19.2-2ubuntu0.3
    @@ -1117,7 +887,7 @@

    Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 krb5/libk5crypto3@1.19.2-2ubuntu0.3 @@ -1126,7 +896,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 adduser@3.118ubuntu5 @@ -1147,7 +917,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 adduser@3.118ubuntu5 @@ -1170,7 +940,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 krb5/libkrb5-3@1.19.2-2ubuntu0.3 @@ -1179,7 +949,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 adduser@3.118ubuntu5 @@ -1200,7 +970,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -1209,7 +979,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 openssh/openssh-client@1:8.9p1-3ubuntu0.7 @@ -1220,7 +990,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 git@1:2.34.1-1ubuntu1.10 @@ -1233,7 +1003,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 git@1:2.34.1-1ubuntu1.10 @@ -1248,7 +1018,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 adduser@3.118ubuntu5 @@ -1267,7 +1037,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 krb5/libkrb5support0@1.19.2-2ubuntu0.3 @@ -1311,7 +1081,7 @@

      CVE-2024-26462

      • - Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.9/argoproj/argocd Dockerfile
      • Package Manager: ubuntu:22.04 @@ -1324,7 +1094,7 @@

        CVE-2024-26462

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 and krb5/libk5crypto3@1.19.2-2ubuntu0.3 + docker-image|quay.io/argoproj/argocd@v2.10.9 and krb5/libk5crypto3@1.19.2-2ubuntu0.3
      @@ -1337,7 +1107,7 @@

      Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 krb5/libk5crypto3@1.19.2-2ubuntu0.3 @@ -1346,7 +1116,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 adduser@3.118ubuntu5 @@ -1367,7 +1137,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 adduser@3.118ubuntu5 @@ -1390,7 +1160,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 krb5/libkrb5-3@1.19.2-2ubuntu0.3 @@ -1399,7 +1169,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 adduser@3.118ubuntu5 @@ -1420,7 +1190,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -1429,7 +1199,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 openssh/openssh-client@1:8.9p1-3ubuntu0.7 @@ -1440,7 +1210,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 git@1:2.34.1-1ubuntu1.10 @@ -1453,7 +1223,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 git@1:2.34.1-1ubuntu1.10 @@ -1468,7 +1238,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 adduser@3.118ubuntu5 @@ -1487,7 +1257,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 krb5/libkrb5support0@1.19.2-2ubuntu0.3 @@ -1531,7 +1301,7 @@

        CVE-2024-26458

        • - Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.9/argoproj/argocd Dockerfile
        • Package Manager: ubuntu:22.04 @@ -1544,7 +1314,7 @@

          CVE-2024-26458

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 and krb5/libk5crypto3@1.19.2-2ubuntu0.3 + docker-image|quay.io/argoproj/argocd@v2.10.9 and krb5/libk5crypto3@1.19.2-2ubuntu0.3
        @@ -1557,7 +1327,7 @@

        Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 krb5/libk5crypto3@1.19.2-2ubuntu0.3 @@ -1566,7 +1336,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 adduser@3.118ubuntu5 @@ -1587,7 +1357,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 adduser@3.118ubuntu5 @@ -1610,7 +1380,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 krb5/libkrb5-3@1.19.2-2ubuntu0.3 @@ -1619,7 +1389,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 adduser@3.118ubuntu5 @@ -1640,7 +1410,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -1649,7 +1419,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 openssh/openssh-client@1:8.9p1-3ubuntu0.7 @@ -1660,7 +1430,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 git@1:2.34.1-1ubuntu1.10 @@ -1673,7 +1443,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 git@1:2.34.1-1ubuntu1.10 @@ -1688,7 +1458,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 adduser@3.118ubuntu5 @@ -1707,7 +1477,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 krb5/libkrb5support0@1.19.2-2ubuntu0.3 @@ -1751,7 +1521,7 @@

          LGPL-3.0 license

          • - Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.10.9/argoproj/argo-cd/v2 /usr/local/bin/argocd
          • Package Manager: golang @@ -1811,7 +1581,7 @@

            Infinite loop

            • - Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.10.9/argoproj/argo-cd/v2 /usr/local/bin/argocd
            • Package Manager: golang @@ -1882,7 +1652,7 @@

              Stack-based Buffer Overflow

              • - Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.10.9/argoproj/argo-cd/v2 /usr/local/bin/argocd
              • Package Manager: golang @@ -1950,7 +1720,7 @@

                Infinite loop

                • - Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.10.9/argoproj/argo-cd/v2 /usr/local/bin/argocd
                • Package Manager: golang @@ -2021,7 +1791,7 @@

                  Authentication Bypass by Capture-replay

                  • - Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.10.9/argoproj/argo-cd/v2 /usr/local/bin/argocd
                  • Package Manager: golang @@ -2119,7 +1889,7 @@

                    MPL-2.0 license

                    • - Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.10.9/argoproj/argo-cd/v2 /usr/local/bin/argocd
                    • Package Manager: golang @@ -2179,7 +1949,7 @@

                      MPL-2.0 license

                      • - Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.10.9/argoproj/argo-cd/v2 /usr/local/bin/argocd
                      • Package Manager: golang @@ -2239,7 +2009,7 @@

                        MPL-2.0 license

                        • - Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.10.9/argoproj/argo-cd/v2 /usr/local/bin/argocd
                        • Package Manager: golang @@ -2299,7 +2069,7 @@

                          MPL-2.0 license

                          • - Manifest file: quay.io/argoproj/argocd:v2.9.13/helm/v3 /usr/local/bin/helm + Manifest file: quay.io/argoproj/argocd:v2.10.9/helm/v3 /usr/local/bin/helm
                          • Package Manager: golang @@ -2359,7 +2129,7 @@

                            MPL-2.0 license

                            • - Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.10.9/argoproj/argo-cd/v2 /usr/local/bin/argocd
                            • Package Manager: golang @@ -2419,7 +2189,7 @@

                              MPL-2.0 license

                              • - Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.10.9/argoproj/argo-cd/v2 /usr/local/bin/argocd
                              • Package Manager: golang @@ -2479,7 +2249,7 @@

                                Improper Handling of Highly Compressed Data (Data Amplif
                                • - Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.10.9/argoproj/argo-cd/v2 /usr/local/bin/argocd
                                • Package Manager: golang @@ -2548,7 +2318,7 @@

                                  CVE-2023-7008

                                  • - Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.9/argoproj/argocd Dockerfile
                                  • Package Manager: ubuntu:22.04 @@ -2561,7 +2331,7 @@

                                    CVE-2023-7008

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 and systemd/libsystemd0@249.11-0ubuntu3.12 + docker-image|quay.io/argoproj/argocd@v2.10.9 and systemd/libsystemd0@249.11-0ubuntu3.12
                                  @@ -2574,7 +2344,7 @@

                                  Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 systemd/libsystemd0@249.11-0ubuntu3.12 @@ -2583,7 +2353,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 apt@2.4.12 @@ -2594,7 +2364,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 procps/libprocps8@2:3.3.17-6ubuntu2.1 @@ -2605,7 +2375,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 util-linux@2.37.2-4ubuntu3.4 @@ -2616,7 +2386,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 util-linux/bsdutils@1:2.37.2-4ubuntu3.4 @@ -2627,7 +2397,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 apt@2.4.12 @@ -2640,7 +2410,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 systemd/libudev1@249.11-0ubuntu3.12 @@ -2649,7 +2419,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 libfido2/libfido2-1@1.10.0-1 @@ -2660,7 +2430,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 util-linux@2.37.2-4ubuntu3.4 @@ -2671,7 +2441,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 apt@2.4.12 @@ -2703,6 +2473,7 @@

                                    References

                                  • https://github.com/systemd/systemd/issues/25676
                                  • https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QHNBXGKJWISJETTTDTZKTBFIBJUOSLKL/
                                  • https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4GMDEG5PKONWNHOEYSUDRT6JEOISRMN2/
                                    • +
                                  • https://access.redhat.com/errata/RHSA-2024:2463
                                  @@ -2724,7 +2495,7 @@

                                  Arbitrary Code Injection

                                  • - Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.9/argoproj/argocd Dockerfile
                                  • Package Manager: ubuntu:22.04 @@ -2737,7 +2508,7 @@

                                    Arbitrary Code Injection

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 and shadow/passwd@1:4.8.1-2ubuntu2.2 + docker-image|quay.io/argoproj/argocd@v2.10.9 and shadow/passwd@1:4.8.1-2ubuntu2.2
                                  @@ -2750,7 +2521,7 @@

                                  Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 shadow/passwd@1:4.8.1-2ubuntu2.2 @@ -2759,7 +2530,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 adduser@3.118ubuntu5 @@ -2770,7 +2541,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 openssh/openssh-client@1:8.9p1-3ubuntu0.7 @@ -2781,7 +2552,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 shadow/login@1:4.8.1-2ubuntu2.2 @@ -2828,7 +2599,7 @@

                                    Uncontrolled Recursion

                                    • - Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.9/argoproj/argocd Dockerfile
                                    • Package Manager: ubuntu:22.04 @@ -2841,7 +2612,7 @@

                                      Uncontrolled Recursion

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 and pcre3/libpcre3@2:8.39-13ubuntu0.22.04.1 + docker-image|quay.io/argoproj/argocd@v2.10.9 and pcre3/libpcre3@2:8.39-13ubuntu0.22.04.1
                                    @@ -2854,7 +2625,7 @@

                                    Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 pcre3/libpcre3@2:8.39-13ubuntu0.22.04.1 @@ -2863,7 +2634,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 grep@3.7-1build1 @@ -2916,7 +2687,7 @@

                                      Release of Invalid Pointer or Reference

                                      • - Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.9/argoproj/argocd Dockerfile
                                      • Package Manager: ubuntu:22.04 @@ -2929,7 +2700,7 @@

                                        Release of Invalid Pointer or Reference

                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 and patch@2.7.6-7build2 + docker-image|quay.io/argoproj/argocd@v2.10.9 and patch@2.7.6-7build2
                                      @@ -2942,7 +2713,7 @@

                                      Detailed paths

                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 patch@2.7.6-7build2 @@ -2986,7 +2757,7 @@

                                        Double Free

                                        • - Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.9/argoproj/argocd Dockerfile
                                        • Package Manager: ubuntu:22.04 @@ -2999,7 +2770,7 @@

                                          Double Free

                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 and patch@2.7.6-7build2 + docker-image|quay.io/argoproj/argocd@v2.10.9 and patch@2.7.6-7build2
                                        @@ -3012,7 +2783,7 @@

                                        Detailed paths

                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 patch@2.7.6-7build2 @@ -3061,7 +2832,7 @@

                                          CVE-2023-50495

                                          • - Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.9/argoproj/argocd Dockerfile
                                          • Package Manager: ubuntu:22.04 @@ -3074,7 +2845,7 @@

                                            CVE-2023-50495

                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 and ncurses/libtinfo6@6.3-2ubuntu0.1 + docker-image|quay.io/argoproj/argocd@v2.10.9 and ncurses/libtinfo6@6.3-2ubuntu0.1
                                          @@ -3087,7 +2858,7 @@

                                          Detailed paths

                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 ncurses/libtinfo6@6.3-2ubuntu0.1 @@ -3096,7 +2867,7 @@

                                            Detailed paths

                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 bash@5.1-6ubuntu1.1 @@ -3107,7 +2878,7 @@

                                            Detailed paths

                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 ncurses/libncursesw6@6.3-2ubuntu0.1 @@ -3118,9 +2889,9 @@

                                            Detailed paths

                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 - less@590-1ubuntu0.22.04.2 + less@590-1ubuntu0.22.04.3 ncurses/libtinfo6@6.3-2ubuntu0.1 @@ -3129,7 +2900,7 @@

                                            Detailed paths

                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 libedit/libedit2@3.1-20210910-1build1 @@ -3140,7 +2911,7 @@

                                            Detailed paths

                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 ncurses/libncurses6@6.3-2ubuntu0.1 @@ -3151,7 +2922,7 @@

                                            Detailed paths

                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 ncurses/ncurses-bin@6.3-2ubuntu0.1 @@ -3162,7 +2933,7 @@

                                            Detailed paths

                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 procps@2:3.3.17-6ubuntu2.1 @@ -3173,7 +2944,7 @@

                                            Detailed paths

                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 util-linux@2.37.2-4ubuntu3.4 @@ -3184,7 +2955,7 @@

                                            Detailed paths

                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -3199,7 +2970,7 @@

                                            Detailed paths

                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3214,7 +2985,7 @@

                                            Detailed paths

                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 ncurses/libncursesw6@6.3-2ubuntu0.1 @@ -3223,7 +2994,7 @@

                                            Detailed paths

                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 procps@2:3.3.17-6ubuntu2.1 @@ -3234,7 +3005,7 @@

                                            Detailed paths

                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3249,7 +3020,7 @@

                                            Detailed paths

                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 ncurses/libncurses6@6.3-2ubuntu0.1 @@ -3258,7 +3029,7 @@

                                            Detailed paths

                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 procps@2:3.3.17-6ubuntu2.1 @@ -3269,7 +3040,7 @@

                                            Detailed paths

                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 ncurses/ncurses-base@6.3-2ubuntu0.1 @@ -3278,7 +3049,7 @@

                                            Detailed paths

                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 ncurses/ncurses-bin@6.3-2ubuntu0.1 @@ -3325,7 +3096,7 @@

                                            CVE-2023-45918

                                            • - Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.9/argoproj/argocd Dockerfile
                                            • Package Manager: ubuntu:22.04 @@ -3338,7 +3109,7 @@

                                              CVE-2023-45918

                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 and ncurses/libtinfo6@6.3-2ubuntu0.1 + docker-image|quay.io/argoproj/argocd@v2.10.9 and ncurses/libtinfo6@6.3-2ubuntu0.1
                                            @@ -3351,7 +3122,7 @@

                                            Detailed paths

                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 ncurses/libtinfo6@6.3-2ubuntu0.1 @@ -3360,7 +3131,7 @@

                                              Detailed paths

                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 bash@5.1-6ubuntu1.1 @@ -3371,7 +3142,7 @@

                                              Detailed paths

                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 ncurses/libncursesw6@6.3-2ubuntu0.1 @@ -3382,9 +3153,9 @@

                                              Detailed paths

                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 - less@590-1ubuntu0.22.04.2 + less@590-1ubuntu0.22.04.3 ncurses/libtinfo6@6.3-2ubuntu0.1 @@ -3393,7 +3164,7 @@

                                              Detailed paths

                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 libedit/libedit2@3.1-20210910-1build1 @@ -3404,7 +3175,7 @@

                                              Detailed paths

                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 ncurses/libncurses6@6.3-2ubuntu0.1 @@ -3415,7 +3186,7 @@

                                              Detailed paths

                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 ncurses/ncurses-bin@6.3-2ubuntu0.1 @@ -3426,7 +3197,7 @@

                                              Detailed paths

                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 procps@2:3.3.17-6ubuntu2.1 @@ -3437,7 +3208,7 @@

                                              Detailed paths

                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 util-linux@2.37.2-4ubuntu3.4 @@ -3448,7 +3219,7 @@

                                              Detailed paths

                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -3463,7 +3234,7 @@

                                              Detailed paths

                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3478,7 +3249,7 @@

                                              Detailed paths

                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 ncurses/libncursesw6@6.3-2ubuntu0.1 @@ -3487,7 +3258,7 @@

                                              Detailed paths

                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 procps@2:3.3.17-6ubuntu2.1 @@ -3498,7 +3269,7 @@

                                              Detailed paths

                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3513,7 +3284,7 @@

                                              Detailed paths

                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 ncurses/libncurses6@6.3-2ubuntu0.1 @@ -3522,7 +3293,7 @@

                                              Detailed paths

                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 procps@2:3.3.17-6ubuntu2.1 @@ -3533,7 +3304,7 @@

                                              Detailed paths

                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 ncurses/ncurses-base@6.3-2ubuntu0.1 @@ -3542,7 +3313,7 @@

                                              Detailed paths

                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 ncurses/ncurses-bin@6.3-2ubuntu0.1 @@ -3587,7 +3358,7 @@

                                              Resource Exhaustion

                                              • - Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.9/argoproj/argocd Dockerfile
                                              • Package Manager: ubuntu:22.04 @@ -3600,7 +3371,7 @@

                                                Resource Exhaustion

                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 and libzstd/libzstd1@1.4.8+dfsg-3build1 + docker-image|quay.io/argoproj/argocd@v2.10.9 and libzstd/libzstd1@1.4.8+dfsg-3build1
                                              @@ -3613,7 +3384,7 @@

                                              Detailed paths

                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 libzstd/libzstd1@1.4.8+dfsg-3build1 @@ -3664,7 +3435,7 @@

                                                Integer Overflow or Wraparound

                                                • - Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.9/argoproj/argocd Dockerfile
                                                • Package Manager: ubuntu:22.04 @@ -3677,7 +3448,7 @@

                                                  Integer Overflow or Wraparound

                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 and krb5/libk5crypto3@1.19.2-2ubuntu0.3 + docker-image|quay.io/argoproj/argocd@v2.10.9 and krb5/libk5crypto3@1.19.2-2ubuntu0.3
                                                @@ -3690,7 +3461,7 @@

                                                Detailed paths

                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 krb5/libk5crypto3@1.19.2-2ubuntu0.3 @@ -3699,7 +3470,7 @@

                                                  Detailed paths

                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 adduser@3.118ubuntu5 @@ -3720,7 +3491,7 @@

                                                  Detailed paths

                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 adduser@3.118ubuntu5 @@ -3743,7 +3514,7 @@

                                                  Detailed paths

                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 krb5/libkrb5-3@1.19.2-2ubuntu0.3 @@ -3752,7 +3523,7 @@

                                                  Detailed paths

                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 adduser@3.118ubuntu5 @@ -3773,7 +3544,7 @@

                                                  Detailed paths

                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -3782,7 +3553,7 @@

                                                  Detailed paths

                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 openssh/openssh-client@1:8.9p1-3ubuntu0.7 @@ -3793,7 +3564,7 @@

                                                  Detailed paths

                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 git@1:2.34.1-1ubuntu1.10 @@ -3806,7 +3577,7 @@

                                                  Detailed paths

                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 git@1:2.34.1-1ubuntu1.10 @@ -3821,7 +3592,7 @@

                                                  Detailed paths

                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 adduser@3.118ubuntu5 @@ -3840,7 +3611,7 @@

                                                  Detailed paths

                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 krb5/libkrb5support0@1.19.2-2ubuntu0.3 @@ -3888,7 +3659,7 @@

                                                  Out-of-bounds Write

                                                  • - Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.9/argoproj/argocd Dockerfile
                                                  • Package Manager: ubuntu:22.04 @@ -3901,7 +3672,7 @@

                                                    Out-of-bounds Write

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 and gnupg2/gpgv@2.2.27-3ubuntu2.1 + docker-image|quay.io/argoproj/argocd@v2.10.9 and gnupg2/gpgv@2.2.27-3ubuntu2.1
                                                  @@ -3914,7 +3685,7 @@

                                                  Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 gnupg2/gpgv@2.2.27-3ubuntu2.1 @@ -3923,7 +3694,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 apt@2.4.12 @@ -3934,7 +3705,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3945,7 +3716,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 gnupg2/dirmngr@2.2.27-3ubuntu2.1 @@ -3956,7 +3727,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -3967,7 +3738,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3980,7 +3751,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3993,7 +3764,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 gnupg2/dirmngr@2.2.27-3ubuntu2.1 @@ -4002,7 +3773,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4013,7 +3784,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4026,7 +3797,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 gnupg2/gnupg-l10n@2.2.27-3ubuntu2.1 @@ -4035,7 +3806,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4046,7 +3817,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 gnupg2/gnupg-utils@2.2.27-3ubuntu2.1 @@ -4055,7 +3826,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4066,7 +3837,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -4075,7 +3846,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4086,7 +3857,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4099,7 +3870,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4112,7 +3883,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 gnupg2/gpg-agent@2.2.27-3ubuntu2.1 @@ -4121,7 +3892,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4132,7 +3903,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4145,7 +3916,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4158,7 +3929,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 gnupg2/gpg-wks-client@2.2.27-3ubuntu2.1 @@ -4167,7 +3938,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4178,7 +3949,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 gnupg2/gpg-wks-server@2.2.27-3ubuntu2.1 @@ -4187,7 +3958,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4198,7 +3969,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 gnupg2/gpgsm@2.2.27-3ubuntu2.1 @@ -4207,7 +3978,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4218,7 +3989,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4267,7 +4038,7 @@

                                                    Allocation of Resources Without Limits or Throttling

                                                  • - Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.9/argoproj/argocd Dockerfile
                                                  • Package Manager: ubuntu:22.04 @@ -4280,7 +4051,7 @@

                                                    Allocation of Resources Without Limits or Throttling

                                                    Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 and glibc/libc-bin@2.35-0ubuntu3.7 + docker-image|quay.io/argoproj/argocd@v2.10.9 and glibc/libc-bin@2.35-0ubuntu3.7
                                                  @@ -4293,7 +4064,7 @@

                                                  Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 glibc/libc-bin@2.35-0ubuntu3.7 @@ -4302,7 +4073,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 glibc/libc6@2.35-0ubuntu3.7 @@ -4348,7 +4119,7 @@

                                                    Improper Input Validation

                                                    • - Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.9/argoproj/argocd Dockerfile
                                                    • Package Manager: ubuntu:22.04 @@ -4362,7 +4133,7 @@

                                                      Improper Input Validation

                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13, git@1:2.34.1-1ubuntu1.10 and others + docker-image|quay.io/argoproj/argocd@v2.10.9, git@1:2.34.1-1ubuntu1.10 and others
                                                    @@ -4374,7 +4145,7 @@

                                                    Detailed paths

                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 git@1:2.34.1-1ubuntu1.10 @@ -4385,7 +4156,7 @@

                                                      Detailed paths

                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 git@1:2.34.1-1ubuntu1.10 @@ -4394,7 +4165,7 @@

                                                      Detailed paths

                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 git-lfs@3.0.2-1ubuntu0.2 @@ -4441,7 +4212,7 @@

                                                      Uncontrolled Recursion

                                                      • - Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.9/argoproj/argocd Dockerfile
                                                      • Package Manager: ubuntu:22.04 @@ -4454,7 +4225,7 @@

                                                        Uncontrolled Recursion

                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 and gcc-12/libstdc++6@12.3.0-1ubuntu1~22.04 + docker-image|quay.io/argoproj/argocd@v2.10.9 and gcc-12/libstdc++6@12.3.0-1ubuntu1~22.04
                                                      @@ -4467,7 +4238,7 @@

                                                      Detailed paths

                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 gcc-12/libstdc++6@12.3.0-1ubuntu1~22.04 @@ -4476,7 +4247,7 @@

                                                        Detailed paths

                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 apt@2.4.12 @@ -4487,7 +4258,7 @@

                                                        Detailed paths

                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 apt@2.4.12 @@ -4500,7 +4271,7 @@

                                                        Detailed paths

                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 gcc-12/gcc-12-base@12.3.0-1ubuntu1~22.04 @@ -4509,7 +4280,7 @@

                                                        Detailed paths

                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 + docker-image|quay.io/argoproj/argocd@v2.10.9 gcc-12/libgcc-s1@12.3.0-1ubuntu1~22.04 @@ -4556,7 +4327,7 @@

                                                        Improper Input Validation

                                                        • - Manifest file: quay.io/argoproj/argocd:v2.9.13/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.10.9/argoproj/argocd Dockerfile
                                                        • Package Manager: ubuntu:22.04 @@ -4569,7 +4340,7 @@

                                                          Improper Input Validation

                                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.9.13 and coreutils@8.32-4.1ubuntu1.2 + docker-image|quay.io/argoproj/argocd@v2.10.9 and coreutils@8.32-4.1ubuntu1.2
                                                        @@ -4582,7 +4353,7 @@

                                                        Detailed paths

                                                        diff --git a/docs/snyk/v2.11.0-rc2/argocd-iac-install.html b/docs/snyk/v2.11.0-rc3/argocd-iac-install.html similarity index 99% rename from docs/snyk/v2.11.0-rc2/argocd-iac-install.html rename to docs/snyk/v2.11.0-rc3/argocd-iac-install.html index 85b1abab5bdf4..444385fc2e128 100644 --- a/docs/snyk/v2.11.0-rc2/argocd-iac-install.html +++ b/docs/snyk/v2.11.0-rc3/argocd-iac-install.html @@ -456,7 +456,7 @@

                                                        Snyk test report

                                                        -

                                                        April 28th 2024, 12:20:03 am (UTC+00:00)

                                                        +

                                                        May 5th 2024, 12:20:19 am (UTC+00:00)

                                                        Scanned the following path: @@ -2591,7 +2591,7 @@

                                                        Container's or Pod's UID could clash with hos

                                                      • - Line number: 22830 + Line number: 22836
                                                      diff --git a/docs/snyk/v2.11.0-rc2/argocd-iac-namespace-install.html b/docs/snyk/v2.11.0-rc3/argocd-iac-namespace-install.html similarity index 99% rename from docs/snyk/v2.11.0-rc2/argocd-iac-namespace-install.html rename to docs/snyk/v2.11.0-rc3/argocd-iac-namespace-install.html index 47b02ad37cf03..c811849f8fab8 100644 --- a/docs/snyk/v2.11.0-rc2/argocd-iac-namespace-install.html +++ b/docs/snyk/v2.11.0-rc3/argocd-iac-namespace-install.html @@ -456,7 +456,7 @@

                                                      Snyk test report

                                                      -

                                                      April 28th 2024, 12:20:13 am (UTC+00:00)

                                                      +

                                                      May 5th 2024, 12:20:29 am (UTC+00:00)

                                                      Scanned the following path: @@ -2545,7 +2545,7 @@

                                                      Container's or Pod's UID could clash with hos

                                                    • - Line number: 1951 + Line number: 1957
                                                    diff --git a/docs/snyk/v2.11.0-rc2/argocd-test.html b/docs/snyk/v2.11.0-rc3/argocd-test.html similarity index 95% rename from docs/snyk/v2.11.0-rc2/argocd-test.html rename to docs/snyk/v2.11.0-rc3/argocd-test.html index 294013c30117c..166d4809e425b 100644 --- a/docs/snyk/v2.11.0-rc2/argocd-test.html +++ b/docs/snyk/v2.11.0-rc3/argocd-test.html @@ -7,7 +7,7 @@ Snyk test report - + @@ -456,7 +456,7 @@

                                                    Snyk test report

                                                    -

                                                    April 28th 2024, 12:18:15 am (UTC+00:00)

                                                    +

                                                    May 5th 2024, 12:18:17 am (UTC+00:00)

                                                    Scanned the following paths: @@ -467,9 +467,9 @@

                                                    Snyk test report

                                                    -
                                                    12 known vulnerabilities
                                                    -
                                                    290 vulnerable dependency paths
                                                    -
                                                    2037 dependencies
                                                    +
                                                    11 known vulnerabilities
                                                    +
                                                    284 vulnerable dependency paths
                                                    +
                                                    2039 dependencies

    @@ -910,7 +910,7 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/controller@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/controller@#f48567108f01 k8s.io/client-go/tools/cache@0.26.11 @@ -1030,7 +1030,7 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -1368,7 +1368,7 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/api@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/api@#f48567108f01 k8s.io/client-go/listers/core/v1@0.26.11 @@ -1385,7 +1385,7 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/cmd@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/cmd@#f48567108f01 k8s.io/client-go/tools/clientcmd@0.26.11 @@ -1487,9 +1487,9 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -1504,9 +1504,9 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/cmd@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/cmd@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -1996,11 +1996,11 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/api@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/api@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -2015,11 +2015,11 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/controller@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/controller@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -2160,7 +2160,7 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/controller@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/controller@#f48567108f01 k8s.io/client-go/tools/cache@0.26.11 @@ -2286,7 +2286,7 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -2328,7 +2328,7 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/api@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/api@#f48567108f01 k8s.io/client-go/listers/core/v1@0.26.11 @@ -2462,9 +2462,9 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -2600,9 +2600,9 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/cmd@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/cmd@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -2673,7 +2673,7 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/cmd@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/cmd@#f48567108f01 k8s.io/client-go/tools/clientcmd@0.26.11 @@ -2823,11 +2823,11 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/api@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/api@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -2923,11 +2923,11 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/controller@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/controller@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -3506,7 +3506,7 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -3556,9 +3556,9 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -3583,9 +3583,9 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/cmd@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/cmd@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -3610,11 +3610,11 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/api@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/api@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -3639,11 +3639,11 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/controller@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/controller@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -3788,7 +3788,7 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -3805,7 +3805,7 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -3992,9 +3992,9 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -4011,9 +4011,9 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/cmd@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/cmd@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -4030,9 +4030,9 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -4049,9 +4049,9 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/cmd@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/cmd@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -4277,11 +4277,11 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/api@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/api@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -4298,11 +4298,11 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/controller@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/controller@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -4319,11 +4319,11 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/api@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/api@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -4340,11 +4340,11 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/controller@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/controller@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -4424,7 +4424,7 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -4470,7 +4470,7 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -4520,9 +4520,9 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -4545,9 +4545,9 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/cmd@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/cmd@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -4570,9 +4570,9 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -4597,9 +4597,9 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/cmd@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/cmd@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -4624,11 +4624,11 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/api@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/api@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -4651,11 +4651,11 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/controller@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/controller@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -4678,11 +4678,11 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/api@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/api@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -4707,11 +4707,11 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/controller@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/controller@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -4853,7 +4853,7 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -4870,7 +4870,7 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -5057,9 +5057,9 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -5076,9 +5076,9 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/cmd@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/cmd@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -5095,9 +5095,9 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -5114,9 +5114,9 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/cmd@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/cmd@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -5342,11 +5342,11 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/api@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/api@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -5363,11 +5363,11 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/controller@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/controller@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -5384,11 +5384,11 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/api@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/api@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -5405,11 +5405,11 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/controller@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/controller@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -5489,7 +5489,7 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -5535,7 +5535,7 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -5585,9 +5585,9 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -5610,9 +5610,9 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/cmd@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/cmd@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -5635,9 +5635,9 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -5662,9 +5662,9 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/cmd@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/cmd@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -5689,11 +5689,11 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/api@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/api@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -5716,11 +5716,11 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/controller@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/controller@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -5743,11 +5743,11 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/api@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/api@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -5772,11 +5772,11 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/controller@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/controller@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 google.golang.org/api/chat/v1@0.132.0 @@ -5822,221 +5822,6 @@

    References

    More about this vulnerability

    -
    -
    -

    Regular Expression Denial of Service (ReDoS)

    -
    - -
    - medium severity -
    - -
    - -
      -
    • - Manifest file: /argo-cd/argoproj/argo-cd/v2 go.mod -
      • -
    • - Package Manager: golang -
      • -
    • - Vulnerable module: - - github.com/whilp/git-urls -
      • - -
    • Introduced through: - - github.com/argoproj/argo-cd/v2@0.0.0 and github.com/whilp/git-urls@1.0.2 - -
      • -
    - -
    - - -

    Detailed paths

    - -
      -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/whilp/git-urls@1.0.2 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 - - github.com/whilp/git-urls@1.0.2 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 - - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 - - github.com/whilp/git-urls@1.0.2 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/argoproj/notifications-engine/pkg/cmd@#2daee6022f41 - - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 - - github.com/whilp/git-urls@1.0.2 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/argoproj/notifications-engine/pkg/api@#2daee6022f41 - - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 - - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 - - github.com/whilp/git-urls@1.0.2 - - - -
      • -
    • - Introduced through: - github.com/argoproj/argo-cd/v2@0.0.0 - - github.com/argoproj/notifications-engine/pkg/controller@#2daee6022f41 - - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 - - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 - - github.com/whilp/git-urls@1.0.2 - - - -
      • -
    - -
    - -
    - -

    Overview

    -

    github.com/whilp/git-urls is a Git URLs parser

    -

    Affected versions of this package are vulnerable to Regular Expression Denial of Service (ReDoS) due to the usage of an insecure regular expression in scpSyntax. Exploiting this vulnerability is possible when a long input is provided inside the directory path of the git URL.

    -

    Note: - This vulnerability has existed since commit 4a18977c6eecbf4ce0ca1e486e9ba77072ba4395.

    -

    PoC

    - 
    
-        var payload = strings.Repeat("////", 19000000) //payload used, the number can be tweaked to cause 7 second delay
-        malicious_url := "6en6ar@-:0////" + payload + "\"
-        begin := time.Now()
-        //u, err := giturls.ParseScp("remote_username@10.10.0.2:/remote/directory")// normal git url
-        _, err := giturls.ParseScp(malicious_url)
-        if err != nil {
-        fmt.Errorf("[ - ] Error ->" + err.Error())
-        }
-        //fmt.Println("[ + ] Url --> " + u.Host)
-        elapse := time.Since(begin)
-        fmt.Printf("Function took %s", elapse)
-
    -

    Details

    -

    Denial of Service (DoS) describes a family of attacks, all aimed at making a system inaccessible to its original and legitimate users. There are many types of DoS attacks, ranging from trying to clog the network pipes to the system by generating a large volume of traffic from many machines (a Distributed Denial of Service - DDoS - attack) to sending crafted requests that cause a system to crash or take a disproportional amount of time to process.

    -

    The Regular expression Denial of Service (ReDoS) is a type of Denial of Service attack. Regular expressions are incredibly powerful, but they aren't very intuitive and can ultimately end up making it easy for attackers to take your site down.

    -

    Let’s take the following regular expression as an example:

    - 
    regex = /A(B|C+)+D/
-
    -

    This regular expression accomplishes the following:

    -
      -
    • A The string must start with the letter 'A'
      • -
    • (B|C+)+ The string must then follow the letter A with either the letter 'B' or some number of occurrences of the letter 'C' (the + matches one or more times). The + at the end of this section states that we can look for one or more matches of this section.
      • -
    • D Finally, we ensure this section of the string ends with a 'D'
      • -
    -

    The expression would match inputs such as ABBD, ABCCCCD, ABCBCCCD and ACCCCCD

    -

    It most cases, it doesn't take very long for a regex engine to find a match:

    - 
    $ time node -e '/A(B|C+)+D/.test("ACCCCCCCCCCCCCCCCCCCCCCCCCCCCD")'
-        0.04s user 0.01s system 95% cpu 0.052 total
-        
-        $ time node -e '/A(B|C+)+D/.test("ACCCCCCCCCCCCCCCCCCCCCCCCCCCCX")'
-        1.79s user 0.02s system 99% cpu 1.812 total
-
    -

    The entire process of testing it against a 30 characters long string takes around ~52ms. But when given an invalid string, it takes nearly two seconds to complete the test, over ten times as long as it took to test a valid string. The dramatic difference is due to the way regular expressions get evaluated.

    -

    Most Regex engines will work very similarly (with minor differences). The engine will match the first possible way to accept the current character and proceed to the next one. If it then fails to match the next one, it will backtrack and see if there was another way to digest the previous character. If it goes too far down the rabbit hole only to find out the string doesn’t match in the end, and if many characters have multiple valid regex paths, the number of backtracking steps can become very large, resulting in what is known as catastrophic backtracking.

    -

    Let's look at how our expression runs into this problem, using a shorter string: "ACCCX". While it seems fairly straightforward, there are still four different ways that the engine could match those three C's:

    -
      -
    1. CCC
      2. -
    2. CC+C
      3. -
    3. C+CC
      4. -
    4. C+C+C.
      5. -
    -

    The engine has to try each of those combinations to see if any of them potentially match against the expression. When you combine that with the other steps the engine must take, we can use RegEx 101 debugger to see the engine has to take a total of 38 steps before it can determine the string doesn't match.

    -

    From there, the number of steps the engine must use to validate a string just continues to grow.

    - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
    StringNumber of C'sNumber of steps
    ACCCX338
    ACCCCX471
    ACCCCCX5136
    ACCCCCCCCCCCCCCX1465,553
    -

    By the time the string includes 14 C's, the engine has to take over 65,000 steps just to see if the string is valid. These extreme situations can cause them to work very slowly (exponentially related to input size, as shown above), allowing an attacker to exploit this and can cause the service to excessively consume CPU, resulting in a Denial of Service.

    -

    Remediation

    -

    There is no fixed version for github.com/whilp/git-urls.

    -

    References

    - - -
    - -
    -

    More about this vulnerability

    -
    -

    MPL-2.0 license

    @@ -6209,7 +5994,7 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 github.com/hashicorp/go-retryablehttp@0.7.4 @@ -6231,9 +6016,9 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 github.com/hashicorp/go-retryablehttp@0.7.4 @@ -6244,9 +6029,9 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/cmd@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/cmd@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 github.com/hashicorp/go-retryablehttp@0.7.4 @@ -6257,7 +6042,7 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 github.com/opsgenie/opsgenie-go-sdk-v2/client@1.0.5 @@ -6270,11 +6055,11 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/api@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/api@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 github.com/hashicorp/go-retryablehttp@0.7.4 @@ -6285,11 +6070,11 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/controller@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/controller@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 github.com/hashicorp/go-retryablehttp@0.7.4 @@ -6300,9 +6085,9 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 github.com/opsgenie/opsgenie-go-sdk-v2/client@1.0.5 @@ -6315,9 +6100,9 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/cmd@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/cmd@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 github.com/opsgenie/opsgenie-go-sdk-v2/client@1.0.5 @@ -6330,11 +6115,11 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/api@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/api@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 github.com/opsgenie/opsgenie-go-sdk-v2/client@1.0.5 @@ -6347,11 +6132,11 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/controller@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/controller@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 github.com/opsgenie/opsgenie-go-sdk-v2/client@1.0.5 @@ -6450,7 +6235,7 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 github.com/opsgenie/opsgenie-go-sdk-v2/client@1.0.5 @@ -6465,9 +6250,9 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 github.com/opsgenie/opsgenie-go-sdk-v2/client@1.0.5 @@ -6482,9 +6267,9 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/cmd@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/cmd@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 github.com/opsgenie/opsgenie-go-sdk-v2/client@1.0.5 @@ -6499,11 +6284,11 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/api@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/api@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 github.com/opsgenie/opsgenie-go-sdk-v2/client@1.0.5 @@ -6518,11 +6303,11 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@0.0.0 - github.com/argoproj/notifications-engine/pkg/controller@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/controller@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/subscriptions@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/subscriptions@#f48567108f01 - github.com/argoproj/notifications-engine/pkg/services@#2daee6022f41 + github.com/argoproj/notifications-engine/pkg/services@#f48567108f01 github.com/opsgenie/opsgenie-go-sdk-v2/client@1.0.5 diff --git a/docs/snyk/v2.11.0-rc2/ghcr.io_dexidp_dex_v2.38.0.html b/docs/snyk/v2.11.0-rc3/ghcr.io_dexidp_dex_v2.38.0.html similarity index 99% rename from docs/snyk/v2.11.0-rc2/ghcr.io_dexidp_dex_v2.38.0.html rename to docs/snyk/v2.11.0-rc3/ghcr.io_dexidp_dex_v2.38.0.html index 2f991543459d0..a75d20b2773b7 100644 --- a/docs/snyk/v2.11.0-rc2/ghcr.io_dexidp_dex_v2.38.0.html +++ b/docs/snyk/v2.11.0-rc3/ghcr.io_dexidp_dex_v2.38.0.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    April 28th 2024, 12:18:20 am (UTC+00:00)

    +

    May 5th 2024, 12:18:24 am (UTC+00:00)

    Scanned the following paths: @@ -715,6 +715,8 @@

    References

  • https://security.netapp.com/advisory/ntap-20240216-0009/
  • https://security.netapp.com/advisory/ntap-20240426-0008/
  • https://security.netapp.com/advisory/ntap-20240426-0013/
    • +
  • http://www.openwall.com/lists/oss-security/2024/03/11/1
    • +
  • https://security.netapp.com/advisory/ntap-20240503-0011/
    • @@ -868,6 +870,7 @@

    References

  • https://github.openssl.org/openssl/extended-releases/commit/aebaa5883e31122b404e450732dc833dc9dee539
  • https://www.openssl.org/news/secadv/20240125.txt
  • https://security.netapp.com/advisory/ntap-20240208-0006/
    • +
  • http://www.openwall.com/lists/oss-security/2024/03/11/1
    • @@ -2654,6 +2657,7 @@

    References

  • https://github.com/openssl/openssl/commit/18c02492138d1eb8b6548cb26e7b625fb2414a2a
  • https://github.com/openssl/openssl/commit/a830f551557d3d66a84bbb18a5b889c640c36294
  • https://www.openssl.org/news/secadv/20240115.txt
    • +
  • http://www.openwall.com/lists/oss-security/2024/03/11/1
    • @@ -2804,6 +2808,8 @@

    References

  • https://github.com/openssl/openssl/commit/e9d7083e241670332e0443da0f0d4ffb52829f08
  • https://github.openssl.org/openssl/extended-releases/commit/5f8d25770ae6437db119dfc951e207271a326640
  • https://www.openssl.org/news/secadv/20240408.txt
    • +
  • http://www.openwall.com/lists/oss-security/2024/04/08/5
    • +
  • https://security.netapp.com/advisory/ntap-20240503-0013/
    • diff --git a/docs/snyk/v2.9.13/haproxy_2.6.14-alpine.html b/docs/snyk/v2.11.0-rc3/haproxy_2.6.14-alpine.html similarity index 98% rename from docs/snyk/v2.9.13/haproxy_2.6.14-alpine.html rename to docs/snyk/v2.11.0-rc3/haproxy_2.6.14-alpine.html index 6eb66eb2025ec..f9e040cba19f3 100644 --- a/docs/snyk/v2.9.13/haproxy_2.6.14-alpine.html +++ b/docs/snyk/v2.11.0-rc3/haproxy_2.6.14-alpine.html @@ -456,7 +456,7 @@

    Snyk test report

    -

    April 28th 2024, 12:22:46 am (UTC+00:00)

    +

    May 5th 2024, 12:18:28 am (UTC+00:00)

    Scanned the following path: @@ -851,6 +851,7 @@

    References

  • https://www.openssl.org/news/secadv/20231106.txt
  • http://www.openwall.com/lists/oss-security/2023/11/06/2
  • https://security.netapp.com/advisory/ntap-20231130-0010/
    • +
  • http://www.openwall.com/lists/oss-security/2024/03/11/1
    • @@ -1038,6 +1039,8 @@

    References

  • https://security.netapp.com/advisory/ntap-20240216-0009/
  • https://security.netapp.com/advisory/ntap-20240426-0008/
  • https://security.netapp.com/advisory/ntap-20240426-0013/
    • +
  • http://www.openwall.com/lists/oss-security/2024/03/11/1
    • +
  • https://security.netapp.com/advisory/ntap-20240503-0011/
    • @@ -1213,6 +1216,7 @@

    References

  • https://github.openssl.org/openssl/extended-releases/commit/aebaa5883e31122b404e450732dc833dc9dee539
  • https://www.openssl.org/news/secadv/20240125.txt
  • https://security.netapp.com/advisory/ntap-20240208-0006/
    • +
  • http://www.openwall.com/lists/oss-security/2024/03/11/1
    • @@ -1389,6 +1393,7 @@

    References

  • https://github.com/openssl/openssl/commit/18c02492138d1eb8b6548cb26e7b625fb2414a2a
  • https://github.com/openssl/openssl/commit/a830f551557d3d66a84bbb18a5b889c640c36294
  • https://www.openssl.org/news/secadv/20240115.txt
    • +
  • http://www.openwall.com/lists/oss-security/2024/03/11/1
    • @@ -1561,6 +1566,8 @@

    References

  • https://github.com/openssl/openssl/commit/e9d7083e241670332e0443da0f0d4ffb52829f08
  • https://github.openssl.org/openssl/extended-releases/commit/5f8d25770ae6437db119dfc951e207271a326640
  • https://www.openssl.org/news/secadv/20240408.txt
    • +
  • http://www.openwall.com/lists/oss-security/2024/04/08/5
    • +
  • https://security.netapp.com/advisory/ntap-20240503-0013/
    • diff --git a/docs/snyk/v2.11.0-rc2/quay.io_argoproj_argocd_v2.11.0-rc2.html b/docs/snyk/v2.11.0-rc3/quay.io_argoproj_argocd_v2.11.0-rc3.html similarity index 89% rename from docs/snyk/v2.11.0-rc2/quay.io_argoproj_argocd_v2.11.0-rc2.html rename to docs/snyk/v2.11.0-rc3/quay.io_argoproj_argocd_v2.11.0-rc3.html index 6f676b0935df4..049a698fdee3c 100644 --- a/docs/snyk/v2.11.0-rc2/quay.io_argoproj_argocd_v2.11.0-rc2.html +++ b/docs/snyk/v2.11.0-rc3/quay.io_argoproj_argocd_v2.11.0-rc3.html @@ -7,7 +7,7 @@ Snyk test report - + @@ -456,23 +456,23 @@

    Snyk test report

    -

    April 28th 2024, 12:18:41 am (UTC+00:00)

    +

    May 5th 2024, 12:18:53 am (UTC+00:00)

    Scanned the following paths:
      -
    • quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argocd/Dockerfile (deb)
      • -
    • quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argo-cd/v2//usr/local/bin/argocd (gomodules)
      • -
    • quay.io/argoproj/argocd:v2.11.0-rc2//usr/local/bin/kustomize (gomodules)
      • -
    • quay.io/argoproj/argocd:v2.11.0-rc2/helm/v3//usr/local/bin/helm (gomodules)
      • -
    • quay.io/argoproj/argocd:v2.11.0-rc2/git-lfs/git-lfs//usr/bin/git-lfs (gomodules)
      • +
    • quay.io/argoproj/argocd:v2.11.0-rc3/argoproj/argocd/Dockerfile (deb)
      • +
    • quay.io/argoproj/argocd:v2.11.0-rc3/argoproj/argo-cd/v2//usr/local/bin/argocd (gomodules)
      • +
    • quay.io/argoproj/argocd:v2.11.0-rc3//usr/local/bin/kustomize (gomodules)
      • +
    • quay.io/argoproj/argocd:v2.11.0-rc3/helm/v3//usr/local/bin/helm (gomodules)
      • +
    • quay.io/argoproj/argocd:v2.11.0-rc3/git-lfs/git-lfs//usr/bin/git-lfs (gomodules)
    -
    34 known vulnerabilities
    -
    169 vulnerable dependency paths
    -
    2276 dependencies
    +
    30 known vulnerabilities
    +
    164 vulnerable dependency paths
    +
    2277 dependencies
    @@ -492,7 +492,7 @@

    Allocation of Resources Without Limits or Throttling

  • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc3/argoproj/argo-cd/v2 /usr/local/bin/argocd
  • Package Manager: golang @@ -572,7 +572,7 @@

    CVE-2020-22916

    • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc3/argoproj/argocd Dockerfile
    • Package Manager: ubuntu:22.04 @@ -585,7 +585,7 @@

      CVE-2020-22916

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 and xz-utils/liblzma5@5.2.5-2ubuntu1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 and xz-utils/liblzma5@5.2.5-2ubuntu1
    @@ -598,7 +598,7 @@

    Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 xz-utils/liblzma5@5.2.5-2ubuntu1 @@ -635,161 +635,6 @@

      References

      More about this vulnerability

    • -
    -
    -

    CVE-2023-51767

    -
    - -
    - medium severity -
    - -
    - -
      -
    • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argocd Dockerfile -
      • -
    • - Package Manager: ubuntu:22.04 -
      • -
    • - Vulnerable module: - - openssh/openssh-client -
      • - -
    • Introduced through: - - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 and openssh/openssh-client@1:8.9p1-3ubuntu0.6 - -
      • -
    - -
    - - -

    Detailed paths

    - -
      -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 - - openssh/openssh-client@1:8.9p1-3ubuntu0.6 - - - -
      • -
    - -
    - -
    - -

    NVD Description

    -

    Note: Versions mentioned in the description apply only to the upstream openssh package and not the openssh package as distributed by Ubuntu. - See How to fix? for Ubuntu:22.04 relevant fixed versions and status.

    -

    OpenSSH through 9.6, when common types of DRAM are used, might allow row hammer attacks (for authentication bypass) because the integer value of authenticated in mm_answer_authpassword does not resist flips of a single bit. NOTE: this is applicable to a certain threat model of attacker-victim co-location in which the attacker has user privileges.

    -

    Remediation

    -

    There is no fixed version for Ubuntu:22.04 openssh.

    -

    References

    - - -
    - -
    -

    More about this vulnerability

    -
    - -
    -
    -

    CVE-2024-28182

    -
    - -
    - medium severity -
    - -
    - -
      -
    • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argocd Dockerfile -
      • -
    • - Package Manager: ubuntu:22.04 -
      • -
    • - Vulnerable module: - - nghttp2/libnghttp2-14 -
      • - -
    • Introduced through: - - - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2, git@1:2.34.1-1ubuntu1.10 and others -
      • -
    - -
    - - -

    Detailed paths

    - -
      -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 - - git@1:2.34.1-1ubuntu1.10 - - curl/libcurl3-gnutls@7.81.0-1ubuntu1.16 - - nghttp2/libnghttp2-14@1.43.0-1ubuntu0.1 - - - -
      • -
    - -
    - -
    - -

    NVD Description

    -

    Note: Versions mentioned in the description apply only to the upstream nghttp2 package and not the nghttp2 package as distributed by Ubuntu. - See How to fix? for Ubuntu:22.04 relevant fixed versions and status.

    -

    nghttp2 is an implementation of the Hypertext Transfer Protocol version 2 in C. The nghttp2 library prior to version 1.61.0 keeps reading the unbounded number of HTTP/2 CONTINUATION frames even after a stream is reset to keep HPACK context in sync. This causes excessive CPU usage to decode HPACK stream. nghttp2 v1.61.0 mitigates this vulnerability by limiting the number of CONTINUATION frames it accepts per stream. There is no workaround for this vulnerability.

    -

    Remediation

    -

    Upgrade Ubuntu:22.04 nghttp2 to version 1.43.0-1ubuntu0.2 or higher.

    -

    References

    - - -
    - -
    -

    More about this vulnerability

    -
    -

    Information Exposure

    @@ -803,7 +648,7 @@

    Information Exposure

    • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc3/argoproj/argocd Dockerfile
    • Package Manager: ubuntu:22.04 @@ -816,7 +661,7 @@

      Information Exposure

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 and libgcrypt20@1.9.4-3ubuntu3 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 and libgcrypt20@1.9.4-3ubuntu3
    @@ -829,7 +674,7 @@

    Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 libgcrypt20@1.9.4-3ubuntu3 @@ -838,7 +683,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 gnupg2/dirmngr@2.2.27-3ubuntu2.1 @@ -849,7 +694,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -860,7 +705,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 apt@2.4.12 @@ -873,7 +718,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 apt@2.4.12 @@ -886,7 +731,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -899,7 +744,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -912,7 +757,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -925,7 +770,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -938,7 +783,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -951,7 +796,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -964,7 +809,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 apt@2.4.12 @@ -1003,78 +848,6 @@

      References

      More about this vulnerability

    -
    -
    -

    CVE-2024-32487

    -
    - -
    - medium severity -
    - -
    - -
      -
    • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argocd Dockerfile -
      • -
    • - Package Manager: ubuntu:22.04 -
      • -
    • - Vulnerable module: - - less -
      • - -
    • Introduced through: - - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 and less@590-1ubuntu0.22.04.2 - -
      • -
    - -
    - - -

    Detailed paths

    - -
      -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 - - less@590-1ubuntu0.22.04.2 - - - -
      • -
    - -
    - -
    - -

    NVD Description

    -

    Note: Versions mentioned in the description apply only to the upstream less package and not the less package as distributed by Ubuntu. - See How to fix? for Ubuntu:22.04 relevant fixed versions and status.

    -

    less through 653 allows OS command execution via a newline character in the name of a file, because quoting is mishandled in filename.c. Exploitation typically requires use with attacker-controlled file names, such as the files extracted from an untrusted archive. Exploitation also requires the LESSOPEN environment variable, but this is set by default in many common cases.

    -

    Remediation

    -

    There is no fixed version for Ubuntu:22.04 less.

    -

    References

    - - -
    - -
    -

    More about this vulnerability

    -
    -

    CVE-2024-26461

    @@ -1088,7 +861,7 @@

    CVE-2024-26461

    • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc3/argoproj/argocd Dockerfile
    • Package Manager: ubuntu:22.04 @@ -1101,7 +874,7 @@

      CVE-2024-26461

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 and krb5/libk5crypto3@1.19.2-2ubuntu0.3 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 and krb5/libk5crypto3@1.19.2-2ubuntu0.3
    @@ -1114,7 +887,7 @@

    Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 krb5/libk5crypto3@1.19.2-2ubuntu0.3 @@ -1123,7 +896,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 adduser@3.118ubuntu5 @@ -1144,7 +917,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 adduser@3.118ubuntu5 @@ -1167,7 +940,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 krb5/libkrb5-3@1.19.2-2ubuntu0.3 @@ -1176,7 +949,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 adduser@3.118ubuntu5 @@ -1197,7 +970,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -1206,9 +979,9 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 - openssh/openssh-client@1:8.9p1-3ubuntu0.6 + openssh/openssh-client@1:8.9p1-3ubuntu0.7 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -1217,7 +990,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 git@1:2.34.1-1ubuntu1.10 @@ -1230,7 +1003,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 git@1:2.34.1-1ubuntu1.10 @@ -1245,7 +1018,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 adduser@3.118ubuntu5 @@ -1264,7 +1037,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 krb5/libkrb5support0@1.19.2-2ubuntu0.3 @@ -1308,7 +1081,7 @@

      CVE-2024-26462

      • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc3/argoproj/argocd Dockerfile
      • Package Manager: ubuntu:22.04 @@ -1321,7 +1094,7 @@

        CVE-2024-26462

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 and krb5/libk5crypto3@1.19.2-2ubuntu0.3 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 and krb5/libk5crypto3@1.19.2-2ubuntu0.3
      @@ -1334,7 +1107,7 @@

      Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 krb5/libk5crypto3@1.19.2-2ubuntu0.3 @@ -1343,7 +1116,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 adduser@3.118ubuntu5 @@ -1364,7 +1137,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 adduser@3.118ubuntu5 @@ -1387,7 +1160,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 krb5/libkrb5-3@1.19.2-2ubuntu0.3 @@ -1396,7 +1169,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 adduser@3.118ubuntu5 @@ -1417,7 +1190,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -1426,9 +1199,9 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 - openssh/openssh-client@1:8.9p1-3ubuntu0.6 + openssh/openssh-client@1:8.9p1-3ubuntu0.7 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -1437,7 +1210,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 git@1:2.34.1-1ubuntu1.10 @@ -1450,7 +1223,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 git@1:2.34.1-1ubuntu1.10 @@ -1465,7 +1238,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 adduser@3.118ubuntu5 @@ -1484,7 +1257,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 krb5/libkrb5support0@1.19.2-2ubuntu0.3 @@ -1528,7 +1301,7 @@

        CVE-2024-26458

        • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc3/argoproj/argocd Dockerfile
        • Package Manager: ubuntu:22.04 @@ -1541,7 +1314,7 @@

          CVE-2024-26458

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 and krb5/libk5crypto3@1.19.2-2ubuntu0.3 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 and krb5/libk5crypto3@1.19.2-2ubuntu0.3
        @@ -1554,7 +1327,7 @@

        Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 krb5/libk5crypto3@1.19.2-2ubuntu0.3 @@ -1563,7 +1336,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 adduser@3.118ubuntu5 @@ -1584,7 +1357,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 adduser@3.118ubuntu5 @@ -1607,7 +1380,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 krb5/libkrb5-3@1.19.2-2ubuntu0.3 @@ -1616,7 +1389,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 adduser@3.118ubuntu5 @@ -1637,7 +1410,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -1646,9 +1419,9 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 - openssh/openssh-client@1:8.9p1-3ubuntu0.6 + openssh/openssh-client@1:8.9p1-3ubuntu0.7 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -1657,7 +1430,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 git@1:2.34.1-1ubuntu1.10 @@ -1670,7 +1443,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 git@1:2.34.1-1ubuntu1.10 @@ -1685,7 +1458,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 adduser@3.118ubuntu5 @@ -1704,7 +1477,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 krb5/libkrb5support0@1.19.2-2ubuntu0.3 @@ -1748,7 +1521,7 @@

          LGPL-3.0 license

          • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc3/argoproj/argo-cd/v2 /usr/local/bin/argocd
          • Package Manager: golang @@ -1808,7 +1581,7 @@

            Infinite loop

            • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc3/argoproj/argo-cd/v2 /usr/local/bin/argocd
            • Package Manager: golang @@ -1879,7 +1652,7 @@

              Stack-based Buffer Overflow

              • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc3/argoproj/argo-cd/v2 /usr/local/bin/argocd
              • Package Manager: golang @@ -1947,7 +1720,7 @@

                Infinite loop

                • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc3/argoproj/argo-cd/v2 /usr/local/bin/argocd
                • Package Manager: golang @@ -2005,88 +1778,6 @@

                  References

                  More about this vulnerability

    -
    -
    -

    CVE-2024-2961

    -
    - -
    - medium severity -
    - -
    - -
      -
    • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argocd Dockerfile -
      • -
    • - Package Manager: ubuntu:22.04 -
      • -
    • - Vulnerable module: - - glibc/libc-bin -
      • - -
    • Introduced through: - - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 and glibc/libc-bin@2.35-0ubuntu3.6 - -
      • -
    - -
    - - -

    Detailed paths

    - -
      -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 - - glibc/libc-bin@2.35-0ubuntu3.6 - - - -
      • -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 - - glibc/libc6@2.35-0ubuntu3.6 - - - -
      • -
    - -
    - -
    - -

    NVD Description

    -

    Note: Versions mentioned in the description apply only to the upstream glibc package and not the glibc package as distributed by Ubuntu. - See How to fix? for Ubuntu:22.04 relevant fixed versions and status.

    -

    The iconv() function in the GNU C Library versions 2.39 and older may overflow the output buffer passed to it by up to 4 bytes when converting strings to the ISO-2022-CN-EXT character set, which may be used to crash an application or overwrite a neighbouring variable.

    -

    Remediation

    -

    Upgrade Ubuntu:22.04 glibc to version 2.35-0ubuntu3.7 or higher.

    -

    References

    - - -
    - -
    -

    More about this vulnerability

    -
    -

    MPL-2.0 license

    @@ -2100,7 +1791,7 @@

    MPL-2.0 license

    • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc3/argoproj/argo-cd/v2 /usr/local/bin/argocd
    • Package Manager: golang @@ -2160,7 +1851,7 @@

      MPL-2.0 license

      • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc3/argoproj/argo-cd/v2 /usr/local/bin/argocd
      • Package Manager: golang @@ -2220,7 +1911,7 @@

        MPL-2.0 license

        • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc3/argoproj/argo-cd/v2 /usr/local/bin/argocd
        • Package Manager: golang @@ -2280,7 +1971,7 @@

          MPL-2.0 license

          • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/helm/v3 /usr/local/bin/helm + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc3/helm/v3 /usr/local/bin/helm
          • Package Manager: golang @@ -2340,7 +2031,7 @@

            MPL-2.0 license

            • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc3/argoproj/argo-cd/v2 /usr/local/bin/argocd
            • Package Manager: golang @@ -2400,7 +2091,7 @@

              MPL-2.0 license

              • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc3/argoproj/argo-cd/v2 /usr/local/bin/argocd
              • Package Manager: golang @@ -2460,7 +2151,7 @@

                CVE-2023-7008

                • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc3/argoproj/argocd Dockerfile
                • Package Manager: ubuntu:22.04 @@ -2473,7 +2164,7 @@

                  CVE-2023-7008

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 and systemd/libsystemd0@249.11-0ubuntu3.12 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 and systemd/libsystemd0@249.11-0ubuntu3.12
                @@ -2486,7 +2177,7 @@

                Detailed paths

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 systemd/libsystemd0@249.11-0ubuntu3.12 @@ -2495,7 +2186,7 @@

                  Detailed paths

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 apt@2.4.12 @@ -2506,7 +2197,7 @@

                  Detailed paths

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 procps/libprocps8@2:3.3.17-6ubuntu2.1 @@ -2517,7 +2208,7 @@

                  Detailed paths

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 util-linux@2.37.2-4ubuntu3.4 @@ -2528,7 +2219,7 @@

                  Detailed paths

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 util-linux/bsdutils@1:2.37.2-4ubuntu3.4 @@ -2539,7 +2230,7 @@

                  Detailed paths

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 apt@2.4.12 @@ -2552,7 +2243,7 @@

                  Detailed paths

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 systemd/libudev1@249.11-0ubuntu3.12 @@ -2561,7 +2252,7 @@

                  Detailed paths

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 libfido2/libfido2-1@1.10.0-1 @@ -2572,7 +2263,7 @@

                  Detailed paths

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 util-linux@2.37.2-4ubuntu3.4 @@ -2583,7 +2274,7 @@

                  Detailed paths

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 apt@2.4.12 @@ -2615,6 +2306,7 @@

                  References

                • https://github.com/systemd/systemd/issues/25676
                • https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QHNBXGKJWISJETTTDTZKTBFIBJUOSLKL/
                • https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4GMDEG5PKONWNHOEYSUDRT6JEOISRMN2/
                  • +
                • https://access.redhat.com/errata/RHSA-2024:2463
                @@ -2636,7 +2328,7 @@

                Arbitrary Code Injection

                • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc3/argoproj/argocd Dockerfile
                • Package Manager: ubuntu:22.04 @@ -2649,7 +2341,7 @@

                  Arbitrary Code Injection

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 and shadow/passwd@1:4.8.1-2ubuntu2.2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 and shadow/passwd@1:4.8.1-2ubuntu2.2
                @@ -2662,7 +2354,7 @@

                Detailed paths

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 shadow/passwd@1:4.8.1-2ubuntu2.2 @@ -2671,7 +2363,7 @@

                  Detailed paths

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 adduser@3.118ubuntu5 @@ -2682,9 +2374,9 @@

                  Detailed paths

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 - openssh/openssh-client@1:8.9p1-3ubuntu0.6 + openssh/openssh-client@1:8.9p1-3ubuntu0.7 shadow/passwd@1:4.8.1-2ubuntu2.2 @@ -2693,7 +2385,7 @@

                  Detailed paths

                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 shadow/login@1:4.8.1-2ubuntu2.2 @@ -2740,7 +2432,7 @@

                  Uncontrolled Recursion

                  • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc3/argoproj/argocd Dockerfile
                  • Package Manager: ubuntu:22.04 @@ -2753,7 +2445,7 @@

                    Uncontrolled Recursion

                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 and pcre3/libpcre3@2:8.39-13ubuntu0.22.04.1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 and pcre3/libpcre3@2:8.39-13ubuntu0.22.04.1
                  @@ -2766,7 +2458,7 @@

                  Detailed paths

                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 pcre3/libpcre3@2:8.39-13ubuntu0.22.04.1 @@ -2775,7 +2467,7 @@

                    Detailed paths

                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 grep@3.7-1build1 @@ -2828,7 +2520,7 @@

                    Release of Invalid Pointer or Reference

                    • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc3/argoproj/argocd Dockerfile
                    • Package Manager: ubuntu:22.04 @@ -2841,7 +2533,7 @@

                      Release of Invalid Pointer or Reference

                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 and patch@2.7.6-7build2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 and patch@2.7.6-7build2
                    @@ -2854,7 +2546,7 @@

                    Detailed paths

                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 patch@2.7.6-7build2 @@ -2898,7 +2590,7 @@

                      Double Free

                      • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc3/argoproj/argocd Dockerfile
                      • Package Manager: ubuntu:22.04 @@ -2911,7 +2603,7 @@

                        Double Free

                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 and patch@2.7.6-7build2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 and patch@2.7.6-7build2
                      @@ -2924,7 +2616,7 @@

                      Detailed paths

                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 patch@2.7.6-7build2 @@ -2973,7 +2665,7 @@

                        CVE-2023-50495

                        • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc3/argoproj/argocd Dockerfile
                        • Package Manager: ubuntu:22.04 @@ -2986,7 +2678,7 @@

                          CVE-2023-50495

                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 and ncurses/libtinfo6@6.3-2ubuntu0.1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 and ncurses/libtinfo6@6.3-2ubuntu0.1
                        @@ -2999,7 +2691,7 @@

                        Detailed paths

                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 ncurses/libtinfo6@6.3-2ubuntu0.1 @@ -3008,7 +2700,7 @@

                          Detailed paths

                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 bash@5.1-6ubuntu1.1 @@ -3019,7 +2711,7 @@

                          Detailed paths

                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 ncurses/libncursesw6@6.3-2ubuntu0.1 @@ -3030,9 +2722,9 @@

                          Detailed paths

                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 - less@590-1ubuntu0.22.04.2 + less@590-1ubuntu0.22.04.3 ncurses/libtinfo6@6.3-2ubuntu0.1 @@ -3041,7 +2733,7 @@

                          Detailed paths

                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 libedit/libedit2@3.1-20210910-1build1 @@ -3052,7 +2744,7 @@

                          Detailed paths

                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 ncurses/libncurses6@6.3-2ubuntu0.1 @@ -3063,7 +2755,7 @@

                          Detailed paths

                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 ncurses/ncurses-bin@6.3-2ubuntu0.1 @@ -3074,7 +2766,7 @@

                          Detailed paths

                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 procps@2:3.3.17-6ubuntu2.1 @@ -3085,7 +2777,7 @@

                          Detailed paths

                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 util-linux@2.37.2-4ubuntu3.4 @@ -3096,7 +2788,7 @@

                          Detailed paths

                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -3111,7 +2803,7 @@

                          Detailed paths

                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3126,7 +2818,7 @@

                          Detailed paths

                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 ncurses/libncursesw6@6.3-2ubuntu0.1 @@ -3135,7 +2827,7 @@

                          Detailed paths

                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 procps@2:3.3.17-6ubuntu2.1 @@ -3146,7 +2838,7 @@

                          Detailed paths

                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3161,7 +2853,7 @@

                          Detailed paths

                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 ncurses/libncurses6@6.3-2ubuntu0.1 @@ -3170,7 +2862,7 @@

                          Detailed paths

                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 procps@2:3.3.17-6ubuntu2.1 @@ -3181,7 +2873,7 @@

                          Detailed paths

                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 ncurses/ncurses-base@6.3-2ubuntu0.1 @@ -3190,7 +2882,7 @@

                          Detailed paths

                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 ncurses/ncurses-bin@6.3-2ubuntu0.1 @@ -3237,7 +2929,7 @@

                          CVE-2023-45918

                          • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc3/argoproj/argocd Dockerfile
                          • Package Manager: ubuntu:22.04 @@ -3250,7 +2942,7 @@

                            CVE-2023-45918

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 and ncurses/libtinfo6@6.3-2ubuntu0.1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 and ncurses/libtinfo6@6.3-2ubuntu0.1
                          @@ -3263,7 +2955,7 @@

                          Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 ncurses/libtinfo6@6.3-2ubuntu0.1 @@ -3272,7 +2964,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 bash@5.1-6ubuntu1.1 @@ -3283,7 +2975,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 ncurses/libncursesw6@6.3-2ubuntu0.1 @@ -3294,9 +2986,9 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 - less@590-1ubuntu0.22.04.2 + less@590-1ubuntu0.22.04.3 ncurses/libtinfo6@6.3-2ubuntu0.1 @@ -3305,7 +2997,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 libedit/libedit2@3.1-20210910-1build1 @@ -3316,7 +3008,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 ncurses/libncurses6@6.3-2ubuntu0.1 @@ -3327,7 +3019,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 ncurses/ncurses-bin@6.3-2ubuntu0.1 @@ -3338,7 +3030,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 procps@2:3.3.17-6ubuntu2.1 @@ -3349,7 +3041,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 util-linux@2.37.2-4ubuntu3.4 @@ -3360,7 +3052,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -3375,7 +3067,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3390,7 +3082,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 ncurses/libncursesw6@6.3-2ubuntu0.1 @@ -3399,7 +3091,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 procps@2:3.3.17-6ubuntu2.1 @@ -3410,7 +3102,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3425,7 +3117,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 ncurses/libncurses6@6.3-2ubuntu0.1 @@ -3434,7 +3126,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 procps@2:3.3.17-6ubuntu2.1 @@ -3445,7 +3137,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 ncurses/ncurses-base@6.3-2ubuntu0.1 @@ -3454,7 +3146,7 @@

                            Detailed paths

                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 ncurses/ncurses-bin@6.3-2ubuntu0.1 @@ -3499,7 +3191,7 @@

                            Resource Exhaustion

                            • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc3/argoproj/argocd Dockerfile
                            • Package Manager: ubuntu:22.04 @@ -3512,7 +3204,7 @@

                              Resource Exhaustion

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 and libzstd/libzstd1@1.4.8+dfsg-3build1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 and libzstd/libzstd1@1.4.8+dfsg-3build1
                            @@ -3525,7 +3217,7 @@

                            Detailed paths

                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 libzstd/libzstd1@1.4.8+dfsg-3build1 @@ -3576,7 +3268,7 @@

                              Integer Overflow or Wraparound

                              • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc3/argoproj/argocd Dockerfile
                              • Package Manager: ubuntu:22.04 @@ -3589,7 +3281,7 @@

                                Integer Overflow or Wraparound

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 and krb5/libk5crypto3@1.19.2-2ubuntu0.3 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 and krb5/libk5crypto3@1.19.2-2ubuntu0.3
                              @@ -3602,7 +3294,7 @@

                              Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 krb5/libk5crypto3@1.19.2-2ubuntu0.3 @@ -3611,7 +3303,7 @@

                                Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 adduser@3.118ubuntu5 @@ -3632,7 +3324,7 @@

                                Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 adduser@3.118ubuntu5 @@ -3655,7 +3347,7 @@

                                Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 krb5/libkrb5-3@1.19.2-2ubuntu0.3 @@ -3664,7 +3356,7 @@

                                Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 adduser@3.118ubuntu5 @@ -3685,7 +3377,7 @@

                                Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -3694,9 +3386,9 @@

                                Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 - openssh/openssh-client@1:8.9p1-3ubuntu0.6 + openssh/openssh-client@1:8.9p1-3ubuntu0.7 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -3705,7 +3397,7 @@

                                Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 git@1:2.34.1-1ubuntu1.10 @@ -3718,7 +3410,7 @@

                                Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 git@1:2.34.1-1ubuntu1.10 @@ -3733,7 +3425,7 @@

                                Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 adduser@3.118ubuntu5 @@ -3752,7 +3444,7 @@

                                Detailed paths

                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 krb5/libkrb5support0@1.19.2-2ubuntu0.3 @@ -3800,7 +3492,7 @@

                                Out-of-bounds Write

                                • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc3/argoproj/argocd Dockerfile
                                • Package Manager: ubuntu:22.04 @@ -3813,7 +3505,7 @@

                                  Out-of-bounds Write

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 and gnupg2/gpgv@2.2.27-3ubuntu2.1 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 and gnupg2/gpgv@2.2.27-3ubuntu2.1
                                @@ -3826,7 +3518,7 @@

                                Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 gnupg2/gpgv@2.2.27-3ubuntu2.1 @@ -3835,7 +3527,7 @@

                                  Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 apt@2.4.12 @@ -3846,7 +3538,7 @@

                                  Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3857,7 +3549,7 @@

                                  Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 gnupg2/dirmngr@2.2.27-3ubuntu2.1 @@ -3868,7 +3560,7 @@

                                  Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -3879,7 +3571,7 @@

                                  Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3892,7 +3584,7 @@

                                  Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3905,7 +3597,7 @@

                                  Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 gnupg2/dirmngr@2.2.27-3ubuntu2.1 @@ -3914,7 +3606,7 @@

                                  Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3925,7 +3617,7 @@

                                  Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3938,7 +3630,7 @@

                                  Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 gnupg2/gnupg-l10n@2.2.27-3ubuntu2.1 @@ -3947,7 +3639,7 @@

                                  Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3958,7 +3650,7 @@

                                  Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 gnupg2/gnupg-utils@2.2.27-3ubuntu2.1 @@ -3967,7 +3659,7 @@

                                  Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3978,7 +3670,7 @@

                                  Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -3987,7 +3679,7 @@

                                  Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3998,7 +3690,7 @@

                                  Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4011,7 +3703,7 @@

                                  Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4024,7 +3716,7 @@

                                  Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 gnupg2/gpg-agent@2.2.27-3ubuntu2.1 @@ -4033,7 +3725,7 @@

                                  Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4044,7 +3736,7 @@

                                  Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4057,7 +3749,7 @@

                                  Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4070,7 +3762,7 @@

                                  Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 gnupg2/gpg-wks-client@2.2.27-3ubuntu2.1 @@ -4079,7 +3771,7 @@

                                  Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4090,7 +3782,7 @@

                                  Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 gnupg2/gpg-wks-server@2.2.27-3ubuntu2.1 @@ -4099,7 +3791,7 @@

                                  Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4110,7 +3802,7 @@

                                  Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 gnupg2/gpgsm@2.2.27-3ubuntu2.1 @@ -4119,7 +3811,7 @@

                                  Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4130,7 +3822,7 @@

                                  Detailed paths

                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4179,7 +3871,7 @@

                                  Allocation of Resources Without Limits or Throttling

                                • - Manifest file: quay.io/argoproj/argocd:v2.11.0-rc2/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.11.0-rc3/argoproj/argocd Dockerfile
                                • Package Manager: ubuntu:22.04 @@ -4192,7 +3884,7 @@

                                  Allocation of Resources Without Limits or Throttling

                                  Introduced through: - docker-image|quay.io/argoproj/argocd@v2.11.0-rc2 and glibc/libc-bin@2.35-0ubuntu3.6 + docker-image|quay.io/argoproj/argocd@v2.11.0-rc3 and glibc/libc-bin@2.35-0ubuntu3.7
                                @@ -4205,18 +3897,18 @@

                                Detailed paths

                                diff --git a/docs/snyk/v2.8.17/argocd-iac-install.html b/docs/snyk/v2.8.18/argocd-iac-install.html similarity index 99% rename from docs/snyk/v2.8.17/argocd-iac-install.html rename to docs/snyk/v2.8.18/argocd-iac-install.html index e40b425071427..fc5b4388a1a3b 100644 --- a/docs/snyk/v2.8.17/argocd-iac-install.html +++ b/docs/snyk/v2.8.18/argocd-iac-install.html @@ -456,7 +456,7 @@

                                Snyk test report

                                -

                                April 28th 2024, 12:26:25 am (UTC+00:00)

                                +

                                May 5th 2024, 12:27:04 am (UTC+00:00)

                                Scanned the following path: diff --git a/docs/snyk/v2.8.17/argocd-iac-namespace-install.html b/docs/snyk/v2.8.18/argocd-iac-namespace-install.html similarity index 99% rename from docs/snyk/v2.8.17/argocd-iac-namespace-install.html rename to docs/snyk/v2.8.18/argocd-iac-namespace-install.html index 0cb2e3e2deeea..d177cdcf0a0a9 100644 --- a/docs/snyk/v2.8.17/argocd-iac-namespace-install.html +++ b/docs/snyk/v2.8.18/argocd-iac-namespace-install.html @@ -456,7 +456,7 @@

                                Snyk test report

                                -

                                April 28th 2024, 12:26:34 am (UTC+00:00)

                                +

                                May 5th 2024, 12:27:13 am (UTC+00:00)

                                Scanned the following path: diff --git a/docs/snyk/v2.8.17/argocd-test.html b/docs/snyk/v2.8.18/argocd-test.html similarity index 99% rename from docs/snyk/v2.8.17/argocd-test.html rename to docs/snyk/v2.8.18/argocd-test.html index b273ffe971176..3ba42bf8a64e0 100644 --- a/docs/snyk/v2.8.17/argocd-test.html +++ b/docs/snyk/v2.8.18/argocd-test.html @@ -456,7 +456,7 @@

                                Snyk test report

                                -

                                April 28th 2024, 12:24:48 am (UTC+00:00)

                                +

                                May 5th 2024, 12:25:21 am (UTC+00:00)

                                Scanned the following paths: @@ -4559,7 +4559,7 @@

                                Detailed paths

                                github.com/go-git/go-git/v5/plumbing/transport/ssh@5.11.0 - github.com/skeema/knownhosts@1.2.1 + github.com/skeema/knownhosts@1.2.2 golang.org/x/crypto/ssh@0.16.0 @@ -4585,7 +4585,7 @@

                                Detailed paths

                                github.com/go-git/go-git/v5/plumbing/transport/ssh@5.11.0 - github.com/skeema/knownhosts@1.2.1 + github.com/skeema/knownhosts@1.2.2 golang.org/x/crypto/ssh/knownhosts@0.16.0 @@ -4602,7 +4602,7 @@

                                Detailed paths

                                github.com/go-git/go-git/v5/plumbing/transport/ssh@5.11.0 - github.com/skeema/knownhosts@1.2.1 + github.com/skeema/knownhosts@1.2.2 golang.org/x/crypto/ssh@0.16.0 @@ -4647,7 +4647,7 @@

                                Detailed paths

                                github.com/go-git/go-git/v5/plumbing/transport/ssh@5.11.0 - github.com/skeema/knownhosts@1.2.1 + github.com/skeema/knownhosts@1.2.2 golang.org/x/crypto/ssh/knownhosts@0.16.0 @@ -4666,7 +4666,7 @@

                                Detailed paths

                                github.com/go-git/go-git/v5/plumbing/transport/ssh@5.11.0 - github.com/skeema/knownhosts@1.2.1 + github.com/skeema/knownhosts@1.2.2 golang.org/x/crypto/ssh@0.16.0 @@ -4700,7 +4700,7 @@

                                Detailed paths

                                github.com/go-git/go-git/v5/plumbing/transport/ssh@5.11.0 - github.com/skeema/knownhosts@1.2.1 + github.com/skeema/knownhosts@1.2.2 golang.org/x/crypto/ssh/knownhosts@0.16.0 diff --git a/docs/snyk/v2.9.13/ghcr.io_dexidp_dex_v2.37.0.html b/docs/snyk/v2.8.18/ghcr.io_dexidp_dex_v2.37.0.html similarity index 99% rename from docs/snyk/v2.9.13/ghcr.io_dexidp_dex_v2.37.0.html rename to docs/snyk/v2.8.18/ghcr.io_dexidp_dex_v2.37.0.html index da07b86437353..1ade62e22c1ae 100644 --- a/docs/snyk/v2.9.13/ghcr.io_dexidp_dex_v2.37.0.html +++ b/docs/snyk/v2.8.18/ghcr.io_dexidp_dex_v2.37.0.html @@ -456,7 +456,7 @@

                                Snyk test report

                                -

                                April 28th 2024, 12:22:43 am (UTC+00:00)

                                +

                                May 5th 2024, 12:25:26 am (UTC+00:00)

                                Scanned the following paths: @@ -1882,6 +1882,7 @@

                                References

                              • https://www.openssl.org/news/secadv/20231106.txt
                              • http://www.openwall.com/lists/oss-security/2023/11/06/2
                              • https://security.netapp.com/advisory/ntap-20231130-0010/
                                • +
                              • http://www.openwall.com/lists/oss-security/2024/03/11/1
                              @@ -2047,6 +2048,8 @@

                              References

                            • https://security.netapp.com/advisory/ntap-20240216-0009/
                            • https://security.netapp.com/advisory/ntap-20240426-0008/
                            • https://security.netapp.com/advisory/ntap-20240426-0013/
                              • +
                            • http://www.openwall.com/lists/oss-security/2024/03/11/1
                              • +
                            • https://security.netapp.com/advisory/ntap-20240503-0011/
                            @@ -2200,6 +2203,7 @@

                            References

                          • https://github.openssl.org/openssl/extended-releases/commit/aebaa5883e31122b404e450732dc833dc9dee539
                          • https://www.openssl.org/news/secadv/20240125.txt
                          • https://security.netapp.com/advisory/ntap-20240208-0006/
                            • +
                          • http://www.openwall.com/lists/oss-security/2024/03/11/1
                          @@ -4438,6 +4442,7 @@

                          References

                        • https://github.com/openssl/openssl/commit/18c02492138d1eb8b6548cb26e7b625fb2414a2a
                        • https://github.com/openssl/openssl/commit/a830f551557d3d66a84bbb18a5b889c640c36294
                        • https://www.openssl.org/news/secadv/20240115.txt
                          • +
                        • http://www.openwall.com/lists/oss-security/2024/03/11/1
                        @@ -4588,6 +4593,8 @@

                        References

                      • https://github.com/openssl/openssl/commit/e9d7083e241670332e0443da0f0d4ffb52829f08
                      • https://github.openssl.org/openssl/extended-releases/commit/5f8d25770ae6437db119dfc951e207271a326640
                      • https://www.openssl.org/news/secadv/20240408.txt
                        • +
                      • http://www.openwall.com/lists/oss-security/2024/04/08/5
                        • +
                      • https://security.netapp.com/advisory/ntap-20240503-0013/
                      diff --git a/docs/snyk/v2.10.8/haproxy_2.6.14-alpine.html b/docs/snyk/v2.8.18/haproxy_2.6.14-alpine.html similarity index 98% rename from docs/snyk/v2.10.8/haproxy_2.6.14-alpine.html rename to docs/snyk/v2.8.18/haproxy_2.6.14-alpine.html index 6d858518bfd53..d552cd18e527e 100644 --- a/docs/snyk/v2.10.8/haproxy_2.6.14-alpine.html +++ b/docs/snyk/v2.8.18/haproxy_2.6.14-alpine.html @@ -456,7 +456,7 @@

                      Snyk test report

                      -

                      April 28th 2024, 12:20:32 am (UTC+00:00)

                      +

                      May 5th 2024, 12:25:30 am (UTC+00:00)

                      Scanned the following path: @@ -851,6 +851,7 @@

                      References

                    • https://www.openssl.org/news/secadv/20231106.txt
                    • http://www.openwall.com/lists/oss-security/2023/11/06/2
                    • https://security.netapp.com/advisory/ntap-20231130-0010/
                      • +
                    • http://www.openwall.com/lists/oss-security/2024/03/11/1
                    @@ -1038,6 +1039,8 @@

                    References

                  • https://security.netapp.com/advisory/ntap-20240216-0009/
                  • https://security.netapp.com/advisory/ntap-20240426-0008/
                  • https://security.netapp.com/advisory/ntap-20240426-0013/
                    • +
                  • http://www.openwall.com/lists/oss-security/2024/03/11/1
                    • +
                  • https://security.netapp.com/advisory/ntap-20240503-0011/
                  @@ -1213,6 +1216,7 @@

                  References

                • https://github.openssl.org/openssl/extended-releases/commit/aebaa5883e31122b404e450732dc833dc9dee539
                • https://www.openssl.org/news/secadv/20240125.txt
                • https://security.netapp.com/advisory/ntap-20240208-0006/
                  • +
                • http://www.openwall.com/lists/oss-security/2024/03/11/1
                @@ -1389,6 +1393,7 @@

                References

              • https://github.com/openssl/openssl/commit/18c02492138d1eb8b6548cb26e7b625fb2414a2a
              • https://github.com/openssl/openssl/commit/a830f551557d3d66a84bbb18a5b889c640c36294
              • https://www.openssl.org/news/secadv/20240115.txt
                • +
              • http://www.openwall.com/lists/oss-security/2024/03/11/1
              @@ -1561,6 +1566,8 @@

              References

            • https://github.com/openssl/openssl/commit/e9d7083e241670332e0443da0f0d4ffb52829f08
            • https://github.openssl.org/openssl/extended-releases/commit/5f8d25770ae6437db119dfc951e207271a326640
            • https://www.openssl.org/news/secadv/20240408.txt
              • +
            • http://www.openwall.com/lists/oss-security/2024/04/08/5
              • +
            • https://security.netapp.com/advisory/ntap-20240503-0013/
            diff --git a/docs/snyk/v2.8.17/quay.io_argoproj_argocd_v2.8.17.html b/docs/snyk/v2.8.18/quay.io_argoproj_argocd_v2.8.18.html similarity index 94% rename from docs/snyk/v2.8.17/quay.io_argoproj_argocd_v2.8.17.html rename to docs/snyk/v2.8.18/quay.io_argoproj_argocd_v2.8.18.html index 9a0771753b320..b708770d0969c 100644 --- a/docs/snyk/v2.8.17/quay.io_argoproj_argocd_v2.8.17.html +++ b/docs/snyk/v2.8.18/quay.io_argoproj_argocd_v2.8.18.html @@ -7,7 +7,7 @@ Snyk test report - + @@ -456,22 +456,22 @@

            Snyk test report

            -

            April 28th 2024, 12:25:15 am (UTC+00:00)

            +

            May 5th 2024, 12:25:52 am (UTC+00:00)

            Scanned the following paths:
              -
            • quay.io/argoproj/argocd:v2.8.17/argoproj/argocd/Dockerfile (deb)
              • -
            • quay.io/argoproj/argocd:v2.8.17/argoproj/argo-cd/v2//usr/local/bin/argocd (gomodules)
              • -
            • quay.io/argoproj/argocd:v2.8.17/kustomize/kustomize/v5//usr/local/bin/kustomize (gomodules)
              • -
            • quay.io/argoproj/argocd:v2.8.17/helm/v3//usr/local/bin/helm (gomodules)
              • -
            • quay.io/argoproj/argocd:v2.8.17/git-lfs/git-lfs//usr/bin/git-lfs (gomodules)
              • +
            • quay.io/argoproj/argocd:v2.8.18/argoproj/argocd/Dockerfile (deb)
              • +
            • quay.io/argoproj/argocd:v2.8.18/argoproj/argo-cd/v2//usr/local/bin/argocd (gomodules)
              • +
            • quay.io/argoproj/argocd:v2.8.18/kustomize/kustomize/v5//usr/local/bin/kustomize (gomodules)
              • +
            • quay.io/argoproj/argocd:v2.8.18/helm/v3//usr/local/bin/helm (gomodules)
              • +
            • quay.io/argoproj/argocd:v2.8.18/git-lfs/git-lfs//usr/bin/git-lfs (gomodules)
            -
            38 known vulnerabilities
            -
            172 vulnerable dependency paths
            +
            36 known vulnerabilities
            +
            170 vulnerable dependency paths
            2120 dependencies
    @@ -492,7 +492,7 @@

    Allocation of Resources Without Limits or Throttling

  • - Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.8.18/argoproj/argo-cd/v2 /usr/local/bin/argocd
  • Package Manager: golang @@ -572,7 +572,7 @@

    Denial of Service (DoS)

    • - Manifest file: quay.io/argoproj/argocd:v2.8.17/helm/v3 /usr/local/bin/helm + Manifest file: quay.io/argoproj/argocd:v2.8.18/helm/v3 /usr/local/bin/helm
    • Package Manager: golang @@ -654,7 +654,7 @@

      Denial of Service (DoS)

      • - Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.8.18/argoproj/argo-cd/v2 /usr/local/bin/argocd
      • Package Manager: golang @@ -735,7 +735,7 @@

        Directory Traversal

        • - Manifest file: quay.io/argoproj/argocd:v2.8.17/helm/v3 /usr/local/bin/helm + Manifest file: quay.io/argoproj/argocd:v2.8.18/helm/v3 /usr/local/bin/helm
        • Package Manager: golang @@ -825,7 +825,7 @@

          CVE-2020-22916

          • - Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.18/argoproj/argocd Dockerfile
          • Package Manager: ubuntu:22.04 @@ -838,7 +838,7 @@

            CVE-2020-22916

          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 and xz-utils/liblzma5@5.2.5-2ubuntu1 + docker-image|quay.io/argoproj/argocd@v2.8.18 and xz-utils/liblzma5@5.2.5-2ubuntu1
          @@ -851,7 +851,7 @@

          Detailed paths

          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 xz-utils/liblzma5@5.2.5-2ubuntu1 @@ -888,82 +888,6 @@

            References

            More about this vulnerability

    • -
    -
    -

    CVE-2023-51767

    -
    - -
    - medium severity -
    - -
    - -
      -
    • - Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argocd Dockerfile -
      • -
    • - Package Manager: ubuntu:22.04 -
      • -
    • - Vulnerable module: - - openssh/openssh-client -
      • - -
    • Introduced through: - - docker-image|quay.io/argoproj/argocd@v2.8.17 and openssh/openssh-client@1:8.9p1-3ubuntu0.7 - -
      • -
    - -
    - - -

    Detailed paths

    - -
      -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 - - openssh/openssh-client@1:8.9p1-3ubuntu0.7 - - - -
      • -
    - -
    - -
    - -

    NVD Description

    -

    Note: Versions mentioned in the description apply only to the upstream openssh package and not the openssh package as distributed by Ubuntu. - See How to fix? for Ubuntu:22.04 relevant fixed versions and status.

    -

    OpenSSH through 9.6, when common types of DRAM are used, might allow row hammer attacks (for authentication bypass) because the integer value of authenticated in mm_answer_authpassword does not resist flips of a single bit. NOTE: this is applicable to a certain threat model of attacker-victim co-location in which the attacker has user privileges.

    -

    Remediation

    -

    There is no fixed version for Ubuntu:22.04 openssh.

    -

    References

    - - -
    - -
    -

    More about this vulnerability

    -
    -

    Information Exposure

    @@ -977,7 +901,7 @@

    Information Exposure

    • - Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.18/argoproj/argocd Dockerfile
    • Package Manager: ubuntu:22.04 @@ -990,7 +914,7 @@

      Information Exposure

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 and libgcrypt20@1.9.4-3ubuntu3 + docker-image|quay.io/argoproj/argocd@v2.8.18 and libgcrypt20@1.9.4-3ubuntu3
    @@ -1003,7 +927,7 @@

    Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 libgcrypt20@1.9.4-3ubuntu3 @@ -1012,7 +936,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 gnupg2/dirmngr@2.2.27-3ubuntu2.1 @@ -1023,7 +947,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -1034,7 +958,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 apt@2.4.12 @@ -1047,7 +971,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 apt@2.4.12 @@ -1060,7 +984,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -1073,7 +997,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -1086,7 +1010,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -1099,7 +1023,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -1112,7 +1036,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -1125,7 +1049,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -1138,7 +1062,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 apt@2.4.12 @@ -1177,78 +1101,6 @@

      References

      More about this vulnerability

    -
    -
    -

    CVE-2024-32487

    -
    - -
    - medium severity -
    - -
    - -
      -
    • - Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argocd Dockerfile -
      • -
    • - Package Manager: ubuntu:22.04 -
      • -
    • - Vulnerable module: - - less -
      • - -
    • Introduced through: - - docker-image|quay.io/argoproj/argocd@v2.8.17 and less@590-1ubuntu0.22.04.2 - -
      • -
    - -
    - - -

    Detailed paths

    - -
      -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 - - less@590-1ubuntu0.22.04.2 - - - -
      • -
    - -
    - -
    - -

    NVD Description

    -

    Note: Versions mentioned in the description apply only to the upstream less package and not the less package as distributed by Ubuntu. - See How to fix? for Ubuntu:22.04 relevant fixed versions and status.

    -

    less through 653 allows OS command execution via a newline character in the name of a file, because quoting is mishandled in filename.c. Exploitation typically requires use with attacker-controlled file names, such as the files extracted from an untrusted archive. Exploitation also requires the LESSOPEN environment variable, but this is set by default in many common cases.

    -

    Remediation

    -

    There is no fixed version for Ubuntu:22.04 less.

    -

    References

    - - -
    - -
    -

    More about this vulnerability

    -
    -

    CVE-2024-26461

    @@ -1262,7 +1114,7 @@

    CVE-2024-26461

    • - Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.18/argoproj/argocd Dockerfile
    • Package Manager: ubuntu:22.04 @@ -1275,7 +1127,7 @@

      CVE-2024-26461

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 and krb5/libk5crypto3@1.19.2-2ubuntu0.3 + docker-image|quay.io/argoproj/argocd@v2.8.18 and krb5/libk5crypto3@1.19.2-2ubuntu0.3
    @@ -1288,7 +1140,7 @@

    Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 krb5/libk5crypto3@1.19.2-2ubuntu0.3 @@ -1297,7 +1149,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 adduser@3.118ubuntu5 @@ -1318,7 +1170,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 adduser@3.118ubuntu5 @@ -1341,7 +1193,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 krb5/libkrb5-3@1.19.2-2ubuntu0.3 @@ -1350,7 +1202,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 adduser@3.118ubuntu5 @@ -1371,7 +1223,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -1380,7 +1232,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 openssh/openssh-client@1:8.9p1-3ubuntu0.7 @@ -1391,7 +1243,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 git@1:2.34.1-1ubuntu1.10 @@ -1404,7 +1256,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 git@1:2.34.1-1ubuntu1.10 @@ -1419,7 +1271,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 adduser@3.118ubuntu5 @@ -1438,7 +1290,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 krb5/libkrb5support0@1.19.2-2ubuntu0.3 @@ -1482,7 +1334,7 @@

      CVE-2024-26462

      • - Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.18/argoproj/argocd Dockerfile
      • Package Manager: ubuntu:22.04 @@ -1495,7 +1347,7 @@

        CVE-2024-26462

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 and krb5/libk5crypto3@1.19.2-2ubuntu0.3 + docker-image|quay.io/argoproj/argocd@v2.8.18 and krb5/libk5crypto3@1.19.2-2ubuntu0.3
      @@ -1508,7 +1360,7 @@

      Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 krb5/libk5crypto3@1.19.2-2ubuntu0.3 @@ -1517,7 +1369,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 adduser@3.118ubuntu5 @@ -1538,7 +1390,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 adduser@3.118ubuntu5 @@ -1561,7 +1413,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 krb5/libkrb5-3@1.19.2-2ubuntu0.3 @@ -1570,7 +1422,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 adduser@3.118ubuntu5 @@ -1591,7 +1443,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -1600,7 +1452,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 openssh/openssh-client@1:8.9p1-3ubuntu0.7 @@ -1611,7 +1463,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 git@1:2.34.1-1ubuntu1.10 @@ -1624,7 +1476,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 git@1:2.34.1-1ubuntu1.10 @@ -1639,7 +1491,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 adduser@3.118ubuntu5 @@ -1658,7 +1510,7 @@

        Detailed paths

      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 krb5/libkrb5support0@1.19.2-2ubuntu0.3 @@ -1702,7 +1554,7 @@

        CVE-2024-26458

        • - Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.18/argoproj/argocd Dockerfile
        • Package Manager: ubuntu:22.04 @@ -1715,7 +1567,7 @@

          CVE-2024-26458

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 and krb5/libk5crypto3@1.19.2-2ubuntu0.3 + docker-image|quay.io/argoproj/argocd@v2.8.18 and krb5/libk5crypto3@1.19.2-2ubuntu0.3
        @@ -1728,7 +1580,7 @@

        Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 krb5/libk5crypto3@1.19.2-2ubuntu0.3 @@ -1737,7 +1589,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 adduser@3.118ubuntu5 @@ -1758,7 +1610,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 adduser@3.118ubuntu5 @@ -1781,7 +1633,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 krb5/libkrb5-3@1.19.2-2ubuntu0.3 @@ -1790,7 +1642,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 adduser@3.118ubuntu5 @@ -1811,7 +1663,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -1820,7 +1672,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 openssh/openssh-client@1:8.9p1-3ubuntu0.7 @@ -1831,7 +1683,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 git@1:2.34.1-1ubuntu1.10 @@ -1844,7 +1696,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 git@1:2.34.1-1ubuntu1.10 @@ -1859,7 +1711,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 adduser@3.118ubuntu5 @@ -1878,7 +1730,7 @@

          Detailed paths

        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 krb5/libkrb5support0@1.19.2-2ubuntu0.3 @@ -1922,7 +1774,7 @@

          LGPL-3.0 license

          • - Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.8.18/argoproj/argo-cd/v2 /usr/local/bin/argocd
          • Package Manager: golang @@ -1982,7 +1834,7 @@

            Infinite loop

            • - Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.8.18/argoproj/argo-cd/v2 /usr/local/bin/argocd
            • Package Manager: golang @@ -2053,7 +1905,7 @@

              Stack-based Buffer Overflow

              • - Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.8.18/argoproj/argo-cd/v2 /usr/local/bin/argocd
              • Package Manager: golang @@ -2121,7 +1973,7 @@

                Infinite loop

                • - Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.8.18/argoproj/argo-cd/v2 /usr/local/bin/argocd
                • Package Manager: golang @@ -2192,7 +2044,7 @@

                  Allocation of Resources Without Limits or Throttling

                • - Manifest file: quay.io/argoproj/argocd:v2.8.17/helm/v3 /usr/local/bin/helm + Manifest file: quay.io/argoproj/argocd:v2.8.18/helm/v3 /usr/local/bin/helm
                • Package Manager: golang @@ -2264,7 +2116,7 @@

                  Authentication Bypass by Capture-replay

                  • - Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.8.18/argoproj/argo-cd/v2 /usr/local/bin/argocd
                  • Package Manager: golang @@ -2362,7 +2214,7 @@

                    MPL-2.0 license

                    • - Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.8.18/argoproj/argo-cd/v2 /usr/local/bin/argocd
                    • Package Manager: golang @@ -2422,7 +2274,7 @@

                      MPL-2.0 license

                      • - Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.8.18/argoproj/argo-cd/v2 /usr/local/bin/argocd
                      • Package Manager: golang @@ -2482,7 +2334,7 @@

                        MPL-2.0 license

                        • - Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.8.18/argoproj/argo-cd/v2 /usr/local/bin/argocd
                        • Package Manager: golang @@ -2542,7 +2394,7 @@

                          MPL-2.0 license

                          • - Manifest file: quay.io/argoproj/argocd:v2.8.17/helm/v3 /usr/local/bin/helm + Manifest file: quay.io/argoproj/argocd:v2.8.18/helm/v3 /usr/local/bin/helm
                          • Package Manager: golang @@ -2602,7 +2454,7 @@

                            MPL-2.0 license

                            • - Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.8.18/argoproj/argo-cd/v2 /usr/local/bin/argocd
                            • Package Manager: golang @@ -2662,7 +2514,7 @@

                              MPL-2.0 license

                              • - Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.8.18/argoproj/argo-cd/v2 /usr/local/bin/argocd
                              • Package Manager: golang @@ -2722,7 +2574,7 @@

                                Improper Handling of Highly Compressed Data (Data Amplif
                                • - Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.8.18/argoproj/argo-cd/v2 /usr/local/bin/argocd
                                • Package Manager: golang @@ -2791,7 +2643,7 @@

                                  CVE-2023-7008

                                  • - Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.18/argoproj/argocd Dockerfile
                                  • Package Manager: ubuntu:22.04 @@ -2804,7 +2656,7 @@

                                    CVE-2023-7008

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 and systemd/libsystemd0@249.11-0ubuntu3.12 + docker-image|quay.io/argoproj/argocd@v2.8.18 and systemd/libsystemd0@249.11-0ubuntu3.12
                                  @@ -2817,7 +2669,7 @@

                                  Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 systemd/libsystemd0@249.11-0ubuntu3.12 @@ -2826,7 +2678,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 apt@2.4.12 @@ -2837,7 +2689,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 procps/libprocps8@2:3.3.17-6ubuntu2.1 @@ -2848,7 +2700,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 util-linux@2.37.2-4ubuntu3.4 @@ -2859,7 +2711,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 util-linux/bsdutils@1:2.37.2-4ubuntu3.4 @@ -2870,7 +2722,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 apt@2.4.12 @@ -2883,7 +2735,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 systemd/libudev1@249.11-0ubuntu3.12 @@ -2892,7 +2744,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 libfido2/libfido2-1@1.10.0-1 @@ -2903,7 +2755,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 util-linux@2.37.2-4ubuntu3.4 @@ -2914,7 +2766,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 apt@2.4.12 @@ -2946,6 +2798,7 @@

                                    References

                                  • https://github.com/systemd/systemd/issues/25676
                                  • https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QHNBXGKJWISJETTTDTZKTBFIBJUOSLKL/
                                  • https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4GMDEG5PKONWNHOEYSUDRT6JEOISRMN2/
                                    • +
                                  • https://access.redhat.com/errata/RHSA-2024:2463
                                  @@ -2967,7 +2820,7 @@

                                  Arbitrary Code Injection

                                  • - Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.18/argoproj/argocd Dockerfile
                                  • Package Manager: ubuntu:22.04 @@ -2980,7 +2833,7 @@

                                    Arbitrary Code Injection

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 and shadow/passwd@1:4.8.1-2ubuntu2.2 + docker-image|quay.io/argoproj/argocd@v2.8.18 and shadow/passwd@1:4.8.1-2ubuntu2.2
                                  @@ -2993,7 +2846,7 @@

                                  Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 shadow/passwd@1:4.8.1-2ubuntu2.2 @@ -3002,7 +2855,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 adduser@3.118ubuntu5 @@ -3013,7 +2866,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 openssh/openssh-client@1:8.9p1-3ubuntu0.7 @@ -3024,7 +2877,7 @@

                                    Detailed paths

                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 shadow/login@1:4.8.1-2ubuntu2.2 @@ -3071,7 +2924,7 @@

                                    Uncontrolled Recursion

                                    • - Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.18/argoproj/argocd Dockerfile
                                    • Package Manager: ubuntu:22.04 @@ -3084,7 +2937,7 @@

                                      Uncontrolled Recursion

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 and pcre3/libpcre3@2:8.39-13ubuntu0.22.04.1 + docker-image|quay.io/argoproj/argocd@v2.8.18 and pcre3/libpcre3@2:8.39-13ubuntu0.22.04.1
                                    @@ -3097,7 +2950,7 @@

                                    Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 pcre3/libpcre3@2:8.39-13ubuntu0.22.04.1 @@ -3106,7 +2959,7 @@

                                      Detailed paths

                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 grep@3.7-1build1 @@ -3159,7 +3012,7 @@

                                      Release of Invalid Pointer or Reference

                                      • - Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.18/argoproj/argocd Dockerfile
                                      • Package Manager: ubuntu:22.04 @@ -3172,7 +3025,7 @@

                                        Release of Invalid Pointer or Reference

                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 and patch@2.7.6-7build2 + docker-image|quay.io/argoproj/argocd@v2.8.18 and patch@2.7.6-7build2
                                      @@ -3185,7 +3038,7 @@

                                      Detailed paths

                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 patch@2.7.6-7build2 @@ -3229,7 +3082,7 @@

                                        Double Free

                                        • - Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.18/argoproj/argocd Dockerfile
                                        • Package Manager: ubuntu:22.04 @@ -3242,7 +3095,7 @@

                                          Double Free

                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 and patch@2.7.6-7build2 + docker-image|quay.io/argoproj/argocd@v2.8.18 and patch@2.7.6-7build2
                                        @@ -3255,7 +3108,7 @@

                                        Detailed paths

                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 patch@2.7.6-7build2 @@ -3304,7 +3157,7 @@

                                          CVE-2023-50495

                                          • - Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.18/argoproj/argocd Dockerfile
                                          • Package Manager: ubuntu:22.04 @@ -3317,7 +3170,7 @@

                                            CVE-2023-50495

                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 and ncurses/libtinfo6@6.3-2ubuntu0.1 + docker-image|quay.io/argoproj/argocd@v2.8.18 and ncurses/libtinfo6@6.3-2ubuntu0.1
                                          @@ -3330,7 +3183,7 @@

                                          Detailed paths

                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 ncurses/libtinfo6@6.3-2ubuntu0.1 @@ -3339,7 +3192,7 @@

                                            Detailed paths

                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 bash@5.1-6ubuntu1.1 @@ -3350,7 +3203,7 @@

                                            Detailed paths

                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 ncurses/libncursesw6@6.3-2ubuntu0.1 @@ -3361,9 +3214,9 @@

                                            Detailed paths

                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 - less@590-1ubuntu0.22.04.2 + less@590-1ubuntu0.22.04.3 ncurses/libtinfo6@6.3-2ubuntu0.1 @@ -3372,7 +3225,7 @@

                                            Detailed paths

                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 libedit/libedit2@3.1-20210910-1build1 @@ -3383,7 +3236,7 @@

                                            Detailed paths

                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 ncurses/libncurses6@6.3-2ubuntu0.1 @@ -3394,7 +3247,7 @@

                                            Detailed paths

                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 ncurses/ncurses-bin@6.3-2ubuntu0.1 @@ -3405,7 +3258,7 @@

                                            Detailed paths

                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 procps@2:3.3.17-6ubuntu2.1 @@ -3416,7 +3269,7 @@

                                            Detailed paths

                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 util-linux@2.37.2-4ubuntu3.4 @@ -3427,7 +3280,7 @@

                                            Detailed paths

                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -3442,7 +3295,7 @@

                                            Detailed paths

                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3457,7 +3310,7 @@

                                            Detailed paths

                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 ncurses/libncursesw6@6.3-2ubuntu0.1 @@ -3466,7 +3319,7 @@

                                            Detailed paths

                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 procps@2:3.3.17-6ubuntu2.1 @@ -3477,7 +3330,7 @@

                                            Detailed paths

                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3492,7 +3345,7 @@

                                            Detailed paths

                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 ncurses/libncurses6@6.3-2ubuntu0.1 @@ -3501,7 +3354,7 @@

                                            Detailed paths

                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 procps@2:3.3.17-6ubuntu2.1 @@ -3512,7 +3365,7 @@

                                            Detailed paths

                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 ncurses/ncurses-base@6.3-2ubuntu0.1 @@ -3521,7 +3374,7 @@

                                            Detailed paths

                                          • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 ncurses/ncurses-bin@6.3-2ubuntu0.1 @@ -3568,7 +3421,7 @@

                                            CVE-2023-45918

                                            • - Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.18/argoproj/argocd Dockerfile
                                            • Package Manager: ubuntu:22.04 @@ -3581,7 +3434,7 @@

                                              CVE-2023-45918

                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 and ncurses/libtinfo6@6.3-2ubuntu0.1 + docker-image|quay.io/argoproj/argocd@v2.8.18 and ncurses/libtinfo6@6.3-2ubuntu0.1
                                            @@ -3594,7 +3447,7 @@

                                            Detailed paths

                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 ncurses/libtinfo6@6.3-2ubuntu0.1 @@ -3603,7 +3456,7 @@

                                              Detailed paths

                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 bash@5.1-6ubuntu1.1 @@ -3614,7 +3467,7 @@

                                              Detailed paths

                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 ncurses/libncursesw6@6.3-2ubuntu0.1 @@ -3625,9 +3478,9 @@

                                              Detailed paths

                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 - less@590-1ubuntu0.22.04.2 + less@590-1ubuntu0.22.04.3 ncurses/libtinfo6@6.3-2ubuntu0.1 @@ -3636,7 +3489,7 @@

                                              Detailed paths

                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 libedit/libedit2@3.1-20210910-1build1 @@ -3647,7 +3500,7 @@

                                              Detailed paths

                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 ncurses/libncurses6@6.3-2ubuntu0.1 @@ -3658,7 +3511,7 @@

                                              Detailed paths

                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 ncurses/ncurses-bin@6.3-2ubuntu0.1 @@ -3669,7 +3522,7 @@

                                              Detailed paths

                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 procps@2:3.3.17-6ubuntu2.1 @@ -3680,7 +3533,7 @@

                                              Detailed paths

                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 util-linux@2.37.2-4ubuntu3.4 @@ -3691,7 +3544,7 @@

                                              Detailed paths

                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -3706,7 +3559,7 @@

                                              Detailed paths

                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3721,7 +3574,7 @@

                                              Detailed paths

                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 ncurses/libncursesw6@6.3-2ubuntu0.1 @@ -3730,7 +3583,7 @@

                                              Detailed paths

                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 procps@2:3.3.17-6ubuntu2.1 @@ -3741,7 +3594,7 @@

                                              Detailed paths

                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -3756,7 +3609,7 @@

                                              Detailed paths

                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 ncurses/libncurses6@6.3-2ubuntu0.1 @@ -3765,7 +3618,7 @@

                                              Detailed paths

                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 procps@2:3.3.17-6ubuntu2.1 @@ -3776,7 +3629,7 @@

                                              Detailed paths

                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 ncurses/ncurses-base@6.3-2ubuntu0.1 @@ -3785,7 +3638,7 @@

                                              Detailed paths

                                            • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 ncurses/ncurses-bin@6.3-2ubuntu0.1 @@ -3830,7 +3683,7 @@

                                              Resource Exhaustion

                                              • - Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.18/argoproj/argocd Dockerfile
                                              • Package Manager: ubuntu:22.04 @@ -3843,7 +3696,7 @@

                                                Resource Exhaustion

                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 and libzstd/libzstd1@1.4.8+dfsg-3build1 + docker-image|quay.io/argoproj/argocd@v2.8.18 and libzstd/libzstd1@1.4.8+dfsg-3build1
                                              @@ -3856,7 +3709,7 @@

                                              Detailed paths

                                              • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 libzstd/libzstd1@1.4.8+dfsg-3build1 @@ -3907,7 +3760,7 @@

                                                Integer Overflow or Wraparound

                                                • - Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.18/argoproj/argocd Dockerfile
                                                • Package Manager: ubuntu:22.04 @@ -3920,7 +3773,7 @@

                                                  Integer Overflow or Wraparound

                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 and krb5/libk5crypto3@1.19.2-2ubuntu0.3 + docker-image|quay.io/argoproj/argocd@v2.8.18 and krb5/libk5crypto3@1.19.2-2ubuntu0.3
                                                @@ -3933,7 +3786,7 @@

                                                Detailed paths

                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 krb5/libk5crypto3@1.19.2-2ubuntu0.3 @@ -3942,7 +3795,7 @@

                                                  Detailed paths

                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 adduser@3.118ubuntu5 @@ -3963,7 +3816,7 @@

                                                  Detailed paths

                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 adduser@3.118ubuntu5 @@ -3986,7 +3839,7 @@

                                                  Detailed paths

                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 krb5/libkrb5-3@1.19.2-2ubuntu0.3 @@ -3995,7 +3848,7 @@

                                                  Detailed paths

                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 adduser@3.118ubuntu5 @@ -4016,7 +3869,7 @@

                                                  Detailed paths

                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 krb5/libgssapi-krb5-2@1.19.2-2ubuntu0.3 @@ -4025,7 +3878,7 @@

                                                  Detailed paths

                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 openssh/openssh-client@1:8.9p1-3ubuntu0.7 @@ -4036,7 +3889,7 @@

                                                  Detailed paths

                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 git@1:2.34.1-1ubuntu1.10 @@ -4049,7 +3902,7 @@

                                                  Detailed paths

                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 git@1:2.34.1-1ubuntu1.10 @@ -4064,7 +3917,7 @@

                                                  Detailed paths

                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 adduser@3.118ubuntu5 @@ -4083,7 +3936,7 @@

                                                  Detailed paths

                                                • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 krb5/libkrb5support0@1.19.2-2ubuntu0.3 @@ -4131,7 +3984,7 @@

                                                  Out-of-bounds Write

                                                  • - Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.18/argoproj/argocd Dockerfile
                                                  • Package Manager: ubuntu:22.04 @@ -4144,7 +3997,7 @@

                                                    Out-of-bounds Write

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 and gnupg2/gpgv@2.2.27-3ubuntu2.1 + docker-image|quay.io/argoproj/argocd@v2.8.18 and gnupg2/gpgv@2.2.27-3ubuntu2.1
                                                  @@ -4157,7 +4010,7 @@

                                                  Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 gnupg2/gpgv@2.2.27-3ubuntu2.1 @@ -4166,7 +4019,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 apt@2.4.12 @@ -4177,7 +4030,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4188,7 +4041,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 gnupg2/dirmngr@2.2.27-3ubuntu2.1 @@ -4199,7 +4052,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -4210,7 +4063,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4223,7 +4076,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4236,7 +4089,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 gnupg2/dirmngr@2.2.27-3ubuntu2.1 @@ -4245,7 +4098,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4256,7 +4109,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4269,7 +4122,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 gnupg2/gnupg-l10n@2.2.27-3ubuntu2.1 @@ -4278,7 +4131,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4289,7 +4142,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 gnupg2/gnupg-utils@2.2.27-3ubuntu2.1 @@ -4298,7 +4151,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4309,7 +4162,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -4318,7 +4171,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4329,7 +4182,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4342,7 +4195,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4355,7 +4208,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 gnupg2/gpg-agent@2.2.27-3ubuntu2.1 @@ -4364,7 +4217,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4375,7 +4228,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4388,7 +4241,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4401,7 +4254,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 gnupg2/gpg-wks-client@2.2.27-3ubuntu2.1 @@ -4410,7 +4263,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4421,7 +4274,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 gnupg2/gpg-wks-server@2.2.27-3ubuntu2.1 @@ -4430,7 +4283,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4441,7 +4294,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 gnupg2/gpgsm@2.2.27-3ubuntu2.1 @@ -4450,7 +4303,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4461,7 +4314,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -4510,7 +4363,7 @@

                                                    Allocation of Resources Without Limits or Throttling

                                                  • - Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.18/argoproj/argocd Dockerfile
                                                  • Package Manager: ubuntu:22.04 @@ -4523,7 +4376,7 @@

                                                    Allocation of Resources Without Limits or Throttling

                                                    Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 and glibc/libc-bin@2.35-0ubuntu3.7 + docker-image|quay.io/argoproj/argocd@v2.8.18 and glibc/libc-bin@2.35-0ubuntu3.7
                                                  @@ -4536,7 +4389,7 @@

                                                  Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 glibc/libc-bin@2.35-0ubuntu3.7 @@ -4545,7 +4398,7 @@

                                                    Detailed paths

                                                  • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 glibc/libc6@2.35-0ubuntu3.7 @@ -4591,7 +4444,7 @@

                                                    Improper Input Validation

                                                    • - Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.18/argoproj/argocd Dockerfile
                                                    • Package Manager: ubuntu:22.04 @@ -4605,7 +4458,7 @@

                                                      Improper Input Validation

                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17, git@1:2.34.1-1ubuntu1.10 and others + docker-image|quay.io/argoproj/argocd@v2.8.18, git@1:2.34.1-1ubuntu1.10 and others
                                                    @@ -4617,7 +4470,7 @@

                                                    Detailed paths

                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 git@1:2.34.1-1ubuntu1.10 @@ -4628,7 +4481,7 @@

                                                      Detailed paths

                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 git@1:2.34.1-1ubuntu1.10 @@ -4637,7 +4490,7 @@

                                                      Detailed paths

                                                    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 git-lfs@3.0.2-1ubuntu0.2 @@ -4684,7 +4537,7 @@

                                                      Uncontrolled Recursion

                                                      • - Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.18/argoproj/argocd Dockerfile
                                                      • Package Manager: ubuntu:22.04 @@ -4697,7 +4550,7 @@

                                                        Uncontrolled Recursion

                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 and gcc-12/libstdc++6@12.3.0-1ubuntu1~22.04 + docker-image|quay.io/argoproj/argocd@v2.8.18 and gcc-12/libstdc++6@12.3.0-1ubuntu1~22.04
                                                      @@ -4710,7 +4563,7 @@

                                                      Detailed paths

                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 gcc-12/libstdc++6@12.3.0-1ubuntu1~22.04 @@ -4719,7 +4572,7 @@

                                                        Detailed paths

                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 apt@2.4.12 @@ -4730,7 +4583,7 @@

                                                        Detailed paths

                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 apt@2.4.12 @@ -4743,7 +4596,7 @@

                                                        Detailed paths

                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 gcc-12/gcc-12-base@12.3.0-1ubuntu1~22.04 @@ -4752,7 +4605,7 @@

                                                        Detailed paths

                                                      • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 + docker-image|quay.io/argoproj/argocd@v2.8.18 gcc-12/libgcc-s1@12.3.0-1ubuntu1~22.04 @@ -4799,7 +4652,7 @@

                                                        Improper Input Validation

                                                        • - Manifest file: quay.io/argoproj/argocd:v2.8.17/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.8.18/argoproj/argocd Dockerfile
                                                        • Package Manager: ubuntu:22.04 @@ -4812,7 +4665,7 @@

                                                          Improper Input Validation

                                                        • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.8.17 and coreutils@8.32-4.1ubuntu1.2 + docker-image|quay.io/argoproj/argocd@v2.8.18 and coreutils@8.32-4.1ubuntu1.2
                                                        @@ -4825,7 +4678,7 @@

                                                        Detailed paths

                                                        diff --git a/docs/snyk/v2.9.13/argocd-iac-install.html b/docs/snyk/v2.9.14/argocd-iac-install.html similarity index 99% rename from docs/snyk/v2.9.13/argocd-iac-install.html rename to docs/snyk/v2.9.14/argocd-iac-install.html index e933d17b7c1ec..3201c23eb7665 100644 --- a/docs/snyk/v2.9.13/argocd-iac-install.html +++ b/docs/snyk/v2.9.14/argocd-iac-install.html @@ -456,7 +456,7 @@

                                                        Snyk test report

                                                        -

                                                        April 28th 2024, 12:24:23 am (UTC+00:00)

                                                        +

                                                        May 5th 2024, 12:24:52 am (UTC+00:00)

                                                        Scanned the following path: diff --git a/docs/snyk/v2.9.13/argocd-iac-namespace-install.html b/docs/snyk/v2.9.14/argocd-iac-namespace-install.html similarity index 99% rename from docs/snyk/v2.9.13/argocd-iac-namespace-install.html rename to docs/snyk/v2.9.14/argocd-iac-namespace-install.html index 3d4c0e2f1aa76..54300b5572051 100644 --- a/docs/snyk/v2.9.13/argocd-iac-namespace-install.html +++ b/docs/snyk/v2.9.14/argocd-iac-namespace-install.html @@ -456,7 +456,7 @@

                                                        Snyk test report

                                                        -

                                                        April 28th 2024, 12:24:32 am (UTC+00:00)

                                                        +

                                                        May 5th 2024, 12:25:02 am (UTC+00:00)

                                                        Scanned the following path: diff --git a/docs/snyk/v2.9.13/argocd-test.html b/docs/snyk/v2.9.14/argocd-test.html similarity index 99% rename from docs/snyk/v2.9.13/argocd-test.html rename to docs/snyk/v2.9.14/argocd-test.html index dba6599c95117..2019a17649901 100644 --- a/docs/snyk/v2.9.13/argocd-test.html +++ b/docs/snyk/v2.9.14/argocd-test.html @@ -456,7 +456,7 @@

                                                        Snyk test report

                                                        -

                                                        April 28th 2024, 12:22:38 am (UTC+00:00)

                                                        +

                                                        May 5th 2024, 12:23:06 am (UTC+00:00)

                                                        Scanned the following paths: @@ -4946,7 +4946,7 @@

                                                        Detailed paths

                                                        github.com/go-git/go-git/v5/plumbing/transport/ssh@5.11.0 - github.com/skeema/knownhosts@1.2.1 + github.com/skeema/knownhosts@1.2.2 golang.org/x/crypto/ssh@0.16.0 @@ -4972,7 +4972,7 @@

                                                        Detailed paths

                                                        github.com/go-git/go-git/v5/plumbing/transport/ssh@5.11.0 - github.com/skeema/knownhosts@1.2.1 + github.com/skeema/knownhosts@1.2.2 golang.org/x/crypto/ssh/knownhosts@0.16.0 @@ -4989,7 +4989,7 @@

                                                        Detailed paths

                                                        github.com/go-git/go-git/v5/plumbing/transport/ssh@5.11.0 - github.com/skeema/knownhosts@1.2.1 + github.com/skeema/knownhosts@1.2.2 golang.org/x/crypto/ssh@0.16.0 @@ -5034,7 +5034,7 @@

                                                        Detailed paths

                                                        github.com/go-git/go-git/v5/plumbing/transport/ssh@5.11.0 - github.com/skeema/knownhosts@1.2.1 + github.com/skeema/knownhosts@1.2.2 golang.org/x/crypto/ssh/knownhosts@0.16.0 @@ -5053,7 +5053,7 @@

                                                        Detailed paths

                                                        github.com/go-git/go-git/v5/plumbing/transport/ssh@5.11.0 - github.com/skeema/knownhosts@1.2.1 + github.com/skeema/knownhosts@1.2.2 golang.org/x/crypto/ssh@0.16.0 @@ -5087,7 +5087,7 @@

                                                        Detailed paths

                                                        github.com/go-git/go-git/v5/plumbing/transport/ssh@5.11.0 - github.com/skeema/knownhosts@1.2.1 + github.com/skeema/knownhosts@1.2.2 golang.org/x/crypto/ssh/knownhosts@0.16.0 diff --git a/docs/snyk/v2.10.8/ghcr.io_dexidp_dex_v2.37.0.html b/docs/snyk/v2.9.14/ghcr.io_dexidp_dex_v2.37.0.html similarity index 99% rename from docs/snyk/v2.10.8/ghcr.io_dexidp_dex_v2.37.0.html rename to docs/snyk/v2.9.14/ghcr.io_dexidp_dex_v2.37.0.html index 339452ac27e19..07f30b33a9d48 100644 --- a/docs/snyk/v2.10.8/ghcr.io_dexidp_dex_v2.37.0.html +++ b/docs/snyk/v2.9.14/ghcr.io_dexidp_dex_v2.37.0.html @@ -456,7 +456,7 @@

                                                        Snyk test report

                                                        -

                                                        April 28th 2024, 12:20:28 am (UTC+00:00)

                                                        +

                                                        May 5th 2024, 12:23:11 am (UTC+00:00)

                                                        Scanned the following paths: @@ -1882,6 +1882,7 @@

                                                        References

                                                      • https://www.openssl.org/news/secadv/20231106.txt
                                                      • http://www.openwall.com/lists/oss-security/2023/11/06/2
                                                      • https://security.netapp.com/advisory/ntap-20231130-0010/
                                                        • +
                                                      • http://www.openwall.com/lists/oss-security/2024/03/11/1
                                                      @@ -2047,6 +2048,8 @@

                                                      References

                                                    • https://security.netapp.com/advisory/ntap-20240216-0009/
                                                    • https://security.netapp.com/advisory/ntap-20240426-0008/
                                                    • https://security.netapp.com/advisory/ntap-20240426-0013/
                                                      • +
                                                    • http://www.openwall.com/lists/oss-security/2024/03/11/1
                                                      • +
                                                    • https://security.netapp.com/advisory/ntap-20240503-0011/
                                                    @@ -2200,6 +2203,7 @@

                                                    References

                                                  • https://github.openssl.org/openssl/extended-releases/commit/aebaa5883e31122b404e450732dc833dc9dee539
                                                  • https://www.openssl.org/news/secadv/20240125.txt
                                                  • https://security.netapp.com/advisory/ntap-20240208-0006/
                                                    • +
                                                  • http://www.openwall.com/lists/oss-security/2024/03/11/1
                                                  @@ -4438,6 +4442,7 @@

                                                  References

                                                • https://github.com/openssl/openssl/commit/18c02492138d1eb8b6548cb26e7b625fb2414a2a
                                                • https://github.com/openssl/openssl/commit/a830f551557d3d66a84bbb18a5b889c640c36294
                                                • https://www.openssl.org/news/secadv/20240115.txt
                                                  • +
                                                • http://www.openwall.com/lists/oss-security/2024/03/11/1
                                                @@ -4588,6 +4593,8 @@

                                                References

                                              • https://github.com/openssl/openssl/commit/e9d7083e241670332e0443da0f0d4ffb52829f08
                                              • https://github.openssl.org/openssl/extended-releases/commit/5f8d25770ae6437db119dfc951e207271a326640
                                              • https://www.openssl.org/news/secadv/20240408.txt
                                                • +
                                              • http://www.openwall.com/lists/oss-security/2024/04/08/5
                                                • +
                                              • https://security.netapp.com/advisory/ntap-20240503-0013/
                                              diff --git a/docs/snyk/v2.11.0-rc2/haproxy_2.6.14-alpine.html b/docs/snyk/v2.9.14/haproxy_2.6.14-alpine.html similarity index 98% rename from docs/snyk/v2.11.0-rc2/haproxy_2.6.14-alpine.html rename to docs/snyk/v2.9.14/haproxy_2.6.14-alpine.html index fea8477a51f0a..0cc87f18067b9 100644 --- a/docs/snyk/v2.11.0-rc2/haproxy_2.6.14-alpine.html +++ b/docs/snyk/v2.9.14/haproxy_2.6.14-alpine.html @@ -456,7 +456,7 @@

                                              Snyk test report

                                              -

                                              April 28th 2024, 12:18:25 am (UTC+00:00)

                                              +

                                              May 5th 2024, 12:23:15 am (UTC+00:00)

                                              Scanned the following path: @@ -851,6 +851,7 @@

                                              References

                                            • https://www.openssl.org/news/secadv/20231106.txt
                                            • http://www.openwall.com/lists/oss-security/2023/11/06/2
                                            • https://security.netapp.com/advisory/ntap-20231130-0010/
                                              • +
                                            • http://www.openwall.com/lists/oss-security/2024/03/11/1
                                            @@ -1038,6 +1039,8 @@

                                            References

                                          • https://security.netapp.com/advisory/ntap-20240216-0009/
                                          • https://security.netapp.com/advisory/ntap-20240426-0008/
                                          • https://security.netapp.com/advisory/ntap-20240426-0013/
                                            • +
                                          • http://www.openwall.com/lists/oss-security/2024/03/11/1
                                            • +
                                          • https://security.netapp.com/advisory/ntap-20240503-0011/
                                          @@ -1213,6 +1216,7 @@

                                          References

                                        • https://github.openssl.org/openssl/extended-releases/commit/aebaa5883e31122b404e450732dc833dc9dee539
                                        • https://www.openssl.org/news/secadv/20240125.txt
                                        • https://security.netapp.com/advisory/ntap-20240208-0006/
                                          • +
                                        • http://www.openwall.com/lists/oss-security/2024/03/11/1
                                        @@ -1389,6 +1393,7 @@

                                        References

                                      • https://github.com/openssl/openssl/commit/18c02492138d1eb8b6548cb26e7b625fb2414a2a
                                      • https://github.com/openssl/openssl/commit/a830f551557d3d66a84bbb18a5b889c640c36294
                                      • https://www.openssl.org/news/secadv/20240115.txt
                                        • +
                                      • http://www.openwall.com/lists/oss-security/2024/03/11/1
                                      @@ -1561,6 +1566,8 @@

                                      References

                                    • https://github.com/openssl/openssl/commit/e9d7083e241670332e0443da0f0d4ffb52829f08
                                    • https://github.openssl.org/openssl/extended-releases/commit/5f8d25770ae6437db119dfc951e207271a326640
                                    • https://www.openssl.org/news/secadv/20240408.txt
                                      • +
                                    • http://www.openwall.com/lists/oss-security/2024/04/08/5
                                      • +
                                    • https://security.netapp.com/advisory/ntap-20240503-0013/
                                    diff --git a/docs/snyk/v2.10.8/quay.io_argoproj_argocd_v2.10.8.html b/docs/snyk/v2.9.14/quay.io_argoproj_argocd_v2.9.14.html similarity index 94% rename from docs/snyk/v2.10.8/quay.io_argoproj_argocd_v2.10.8.html rename to docs/snyk/v2.9.14/quay.io_argoproj_argocd_v2.9.14.html index 0b24853fce6d5..0ed72b091a090 100644 --- a/docs/snyk/v2.10.8/quay.io_argoproj_argocd_v2.10.8.html +++ b/docs/snyk/v2.9.14/quay.io_argoproj_argocd_v2.9.14.html @@ -7,7 +7,7 @@ Snyk test report - + @@ -456,23 +456,23 @@

                                    Snyk test report

                                    -

                                    April 28th 2024, 12:20:49 am (UTC+00:00)

                                    +

                                    May 5th 2024, 12:23:35 am (UTC+00:00)

                                    Scanned the following paths:
                                      -
                                    • quay.io/argoproj/argocd:v2.10.8/argoproj/argocd/Dockerfile (deb)
                                      • -
                                    • quay.io/argoproj/argocd:v2.10.8/argoproj/argo-cd/v2//usr/local/bin/argocd (gomodules)
                                      • -
                                    • quay.io/argoproj/argocd:v2.10.8//usr/local/bin/kustomize (gomodules)
                                      • -
                                    • quay.io/argoproj/argocd:v2.10.8/helm/v3//usr/local/bin/helm (gomodules)
                                      • -
                                    • quay.io/argoproj/argocd:v2.10.8/git-lfs/git-lfs//usr/bin/git-lfs (gomodules)
                                      • +
                                    • quay.io/argoproj/argocd:v2.9.14/argoproj/argocd/Dockerfile (deb)
                                      • +
                                    • quay.io/argoproj/argocd:v2.9.14/argoproj/argo-cd/v2//usr/local/bin/argocd (gomodules)
                                      • +
                                    • quay.io/argoproj/argocd:v2.9.14//usr/local/bin/kustomize (gomodules)
                                      • +
                                    • quay.io/argoproj/argocd:v2.9.14/helm/v3//usr/local/bin/helm (gomodules)
                                      • +
                                    • quay.io/argoproj/argocd:v2.9.14/git-lfs/git-lfs//usr/bin/git-lfs (gomodules)
                                    -
                                    34 known vulnerabilities
                                    -
                                    168 vulnerable dependency paths
                                    -
                                    2275 dependencies
                                    +
                                    33 known vulnerabilities
                                    +
                                    167 vulnerable dependency paths
                                    +
                                    2189 dependencies

    @@ -481,7 +481,7 @@

    Snyk test report

    -

    Allocation of Resources Without Limits or Throttling

    +

    Denial of Service (DoS)

    @@ -492,7 +492,7 @@

    Allocation of Resources Without Limits or Throttling

  • - Manifest file: quay.io/argoproj/argocd:v2.10.8/argoproj/argo-cd/v2 /usr/local/bin/argocd + Manifest file: quay.io/argoproj/argocd:v2.9.14/argoproj/argo-cd/v2 /usr/local/bin/argocd
  • Package Manager: golang @@ -500,12 +500,12 @@

    Allocation of Resources Without Limits or Throttling

    Vulnerable module: - golang.org/x/net/http2 + google.golang.org/grpc
  • Introduced through: - github.com/argoproj/argo-cd/v2@* and golang.org/x/net/http2@v0.19.0 + github.com/argoproj/argo-cd/v2@* and google.golang.org/grpc@v1.56.2
    • @@ -520,16 +520,7 @@

    Detailed paths

    Introduced through: github.com/argoproj/argo-cd/v2@* - golang.org/x/net/http2@v0.19.0 - - - - -
  • - Introduced through: - helm.sh/helm/v3@* - - golang.org/x/net/http2@v0.17.0 + google.golang.org/grpc@v1.56.2 @@ -541,51 +532,62 @@

    Detailed paths

    Overview

    -

    golang.org/x/net/http2 is a work-in-progress HTTP/2 implementation for Go.

    -

    Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling when reading header data from CONTINUATION frames. As part of the HPACK flow, all incoming HEADERS and CONTINUATION frames are read even if their payloads exceed MaxHeaderBytes and will be discarded. An attacker can send excessive data over a connection to render it unresponsive.

    +

    google.golang.org/grpc is a Go implementation of gRPC

    +

    Affected versions of this package are vulnerable to Denial of Service (DoS) in the implementation of the HTTP/2 protocol. An attacker can cause a denial of service (including via DDoS) by rapidly resetting many streams through request cancellation.

    Remediation

    -

    Upgrade golang.org/x/net/http2 to version 0.23.0 or higher.

    +

    Upgrade google.golang.org/grpc to version 1.56.3, 1.57.1, 1.58.3 or higher.

    References

    -

    More about this vulnerability

    +

    More about this vulnerability

    • -
    -

    CVE-2020-22916

    +
    +

    Allocation of Resources Without Limits or Throttling

    -
    - medium severity +
    + high severity
    • - Manifest file: quay.io/argoproj/argocd:v2.10.8/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.9.14/argoproj/argo-cd/v2 /usr/local/bin/argocd
    • - Package Manager: ubuntu:22.04 + Package Manager: golang
    • Vulnerable module: - xz-utils/liblzma5 + golang.org/x/net/http2
    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.8 and xz-utils/liblzma5@5.2.5-2ubuntu1 + github.com/argoproj/argo-cd/v2@* and golang.org/x/net/http2@v0.19.0
    @@ -598,9 +600,18 @@

    Detailed paths

    -

    CVE-2023-51767

    +

    CVE-2020-22916

    @@ -648,7 +654,7 @@

    CVE-2023-51767

    • - Manifest file: quay.io/argoproj/argocd:v2.10.8/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.9.14/argoproj/argocd Dockerfile
    • Package Manager: ubuntu:22.04 @@ -656,12 +662,12 @@

      CVE-2023-51767

    • Vulnerable module: - openssh/openssh-client + xz-utils/liblzma5
    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.8 and openssh/openssh-client@1:8.9p1-3ubuntu0.7 + docker-image|quay.io/argoproj/argocd@v2.9.14 and xz-utils/liblzma5@5.2.5-2ubuntu1
    @@ -674,9 +680,9 @@

    Detailed paths

    @@ -724,7 +730,7 @@

    Information Exposure

    • - Manifest file: quay.io/argoproj/argocd:v2.10.8/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.9.14/argoproj/argocd Dockerfile
    • Package Manager: ubuntu:22.04 @@ -737,7 +743,7 @@

      Information Exposure

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.8 and libgcrypt20@1.9.4-3ubuntu3 + docker-image|quay.io/argoproj/argocd@v2.9.14 and libgcrypt20@1.9.4-3ubuntu3
    @@ -750,7 +756,7 @@

    Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.8 + docker-image|quay.io/argoproj/argocd@v2.9.14 libgcrypt20@1.9.4-3ubuntu3 @@ -759,7 +765,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.8 + docker-image|quay.io/argoproj/argocd@v2.9.14 gnupg2/dirmngr@2.2.27-3ubuntu2.1 @@ -770,7 +776,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.8 + docker-image|quay.io/argoproj/argocd@v2.9.14 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -781,7 +787,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.8 + docker-image|quay.io/argoproj/argocd@v2.9.14 apt@2.4.12 @@ -794,7 +800,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.8 + docker-image|quay.io/argoproj/argocd@v2.9.14 apt@2.4.12 @@ -807,7 +813,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.8 + docker-image|quay.io/argoproj/argocd@v2.9.14 gnupg2/gpg@2.2.27-3ubuntu2.1 @@ -820,7 +826,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.8 + docker-image|quay.io/argoproj/argocd@v2.9.14 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -833,7 +839,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.8 + docker-image|quay.io/argoproj/argocd@v2.9.14 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -846,7 +852,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.8 + docker-image|quay.io/argoproj/argocd@v2.9.14 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -859,7 +865,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.8 + docker-image|quay.io/argoproj/argocd@v2.9.14 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -872,7 +878,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.8 + docker-image|quay.io/argoproj/argocd@v2.9.14 gnupg2/gnupg@2.2.27-3ubuntu2.1 @@ -885,7 +891,7 @@

      Detailed paths

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.8 + docker-image|quay.io/argoproj/argocd@v2.9.14 apt@2.4.12 @@ -924,78 +930,6 @@

      References

      More about this vulnerability

    -
    -
    -

    CVE-2024-32487

    -
    - -
    - medium severity -
    - -
    - -
      -
    • - Manifest file: quay.io/argoproj/argocd:v2.10.8/argoproj/argocd Dockerfile -
      • -
    • - Package Manager: ubuntu:22.04 -
      • -
    • - Vulnerable module: - - less -
      • - -
    • Introduced through: - - docker-image|quay.io/argoproj/argocd@v2.10.8 and less@590-1ubuntu0.22.04.2 - -
      • -
    - -
    - - -

    Detailed paths

    - -
      -
    • - Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.8 - - less@590-1ubuntu0.22.04.2 - - - -
      • -
    - -
    - -
    - -

    NVD Description

    -

    Note: Versions mentioned in the description apply only to the upstream less package and not the less package as distributed by Ubuntu. - See How to fix? for Ubuntu:22.04 relevant fixed versions and status.

    -

    less through 653 allows OS command execution via a newline character in the name of a file, because quoting is mishandled in filename.c. Exploitation typically requires use with attacker-controlled file names, such as the files extracted from an untrusted archive. Exploitation also requires the LESSOPEN environment variable, but this is set by default in many common cases.

    -

    Remediation

    -

    There is no fixed version for Ubuntu:22.04 less.

    -

    References

    - - -
    - -
    -

    More about this vulnerability

    -
    -

    CVE-2024-26461

    @@ -1009,7 +943,7 @@

    CVE-2024-26461

    • - Manifest file: quay.io/argoproj/argocd:v2.10.8/argoproj/argocd Dockerfile + Manifest file: quay.io/argoproj/argocd:v2.9.14/argoproj/argocd Dockerfile
    • Package Manager: ubuntu:22.04 @@ -1022,7 +956,7 @@

      CVE-2024-26461

    • Introduced through: - docker-image|quay.io/argoproj/argocd@v2.10.8 and krb5/libk5crypto3@1.19.2-2ubuntu0.3 + docker-image|quay.io/argoproj/argocd@v2.9.14 and krb5/libk5crypto3@1.19.2-2ubuntu0.3
    @@ -1035,7 +969,7 @@

    Detailed paths

    ) : null} - {group.info?.map(infoItem => ( -
    {infoItem.value}
    - ))} + {group.info?.map(infoItem =>
    {infoItem.value}
    )}
    )}
    diff --git a/ui/src/app/applications/components/application-resource-tree/application-resource-tree.test.tsx b/ui/src/app/applications/components/application-resource-tree/application-resource-tree.test.tsx index d9918fb28523d..45a7797aa9a0f 100644 --- a/ui/src/app/applications/components/application-resource-tree/application-resource-tree.test.tsx +++ b/ui/src/app/applications/components/application-resource-tree/application-resource-tree.test.tsx @@ -1,93 +1,109 @@ -import {compareNodes, describeNode, ResourceTreeNode} from "./application-resource-tree"; +import {compareNodes, describeNode, ResourceTreeNode} from './application-resource-tree'; -test("describeNode.NoImages", () => { - expect(describeNode({ - kind: "my-kind", - name: "my-name", - namespace: "my-ns", - } as ResourceTreeNode)).toBe(`Kind: my-kind +test('describeNode.NoImages', () => { + expect( + describeNode({ + kind: 'my-kind', + name: 'my-name', + namespace: 'my-ns', + } as ResourceTreeNode), + ).toBe(`Kind: my-kind Namespace: my-ns -Name: my-name`) +Name: my-name`); }); -test("describeNode.Images", () => { - expect(describeNode({ - kind: "my-kind", - name: "my-name", - namespace: "my-ns", - images: ['my-image:v1'], - } as ResourceTreeNode)).toBe(`Kind: my-kind +test('describeNode.Images', () => { + expect( + describeNode({ + kind: 'my-kind', + name: 'my-name', + namespace: 'my-ns', + images: ['my-image:v1'], + } as ResourceTreeNode), + ).toBe(`Kind: my-kind Namespace: my-ns Name: my-name Images: -- my-image:v1`) +- my-image:v1`); }); -test("compareNodes", () => { +test('compareNodes', () => { const nodes = [ - { - resourceVersion: "1", - name: "a", - info: [{ - "name": "Revision", - "value": "Rev:1" - }], - } as ResourceTreeNode, - { - orphaned: false, - resourceVersion: "1", - name: "a", - info: [{ - "name": "Revision", - "value": "Rev:1" - }], - } as ResourceTreeNode, - { - orphaned: false, - resourceVersion: "1", - name: "b", - info: [{ - "name": "Revision", - "value": "Rev:1" - }], - } as ResourceTreeNode, - { - orphaned: false, - resourceVersion: "2", - name: "a", - info: [{ - "name": "Revision", - "value": "Rev:2" - }], - } as ResourceTreeNode, - { - orphaned: false, - resourceVersion: "2", - name: "b", - info: [{ - "name": "Revision", - "value": "Rev:2" - }], - } as ResourceTreeNode, - { - orphaned: true, - resourceVersion: "1", - name: "a", - info: [{ - "name": "Revision", - "value": "Rev:1" - }], - } as ResourceTreeNode, + { + resourceVersion: '1', + name: 'a', + info: [ + { + name: 'Revision', + value: 'Rev:1', + }, + ], + } as ResourceTreeNode, + { + orphaned: false, + resourceVersion: '1', + name: 'a', + info: [ + { + name: 'Revision', + value: 'Rev:1', + }, + ], + } as ResourceTreeNode, + { + orphaned: false, + resourceVersion: '1', + name: 'b', + info: [ + { + name: 'Revision', + value: 'Rev:1', + }, + ], + } as ResourceTreeNode, + { + orphaned: false, + resourceVersion: '2', + name: 'a', + info: [ + { + name: 'Revision', + value: 'Rev:2', + }, + ], + } as ResourceTreeNode, + { + orphaned: false, + resourceVersion: '2', + name: 'b', + info: [ + { + name: 'Revision', + value: 'Rev:2', + }, + ], + } as ResourceTreeNode, + { + orphaned: true, + resourceVersion: '1', + name: 'a', + info: [ + { + name: 'Revision', + value: 'Rev:1', + }, + ], + } as ResourceTreeNode, ]; - expect(compareNodes(nodes[0], nodes[1])).toBe(0) - expect(compareNodes(nodes[2], nodes[1])).toBe(1) - expect(compareNodes(nodes[1], nodes[2])).toBe(-1) - expect(compareNodes(nodes[3], nodes[2])).toBe(-1) - expect(compareNodes(nodes[2], nodes[3])).toBe(1) - expect(compareNodes(nodes[4], nodes[3])).toBe(1) - expect(compareNodes(nodes[3], nodes[4])).toBe(-1) - expect(compareNodes(nodes[5], nodes[4])).toBe(1) - expect(compareNodes(nodes[4], nodes[5])).toBe(-1) - expect(compareNodes(nodes[0], nodes[4])).toBe(-1) - expect(compareNodes(nodes[4], nodes[0])).toBe(1) + expect(compareNodes(nodes[0], nodes[1])).toBe(0); + expect(compareNodes(nodes[2], nodes[1])).toBe(1); + expect(compareNodes(nodes[1], nodes[2])).toBe(-1); + expect(compareNodes(nodes[3], nodes[2])).toBe(-1); + expect(compareNodes(nodes[2], nodes[3])).toBe(1); + expect(compareNodes(nodes[4], nodes[3])).toBe(1); + expect(compareNodes(nodes[3], nodes[4])).toBe(-1); + expect(compareNodes(nodes[5], nodes[4])).toBe(1); + expect(compareNodes(nodes[4], nodes[5])).toBe(-1); + expect(compareNodes(nodes[0], nodes[4])).toBe(-1); + expect(compareNodes(nodes[4], nodes[0])).toBe(1); }); diff --git a/ui/src/app/applications/components/application-resource-tree/application-resource-tree.tsx b/ui/src/app/applications/components/application-resource-tree/application-resource-tree.tsx index 06ba5e331e041..cb8fd8f43ecbd 100644 --- a/ui/src/app/applications/components/application-resource-tree/application-resource-tree.tsx +++ b/ui/src/app/applications/components/application-resource-tree/application-resource-tree.tsx @@ -94,15 +94,7 @@ const NODE_TYPES = { podGroup: 'pod_group' }; // generate lots of colors with different darkness -const TRAFFIC_COLORS = [0, 0.25, 0.4, 0.6] - .map(darken => - BASE_COLORS.map(item => - color(item) - .darken(darken) - .hex() - ) - ) - .reduce((first, second) => first.concat(second), []); +const TRAFFIC_COLORS = [0, 0.25, 0.4, 0.6].map(darken => BASE_COLORS.map(item => color(item).darken(darken).hex())).reduce((first, second) => first.concat(second), []); function getGraphSize(nodes: dagre.Node[]): {width: number; height: number} { let width = 0; @@ -892,7 +884,8 @@ export const ApplicationResourceTree = (props: ApplicationResourceTreeProps) => resourceVersion: props.app.metadata.resourceVersion, group: 'argoproj.io', version: '', - children: Array(), + // @ts-expect-error its not any + children: [], status: props.app.status.sync.status, health: props.app.status.health, uid: props.app.kind + '-' + props.app.metadata.namespace + '-' + props.app.metadata.name, @@ -1035,7 +1028,7 @@ export const ApplicationResourceTree = (props: ApplicationResourceTreeProps) => const loadBalancers = root.networkingInfo.ingress.map(ingress => ingress.hostname || ingress.ip); const colorByService = new Map(); (childrenByParentKey.get(treeNodeKey(root)) || []).forEach((child, i) => colorByService.set(treeNodeKey(child), TRAFFIC_COLORS[i % TRAFFIC_COLORS.length])); - (childrenByParentKey.get(treeNodeKey(root)) || []).sort(compareNodes).forEach((child, i) => { + (childrenByParentKey.get(treeNodeKey(root)) || []).sort(compareNodes).forEach(child => { processNode(child, root, [colorByService.get(treeNodeKey(child))]); }); if (root.podGroup && props.showCompactNodes) { diff --git a/ui/src/app/applications/components/application-retry-options/application-retry-options.tsx b/ui/src/app/applications/components/application-retry-options/application-retry-options.tsx index 48b72de19551e..c9e6f9265f208 100644 --- a/ui/src/app/applications/components/application-retry-options/application-retry-options.tsx +++ b/ui/src/app/applications/components/application-retry-options/application-retry-options.tsx @@ -1,3 +1,4 @@ +/* eslint-disable no-prototype-builtins */ import * as React from 'react'; import {FormApi, NestedForm, Text, Form} from 'react-form'; import {Checkbox, FormField} from 'argo-ui'; @@ -7,6 +8,7 @@ import * as models from '../../../shared/models'; import './application-retry-options.scss'; +// eslint-disable-next-line no-useless-escape const durationRegex = /^([\d\.]+[HMS])+$/i; const durationRegexError = 'Should be 1h10m10s/10h10m/10m/10s'; diff --git a/ui/src/app/applications/components/application-retry-view/application-retry-view.tsx b/ui/src/app/applications/components/application-retry-view/application-retry-view.tsx index a97d9d5b98609..0baeca32ce6ee 100644 --- a/ui/src/app/applications/components/application-retry-view/application-retry-view.tsx +++ b/ui/src/app/applications/components/application-retry-view/application-retry-view.tsx @@ -21,6 +21,6 @@ const retryOptionsView: Array<(initData: models.RetryStrategy) => React.ReactNod ]; export const ApplicationRetryView = ({initValues}: {initValues?: models.RetryStrategy}) => { - const result = !initValues ? 'Retry disabled' : retryOptionsView.map((render, i) => render(initValues)); + const result = !initValues ? 'Retry disabled' : retryOptionsView.map(render => render(initValues)); return
    {result}
    ; }; diff --git a/ui/src/app/applications/components/application-summary/application-summary.tsx b/ui/src/app/applications/components/application-summary/application-summary.tsx index 83916a001860e..702030be3b288 100644 --- a/ui/src/app/applications/components/application-summary/application-summary.tsx +++ b/ui/src/app/applications/components/application-summary/application-summary.tsx @@ -1,3 +1,4 @@ +/* eslint-disable no-prototype-builtins */ import {AutocompleteField, DropDownMenu, ErrorNotification, FormField, FormSelect, HelpIcon, NotificationType} from 'argo-ui'; import * as React from 'react'; import {FormApi, Text} from 'react-form'; diff --git a/ui/src/app/applications/components/application-summary/edit-notification-subscriptions.tsx b/ui/src/app/applications/components/application-summary/edit-notification-subscriptions.tsx index 1d774cd9cd4df..d1b2d597079a1 100644 --- a/ui/src/app/applications/components/application-summary/edit-notification-subscriptions.tsx +++ b/ui/src/app/applications/components/application-summary/edit-notification-subscriptions.tsx @@ -10,6 +10,7 @@ import './edit-notification-subscriptions.scss'; export const NOTIFICATION_SUBSCRIPTION_ANNOTATION_PREFIX = 'notifications.argoproj.io/subscribe'; +// eslint-disable-next-line no-useless-escape export const NOTIFICATION_SUBSCRIPTION_ANNOTATION_REGEX = new RegExp(`^notifications\.argoproj\.io\/subscribe\.[a-zA-Z-]{1,100}\.[a-zA-Z-]{1,100}$`); export type TNotificationSubscription = { @@ -96,20 +97,22 @@ export const useEditNotificationSubscriptions = (annotations: models.Application const onRemoveSubscription = (idx: number) => idx >= 0 && setSubscriptions(subscriptions.filter((_, i) => i !== idx)); - const withNotificationSubscriptions = (updateApp: ApplicationSummaryProps['updateApp']) => (...args: Parameters) => { - const app = args[0]; + const withNotificationSubscriptions = + (updateApp: ApplicationSummaryProps['updateApp']) => + (...args: Parameters) => { + const app = args[0]; - const notificationSubscriptionsRaw = notificationSubscriptionsParser.subscriptionsToAnnotations(subscriptions); + const notificationSubscriptionsRaw = notificationSubscriptionsParser.subscriptionsToAnnotations(subscriptions); - if (Object.keys(notificationSubscriptionsRaw)?.length) { - app.metadata.annotations = { - ...notificationSubscriptionsRaw, - ...(app.metadata.annotations || {}) - }; - } + if (Object.keys(notificationSubscriptionsRaw)?.length) { + app.metadata.annotations = { + ...notificationSubscriptionsRaw, + ...(app.metadata.annotations || {}) + }; + } - return updateApp(app, args[1]); - }; + return updateApp(app, args[1]); + }; const onResetNotificationSubscriptions = () => setSubscriptions(notificationSubscriptionsParser.annotationsToSubscriptions(annotations)); diff --git a/ui/src/app/applications/components/application-urls.test.ts b/ui/src/app/applications/components/application-urls.test.ts index a3093a5a29c1d..74a0dfc20e3c0 100644 --- a/ui/src/app/applications/components/application-urls.test.ts +++ b/ui/src/app/applications/components/application-urls.test.ts @@ -1,4 +1,4 @@ -import { ExternalLink, ExternalLinks, InvalidExternalLinkError } from './application-urls'; +import {ExternalLink, ExternalLinks, InvalidExternalLinkError} from './application-urls'; test('rejects malicious URLs', () => { expect(() => { @@ -29,24 +29,19 @@ test('allows relative URLs', () => { expect(new ExternalLink('/applications').ref).toEqual('/applications'); }); - test('URLs format', () => { expect(new ExternalLink('https://localhost:8080/applications')).toEqual({ ref: 'https://localhost:8080/applications', title: 'https://localhost:8080/applications', - }) + }); expect(new ExternalLink('title|https://localhost:8080/applications')).toEqual({ ref: 'https://localhost:8080/applications', title: 'title', - }) + }); }); - test('malicious URLs from list to be removed', () => { - const urls: string[] = [ - 'javascript:alert("hi")', - 'https://localhost:8080/applications', - ] + const urls: string[] = ['javascript:alert("hi")', 'https://localhost:8080/applications']; const links = ExternalLinks(urls); expect(links).toHaveLength(1); @@ -56,16 +51,8 @@ test('malicious URLs from list to be removed', () => { }); }); - test('list to be sorted', () => { - const urls: string[] = [ - 'https://a', - 'https://b', - 'a|https://c', - 'z|https://c', - 'x|https://d', - 'x|https://c', - ] + const urls: string[] = ['https://a', 'https://b', 'a|https://c', 'z|https://c', 'x|https://d', 'x|https://c']; const links = ExternalLinks(urls); // 'a|https://c', @@ -75,12 +62,12 @@ test('list to be sorted', () => { // 'https://a', // 'https://b', expect(links).toHaveLength(6); - expect(links[0].title).toEqual('a') - expect(links[1].title).toEqual('x') - expect(links[1].ref).toEqual('https://c') - expect(links[2].title).toEqual('x') - expect(links[2].ref).toEqual('https://d') - expect(links[3].title).toEqual('z') - expect(links[4].title).toEqual('https://a') - expect(links[5].title).toEqual('https://b') + expect(links[0].title).toEqual('a'); + expect(links[1].title).toEqual('x'); + expect(links[1].ref).toEqual('https://c'); + expect(links[2].title).toEqual('x'); + expect(links[2].ref).toEqual('https://d'); + expect(links[3].title).toEqual('z'); + expect(links[4].title).toEqual('https://a'); + expect(links[5].title).toEqual('https://b'); }); diff --git a/ui/src/app/applications/components/applications-list/applications-status-bar.tsx b/ui/src/app/applications/components/applications-list/applications-status-bar.tsx index c20b5612d121f..d1b4f8a460a14 100644 --- a/ui/src/app/applications/components/applications-list/applications-status-bar.tsx +++ b/ui/src/app/applications/components/applications-list/applications-status-bar.tsx @@ -53,7 +53,7 @@ export const ApplicationsStatusBar = ({applications}: ApplicationsStatusBarProps return ( - {ctx => ( + {() => ( <> {totalItems > 1 && (
    diff --git a/ui/src/app/applications/components/label-selector.ts b/ui/src/app/applications/components/label-selector.ts index 86909ee0d116b..7814e068052c8 100644 --- a/ui/src/app/applications/components/label-selector.ts +++ b/ui/src/app/applications/components/label-selector.ts @@ -1,3 +1,4 @@ +/* eslint-disable no-prototype-builtins */ type operatorFn = (labels: {[name: string]: string}, key: string, values: string[]) => boolean; const operators: {[type: string]: operatorFn} = { diff --git a/ui/src/app/applications/components/pod-logs-viewer/pod-logs-viewer.tsx b/ui/src/app/applications/components/pod-logs-viewer/pod-logs-viewer.tsx index 18778e2b848b2..3c406556ea784 100644 --- a/ui/src/app/applications/components/pod-logs-viewer/pod-logs-viewer.tsx +++ b/ui/src/app/applications/components/pod-logs-viewer/pod-logs-viewer.tsx @@ -94,6 +94,7 @@ export const PodsLogsViewer = (props: PodLogsProps) => { useEffect(() => { // https://stackoverflow.com/questions/3561493/is-there-a-regexp-escape-function-in-javascript // matchNothing this is chosen instead of empty regexp, because that would match everything and break colored logs + // eslint-disable-next-line no-useless-escape setHighlight(filter === '' ? matchNothing : new RegExp(filter.replace(/[-\/\\^$*+?.()|[\]{}]/g, '\\$&'), 'g')); }, [filter]); diff --git a/ui/src/app/applications/components/resource-details/resource-details.tsx b/ui/src/app/applications/components/resource-details/resource-details.tsx index 5462ba4f7315b..d20285878a53c 100644 --- a/ui/src/app/applications/components/resource-details/resource-details.tsx +++ b/ui/src/app/applications/components/resource-details/resource-details.tsx @@ -373,7 +373,7 @@ async function getSources(app: models.Application) { const length = sources.length; for (let i = 0; i < length; i++) { const aSource = sources[i]; - const repoDetail = await services.repos.appDetails(aSource, app.metadata.name, app.spec.project).catch(e => ({ + const repoDetail = await services.repos.appDetails(aSource, app.metadata.name, app.spec.project).catch(() => ({ type: 'Directory' as AppSourceType, path: aSource.path })); diff --git a/ui/src/app/applications/components/utils.test.tsx b/ui/src/app/applications/components/utils.test.tsx index b7208f1854561..aa84d9d0a4bf3 100644 --- a/ui/src/app/applications/components/utils.test.tsx +++ b/ui/src/app/applications/components/utils.test.tsx @@ -22,7 +22,7 @@ test('getAppOperationState.Operation', () => { test('getAppOperationState.Status', () => { const state = getAppOperationState({ metadata: {}, - status: {operationState: {phase: OperationPhases.Error, startedAt: zero}} + status: {operationState: {phase: OperationPhases.Error, startedAt: zero}}, } as Application); expect(state.phase).toBe(OperationPhases.Error); @@ -188,10 +188,10 @@ test('ResourceResultIcon.Hook.Running', () => { { hookType: 'Sync', hookPhase: OperationPhases.Running, - message: 'my-message' + message: 'my-message', } as ResourceResult } - /> + />, ) .toJSON(); diff --git a/ui/src/app/applications/components/utils.tsx b/ui/src/app/applications/components/utils.tsx index 72ff81a7f2e2f..cd41668067a24 100644 --- a/ui/src/app/applications/components/utils.tsx +++ b/ui/src/app/applications/components/utils.tsx @@ -245,6 +245,7 @@ export const ComparisonStatusIcon = ({ title = 'Synced'; break; case appModels.SyncStatuses.OutOfSync: + // eslint-disable-next-line no-case-declarations const requiresPruning = resource && resource.requiresPruning; className = requiresPruning ? 'fa fa-trash' : 'fa fa-arrow-alt-circle-up'; title = 'OutOfSync'; @@ -433,7 +434,7 @@ function getResourceActionsMenuItems(resource: ResourceTreeNode, metadata: model }); } } - } as MenuItem) + }) as MenuItem ); }) .catch(() => [] as MenuItem[]); @@ -514,7 +515,7 @@ function getActionItems( iconClassName: `fa fa-fw ${link.iconClass ? link.iconClass : 'fa-external-link'}`, action: () => window.open(link.url, '_blank'), tooltip: link.description - } as MenuItem) + }) as MenuItem ); }) .catch(() => [] as MenuItem[]); @@ -610,8 +611,7 @@ export function renderResourceButtons( apis: ContextApis, appChanged: BehaviorSubject ): React.ReactNode { - let menuItems: Observable; - menuItems = getActionItems(resource, application, tree, apis, appChanged, true); + const menuItems: Observable = getActionItems(resource, application, tree, apis, appChanged, true); return ( menuItems}> {items => ( @@ -628,12 +628,7 @@ export function renderResourceButtons( } }} icon={item.iconClassName} - tooltip={ - item.title - .toString() - .charAt(0) - .toUpperCase() + item.title.toString().slice(1) - } + tooltip={item.title.toString().charAt(0).toUpperCase() + item.title.toString().slice(1)} /> ))}
    @@ -1250,14 +1245,8 @@ export function appInstanceName(app: appModels.Application): string { } export function formatCreationTimestamp(creationTimestamp: string) { - const createdAt = moment - .utc(creationTimestamp) - .local() - .format('MM/DD/YYYY HH:mm:ss'); - const fromNow = moment - .utc(creationTimestamp) - .local() - .fromNow(); + const createdAt = moment.utc(creationTimestamp).local().format('MM/DD/YYYY HH:mm:ss'); + const fromNow = moment.utc(creationTimestamp).local().fromNow(); return ( {createdAt} diff --git a/ui/src/app/settings/components/certs-list/certs-list.tsx b/ui/src/app/settings/components/certs-list/certs-list.tsx index 14a57facf124e..b905e2f4ebb67 100644 --- a/ui/src/app/settings/components/certs-list/certs-list.tsx +++ b/ui/src/app/settings/components/certs-list/certs-list.tsx @@ -219,7 +219,7 @@ export class CertsList extends React.Component> { let knownHostEntries: models.RepoCert[] = []; atob(params.certData) .split('\n') - .forEach(function processEntry(item, index) { + .forEach(function processEntry(item) { const trimmedLine = item.trimLeft(); if (trimmedLine.startsWith('#') === false) { const knownHosts = trimmedLine.split(' ', 3); @@ -227,6 +227,7 @@ export class CertsList extends React.Component> { // Perform a little sanity check on the data - server // checks too, but let's not send it invalid data in // the first place. + // eslint-disable-next-line no-useless-escape const subType = knownHosts[1].match(/^(ssh\-[a-z0-9]+|ecdsa-[a-z0-9\-]+)$/gi); if (subType != null) { // Key could be valid for multiple hosts diff --git a/ui/src/app/settings/components/clusters-list/clusters-list.tsx b/ui/src/app/settings/components/clusters-list/clusters-list.tsx index e5c7c0682e88e..008504774bb52 100644 --- a/ui/src/app/settings/components/clusters-list/clusters-list.tsx +++ b/ui/src/app/settings/components/clusters-list/clusters-list.tsx @@ -1,7 +1,6 @@ import {DropDownMenu, ErrorNotification, NotificationType} from 'argo-ui'; import {Tooltip, Toolbar} from 'argo-ui'; import * as React from 'react'; -import {RouteComponentProps} from 'react-router-dom'; import {clusterName, ConnectionStateIcon, DataLoader, EmptyState, Page} from '../../../shared/components'; import {Consumer, Context} from '../../../shared/context'; import * as models from '../../../shared/models'; @@ -46,7 +45,7 @@ const CustomTopBar = (props: {toolbar?: Toolbar | Observable}) => { ); }; -export const ClustersList = (props: RouteComponentProps<{}>) => { +export const ClustersList = () => { const clustersLoaderRef = React.useRef(); return ( diff --git a/ui/src/app/settings/components/project-details/project-details.tsx b/ui/src/app/settings/components/project-details/project-details.tsx index 8b00c8590edb7..5bc4c070cabe8 100644 --- a/ui/src/app/settings/components/project-details/project-details.tsx +++ b/ui/src/app/settings/components/project-details/project-details.tsx @@ -574,7 +574,7 @@ export class ProjectDetails extends React.Component proj.metadata.name + edit: () => proj.metadata.name }, { title: 'DESCRIPTION', diff --git a/ui/src/app/settings/components/repos-list/repos-list.tsx b/ui/src/app/settings/components/repos-list/repos-list.tsx index 9c0d5970a0e25..5322644073142 100644 --- a/ui/src/app/settings/components/repos-list/repos-list.tsx +++ b/ui/src/app/settings/components/repos-list/repos-list.tsx @@ -1,3 +1,4 @@ +/* eslint-disable no-case-declarations */ import {AutocompleteField, DropDownMenu, FormField, FormSelect, HelpIcon, NotificationType, SlidingPanel, Tooltip} from 'argo-ui'; import * as PropTypes from 'prop-types'; import * as React from 'react'; diff --git a/ui/src/app/shared/components/badge-panel/badge-panel.tsx b/ui/src/app/shared/components/badge-panel/badge-panel.tsx index d6ab8fa95ffd2..00883ab918ee2 100644 --- a/ui/src/app/shared/components/badge-panel/badge-panel.tsx +++ b/ui/src/app/shared/components/badge-panel/badge-panel.tsx @@ -54,14 +54,14 @@ export const BadgePanel = ({app, project, appNamespace, nsEnabled}: {app?: strin badgeType === 'URL' ? badgeURL : badgeType === 'Markdown' - ? `[![${alt}](${badgeURL})](${entityURL})` - : badgeType === 'Textile' - ? `!${badgeURL}!:${entityURL}` - : badgeType === 'Rdoc' - ? `{${alt}}[${entityURL}]` - : badgeType === 'AsciiDoc' - ? `image:${badgeURL}["${alt}", link="${entityURL}"]` - : '' + ? `[![${alt}](${badgeURL})](${entityURL})` + : badgeType === 'Textile' + ? `!${badgeURL}!:${entityURL}` + : badgeType === 'Rdoc' + ? `{${alt}}[${entityURL}]` + : badgeType === 'AsciiDoc' + ? `image:${badgeURL}["${alt}", link="${entityURL}"]` + : '' } />
    diff --git a/ui/src/app/shared/components/editable-panel/editable-panel.tsx b/ui/src/app/shared/components/editable-panel/editable-panel.tsx index 6567c7f4e3850..01de2ff26b0ac 100644 --- a/ui/src/app/shared/components/editable-panel/editable-panel.tsx +++ b/ui/src/app/shared/components/editable-panel/editable-panel.tsx @@ -52,7 +52,7 @@ export class EditablePanel extends React.Component public UNSAFE_componentWillReceiveProps(nextProps: EditablePanelProps) { if (this.formApi && JSON.stringify(this.props.values) !== JSON.stringify(nextProps.values)) { - if (!!nextProps.noReadonlyMode) { + if (nextProps.noReadonlyMode) { this.formApi.setAllValues(nextProps.values); } } diff --git a/ui/src/app/shared/components/error-boundary/error-boundary.tsx b/ui/src/app/shared/components/error-boundary/error-boundary.tsx index 97d2b78fe6f89..a2c18d00823b0 100644 --- a/ui/src/app/shared/components/error-boundary/error-boundary.tsx +++ b/ui/src/app/shared/components/error-boundary/error-boundary.tsx @@ -6,7 +6,7 @@ export class ErrorBoundary extends React.Component<{message?: string}, {hasError this.state = {hasError: false}; } - static getDerivedStateFromError(error: React.ErrorInfo) { + static getDerivedStateFromError() { return {hasError: true}; } diff --git a/ui/src/app/shared/components/page/page.tsx b/ui/src/app/shared/components/page/page.tsx index bcdb37703f637..906680e19d008 100644 --- a/ui/src/app/shared/components/page/page.tsx +++ b/ui/src/app/shared/components/page/page.tsx @@ -54,7 +54,7 @@ export const Page = (props: PageProps) => { return ( services.viewPreferences.getPreferences()}> {pref => ( -
    +
    { - const state = renderer.create( { - }} percentage={0} title={''}/>); + const state = renderer.create( {}} percentage={0} title={''} />); expect(state).toMatchSnapshot(); }); test('ProgressPopup.50%', () => { - const state = renderer.create( { - }} percentage={50} title={'My Title'}/>); + const state = renderer.create( {}} percentage={50} title={'My Title'} />); expect(state).toMatchSnapshot(); }); test('ProgressPopup.100%', () => { - const state = renderer.create( { - }} percentage={100} title={''}/>); + const state = renderer.create( {}} percentage={100} title={''} />); expect(state).toMatchSnapshot(); }); diff --git a/ui/src/app/shared/components/revision.test.tsx b/ui/src/app/shared/components/revision.test.tsx index b2ea79c97799d..d2c3e6f89b80e 100644 --- a/ui/src/app/shared/components/revision.test.tsx +++ b/ui/src/app/shared/components/revision.test.tsx @@ -1,33 +1,44 @@ import * as renderer from 'react-test-renderer'; import * as React from 'react'; -import {isSHA, Revision} from "./revision"; +import {isSHA, Revision} from './revision'; test('Revision.SHA1.Children', () => { - const tree = renderer.create(foo).toJSON(); - - expect(tree).toMatchSnapshot() + const tree = renderer + .create( + + foo + , + ) + .toJSON(); + + expect(tree).toMatchSnapshot(); }); test('Revision.SHA1.NoChildren', () => { - const tree = renderer.create().toJSON(); + const tree = renderer.create().toJSON(); - expect(tree).toMatchSnapshot() + expect(tree).toMatchSnapshot(); }); test('Revision.Branch.Children', () => { - const tree = renderer.create(foo).toJSON(); - - expect(tree).toMatchSnapshot() + const tree = renderer + .create( + + foo + , + ) + .toJSON(); + + expect(tree).toMatchSnapshot(); }); - test('Revision.Branch.NoChildren', () => { - const tree = renderer.create().toJSON(); + const tree = renderer.create().toJSON(); - expect(tree).toMatchSnapshot() + expect(tree).toMatchSnapshot(); }); test('isSHA1', () => { expect(isSHA('24eb0b24099b2e9afff72558724e88125eaa0176')).toBe(true); expect(isSHA('master')).toBe(false); -}); \ No newline at end of file +}); diff --git a/ui/src/app/shared/components/urls.test.ts b/ui/src/app/shared/components/urls.test.ts index 17101fe175418..87df7f571fbc9 100644 --- a/ui/src/app/shared/components/urls.test.ts +++ b/ui/src/app/shared/components/urls.test.ts @@ -16,7 +16,8 @@ test('github.com', () => { 'git@github.com:argoproj/argo-cd.git', '024dee09f543ce7bb5af7ca50260504d89dfda94', 'https://github.com/argoproj/argo-cd', - 'https://github.com/argoproj/argo-cd/commit/024dee09f543ce7bb5af7ca50260504d89dfda94'); + 'https://github.com/argoproj/argo-cd/commit/024dee09f543ce7bb5af7ca50260504d89dfda94', + ); }); // for enterprise github installations @@ -26,7 +27,8 @@ test('github.my-enterprise.com', () => { 'git@github.my-enterprise.com:my-org/my-repo.git', 'a06f2be80a4da89abb8ced904beab75b3ec6db0e', 'https://github.my-enterprise.com/my-org/my-repo', - 'https://github.my-enterprise.com/my-org/my-repo/commit/a06f2be80a4da89abb8ced904beab75b3ec6db0e'); + 'https://github.my-enterprise.com/my-org/my-repo/commit/a06f2be80a4da89abb8ced904beab75b3ec6db0e', + ); }); test('gitlab.com', () => { @@ -35,7 +37,8 @@ test('gitlab.com', () => { 'git@gitlab.com:alex_collins/private-repo.git', 'b1fe9426ead684d7af16958920968342ee295c1f', 'https://gitlab.com/alex_collins/private-repo', - 'https://gitlab.com/alex_collins/private-repo/-/commit/b1fe9426ead684d7af16958920968342ee295c1f'); + 'https://gitlab.com/alex_collins/private-repo/-/commit/b1fe9426ead684d7af16958920968342ee295c1f', + ); }); test('bitbucket.org', () => { @@ -44,7 +47,8 @@ test('bitbucket.org', () => { 'git@bitbucket.org:alexcollinsinuit/test-repo.git', '38fb93957deb45ff546af13399a92ac0d568c350', 'https://bitbucket.org/alexcollinsinuit/test-repo', - 'https://bitbucket.org/alexcollinsinuit/test-repo/commits/38fb93957deb45ff546af13399a92ac0d568c350'); + 'https://bitbucket.org/alexcollinsinuit/test-repo/commits/38fb93957deb45ff546af13399a92ac0d568c350', + ); }); test('empty url', () => { diff --git a/ui/src/app/shared/context.ts b/ui/src/app/shared/context.ts index 0277254a16889..d2049f3befbbe 100644 --- a/ui/src/app/shared/context.ts +++ b/ui/src/app/shared/context.ts @@ -12,6 +12,6 @@ export interface ContextApis { baseHref: string; } export const Context = React.createContext(null); -export let {Provider, Consumer} = Context; +export const {Provider, Consumer} = Context; export const AuthSettingsCtx = React.createContext(null); diff --git a/ui/src/app/shared/utils.test.ts b/ui/src/app/shared/utils.test.ts index e612db98b144f..05ede13d712e1 100644 --- a/ui/src/app/shared/utils.test.ts +++ b/ui/src/app/shared/utils.test.ts @@ -3,11 +3,11 @@ import {concatMaps} from './utils'; test('map concatenation', () => { const map1 = { a: '1', - b: '2' + b: '2', }; const map2 = { a: '9', - c: '8' + c: '8', }; const map3 = concatMaps(map1, map2); expect(map3).toEqual(new Map(Object.entries({a: '9', b: '2', c: '8'}))); diff --git a/ui/src/app/typings.d.ts b/ui/src/app/typings.d.ts index 580752c367557..b115f68f24661 100644 --- a/ui/src/app/typings.d.ts +++ b/ui/src/app/typings.d.ts @@ -1,4 +1,4 @@ -declare var SYSTEM_INFO: { version: string; }; +declare let SYSTEM_INFO: {version: string}; // suppress TS7016: Could not find a declaration file for module declare module 'react-diff-view'; -declare module 'unidiff'; \ No newline at end of file +declare module 'unidiff'; diff --git a/ui/tslint.json b/ui/tslint.json deleted file mode 100644 index be51507341d3d..0000000000000 --- a/ui/tslint.json +++ /dev/null @@ -1,21 +0,0 @@ -{ - "extends": [ - "tslint:recommended", "tslint-react", "tslint-plugin-prettier", "tslint-config-prettier" - ], - "jsRules": {}, - "rules": { - "prettier": true, - "quotemark": [true, "single"], - "no-var-requires": false, - "interface-name": false, - "jsx-no-multiline-js": false, - "object-literal-sort-keys": false, - "jsx-alignment": false, - "max-line-length": [true, 200], - "jsx-no-lambda": false, - "array-type": false, - "max-classes-per-file": false, - "newline-per-chained-call": false - }, - "rulesDirectory": [] -} diff --git a/ui/yarn.lock b/ui/yarn.lock index 8ebc2828eda96..9ee6447c1e377 100644 --- a/ui/yarn.lock +++ b/ui/yarn.lock @@ -1187,6 +1187,38 @@ es-module-lexer "^0.10.5" get-tsconfig "^3.0.1" +"@eslint-community/eslint-utils@^4.2.0", "@eslint-community/eslint-utils@^4.4.0": + version "4.4.0" + resolved "https://registry.yarnpkg.com/@eslint-community/eslint-utils/-/eslint-utils-4.4.0.tgz#a23514e8fb9af1269d5f7788aa556798d61c6b59" + integrity sha512-1/sA4dwrzBAyeUoQ6oxahHKmrZvsnLCg4RfxW3ZFGGmQkSNQPFNLV9CUEFQP1x9EYXHTo5p6xdhZM1Ne9p/AfA== + dependencies: + eslint-visitor-keys "^3.3.0" + +"@eslint-community/regexpp@^4.10.0", "@eslint-community/regexpp@^4.6.1": + version "4.10.0" + resolved "https://registry.yarnpkg.com/@eslint-community/regexpp/-/regexpp-4.10.0.tgz#548f6de556857c8bb73bbee70c35dc82a2e74d63" + integrity sha512-Cu96Sd2By9mCNTx2iyKOmq10v22jUVQv0lQnlGNy16oE9589yE+QADPbrMGCkA51cKZSg3Pu/aTJVTGfL/qjUA== + +"@eslint/eslintrc@^3.0.2": + version "3.0.2" + resolved "https://registry.yarnpkg.com/@eslint/eslintrc/-/eslintrc-3.0.2.tgz#36180f8e85bf34d2fe3ccc2261e8e204a411ab4e" + integrity sha512-wV19ZEGEMAC1eHgrS7UQPqsdEiCIbTKTasEfcXAigzoXICcqZSjBZEHlZwNVvKg6UBCjSlos84XiLqsRJnIcIg== + dependencies: + ajv "^6.12.4" + debug "^4.3.2" + espree "^10.0.1" + globals "^14.0.0" + ignore "^5.2.0" + import-fresh "^3.2.1" + js-yaml "^4.1.0" + minimatch "^3.1.2" + strip-json-comments "^3.1.1" + +"@eslint/js@9.1.1", "@eslint/js@^9.1.1": + version "9.1.1" + resolved "https://registry.yarnpkg.com/@eslint/js/-/js-9.1.1.tgz#eb0f82461d12779bbafc1b5045cde3143d350a8a" + integrity sha512-5WoDz3Y19Bg2BnErkZTp0en+c/i9PvgFS7MBe1+m60HjFr0hrphlAGp4yzI7pxpt4xShln4ZyYp4neJm8hmOkQ== + "@exodus/schemasafe@^1.0.0-rc.2": version "1.0.0-rc.3" resolved "https://registry.yarnpkg.com/@exodus/schemasafe/-/schemasafe-1.0.0-rc.3.tgz#dda2fbf3dafa5ad8c63dadff7e01d3fdf4736025" @@ -1197,6 +1229,30 @@ resolved "https://registry.yarnpkg.com/@fortawesome/fontawesome-free/-/fontawesome-free-6.4.0.tgz#1ee0c174e472c84b23cb46c995154dc383e3b4fe" integrity sha512-0NyytTlPJwB/BF5LtRV8rrABDbe3TdTXqNB3PdZ+UUUZAEIrdOJdmABqKjt4AXwIoJNaRVVZEXxpNrqvE1GAYQ== +"@humanwhocodes/config-array@^0.13.0": + version "0.13.0" + resolved "https://registry.yarnpkg.com/@humanwhocodes/config-array/-/config-array-0.13.0.tgz#fb907624df3256d04b9aa2df50d7aa97ec648748" + integrity sha512-DZLEEqFWQFiyK6h5YIeynKx7JlvCYWL0cImfSRXZ9l4Sg2efkFGTuFf6vzXjK1cq6IYkU+Eg/JizXw+TD2vRNw== + dependencies: + "@humanwhocodes/object-schema" "^2.0.3" + debug "^4.3.1" + minimatch "^3.0.5" + +"@humanwhocodes/module-importer@^1.0.1": + version "1.0.1" + resolved "https://registry.yarnpkg.com/@humanwhocodes/module-importer/-/module-importer-1.0.1.tgz#af5b2691a22b44be847b0ca81641c5fb6ad0172c" + integrity sha512-bxveV4V8v5Yb4ncFTT3rPSgZBOpCkjfK0y4oVVVJwIuDVBRMDXrPyXRL988i5ap9m9bnyEEjWfm5WkBmtffLfA== + +"@humanwhocodes/object-schema@^2.0.3": + version "2.0.3" + resolved "https://registry.yarnpkg.com/@humanwhocodes/object-schema/-/object-schema-2.0.3.tgz#4a2868d75d6d6963e423bcf90b7fd1be343409d3" + integrity sha512-93zYdMES/c1D69yZiKDBj0V24vqNzB/koF26KPaagAfd3P/4gUlh3Dys5ogAK+Exi9QyzlD8x/08Zt7wIKcDcA== + +"@humanwhocodes/retry@^0.2.3": + version "0.2.3" + resolved "https://registry.yarnpkg.com/@humanwhocodes/retry/-/retry-0.2.3.tgz#c9aa036d1afa643f1250e83150f39efb3a15a631" + integrity sha512-X38nUbachlb01YMlvPFojKoiXq+LzZvuSce70KPMPdeM1Rj03k4dR7lDslhbqXn3Ang4EU3+EAmwEAsbrjHW3g== + "@istanbuljs/load-nyc-config@^1.0.0": version "1.1.0" resolved "https://registry.yarnpkg.com/@istanbuljs/load-nyc-config/-/load-nyc-config-1.1.0.tgz#fd3db1d59ecf7cf121e80650bb86712f9b55eced" @@ -1500,7 +1556,7 @@ resolved "https://registry.yarnpkg.com/@nodelib/fs.stat/-/fs.stat-2.0.5.tgz#5bd262af94e9d25bd1e71b05deed44876a222e8b" integrity sha512-RkhPPp2zrqDAQA/2jNhnztcPAlv64XdhIp7a7454A5ovI7Bukxgt7MX7udwAu3zg1DcpPU0rz3VV1SeaqvY4+A== -"@nodelib/fs.walk@^1.2.3": +"@nodelib/fs.walk@^1.2.3", "@nodelib/fs.walk@^1.2.8": version "1.2.8" resolved "https://registry.yarnpkg.com/@nodelib/fs.walk/-/fs.walk-1.2.8.tgz#e95737e8bb6746ddedf69c556953494f196fe69a" integrity sha512-oGB+UxlgWcgQkgwo8GcEGwemoTFt3FIO9ababBmaGwXIoBKZ+GTy0pP185beGg7Llih/NSHSV2XAs1lnznocSg== @@ -1516,6 +1572,11 @@ mkdirp "^1.0.4" rimraf "^3.0.2" +"@pkgr/core@^0.1.0": + version "0.1.1" + resolved "https://registry.yarnpkg.com/@pkgr/core/-/core-0.1.1.tgz#1ec17e2edbec25c8306d424ecfbf13c7de1aaa31" + integrity sha512-cq8o4cWH0ibXh9VGi5P20Tu9XF/0fFXl9EUinr9QfTM7a7p0oTA4iJRCQWppXR1Pg8dSM0UCItCkPwsk9qWWYA== + "@rc-component/color-picker@~1.2.0": version "1.2.0" resolved "https://registry.yarnpkg.com/@rc-component/color-picker/-/color-picker-1.2.0.tgz#964c86e85f0791703c7f1ec842e7476bcb41954d" @@ -1876,6 +1937,11 @@ resolved "https://registry.yarnpkg.com/@types/json-schema/-/json-schema-7.0.11.tgz#d421b6c527a3037f7c84433fd2c4229e016863d3" integrity sha512-wOuvG1SN4Us4rez+tylwwwCV1psiNVOkJeM3AUWUNWg/jDQY2+HE/444y5gc+jBmRqASOm2Oeh5c1axHobwRKQ== +"@types/json-schema@^7.0.15": + version "7.0.15" + resolved "https://registry.yarnpkg.com/@types/json-schema/-/json-schema-7.0.15.tgz#596a1747233694d50f6ad8a7869fcb6f56cf5841" + integrity sha512-5+fP8P8MFNC+AyZCDxrB2pkZFPGzqQWUzpSeuuVLvm8VMcorNYavBqoFcxK8bQz4Qsbn4oUEEem4wDLfcysGHA== + "@types/json-schema@^7.0.5", "@types/json-schema@^7.0.7": version "7.0.8" resolved "https://registry.yarnpkg.com/@types/json-schema/-/json-schema-7.0.8.tgz#edf1bf1dbf4e04413ca8e5b17b3b7d7d54b59818" @@ -2026,6 +2092,11 @@ resolved "https://registry.yarnpkg.com/@types/scheduler/-/scheduler-0.16.2.tgz#1a62f89525723dde24ba1b01b092bf5df8ad4d39" integrity sha512-hppQEBDmlwhFAXKJX2KnWLYu5yMfi91yazPb2l+lbJiwW+wdo1gNeRA+3RgNSO39WYX2euey41KEwnqesU2Jew== +"@types/semver@^7.5.8": + version "7.5.8" + resolved "https://registry.yarnpkg.com/@types/semver/-/semver-7.5.8.tgz#8268a8c57a3e4abd25c165ecd36237db7948a55e" + integrity sha512-I8EUhyrgfLrcTkzV3TSsGyl1tSuPrEDzr0yd5m90UgNxQkyDXULk3b6MlQqTCpZpNtWe1K0hzclnZkTcLBe2UQ== + "@types/serve-index@^1.9.1": version "1.9.1" resolved "https://registry.yarnpkg.com/@types/serve-index/-/serve-index-1.9.1.tgz#1b5e85370a192c01ec6cec4735cf2917337a6278" @@ -2099,6 +2170,92 @@ dependencies: "@types/yargs-parser" "*" +"@typescript-eslint/eslint-plugin@7.8.0": + version "7.8.0" + resolved "https://registry.yarnpkg.com/@typescript-eslint/eslint-plugin/-/eslint-plugin-7.8.0.tgz#c78e309fe967cb4de05b85cdc876fb95f8e01b6f" + integrity sha512-gFTT+ezJmkwutUPmB0skOj3GZJtlEGnlssems4AjkVweUPGj7jRwwqg0Hhg7++kPGJqKtTYx+R05Ftww372aIg== + dependencies: + "@eslint-community/regexpp" "^4.10.0" + "@typescript-eslint/scope-manager" "7.8.0" + "@typescript-eslint/type-utils" "7.8.0" + "@typescript-eslint/utils" "7.8.0" + "@typescript-eslint/visitor-keys" "7.8.0" + debug "^4.3.4" + graphemer "^1.4.0" + ignore "^5.3.1" + natural-compare "^1.4.0" + semver "^7.6.0" + ts-api-utils "^1.3.0" + +"@typescript-eslint/parser@7.8.0": + version "7.8.0" + resolved "https://registry.yarnpkg.com/@typescript-eslint/parser/-/parser-7.8.0.tgz#1e1db30c8ab832caffee5f37e677dbcb9357ddc8" + integrity sha512-KgKQly1pv0l4ltcftP59uQZCi4HUYswCLbTqVZEJu7uLX8CTLyswqMLqLN+2QFz4jCptqWVV4SB7vdxcH2+0kQ== + dependencies: + "@typescript-eslint/scope-manager" "7.8.0" + "@typescript-eslint/types" "7.8.0" + "@typescript-eslint/typescript-estree" "7.8.0" + "@typescript-eslint/visitor-keys" "7.8.0" + debug "^4.3.4" + +"@typescript-eslint/scope-manager@7.8.0": + version "7.8.0" + resolved "https://registry.yarnpkg.com/@typescript-eslint/scope-manager/-/scope-manager-7.8.0.tgz#bb19096d11ec6b87fb6640d921df19b813e02047" + integrity sha512-viEmZ1LmwsGcnr85gIq+FCYI7nO90DVbE37/ll51hjv9aG+YZMb4WDE2fyWpUR4O/UrhGRpYXK/XajcGTk2B8g== + dependencies: + "@typescript-eslint/types" "7.8.0" + "@typescript-eslint/visitor-keys" "7.8.0" + +"@typescript-eslint/type-utils@7.8.0": + version "7.8.0" + resolved "https://registry.yarnpkg.com/@typescript-eslint/type-utils/-/type-utils-7.8.0.tgz#9de166f182a6e4d1c5da76e94880e91831e3e26f" + integrity sha512-H70R3AefQDQpz9mGv13Uhi121FNMh+WEaRqcXTX09YEDky21km4dV1ZXJIp8QjXc4ZaVkXVdohvWDzbnbHDS+A== + dependencies: + "@typescript-eslint/typescript-estree" "7.8.0" + "@typescript-eslint/utils" "7.8.0" + debug "^4.3.4" + ts-api-utils "^1.3.0" + +"@typescript-eslint/types@7.8.0": + version "7.8.0" + resolved "https://registry.yarnpkg.com/@typescript-eslint/types/-/types-7.8.0.tgz#1fd2577b3ad883b769546e2d1ef379f929a7091d" + integrity sha512-wf0peJ+ZGlcH+2ZS23aJbOv+ztjeeP8uQ9GgwMJGVLx/Nj9CJt17GWgWWoSmoRVKAX2X+7fzEnAjxdvK2gqCLw== + +"@typescript-eslint/typescript-estree@7.8.0": + version "7.8.0" + resolved "https://registry.yarnpkg.com/@typescript-eslint/typescript-estree/-/typescript-estree-7.8.0.tgz#b028a9226860b66e623c1ee55cc2464b95d2987c" + integrity sha512-5pfUCOwK5yjPaJQNy44prjCwtr981dO8Qo9J9PwYXZ0MosgAbfEMB008dJ5sNo3+/BN6ytBPuSvXUg9SAqB0dg== + dependencies: + "@typescript-eslint/types" "7.8.0" + "@typescript-eslint/visitor-keys" "7.8.0" + debug "^4.3.4" + globby "^11.1.0" + is-glob "^4.0.3" + minimatch "^9.0.4" + semver "^7.6.0" + ts-api-utils "^1.3.0" + +"@typescript-eslint/utils@7.8.0": + version "7.8.0" + resolved "https://registry.yarnpkg.com/@typescript-eslint/utils/-/utils-7.8.0.tgz#57a79f9c0c0740ead2f622e444cfaeeb9fd047cd" + integrity sha512-L0yFqOCflVqXxiZyXrDr80lnahQfSOfc9ELAAZ75sqicqp2i36kEZZGuUymHNFoYOqxRT05up760b4iGsl02nQ== + dependencies: + "@eslint-community/eslint-utils" "^4.4.0" + "@types/json-schema" "^7.0.15" + "@types/semver" "^7.5.8" + "@typescript-eslint/scope-manager" "7.8.0" + "@typescript-eslint/types" "7.8.0" + "@typescript-eslint/typescript-estree" "7.8.0" + semver "^7.6.0" + +"@typescript-eslint/visitor-keys@7.8.0": + version "7.8.0" + resolved "https://registry.yarnpkg.com/@typescript-eslint/visitor-keys/-/visitor-keys-7.8.0.tgz#7285aab991da8bee411a42edbd5db760d22fdd91" + integrity sha512-q4/gibTNBQNA0lGyYQCmWRS5D15n8rXh4QjK3KV+MBPlTYHpfBUT3D3PaPR/HeNiI9W6R7FvlkcGhNyAoP+caA== + dependencies: + "@typescript-eslint/types" "7.8.0" + eslint-visitor-keys "^3.4.3" + "@webassemblyjs/ast@1.11.6", "@webassemblyjs/ast@^1.11.5": version "1.11.6" resolved "https://registry.yarnpkg.com/@webassemblyjs/ast/-/ast-1.11.6.tgz#db046555d3c413f8966ca50a95176a0e2c642e24" @@ -2273,6 +2430,11 @@ acorn-import-assertions@^1.9.0: resolved "https://registry.yarnpkg.com/acorn-import-assertions/-/acorn-import-assertions-1.9.0.tgz#507276249d684797c84e0734ef84860334cfb1ac" integrity sha512-cmMwop9x+8KFhxvKrKfPYmN6/pKTYYHBqLa0DfvVZcKMJWNyWLnaqND7dx/qn66R7ewM1UX5XMaDVP5wlVTaVA== +acorn-jsx@^5.3.2: + version "5.3.2" + resolved "https://registry.yarnpkg.com/acorn-jsx/-/acorn-jsx-5.3.2.tgz#7ed5bb55908b3b2f1bc55c6af1653bada7f07937" + integrity sha512-rq9s+JNhf0IChjtDXxllJ7g41oZk5SlXtp0LHwyA5cejwn7vKmKp4pPri6YEePv2PU65sAsegbXtIinmDFDXgQ== + acorn-walk@^7.1.1: version "7.2.0" resolved "https://registry.yarnpkg.com/acorn-walk/-/acorn-walk-7.2.0.tgz#0de889a601203909b0fbe07b8938dc21d2e967bc" @@ -2288,6 +2450,11 @@ acorn@^7.1.1: resolved "https://registry.yarnpkg.com/acorn/-/acorn-7.4.1.tgz#feaed255973d2e77555b83dbc08851a6c63520fa" integrity sha512-nQyp0o1/mNdbTO1PO6kHkwSrmgZ0MT/jCCpNiwbUjGoRN4dlBhqJtoQuCnEOKzgTVwg0ZWiCoQy6SxMebQVh8A== +acorn@^8.11.3: + version "8.11.3" + resolved "https://registry.yarnpkg.com/acorn/-/acorn-8.11.3.tgz#71e0b14e13a4ec160724b38fb7b0f233b1b81d7a" + integrity sha512-Y9rRfJG5jcKOE0CLisYbojUjIrIEE7AGMzA/Sm4BslANhbS+cDMpgBdcPT91oJ7OuJ9hYJBx59RjbhxVnrF8Xg== + acorn@^8.2.4, acorn@^8.4.1, acorn@^8.5.0, acorn@^8.7.1: version "8.8.2" resolved "https://registry.yarnpkg.com/acorn/-/acorn-8.8.2.tgz#1b2f25db02af965399b9776b0c2c391276d37c4a" @@ -2563,6 +2730,14 @@ arr-union@^3.1.0: resolved "https://registry.yarnpkg.com/arr-union/-/arr-union-3.1.0.tgz#e39b09aea9def866a8f206e288af63919bae39c4" integrity sha1-45sJrqne+Gao8gbiiK9jkZuuOcQ= +array-buffer-byte-length@^1.0.1: + version "1.0.1" + resolved "https://registry.yarnpkg.com/array-buffer-byte-length/-/array-buffer-byte-length-1.0.1.tgz#1e5583ec16763540a27ae52eed99ff899223568f" + integrity sha512-ahC5W1xgou+KTXix4sAO8Ki12Q+jf4i0+tmk3sC+zgcynshkHxzpXdImBehiUYKKKDwvfFiJl1tZt6ewscS1Mg== + dependencies: + call-bind "^1.0.5" + is-array-buffer "^3.0.4" + array-flatten@1.1.1: version "1.1.1" resolved "https://registry.yarnpkg.com/array-flatten/-/array-flatten-1.1.1.tgz#9a5f699051b1e7073328f2a008968b64ea2955d2" @@ -2573,6 +2748,18 @@ array-flatten@^2.1.0: resolved "https://registry.yarnpkg.com/array-flatten/-/array-flatten-2.1.2.tgz#24ef80a28c1a893617e2149b0c6d0d788293b099" integrity sha512-hNfzcOV8W4NdualtqBFPyVO+54DSJuZGY9qT4pRroB6S9e3iiido2ISIC5h9R2sPJ8H3FHCIiEnsv1lPXO3KtQ== +array-includes@^3.1.6, array-includes@^3.1.7: + version "3.1.8" + resolved "https://registry.yarnpkg.com/array-includes/-/array-includes-3.1.8.tgz#5e370cbe172fdd5dd6530c1d4aadda25281ba97d" + integrity sha512-itaWrbYbqpGXkGhZPGUulwnhVf5Hpy1xiCFsGqyIGglbBxmG5vSjxQen3/WGOjPpNEv1RtBLKxbmVXm8HpJStQ== + dependencies: + call-bind "^1.0.7" + define-properties "^1.2.1" + es-abstract "^1.23.2" + es-object-atoms "^1.0.0" + get-intrinsic "^1.2.4" + is-string "^1.0.7" + array-tree-filter@^2.1.0: version "2.1.0" resolved "https://registry.yarnpkg.com/array-tree-filter/-/array-tree-filter-2.1.0.tgz#873ac00fec83749f255ac8dd083814b4f6329190" @@ -2588,6 +2775,73 @@ array-unique@^0.3.2: resolved "https://registry.yarnpkg.com/array-unique/-/array-unique-0.3.2.tgz#a894b75d4bc4f6cd679ef3244a9fd8f46ae2d428" integrity sha1-qJS3XUvE9s1nnvMkSp/Y9Gri1Cg= +array.prototype.findlast@^1.2.4: + version "1.2.5" + resolved "https://registry.yarnpkg.com/array.prototype.findlast/-/array.prototype.findlast-1.2.5.tgz#3e4fbcb30a15a7f5bf64cf2faae22d139c2e4904" + integrity sha512-CVvd6FHg1Z3POpBLxO6E6zr+rSKEQ9L6rZHAaY7lLfhKsWYUBBOuMs0e9o24oopj6H+geRCX0YJ+TJLBK2eHyQ== + dependencies: + call-bind "^1.0.7" + define-properties "^1.2.1" + es-abstract "^1.23.2" + es-errors "^1.3.0" + es-object-atoms "^1.0.0" + es-shim-unscopables "^1.0.2" + +array.prototype.flat@^1.3.1: + version "1.3.2" + resolved "https://registry.yarnpkg.com/array.prototype.flat/-/array.prototype.flat-1.3.2.tgz#1476217df8cff17d72ee8f3ba06738db5b387d18" + integrity sha512-djYB+Zx2vLewY8RWlNCUdHjDXs2XOgm602S9E7P/UpHgfeHL00cRiIF+IN/G/aUJ7kGPb6yO/ErDI5V2s8iycA== + dependencies: + call-bind "^1.0.2" + define-properties "^1.2.0" + es-abstract "^1.22.1" + es-shim-unscopables "^1.0.0" + +array.prototype.flatmap@^1.3.2: + version "1.3.2" + resolved "https://registry.yarnpkg.com/array.prototype.flatmap/-/array.prototype.flatmap-1.3.2.tgz#c9a7c6831db8e719d6ce639190146c24bbd3e527" + integrity sha512-Ewyx0c9PmpcsByhSW4r+9zDU7sGjFc86qf/kKtuSCRdhfbk0SNLLkaT5qvcHnRGgc5NP/ly/y+qkXkqONX54CQ== + dependencies: + call-bind "^1.0.2" + define-properties "^1.2.0" + es-abstract "^1.22.1" + es-shim-unscopables "^1.0.0" + +array.prototype.toreversed@^1.1.2: + version "1.1.2" + resolved "https://registry.yarnpkg.com/array.prototype.toreversed/-/array.prototype.toreversed-1.1.2.tgz#b989a6bf35c4c5051e1dc0325151bf8088954eba" + integrity sha512-wwDCoT4Ck4Cz7sLtgUmzR5UV3YF5mFHUlbChCzZBQZ+0m2cl/DH3tKgvphv1nKgFsJ48oCSg6p91q2Vm0I/ZMA== + dependencies: + call-bind "^1.0.2" + define-properties "^1.2.0" + es-abstract "^1.22.1" + es-shim-unscopables "^1.0.0" + +array.prototype.tosorted@^1.1.3: + version "1.1.3" + resolved "https://registry.yarnpkg.com/array.prototype.tosorted/-/array.prototype.tosorted-1.1.3.tgz#c8c89348337e51b8a3c48a9227f9ce93ceedcba8" + integrity sha512-/DdH4TiTmOKzyQbp/eadcCVexiCb36xJg7HshYOYJnNZFDj33GEv0P7GxsynpShhq4OLYJzbGcBDkLsDt7MnNg== + dependencies: + call-bind "^1.0.5" + define-properties "^1.2.1" + es-abstract "^1.22.3" + es-errors "^1.1.0" + es-shim-unscopables "^1.0.2" + +arraybuffer.prototype.slice@^1.0.3: + version "1.0.3" + resolved "https://registry.yarnpkg.com/arraybuffer.prototype.slice/-/arraybuffer.prototype.slice-1.0.3.tgz#097972f4255e41bc3425e37dc3f6421cf9aefde6" + integrity sha512-bMxMKAjg13EBSVscxTaYA4mRc5t1UAXa2kXiGTNfZ079HIWXEkKmkgFrh/nJqamaLSrXO5H4WFFkPEaLJWbs3A== + dependencies: + array-buffer-byte-length "^1.0.1" + call-bind "^1.0.5" + define-properties "^1.2.1" + es-abstract "^1.22.3" + es-errors "^1.2.1" + get-intrinsic "^1.2.3" + is-array-buffer "^3.0.4" + is-shared-array-buffer "^1.0.2" + asap@^2.0.0: version "2.0.6" resolved "https://registry.yarnpkg.com/asap/-/asap-2.0.6.tgz#e50347611d7e690943208bbdafebcbc2fb866d46" @@ -2620,6 +2874,13 @@ atob@^2.1.2: resolved "https://registry.yarnpkg.com/atob/-/atob-2.1.2.tgz#6d9517eb9e030d2436666651e86bd9f6f13533c9" integrity sha512-Wm6ukoaOGJi/73p/cl2GvLjTI5JM1k/O14isD73YML8StrH/7/lRFgmg8nICZgD3bZZvjwCGxtMOD3wWNAu8cg== +available-typed-arrays@^1.0.7: + version "1.0.7" + resolved "https://registry.yarnpkg.com/available-typed-arrays/-/available-typed-arrays-1.0.7.tgz#a5cc375d6a03c2efc87a553f3e0b1522def14846" + integrity sha512-wvUjBtSGN7+7SjNpq/9M2Tg350UZD3q62IFZLbRAR1bSMlCo1ZaeW+BJ+D090e4hIIZLBcTDWe4Mh4jvUDajzQ== + dependencies: + possible-typed-array-names "^1.0.0" + babel-jest@^26.6.3: version "26.6.3" resolved "https://registry.yarnpkg.com/babel-jest/-/babel-jest-26.6.3.tgz#d87d25cb0037577a0c89f82e5755c5d293c01056" @@ -2824,6 +3085,13 @@ brace-expansion@^1.1.7: balanced-match "^1.0.0" concat-map "0.0.1" +brace-expansion@^2.0.1: + version "2.0.1" + resolved "https://registry.yarnpkg.com/brace-expansion/-/brace-expansion-2.0.1.tgz#1edc459e0f0c548486ecf9fc99f2221364b9a0ae" + integrity sha512-XnAIvQ8eM+kC6aULx6wuQiwVsnzsi9d3WxzV3FpWTGA19F621kwdbsAcFKXgKUHZWsy+mY6iL1sHTxWEFCytDA== + dependencies: + balanced-match "^1.0.0" + braces@^2.3.1: version "2.3.2" resolved "https://registry.yarnpkg.com/braces/-/braces-2.3.2.tgz#5979fd3f14cd531565e5fa2df1abfff1dfaee729" @@ -2895,11 +3163,6 @@ buffer@^6.0.3: base64-js "^1.3.1" ieee754 "^1.2.1" -builtin-modules@^1.1.1: - version "1.1.1" - resolved "https://registry.yarnpkg.com/builtin-modules/-/builtin-modules-1.1.1.tgz#270f076c5a72c02f5b65a47df94c5fe3a278892f" - integrity sha1-Jw8HbFpywC9bZaR9+Uxf46J4iS8= - bytes@3.0.0: version "3.0.0" resolved "https://registry.yarnpkg.com/bytes/-/bytes-3.0.0.tgz#d32815404d689699f85a4ea4fa8755dd13a96048" @@ -2956,6 +3219,17 @@ call-bind@^1.0.0, call-bind@^1.0.2: function-bind "^1.1.1" get-intrinsic "^1.0.2" +call-bind@^1.0.5, call-bind@^1.0.6, call-bind@^1.0.7: + version "1.0.7" + resolved "https://registry.yarnpkg.com/call-bind/-/call-bind-1.0.7.tgz#06016599c40c56498c18769d2730be242b6fa3b9" + integrity sha512-GHTSNSYICQ7scH7sZ+M2rFopRoLh8t2bLSW6BbgrtLsahOIB5iyAVJf9GjWK3cYTDaMj4XdBpM1cA6pIS0Kv2w== + dependencies: + es-define-property "^1.0.0" + es-errors "^1.3.0" + function-bind "^1.1.2" + get-intrinsic "^1.2.4" + set-function-length "^1.2.1" + call-me-maybe@^1.0.1: version "1.0.1" resolved "https://registry.yarnpkg.com/call-me-maybe/-/call-me-maybe-1.0.1.tgz#26d208ea89e37b5cbde60250a15f031c16a4d66b" @@ -3007,7 +3281,7 @@ chalk@^1.1.3: strip-ansi "^3.0.0" supports-color "^2.0.0" -chalk@^2.0.0, chalk@^2.0.1, chalk@^2.3.0, chalk@^2.4.1, chalk@^2.4.2: +chalk@^2.0.0, chalk@^2.0.1, chalk@^2.4.1, chalk@^2.4.2: version "2.4.2" resolved "https://registry.yarnpkg.com/chalk/-/chalk-2.4.2.tgz#cd42541677a54333cf541a49108c1432b44c9424" integrity sha512-Mti+f9lpJNcwF4tWV8/OrTTtF1gZi+f8FqlyAdouralcFWFQWF2+NgCHShjkCb+IFBLq9buZwE1xckQU4peSuQ== @@ -3215,7 +3489,7 @@ combined-stream@^1.0.8: dependencies: delayed-stream "~1.0.0" -commander@^2.12.1, commander@^2.20.0: +commander@^2.20.0: version "2.20.3" resolved "https://registry.yarnpkg.com/commander/-/commander-2.20.3.tgz#fd485e84c03eb4881c20722ba48035e8531aeb33" integrity sha512-GpVkmM8vF2vQUkj2LvZmD35JxeJOLCwJ9cUkugyk2nuhbv3+mJvpLYYt+0+USMxE+oj+ey/lJEnhZw75x/OMcQ== @@ -3406,7 +3680,7 @@ cross-spawn@6.0.5, cross-spawn@^6.0.0: shebang-command "^1.2.0" which "^1.2.9" -cross-spawn@^7.0.3: +cross-spawn@^7.0.2, cross-spawn@^7.0.3: version "7.0.3" resolved "https://registry.yarnpkg.com/cross-spawn/-/cross-spawn-7.0.3.tgz#f73a85b9d5d41d045551c177e2882d4ac85728a6" integrity sha512-iRDPJKUPVEND7dHPO8rkbOnPpyDygcDFtWjpeWNCgy8WP2rXcxXL8TskReQl6OrB2G7+UJrags1q15Fudc7G6w== @@ -3500,6 +3774,33 @@ data-urls@^2.0.0: whatwg-mimetype "^2.3.0" whatwg-url "^8.0.0" +data-view-buffer@^1.0.1: + version "1.0.1" + resolved "https://registry.yarnpkg.com/data-view-buffer/-/data-view-buffer-1.0.1.tgz#8ea6326efec17a2e42620696e671d7d5a8bc66b2" + integrity sha512-0lht7OugA5x3iJLOWFhWK/5ehONdprk0ISXqVFn/NFrDu+cuc8iADFrGQz5BnRK7LLU3JmkbXSxaqX+/mXYtUA== + dependencies: + call-bind "^1.0.6" + es-errors "^1.3.0" + is-data-view "^1.0.1" + +data-view-byte-length@^1.0.1: + version "1.0.1" + resolved "https://registry.yarnpkg.com/data-view-byte-length/-/data-view-byte-length-1.0.1.tgz#90721ca95ff280677eb793749fce1011347669e2" + integrity sha512-4J7wRJD3ABAzr8wP+OcIcqq2dlUKp4DVflx++hs5h5ZKydWMI6/D/fAot+yh6g2tHh8fLFTvNOaVN357NvSrOQ== + dependencies: + call-bind "^1.0.7" + es-errors "^1.3.0" + is-data-view "^1.0.1" + +data-view-byte-offset@^1.0.0: + version "1.0.0" + resolved "https://registry.yarnpkg.com/data-view-byte-offset/-/data-view-byte-offset-1.0.0.tgz#5e0bbfb4828ed2d1b9b400cd8a7d119bca0ff18a" + integrity sha512-t/Ygsytq+R995EJ5PZlD4Cu56sWa8InXySaViRzw9apusqsOO2bQP+SbYzAhR0pFKoB+43lYy8rWban9JSuXnA== + dependencies: + call-bind "^1.0.6" + es-errors "^1.3.0" + is-data-view "^1.0.1" + date-fns@^2.30.0: version "2.30.0" resolved "https://registry.yarnpkg.com/date-fns/-/date-fns-2.30.0.tgz#f367e644839ff57894ec6ac480de40cae4b0f4d0" @@ -3519,7 +3820,7 @@ debug@2.6.9, debug@^2.2.0, debug@^2.3.3: dependencies: ms "2.0.0" -debug@4, debug@^4.1.0, debug@^4.1.1, debug@^4.3.4: +debug@4, debug@^4.1.0, debug@^4.1.1, debug@^4.3.1, debug@^4.3.2, debug@^4.3.4: version "4.3.4" resolved "https://registry.yarnpkg.com/debug/-/debug-4.3.4.tgz#1319f6579357f2338d3337d2cdd4914bb5dcc865" integrity sha512-PRWFHuSU3eDtQJPvnNY7Jcket1j0t5OuOsFzPPzsekD52Zl8qUfFIPEiswXqIvHWGVHOgX+7G/vCNNhehwxfkQ== @@ -3570,6 +3871,11 @@ deep-equal@^1.0.0, deep-equal@^1.0.1: object-keys "^1.1.1" regexp.prototype.flags "^1.2.0" +deep-is@^0.1.3: + version "0.1.4" + resolved "https://registry.yarnpkg.com/deep-is/-/deep-is-0.1.4.tgz#a6f2dce612fadd2ef1f519b73551f17e85199831" + integrity sha512-oIPzksmTg4/MriiaYGO+okXDT7ztn/w3Eptv/+gSIdMdKsJo0u4CfYNFJPy+4SKMuCqGw2wxnA+URMg3t8a/bQ== + deep-is@~0.1.3: version "0.1.3" resolved "https://registry.yarnpkg.com/deep-is/-/deep-is-0.1.3.tgz#b369d6fb5dbc13eecf524f91b070feedc357cf34" @@ -3592,6 +3898,15 @@ default-gateway@^6.0.3: dependencies: execa "^5.0.0" +define-data-property@^1.0.1, define-data-property@^1.1.4: + version "1.1.4" + resolved "https://registry.yarnpkg.com/define-data-property/-/define-data-property-1.1.4.tgz#894dc141bb7d3060ae4366f6a0107e68fbe48c5e" + integrity sha512-rBMvIzlpA8v6E+SJZoo++HAYqsLrkg7MSfIinMPFhmkorw7X+dOXVJQs+QT69zGkzMyfDnIMN2Wid1+NbL3T+A== + dependencies: + es-define-property "^1.0.0" + es-errors "^1.3.0" + gopd "^1.0.1" + define-lazy-prop@^2.0.0: version "2.0.0" resolved "https://registry.yarnpkg.com/define-lazy-prop/-/define-lazy-prop-2.0.0.tgz#3f7ae421129bcaaac9bc74905c98a0009ec9ee7f" @@ -3604,6 +3919,15 @@ define-properties@^1.1.3: dependencies: object-keys "^1.0.12" +define-properties@^1.2.0, define-properties@^1.2.1: + version "1.2.1" + resolved "https://registry.yarnpkg.com/define-properties/-/define-properties-1.2.1.tgz#10781cc616eb951a80a034bafcaa7377f6af2b6c" + integrity sha512-8QmQKqEASLd5nx0U1B1okLElbUuuttJ/AnYmRXbbbGDWh6uS208EjD4Xqq/I9wK7u0v6O08XhTWnt5XtEbR6Dg== + dependencies: + define-data-property "^1.0.1" + has-property-descriptors "^1.0.0" + object-keys "^1.1.1" + define-property@^0.2.5: version "0.2.5" resolved "https://registry.yarnpkg.com/define-property/-/define-property-0.2.5.tgz#c35b1ef918ec3c990f9a5bc57be04aacec5c8116" @@ -3730,6 +4054,13 @@ dns-txt@^2.0.2: dependencies: buffer-indexof "^1.0.0" +doctrine@^2.1.0: + version "2.1.0" + resolved "https://registry.yarnpkg.com/doctrine/-/doctrine-2.1.0.tgz#5cd01fc101621b42c4cd7f5d1a66243716d3f39d" + integrity sha512-35mSku4ZXK0vfCuHEDAwt55dg2jNajHZ1odvF+8SSr82EsZY4QmXfuWso8oEd8zRhVObSN18aM0CjSdoBX7zIw== + dependencies: + esutils "^2.0.2" + dom-align@^1.7.0: version "1.12.2" resolved "https://registry.yarnpkg.com/dom-align/-/dom-align-1.12.2.tgz#0f8164ebd0c9c21b0c790310493cd855892acd4b" @@ -3884,6 +4215,90 @@ error-stack-parser@^1.3.6: dependencies: stackframe "^0.3.1" +es-abstract@^1.22.1, es-abstract@^1.22.3, es-abstract@^1.23.0, es-abstract@^1.23.1, es-abstract@^1.23.2, es-abstract@^1.23.3: + version "1.23.3" + resolved "https://registry.yarnpkg.com/es-abstract/-/es-abstract-1.23.3.tgz#8f0c5a35cd215312573c5a27c87dfd6c881a0aa0" + integrity sha512-e+HfNH61Bj1X9/jLc5v1owaLYuHdeHHSQlkhCBiTK8rBvKaULl/beGMxwrMXjpYrv4pz22BlY570vVePA2ho4A== + dependencies: + array-buffer-byte-length "^1.0.1" + arraybuffer.prototype.slice "^1.0.3" + available-typed-arrays "^1.0.7" + call-bind "^1.0.7" + data-view-buffer "^1.0.1" + data-view-byte-length "^1.0.1" + data-view-byte-offset "^1.0.0" + es-define-property "^1.0.0" + es-errors "^1.3.0" + es-object-atoms "^1.0.0" + es-set-tostringtag "^2.0.3" + es-to-primitive "^1.2.1" + function.prototype.name "^1.1.6" + get-intrinsic "^1.2.4" + get-symbol-description "^1.0.2" + globalthis "^1.0.3" + gopd "^1.0.1" + has-property-descriptors "^1.0.2" + has-proto "^1.0.3" + has-symbols "^1.0.3" + hasown "^2.0.2" + internal-slot "^1.0.7" + is-array-buffer "^3.0.4" + is-callable "^1.2.7" + is-data-view "^1.0.1" + is-negative-zero "^2.0.3" + is-regex "^1.1.4" + is-shared-array-buffer "^1.0.3" + is-string "^1.0.7" + is-typed-array "^1.1.13" + is-weakref "^1.0.2" + object-inspect "^1.13.1" + object-keys "^1.1.1" + object.assign "^4.1.5" + regexp.prototype.flags "^1.5.2" + safe-array-concat "^1.1.2" + safe-regex-test "^1.0.3" + string.prototype.trim "^1.2.9" + string.prototype.trimend "^1.0.8" + string.prototype.trimstart "^1.0.8" + typed-array-buffer "^1.0.2" + typed-array-byte-length "^1.0.1" + typed-array-byte-offset "^1.0.2" + typed-array-length "^1.0.6" + unbox-primitive "^1.0.2" + which-typed-array "^1.1.15" + +es-define-property@^1.0.0: + version "1.0.0" + resolved "https://registry.yarnpkg.com/es-define-property/-/es-define-property-1.0.0.tgz#c7faefbdff8b2696cf5f46921edfb77cc4ba3845" + integrity sha512-jxayLKShrEqqzJ0eumQbVhTYQM27CfT1T35+gCgDFoL82JLsXqTJ76zv6A0YLOgEnLUMvLzsDsGIrl8NFpT2gQ== + dependencies: + get-intrinsic "^1.2.4" + +es-errors@^1.1.0, es-errors@^1.2.1, es-errors@^1.3.0: + version "1.3.0" + resolved "https://registry.yarnpkg.com/es-errors/-/es-errors-1.3.0.tgz#05f75a25dab98e4fb1dcd5e1472c0546d5057c8f" + integrity sha512-Zf5H2Kxt2xjTvbJvP2ZWLEICxA6j+hAmMzIlypy4xcBg1vKVnx89Wy0GbS+kf5cwCVFFzdCFh2XSCFNULS6csw== + +es-iterator-helpers@^1.0.17: + version "1.0.19" + resolved "https://registry.yarnpkg.com/es-iterator-helpers/-/es-iterator-helpers-1.0.19.tgz#117003d0e5fec237b4b5c08aded722e0c6d50ca8" + integrity sha512-zoMwbCcH5hwUkKJkT8kDIBZSz9I6mVG//+lDCinLCGov4+r7NIy0ld8o03M0cJxl2spVf6ESYVS6/gpIfq1FFw== + dependencies: + call-bind "^1.0.7" + define-properties "^1.2.1" + es-abstract "^1.23.3" + es-errors "^1.3.0" + es-set-tostringtag "^2.0.3" + function-bind "^1.1.2" + get-intrinsic "^1.2.4" + globalthis "^1.0.3" + has-property-descriptors "^1.0.2" + has-proto "^1.0.3" + has-symbols "^1.0.3" + internal-slot "^1.0.7" + iterator.prototype "^1.1.2" + safe-array-concat "^1.1.2" + es-module-lexer@^0.10.5: version "0.10.5" resolved "https://registry.yarnpkg.com/es-module-lexer/-/es-module-lexer-0.10.5.tgz#06f76d51fa53b1f78e3bd8bb36dd275eda2fdd53" @@ -3894,6 +4309,38 @@ es-module-lexer@^1.2.1: resolved "https://registry.yarnpkg.com/es-module-lexer/-/es-module-lexer-1.2.1.tgz#ba303831f63e6a394983fde2f97ad77b22324527" integrity sha512-9978wrXM50Y4rTMmW5kXIC09ZdXQZqkE4mxhwkd8VbzsGkXGPgV4zWuqQJgCEzYngdo2dYDa0l8xhX4fkSwJSg== +es-object-atoms@^1.0.0: + version "1.0.0" + resolved "https://registry.yarnpkg.com/es-object-atoms/-/es-object-atoms-1.0.0.tgz#ddb55cd47ac2e240701260bc2a8e31ecb643d941" + integrity sha512-MZ4iQ6JwHOBQjahnjwaC1ZtIBH+2ohjamzAO3oaHcXYup7qxjF2fixyH+Q71voWHeOkI2q/TnJao/KfXYIZWbw== + dependencies: + es-errors "^1.3.0" + +es-set-tostringtag@^2.0.3: + version "2.0.3" + resolved "https://registry.yarnpkg.com/es-set-tostringtag/-/es-set-tostringtag-2.0.3.tgz#8bb60f0a440c2e4281962428438d58545af39777" + integrity sha512-3T8uNMC3OQTHkFUsFq8r/BwAXLHvU/9O9mE0fBc/MY5iq/8H7ncvO947LmYA6ldWw9Uh8Yhf25zu6n7nML5QWQ== + dependencies: + get-intrinsic "^1.2.4" + has-tostringtag "^1.0.2" + hasown "^2.0.1" + +es-shim-unscopables@^1.0.0, es-shim-unscopables@^1.0.2: + version "1.0.2" + resolved "https://registry.yarnpkg.com/es-shim-unscopables/-/es-shim-unscopables-1.0.2.tgz#1f6942e71ecc7835ed1c8a83006d8771a63a3763" + integrity sha512-J3yBRXCzDu4ULnQwxyToo/OjdMx6akgVC7K6few0a7F/0wLtmKKN7I73AH5T2836UuXRqN7Qg+IIUw/+YJksRw== + dependencies: + hasown "^2.0.0" + +es-to-primitive@^1.2.1: + version "1.2.1" + resolved "https://registry.yarnpkg.com/es-to-primitive/-/es-to-primitive-1.2.1.tgz#e55cd4c9cdc188bcefb03b366c736323fc5c898a" + integrity sha512-QCOllgZJtaUo9miYBcLChTUaHNjJF3PYs1VidD7AwiEj1kYxKeQTctLAezAOH5ZKRH0g2IgPn6KwB4IT8iRpvA== + dependencies: + is-callable "^1.1.4" + is-date-object "^1.0.1" + is-symbol "^1.0.2" + es6-promise@^3.2.1: version "3.3.1" resolved "https://registry.yarnpkg.com/es6-promise/-/es6-promise-3.3.1.tgz#a08cdde84ccdbf34d027a1451bc91d4bcd28a613" @@ -4188,6 +4635,11 @@ escape-string-regexp@^2.0.0: resolved "https://registry.yarnpkg.com/escape-string-regexp/-/escape-string-regexp-2.0.0.tgz#a30304e99daa32e23b2fd20f51babd07cffca344" integrity sha512-UpzcLCXolUWcNu5HtVMHYdXJjArjsF9C0aNnquZYY4uW/Vu0miy5YoWvbV345HauVvcAUnpRuhMMcqTcGOY2+w== +escape-string-regexp@^4.0.0: + version "4.0.0" + resolved "https://registry.yarnpkg.com/escape-string-regexp/-/escape-string-regexp-4.0.0.tgz#14ba83a5d373e3d311e5afca29cf5bfad965bf34" + integrity sha512-TtpcNJ3XAzx3Gq8sWRzJaVajRs0uVxA2YAkdb1jm2YkPz4G6egUFAyA3n5vtEIZefPk5Wa4UXbKuS5fKkJWdgA== + escodegen@^2.0.0: version "2.0.0" resolved "https://registry.yarnpkg.com/escodegen/-/escodegen-2.0.0.tgz#5e32b12833e8aa8fa35e1bf0befa89380484c7dd" @@ -4200,13 +4652,42 @@ escodegen@^2.0.0: optionalDependencies: source-map "~0.6.1" -eslint-plugin-prettier@^2.2.0: - version "2.7.0" - resolved "https://registry.yarnpkg.com/eslint-plugin-prettier/-/eslint-plugin-prettier-2.7.0.tgz#b4312dcf2c1d965379d7f9d5b5f8aaadc6a45904" - integrity sha512-CStQYJgALoQBw3FsBzH0VOVDRnJ/ZimUlpLm226U8qgqYJfPOY/CPK6wyRInMxh73HSKg5wyRwdS4BVYYHwokA== - dependencies: - fast-diff "^1.1.1" - jest-docblock "^21.0.0" +eslint-config-prettier@^9.1.0: + version "9.1.0" + resolved "https://registry.yarnpkg.com/eslint-config-prettier/-/eslint-config-prettier-9.1.0.tgz#31af3d94578645966c082fcb71a5846d3c94867f" + integrity sha512-NSWl5BFQWEPi1j4TjVNItzYV7dZXZ+wP6I6ZhrBGpChQhZRUaElihE9uRRkcbRnNb76UMKDF3r+WTmNcGPKsqw== + +eslint-plugin-prettier@^5.1.3: + version "5.1.3" + resolved "https://registry.yarnpkg.com/eslint-plugin-prettier/-/eslint-plugin-prettier-5.1.3.tgz#17cfade9e732cef32b5f5be53bd4e07afd8e67e1" + integrity sha512-C9GCVAs4Eq7ZC/XFQHITLiHJxQngdtraXaM+LoUFoFp/lHNl2Zn8f3WQbe9HvTBBQ9YnKFB0/2Ajdqwo5D1EAw== + dependencies: + prettier-linter-helpers "^1.0.0" + synckit "^0.8.6" + +eslint-plugin-react@^7.34.1: + version "7.34.1" + resolved "https://registry.yarnpkg.com/eslint-plugin-react/-/eslint-plugin-react-7.34.1.tgz#6806b70c97796f5bbfb235a5d3379ece5f4da997" + integrity sha512-N97CxlouPT1AHt8Jn0mhhN2RrADlUAsk1/atcT2KyA/l9Q/E6ll7OIGwNumFmWfZ9skV3XXccYS19h80rHtgkw== + dependencies: + array-includes "^3.1.7" + array.prototype.findlast "^1.2.4" + array.prototype.flatmap "^1.3.2" + array.prototype.toreversed "^1.1.2" + array.prototype.tosorted "^1.1.3" + doctrine "^2.1.0" + es-iterator-helpers "^1.0.17" + estraverse "^5.3.0" + jsx-ast-utils "^2.4.1 || ^3.0.0" + minimatch "^3.1.2" + object.entries "^1.1.7" + object.fromentries "^2.0.7" + object.hasown "^1.1.3" + object.values "^1.1.7" + prop-types "^15.8.1" + resolve "^2.0.0-next.5" + semver "^6.3.1" + string.prototype.matchall "^4.0.10" eslint-scope@5.1.1: version "5.1.1" @@ -4216,11 +4697,85 @@ eslint-scope@5.1.1: esrecurse "^4.3.0" estraverse "^4.1.1" +eslint-scope@^8.0.1: + version "8.0.1" + resolved "https://registry.yarnpkg.com/eslint-scope/-/eslint-scope-8.0.1.tgz#a9601e4b81a0b9171657c343fb13111688963cfc" + integrity sha512-pL8XjgP4ZOmmwfFE8mEhSxA7ZY4C+LWyqjQ3o4yWkkmD0qcMT9kkW3zWHOczhWcjTSgqycYAgwSlXvZltv65og== + dependencies: + esrecurse "^4.3.0" + estraverse "^5.2.0" + +eslint-visitor-keys@^3.3.0, eslint-visitor-keys@^3.4.3: + version "3.4.3" + resolved "https://registry.yarnpkg.com/eslint-visitor-keys/-/eslint-visitor-keys-3.4.3.tgz#0cd72fe8550e3c2eae156a96a4dddcd1c8ac5800" + integrity sha512-wpc+LXeiyiisxPlEkUzU6svyS1frIO3Mgxj1fdy7Pm8Ygzguax2N3Fa/D/ag1WqbOprdI+uY6wMUl8/a2G+iag== + +eslint-visitor-keys@^4.0.0: + version "4.0.0" + resolved "https://registry.yarnpkg.com/eslint-visitor-keys/-/eslint-visitor-keys-4.0.0.tgz#e3adc021aa038a2a8e0b2f8b0ce8f66b9483b1fb" + integrity sha512-OtIRv/2GyiF6o/d8K7MYKKbXrOUBIK6SfkIRM4Z0dY3w+LiQ0vy3F57m0Z71bjbyeiWFiHJ8brqnmE6H6/jEuw== + +eslint@^9.1.1: + version "9.1.1" + resolved "https://registry.yarnpkg.com/eslint/-/eslint-9.1.1.tgz#39ec657ccd12813cb4a1dab2f9229dcc6e468271" + integrity sha512-b4cRQ0BeZcSEzPpY2PjFY70VbO32K7BStTGtBsnIGdTSEEQzBi8hPBcGQmTG2zUvFr9uLe0TK42bw8YszuHEqg== + dependencies: + "@eslint-community/eslint-utils" "^4.2.0" + "@eslint-community/regexpp" "^4.6.1" + "@eslint/eslintrc" "^3.0.2" + "@eslint/js" "9.1.1" + "@humanwhocodes/config-array" "^0.13.0" + "@humanwhocodes/module-importer" "^1.0.1" + "@humanwhocodes/retry" "^0.2.3" + "@nodelib/fs.walk" "^1.2.8" + ajv "^6.12.4" + chalk "^4.0.0" + cross-spawn "^7.0.2" + debug "^4.3.2" + escape-string-regexp "^4.0.0" + eslint-scope "^8.0.1" + eslint-visitor-keys "^4.0.0" + espree "^10.0.1" + esquery "^1.4.2" + esutils "^2.0.2" + fast-deep-equal "^3.1.3" + file-entry-cache "^8.0.0" + find-up "^5.0.0" + glob-parent "^6.0.2" + ignore "^5.2.0" + imurmurhash "^0.1.4" + is-glob "^4.0.0" + is-path-inside "^3.0.3" + json-stable-stringify-without-jsonify "^1.0.1" + levn "^0.4.1" + lodash.merge "^4.6.2" + minimatch "^3.1.2" + natural-compare "^1.4.0" + optionator "^0.9.3" + strip-ansi "^6.0.1" + text-table "^0.2.0" + +espree@^10.0.1: + version "10.0.1" + resolved "https://registry.yarnpkg.com/espree/-/espree-10.0.1.tgz#600e60404157412751ba4a6f3a2ee1a42433139f" + integrity sha512-MWkrWZbJsL2UwnjxTX3gG8FneachS/Mwg7tdGXce011sJd5b0JG54vat5KHnfSBODZ3Wvzd2WnjxyzsRoVv+ww== + dependencies: + acorn "^8.11.3" + acorn-jsx "^5.3.2" + eslint-visitor-keys "^4.0.0" + esprima@^4.0.0, esprima@^4.0.1: version "4.0.1" resolved "https://registry.yarnpkg.com/esprima/-/esprima-4.0.1.tgz#13b04cdb3e6c5d19df91ab6987a8695619b0aa71" integrity sha512-eGuFFw7Upda+g4p+QHvnW0RyTX/SVeJBDM/gCtMARO0cLuT2HcEKnTPvhjV6aGeqrCB/sbNop0Kszm0jsaWU4A== +esquery@^1.4.2: + version "1.5.0" + resolved "https://registry.yarnpkg.com/esquery/-/esquery-1.5.0.tgz#6ce17738de8577694edd7361c57182ac8cb0db0b" + integrity sha512-YQLXUplAwJgCydQ78IMJywZCceoqk1oH01OERdSAJc/7U2AylwjhSCLDEtqwg811idIS/9fIU5GjG73IgjKMVg== + dependencies: + estraverse "^5.1.0" + esrecurse@^4.3.0: version "4.3.0" resolved "https://registry.yarnpkg.com/esrecurse/-/esrecurse-4.3.0.tgz#7ad7964d679abb28bee72cec63758b1c5d2c9921" @@ -4233,6 +4788,11 @@ estraverse@^4.1.1: resolved "https://registry.yarnpkg.com/estraverse/-/estraverse-4.3.0.tgz#398ad3f3c5a24948be7725e83d11a7de28cdbd1d" integrity sha512-39nnKffWz8xN1BU/2c79n9nB9HDzo0niYUqx6xyqUnyoAnQyyWpOTdZEeiCch8BBu515t4wp9ZmgVfVhn9EBpw== +estraverse@^5.1.0, estraverse@^5.3.0: + version "5.3.0" + resolved "https://registry.yarnpkg.com/estraverse/-/estraverse-5.3.0.tgz#2eea5290702f26ab8fe5370370ff86c965d21123" + integrity sha512-MMdARuVEQziNTeJD8DgMqmhwR11BRQ/cBP+pLtYdSTnf3MIO8fFeiINEbX36ZdNlfU/7A9f3gUw49B3oQsvwBA== + estraverse@^5.2.0: version "5.2.0" resolved "https://registry.yarnpkg.com/estraverse/-/estraverse-5.2.0.tgz#307df42547e6cc7324d3cf03c155d5cdb8c53880" @@ -4390,10 +4950,10 @@ fast-deep-equal@^3.1.1, fast-deep-equal@^3.1.3: resolved "https://registry.yarnpkg.com/fast-deep-equal/-/fast-deep-equal-3.1.3.tgz#3a7d56b559d6cbc3eb512325244e619a65c6c525" integrity sha512-f3qQ9oQy9j2AhBe/H9VC91wLmKBCCU/gDOnKNAYG5hswO7BLKj09Hc5HYNz9cGI++xlpDCIgDaitVs03ATR84Q== -fast-diff@^1.1.1: - version "1.2.0" - resolved "https://registry.yarnpkg.com/fast-diff/-/fast-diff-1.2.0.tgz#73ee11982d86caaf7959828d519cfe927fac5f03" - integrity sha512-xJuoT5+L99XlZ8twedaRf6Ax2TgQVxvgZOYoPKqZufmJib0tL2tegPBOZb1pVNgIhlqDlA0eO0c3wBvQcmzx4w== +fast-diff@^1.1.2: + version "1.3.0" + resolved "https://registry.yarnpkg.com/fast-diff/-/fast-diff-1.3.0.tgz#ece407fa550a64d638536cd727e129c61616e0f0" + integrity sha512-VxPP4NqbUjj6MaAOafWeUn2cXWLcCtljklUtZf0Ind4XQ+QPtmA0b18zZy0jIQx+ExRVCR/ZQpBmik5lXshNsw== fast-glob@^3.1.1, fast-glob@^3.2.4: version "3.2.7" @@ -4406,12 +4966,23 @@ fast-glob@^3.1.1, fast-glob@^3.2.4: merge2 "^1.3.0" micromatch "^4.0.4" +fast-glob@^3.2.9: + version "3.3.2" + resolved "https://registry.yarnpkg.com/fast-glob/-/fast-glob-3.3.2.tgz#a904501e57cfdd2ffcded45e99a54fef55e46129" + integrity sha512-oX2ruAFQwf/Orj8m737Y5adxDQO0LAB7/S5MnxCdTNDd4p6BsyIVsv9JQsATbTSq8KHRpLwIHbVlUNatxd+1Ow== + dependencies: + "@nodelib/fs.stat" "^2.0.2" + "@nodelib/fs.walk" "^1.2.3" + glob-parent "^5.1.2" + merge2 "^1.3.0" + micromatch "^4.0.4" + fast-json-stable-stringify@2.x, fast-json-stable-stringify@^2.0.0: version "2.0.0" resolved "https://registry.yarnpkg.com/fast-json-stable-stringify/-/fast-json-stable-stringify-2.0.0.tgz#d5142c0caee6b1189f87d3a76111064f86c8bbf2" integrity sha1-1RQsDK7msRifh9OnYREGT4bIu/I= -fast-levenshtein@~2.0.6: +fast-levenshtein@^2.0.6, fast-levenshtein@~2.0.6: version "2.0.6" resolved "https://registry.yarnpkg.com/fast-levenshtein/-/fast-levenshtein-2.0.6.tgz#3d8a5c66883a16a30ca8643e851f19baa7797917" integrity sha1-PYpcZog6FqMMqGQ+hR8Zuqd5eRc= @@ -4464,6 +5035,13 @@ fb-watchman@^2.0.0: dependencies: bser "2.1.1" +file-entry-cache@^8.0.0: + version "8.0.0" + resolved "https://registry.yarnpkg.com/file-entry-cache/-/file-entry-cache-8.0.0.tgz#7787bddcf1131bffb92636c69457bbc0edd6d81f" + integrity sha512-XXTUwCvisa5oacNGRP9SfNtYBNAMi+RPwBFmblZEF7N7swHYQS6/Zfk7SRwx4D5j3CH211YNRco1DEMNVfZCnQ== + dependencies: + flat-cache "^4.0.0" + fill-range@^4.0.0: version "4.0.0" resolved "https://registry.yarnpkg.com/fill-range/-/fill-range-4.0.0.tgz#d544811d428f98eb06a63dc402d2403c328c38f7" @@ -4527,11 +5105,39 @@ find-up@^4.0.0, find-up@^4.1.0: locate-path "^5.0.0" path-exists "^4.0.0" +find-up@^5.0.0: + version "5.0.0" + resolved "https://registry.yarnpkg.com/find-up/-/find-up-5.0.0.tgz#4c92819ecb7083561e4f4a240a86be5198f536fc" + integrity sha512-78/PXT1wlLLDgTzDs7sjq9hzz0vXD+zn+7wypEe4fXQxCmdmqfGsEPQxmiCSQI3ajFV91bVSsvNtrJRiW6nGng== + dependencies: + locate-path "^6.0.0" + path-exists "^4.0.0" + +flat-cache@^4.0.0: + version "4.0.1" + resolved "https://registry.yarnpkg.com/flat-cache/-/flat-cache-4.0.1.tgz#0ece39fcb14ee012f4b0410bd33dd9c1f011127c" + integrity sha512-f7ccFPK3SXFHpx15UIGyRJ/FJQctuKZ0zVuN3frBo4HnK3cay9VEW0R6yPYFHC0AgqhukPzKjq22t5DmAyqGyw== + dependencies: + flatted "^3.2.9" + keyv "^4.5.4" + +flatted@^3.2.9: + version "3.3.1" + resolved "https://registry.yarnpkg.com/flatted/-/flatted-3.3.1.tgz#21db470729a6734d4997002f439cb308987f567a" + integrity sha512-X8cqMLLie7KsNUDSdzeN8FYK9rEt4Dt67OsG/DNGnYTSDBG4uFAJFBnUeiV+zCVAvwFy56IjM9sH51jVaEhNxw== + follow-redirects@^1.0.0: version "1.15.6" resolved "https://registry.yarnpkg.com/follow-redirects/-/follow-redirects-1.15.6.tgz#7f815c0cda4249c74ff09e95ef97c23b5fd0399b" integrity sha512-wWN62YITEaOpSK584EZXJafH1AGpO8RVgElfkuXbTOrPX4fIfOyEpW/CsiNd8JdYrAoOvafRTOEnvsO++qCqFA== +for-each@^0.3.3: + version "0.3.3" + resolved "https://registry.yarnpkg.com/for-each/-/for-each-0.3.3.tgz#69b447e88a0a5d32c3e7084f3f1710034b21376e" + integrity sha512-jqYfLp7mo9vIyQf8ykW2v7A+2N4QjeCeI5+Dz9XraiO1ign81wjiH7Fb9vSOWvQfNtmSa4H2RoQTrrXivdUZmw== + dependencies: + is-callable "^1.1.3" + for-in@^1.0.2: version "1.0.2" resolved "https://registry.yarnpkg.com/for-in/-/for-in-1.0.2.tgz#81068d295a8142ec0ac726c6e2200c30fb6d5e80" @@ -4619,6 +5225,26 @@ function-bind@^1.1.1: resolved "https://registry.yarnpkg.com/function-bind/-/function-bind-1.1.1.tgz#a56899d3ea3c9bab874bb9773b7c5ede92f4895d" integrity sha512-yIovAzMX49sF8Yl58fSCWJ5svSLuaibPxXQJFLmBObTuCr0Mf1KiPopGM9NiFjiYBCbfaa2Fh6breQ6ANVTI0A== +function-bind@^1.1.2: + version "1.1.2" + resolved "https://registry.yarnpkg.com/function-bind/-/function-bind-1.1.2.tgz#2c02d864d97f3ea6c8830c464cbd11ab6eab7a1c" + integrity sha512-7XHNxH7qX9xG5mIwxkhumTox/MIRNcOgDrxWsMt2pAr23WHp6MrRlN7FBSFpCpr+oVO0F744iUgR82nJMfG2SA== + +function.prototype.name@^1.1.5, function.prototype.name@^1.1.6: + version "1.1.6" + resolved "https://registry.yarnpkg.com/function.prototype.name/-/function.prototype.name-1.1.6.tgz#cdf315b7d90ee77a4c6ee216c3c3362da07533fd" + integrity sha512-Z5kx79swU5P27WEayXM1tBi5Ze/lbIyiNgU3qyXUOf9b2rgXYyF9Dy9Cx+IQv/Lc8WCG6L82zwUPpSS9hGehIg== + dependencies: + call-bind "^1.0.2" + define-properties "^1.2.0" + es-abstract "^1.22.1" + functions-have-names "^1.2.3" + +functions-have-names@^1.2.3: + version "1.2.3" + resolved "https://registry.yarnpkg.com/functions-have-names/-/functions-have-names-1.2.3.tgz#0404fe4ee2ba2f607f0e0ec3c80bae994133b834" + integrity sha512-xckBUXyTIqT97tq2x2AMb+g163b5JFysYk0x4qxNFwbfQkmNZoiRHb6sPzI9/QV33WeuvVYBUIiD4NzNIyqaRQ== + generic-names@^1.0.3: version "1.0.3" resolved "https://registry.yarnpkg.com/generic-names/-/generic-names-1.0.3.tgz#2d786a121aee508876796939e8e3bff836c20917" @@ -4645,6 +5271,17 @@ get-intrinsic@^1.0.2: has "^1.0.3" has-symbols "^1.0.3" +get-intrinsic@^1.1.3, get-intrinsic@^1.2.1, get-intrinsic@^1.2.3, get-intrinsic@^1.2.4: + version "1.2.4" + resolved "https://registry.yarnpkg.com/get-intrinsic/-/get-intrinsic-1.2.4.tgz#e385f5a4b5227d449c3eabbad05494ef0abbeadd" + integrity sha512-5uYhsJH8VJBTv7oslg4BznJYhDoRI6waYCxMmCdnTrcCrHA/fCFKoTFz2JKKE0HdDFUF7/oQuhzumXJK7paBRQ== + dependencies: + es-errors "^1.3.0" + function-bind "^1.1.2" + has-proto "^1.0.1" + has-symbols "^1.0.3" + hasown "^2.0.0" + get-package-type@^0.1.0: version "0.1.0" resolved "https://registry.yarnpkg.com/get-package-type/-/get-package-type-0.1.0.tgz#8de2d803cff44df3bc6c456e6668b36c3926e11a" @@ -4662,6 +5299,15 @@ get-stream@^6.0.0: resolved "https://registry.yarnpkg.com/get-stream/-/get-stream-6.0.1.tgz#a262d8eef67aced57c2852ad6167526a43cbf7b7" integrity sha512-ts6Wi+2j3jQjqi70w5AlN8DFnkSwC+MqmxEzdEALB2qXZYV3X/b1CTfgPLGJNMeAWxdPfU8FO1ms3NUfaHCPYg== +get-symbol-description@^1.0.2: + version "1.0.2" + resolved "https://registry.yarnpkg.com/get-symbol-description/-/get-symbol-description-1.0.2.tgz#533744d5aa20aca4e079c8e5daf7fd44202821f5" + integrity sha512-g0QYk1dZBxGwk+Ngc+ltRH2IBp2f7zBkBMBJZCDerh6EhlhSR6+9irMCuT/09zD6qkarHUSn529sK/yL4S27mg== + dependencies: + call-bind "^1.0.5" + es-errors "^1.3.0" + get-intrinsic "^1.2.4" + get-tsconfig@^3.0.1: version "3.0.1" resolved "https://registry.yarnpkg.com/get-tsconfig/-/get-tsconfig-3.0.1.tgz#02cadb5abc5f0d53033c8b2f3005b84134ba22e9" @@ -4694,6 +5340,13 @@ glob-parent@^5.1.1, glob-parent@^5.1.2, glob-parent@~5.1.2: dependencies: is-glob "^4.0.1" +glob-parent@^6.0.2: + version "6.0.2" + resolved "https://registry.yarnpkg.com/glob-parent/-/glob-parent-6.0.2.tgz#6d237d99083950c79290f24c7642a3de9a28f9e3" + integrity sha512-XxwI8EOhVQgWp6iDL+3b0r86f4d6AX6zSU55HfB4ydCEuXLXc5FcYeOu+nnGftS4TEju/11rt4KJPTMgbfmv4A== + dependencies: + is-glob "^4.0.3" + glob-to-regexp@^0.4.1: version "0.4.1" resolved "https://registry.yarnpkg.com/glob-to-regexp/-/glob-to-regexp-0.4.1.tgz#c75297087c851b9a578bd217dd59a92f59fe546e" @@ -4724,6 +5377,24 @@ globals@^11.1.0: resolved "https://registry.yarnpkg.com/globals/-/globals-11.12.0.tgz#ab8795338868a0babd8525758018c2a7eb95c42e" integrity sha512-WOBp/EEGUiIsJSp7wcv/y6MO+lV9UoncWqxuFfm8eBwzWNgyfBd6Gz+IeKQ9jCmyhoH99g15M3T+QaVHFjizVA== +globals@^14.0.0: + version "14.0.0" + resolved "https://registry.yarnpkg.com/globals/-/globals-14.0.0.tgz#898d7413c29babcf6bafe56fcadded858ada724e" + integrity sha512-oahGvuMGQlPw/ivIYBjVSrWAfWLBeku5tpPE2fOPLi+WHffIWbuh2tCjhyQhTBPMf5E9jDEH4FOmTYgYwbKwtQ== + +globals@^15.1.0: + version "15.1.0" + resolved "https://registry.yarnpkg.com/globals/-/globals-15.1.0.tgz#4e03d200c8362201636b8cdfaa316d6cef67ff1e" + integrity sha512-926gJqg+4mkxwYKiFvoomM4J0kWESfk3qfTvRL2/oc/tK/eTDBbrfcKnSa2KtfdxB5onoL7D3A3qIHQFpd4+UA== + +globalthis@^1.0.3: + version "1.0.4" + resolved "https://registry.yarnpkg.com/globalthis/-/globalthis-1.0.4.tgz#7430ed3a975d97bfb59bcce41f5cabbafa651236" + integrity sha512-DpLKbNU4WylpxJykQujfCcwYWiV/Jhm50Goo0wrVILAv5jOr9d+H+UR3PhSCD2rCCEIg0uc+G+muBTwD54JhDQ== + dependencies: + define-properties "^1.2.1" + gopd "^1.0.1" + globby@^11.0.1: version "11.0.4" resolved "https://registry.yarnpkg.com/globby/-/globby-11.0.4.tgz#2cbaff77c2f2a62e71e9b2813a67b97a3a3001a5" @@ -4736,11 +5407,35 @@ globby@^11.0.1: merge2 "^1.3.0" slash "^3.0.0" +globby@^11.1.0: + version "11.1.0" + resolved "https://registry.yarnpkg.com/globby/-/globby-11.1.0.tgz#bd4be98bb042f83d796f7e3811991fbe82a0d34b" + integrity sha512-jhIXaOzy1sb8IyocaruWSn1TjmnBVs8Ayhcy83rmxNJ8q2uWKCAj3CnJY+KpGSXCueAPc0i05kVvVKtP1t9S3g== + dependencies: + array-union "^2.1.0" + dir-glob "^3.0.1" + fast-glob "^3.2.9" + ignore "^5.2.0" + merge2 "^1.4.1" + slash "^3.0.0" + +gopd@^1.0.1: + version "1.0.1" + resolved "https://registry.yarnpkg.com/gopd/-/gopd-1.0.1.tgz#29ff76de69dac7489b7c0918a5788e56477c332c" + integrity sha512-d65bNlIadxvpb/A2abVdlqKqV563juRnZ1Wtk6s1sIR8uNsXR70xqIzVqxVf1eTqDunwT2MkczEeaezCKTZhwA== + dependencies: + get-intrinsic "^1.1.3" + graceful-fs@^4.1.2, graceful-fs@^4.2.4, graceful-fs@^4.2.6, graceful-fs@^4.2.9: version "4.2.9" resolved "https://registry.yarnpkg.com/graceful-fs/-/graceful-fs-4.2.9.tgz#041b05df45755e587a24942279b9d113146e1c96" integrity sha512-NtNxqUcXgpW2iMrfqSfR73Glt39K+BLwWsPs94yR63v45T0Wbej7eRmL5cWfwEgqXnmjQp3zaJTshdRW/qC2ZQ== +graphemer@^1.4.0: + version "1.4.0" + resolved "https://registry.yarnpkg.com/graphemer/-/graphemer-1.4.0.tgz#fb2f1d55e0e3a1849aeffc90c4fa0dd53a0e66c6" + integrity sha512-EtKwoO6kxCL9WO5xipiHTZlSzBm7WLT627TqC/uVRd0HKmq8NXyebnNYxDoBi7wt8eTWrUrKXCOVaFq9x1kgag== + graphlib@^2.1.8: version "2.1.8" resolved "https://registry.yarnpkg.com/graphlib/-/graphlib-2.1.8.tgz#5761d414737870084c92ec7b5dbcb0592c9d35da" @@ -4765,6 +5460,11 @@ has-ansi@^2.0.0: dependencies: ansi-regex "^2.0.0" +has-bigints@^1.0.1, has-bigints@^1.0.2: + version "1.0.2" + resolved "https://registry.yarnpkg.com/has-bigints/-/has-bigints-1.0.2.tgz#0871bd3e3d51626f6ca0966668ba35d5602d6eaa" + integrity sha512-tSvCKtBr9lkF0Ex0aQiP9N+OpV4zi2r/Nee5VkRDbaqv35RLYMzbwQfFSZZH0kR+Rd6302UJZ2p/bJCEoR3VoQ== + has-flag@^1.0.0: version "1.0.0" resolved "https://registry.yarnpkg.com/has-flag/-/has-flag-1.0.0.tgz#9d9e793165ce017a00f00418c43f942a7b1d11fa" @@ -4780,6 +5480,18 @@ has-flag@^4.0.0: resolved "https://registry.yarnpkg.com/has-flag/-/has-flag-4.0.0.tgz#944771fd9c81c81265c4d6941860da06bb59479b" integrity sha512-EykJT/Q1KjTWctppgIAgfSO0tKVuZUjhgMr17kqTumMl6Afv3EISleU7qZUzoXDFTAHTDC4NOoG/ZxU3EvlMPQ== +has-property-descriptors@^1.0.0, has-property-descriptors@^1.0.2: + version "1.0.2" + resolved "https://registry.yarnpkg.com/has-property-descriptors/-/has-property-descriptors-1.0.2.tgz#963ed7d071dc7bf5f084c5bfbe0d1b6222586854" + integrity sha512-55JNKuIW+vq4Ke1BjOTjM2YctQIvCT7GFzHwmfZPGo5wnrgkid0YQtnAleFSqumZm4az3n2BS+erby5ipJdgrg== + dependencies: + es-define-property "^1.0.0" + +has-proto@^1.0.1, has-proto@^1.0.3: + version "1.0.3" + resolved "https://registry.yarnpkg.com/has-proto/-/has-proto-1.0.3.tgz#b31ddfe9b0e6e9914536a6ab286426d0214f77fd" + integrity sha512-SJ1amZAJUiZS+PhsVLf5tGydlaVB8EdFpaSO4gmiUKUOxk8qzn5AIy4ZeJUmh22znIdk/uMAUT2pl3FxzVUH+Q== + has-symbols@^1.0.1, has-symbols@^1.0.2: version "1.0.2" resolved "https://registry.yarnpkg.com/has-symbols/-/has-symbols-1.0.2.tgz#165d3070c00309752a1236a479331e3ac56f1423" @@ -4790,6 +5502,13 @@ has-symbols@^1.0.3: resolved "https://registry.yarnpkg.com/has-symbols/-/has-symbols-1.0.3.tgz#bb7b2c4349251dce87b125f7bdf874aa7c8b39f8" integrity sha512-l3LCuF6MgDNwTDKkdYGEihYjt5pRPbEg46rtlmnSPlUbgmB8LOIrKJbYYFBSbnPaJexMKtiPO8hmeRjRz2Td+A== +has-tostringtag@^1.0.0, has-tostringtag@^1.0.2: + version "1.0.2" + resolved "https://registry.yarnpkg.com/has-tostringtag/-/has-tostringtag-1.0.2.tgz#2cdc42d40bef2e5b4eeab7c01a73c54ce7ab5abc" + integrity sha512-NqADB8VjPFLM2V0VvHUewwwsw0ZWBaIdgo+ieHtK3hasLz4qeCRjYcqfB6AQrBggRKppKF8L52/VqdVsO47Dlw== + dependencies: + has-symbols "^1.0.3" + has-value@^0.3.1: version "0.3.1" resolved "https://registry.yarnpkg.com/has-value/-/has-value-0.3.1.tgz#7b1f58bada62ca827ec0a2078025654845995e1f" @@ -4828,6 +5547,13 @@ has@^1.0.3: dependencies: function-bind "^1.1.1" +hasown@^2.0.0, hasown@^2.0.1, hasown@^2.0.2: + version "2.0.2" + resolved "https://registry.yarnpkg.com/hasown/-/hasown-2.0.2.tgz#003eaf91be7adc372e84ec59dc37252cedb80003" + integrity sha512-0hJU9SCPvmMzIBdZFqNPXWa6dqh7WdH0cII9y+CyS8rG3nL48Bclra9HmKhVVUHyPWNH5Y7xDwAB7bfgSjkUMQ== + dependencies: + function-bind "^1.1.2" + he@^1.2.0: version "1.2.0" resolved "https://registry.yarnpkg.com/he/-/he-1.2.0.tgz#84ae65fa7eafb165fddb61566ae14baf05664f0f" @@ -5037,6 +5763,11 @@ ignore@^5.1.4: resolved "https://registry.yarnpkg.com/ignore/-/ignore-5.1.8.tgz#f150a8b50a34289b33e22f5889abd4d8016f0e57" integrity sha512-BMpfD7PpiETpBl/A6S498BaIJ6Y/ABT93ETbby2fP00v4EbvPBXWEoaR1UBPKs3iR53pJY7EtZk5KACI57i1Uw== +ignore@^5.2.0, ignore@^5.3.1: + version "5.3.1" + resolved "https://registry.yarnpkg.com/ignore/-/ignore-5.3.1.tgz#5073e554cd42c5b33b394375f538b8593e34d4ef" + integrity sha512-5Fytz/IraMjqpwfd34ke28PTVMjZjJG2MPn5t7OE4eUCUNf8BAa7b5WUS9/Qvr6mwOQS7Mk6vdsMno5he+T8Xw== + immutable@^4.0.0: version "4.0.0" resolved "https://registry.yarnpkg.com/immutable/-/immutable-4.0.0.tgz#b86f78de6adef3608395efb269a91462797e2c23" @@ -5049,6 +5780,14 @@ import-cwd@^2.0.0: dependencies: import-from "^2.1.0" +import-fresh@^3.2.1: + version "3.3.0" + resolved "https://registry.yarnpkg.com/import-fresh/-/import-fresh-3.3.0.tgz#37162c25fcb9ebaa2e6e53d5b4d88ce17d9e0c2b" + integrity sha512-veYYhQa+D1QBKznvhUHxb8faxlrwUnxseDAbAp457E0wLNio2bOSKnjYDhMj+YiAq61xrMGhQk9iXVk5FzgQMw== + dependencies: + parent-module "^1.0.0" + resolve-from "^4.0.0" + import-from@^2.1.0: version "2.1.0" resolved "https://registry.yarnpkg.com/import-from/-/import-from-2.1.0.tgz#335db7f2a7affd53aaa471d4b8021dee36b7f3b1" @@ -5097,6 +5836,15 @@ inherits@2.0.3: resolved "https://registry.yarnpkg.com/inherits/-/inherits-2.0.3.tgz#633c2c83e3da42a502f52466022480f4208261de" integrity sha1-Yzwsg+PaQqUC9SRmAiSA9CCCYd4= +internal-slot@^1.0.7: + version "1.0.7" + resolved "https://registry.yarnpkg.com/internal-slot/-/internal-slot-1.0.7.tgz#c06dcca3ed874249881007b0a5523b172a190802" + integrity sha512-NGnrKwXzSms2qUUih/ILZ5JBqNTSa1+ZmP6flaIp6KmSElgE9qdndzS3cqjrDovwFdmwsGsLdeFgB6suw+1e9g== + dependencies: + es-errors "^1.3.0" + hasown "^2.0.0" + side-channel "^1.0.4" + interpret@^2.2.0: version "2.2.0" resolved "https://registry.yarnpkg.com/interpret/-/interpret-2.2.0.tgz#1a78a0b5965c40a5416d007ad6f50ad27c417df9" @@ -5145,6 +5893,14 @@ is-arguments@^1.0.4: dependencies: call-bind "^1.0.0" +is-array-buffer@^3.0.4: + version "3.0.4" + resolved "https://registry.yarnpkg.com/is-array-buffer/-/is-array-buffer-3.0.4.tgz#7a1f92b3d61edd2bc65d24f130530ea93d7fae98" + integrity sha512-wcjaerHw0ydZwfhiKbXJWLDY8A7yV7KhjQOpb83hGgGfId/aQa4TOvwyzn2PuswW2gPCYEL/nEAiSVpdOj1lXw== + dependencies: + call-bind "^1.0.2" + get-intrinsic "^1.2.1" + is-arrayish@^0.2.1: version "0.2.1" resolved "https://registry.yarnpkg.com/is-arrayish/-/is-arrayish-0.2.1.tgz#77c99840527aa8ecb1a8ba697b80645a7a926a9d" @@ -5155,6 +5911,20 @@ is-arrayish@^0.3.1: resolved "https://registry.yarnpkg.com/is-arrayish/-/is-arrayish-0.3.2.tgz#4574a2ae56f7ab206896fb431eaeed066fdf8f03" integrity sha512-eVRqCvVlZbuw3GrM63ovNSNAeA1K16kaR/LRY/92w0zxQ5/1YzwblUX652i4Xs9RwAGjW9d9y6X88t8OaAJfWQ== +is-async-function@^2.0.0: + version "2.0.0" + resolved "https://registry.yarnpkg.com/is-async-function/-/is-async-function-2.0.0.tgz#8e4418efd3e5d3a6ebb0164c05ef5afb69aa9646" + integrity sha512-Y1JXKrfykRJGdlDwdKlLpLyMIiWqWvuSd17TvZk68PLAOGOoF4Xyav1z0Xhoi+gCYjZVeC5SI+hYFOfvXmGRCA== + dependencies: + has-tostringtag "^1.0.0" + +is-bigint@^1.0.1: + version "1.0.4" + resolved "https://registry.yarnpkg.com/is-bigint/-/is-bigint-1.0.4.tgz#08147a1875bc2b32005d41ccd8291dffc6691df3" + integrity sha512-zB9CruMamjym81i2JZ3UMn54PKGsQzsJeo6xvN3HJJ4CAsQNB6iRutp2To77OfCNuoxspsIhzaPoO1zyCEhFOg== + dependencies: + has-bigints "^1.0.1" + is-binary-path@~2.1.0: version "2.1.0" resolved "https://registry.yarnpkg.com/is-binary-path/-/is-binary-path-2.1.0.tgz#ea1f7f3b80f064236e83470f86c09c254fb45b09" @@ -5162,11 +5932,24 @@ is-binary-path@~2.1.0: dependencies: binary-extensions "^2.0.0" +is-boolean-object@^1.1.0: + version "1.1.2" + resolved "https://registry.yarnpkg.com/is-boolean-object/-/is-boolean-object-1.1.2.tgz#5c6dc200246dd9321ae4b885a114bb1f75f63719" + integrity sha512-gDYaKHJmnj4aWxyj6YHyXVpdQawtVLHU5cb+eztPGczf6cjuTdwve5ZIEfgXqH4e57An1D1AKf8CZ3kYrQRqYA== + dependencies: + call-bind "^1.0.2" + has-tostringtag "^1.0.0" + is-buffer@^1.1.5: version "1.1.6" resolved "https://registry.yarnpkg.com/is-buffer/-/is-buffer-1.1.6.tgz#efaa2ea9daa0d7ab2ea13a97b2b8ad51fefbe8be" integrity sha512-NcdALwpXkTm5Zvvbk7owOUSvVvBKDgKP5/ewfXEznmQFfs4ZRmanOeKBTjRVjka3QFoN6XJ+9F3USqfHqTaU5w== +is-callable@^1.1.3, is-callable@^1.1.4, is-callable@^1.2.7: + version "1.2.7" + resolved "https://registry.yarnpkg.com/is-callable/-/is-callable-1.2.7.tgz#3bc2a85ea742d9e36205dcacdd72ca1fdc51b055" + integrity sha512-1BC0BVFhS/p0qtw6enp8e+8OD0UrK0oFLztSjNzhcKA3WDuJxxAPXzPuPtKkjEY9UUoEWlX/8fgKeu2S8i9JTA== + is-ci@^2.0.0: version "2.0.0" resolved "https://registry.yarnpkg.com/is-ci/-/is-ci-2.0.0.tgz#6bc6334181810e04b5c22b3d589fdca55026404c" @@ -5174,6 +5957,13 @@ is-ci@^2.0.0: dependencies: ci-info "^2.0.0" +is-core-module@^2.13.0: + version "2.13.1" + resolved "https://registry.yarnpkg.com/is-core-module/-/is-core-module-2.13.1.tgz#ad0d7532c6fea9da1ebdc82742d74525c6273384" + integrity sha512-hHrIjvZsftOsvKSn2TRYl63zvxsgE0K+0mYMoH6gD4omR5IWB2KynivBQczo3+wF1cCkjzvptnI9Q0sPU66ilw== + dependencies: + hasown "^2.0.0" + is-core-module@^2.8.1: version "2.8.1" resolved "https://registry.yarnpkg.com/is-core-module/-/is-core-module-2.8.1.tgz#f59fdfca701d5879d0a6b100a40aa1560ce27211" @@ -5195,11 +5985,25 @@ is-data-descriptor@^1.0.0: dependencies: kind-of "^6.0.0" +is-data-view@^1.0.1: + version "1.0.1" + resolved "https://registry.yarnpkg.com/is-data-view/-/is-data-view-1.0.1.tgz#4b4d3a511b70f3dc26d42c03ca9ca515d847759f" + integrity sha512-AHkaJrsUVW6wq6JS8y3JnM/GJF/9cf+k20+iDzlSaJrinEo5+7vRiteOSwBhHRiAyQATN1AmY4hwzxJKPmYf+w== + dependencies: + is-typed-array "^1.1.13" + is-date-object@^1.0.1: version "1.0.4" resolved "https://registry.yarnpkg.com/is-date-object/-/is-date-object-1.0.4.tgz#550cfcc03afada05eea3dd30981c7b09551f73e5" integrity sha512-/b4ZVsG7Z5XVtIxs/h9W8nvfLgSAyKYdtGWQLbqy6jA1icmgjf8WCoTKgeS4wy5tYaPePouzFMANbnj94c2Z+A== +is-date-object@^1.0.5: + version "1.0.5" + resolved "https://registry.yarnpkg.com/is-date-object/-/is-date-object-1.0.5.tgz#0841d5536e724c25597bf6ea62e1bd38298df31f" + integrity sha512-9YQaSxsAiSwcvS33MBk3wTCVnWK+HhF8VZR2jRxehM16QcVOdHqPn4VPHmRK4lSr38n9JriurInLcP90xsYNfQ== + dependencies: + has-tostringtag "^1.0.0" + is-descriptor@^0.1.0: version "0.1.6" resolved "https://registry.yarnpkg.com/is-descriptor/-/is-descriptor-0.1.6.tgz#366d8240dde487ca51823b1ab9f07a10a78251ca" @@ -5245,6 +6049,13 @@ is-extglob@^2.1.1: resolved "https://registry.yarnpkg.com/is-extglob/-/is-extglob-2.1.1.tgz#a88c02535791f02ed37c76a1b9ea9773c833f8c2" integrity sha1-qIwCU1eR8C7TfHahueqXc8gz+MI= +is-finalizationregistry@^1.0.2: + version "1.0.2" + resolved "https://registry.yarnpkg.com/is-finalizationregistry/-/is-finalizationregistry-1.0.2.tgz#c8749b65f17c133313e661b1289b95ad3dbd62e6" + integrity sha512-0by5vtUJs8iFQb5TYUHHPudOR+qXYIMKtiUzvLIZITZUjknFmziyBJuLhVRc+Ds0dREFlskDNJKYIdIzu/9pfw== + dependencies: + call-bind "^1.0.2" + is-fullwidth-code-point@^3.0.0: version "3.0.0" resolved "https://registry.yarnpkg.com/is-fullwidth-code-point/-/is-fullwidth-code-point-3.0.0.tgz#f116f8064fe90b3f7844a38997c0b75051269f1d" @@ -5255,6 +6066,20 @@ is-generator-fn@^2.0.0: resolved "https://registry.yarnpkg.com/is-generator-fn/-/is-generator-fn-2.1.0.tgz#7d140adc389aaf3011a8f2a2a4cfa6faadffb118" integrity sha512-cTIB4yPYL/Grw0EaSzASzg6bBy9gqCofvWN8okThAYIxKJZC+udlRAmGbM0XLeniEJSs8uEgHPGuHSe1XsOLSQ== +is-generator-function@^1.0.10: + version "1.0.10" + resolved "https://registry.yarnpkg.com/is-generator-function/-/is-generator-function-1.0.10.tgz#f1558baf1ac17e0deea7c0415c438351ff2b3c72" + integrity sha512-jsEjy9l3yiXEQ+PsXdmBwEPcOxaXWLspKdplFUVI9vq1iZgIekeC0L167qeu86czQaxed3q/Uzuw0swL0irL8A== + dependencies: + has-tostringtag "^1.0.0" + +is-glob@^4.0.0, is-glob@^4.0.3: + version "4.0.3" + resolved "https://registry.yarnpkg.com/is-glob/-/is-glob-4.0.3.tgz#64f61e42cbbb2eec2071a9dac0b28ba1e65d5084" + integrity sha512-xelSayHH36ZgE7ZWhli7pW34hNbNl8Ojv5KVmkJD4hBdD3th8Tfk9vYasLM+mXWOZhFkgZfxhLSnrwRr4elSSg== + dependencies: + is-extglob "^2.1.1" + is-glob@^4.0.1, is-glob@~4.0.1: version "4.0.1" resolved "https://registry.yarnpkg.com/is-glob/-/is-glob-4.0.1.tgz#7567dbe9f2f5e2467bc77ab83c4a29482407a5dc" @@ -5262,6 +6087,23 @@ is-glob@^4.0.1, is-glob@~4.0.1: dependencies: is-extglob "^2.1.1" +is-map@^2.0.3: + version "2.0.3" + resolved "https://registry.yarnpkg.com/is-map/-/is-map-2.0.3.tgz#ede96b7fe1e270b3c4465e3a465658764926d62e" + integrity sha512-1Qed0/Hr2m+YqxnM09CjA2d/i6YZNfF6R2oRAOj36eUdS6qIV/huPJNSEpKbupewFs+ZsJlxsjjPbc0/afW6Lw== + +is-negative-zero@^2.0.3: + version "2.0.3" + resolved "https://registry.yarnpkg.com/is-negative-zero/-/is-negative-zero-2.0.3.tgz#ced903a027aca6381b777a5743069d7376a49747" + integrity sha512-5KoIu2Ngpyek75jXodFvnafB6DJgr3u8uuK0LEZJjrU19DrMD3EVERaR8sjz8CCGgpZvxPl9SuE1GMVPFHx1mw== + +is-number-object@^1.0.4: + version "1.0.7" + resolved "https://registry.yarnpkg.com/is-number-object/-/is-number-object-1.0.7.tgz#59d50ada4c45251784e9904f5246c742f07a42fc" + integrity sha512-k1U0IRzLMo7ZlYIfzRu23Oh6MiIFasgpb9X76eqfFZAqwH44UI4KTBvBYIZ1dSL9ZzChTB9ShHfLkR4pdW5krQ== + dependencies: + has-tostringtag "^1.0.0" + is-number@^3.0.0: version "3.0.0" resolved "https://registry.yarnpkg.com/is-number/-/is-number-3.0.0.tgz#24fd6201a4782cf50561c810276afc7d12d71195" @@ -5279,7 +6121,7 @@ is-path-cwd@^2.2.0: resolved "https://registry.yarnpkg.com/is-path-cwd/-/is-path-cwd-2.2.0.tgz#67d43b82664a7b5191fd9119127eb300048a9fdb" integrity sha512-w942bTcih8fdJPJmQHFzkS76NEP8Kzzvmw92cXsazb8intwLqPibPPdXf4ANdKV3rYMuuQYGIWtvz9JilB3NFQ== -is-path-inside@^3.0.2: +is-path-inside@^3.0.2, is-path-inside@^3.0.3: version "3.0.3" resolved "https://registry.yarnpkg.com/is-path-inside/-/is-path-inside-3.0.3.tgz#d231362e53a07ff2b0e0ea7fed049161ffd16283" integrity sha512-Fd4gABb+ycGAmKou8eMftCupSir5lRxqf4aD/vd0cD2qc4HL07OjCeuHMr8Ro4CoMaeCKDB0/ECBOVWjTwUvPQ== @@ -5309,6 +6151,26 @@ is-regex@^1.0.4: call-bind "^1.0.2" has-symbols "^1.0.2" +is-regex@^1.1.4: + version "1.1.4" + resolved "https://registry.yarnpkg.com/is-regex/-/is-regex-1.1.4.tgz#eef5663cd59fa4c0ae339505323df6854bb15958" + integrity sha512-kvRdxDsxZjhzUX07ZnLydzS1TU/TJlTUHHY4YLL87e37oUA49DfkLqgy+VjFocowy29cKvcSiu+kIv728jTTVg== + dependencies: + call-bind "^1.0.2" + has-tostringtag "^1.0.0" + +is-set@^2.0.3: + version "2.0.3" + resolved "https://registry.yarnpkg.com/is-set/-/is-set-2.0.3.tgz#8ab209ea424608141372ded6e0cb200ef1d9d01d" + integrity sha512-iPAjerrse27/ygGLxw+EBR9agv9Y6uLeYVJMu+QNCoouJ1/1ri0mGrcWpfCqFZuzzx3WjtwxG098X+n4OuRkPg== + +is-shared-array-buffer@^1.0.2, is-shared-array-buffer@^1.0.3: + version "1.0.3" + resolved "https://registry.yarnpkg.com/is-shared-array-buffer/-/is-shared-array-buffer-1.0.3.tgz#1237f1cba059cdb62431d378dcc37d9680181688" + integrity sha512-nA2hv5XIhLR3uVzDDfCIknerhx8XUKnstuOERPNNIinXG7v9u+ohXF67vxm4TPTEPU6lm61ZkwP3c9PCB97rhg== + dependencies: + call-bind "^1.0.7" + is-ssh@^1.4.0: version "1.4.0" resolved "https://registry.yarnpkg.com/is-ssh/-/is-ssh-1.4.0.tgz#4f8220601d2839d8fa624b3106f8e8884f01b8b2" @@ -5326,11 +6188,52 @@ is-stream@^2.0.0: resolved "https://registry.yarnpkg.com/is-stream/-/is-stream-2.0.1.tgz#fac1e3d53b97ad5a9d0ae9cef2389f5810a5c077" integrity sha512-hFoiJiTl63nn+kstHGBtewWSKnQLpyb155KHheA1l39uvtO9nWIop1p3udqPcUd/xbF1VLMO4n7OI6p7RbngDg== +is-string@^1.0.5, is-string@^1.0.7: + version "1.0.7" + resolved "https://registry.yarnpkg.com/is-string/-/is-string-1.0.7.tgz#0dd12bf2006f255bb58f695110eff7491eebc0fd" + integrity sha512-tE2UXzivje6ofPW7l23cjDOMa09gb7xlAqG6jG5ej6uPV32TlWP3NKPigtaGeHNu9fohccRYvIiZMfOOnOYUtg== + dependencies: + has-tostringtag "^1.0.0" + +is-symbol@^1.0.2, is-symbol@^1.0.3: + version "1.0.4" + resolved "https://registry.yarnpkg.com/is-symbol/-/is-symbol-1.0.4.tgz#a6dac93b635b063ca6872236de88910a57af139c" + integrity sha512-C/CPBqKWnvdcxqIARxyOh4v1UUEOCHpgDa0WYgpKDFMszcrPcffg5uhwSgPCLD2WWxmq6isisz87tzT01tuGhg== + dependencies: + has-symbols "^1.0.2" + +is-typed-array@^1.1.13: + version "1.1.13" + resolved "https://registry.yarnpkg.com/is-typed-array/-/is-typed-array-1.1.13.tgz#d6c5ca56df62334959322d7d7dd1cca50debe229" + integrity sha512-uZ25/bUAlUY5fR4OKT4rZQEBrzQWYV9ZJYGGsUmEJ6thodVJ1HX64ePQ6Z0qPWP+m+Uq6e9UugrE38jeYsDSMw== + dependencies: + which-typed-array "^1.1.14" + is-typedarray@^1.0.0: version "1.0.0" resolved "https://registry.yarnpkg.com/is-typedarray/-/is-typedarray-1.0.0.tgz#e479c80858df0c1b11ddda6940f96011fcda4a9a" integrity sha1-5HnICFjfDBsR3dppQPlgEfzaSpo= +is-weakmap@^2.0.2: + version "2.0.2" + resolved "https://registry.yarnpkg.com/is-weakmap/-/is-weakmap-2.0.2.tgz#bf72615d649dfe5f699079c54b83e47d1ae19cfd" + integrity sha512-K5pXYOm9wqY1RgjpL3YTkF39tni1XajUIkawTLUo9EZEVUFga5gSQJF8nNS7ZwJQ02y+1YCNYcMh+HIf1ZqE+w== + +is-weakref@^1.0.2: + version "1.0.2" + resolved "https://registry.yarnpkg.com/is-weakref/-/is-weakref-1.0.2.tgz#9529f383a9338205e89765e0392efc2f100f06f2" + integrity sha512-qctsuLZmIQ0+vSSMfoVvyFe2+GSEvnmZ2ezTup1SBse9+twCCeial6EEi3Nc2KFcf6+qz2FBPnjXsk8xhKSaPQ== + dependencies: + call-bind "^1.0.2" + +is-weakset@^2.0.3: + version "2.0.3" + resolved "https://registry.yarnpkg.com/is-weakset/-/is-weakset-2.0.3.tgz#e801519df8c0c43e12ff2834eead84ec9e624007" + integrity sha512-LvIm3/KWzS9oRFHugab7d+M/GcBXuXX5xZkzPmN+NxihdQlZUQ4dWuSV1xR/sq6upL1TJEDrfBgRepHFdBtSNQ== + dependencies: + call-bind "^1.0.7" + get-intrinsic "^1.2.4" + is-windows@^1.0.2: version "1.0.2" resolved "https://registry.yarnpkg.com/is-windows/-/is-windows-1.0.2.tgz#d1850eb9791ecd18e6182ce12a30f396634bb19d" @@ -5353,6 +6256,11 @@ isarray@1.0.0, isarray@~1.0.0: resolved "https://registry.yarnpkg.com/isarray/-/isarray-1.0.0.tgz#bb935d48582cba168c06834957a54a3e07124f11" integrity sha1-u5NdSFgsuhaMBoNJV6VKPgcSTxE= +isarray@^2.0.5: + version "2.0.5" + resolved "https://registry.yarnpkg.com/isarray/-/isarray-2.0.5.tgz#8af1e4c1221244cc62459faf38940d4e644a5723" + integrity sha512-xHjhDr3cNBK0BzdUJSPXZntQUx/mwMS5Rw4A7lPJ90XGAO6ISP/ePDNuo0vhqOZU+UD5JoodwCAAoZQd3FeAKw== + isexe@^2.0.0: version "2.0.0" resolved "https://registry.yarnpkg.com/isexe/-/isexe-2.0.0.tgz#e8fbf374dc556ff8947a10dcb0572d633f2cfa10" @@ -5412,6 +6320,17 @@ istanbul-reports@^3.1.3: html-escaper "^2.0.0" istanbul-lib-report "^3.0.0" +iterator.prototype@^1.1.2: + version "1.1.2" + resolved "https://registry.yarnpkg.com/iterator.prototype/-/iterator.prototype-1.1.2.tgz#5e29c8924f01916cb9335f1ff80619dcff22b0c0" + integrity sha512-DR33HMMr8EzwuRL8Y9D3u2BMj8+RqSE850jfGu59kS7tbmPLzGkZmVSfyCFSDxuZiEY6Rzt3T2NA/qU+NwVj1w== + dependencies: + define-properties "^1.2.1" + get-intrinsic "^1.2.1" + has-symbols "^1.0.3" + reflect.getprototypeof "^1.0.4" + set-function-name "^2.0.1" + jest-changed-files@^27.5.1: version "27.5.1" resolved "https://registry.yarnpkg.com/jest-changed-files/-/jest-changed-files-27.5.1.tgz#a348aed00ec9bf671cc58a66fcbe7c3dfd6a68f5" @@ -5514,11 +6433,6 @@ jest-diff@^27.5.1: jest-get-type "^27.5.1" pretty-format "^27.5.1" -jest-docblock@^21.0.0: - version "21.2.0" - resolved "https://registry.yarnpkg.com/jest-docblock/-/jest-docblock-21.2.0.tgz#51529c3b30d5fd159da60c27ceedc195faf8d414" - integrity sha512-5IZ7sY9dBAYSV+YjQ0Ovb540Ku7AO9Z5o2Cg789xj167iQuZ2cG+z0f3Uct6WeYLbU6aQiM2pCs7sZ+4dotydw== - jest-docblock@^27.5.1: version "27.5.1" resolved "https://registry.yarnpkg.com/jest-docblock/-/jest-docblock-27.5.1.tgz#14092f364a42c6108d42c33c8cf30e058e25f6c0" @@ -6004,6 +6918,11 @@ jsesc@~0.5.0: resolved "https://registry.yarnpkg.com/jsesc/-/jsesc-0.5.0.tgz#e7dee66e35d6fc16f710fe91d5cf69f70f08911d" integrity sha1-597mbjXW/Bb3EP6R1c9p9w8IkR0= +json-buffer@3.0.1: + version "3.0.1" + resolved "https://registry.yarnpkg.com/json-buffer/-/json-buffer-3.0.1.tgz#9338802a30d3b6605fbe0613e094008ca8c05a13" + integrity sha512-4bV5BfR2mqfQTJm+V5tPPdf+ZpuhiIvTuAB5g8kcrXOZpTT/QwwVRWBywX1ozr6lEuPdbHxwaJlm9G6mI2sfSQ== + json-merge-patch@^0.2.3: version "0.2.3" resolved "https://registry.yarnpkg.com/json-merge-patch/-/json-merge-patch-0.2.3.tgz#fa2c6b5af87da77bae2966a589d52e23ed81fe40" @@ -6038,6 +6957,11 @@ json-schema-traverse@^1.0.0: resolved "https://registry.yarnpkg.com/json-schema-traverse/-/json-schema-traverse-1.0.0.tgz#ae7bcb3656ab77a73ba5c49bf654f38e6b6860e2" integrity sha512-NM8/P9n3XjXhIZn1lLhkFaACTOURQXjWhV4BA/RnOv8xvgqtqpAX9IO4mRQxSx1Rlo4tqzeqb0sOlruaOy3dug== +json-stable-stringify-without-jsonify@^1.0.1: + version "1.0.1" + resolved "https://registry.yarnpkg.com/json-stable-stringify-without-jsonify/-/json-stable-stringify-without-jsonify-1.0.1.tgz#9db7b59496ad3f3cfef30a75142d2d930ad72651" + integrity sha512-Bdboy+l7tA3OGW6FjyFHWkP5LuByj1Tk33Ljyq0axyzdk9//JSi2u3fP1QSmd1KNwq6VOKYGlAu87CisVir6Pw== + json2mq@^0.2.0: version "0.2.0" resolved "https://registry.yarnpkg.com/json2mq/-/json2mq-0.2.0.tgz#b637bd3ba9eabe122c83e9720483aeb10d2c904a" @@ -6062,6 +6986,23 @@ json5@^1.0.1: dependencies: minimist "^1.2.0" +"jsx-ast-utils@^2.4.1 || ^3.0.0": + version "3.3.5" + resolved "https://registry.yarnpkg.com/jsx-ast-utils/-/jsx-ast-utils-3.3.5.tgz#4766bd05a8e2a11af222becd19e15575e52a853a" + integrity sha512-ZZow9HBI5O6EPgSJLUb8n2NKgmVWTwCvHGwFuJlMjvLFqlGG6pjirPhtdsseaLZjSibD8eegzmYpUZwoIlj2cQ== + dependencies: + array-includes "^3.1.6" + array.prototype.flat "^1.3.1" + object.assign "^4.1.4" + object.values "^1.1.6" + +keyv@^4.5.4: + version "4.5.4" + resolved "https://registry.yarnpkg.com/keyv/-/keyv-4.5.4.tgz#a879a99e29452f942439f2a405e3af8b31d4de93" + integrity sha512-oxVHkHR/EJf2CNXnWxRLW6mg7JyCCUcG0DtEGmL2ctUo1PNTin1PUil+r/+4r5MpVgC/fn1kjsx7mjSujKqIpw== + dependencies: + json-buffer "3.0.1" + kind-of@^3.0.2, kind-of@^3.0.3, kind-of@^3.2.0: version "3.2.2" resolved "https://registry.yarnpkg.com/kind-of/-/kind-of-3.2.2.tgz#31ea21a734bab9bbb0f32466d893aea51e4a3c64" @@ -6101,6 +7042,14 @@ leven@^3.1.0: resolved "https://registry.yarnpkg.com/leven/-/leven-3.1.0.tgz#77891de834064cccba82ae7842bb6b14a13ed7f2" integrity sha512-qsda+H8jTaUaN/x5vzW2rzc+8Rw4TAQ/4KjB46IwK5VH+IlVeeeje/EoZRpiXvIqjFgK84QffqPztGI3VBLG1A== +levn@^0.4.1: + version "0.4.1" + resolved "https://registry.yarnpkg.com/levn/-/levn-0.4.1.tgz#ae4562c007473b932a6200d403268dd2fffc6ade" + integrity sha512-+bT2uH4E5LGE7h/n3evcS/sQlJXCpIp6ym8OWJ5eV6+67Dsql/LaaT7qJBAt2rzfoa/5QBGBhxDix1dMt2kQKQ== + dependencies: + prelude-ls "^1.2.1" + type-check "~0.4.0" + levn@~0.3.0: version "0.3.0" resolved "https://registry.yarnpkg.com/levn/-/levn-0.3.0.tgz#3b09924edf9f083c0490fdd4c0bc4421e04764ee" @@ -6162,6 +7111,13 @@ locate-path@^5.0.0: dependencies: p-locate "^4.1.0" +locate-path@^6.0.0: + version "6.0.0" + resolved "https://registry.yarnpkg.com/locate-path/-/locate-path-6.0.0.tgz#55321eb309febbc59c4801d931a72452a681d286" + integrity sha512-iPZK6eYjbxRu3uB4/WZ3EsEIMJFMqAoopl3R+zuq0UjcAm/MO6KCweDgPfP3elTztoKP3KtnVHxTn2NHBSDVUw== + dependencies: + p-locate "^5.0.0" + lodash-es@^4.17.21, lodash-es@^4.2.1: version "4.17.21" resolved "https://registry.yarnpkg.com/lodash-es/-/lodash-es-4.17.21.tgz#43e626c46e6591b7750beb2b50117390c609e3ee" @@ -6182,6 +7138,11 @@ lodash.memoize@4.x: resolved "https://registry.yarnpkg.com/lodash.memoize/-/lodash.memoize-4.1.2.tgz#bcc6c49a42a2840ed997f323eada5ecd182e0bfe" integrity sha1-vMbEmkKihA7Zl/Mj6tpezRguC/4= +lodash.merge@^4.6.2: + version "4.6.2" + resolved "https://registry.yarnpkg.com/lodash.merge/-/lodash.merge-4.6.2.tgz#558aa53b43b661e1925a0afdfa36a9a1085fe57a" + integrity sha512-0KpjqXRVvrYyCsX1swR/XTK0va6VQkQM6MNo7PqW77ByjAhoARA8EfrP1N4+KlKj8YS0ZUCtRT/YUuhyYDujIQ== + lodash@^4.17.13, lodash@^4.17.14, lodash@^4.17.15, lodash@^4.17.20, lodash@^4.17.21, lodash@^4.2.1, lodash@^4.6.1, lodash@^4.7.0: version "4.17.21" resolved "https://registry.yarnpkg.com/lodash/-/lodash-4.17.21.tgz#679591c564c3bffaae8454cf0b3df370c3d6911c" @@ -6284,7 +7245,7 @@ merge-stream@^2.0.0: resolved "https://registry.yarnpkg.com/merge-stream/-/merge-stream-2.0.0.tgz#52823629a14dd00c9770fb6ad47dc6310f2c1f60" integrity sha512-abv/qOcuPfk3URPfDzmZU1LKmuw8kT+0nIHvKrKgFrwifol/doWcdA4ZqsWQ8ENrFKkd67Mfpo/LovbIUsbt3w== -merge2@^1.3.0: +merge2@^1.3.0, merge2@^1.4.1: version "1.4.1" resolved "https://registry.yarnpkg.com/merge2/-/merge2-1.4.1.tgz#4368892f885e907455a6fd7dc55c0c9d404990ae" integrity sha512-8q7VEgMJW4J8tcfVPy8g09NcQwZdbwFEqhe/WZkoIzjn/3TGDwtOCYtXGxA3O8tPzpczCCDgv+P2P5y00ZJOOg== @@ -6373,13 +7334,20 @@ minimalistic-assert@^1.0.0: resolved "https://registry.yarnpkg.com/minimalistic-assert/-/minimalistic-assert-1.0.1.tgz#2e194de044626d4a10e7f7fbc00ce73e83e4d5c7" integrity sha512-UtJcAD4yEaGtjPezWuO9wC4nwUnVH/8/Im3yEHQP4b67cXlD/Qr9hdITCU1xDbSEXg2XKNaP8jsReV7vQd00/A== -minimatch@^3.0.4, minimatch@^3.1.2: +minimatch@^3.0.4, minimatch@^3.0.5, minimatch@^3.1.2: version "3.1.2" resolved "https://registry.yarnpkg.com/minimatch/-/minimatch-3.1.2.tgz#19cd194bfd3e428f049a70817c038d89ab4be35b" integrity sha512-J7p63hRiAjw1NDEww1W7i37+ByIrOWO5XQQAzZ3VOcL0PNybwpfmV/N05zFAzwQ9USyEcX6t3UO+K5aqBQOIHw== dependencies: brace-expansion "^1.1.7" +minimatch@^9.0.4: + version "9.0.4" + resolved "https://registry.yarnpkg.com/minimatch/-/minimatch-9.0.4.tgz#8e49c731d1749cbec05050ee5145147b32496a51" + integrity sha512-KqWh+VchfxcMNRAJjj2tnsSJdNbHsVgnkBhTNrW7AjVo6OvLtxw8zfT9oLw1JSohlFzJ8jCoTgaoXvJ+kHt6fw== + dependencies: + brace-expansion "^2.0.1" + minimist@^1.1.1, minimist@^1.2.0, minimist@^1.2.5: version "1.2.6" resolved "https://registry.yarnpkg.com/minimist/-/minimist-1.2.6.tgz#8637a5b759ea0d6e98702cfb3a9283323c93af44" @@ -6429,7 +7397,7 @@ mixin-deep@^1.2.0: for-in "^1.0.2" is-extendable "^1.0.1" -mkdirp@^0.5.1, mkdirp@^0.5.3, mkdirp@^0.5.5: +mkdirp@^0.5.1, mkdirp@^0.5.5: version "0.5.5" resolved "https://registry.yarnpkg.com/mkdirp/-/mkdirp-0.5.5.tgz#d91cefd62d1436ca0f41620e251288d420099def" integrity sha512-NKmAlESf6jMGym1++R0Ra7wvhV+wFW63FaSOFPwRahvea0gMUcGUhVeAg/0BC0wiv9ih5NYPB1Wn1UEI1/L+xQ== @@ -6704,6 +7672,11 @@ object-copy@^0.1.0: define-property "^0.2.5" kind-of "^3.0.3" +object-inspect@^1.13.1: + version "1.13.1" + resolved "https://registry.yarnpkg.com/object-inspect/-/object-inspect-1.13.1.tgz#b96c6109324ccfef6b12216a956ca4dc2ff94bc2" + integrity sha512-5qoj1RUiKOMsCCNLV1CBiPYE10sziTsnmNxkAI/rZhiD63CF7IqdFGC/XzjWjpSgLf0LxXX3bDFIh0E18f6UhQ== + object-inspect@^1.9.0: version "1.12.2" resolved "https://registry.yarnpkg.com/object-inspect/-/object-inspect-1.12.2.tgz#c0641f26394532f28ab8d796ab954e43c009a8ea" @@ -6739,6 +7712,44 @@ object.assign@^4.1.0: has-symbols "^1.0.1" object-keys "^1.1.1" +object.assign@^4.1.4, object.assign@^4.1.5: + version "4.1.5" + resolved "https://registry.yarnpkg.com/object.assign/-/object.assign-4.1.5.tgz#3a833f9ab7fdb80fc9e8d2300c803d216d8fdbb0" + integrity sha512-byy+U7gp+FVwmyzKPYhW2h5l3crpmGsxl7X2s8y43IgxvG4g3QZ6CffDtsNQy1WsmZpQbO+ybo0AlW7TY6DcBQ== + dependencies: + call-bind "^1.0.5" + define-properties "^1.2.1" + has-symbols "^1.0.3" + object-keys "^1.1.1" + +object.entries@^1.1.7: + version "1.1.8" + resolved "https://registry.yarnpkg.com/object.entries/-/object.entries-1.1.8.tgz#bffe6f282e01f4d17807204a24f8edd823599c41" + integrity sha512-cmopxi8VwRIAw/fkijJohSfpef5PdN0pMQJN6VC/ZKvn0LIknWD8KtgY6KlQdEc4tIjcQ3HxSMmnvtzIscdaYQ== + dependencies: + call-bind "^1.0.7" + define-properties "^1.2.1" + es-object-atoms "^1.0.0" + +object.fromentries@^2.0.7: + version "2.0.8" + resolved "https://registry.yarnpkg.com/object.fromentries/-/object.fromentries-2.0.8.tgz#f7195d8a9b97bd95cbc1999ea939ecd1a2b00c65" + integrity sha512-k6E21FzySsSK5a21KRADBd/NGneRegFO5pLHfdQLpRDETUNJueLXs3WCzyQ3tFRDYgbq3KHGXfTbi2bs8WQ6rQ== + dependencies: + call-bind "^1.0.7" + define-properties "^1.2.1" + es-abstract "^1.23.2" + es-object-atoms "^1.0.0" + +object.hasown@^1.1.3: + version "1.1.4" + resolved "https://registry.yarnpkg.com/object.hasown/-/object.hasown-1.1.4.tgz#e270ae377e4c120cdcb7656ce66884a6218283dc" + integrity sha512-FZ9LZt9/RHzGySlBARE3VF+gE26TxR38SdmqOqliuTnl9wrKulaQs+4dee1V+Io8VfxqzAfHu6YuRgUy8OHoTg== + dependencies: + define-properties "^1.2.1" + es-abstract "^1.23.2" + es-object-atoms "^1.0.0" + object.pick@^1.3.0: version "1.3.0" resolved "https://registry.yarnpkg.com/object.pick/-/object.pick-1.3.0.tgz#87a10ac4c1694bd2e1cbf53591a66141fb5dd747" @@ -6746,6 +7757,15 @@ object.pick@^1.3.0: dependencies: isobject "^3.0.1" +object.values@^1.1.6, object.values@^1.1.7: + version "1.2.0" + resolved "https://registry.yarnpkg.com/object.values/-/object.values-1.2.0.tgz#65405a9d92cee68ac2d303002e0b8470a4d9ab1b" + integrity sha512-yBYjY9QX2hnRmZHAjG/f13MzmBzxzYgQhFrke06TTyKY5zSTEqkOeukBzIdVA3j3ulu8Qa3MbVFShV7T2RmGtQ== + dependencies: + call-bind "^1.0.7" + define-properties "^1.2.1" + es-object-atoms "^1.0.0" + obuf@^1.0.0, obuf@^1.1.2: version "1.1.2" resolved "https://registry.yarnpkg.com/obuf/-/obuf-1.1.2.tgz#09bea3343d41859ebd446292d11c9d4db619084e" @@ -6806,6 +7826,18 @@ optionator@^0.8.1: type-check "~0.3.2" word-wrap "~1.2.3" +optionator@^0.9.3: + version "0.9.4" + resolved "https://registry.yarnpkg.com/optionator/-/optionator-0.9.4.tgz#7ea1c1a5d91d764fb282139c88fe11e182a3a734" + integrity sha512-6IpQ7mKUxRcZNLIObR0hz7lxsapSSIYNZJwXPGeF0mTVqGKFIXj1DQcMoT22S3ROcLyY/rz0PWaWZ9ayWmad9g== + dependencies: + deep-is "^0.1.3" + fast-levenshtein "^2.0.6" + levn "^0.4.1" + prelude-ls "^1.2.1" + type-check "^0.4.0" + word-wrap "^1.2.5" + p-finally@^1.0.0: version "1.0.0" resolved "https://registry.yarnpkg.com/p-finally/-/p-finally-1.0.0.tgz#3fbcfb15b899a44123b34b6dcc18b724336a2cae" @@ -6839,6 +7871,13 @@ p-locate@^4.1.0: dependencies: p-limit "^2.2.0" +p-locate@^5.0.0: + version "5.0.0" + resolved "https://registry.yarnpkg.com/p-locate/-/p-locate-5.0.0.tgz#83c8315c6785005e3bd021839411c9e110e6d834" + integrity sha512-LaNjtRWUBY++zB5nE/NwcaoMylSPk+S+ZHNB1TzdbMJMny6dynpAGt7X/tl/QYq3TIeE6nxHppbo2LGymrG5Pw== + dependencies: + p-limit "^3.0.2" + p-map@^4.0.0: version "4.0.0" resolved "https://registry.yarnpkg.com/p-map/-/p-map-4.0.0.tgz#bb2f95a5eda2ec168ec9274e06a747c3e2904d2b" @@ -6867,6 +7906,13 @@ param-case@^3.0.4: dot-case "^3.0.4" tslib "^2.0.3" +parent-module@^1.0.0: + version "1.0.1" + resolved "https://registry.yarnpkg.com/parent-module/-/parent-module-1.0.1.tgz#691d2709e78c79fae3a156622452d00762caaaa2" + integrity sha512-GQ2EWRpQV8/o+Aw8YqtfZZPfNRWZYkbidE9k5rpl/hC3vtHHBfGm2Ifi6qWV+coDGkrUKZAxE3Lot5kcsRlh+g== + dependencies: + callsites "^3.0.0" + parse-json@^4.0.0: version "4.0.0" resolved "https://registry.yarnpkg.com/parse-json/-/parse-json-4.0.0.tgz#be35f5425be1f7f6c747184f98a788cb99477ee0" @@ -7064,6 +8110,11 @@ posix-character-classes@^0.1.0: resolved "https://registry.yarnpkg.com/posix-character-classes/-/posix-character-classes-0.1.1.tgz#01eac0fe3b5af71a2a6c02feabb8c1fef7e00eab" integrity sha1-AerA/jta9xoqbAL+q7jB/vfgDqs= +possible-typed-array-names@^1.0.0: + version "1.0.0" + resolved "https://registry.yarnpkg.com/possible-typed-array-names/-/possible-typed-array-names-1.0.0.tgz#89bb63c6fada2c3e90adc4a647beeeb39cc7bf8f" + integrity sha512-d7Uw+eZoloe0EHDIYoe+bQ5WXnGMOpmiZFTuMWCwpjzzkL2nTjcKiAk4hh8TjnGye2TwWOk3UXucZ+3rbmBa8Q== + postcss-load-config@2.0.0: version "2.0.0" resolved "https://registry.yarnpkg.com/postcss-load-config/-/postcss-load-config-2.0.0.tgz#f1312ddbf5912cd747177083c5ef7a19d62ee484" @@ -7150,15 +8201,27 @@ postcss@^8.4.38: picocolors "^1.0.0" source-map-js "^1.2.0" +prelude-ls@^1.2.1: + version "1.2.1" + resolved "https://registry.yarnpkg.com/prelude-ls/-/prelude-ls-1.2.1.tgz#debc6489d7a6e6b0e7611888cec880337d316396" + integrity sha512-vkcDPrRZo1QZLbn5RLGPpg/WmIQ65qoWWhcGKf/b5eplkkarX0m9z8ppCat4mlOqUsWpyNuYgO3VRyrYHSzX5g== + prelude-ls@~1.1.2: version "1.1.2" resolved "https://registry.yarnpkg.com/prelude-ls/-/prelude-ls-1.1.2.tgz#21932a549f5e52ffd9a827f570e04be62a97da54" integrity sha1-IZMqVJ9eUv/ZqCf1cOBL5iqX2lQ= -prettier@1.19: - version "1.19.1" - resolved "https://registry.yarnpkg.com/prettier/-/prettier-1.19.1.tgz#f7d7f5ff8a9cd872a7be4ca142095956a60797cb" - integrity sha512-s7PoyDv/II1ObgQunCbB9PdLmUcBZcnWOcxDh7O0N/UwDEsHyqkW+Qh28jW+mVuCdx7gLB0BotYI1Y6uI9iyew== +prettier-linter-helpers@^1.0.0: + version "1.0.0" + resolved "https://registry.yarnpkg.com/prettier-linter-helpers/-/prettier-linter-helpers-1.0.0.tgz#d23d41fe1375646de2d0104d3454a3008802cf7b" + integrity sha512-GbK2cP9nraSSUF9N2XwUwqfzlAFlMNYYl+ShE/V+H8a9uNl/oUqB1w2EL54Jh0OlyRSd8RfWYJ3coVS4TROP2w== + dependencies: + fast-diff "^1.1.2" + +prettier@^3.2.5: + version "3.2.5" + resolved "https://registry.yarnpkg.com/prettier/-/prettier-3.2.5.tgz#e52bc3090586e824964a8813b09aba6233b28368" + integrity sha512-3/GWa9aOC0YeD7LUfvOG2NiDyhOWRvt1k+rcKhOuYnMY24iiCphgneUfJDyFXd6rZCAnuLBv6UeAULtrhT/F4A== pretty-error@^4.0.0: version "4.0.0" @@ -8071,6 +9134,19 @@ redux@^3.7.2: loose-envify "^1.1.0" symbol-observable "^1.0.3" +reflect.getprototypeof@^1.0.4: + version "1.0.6" + resolved "https://registry.yarnpkg.com/reflect.getprototypeof/-/reflect.getprototypeof-1.0.6.tgz#3ab04c32a8390b770712b7a8633972702d278859" + integrity sha512-fmfw4XgoDke3kdI6h4xcUz1dG8uaiv5q9gcEwLS4Pnth2kxT+GZ7YehS1JTMGBQmtV7Y4GFGbs2re2NqhdozUg== + dependencies: + call-bind "^1.0.7" + define-properties "^1.2.1" + es-abstract "^1.23.1" + es-errors "^1.3.0" + get-intrinsic "^1.2.4" + globalthis "^1.0.3" + which-builtin-type "^1.1.3" + reftools@^1.1.9: version "1.1.9" resolved "https://registry.yarnpkg.com/reftools/-/reftools-1.1.9.tgz#e16e19f662ccd4648605312c06d34e5da3a2b77e" @@ -8126,6 +9202,16 @@ regexp.prototype.flags@^1.2.0: call-bind "^1.0.2" define-properties "^1.1.3" +regexp.prototype.flags@^1.5.2: + version "1.5.2" + resolved "https://registry.yarnpkg.com/regexp.prototype.flags/-/regexp.prototype.flags-1.5.2.tgz#138f644a3350f981a858c44f6bb1a61ff59be334" + integrity sha512-NcDiDkTLuPR+++OCKB0nWafEmhg/Da8aUPLPMQbK+bxKKCm1/S5he+AqYa4PlMCVBalb4/yxIRub6qkEx5yJbw== + dependencies: + call-bind "^1.0.6" + define-properties "^1.2.1" + es-errors "^1.3.0" + set-function-name "^2.0.1" + regexpu-core@^4.7.1: version "4.7.1" resolved "https://registry.yarnpkg.com/regexpu-core/-/regexpu-core-4.7.1.tgz#2dea5a9a07233298fbf0db91fa9abc4c6e0f8ad6" @@ -8213,6 +9299,11 @@ resolve-from@^3.0.0: resolved "https://registry.yarnpkg.com/resolve-from/-/resolve-from-3.0.0.tgz#b22c7af7d9d6881bc8b6e653335eebcb0a188748" integrity sha1-six699nWiBvItuZTM17rywoYh0g= +resolve-from@^4.0.0: + version "4.0.0" + resolved "https://registry.yarnpkg.com/resolve-from/-/resolve-from-4.0.0.tgz#4abcd852ad32dd7baabfe9b40e00a36db5f392e6" + integrity sha512-pb/MYmXstAkysRFx8piNI1tGFNQIFA3vkE3Gq4EuA1dF6gHp/+vgZqsCGJapvy8N3Q+4o7FwvquPJcnZ7RYy4g== + resolve-from@^5.0.0: version "5.0.0" resolved "https://registry.yarnpkg.com/resolve-from/-/resolve-from-5.0.0.tgz#c35225843df8f776df21c57557bc087e9dfdfc69" @@ -8249,6 +9340,15 @@ resolve@^1.3.2: dependencies: path-parse "^1.0.6" +resolve@^2.0.0-next.5: + version "2.0.0-next.5" + resolved "https://registry.yarnpkg.com/resolve/-/resolve-2.0.0-next.5.tgz#6b0ec3107e671e52b68cd068ef327173b90dc03c" + integrity sha512-U7WjGVG9sH8tvjW5SmGbQuui75FiyjAX72HX15DwBBwF9dNiQZRQAg9nnPhYy+TUnE0+VcrttuvNI8oSxZcocA== + dependencies: + is-core-module "^2.13.0" + path-parse "^1.0.7" + supports-preserve-symlinks-flag "^1.0.0" + ret@~0.1.10: version "0.1.15" resolved "https://registry.yarnpkg.com/ret/-/ret-0.1.15.tgz#b8a4825d5bdb1fc3f6f53c2bc33f81388681c7bc" @@ -8290,6 +9390,16 @@ rxjs@6.6.7, rxjs@^6.6.6, rxjs@^7.8.1: dependencies: tslib "^1.9.0" +safe-array-concat@^1.1.2: + version "1.1.2" + resolved "https://registry.yarnpkg.com/safe-array-concat/-/safe-array-concat-1.1.2.tgz#81d77ee0c4e8b863635227c721278dd524c20edb" + integrity sha512-vj6RsCsWBCf19jIeHEfkRMw8DPiBb+DMXklQ/1SGDHOMlHdPUkZXFQ2YdplS23zESTijAcurb1aSgJA3AgMu1Q== + dependencies: + call-bind "^1.0.7" + get-intrinsic "^1.2.4" + has-symbols "^1.0.3" + isarray "^2.0.5" + safe-buffer@5.1.2, safe-buffer@~5.1.0, safe-buffer@~5.1.1: version "5.1.2" resolved "https://registry.yarnpkg.com/safe-buffer/-/safe-buffer-5.1.2.tgz#991ec69d296e0313747d59bdfd2b745c35f8828d" @@ -8300,6 +9410,15 @@ safe-buffer@5.2.1, safe-buffer@>=5.1.0, safe-buffer@^5.0.1, safe-buffer@^5.1.0: resolved "https://registry.yarnpkg.com/safe-buffer/-/safe-buffer-5.2.1.tgz#1eaf9fa9bdb1fdd4ec75f58f9cdb4e6b7827eec6" integrity sha512-rp3So07KcdmmKbGvgaNxQSJr7bGVSVk5S9Eq1F+ppbRo70+YeaDxkw5Dd8NPN+GD6bjnYm2VuPuCXmpuYvmCXQ== +safe-regex-test@^1.0.3: + version "1.0.3" + resolved "https://registry.yarnpkg.com/safe-regex-test/-/safe-regex-test-1.0.3.tgz#a5b4c0f06e0ab50ea2c395c14d8371232924c377" + integrity sha512-CdASjNJPvRa7roO6Ra/gLYBTzYzzPyyBXxIMdGW3USQLyjWEls2RgW5UBTXaQVp+OrpeCK3bLem8smtmheoRuw== + dependencies: + call-bind "^1.0.6" + es-errors "^1.3.0" + is-regex "^1.1.4" + safe-regex@^1.1.0: version "1.1.0" resolved "https://registry.yarnpkg.com/safe-regex/-/safe-regex-1.1.0.tgz#40a3669f3b077d1e943d44629e157dd48023bf2e" @@ -8434,16 +9553,23 @@ semver@7.x, semver@^7.3.2, semver@^7.3.8: dependencies: lru-cache "^6.0.0" -semver@^5.3.0, semver@^5.4.1, semver@^5.5.0, semver@^5.6.0: +semver@^5.4.1, semver@^5.5.0, semver@^5.6.0: version "5.7.2" resolved "https://registry.yarnpkg.com/semver/-/semver-5.7.2.tgz#48d55db737c3287cd4835e17fa13feace1c41ef8" integrity sha512-cBznnQ9KjJqU67B52RMC65CMarK2600WFnbkcaiwWq3xy/5haFJlshgnpjovMVJ+Hff49d8GEn0b87C5pDQ10g== -semver@^6.0.0, semver@^6.3.0: +semver@^6.0.0, semver@^6.3.0, semver@^6.3.1: version "6.3.1" resolved "https://registry.yarnpkg.com/semver/-/semver-6.3.1.tgz#556d2ef8689146e46dcea4bfdd095f3434dffcb4" integrity sha512-BR7VvDCVHO+q2xBEWskxS6DJE1qRnb7DxzUrogb71CWoSficBxYsiAGd+Kl0mmq/MprG9yArRkyrQxTO6XjMzA== +semver@^7.6.0: + version "7.6.0" + resolved "https://registry.yarnpkg.com/semver/-/semver-7.6.0.tgz#1a46a4db4bffcccd97b743b5005c8325f23d4e2d" + integrity sha512-EnwXhrlwXMk9gKu5/flx5sv/an57AkRplG3hTK68W7FRDN+k+OWBj65M7719OkA82XLBxrcX0KSHj+X5COhOVg== + dependencies: + lru-cache "^6.0.0" + send@0.18.0: version "0.18.0" resolved "https://registry.yarnpkg.com/send/-/send-0.18.0.tgz#670167cc654b05f5aa4a767f9113bb371bc706be" @@ -8500,6 +9626,28 @@ serve-static@1.15.0: parseurl "~1.3.3" send "0.18.0" +set-function-length@^1.2.1: + version "1.2.2" + resolved "https://registry.yarnpkg.com/set-function-length/-/set-function-length-1.2.2.tgz#aac72314198eaed975cf77b2c3b6b880695e5449" + integrity sha512-pgRc4hJ4/sNjWCSS9AmnS40x3bNMDTknHgL5UaMBTMyJnU90EgWh1Rz+MC9eFu4BuN/UwZjKQuY/1v3rM7HMfg== + dependencies: + define-data-property "^1.1.4" + es-errors "^1.3.0" + function-bind "^1.1.2" + get-intrinsic "^1.2.4" + gopd "^1.0.1" + has-property-descriptors "^1.0.2" + +set-function-name@^2.0.1, set-function-name@^2.0.2: + version "2.0.2" + resolved "https://registry.yarnpkg.com/set-function-name/-/set-function-name-2.0.2.tgz#16a705c5a0dc2f5e638ca96d8a8cd4e1c2b90985" + integrity sha512-7PGFlmtwsEADb0WYyvCMa1t+yke6daIG4Wirafur5kcf+MhUnPms1UeR0CKQdTZD81yESwMHbtn+TR+dMviakQ== + dependencies: + define-data-property "^1.1.4" + es-errors "^1.3.0" + functions-have-names "^1.2.3" + has-property-descriptors "^1.0.2" + set-value@^2.0.0, set-value@^2.0.1: version "2.0.1" resolved "https://registry.yarnpkg.com/set-value/-/set-value-2.0.1.tgz#a18d40530e6f07de4228c7defe4227af8cad005b" @@ -8614,6 +9762,16 @@ side-channel@^1.0.4: get-intrinsic "^1.0.2" object-inspect "^1.9.0" +side-channel@^1.0.6: + version "1.0.6" + resolved "https://registry.yarnpkg.com/side-channel/-/side-channel-1.0.6.tgz#abd25fb7cd24baf45466406b1096b7831c9215f2" + integrity sha512-fDW/EZ6Q9RiO8eFG8Hj+7u/oW+XrPTIChwCOM2+th2A6OblDtYYIpve9m+KvI9Z4C9qSEXlaGR6bTEYHReuglA== + dependencies: + call-bind "^1.0.7" + es-errors "^1.3.0" + get-intrinsic "^1.2.4" + object-inspect "^1.13.1" + signal-exit@^3.0.0, signal-exit@^3.0.2: version "3.0.2" resolved "https://registry.yarnpkg.com/signal-exit/-/signal-exit-3.0.2.tgz#b5fdc08f1287ea1178628e415e25132b73646c6d" @@ -8865,6 +10023,52 @@ string-width@^4.1.0, string-width@^4.2.0: is-fullwidth-code-point "^3.0.0" strip-ansi "^6.0.0" +string.prototype.matchall@^4.0.10: + version "4.0.11" + resolved "https://registry.yarnpkg.com/string.prototype.matchall/-/string.prototype.matchall-4.0.11.tgz#1092a72c59268d2abaad76582dccc687c0297e0a" + integrity sha512-NUdh0aDavY2og7IbBPenWqR9exH+E26Sv8e0/eTe1tltDGZL+GtBkDAnnyBtmekfK6/Dq3MkcGtzXFEd1LQrtg== + dependencies: + call-bind "^1.0.7" + define-properties "^1.2.1" + es-abstract "^1.23.2" + es-errors "^1.3.0" + es-object-atoms "^1.0.0" + get-intrinsic "^1.2.4" + gopd "^1.0.1" + has-symbols "^1.0.3" + internal-slot "^1.0.7" + regexp.prototype.flags "^1.5.2" + set-function-name "^2.0.2" + side-channel "^1.0.6" + +string.prototype.trim@^1.2.9: + version "1.2.9" + resolved "https://registry.yarnpkg.com/string.prototype.trim/-/string.prototype.trim-1.2.9.tgz#b6fa326d72d2c78b6df02f7759c73f8f6274faa4" + integrity sha512-klHuCNxiMZ8MlsOihJhJEBJAiMVqU3Z2nEXWfWnIqjN0gEFS9J9+IxKozWWtQGcgoa1WUZzLjKPTr4ZHNFTFxw== + dependencies: + call-bind "^1.0.7" + define-properties "^1.2.1" + es-abstract "^1.23.0" + es-object-atoms "^1.0.0" + +string.prototype.trimend@^1.0.8: + version "1.0.8" + resolved "https://registry.yarnpkg.com/string.prototype.trimend/-/string.prototype.trimend-1.0.8.tgz#3651b8513719e8a9f48de7f2f77640b26652b229" + integrity sha512-p73uL5VCHCO2BZZ6krwwQE3kCzM7NKmis8S//xEC6fQonchbum4eP6kR4DLEjQFO3Wnj3Fuo8NM0kOSjVdHjZQ== + dependencies: + call-bind "^1.0.7" + define-properties "^1.2.1" + es-object-atoms "^1.0.0" + +string.prototype.trimstart@^1.0.8: + version "1.0.8" + resolved "https://registry.yarnpkg.com/string.prototype.trimstart/-/string.prototype.trimstart-1.0.8.tgz#7ee834dda8c7c17eff3118472bb35bfedaa34dde" + integrity sha512-UXSH262CSZY1tfu3G3Secr6uGLCFVPMhIqHjlgCUtCCcgihYc/xKs9djMTMUOb2j1mVSeU8EU6NWc/iQKU6Gfg== + dependencies: + call-bind "^1.0.7" + define-properties "^1.2.1" + es-object-atoms "^1.0.0" + string_decoder@^1.1.1, string_decoder@~1.1.1: version "1.1.1" resolved "https://registry.yarnpkg.com/string_decoder/-/string_decoder-1.1.1.tgz#9cf1611ba62685d7030ae9e4ba34149c3af03fc8" @@ -9051,6 +10255,14 @@ symbol-tree@^3.2.4: resolved "https://registry.yarnpkg.com/symbol-tree/-/symbol-tree-3.2.4.tgz#430637d248ba77e078883951fb9aa0eed7c63fa2" integrity sha512-9QNk5KwDF+Bvz+PyObkmSYjI5ksVUYtjW7AU22r2NKcfLJcXp96hkDWU3+XndOsUb+AQ9QhfzfCT2O+CNWT5Tw== +synckit@^0.8.6: + version "0.8.8" + resolved "https://registry.yarnpkg.com/synckit/-/synckit-0.8.8.tgz#fe7fe446518e3d3d49f5e429f443cf08b6edfcd7" + integrity sha512-HwOKAP7Wc5aRGYdKH+dw0PRRpbO841v2DENBtjnR5HFWoiNByAl7vrx3p0G/rCyYXQsrxqtX48TImFtPcIHSpQ== + dependencies: + "@pkgr/core" "^0.1.0" + tslib "^2.6.2" + tapable@^2.0.0, tapable@^2.1.1, tapable@^2.2.0: version "2.2.1" resolved "https://registry.yarnpkg.com/tapable/-/tapable-2.2.1.tgz#1967a73ef4060a82f12ab96af86d52fdb76eeca0" @@ -9127,6 +10339,11 @@ test-exclude@^6.0.0: glob "^7.1.4" minimatch "^3.0.4" +text-table@^0.2.0: + version "0.2.0" + resolved "https://registry.yarnpkg.com/text-table/-/text-table-0.2.0.tgz#7f5ee823ae805207c00af2df4a84ec3fcfa570b4" + integrity sha512-N+8UisAXDGk8PFXP4HAzVR9nbfmVJ3zYLAWiTIoqC5v5isinhr+r5uaO8+7r3BMfuNIufIsA7RdpVgacC2cSpw== + throat@^6.0.1: version "6.0.1" resolved "https://registry.yarnpkg.com/throat/-/throat-6.0.1.tgz#d514fedad95740c12c2d7fc70ea863eb51ade375" @@ -9238,6 +10455,11 @@ tr46@~0.0.3: resolved "https://registry.yarnpkg.com/tr46/-/tr46-0.0.3.tgz#8184fd347dac9cdc185992f3a6622e14b9d9ab6a" integrity sha1-gYT9NH2snNwYWZLzpmIuFLnZq2o= +ts-api-utils@^1.3.0: + version "1.3.0" + resolved "https://registry.yarnpkg.com/ts-api-utils/-/ts-api-utils-1.3.0.tgz#4b490e27129f1e8e686b45cc4ab63714dc60eea1" + integrity sha512-UQMIo7pb8WRomKR1/+MFVLTroIvDVtMX3K6OUir8ynLyzB8Jeriont2bTAtmNPa1ekAgN7YPDyf6V+ygrdU+eQ== + ts-jest@^27.1.3: version "27.1.3" resolved "https://registry.yarnpkg.com/ts-jest/-/ts-jest-27.1.3.tgz#1f723e7e74027c4da92c0ffbd73287e8af2b2957" @@ -9271,12 +10493,7 @@ ts-node@10.9.1: v8-compile-cache-lib "^3.0.1" yn "3.1.1" -tslib@^1.13.0: - version "1.14.1" - resolved "https://registry.yarnpkg.com/tslib/-/tslib-1.14.1.tgz#cf2d38bdc34a134bcaf1091c41f6619e2f672d00" - integrity sha512-Xni35NKzjgMrwevysHTCArtLDpPvye8zV/0E4EyYn43P7/7qvQwPh9BGkHewbMulVntbigmcT7rdX3BNo9wRJg== - -tslib@^1.7.1, tslib@^1.8.1, tslib@^1.9.0: +tslib@^1.9.0: version "1.10.0" resolved "https://registry.yarnpkg.com/tslib/-/tslib-1.10.0.tgz#c3c19f95973fb0a62973fb09d90d961ee43e5c8a" integrity sha512-qOebF53frne81cf0S9B41ByenJ3/IuH8yJKngAX35CmiZySA0khhkovshKK+jGCaMnVomla7gVlIcc3EvKPbTQ== @@ -9286,59 +10503,10 @@ tslib@^2.0.3: resolved "https://registry.yarnpkg.com/tslib/-/tslib-2.3.1.tgz#e8a335add5ceae51aa261d32a490158ef042ef01" integrity sha512-77EbyPPpMz+FRFRuAFlWMtmgUWGe9UOG2Z25NqCwiIjRhOf5iKGuzSe5P2w1laq+FkRy4p+PCuVkJSGkzTEKVw== -tslint-config-prettier@^1.18.0: - version "1.18.0" - resolved "https://registry.yarnpkg.com/tslint-config-prettier/-/tslint-config-prettier-1.18.0.tgz#75f140bde947d35d8f0d238e0ebf809d64592c37" - integrity sha512-xPw9PgNPLG3iKRxmK7DWr+Ea/SzrvfHtjFt5LBl61gk2UBG/DB9kCXRjv+xyIU1rUtnayLeMUVJBcMX8Z17nDg== - -tslint-plugin-prettier@^2.0.1: - version "2.0.1" - resolved "https://registry.yarnpkg.com/tslint-plugin-prettier/-/tslint-plugin-prettier-2.0.1.tgz#95b6a3b766622ffc44375825d7760225c50c3680" - integrity sha512-4FX9JIx/1rKHIPJNfMb+ooX1gPk5Vg3vNi7+dyFYpLO+O57F4g+b/fo1+W/G0SUOkBLHB/YKScxjX/P+7ZT/Tw== - dependencies: - eslint-plugin-prettier "^2.2.0" - lines-and-columns "^1.1.6" - tslib "^1.7.1" - -tslint-react@^5.0.0: - version "5.0.0" - resolved "https://registry.yarnpkg.com/tslint-react/-/tslint-react-5.0.0.tgz#d0ae644e8163bdd3e134012e9353094904e8dd44" - integrity sha512-/IbcSmoBPlFic8kQaRfQ4knTY4mivwo5LVzvozvX6Dyu2ynEnrh1dIcR2ujjyp/IodXqY/H5GbxFxSMo/Kf2Hg== - dependencies: - tsutils "^3.17.1" - -tslint@^6.1.3: - version "6.1.3" - resolved "https://registry.yarnpkg.com/tslint/-/tslint-6.1.3.tgz#5c23b2eccc32487d5523bd3a470e9aa31789d904" - integrity sha512-IbR4nkT96EQOvKE2PW/djGz8iGNeJ4rF2mBfiYaR/nvUWYKJhLwimoJKgjIFEIDibBtOevj7BqCRL4oHeWWUCg== - dependencies: - "@babel/code-frame" "^7.0.0" - builtin-modules "^1.1.1" - chalk "^2.3.0" - commander "^2.12.1" - diff "^4.0.1" - glob "^7.1.1" - js-yaml "^3.13.1" - minimatch "^3.0.4" - mkdirp "^0.5.3" - resolve "^1.3.2" - semver "^5.3.0" - tslib "^1.13.0" - tsutils "^2.29.0" - -tsutils@^2.29.0: - version "2.29.0" - resolved "https://registry.yarnpkg.com/tsutils/-/tsutils-2.29.0.tgz#32b488501467acbedd4b85498673a0812aca0b99" - integrity sha512-g5JVHCIJwzfISaXpXE1qvNalca5Jwob6FjI4AoPlqMusJ6ftFE7IkkFoMhVLRgK+4Kx3gkzb8UZK5t5yTTvEmA== - dependencies: - tslib "^1.8.1" - -tsutils@^3.17.1: - version "3.21.0" - resolved "https://registry.yarnpkg.com/tsutils/-/tsutils-3.21.0.tgz#b48717d394cea6c1e096983eed58e9d61715b623" - integrity sha512-mHKK3iUXL+3UF6xL5k0PEhKRUBKPBCv/+RkEOpjRWxxx27KKRBmmA60A9pgOUvMi8GKhRMPEmjBRPzs2W7O1OA== - dependencies: - tslib "^1.8.1" +tslib@^2.6.2: + version "2.6.2" + resolved "https://registry.yarnpkg.com/tslib/-/tslib-2.6.2.tgz#703ac29425e7b37cd6fd456e92404d46d1f3e4ae" + integrity sha512-AEYxH93jGFPn/a2iVAwW87VuUIkR1FVUKB77NwMF7nBTDkDrrT/Hpt/IrCJ0QXhW27jTBDcf5ZY7w6RiqTMw2Q== tsx@^3.4.0: version "3.4.0" @@ -9351,6 +10519,13 @@ tsx@^3.4.0: optionalDependencies: fsevents "~2.3.2" +type-check@^0.4.0, type-check@~0.4.0: + version "0.4.0" + resolved "https://registry.yarnpkg.com/type-check/-/type-check-0.4.0.tgz#07b8203bfa7056c0657050e3ccd2c37730bab8f1" + integrity sha512-XleUoc9uwGXqjWwXaUTZAmzMcFZ5858QA2vvx1Ur5xIcixXIP+8LnFDgRplU30us6teqdlskFfu+ae4K79Ooew== + dependencies: + prelude-ls "^1.2.1" + type-check@~0.3.2: version "0.3.2" resolved "https://registry.yarnpkg.com/type-check/-/type-check-0.3.2.tgz#5884cab512cf1d355e3fb784f30804b2b520db72" @@ -9376,6 +10551,50 @@ type-is@~1.6.18: media-typer "0.3.0" mime-types "~2.1.24" +typed-array-buffer@^1.0.2: + version "1.0.2" + resolved "https://registry.yarnpkg.com/typed-array-buffer/-/typed-array-buffer-1.0.2.tgz#1867c5d83b20fcb5ccf32649e5e2fc7424474ff3" + integrity sha512-gEymJYKZtKXzzBzM4jqa9w6Q1Jjm7x2d+sh19AdsD4wqnMPDYyvwpsIc2Q/835kHuo3BEQ7CjelGhfTsoBb2MQ== + dependencies: + call-bind "^1.0.7" + es-errors "^1.3.0" + is-typed-array "^1.1.13" + +typed-array-byte-length@^1.0.1: + version "1.0.1" + resolved "https://registry.yarnpkg.com/typed-array-byte-length/-/typed-array-byte-length-1.0.1.tgz#d92972d3cff99a3fa2e765a28fcdc0f1d89dec67" + integrity sha512-3iMJ9q0ao7WE9tWcaYKIptkNBuOIcZCCT0d4MRvuuH88fEoEH62IuQe0OtraD3ebQEoTRk8XCBoknUNc1Y67pw== + dependencies: + call-bind "^1.0.7" + for-each "^0.3.3" + gopd "^1.0.1" + has-proto "^1.0.3" + is-typed-array "^1.1.13" + +typed-array-byte-offset@^1.0.2: + version "1.0.2" + resolved "https://registry.yarnpkg.com/typed-array-byte-offset/-/typed-array-byte-offset-1.0.2.tgz#f9ec1acb9259f395093e4567eb3c28a580d02063" + integrity sha512-Ous0vodHa56FviZucS2E63zkgtgrACj7omjwd/8lTEMEPFFyjfixMZ1ZXenpgCFBBt4EC1J2XsyVS2gkG0eTFA== + dependencies: + available-typed-arrays "^1.0.7" + call-bind "^1.0.7" + for-each "^0.3.3" + gopd "^1.0.1" + has-proto "^1.0.3" + is-typed-array "^1.1.13" + +typed-array-length@^1.0.6: + version "1.0.6" + resolved "https://registry.yarnpkg.com/typed-array-length/-/typed-array-length-1.0.6.tgz#57155207c76e64a3457482dfdc1c9d1d3c4c73a3" + integrity sha512-/OxDN6OtAk5KBpGb28T+HZc2M+ADtvRxXrKKbUwtsLgdoxgX13hyy7ek6bFRl5+aBs2yZzB0c4CnQfAtVypW/g== + dependencies: + call-bind "^1.0.7" + for-each "^0.3.3" + gopd "^1.0.1" + has-proto "^1.0.3" + is-typed-array "^1.1.13" + possible-typed-array-names "^1.0.0" + typedarray-to-buffer@^3.1.5: version "3.1.5" resolved "https://registry.yarnpkg.com/typedarray-to-buffer/-/typedarray-to-buffer-3.1.5.tgz#a97ee7a9ff42691b9f783ff1bc5112fe3fca9080" @@ -9383,11 +10602,30 @@ typedarray-to-buffer@^3.1.5: dependencies: is-typedarray "^1.0.0" +typescript-eslint@^7.8.0: + version "7.8.0" + resolved "https://registry.yarnpkg.com/typescript-eslint/-/typescript-eslint-7.8.0.tgz#d2a73d4caac35d4d9825bfdfac06a9bf2ba175e4" + integrity sha512-sheFG+/D8N/L7gC3WT0Q8sB97Nm573Yfr+vZFzl/4nBdYcmviBPtwGSX9TJ7wpVg28ocerKVOt+k2eGmHzcgVA== + dependencies: + "@typescript-eslint/eslint-plugin" "7.8.0" + "@typescript-eslint/parser" "7.8.0" + "@typescript-eslint/utils" "7.8.0" + typescript@^4.9.5: version "4.9.5" resolved "https://registry.yarnpkg.com/typescript/-/typescript-4.9.5.tgz#095979f9bcc0d09da324d58d03ce8f8374cbe65a" integrity sha512-1FXk9E2Hm+QzZQ7z+McJiHL4NW1F2EzMu9Nq9i3zAaGqibafqYwCVU6WyWAuyQRRzOlxou8xZSyXLEN8oKj24g== +unbox-primitive@^1.0.2: + version "1.0.2" + resolved "https://registry.yarnpkg.com/unbox-primitive/-/unbox-primitive-1.0.2.tgz#29032021057d5e6cdbd08c5129c226dff8ed6f9e" + integrity sha512-61pPlCD9h51VoreyJ0BReideM3MDKMKnh6+V9L08331ipq6Q8OFXZYiqP6n/tbHx4s5I9uRhcye6BrbkizkBDw== + dependencies: + call-bind "^1.0.2" + has-bigints "^1.0.2" + has-symbols "^1.0.3" + which-boxed-primitive "^1.0.2" + unicode-canonical-property-names-ecmascript@^1.0.4: version "1.0.4" resolved "https://registry.yarnpkg.com/unicode-canonical-property-names-ecmascript/-/unicode-canonical-property-names-ecmascript-1.0.4.tgz#2619800c4c825800efdd8343af7dd9933cbe2818" @@ -9793,6 +11031,56 @@ whatwg-url@^8.0.0, whatwg-url@^8.5.0: tr46 "^2.1.0" webidl-conversions "^6.1.0" +which-boxed-primitive@^1.0.2: + version "1.0.2" + resolved "https://registry.yarnpkg.com/which-boxed-primitive/-/which-boxed-primitive-1.0.2.tgz#13757bc89b209b049fe5d86430e21cf40a89a8e6" + integrity sha512-bwZdv0AKLpplFY2KZRX6TvyuN7ojjr7lwkg6ml0roIy9YeuSr7JS372qlNW18UQYzgYK9ziGcerWqZOmEn9VNg== + dependencies: + is-bigint "^1.0.1" + is-boolean-object "^1.1.0" + is-number-object "^1.0.4" + is-string "^1.0.5" + is-symbol "^1.0.3" + +which-builtin-type@^1.1.3: + version "1.1.3" + resolved "https://registry.yarnpkg.com/which-builtin-type/-/which-builtin-type-1.1.3.tgz#b1b8443707cc58b6e9bf98d32110ff0c2cbd029b" + integrity sha512-YmjsSMDBYsM1CaFiayOVT06+KJeXf0o5M/CAd4o1lTadFAtacTUM49zoYxr/oroopFDfhvN6iEcBxUyc3gvKmw== + dependencies: + function.prototype.name "^1.1.5" + has-tostringtag "^1.0.0" + is-async-function "^2.0.0" + is-date-object "^1.0.5" + is-finalizationregistry "^1.0.2" + is-generator-function "^1.0.10" + is-regex "^1.1.4" + is-weakref "^1.0.2" + isarray "^2.0.5" + which-boxed-primitive "^1.0.2" + which-collection "^1.0.1" + which-typed-array "^1.1.9" + +which-collection@^1.0.1: + version "1.0.2" + resolved "https://registry.yarnpkg.com/which-collection/-/which-collection-1.0.2.tgz#627ef76243920a107e7ce8e96191debe4b16c2a0" + integrity sha512-K4jVyjnBdgvc86Y6BkaLZEN933SwYOuBFkdmBu9ZfkcAbdVbpITnDmjvZ/aQjRXQrv5EPkTnD1s39GiiqbngCw== + dependencies: + is-map "^2.0.3" + is-set "^2.0.3" + is-weakmap "^2.0.2" + is-weakset "^2.0.3" + +which-typed-array@^1.1.14, which-typed-array@^1.1.15, which-typed-array@^1.1.9: + version "1.1.15" + resolved "https://registry.yarnpkg.com/which-typed-array/-/which-typed-array-1.1.15.tgz#264859e9b11a649b388bfaaf4f767df1f779b38d" + integrity sha512-oV0jmFtUky6CXfkqehVvBP/LSWJ2sy4vWMioiENyJLePrBO/yKyV9OyJySfAKosh+RYkIl5zJCNZ8/4JncrpdA== + dependencies: + available-typed-arrays "^1.0.7" + call-bind "^1.0.7" + for-each "^0.3.3" + gopd "^1.0.1" + has-tostringtag "^1.0.2" + which@^1.2.9: version "1.3.1" resolved "https://registry.yarnpkg.com/which/-/which-1.3.1.tgz#a45043d54f5805316da8d62f9f50918d3da70b0a" @@ -9812,6 +11100,11 @@ wildcard@^2.0.0: resolved "https://registry.yarnpkg.com/wildcard/-/wildcard-2.0.0.tgz#a77d20e5200c6faaac979e4b3aadc7b3dd7f8fec" integrity sha512-JcKqAHLPxcdb9KM49dufGXn2x3ssnfjbcaQdLlfZsL9rH9wgDQjUtDxbo8NE0F6SFvydeu1VhZe7hZuHsB2/pw== +word-wrap@^1.2.5: + version "1.2.5" + resolved "https://registry.yarnpkg.com/word-wrap/-/word-wrap-1.2.5.tgz#d2c45c6dd4fbce621a66f136cbe328afd0410b34" + integrity sha512-BN22B5eaMMI9UMtjrGd5g5eCYPpCPDUy0FJXbYsaT5zYxjFOckS53SQDE3pWkVoWpHXVb3BrYcEN4Twa55B5cA== + word-wrap@~1.2.3: version "1.2.3" resolved "https://registry.yarnpkg.com/word-wrap/-/word-wrap-1.2.3.tgz#610636f6b1f703891bd34771ccb17fb93b47079c" From 9bc9ff9c7a3573742a767c38679cbefb4f07c1c0 Mon Sep 17 00:00:00 2001 From: Parvesh Mourya Date: Wed, 8 May 2024 17:47:14 +0200 Subject: [PATCH 081/206] feat: implement keda health-checks (#16715) Signed-off-by: parmou Co-authored-by: Blake Pettersson --- .../keda.sh/ScaledObject/health.lua | 35 +++++++++++++ .../keda.sh/ScaledObject/health_test.yaml | 21 ++++++++ .../testdata/keda-degraded-1.yaml | 52 +++++++++++++++++++ .../ScaledObject/testdata/keda-degraded.yaml | 51 ++++++++++++++++++ .../ScaledObject/testdata/keda-healthy.yaml | 51 ++++++++++++++++++ .../testdata/keda-progressing.yaml | 30 +++++++++++ .../ScaledObject/testdata/keda-suspended.yaml | 51 ++++++++++++++++++ 7 files changed, 291 insertions(+) create mode 100644 resource_customizations/keda.sh/ScaledObject/health.lua create mode 100644 resource_customizations/keda.sh/ScaledObject/health_test.yaml create mode 100644 resource_customizations/keda.sh/ScaledObject/testdata/keda-degraded-1.yaml create mode 100644 resource_customizations/keda.sh/ScaledObject/testdata/keda-degraded.yaml create mode 100644 resource_customizations/keda.sh/ScaledObject/testdata/keda-healthy.yaml create mode 100644 resource_customizations/keda.sh/ScaledObject/testdata/keda-progressing.yaml create mode 100644 resource_customizations/keda.sh/ScaledObject/testdata/keda-suspended.yaml diff --git a/resource_customizations/keda.sh/ScaledObject/health.lua b/resource_customizations/keda.sh/ScaledObject/health.lua new file mode 100644 index 0000000000000..84cc5ad17a433 --- /dev/null +++ b/resource_customizations/keda.sh/ScaledObject/health.lua @@ -0,0 +1,35 @@ +local hs = {} +local healthy = false +local degraded = false +local suspended = false +if obj.status ~= nil then + if obj.status.conditions ~= nil then + for i, condition in ipairs(obj.status.conditions) do + if condition.status == "False" and condition.type == "Ready" then + hs.message = condition.message + degraded = true + end + if condition.status == "True" and condition.type == "Ready" then + hs.message = condition.message + healthy = true + end + if condition.status == "True" and condition.type == "Paused" then + hs.message = condition.message + suspended = true + end + end + end +end +if degraded == true then + hs.status = "Degraded" + return hs +elseif healthy == true and suspended == false then + hs.status = "Healthy" + return hs +elseif healthy == true and suspended == true then + hs.status = "Suspended" + return hs +end +hs.status = "Progressing" +hs.message = "Creating HorizontalPodAutoscaler Object" +return hs \ No newline at end of file diff --git a/resource_customizations/keda.sh/ScaledObject/health_test.yaml b/resource_customizations/keda.sh/ScaledObject/health_test.yaml new file mode 100644 index 0000000000000..969334650ba14 --- /dev/null +++ b/resource_customizations/keda.sh/ScaledObject/health_test.yaml @@ -0,0 +1,21 @@ +tests: +- healthStatus: + status: Progressing + message: "Creating HorizontalPodAutoscaler Object" + inputPath: testdata/keda-progressing.yaml +- healthStatus: + status: Degraded + message: "ScaledObject doesn't have correct Idle/Min/Max Replica Counts specification" + inputPath: testdata/keda-degraded-1.yaml +- healthStatus: + status: Degraded + message: "ScaledObject doesn't have correct triggers specification" + inputPath: testdata/keda-degraded.yaml +- healthStatus: + status: Healthy + message: "ScaledObject is defined correctly and is ready for scaling" + inputPath: testdata/keda-healthy.yaml +- healthStatus: + status: Suspended + message: "ScaledObject is paused" + inputPath: testdata/keda-suspended.yaml diff --git a/resource_customizations/keda.sh/ScaledObject/testdata/keda-degraded-1.yaml b/resource_customizations/keda.sh/ScaledObject/testdata/keda-degraded-1.yaml new file mode 100644 index 0000000000000..3c3aba78a16a4 --- /dev/null +++ b/resource_customizations/keda.sh/ScaledObject/testdata/keda-degraded-1.yaml @@ -0,0 +1,52 @@ +apiVersion: keda.sh/v1alpha1 +kind: ScaledObject +metadata: + annotations: + finalizers: + - finalizer.keda.sh + labels: + argocd.argoproj.io/instance: keda-default + name: keda + namespace: keda + resourceVersion: '160591442' + uid: 73ee438a-f383-43f3-9346-b901d9773f4b +spec: + maxReplicaCount: 3 + minReplicaCount: 0 + scaleTargetRef: + name: keda + triggers: + - metadata: + desiredReplicas: '1' + end: 00 17 * * 1-5 + start: 00 08 * * 1-5 + timezone: Europe/Stockholm + type: cron +status: + conditions: + - message: >- + ScaledObject doesn't have correct Idle/Min/Max Replica Counts specification + reason: ScaledObjectCheckFailed + status: 'False' + type: Ready + - message: ScaledObject check failed + reason: UnknownState + status: Unknown + type: Active + - message: No fallbacks are active on this scaled object + reason: NoFallbackFound + status: 'False' + type: Fallback + - status: Unknown + type: Paused + externalMetricNames: + - s0-cron-Europe-Stockholm-0008xx1-5-0019xx1-5 + hpaName: keda-hpa + lastActiveTime: '2023-12-18T17:59:55Z' + originalReplicaCount: 1 + scaleTargetGVKR: + group: apps + kind: Deployment + resource: deployments + version: v1 + scaleTargetKind: apps/v1.Deployment \ No newline at end of file diff --git a/resource_customizations/keda.sh/ScaledObject/testdata/keda-degraded.yaml b/resource_customizations/keda.sh/ScaledObject/testdata/keda-degraded.yaml new file mode 100644 index 0000000000000..4996905fed7f4 --- /dev/null +++ b/resource_customizations/keda.sh/ScaledObject/testdata/keda-degraded.yaml @@ -0,0 +1,51 @@ +apiVersion: keda.sh/v1alpha1 +kind: ScaledObject +metadata: + annotations: + finalizers: + - finalizer.keda.sh + labels: + argocd.argoproj.io/instance: keda-default + name: keda + namespace: keda + resourceVersion: '160591442' + uid: 73ee438a-f383-43f3-9346-b901d9773f4b +spec: + maxReplicaCount: 3 + minReplicaCount: 0 + scaleTargetRef: + name: keda + triggers: + - metadata: + desiredReplicas: '1' + end: 00 17 * * 1-5 + start: 00 08 * * 1-5 + timezone: Europe/Stockholm + type: cron +status: + conditions: + - message: ScaledObject doesn't have correct triggers specification + reason: ScaledObjectCheckFailed + status: 'False' + type: Ready + - message: Scaling is not performed because triggers are not active + reason: ScalerNotActive + status: 'False' + type: Active + - message: No fallbacks are active on this scaled object + reason: NoFallbackFound + status: 'False' + type: Fallback + - status: Unknown + type: Paused + externalMetricNames: + - s0-cron-Europe-Stockholm-0008xx1-5-0019xx1-5 + hpaName: keda-hpa + lastActiveTime: '2023-12-18T17:59:55Z' + originalReplicaCount: 1 + scaleTargetGVKR: + group: apps + kind: Deployment + resource: deployments + version: v1 + scaleTargetKind: apps/v1.Deployment \ No newline at end of file diff --git a/resource_customizations/keda.sh/ScaledObject/testdata/keda-healthy.yaml b/resource_customizations/keda.sh/ScaledObject/testdata/keda-healthy.yaml new file mode 100644 index 0000000000000..38bd24dc1953f --- /dev/null +++ b/resource_customizations/keda.sh/ScaledObject/testdata/keda-healthy.yaml @@ -0,0 +1,51 @@ +apiVersion: keda.sh/v1alpha1 +kind: ScaledObject +metadata: + annotations: + finalizers: + - finalizer.keda.sh + labels: + argocd.argoproj.io/instance: keda-default + name: keda + namespace: keda + resourceVersion: '160591442' + uid: 73ee438a-f383-43f3-9346-b901d9773f4b +spec: + maxReplicaCount: 3 + minReplicaCount: 0 + scaleTargetRef: + name: backstage + triggers: + - metadata: + desiredReplicas: '1' + end: 00 17 * * 1-5 + start: 00 08 * * 1-5 + timezone: Europe/Stockholm + type: cron +status: + conditions: + - message: ScaledObject is defined correctly and is ready for scaling + reason: ScaledObjectReady + status: 'True' + type: Ready + - message: Scaling is not performed because triggers are not active + reason: ScalerNotActive + status: 'False' + type: Active + - message: No fallbacks are active on this scaled object + reason: NoFallbackFound + status: 'False' + type: Fallback + - status: Unknown + type: Paused + externalMetricNames: + - s0-cron-Europe-Stockholm-0008xx1-5-0019xx1-5 + hpaName: keda-hpa-backstage-kambi-standard-chart + lastActiveTime: '2023-12-18T17:59:55Z' + originalReplicaCount: 1 + scaleTargetGVKR: + group: apps + kind: Deployment + resource: deployments + version: v1 + scaleTargetKind: apps/v1.Deployment \ No newline at end of file diff --git a/resource_customizations/keda.sh/ScaledObject/testdata/keda-progressing.yaml b/resource_customizations/keda.sh/ScaledObject/testdata/keda-progressing.yaml new file mode 100644 index 0000000000000..2206bfbff97f1 --- /dev/null +++ b/resource_customizations/keda.sh/ScaledObject/testdata/keda-progressing.yaml @@ -0,0 +1,30 @@ +apiVersion: keda.sh/v1alpha1 +kind: ScaledObject +metadata: + annotations: + finalizers: + - finalizer.keda.sh + labels: + argocd.argoproj.io/instance: keda-default + name: keda + namespace: keda + resourceVersion: '160591442' + uid: 73ee438a-f383-43f3-9346-b901d9773f4b +spec: + maxReplicaCount: 3 + minReplicaCount: 0 + scaleTargetRef: + name: backstage + triggers: + - metadata: + desiredReplicas: '1' + end: 00 17 * * 1-5 + start: 00 08 * * 1-5 + timezone: Europe/Stockholm + type: cron +status: + conditions: + - message: Creating HorizontalPodAutoscaler Object + reason: Running + status: 'True' + type: Running \ No newline at end of file diff --git a/resource_customizations/keda.sh/ScaledObject/testdata/keda-suspended.yaml b/resource_customizations/keda.sh/ScaledObject/testdata/keda-suspended.yaml new file mode 100644 index 0000000000000..a2d0b2b5dcf67 --- /dev/null +++ b/resource_customizations/keda.sh/ScaledObject/testdata/keda-suspended.yaml @@ -0,0 +1,51 @@ +apiVersion: keda.sh/v1alpha1 +kind: ScaledObject +metadata: + annotations: + finalizers: + - finalizer.keda.sh + labels: + argocd.argoproj.io/instance: keda-default + name: keda + namespace: keda + resourceVersion: '160591442' + uid: 73ee438a-f383-43f3-9346-b901d9773f4b +spec: + maxReplicaCount: 3 + minReplicaCount: 0 + scaleTargetRef: + name: backstage + triggers: + - metadata: + desiredReplicas: '1' + end: 00 17 * * 1-5 + start: 00 08 * * 1-5 + timezone: Europe/Stockholm + type: cron +status: + conditions: + - message: ScaledObject is defined correctly and is ready for scaling + reason: ScaledObjectReady + status: 'True' + type: Ready + - message: ScaledObject check failed + reason: UnknownState + status: Unknown + type: Active + - status: Unknown + type: Fallback + - message: ScaledObject is paused + reason: ScaledObjectPaused + status: 'True' + type: Paused + externalMetricNames: + - s0-cron-Europe-Stockholm-0008xx1-5-0019xx1-5 + hpaName: keda-hpa-backstage-kambi-standard-chart + lastActiveTime: '2023-12-18T17:59:55Z' + originalReplicaCount: 1 + scaleTargetGVKR: + group: apps + kind: Deployment + resource: deployments + version: v1 + scaleTargetKind: apps/v1.Deployment \ No newline at end of file From 1cd6fcac4f38edf3cd3b5409fa1b6d4aa4ad2694 Mon Sep 17 00:00:00 2001 From: Togie Mcdogie <22466611+togie6@users.noreply.github.com> Date: Thu, 9 May 2024 02:21:56 +1000 Subject: [PATCH 082/206] feat(health): Added Humio Operator Healthchecks (#11628) * Added Humio Operator Healthchecks Signed-off-by: togie6 <22466611+togie6@users.noreply.github.com> * Retrigger CI pipeline Signed-off-by: togie6 <22466611+togie6@users.noreply.github.com> * Removed duplicate if statement from HumioView Signed-off-by: togie6 <22466611+togie6@users.noreply.github.com> * Add HumioCluster Health Check Signed-off-by: togie6 <22466611+togie6@users.noreply.github.com> --------- Signed-off-by: togie6 <22466611+togie6@users.noreply.github.com> Co-authored-by: pasha-codefresh --- .../core.humio.com/HumioAction/health.lua | 30 +++++++++ .../HumioAction/health_test.yaml | 21 ++++++ .../HumioAction/testdata/configerror.yaml | 23 +++++++ .../HumioAction/testdata/healthy.yaml | 23 +++++++ .../HumioAction/testdata/notfound.yaml | 23 +++++++ .../HumioAction/testdata/progressing.yaml | 21 ++++++ .../HumioAction/testdata/unknown.yaml | 23 +++++++ .../core.humio.com/HumioAlert/health.lua | 30 +++++++++ .../HumioAlert/health_test.yaml | 21 ++++++ .../HumioAlert/testdata/configerror.yaml | 29 ++++++++ .../HumioAlert/testdata/healthy.yaml | 29 ++++++++ .../HumioAlert/testdata/notfound.yaml | 29 ++++++++ .../HumioAlert/testdata/progressing.yaml | 27 ++++++++ .../HumioAlert/testdata/unknown.yaml | 29 ++++++++ .../core.humio.com/HumioCluster/health.lua | 67 +++++++++++++++++++ .../HumioCluster/health_test.yaml | 29 ++++++++ .../HumioCluster/testdata/configerror.yaml | 30 +++++++++ .../testdata/configerror_custom.yaml | 33 +++++++++ .../HumioCluster/testdata/healthy.yaml | 30 +++++++++ .../HumioCluster/testdata/pending.yaml | 30 +++++++++ .../HumioCluster/testdata/progressing.yaml | 28 ++++++++ .../HumioCluster/testdata/restarting.yaml | 30 +++++++++ .../HumioCluster/testdata/unknown.yaml | 33 +++++++++ .../HumioCluster/testdata/upgrading.yaml | 33 +++++++++ .../HumioIngestToken/health.lua | 30 +++++++++ .../HumioIngestToken/health_test.yaml | 21 ++++++ .../testdata/configerror.yaml | 20 ++++++ .../HumioIngestToken/testdata/healthy.yaml | 20 ++++++ .../HumioIngestToken/testdata/notfound.yaml | 20 ++++++ .../testdata/progressing.yaml | 18 +++++ .../HumioIngestToken/testdata/unknown.yaml | 20 ++++++ .../core.humio.com/HumioParser/health.lua | 30 +++++++++ .../HumioParser/health_test.yaml | 21 ++++++ .../HumioParser/testdata/configerror.yaml | 39 +++++++++++ .../HumioParser/testdata/healthy.yaml | 39 +++++++++++ .../HumioParser/testdata/notfound.yaml | 39 +++++++++++ .../HumioParser/testdata/progressing.yaml | 37 ++++++++++ .../HumioParser/testdata/unknown.yaml | 39 +++++++++++ .../core.humio.com/HumioRepository/health.lua | 30 +++++++++ .../HumioRepository/health_test.yaml | 21 ++++++ .../HumioRepository/testdata/configerror.yaml | 24 +++++++ .../HumioRepository/testdata/healthy.yaml | 24 +++++++ .../HumioRepository/testdata/notfound.yaml | 24 +++++++ .../HumioRepository/testdata/progressing.yaml | 22 ++++++ .../HumioRepository/testdata/unknown.yaml | 24 +++++++ .../core.humio.com/HumioView/health.lua | 26 +++++++ .../core.humio.com/HumioView/health_test.yaml | 21 ++++++ .../HumioView/testdata/configerror.yaml | 24 +++++++ .../HumioView/testdata/healthy.yaml | 24 +++++++ .../HumioView/testdata/notfound.yaml | 24 +++++++ .../HumioView/testdata/progressing.yaml | 22 ++++++ .../HumioView/testdata/unknown.yaml | 24 +++++++ 52 files changed, 1428 insertions(+) create mode 100644 resource_customizations/core.humio.com/HumioAction/health.lua create mode 100644 resource_customizations/core.humio.com/HumioAction/health_test.yaml create mode 100644 resource_customizations/core.humio.com/HumioAction/testdata/configerror.yaml create mode 100644 resource_customizations/core.humio.com/HumioAction/testdata/healthy.yaml create mode 100644 resource_customizations/core.humio.com/HumioAction/testdata/notfound.yaml create mode 100644 resource_customizations/core.humio.com/HumioAction/testdata/progressing.yaml create mode 100644 resource_customizations/core.humio.com/HumioAction/testdata/unknown.yaml create mode 100644 resource_customizations/core.humio.com/HumioAlert/health.lua create mode 100644 resource_customizations/core.humio.com/HumioAlert/health_test.yaml create mode 100644 resource_customizations/core.humio.com/HumioAlert/testdata/configerror.yaml create mode 100644 resource_customizations/core.humio.com/HumioAlert/testdata/healthy.yaml create mode 100644 resource_customizations/core.humio.com/HumioAlert/testdata/notfound.yaml create mode 100644 resource_customizations/core.humio.com/HumioAlert/testdata/progressing.yaml create mode 100644 resource_customizations/core.humio.com/HumioAlert/testdata/unknown.yaml create mode 100644 resource_customizations/core.humio.com/HumioCluster/health.lua create mode 100644 resource_customizations/core.humio.com/HumioCluster/health_test.yaml create mode 100644 resource_customizations/core.humio.com/HumioCluster/testdata/configerror.yaml create mode 100644 resource_customizations/core.humio.com/HumioCluster/testdata/configerror_custom.yaml create mode 100644 resource_customizations/core.humio.com/HumioCluster/testdata/healthy.yaml create mode 100644 resource_customizations/core.humio.com/HumioCluster/testdata/pending.yaml create mode 100644 resource_customizations/core.humio.com/HumioCluster/testdata/progressing.yaml create mode 100644 resource_customizations/core.humio.com/HumioCluster/testdata/restarting.yaml create mode 100644 resource_customizations/core.humio.com/HumioCluster/testdata/unknown.yaml create mode 100644 resource_customizations/core.humio.com/HumioCluster/testdata/upgrading.yaml create mode 100644 resource_customizations/core.humio.com/HumioIngestToken/health.lua create mode 100644 resource_customizations/core.humio.com/HumioIngestToken/health_test.yaml create mode 100644 resource_customizations/core.humio.com/HumioIngestToken/testdata/configerror.yaml create mode 100644 resource_customizations/core.humio.com/HumioIngestToken/testdata/healthy.yaml create mode 100644 resource_customizations/core.humio.com/HumioIngestToken/testdata/notfound.yaml create mode 100644 resource_customizations/core.humio.com/HumioIngestToken/testdata/progressing.yaml create mode 100644 resource_customizations/core.humio.com/HumioIngestToken/testdata/unknown.yaml create mode 100644 resource_customizations/core.humio.com/HumioParser/health.lua create mode 100644 resource_customizations/core.humio.com/HumioParser/health_test.yaml create mode 100644 resource_customizations/core.humio.com/HumioParser/testdata/configerror.yaml create mode 100644 resource_customizations/core.humio.com/HumioParser/testdata/healthy.yaml create mode 100644 resource_customizations/core.humio.com/HumioParser/testdata/notfound.yaml create mode 100644 resource_customizations/core.humio.com/HumioParser/testdata/progressing.yaml create mode 100644 resource_customizations/core.humio.com/HumioParser/testdata/unknown.yaml create mode 100644 resource_customizations/core.humio.com/HumioRepository/health.lua create mode 100644 resource_customizations/core.humio.com/HumioRepository/health_test.yaml create mode 100644 resource_customizations/core.humio.com/HumioRepository/testdata/configerror.yaml create mode 100644 resource_customizations/core.humio.com/HumioRepository/testdata/healthy.yaml create mode 100644 resource_customizations/core.humio.com/HumioRepository/testdata/notfound.yaml create mode 100644 resource_customizations/core.humio.com/HumioRepository/testdata/progressing.yaml create mode 100644 resource_customizations/core.humio.com/HumioRepository/testdata/unknown.yaml create mode 100644 resource_customizations/core.humio.com/HumioView/health.lua create mode 100644 resource_customizations/core.humio.com/HumioView/health_test.yaml create mode 100644 resource_customizations/core.humio.com/HumioView/testdata/configerror.yaml create mode 100644 resource_customizations/core.humio.com/HumioView/testdata/healthy.yaml create mode 100644 resource_customizations/core.humio.com/HumioView/testdata/notfound.yaml create mode 100644 resource_customizations/core.humio.com/HumioView/testdata/progressing.yaml create mode 100644 resource_customizations/core.humio.com/HumioView/testdata/unknown.yaml diff --git a/resource_customizations/core.humio.com/HumioAction/health.lua b/resource_customizations/core.humio.com/HumioAction/health.lua new file mode 100644 index 0000000000000..a99a0eb2e0d59 --- /dev/null +++ b/resource_customizations/core.humio.com/HumioAction/health.lua @@ -0,0 +1,30 @@ +hs = { + status = "Progressing", + message = "Update in progress" +} +if obj.status ~= nil then + if obj.status.state ~= nil then + if obj.status.state == "Exists" then + hs.status = "Healthy" + hs.message = "Component state: Exists." + end + if obj.status.state == "NotFound" then + hs.status = "Missing" + hs.message = "Component state: NotFound." + end + if obj.status.state == "ConfigError" then + hs.status = "Degraded" + hs.message = "Component state: ConfigError." + end + if obj.status.state == "Unknown" then + hs.status = "Unknown" + hs.message = "Component state: Unknown." + end + if obj.status.state == "Unknown" then + hs.status = "Unknown" + hs.message = "Component state: Unknown." + end + end + return hs +end +return hs \ No newline at end of file diff --git a/resource_customizations/core.humio.com/HumioAction/health_test.yaml b/resource_customizations/core.humio.com/HumioAction/health_test.yaml new file mode 100644 index 0000000000000..f90baf9bccc9f --- /dev/null +++ b/resource_customizations/core.humio.com/HumioAction/health_test.yaml @@ -0,0 +1,21 @@ +tests: +- healthStatus: + status: Healthy + message: "Component state: Exists." + inputPath: testdata/healthy.yaml +- healthStatus: + status: Missing + message: "Component state: NotFound." + inputPath: testdata/notfound.yaml +- healthStatus: + status: Degraded + message: "Component state: ConfigError." + inputPath: testdata/configerror.yaml +- healthStatus: + status: Unknown + message: "Component state: Unknown." + inputPath: testdata/unknown.yaml +- healthStatus: + status: Progressing + message: "Update in progress" + inputPath: testdata/progressing.yaml diff --git a/resource_customizations/core.humio.com/HumioAction/testdata/configerror.yaml b/resource_customizations/core.humio.com/HumioAction/testdata/configerror.yaml new file mode 100644 index 0000000000000..1c986292f21a4 --- /dev/null +++ b/resource_customizations/core.humio.com/HumioAction/testdata/configerror.yaml @@ -0,0 +1,23 @@ +apiVersion: core.humio.com/v1alpha1 +kind: HumioAction +metadata: + annotations: + creationTimestamp: '2022-12-08T02:03:07Z' + generation: 1 + labels: + app.kubernetes.io/instance: humio-deploy + name: test-action-1 + namespace: humio + resourceVersion: '10768054' + uid: f339ddf1-3b3e-49e0-80cc-7f583dce532e +spec: + humioRepositoryProperties: + ingestTokenSource: + secretKeyRef: + key: test-token + name: token + managedClusterName: example-humiocluster + name: trigger_action + viewName: example-1 +status: + state: ConfigError diff --git a/resource_customizations/core.humio.com/HumioAction/testdata/healthy.yaml b/resource_customizations/core.humio.com/HumioAction/testdata/healthy.yaml new file mode 100644 index 0000000000000..f6dfeffcf31a5 --- /dev/null +++ b/resource_customizations/core.humio.com/HumioAction/testdata/healthy.yaml @@ -0,0 +1,23 @@ +apiVersion: core.humio.com/v1alpha1 +kind: HumioAction +metadata: + annotations: + creationTimestamp: '2022-12-08T02:03:07Z' + generation: 1 + labels: + app.kubernetes.io/instance: humio-deploy + name: test-action-1 + namespace: humio + resourceVersion: '10768054' + uid: f339ddf1-3b3e-49e0-80cc-7f583dce532e +spec: + humioRepositoryProperties: + ingestTokenSource: + secretKeyRef: + key: test-token + name: token + managedClusterName: example-humiocluster + name: trigger_action + viewName: example-1 +status: + state: Exists \ No newline at end of file diff --git a/resource_customizations/core.humio.com/HumioAction/testdata/notfound.yaml b/resource_customizations/core.humio.com/HumioAction/testdata/notfound.yaml new file mode 100644 index 0000000000000..2743fb1b7b54b --- /dev/null +++ b/resource_customizations/core.humio.com/HumioAction/testdata/notfound.yaml @@ -0,0 +1,23 @@ +apiVersion: core.humio.com/v1alpha1 +kind: HumioAction +metadata: + annotations: + creationTimestamp: '2022-12-08T02:03:07Z' + generation: 1 + labels: + app.kubernetes.io/instance: humio-deploy + name: test-action-1 + namespace: humio + resourceVersion: '10768054' + uid: f339ddf1-3b3e-49e0-80cc-7f583dce532e +spec: + humioRepositoryProperties: + ingestTokenSource: + secretKeyRef: + key: test-token + name: token + managedClusterName: example-humiocluster + name: trigger_action + viewName: example-1 +status: + state: NotFound \ No newline at end of file diff --git a/resource_customizations/core.humio.com/HumioAction/testdata/progressing.yaml b/resource_customizations/core.humio.com/HumioAction/testdata/progressing.yaml new file mode 100644 index 0000000000000..8a43ffc4fab01 --- /dev/null +++ b/resource_customizations/core.humio.com/HumioAction/testdata/progressing.yaml @@ -0,0 +1,21 @@ +apiVersion: core.humio.com/v1alpha1 +kind: HumioAction +metadata: + annotations: + creationTimestamp: '2022-12-08T02:03:07Z' + generation: 1 + labels: + app.kubernetes.io/instance: humio-deploy + name: test-action-1 + namespace: humio + resourceVersion: '10768054' + uid: f339ddf1-3b3e-49e0-80cc-7f583dce532e +spec: + humioRepositoryProperties: + ingestTokenSource: + secretKeyRef: + key: test-token + name: token + managedClusterName: example-humiocluster + name: trigger_action + viewName: example-1 \ No newline at end of file diff --git a/resource_customizations/core.humio.com/HumioAction/testdata/unknown.yaml b/resource_customizations/core.humio.com/HumioAction/testdata/unknown.yaml new file mode 100644 index 0000000000000..e3ec98cd557b4 --- /dev/null +++ b/resource_customizations/core.humio.com/HumioAction/testdata/unknown.yaml @@ -0,0 +1,23 @@ +apiVersion: core.humio.com/v1alpha1 +kind: HumioAction +metadata: + annotations: + creationTimestamp: '2022-12-08T02:03:07Z' + generation: 1 + labels: + app.kubernetes.io/instance: humio-deploy + name: test-action-1 + namespace: humio + resourceVersion: '10768054' + uid: f339ddf1-3b3e-49e0-80cc-7f583dce532e +spec: + humioRepositoryProperties: + ingestTokenSource: + secretKeyRef: + key: test-token + name: token + managedClusterName: example-humiocluster + name: trigger_action + viewName: example-1 +status: + state: Unknown diff --git a/resource_customizations/core.humio.com/HumioAlert/health.lua b/resource_customizations/core.humio.com/HumioAlert/health.lua new file mode 100644 index 0000000000000..a99a0eb2e0d59 --- /dev/null +++ b/resource_customizations/core.humio.com/HumioAlert/health.lua @@ -0,0 +1,30 @@ +hs = { + status = "Progressing", + message = "Update in progress" +} +if obj.status ~= nil then + if obj.status.state ~= nil then + if obj.status.state == "Exists" then + hs.status = "Healthy" + hs.message = "Component state: Exists." + end + if obj.status.state == "NotFound" then + hs.status = "Missing" + hs.message = "Component state: NotFound." + end + if obj.status.state == "ConfigError" then + hs.status = "Degraded" + hs.message = "Component state: ConfigError." + end + if obj.status.state == "Unknown" then + hs.status = "Unknown" + hs.message = "Component state: Unknown." + end + if obj.status.state == "Unknown" then + hs.status = "Unknown" + hs.message = "Component state: Unknown." + end + end + return hs +end +return hs \ No newline at end of file diff --git a/resource_customizations/core.humio.com/HumioAlert/health_test.yaml b/resource_customizations/core.humio.com/HumioAlert/health_test.yaml new file mode 100644 index 0000000000000..f90baf9bccc9f --- /dev/null +++ b/resource_customizations/core.humio.com/HumioAlert/health_test.yaml @@ -0,0 +1,21 @@ +tests: +- healthStatus: + status: Healthy + message: "Component state: Exists." + inputPath: testdata/healthy.yaml +- healthStatus: + status: Missing + message: "Component state: NotFound." + inputPath: testdata/notfound.yaml +- healthStatus: + status: Degraded + message: "Component state: ConfigError." + inputPath: testdata/configerror.yaml +- healthStatus: + status: Unknown + message: "Component state: Unknown." + inputPath: testdata/unknown.yaml +- healthStatus: + status: Progressing + message: "Update in progress" + inputPath: testdata/progressing.yaml diff --git a/resource_customizations/core.humio.com/HumioAlert/testdata/configerror.yaml b/resource_customizations/core.humio.com/HumioAlert/testdata/configerror.yaml new file mode 100644 index 0000000000000..043d08d6a2d17 --- /dev/null +++ b/resource_customizations/core.humio.com/HumioAlert/testdata/configerror.yaml @@ -0,0 +1,29 @@ +apiVersion: core.humio.com/v1alpha1 +kind: HumioAlert +metadata: + creationTimestamp: '2022-12-08T02:03:07Z' + finalizers: + - core.humio.com/finalizer + generation: 3 + labels: + app.kubernetes.io/instance: humio-deploy + name: example-alert-1 + namespace: humio + resourceVersion: '10768150' + uid: eb138512-0661-47c1-a056-0e53f3b5fa1f +spec: + actions: + - move-to-alerts + description: Error counts + labels: + - test-label + managedClusterName: example-humiocluster + name: example-alert + query: + queryString: '#repo = humio | error = true | count() | _count > 0' + start: 24h + silenced: false + throttleTimeMillis: 60000 + viewName: example-view +status: + state: ConfigError diff --git a/resource_customizations/core.humio.com/HumioAlert/testdata/healthy.yaml b/resource_customizations/core.humio.com/HumioAlert/testdata/healthy.yaml new file mode 100644 index 0000000000000..c62feb15a2943 --- /dev/null +++ b/resource_customizations/core.humio.com/HumioAlert/testdata/healthy.yaml @@ -0,0 +1,29 @@ +apiVersion: core.humio.com/v1alpha1 +kind: HumioAlert +metadata: + creationTimestamp: '2022-12-08T02:03:07Z' + finalizers: + - core.humio.com/finalizer + generation: 3 + labels: + app.kubernetes.io/instance: humio-deploy + name: example-alert-1 + namespace: humio + resourceVersion: '10768150' + uid: eb138512-0661-47c1-a056-0e53f3b5fa1f +spec: + actions: + - move-to-alerts + description: Error counts + labels: + - test-label + managedClusterName: example-humiocluster + name: example-alert + query: + queryString: '#repo = humio | error = true | count() | _count > 0' + start: 24h + silenced: false + throttleTimeMillis: 60000 + viewName: example-view +status: + state: Exists \ No newline at end of file diff --git a/resource_customizations/core.humio.com/HumioAlert/testdata/notfound.yaml b/resource_customizations/core.humio.com/HumioAlert/testdata/notfound.yaml new file mode 100644 index 0000000000000..f694bf3788e5e --- /dev/null +++ b/resource_customizations/core.humio.com/HumioAlert/testdata/notfound.yaml @@ -0,0 +1,29 @@ +apiVersion: core.humio.com/v1alpha1 +kind: HumioAlert +metadata: + creationTimestamp: '2022-12-08T02:03:07Z' + finalizers: + - core.humio.com/finalizer + generation: 3 + labels: + app.kubernetes.io/instance: humio-deploy + name: example-alert-1 + namespace: humio + resourceVersion: '10768150' + uid: eb138512-0661-47c1-a056-0e53f3b5fa1f +spec: + actions: + - move-to-alerts + description: Error counts + labels: + - test-label + managedClusterName: example-humiocluster + name: example-alert + query: + queryString: '#repo = humio | error = true | count() | _count > 0' + start: 24h + silenced: false + throttleTimeMillis: 60000 + viewName: example-view +status: + state: NotFound \ No newline at end of file diff --git a/resource_customizations/core.humio.com/HumioAlert/testdata/progressing.yaml b/resource_customizations/core.humio.com/HumioAlert/testdata/progressing.yaml new file mode 100644 index 0000000000000..2740b020a9311 --- /dev/null +++ b/resource_customizations/core.humio.com/HumioAlert/testdata/progressing.yaml @@ -0,0 +1,27 @@ +apiVersion: core.humio.com/v1alpha1 +kind: HumioAlert +metadata: + creationTimestamp: '2022-12-08T02:03:07Z' + finalizers: + - core.humio.com/finalizer + generation: 3 + labels: + app.kubernetes.io/instance: humio-deploy + name: example-alert-1 + namespace: humio + resourceVersion: '10768150' + uid: eb138512-0661-47c1-a056-0e53f3b5fa1f +spec: + actions: + - move-to-alerts + description: Error counts + labels: + - test-label + managedClusterName: example-humiocluster + name: example-alert + query: + queryString: '#repo = humio | error = true | count() | _count > 0' + start: 24h + silenced: false + throttleTimeMillis: 60000 + viewName: example-view \ No newline at end of file diff --git a/resource_customizations/core.humio.com/HumioAlert/testdata/unknown.yaml b/resource_customizations/core.humio.com/HumioAlert/testdata/unknown.yaml new file mode 100644 index 0000000000000..edbf4b3355866 --- /dev/null +++ b/resource_customizations/core.humio.com/HumioAlert/testdata/unknown.yaml @@ -0,0 +1,29 @@ +apiVersion: core.humio.com/v1alpha1 +kind: HumioAlert +metadata: + creationTimestamp: '2022-12-08T02:03:07Z' + finalizers: + - core.humio.com/finalizer + generation: 3 + labels: + app.kubernetes.io/instance: humio-deploy + name: example-alert-1 + namespace: humio + resourceVersion: '10768150' + uid: eb138512-0661-47c1-a056-0e53f3b5fa1f +spec: + actions: + - move-to-alerts + description: Error counts + labels: + - test-label + managedClusterName: example-humiocluster + name: example-alert + query: + queryString: '#repo = humio | error = true | count() | _count > 0' + start: 24h + silenced: false + throttleTimeMillis: 60000 + viewName: example-view +status: + state: Unknown diff --git a/resource_customizations/core.humio.com/HumioCluster/health.lua b/resource_customizations/core.humio.com/HumioCluster/health.lua new file mode 100644 index 0000000000000..95a13ce855cec --- /dev/null +++ b/resource_customizations/core.humio.com/HumioCluster/health.lua @@ -0,0 +1,67 @@ + +hs = { + status = "Progressing", + message = "Update in progress" +} + +if obj.status == nil then + hs.status= "Progressing" + if obj.status.message ~= nil then + hs.message = obj.status.message + end +end + +if obj.status ~= nil then + if obj.status.state ~= nil then + if obj.status.state == "Running" then + hs.status = "Healthy" + if obj.status.message ~= nil then + hs.message = obj.status.message + else + hs.message = "Cluster is in a healthy running state" + end + end + if obj.status.state == "Restarting" then + hs.status = "Progressing" + if obj.status.message ~= nil then + hs.message = obj.status.message + else + hs.message = "Cluster pods are being restarted" + end + end + if obj.status.state == "Upgrading" then + hs.status = "Progressing" + if obj.status.message ~= nil then + hs.message = obj.status.message + else + hs.message = "Cluster pods are being upgraded" + end + end + if obj.status.state == "ConfigError" then + hs.status = "Degraded" + if obj.status.message ~= nil then + hs.message = obj.status.message + else + hs.message = "User-provided cluster specification resulted in a configuration error" + end + end + if obj.status.state == "Pending" then + hs.status = "Progressing" + if obj.status.message ~= nil then + hs.message = obj.status.message + else + hs.message = "Cluster is waiting on resources to be provisioned" + end + end + if obj.status.state == "Unknown" then + hs.status = "Unknown" + if obj.status.message ~= nil then + hs.message = obj.status.message + else + hs.message = "Component state: Unknown." + end + end + end + return hs +end +return hs \ No newline at end of file diff --git a/resource_customizations/core.humio.com/HumioCluster/health_test.yaml b/resource_customizations/core.humio.com/HumioCluster/health_test.yaml new file mode 100644 index 0000000000000..cb3696d2cff93 --- /dev/null +++ b/resource_customizations/core.humio.com/HumioCluster/health_test.yaml @@ -0,0 +1,29 @@ +tests: +- healthStatus: + status: Healthy + message: "Cluster is in a healthy running state" + inputPath: testdata/healthy.yaml +- healthStatus: + status: Progressing + message: "Cluster pods are being restarted" + inputPath: testdata/restarting.yaml +- healthStatus: + status: Progressing + message: "Cluster pods are being upgraded" + inputPath: testdata/upgrading.yaml +- healthStatus: + status: Progressing + message: "Cluster is waiting on resources to be provisioned" + inputPath: testdata/pending.yaml +- healthStatus: + status: Degraded + message: 'Secret "example-humiocluster-license" not found' + inputPath: testdata/configerror_custom.yaml +- healthStatus: + status: Degraded + message: 'User-provided cluster specification resulted in a configuration error' + inputPath: testdata/configerror.yaml +- healthStatus: + status: Unknown + message: "Component state: Unknown." + inputPath: testdata/unknown.yaml \ No newline at end of file diff --git a/resource_customizations/core.humio.com/HumioCluster/testdata/configerror.yaml b/resource_customizations/core.humio.com/HumioCluster/testdata/configerror.yaml new file mode 100644 index 0000000000000..0998dd7deac86 --- /dev/null +++ b/resource_customizations/core.humio.com/HumioCluster/testdata/configerror.yaml @@ -0,0 +1,30 @@ +apiVersion: core.humio.com/v1alpha1 +kind: HumioCluster +metadata: + creationTimestamp: '2022-12-09T05:48:10Z' + generation: 1 + labels: + app: humio + app.kubernetes.io/instance: humio-cluster-failtest + name: example-humiocluster + namespace: failtes +spec: + dataVolumePersistentVolumeClaimSpecTemplate: + accessModes: + - ReadWriteOnce + resources: + requests: + storage: 100Gi + storageClassName: longhorn + digestPartitionsCount: 2 + image: 'humio/humio-core:latest' + license: + secretKeyRef: + key: data + name: example-humiocluster-license + storagePartitionsCount: 2 + targetReplicationFactor: 1 + tls: + enabled: false +status: + state: ConfigError diff --git a/resource_customizations/core.humio.com/HumioCluster/testdata/configerror_custom.yaml b/resource_customizations/core.humio.com/HumioCluster/testdata/configerror_custom.yaml new file mode 100644 index 0000000000000..545b9f33ba4ea --- /dev/null +++ b/resource_customizations/core.humio.com/HumioCluster/testdata/configerror_custom.yaml @@ -0,0 +1,33 @@ +apiVersion: core.humio.com/v1alpha1 +kind: HumioCluster +metadata: + creationTimestamp: '2022-12-09T05:48:10Z' + generation: 1 + labels: + app: humio + app.kubernetes.io/instance: humio-cluster-failtest + name: example-humiocluster + namespace: failtes +spec: + dataVolumePersistentVolumeClaimSpecTemplate: + accessModes: + - ReadWriteOnce + resources: + requests: + storage: 100Gi + storageClassName: longhorn + digestPartitionsCount: 2 + image: 'humio/humio-core:latest' + license: + secretKeyRef: + key: data + name: example-humiocluster-license + storagePartitionsCount: 2 + targetReplicationFactor: 1 + tls: + enabled: false +status: + licenseStatus: {} + message: Secret "example-humiocluster-license" not found + observedGeneration: '1' + state: ConfigError diff --git a/resource_customizations/core.humio.com/HumioCluster/testdata/healthy.yaml b/resource_customizations/core.humio.com/HumioCluster/testdata/healthy.yaml new file mode 100644 index 0000000000000..4620df81e3159 --- /dev/null +++ b/resource_customizations/core.humio.com/HumioCluster/testdata/healthy.yaml @@ -0,0 +1,30 @@ +apiVersion: core.humio.com/v1alpha1 +kind: HumioCluster +metadata: + creationTimestamp: '2022-12-09T05:48:10Z' + generation: 1 + labels: + app: humio + app.kubernetes.io/instance: humio-cluster-failtest + name: example-humiocluster + namespace: failtes +spec: + dataVolumePersistentVolumeClaimSpecTemplate: + accessModes: + - ReadWriteOnce + resources: + requests: + storage: 100Gi + storageClassName: longhorn + digestPartitionsCount: 2 + image: 'humio/humio-core:latest' + license: + secretKeyRef: + key: data + name: example-humiocluster-license + storagePartitionsCount: 2 + targetReplicationFactor: 1 + tls: + enabled: false +status: + state: Running diff --git a/resource_customizations/core.humio.com/HumioCluster/testdata/pending.yaml b/resource_customizations/core.humio.com/HumioCluster/testdata/pending.yaml new file mode 100644 index 0000000000000..9cb591f5e56d9 --- /dev/null +++ b/resource_customizations/core.humio.com/HumioCluster/testdata/pending.yaml @@ -0,0 +1,30 @@ +apiVersion: core.humio.com/v1alpha1 +kind: HumioCluster +metadata: + creationTimestamp: '2022-12-09T05:48:10Z' + generation: 1 + labels: + app: humio + app.kubernetes.io/instance: humio-cluster-failtest + name: example-humiocluster + namespace: failtes +spec: + dataVolumePersistentVolumeClaimSpecTemplate: + accessModes: + - ReadWriteOnce + resources: + requests: + storage: 100Gi + storageClassName: longhorn + digestPartitionsCount: 2 + image: 'humio/humio-core:latest' + license: + secretKeyRef: + key: data + name: example-humiocluster-license + storagePartitionsCount: 2 + targetReplicationFactor: 1 + tls: + enabled: false +status: + state: Pending diff --git a/resource_customizations/core.humio.com/HumioCluster/testdata/progressing.yaml b/resource_customizations/core.humio.com/HumioCluster/testdata/progressing.yaml new file mode 100644 index 0000000000000..78a6fd893dd1c --- /dev/null +++ b/resource_customizations/core.humio.com/HumioCluster/testdata/progressing.yaml @@ -0,0 +1,28 @@ +apiVersion: core.humio.com/v1alpha1 +kind: HumioCluster +metadata: + creationTimestamp: '2022-12-09T05:48:10Z' + generation: 1 + labels: + app: humio + app.kubernetes.io/instance: humio-cluster-failtest + name: example-humiocluster + namespace: failtes +spec: + dataVolumePersistentVolumeClaimSpecTemplate: + accessModes: + - ReadWriteOnce + resources: + requests: + storage: 100Gi + storageClassName: longhorn + digestPartitionsCount: 2 + image: 'humio/humio-core:latest' + license: + secretKeyRef: + key: data + name: example-humiocluster-license + storagePartitionsCount: 2 + targetReplicationFactor: 1 + tls: + enabled: false diff --git a/resource_customizations/core.humio.com/HumioCluster/testdata/restarting.yaml b/resource_customizations/core.humio.com/HumioCluster/testdata/restarting.yaml new file mode 100644 index 0000000000000..84943fe0484c1 --- /dev/null +++ b/resource_customizations/core.humio.com/HumioCluster/testdata/restarting.yaml @@ -0,0 +1,30 @@ +apiVersion: core.humio.com/v1alpha1 +kind: HumioCluster +metadata: + creationTimestamp: '2022-12-09T05:48:10Z' + generation: 1 + labels: + app: humio + app.kubernetes.io/instance: humio-cluster-failtest + name: example-humiocluster + namespace: failtes +spec: + dataVolumePersistentVolumeClaimSpecTemplate: + accessModes: + - ReadWriteOnce + resources: + requests: + storage: 100Gi + storageClassName: longhorn + digestPartitionsCount: 2 + image: 'humio/humio-core:latest' + license: + secretKeyRef: + key: data + name: example-humiocluster-license + storagePartitionsCount: 2 + targetReplicationFactor: 1 + tls: + enabled: false +status: + state: Restarting diff --git a/resource_customizations/core.humio.com/HumioCluster/testdata/unknown.yaml b/resource_customizations/core.humio.com/HumioCluster/testdata/unknown.yaml new file mode 100644 index 0000000000000..1d08a2e885795 --- /dev/null +++ b/resource_customizations/core.humio.com/HumioCluster/testdata/unknown.yaml @@ -0,0 +1,33 @@ +apiVersion: core.humio.com/v1alpha1 +kind: HumioCluster +metadata: + creationTimestamp: '2022-12-09T05:48:10Z' + generation: 1 + labels: + app: humio + app.kubernetes.io/instance: humio-cluster-failtest + name: example-humiocluster + namespace: failtes +spec: + dataVolumePersistentVolumeClaimSpecTemplate: + accessModes: + - ReadWriteOnce + resources: + requests: + storage: 100Gi + storageClassName: longhorn + digestPartitionsCount: 2 + image: 'humio/humio-core:latest' + license: + secretKeyRef: + key: data + name: example-humiocluster-license + storagePartitionsCount: 2 + targetReplicationFactor: 1 + tls: + enabled: false +status: + state: Unknown + + + diff --git a/resource_customizations/core.humio.com/HumioCluster/testdata/upgrading.yaml b/resource_customizations/core.humio.com/HumioCluster/testdata/upgrading.yaml new file mode 100644 index 0000000000000..76a322288aab0 --- /dev/null +++ b/resource_customizations/core.humio.com/HumioCluster/testdata/upgrading.yaml @@ -0,0 +1,33 @@ +apiVersion: core.humio.com/v1alpha1 +kind: HumioCluster +metadata: + creationTimestamp: '2022-12-09T05:48:10Z' + generation: 1 + labels: + app: humio + app.kubernetes.io/instance: humio-cluster-failtest + name: example-humiocluster + namespace: failtes +spec: + dataVolumePersistentVolumeClaimSpecTemplate: + accessModes: + - ReadWriteOnce + resources: + requests: + storage: 100Gi + storageClassName: longhorn + digestPartitionsCount: 2 + image: 'humio/humio-core:latest' + license: + secretKeyRef: + key: data + name: example-humiocluster-license + storagePartitionsCount: 2 + targetReplicationFactor: 1 + tls: + enabled: false +status: + state: Upgrading + + + diff --git a/resource_customizations/core.humio.com/HumioIngestToken/health.lua b/resource_customizations/core.humio.com/HumioIngestToken/health.lua new file mode 100644 index 0000000000000..a99a0eb2e0d59 --- /dev/null +++ b/resource_customizations/core.humio.com/HumioIngestToken/health.lua @@ -0,0 +1,30 @@ +hs = { + status = "Progressing", + message = "Update in progress" +} +if obj.status ~= nil then + if obj.status.state ~= nil then + if obj.status.state == "Exists" then + hs.status = "Healthy" + hs.message = "Component state: Exists." + end + if obj.status.state == "NotFound" then + hs.status = "Missing" + hs.message = "Component state: NotFound." + end + if obj.status.state == "ConfigError" then + hs.status = "Degraded" + hs.message = "Component state: ConfigError." + end + if obj.status.state == "Unknown" then + hs.status = "Unknown" + hs.message = "Component state: Unknown." + end + if obj.status.state == "Unknown" then + hs.status = "Unknown" + hs.message = "Component state: Unknown." + end + end + return hs +end +return hs \ No newline at end of file diff --git a/resource_customizations/core.humio.com/HumioIngestToken/health_test.yaml b/resource_customizations/core.humio.com/HumioIngestToken/health_test.yaml new file mode 100644 index 0000000000000..f90baf9bccc9f --- /dev/null +++ b/resource_customizations/core.humio.com/HumioIngestToken/health_test.yaml @@ -0,0 +1,21 @@ +tests: +- healthStatus: + status: Healthy + message: "Component state: Exists." + inputPath: testdata/healthy.yaml +- healthStatus: + status: Missing + message: "Component state: NotFound." + inputPath: testdata/notfound.yaml +- healthStatus: + status: Degraded + message: "Component state: ConfigError." + inputPath: testdata/configerror.yaml +- healthStatus: + status: Unknown + message: "Component state: Unknown." + inputPath: testdata/unknown.yaml +- healthStatus: + status: Progressing + message: "Update in progress" + inputPath: testdata/progressing.yaml diff --git a/resource_customizations/core.humio.com/HumioIngestToken/testdata/configerror.yaml b/resource_customizations/core.humio.com/HumioIngestToken/testdata/configerror.yaml new file mode 100644 index 0000000000000..df1ed30141ded --- /dev/null +++ b/resource_customizations/core.humio.com/HumioIngestToken/testdata/configerror.yaml @@ -0,0 +1,20 @@ +apiVersion: core.humio.com/v1alpha1 +kind: HumioIngestToken +metadata: + finalizers: + - core.humio.com/finalizer + generation: 1 + labels: + app.kubernetes.io/instance: humio-deploy + name: test-token-1 + namespace: humio + resourceVersion: '10768058' + uid: f0a51e3d-8b64-483c-99fa-d7184a840707 +spec: + managedClusterName: example-humiocluster + name: test-token + parserName: json + repositoryName: example-1 + tokenSecretName: example-test-token-1 +status: + state: ConfigError diff --git a/resource_customizations/core.humio.com/HumioIngestToken/testdata/healthy.yaml b/resource_customizations/core.humio.com/HumioIngestToken/testdata/healthy.yaml new file mode 100644 index 0000000000000..3eb03b98569b8 --- /dev/null +++ b/resource_customizations/core.humio.com/HumioIngestToken/testdata/healthy.yaml @@ -0,0 +1,20 @@ +apiVersion: core.humio.com/v1alpha1 +kind: HumioIngestToken +metadata: + finalizers: + - core.humio.com/finalizer + generation: 1 + labels: + app.kubernetes.io/instance: humio-deploy + name: test-token-1 + namespace: humio + resourceVersion: '10768058' + uid: f0a51e3d-8b64-483c-99fa-d7184a840707 +spec: + managedClusterName: example-humiocluster + name: test-token + parserName: json + repositoryName: example-1 + tokenSecretName: example-test-token-1 +status: + state: Exists diff --git a/resource_customizations/core.humio.com/HumioIngestToken/testdata/notfound.yaml b/resource_customizations/core.humio.com/HumioIngestToken/testdata/notfound.yaml new file mode 100644 index 0000000000000..6d36afdc1ef04 --- /dev/null +++ b/resource_customizations/core.humio.com/HumioIngestToken/testdata/notfound.yaml @@ -0,0 +1,20 @@ +apiVersion: core.humio.com/v1alpha1 +kind: HumioIngestToken +metadata: + finalizers: + - core.humio.com/finalizer + generation: 1 + labels: + app.kubernetes.io/instance: humio-deploy + name: test-token-1 + namespace: humio + resourceVersion: '10768058' + uid: f0a51e3d-8b64-483c-99fa-d7184a840707 +spec: + managedClusterName: example-humiocluster + name: test-token + parserName: json + repositoryName: example-1 + tokenSecretName: example-test-token-1 +status: + state: NotFound \ No newline at end of file diff --git a/resource_customizations/core.humio.com/HumioIngestToken/testdata/progressing.yaml b/resource_customizations/core.humio.com/HumioIngestToken/testdata/progressing.yaml new file mode 100644 index 0000000000000..5dd35fc65c62a --- /dev/null +++ b/resource_customizations/core.humio.com/HumioIngestToken/testdata/progressing.yaml @@ -0,0 +1,18 @@ +apiVersion: core.humio.com/v1alpha1 +kind: HumioIngestToken +metadata: + finalizers: + - core.humio.com/finalizer + generation: 1 + labels: + app.kubernetes.io/instance: humio-deploy + name: test-token-1 + namespace: humio + resourceVersion: '10768058' + uid: f0a51e3d-8b64-483c-99fa-d7184a840707 +spec: + managedClusterName: example-humiocluster + name: test-token + parserName: json + repositoryName: example-1 + tokenSecretName: example-test-token-1 \ No newline at end of file diff --git a/resource_customizations/core.humio.com/HumioIngestToken/testdata/unknown.yaml b/resource_customizations/core.humio.com/HumioIngestToken/testdata/unknown.yaml new file mode 100644 index 0000000000000..3b5a50e620823 --- /dev/null +++ b/resource_customizations/core.humio.com/HumioIngestToken/testdata/unknown.yaml @@ -0,0 +1,20 @@ +apiVersion: core.humio.com/v1alpha1 +kind: HumioIngestToken +metadata: + finalizers: + - core.humio.com/finalizer + generation: 1 + labels: + app.kubernetes.io/instance: humio-deploy + name: test-token-1 + namespace: humio + resourceVersion: '10768058' + uid: f0a51e3d-8b64-483c-99fa-d7184a840707 +spec: + managedClusterName: example-humiocluster + name: test-token + parserName: json + repositoryName: example-1 + tokenSecretName: example-test-token-1 +status: + state: Unknown diff --git a/resource_customizations/core.humio.com/HumioParser/health.lua b/resource_customizations/core.humio.com/HumioParser/health.lua new file mode 100644 index 0000000000000..a99a0eb2e0d59 --- /dev/null +++ b/resource_customizations/core.humio.com/HumioParser/health.lua @@ -0,0 +1,30 @@ +hs = { + status = "Progressing", + message = "Update in progress" +} +if obj.status ~= nil then + if obj.status.state ~= nil then + if obj.status.state == "Exists" then + hs.status = "Healthy" + hs.message = "Component state: Exists." + end + if obj.status.state == "NotFound" then + hs.status = "Missing" + hs.message = "Component state: NotFound." + end + if obj.status.state == "ConfigError" then + hs.status = "Degraded" + hs.message = "Component state: ConfigError." + end + if obj.status.state == "Unknown" then + hs.status = "Unknown" + hs.message = "Component state: Unknown." + end + if obj.status.state == "Unknown" then + hs.status = "Unknown" + hs.message = "Component state: Unknown." + end + end + return hs +end +return hs \ No newline at end of file diff --git a/resource_customizations/core.humio.com/HumioParser/health_test.yaml b/resource_customizations/core.humio.com/HumioParser/health_test.yaml new file mode 100644 index 0000000000000..f90baf9bccc9f --- /dev/null +++ b/resource_customizations/core.humio.com/HumioParser/health_test.yaml @@ -0,0 +1,21 @@ +tests: +- healthStatus: + status: Healthy + message: "Component state: Exists." + inputPath: testdata/healthy.yaml +- healthStatus: + status: Missing + message: "Component state: NotFound." + inputPath: testdata/notfound.yaml +- healthStatus: + status: Degraded + message: "Component state: ConfigError." + inputPath: testdata/configerror.yaml +- healthStatus: + status: Unknown + message: "Component state: Unknown." + inputPath: testdata/unknown.yaml +- healthStatus: + status: Progressing + message: "Update in progress" + inputPath: testdata/progressing.yaml diff --git a/resource_customizations/core.humio.com/HumioParser/testdata/configerror.yaml b/resource_customizations/core.humio.com/HumioParser/testdata/configerror.yaml new file mode 100644 index 0000000000000..f1334b3110848 --- /dev/null +++ b/resource_customizations/core.humio.com/HumioParser/testdata/configerror.yaml @@ -0,0 +1,39 @@ +apiVersion: core.humio.com/v1alpha1 +kind: HumioParser +metadata: + creationTimestamp: '2022-12-08T02:03:07Z' + finalizers: + - core.humio.com/finalizer + generation: 1 + labels: + app.kubernetes.io/instance: humio-deploy + name: example-1-parser + namespace: humio + resourceVersion: '10768079' + uid: 5641590d-b8e9-42e8-a544-d0673bf0e1a2 +spec: + managedClusterName: example-humiocluster + name: example-1 + parserScript: > + /(?\S+)\s+-\s+(?\S+)\s+\[(?<@timestamp>.*)\]\s+"((?\S+)\s+(?\S+)?\s+(?\S+)?|-)"\s+(?\d+)\s+(?\S+)\s+"(?[^"]*)"\s+"(?[^"]*)"\s*(?(\d|\.)+)?/ + | parseTimestamp(format="dd/MMM/yyyy:HH:mm:ss Z", field=@timestamp) + repositoryName: example-repo + tagFields: + - statuscode + - client + testData: + - >- + 4.4.4.4 - - [12/Dec/2015:18:25:11 +0100] "GET /administrator/ + HTTP/1.1" 200 4263 "-" "Mozilla/5.0 (Windows NT 6.0; rv:34.0) + Gecko/20100101 Firefox/34.0" "-" + - >- + 4.4.4.4 - - [12/Dec/2015:18:25:11 +0100] "POST + /administrator/index.php HTTP/1.1" 200 4494 + "http://github.com/administrator/" "Mozilla/5.0 (Windows NT 6.0; + rv:34.0) Gecko/20100101 Firefox/34.0" "-" + - >- + 4.4.4.4 - - [12/Dec/2015:18:31:08 +0100] "GET /administrator/ + HTTP/1.1" 200 4263 "-" "Mozilla/5.0 (Windows NT 6.0; rv:34.0) + Gecko/20100101 Firefox/34.0" "-" +status: + state: ConfigError diff --git a/resource_customizations/core.humio.com/HumioParser/testdata/healthy.yaml b/resource_customizations/core.humio.com/HumioParser/testdata/healthy.yaml new file mode 100644 index 0000000000000..9a4d92d25c75a --- /dev/null +++ b/resource_customizations/core.humio.com/HumioParser/testdata/healthy.yaml @@ -0,0 +1,39 @@ +apiVersion: core.humio.com/v1alpha1 +kind: HumioParser +metadata: + creationTimestamp: '2022-12-08T02:03:07Z' + finalizers: + - core.humio.com/finalizer + generation: 1 + labels: + app.kubernetes.io/instance: humio-deploy + name: example-1-parser + namespace: humio + resourceVersion: '10768079' + uid: 5641590d-b8e9-42e8-a544-d0673bf0e1a2 +spec: + managedClusterName: example-humiocluster + name: example-1 + parserScript: > + /(?\S+)\s+-\s+(?\S+)\s+\[(?<@timestamp>.*)\]\s+"((?\S+)\s+(?\S+)?\s+(?\S+)?|-)"\s+(?\d+)\s+(?\S+)\s+"(?[^"]*)"\s+"(?[^"]*)"\s*(?(\d|\.)+)?/ + | parseTimestamp(format="dd/MMM/yyyy:HH:mm:ss Z", field=@timestamp) + repositoryName: example-repo + tagFields: + - statuscode + - client + testData: + - >- + 4.4.4.4 - - [12/Dec/2015:18:25:11 +0100] "GET /administrator/ + HTTP/1.1" 200 4263 "-" "Mozilla/5.0 (Windows NT 6.0; rv:34.0) + Gecko/20100101 Firefox/34.0" "-" + - >- + 4.4.4.4 - - [12/Dec/2015:18:25:11 +0100] "POST + /administrator/index.php HTTP/1.1" 200 4494 + "http://github.com/administrator/" "Mozilla/5.0 (Windows NT 6.0; + rv:34.0) Gecko/20100101 Firefox/34.0" "-" + - >- + 4.4.4.4 - - [12/Dec/2015:18:31:08 +0100] "GET /administrator/ + HTTP/1.1" 200 4263 "-" "Mozilla/5.0 (Windows NT 6.0; rv:34.0) + Gecko/20100101 Firefox/34.0" "-" +status: + state: Exists diff --git a/resource_customizations/core.humio.com/HumioParser/testdata/notfound.yaml b/resource_customizations/core.humio.com/HumioParser/testdata/notfound.yaml new file mode 100644 index 0000000000000..87565368f42c5 --- /dev/null +++ b/resource_customizations/core.humio.com/HumioParser/testdata/notfound.yaml @@ -0,0 +1,39 @@ +apiVersion: core.humio.com/v1alpha1 +kind: HumioParser +metadata: + creationTimestamp: '2022-12-08T02:03:07Z' + finalizers: + - core.humio.com/finalizer + generation: 1 + labels: + app.kubernetes.io/instance: humio-deploy + name: example-1-parser + namespace: humio + resourceVersion: '10768079' + uid: 5641590d-b8e9-42e8-a544-d0673bf0e1a2 +spec: + managedClusterName: example-humiocluster + name: example-1 + parserScript: > + /(?\S+)\s+-\s+(?\S+)\s+\[(?<@timestamp>.*)\]\s+"((?\S+)\s+(?\S+)?\s+(?\S+)?|-)"\s+(?\d+)\s+(?\S+)\s+"(?[^"]*)"\s+"(?[^"]*)"\s*(?(\d|\.)+)?/ + | parseTimestamp(format="dd/MMM/yyyy:HH:mm:ss Z", field=@timestamp) + repositoryName: example-repo + tagFields: + - statuscode + - client + testData: + - >- + 4.4.4.4 - - [12/Dec/2015:18:25:11 +0100] "GET /administrator/ + HTTP/1.1" 200 4263 "-" "Mozilla/5.0 (Windows NT 6.0; rv:34.0) + Gecko/20100101 Firefox/34.0" "-" + - >- + 4.4.4.4 - - [12/Dec/2015:18:25:11 +0100] "POST + /administrator/index.php HTTP/1.1" 200 4494 + "http://github.com/administrator/" "Mozilla/5.0 (Windows NT 6.0; + rv:34.0) Gecko/20100101 Firefox/34.0" "-" + - >- + 4.4.4.4 - - [12/Dec/2015:18:31:08 +0100] "GET /administrator/ + HTTP/1.1" 200 4263 "-" "Mozilla/5.0 (Windows NT 6.0; rv:34.0) + Gecko/20100101 Firefox/34.0" "-" +status: + state: NotFound \ No newline at end of file diff --git a/resource_customizations/core.humio.com/HumioParser/testdata/progressing.yaml b/resource_customizations/core.humio.com/HumioParser/testdata/progressing.yaml new file mode 100644 index 0000000000000..e46557b7931e2 --- /dev/null +++ b/resource_customizations/core.humio.com/HumioParser/testdata/progressing.yaml @@ -0,0 +1,37 @@ +apiVersion: core.humio.com/v1alpha1 +kind: HumioParser +metadata: + creationTimestamp: '2022-12-08T02:03:07Z' + finalizers: + - core.humio.com/finalizer + generation: 1 + labels: + app.kubernetes.io/instance: humio-deploy + name: example-1-parser + namespace: humio + resourceVersion: '10768079' + uid: 5641590d-b8e9-42e8-a544-d0673bf0e1a2 +spec: + managedClusterName: example-humiocluster + name: example-1 + parserScript: > + /(?\S+)\s+-\s+(?\S+)\s+\[(?<@timestamp>.*)\]\s+"((?\S+)\s+(?\S+)?\s+(?\S+)?|-)"\s+(?\d+)\s+(?\S+)\s+"(?[^"]*)"\s+"(?[^"]*)"\s*(?(\d|\.)+)?/ + | parseTimestamp(format="dd/MMM/yyyy:HH:mm:ss Z", field=@timestamp) + repositoryName: example-repo + tagFields: + - statuscode + - client + testData: + - >- + 4.4.4.4 - - [12/Dec/2015:18:25:11 +0100] "GET /administrator/ + HTTP/1.1" 200 4263 "-" "Mozilla/5.0 (Windows NT 6.0; rv:34.0) + Gecko/20100101 Firefox/34.0" "-" + - >- + 4.4.4.4 - - [12/Dec/2015:18:25:11 +0100] "POST + /administrator/index.php HTTP/1.1" 200 4494 + "http://github.com/administrator/" "Mozilla/5.0 (Windows NT 6.0; + rv:34.0) Gecko/20100101 Firefox/34.0" "-" + - >- + 4.4.4.4 - - [12/Dec/2015:18:31:08 +0100] "GET /administrator/ + HTTP/1.1" 200 4263 "-" "Mozilla/5.0 (Windows NT 6.0; rv:34.0) + Gecko/20100101 Firefox/34.0" "-" \ No newline at end of file diff --git a/resource_customizations/core.humio.com/HumioParser/testdata/unknown.yaml b/resource_customizations/core.humio.com/HumioParser/testdata/unknown.yaml new file mode 100644 index 0000000000000..9def4c7cbba62 --- /dev/null +++ b/resource_customizations/core.humio.com/HumioParser/testdata/unknown.yaml @@ -0,0 +1,39 @@ +apiVersion: core.humio.com/v1alpha1 +kind: HumioParser +metadata: + creationTimestamp: '2022-12-08T02:03:07Z' + finalizers: + - core.humio.com/finalizer + generation: 1 + labels: + app.kubernetes.io/instance: humio-deploy + name: example-1-parser + namespace: humio + resourceVersion: '10768079' + uid: 5641590d-b8e9-42e8-a544-d0673bf0e1a2 +spec: + managedClusterName: example-humiocluster + name: example-1 + parserScript: > + /(?\S+)\s+-\s+(?\S+)\s+\[(?<@timestamp>.*)\]\s+"((?\S+)\s+(?\S+)?\s+(?\S+)?|-)"\s+(?\d+)\s+(?\S+)\s+"(?[^"]*)"\s+"(?[^"]*)"\s*(?(\d|\.)+)?/ + | parseTimestamp(format="dd/MMM/yyyy:HH:mm:ss Z", field=@timestamp) + repositoryName: example-repo + tagFields: + - statuscode + - client + testData: + - >- + 4.4.4.4 - - [12/Dec/2015:18:25:11 +0100] "GET /administrator/ + HTTP/1.1" 200 4263 "-" "Mozilla/5.0 (Windows NT 6.0; rv:34.0) + Gecko/20100101 Firefox/34.0" "-" + - >- + 4.4.4.4 - - [12/Dec/2015:18:25:11 +0100] "POST + /administrator/index.php HTTP/1.1" 200 4494 + "http://github.com/administrator/" "Mozilla/5.0 (Windows NT 6.0; + rv:34.0) Gecko/20100101 Firefox/34.0" "-" + - >- + 4.4.4.4 - - [12/Dec/2015:18:31:08 +0100] "GET /administrator/ + HTTP/1.1" 200 4263 "-" "Mozilla/5.0 (Windows NT 6.0; rv:34.0) + Gecko/20100101 Firefox/34.0" "-" +status: + state: Unknown diff --git a/resource_customizations/core.humio.com/HumioRepository/health.lua b/resource_customizations/core.humio.com/HumioRepository/health.lua new file mode 100644 index 0000000000000..a99a0eb2e0d59 --- /dev/null +++ b/resource_customizations/core.humio.com/HumioRepository/health.lua @@ -0,0 +1,30 @@ +hs = { + status = "Progressing", + message = "Update in progress" +} +if obj.status ~= nil then + if obj.status.state ~= nil then + if obj.status.state == "Exists" then + hs.status = "Healthy" + hs.message = "Component state: Exists." + end + if obj.status.state == "NotFound" then + hs.status = "Missing" + hs.message = "Component state: NotFound." + end + if obj.status.state == "ConfigError" then + hs.status = "Degraded" + hs.message = "Component state: ConfigError." + end + if obj.status.state == "Unknown" then + hs.status = "Unknown" + hs.message = "Component state: Unknown." + end + if obj.status.state == "Unknown" then + hs.status = "Unknown" + hs.message = "Component state: Unknown." + end + end + return hs +end +return hs \ No newline at end of file diff --git a/resource_customizations/core.humio.com/HumioRepository/health_test.yaml b/resource_customizations/core.humio.com/HumioRepository/health_test.yaml new file mode 100644 index 0000000000000..f90baf9bccc9f --- /dev/null +++ b/resource_customizations/core.humio.com/HumioRepository/health_test.yaml @@ -0,0 +1,21 @@ +tests: +- healthStatus: + status: Healthy + message: "Component state: Exists." + inputPath: testdata/healthy.yaml +- healthStatus: + status: Missing + message: "Component state: NotFound." + inputPath: testdata/notfound.yaml +- healthStatus: + status: Degraded + message: "Component state: ConfigError." + inputPath: testdata/configerror.yaml +- healthStatus: + status: Unknown + message: "Component state: Unknown." + inputPath: testdata/unknown.yaml +- healthStatus: + status: Progressing + message: "Update in progress" + inputPath: testdata/progressing.yaml diff --git a/resource_customizations/core.humio.com/HumioRepository/testdata/configerror.yaml b/resource_customizations/core.humio.com/HumioRepository/testdata/configerror.yaml new file mode 100644 index 0000000000000..01286b1f77b0b --- /dev/null +++ b/resource_customizations/core.humio.com/HumioRepository/testdata/configerror.yaml @@ -0,0 +1,24 @@ +apiVersion: core.humio.com/v1alpha1 +kind: HumioRepository +metadata: + annotations: + creationTimestamp: '2022-12-08T02:03:07Z' + finalizers: + - core.humio.com/finalizer + generation: 3 + labels: + app.kubernetes.io/instance: humio-deploy + name: example-repo-1 + namespace: humio + resourceVersion: '10768154' + uid: bb626adb-1cdd-4db2-baa8-ae5e30132603 +spec: + description: example description + managedClusterName: example-humiocluster + name: example-repo + retention: + ingestSizeInGB: 4 + storageSizeInGB: 50 + timeInDays: 730 +status: + state: ConfigError diff --git a/resource_customizations/core.humio.com/HumioRepository/testdata/healthy.yaml b/resource_customizations/core.humio.com/HumioRepository/testdata/healthy.yaml new file mode 100644 index 0000000000000..2b2443047faf9 --- /dev/null +++ b/resource_customizations/core.humio.com/HumioRepository/testdata/healthy.yaml @@ -0,0 +1,24 @@ +apiVersion: core.humio.com/v1alpha1 +kind: HumioRepository +metadata: + annotations: + creationTimestamp: '2022-12-08T02:03:07Z' + finalizers: + - core.humio.com/finalizer + generation: 3 + labels: + app.kubernetes.io/instance: humio-deploy + name: example-repo-1 + namespace: humio + resourceVersion: '10768154' + uid: bb626adb-1cdd-4db2-baa8-ae5e30132603 +spec: + description: example description + managedClusterName: example-humiocluster + name: example-repo + retention: + ingestSizeInGB: 4 + storageSizeInGB: 50 + timeInDays: 730 +status: + state: Exists \ No newline at end of file diff --git a/resource_customizations/core.humio.com/HumioRepository/testdata/notfound.yaml b/resource_customizations/core.humio.com/HumioRepository/testdata/notfound.yaml new file mode 100644 index 0000000000000..86a3c6cfa10ef --- /dev/null +++ b/resource_customizations/core.humio.com/HumioRepository/testdata/notfound.yaml @@ -0,0 +1,24 @@ +apiVersion: core.humio.com/v1alpha1 +kind: HumioRepository +metadata: + annotations: + creationTimestamp: '2022-12-08T02:03:07Z' + finalizers: + - core.humio.com/finalizer + generation: 3 + labels: + app.kubernetes.io/instance: humio-deploy + name: example-repo-1 + namespace: humio + resourceVersion: '10768154' + uid: bb626adb-1cdd-4db2-baa8-ae5e30132603 +spec: + description: example description + managedClusterName: example-humiocluster + name: example-repo + retention: + ingestSizeInGB: 4 + storageSizeInGB: 50 + timeInDays: 730 +status: + state: NotFound \ No newline at end of file diff --git a/resource_customizations/core.humio.com/HumioRepository/testdata/progressing.yaml b/resource_customizations/core.humio.com/HumioRepository/testdata/progressing.yaml new file mode 100644 index 0000000000000..9c40d176e131e --- /dev/null +++ b/resource_customizations/core.humio.com/HumioRepository/testdata/progressing.yaml @@ -0,0 +1,22 @@ +apiVersion: core.humio.com/v1alpha1 +kind: HumioRepository +metadata: + annotations: + creationTimestamp: '2022-12-08T02:03:07Z' + finalizers: + - core.humio.com/finalizer + generation: 3 + labels: + app.kubernetes.io/instance: humio-deploy + name: example-repo-1 + namespace: humio + resourceVersion: '10768154' + uid: bb626adb-1cdd-4db2-baa8-ae5e30132603 +spec: + description: example description + managedClusterName: example-humiocluster + name: example-repo + retention: + ingestSizeInGB: 4 + storageSizeInGB: 50 + timeInDays: 730 \ No newline at end of file diff --git a/resource_customizations/core.humio.com/HumioRepository/testdata/unknown.yaml b/resource_customizations/core.humio.com/HumioRepository/testdata/unknown.yaml new file mode 100644 index 0000000000000..22d343a44eec8 --- /dev/null +++ b/resource_customizations/core.humio.com/HumioRepository/testdata/unknown.yaml @@ -0,0 +1,24 @@ +apiVersion: core.humio.com/v1alpha1 +kind: HumioRepository +metadata: + annotations: + creationTimestamp: '2022-12-08T02:03:07Z' + finalizers: + - core.humio.com/finalizer + generation: 3 + labels: + app.kubernetes.io/instance: humio-deploy + name: example-repo-1 + namespace: humio + resourceVersion: '10768154' + uid: bb626adb-1cdd-4db2-baa8-ae5e30132603 +spec: + description: example description + managedClusterName: example-humiocluster + name: example-repo + retention: + ingestSizeInGB: 4 + storageSizeInGB: 50 + timeInDays: 730 +status: + state: Unknown diff --git a/resource_customizations/core.humio.com/HumioView/health.lua b/resource_customizations/core.humio.com/HumioView/health.lua new file mode 100644 index 0000000000000..e11956922fb7a --- /dev/null +++ b/resource_customizations/core.humio.com/HumioView/health.lua @@ -0,0 +1,26 @@ +hs = { + status = "Progressing", + message = "Update in progress" +} +if obj.status ~= nil then + if obj.status.state ~= nil then + if obj.status.state == "Exists" then + hs.status = "Healthy" + hs.message = "Component state: Exists." + end + if obj.status.state == "NotFound" then + hs.status = "Missing" + hs.message = "Component state: NotFound." + end + if obj.status.state == "ConfigError" then + hs.status = "Degraded" + hs.message = "Component state: ConfigError." + end + if obj.status.state == "Unknown" then + hs.status = "Unknown" + hs.message = "Component state: Unknown." + end + end + return hs +end +return hs diff --git a/resource_customizations/core.humio.com/HumioView/health_test.yaml b/resource_customizations/core.humio.com/HumioView/health_test.yaml new file mode 100644 index 0000000000000..f90baf9bccc9f --- /dev/null +++ b/resource_customizations/core.humio.com/HumioView/health_test.yaml @@ -0,0 +1,21 @@ +tests: +- healthStatus: + status: Healthy + message: "Component state: Exists." + inputPath: testdata/healthy.yaml +- healthStatus: + status: Missing + message: "Component state: NotFound." + inputPath: testdata/notfound.yaml +- healthStatus: + status: Degraded + message: "Component state: ConfigError." + inputPath: testdata/configerror.yaml +- healthStatus: + status: Unknown + message: "Component state: Unknown." + inputPath: testdata/unknown.yaml +- healthStatus: + status: Progressing + message: "Update in progress" + inputPath: testdata/progressing.yaml diff --git a/resource_customizations/core.humio.com/HumioView/testdata/configerror.yaml b/resource_customizations/core.humio.com/HumioView/testdata/configerror.yaml new file mode 100644 index 0000000000000..917c1c8b5eaab --- /dev/null +++ b/resource_customizations/core.humio.com/HumioView/testdata/configerror.yaml @@ -0,0 +1,24 @@ +apiVersion: core.humio.com/v1alpha1 +kind: HumioView +metadata: + annotations: + creationTimestamp: '2022-12-08T02:03:07Z' + finalizers: + - core.humio.com/finalizer + generation: 1 + labels: + app.kubernetes.io/instance: humio-deploy + name: example-view + namespace: humio + resourceVersion: '10768121' + uid: 2c49ac77-1be2-4e2c-a473-44f3f0e03453 +spec: + connections: + - filter: '*' + repositoryName: example-1 + - filter: '*' + repositoryName: example-2 + managedClusterName: example-humiocluster + name: example-view +status: + state: ConfigError diff --git a/resource_customizations/core.humio.com/HumioView/testdata/healthy.yaml b/resource_customizations/core.humio.com/HumioView/testdata/healthy.yaml new file mode 100644 index 0000000000000..7c75082be60a0 --- /dev/null +++ b/resource_customizations/core.humio.com/HumioView/testdata/healthy.yaml @@ -0,0 +1,24 @@ +apiVersion: core.humio.com/v1alpha1 +kind: HumioView +metadata: + annotations: + creationTimestamp: '2022-12-08T02:03:07Z' + finalizers: + - core.humio.com/finalizer + generation: 1 + labels: + app.kubernetes.io/instance: humio-deploy + name: example-view + namespace: humio + resourceVersion: '10768121' + uid: 2c49ac77-1be2-4e2c-a473-44f3f0e03453 +spec: + connections: + - filter: '*' + repositoryName: example-1 + - filter: '*' + repositoryName: example-2 + managedClusterName: example-humiocluster + name: example-view +status: + state: Exists \ No newline at end of file diff --git a/resource_customizations/core.humio.com/HumioView/testdata/notfound.yaml b/resource_customizations/core.humio.com/HumioView/testdata/notfound.yaml new file mode 100644 index 0000000000000..2d929ef2ae584 --- /dev/null +++ b/resource_customizations/core.humio.com/HumioView/testdata/notfound.yaml @@ -0,0 +1,24 @@ +apiVersion: core.humio.com/v1alpha1 +kind: HumioView +metadata: + annotations: + creationTimestamp: '2022-12-08T02:03:07Z' + finalizers: + - core.humio.com/finalizer + generation: 1 + labels: + app.kubernetes.io/instance: humio-deploy + name: example-view + namespace: humio + resourceVersion: '10768121' + uid: 2c49ac77-1be2-4e2c-a473-44f3f0e03453 +spec: + connections: + - filter: '*' + repositoryName: example-1 + - filter: '*' + repositoryName: example-2 + managedClusterName: example-humiocluster + name: example-view +status: + state: NotFound \ No newline at end of file diff --git a/resource_customizations/core.humio.com/HumioView/testdata/progressing.yaml b/resource_customizations/core.humio.com/HumioView/testdata/progressing.yaml new file mode 100644 index 0000000000000..4b44ad4cbbf83 --- /dev/null +++ b/resource_customizations/core.humio.com/HumioView/testdata/progressing.yaml @@ -0,0 +1,22 @@ +apiVersion: core.humio.com/v1alpha1 +kind: HumioView +metadata: + annotations: + creationTimestamp: '2022-12-08T02:03:07Z' + finalizers: + - core.humio.com/finalizer + generation: 1 + labels: + app.kubernetes.io/instance: humio-deploy + name: example-view + namespace: humio + resourceVersion: '10768121' + uid: 2c49ac77-1be2-4e2c-a473-44f3f0e03453 +spec: + connections: + - filter: '*' + repositoryName: example-1 + - filter: '*' + repositoryName: example-2 + managedClusterName: example-humiocluster + name: example-view \ No newline at end of file diff --git a/resource_customizations/core.humio.com/HumioView/testdata/unknown.yaml b/resource_customizations/core.humio.com/HumioView/testdata/unknown.yaml new file mode 100644 index 0000000000000..ac4453048e0e7 --- /dev/null +++ b/resource_customizations/core.humio.com/HumioView/testdata/unknown.yaml @@ -0,0 +1,24 @@ +apiVersion: core.humio.com/v1alpha1 +kind: HumioView +metadata: + annotations: + creationTimestamp: '2022-12-08T02:03:07Z' + finalizers: + - core.humio.com/finalizer + generation: 1 + labels: + app.kubernetes.io/instance: humio-deploy + name: example-view + namespace: humio + resourceVersion: '10768121' + uid: 2c49ac77-1be2-4e2c-a473-44f3f0e03453 +spec: + connections: + - filter: '*' + repositoryName: example-1 + - filter: '*' + repositoryName: example-2 + managedClusterName: example-humiocluster + name: example-view +status: + state: Unknown From 440fbac12b7469fd3ed4a6e1f6ace5cf7eacaf39 Mon Sep 17 00:00:00 2001 From: Mikael Sennerholm Date: Wed, 8 May 2024 18:22:05 +0200 Subject: [PATCH 083/206] feat(health): Implement k8s.mariadb.com CRD health checks (#17995) * Copied MariaDB from old name and change to new name Adding Backup, SqlJobs, Grant, Database and User Signed-off-by: Mikael Sennerholm * Set progressing as default Signed-off-by: Mikael Sennerholm --------- Signed-off-by: Mikael Sennerholm Co-authored-by: pasha-codefresh --- .../k8s.mariadb.com/Backup/health.lua | 25 +++++++++++ .../k8s.mariadb.com/Backup/health_test.yaml | 9 ++++ .../Backup/testdata/failed.yaml | 30 ++++++++++++++ .../k8s.mariadb.com/Backup/testdata/ok.yaml | 41 +++++++++++++++++++ .../k8s.mariadb.com/Database/health.lua | 23 +++++++++++ .../k8s.mariadb.com/Database/health_test.yaml | 5 +++ .../Database/testdata/database-ready.yaml | 19 +++++++++ .../k8s.mariadb.com/Grant/health.lua | 22 ++++++++++ .../k8s.mariadb.com/Grant/health_test.yaml | 6 +++ .../Grant/testdata/grant-ready.yaml | 26 ++++++++++++ .../k8s.mariadb.com/MariaDB/health.lua | 25 +++++++++++ .../k8s.mariadb.com/MariaDB/health_test.yaml | 25 +++++++++++ .../MariaDB/testdata/mariadb_error.yaml | 27 ++++++++++++ .../MariaDB/testdata/no_status.yaml | 22 ++++++++++ .../MariaDB/testdata/restore_complete.yaml | 32 +++++++++++++++ .../testdata/restore_not_complete.yaml | 32 +++++++++++++++ .../testdata/statefulset_not_ready.yaml | 27 ++++++++++++ .../MariaDB/testdata/statefulset_ready.yaml | 27 ++++++++++++ .../k8s.mariadb.com/SqlJob/health.lua | 21 ++++++++++ .../k8s.mariadb.com/SqlJob/health_test.yaml | 9 ++++ .../SqlJob/testdata/sqljobs-failed.yaml | 24 +++++++++++ .../SqlJob/testdata/sqljobs-ok.yaml | 23 +++++++++++ .../k8s.mariadb.com/User/health.lua | 23 +++++++++++ .../k8s.mariadb.com/User/health_test.yaml | 5 +++ .../User/testdata/user-created.yaml | 37 +++++++++++++++++ 25 files changed, 565 insertions(+) create mode 100644 resource_customizations/k8s.mariadb.com/Backup/health.lua create mode 100644 resource_customizations/k8s.mariadb.com/Backup/health_test.yaml create mode 100644 resource_customizations/k8s.mariadb.com/Backup/testdata/failed.yaml create mode 100644 resource_customizations/k8s.mariadb.com/Backup/testdata/ok.yaml create mode 100644 resource_customizations/k8s.mariadb.com/Database/health.lua create mode 100644 resource_customizations/k8s.mariadb.com/Database/health_test.yaml create mode 100644 resource_customizations/k8s.mariadb.com/Database/testdata/database-ready.yaml create mode 100644 resource_customizations/k8s.mariadb.com/Grant/health.lua create mode 100644 resource_customizations/k8s.mariadb.com/Grant/health_test.yaml create mode 100644 resource_customizations/k8s.mariadb.com/Grant/testdata/grant-ready.yaml create mode 100644 resource_customizations/k8s.mariadb.com/MariaDB/health.lua create mode 100644 resource_customizations/k8s.mariadb.com/MariaDB/health_test.yaml create mode 100644 resource_customizations/k8s.mariadb.com/MariaDB/testdata/mariadb_error.yaml create mode 100644 resource_customizations/k8s.mariadb.com/MariaDB/testdata/no_status.yaml create mode 100644 resource_customizations/k8s.mariadb.com/MariaDB/testdata/restore_complete.yaml create mode 100644 resource_customizations/k8s.mariadb.com/MariaDB/testdata/restore_not_complete.yaml create mode 100644 resource_customizations/k8s.mariadb.com/MariaDB/testdata/statefulset_not_ready.yaml create mode 100644 resource_customizations/k8s.mariadb.com/MariaDB/testdata/statefulset_ready.yaml create mode 100644 resource_customizations/k8s.mariadb.com/SqlJob/health.lua create mode 100644 resource_customizations/k8s.mariadb.com/SqlJob/health_test.yaml create mode 100644 resource_customizations/k8s.mariadb.com/SqlJob/testdata/sqljobs-failed.yaml create mode 100644 resource_customizations/k8s.mariadb.com/SqlJob/testdata/sqljobs-ok.yaml create mode 100644 resource_customizations/k8s.mariadb.com/User/health.lua create mode 100644 resource_customizations/k8s.mariadb.com/User/health_test.yaml create mode 100644 resource_customizations/k8s.mariadb.com/User/testdata/user-created.yaml diff --git a/resource_customizations/k8s.mariadb.com/Backup/health.lua b/resource_customizations/k8s.mariadb.com/Backup/health.lua new file mode 100644 index 0000000000000..ac78b482648e0 --- /dev/null +++ b/resource_customizations/k8s.mariadb.com/Backup/health.lua @@ -0,0 +1,25 @@ +local health_status = {} + +if obj.status ~= nil and obj.status.conditions ~= nil then + + for i, condition in ipairs(obj.status.conditions) do + + health_status.message = condition.reason .. " " .. condition.message + + if condition.status == "False" then + if condition.reason == "CronJobScheduled" and condition.message == "Failed" then + health_status.status = "Degraded" + return health_status + end + health_status.status = "Progressing" + return health_status + end + end + + health_status.status = "Healthy" + return health_status +end + +health_status.status = "Progressing" +health_status.message = "No status info available" +return health_status diff --git a/resource_customizations/k8s.mariadb.com/Backup/health_test.yaml b/resource_customizations/k8s.mariadb.com/Backup/health_test.yaml new file mode 100644 index 0000000000000..2acfdebc9052b --- /dev/null +++ b/resource_customizations/k8s.mariadb.com/Backup/health_test.yaml @@ -0,0 +1,9 @@ +tests: +- healthStatus: + status: Healthy + message: "CronJobSucess Success" + inputPath: testdata/ok.yaml +- healthStatus: + status: Degraded + message: "CronJobScheduled Failed" + inputPath: testdata/failed.yaml diff --git a/resource_customizations/k8s.mariadb.com/Backup/testdata/failed.yaml b/resource_customizations/k8s.mariadb.com/Backup/testdata/failed.yaml new file mode 100644 index 0000000000000..731288ba52e60 --- /dev/null +++ b/resource_customizations/k8s.mariadb.com/Backup/testdata/failed.yaml @@ -0,0 +1,30 @@ +apiVersion: k8s.mariadb.com/v1alpha1 +kind: Backup +metadata: + name: backup-local +spec: + backoffLimit: 5 + logLevel: info + mariaDbRef: + name: mariadb + waitForIt: true + maxRetention: 168h + restartPolicy: OnFailure + schedule: + cron: 0 */2 * * * + suspend: false + serviceAccountName: backup-local + storage: + persistentVolumeClaim: + accessModes: + - ReadWriteOnce + resources: + requests: + storage: 80Gi +status: + conditions: + - lastTransitionTime: "2024-04-22T20:00:00Z" + message: Failed + reason: CronJobScheduled + status: "False" + type: Complete diff --git a/resource_customizations/k8s.mariadb.com/Backup/testdata/ok.yaml b/resource_customizations/k8s.mariadb.com/Backup/testdata/ok.yaml new file mode 100644 index 0000000000000..daf8b55fc6c0f --- /dev/null +++ b/resource_customizations/k8s.mariadb.com/Backup/testdata/ok.yaml @@ -0,0 +1,41 @@ +apiVersion: k8s.mariadb.com/v1alpha1 +kind: Backup +metadata: + annotations: + argocd.argoproj.io/tracking-id: apps-bridge-demo-de1:k8s.mariadb.com/Backup:bridge/backup-local-bridge + kubectl.kubernetes.io/last-applied-configuration: | + {"apiVersion":"k8s.mariadb.com/v1alpha1","kind":"Backup","metadata":{"annotations":{"argocd.argoproj.io/tracking-id":"apps-bridge-demo-de1:k8s.mariadb.com/Backup:bridge/backup-local-bridge"},"name":"backup-local-bridge","namespace":"bridge"},"spec":{"args":["--databases bridge"],"mariaDbRef":{"name":"mariadb"},"maxRetention":"168h","schedule":{"cron":"0 1-23/2 * * *","suspend":false},"storage":{"persistentVolumeClaim":{"accessModes":["ReadWriteOnce"],"resources":{"requests":{"storage":"80Gi"}}}}}} + creationTimestamp: "2024-04-12T12:35:41Z" + generation: 2 + name: backup-local-bridge + namespace: bridge + resourceVersion: "506591405" + uid: 67364d0a-6da9-4369-97fd-45ea468dbbea +spec: + args: + - --databases bridge + backoffLimit: 5 + logLevel: info + mariaDbRef: + name: mariadb + waitForIt: true + maxRetention: 168h + restartPolicy: OnFailure + schedule: + cron: 0 1-23/2 * * * + suspend: false + serviceAccountName: backup-local-bridge + storage: + persistentVolumeClaim: + accessModes: + - ReadWriteOnce + resources: + requests: + storage: 80Gi +status: + conditions: + - lastTransitionTime: "2024-04-24T15:00:23Z" + message: Success + reason: CronJobSucess + status: "True" + type: Complete diff --git a/resource_customizations/k8s.mariadb.com/Database/health.lua b/resource_customizations/k8s.mariadb.com/Database/health.lua new file mode 100644 index 0000000000000..17372dbbbf503 --- /dev/null +++ b/resource_customizations/k8s.mariadb.com/Database/health.lua @@ -0,0 +1,23 @@ +local health_status = {} +health_status.status = "Progressing" +health_status.message = "No status info available" + +if obj.status ~= nil and obj.status.conditions ~= nil then + + for i, condition in ipairs(obj.status.conditions) do + + health_status.message = condition.message + + if condition.type == "Ready" then + if condition.status == "True" then + health_status.status = "Healthy" + else + health_status.status = "Degraded" + end + return health_status + end + end +end + + +return health_status diff --git a/resource_customizations/k8s.mariadb.com/Database/health_test.yaml b/resource_customizations/k8s.mariadb.com/Database/health_test.yaml new file mode 100644 index 0000000000000..fa21c37fe26d0 --- /dev/null +++ b/resource_customizations/k8s.mariadb.com/Database/health_test.yaml @@ -0,0 +1,5 @@ +tests: +- healthStatus: + status: Healthy + message: "Created" + inputPath: testdata/database-ready.yaml diff --git a/resource_customizations/k8s.mariadb.com/Database/testdata/database-ready.yaml b/resource_customizations/k8s.mariadb.com/Database/testdata/database-ready.yaml new file mode 100644 index 0000000000000..f1ccff4f2699b --- /dev/null +++ b/resource_customizations/k8s.mariadb.com/Database/testdata/database-ready.yaml @@ -0,0 +1,19 @@ +apiVersion: k8s.mariadb.com/v1alpha1 +kind: Database +metadata: + name: dbname +spec: + characterSet: utf8 + collate: utf8_general_ci + mariaDbRef: + name: mariadb + waitForIt: true + requeueInterval: 30s + retryInterval: 5s +status: + conditions: + - lastTransitionTime: "2024-04-12T13:43:57Z" + message: Created + reason: Created + status: "True" + type: Ready diff --git a/resource_customizations/k8s.mariadb.com/Grant/health.lua b/resource_customizations/k8s.mariadb.com/Grant/health.lua new file mode 100644 index 0000000000000..8e426f15e2b3c --- /dev/null +++ b/resource_customizations/k8s.mariadb.com/Grant/health.lua @@ -0,0 +1,22 @@ +local health_status = {} +health_status.status = "Progressing" +health_status.message = "No status info available" +if obj.status ~= nil and obj.status.conditions ~= nil then + + for i, condition in ipairs(obj.status.conditions) do + + health_status.message = condition.message + + if condition.type == "Ready" then + if condition.status == "True" then + health_status.status = "Healthy" + else + health_status.status = "Degraded" + end + return health_status + end + end +end + + +return health_status diff --git a/resource_customizations/k8s.mariadb.com/Grant/health_test.yaml b/resource_customizations/k8s.mariadb.com/Grant/health_test.yaml new file mode 100644 index 0000000000000..1f420e183cbb5 --- /dev/null +++ b/resource_customizations/k8s.mariadb.com/Grant/health_test.yaml @@ -0,0 +1,6 @@ +tests: +- healthStatus: + status: Healthy + message: "Created" + inputPath: testdata/grant-ready.yaml + diff --git a/resource_customizations/k8s.mariadb.com/Grant/testdata/grant-ready.yaml b/resource_customizations/k8s.mariadb.com/Grant/testdata/grant-ready.yaml new file mode 100644 index 0000000000000..2081010f9dae3 --- /dev/null +++ b/resource_customizations/k8s.mariadb.com/Grant/testdata/grant-ready.yaml @@ -0,0 +1,26 @@ +apiVersion: k8s.mariadb.com/v1alpha1 +kind: Grant +metadata: + name: mariadb-metrics +spec: + database: '*' + grantOption: false + mariaDbRef: + name: mariadb + namespace: bridge + waitForIt: false + privileges: + - SELECT + - PROCESS + - REPLICATION CLIENT + - REPLICA MONITOR + - SLAVE MONITOR + table: '*' + username: mariadb-metrics +status: + conditions: + - lastTransitionTime: "2024-04-20T20:45:02Z" + message: Created + reason: Created + status: "True" + type: Ready diff --git a/resource_customizations/k8s.mariadb.com/MariaDB/health.lua b/resource_customizations/k8s.mariadb.com/MariaDB/health.lua new file mode 100644 index 0000000000000..b0278bb22650e --- /dev/null +++ b/resource_customizations/k8s.mariadb.com/MariaDB/health.lua @@ -0,0 +1,25 @@ +local health_status = {} + +if obj.status ~= nil and obj.status.conditions ~= nil then + + for i, condition in ipairs(obj.status.conditions) do + + health_status.message = condition.message + + if condition.status == "False" then + if condition.reason == "Failed" then + health_status.status = "Degraded" + return health_status + end + health_status.status = "Progressing" + return health_status + end + end + + health_status.status = "Healthy" + return health_status +end + +health_status.status = "Progressing" +health_status.message = "No status info available" +return health_status diff --git a/resource_customizations/k8s.mariadb.com/MariaDB/health_test.yaml b/resource_customizations/k8s.mariadb.com/MariaDB/health_test.yaml new file mode 100644 index 0000000000000..f3dba1ac80c58 --- /dev/null +++ b/resource_customizations/k8s.mariadb.com/MariaDB/health_test.yaml @@ -0,0 +1,25 @@ +tests: +- healthStatus: + status: Progressing + message: "No status info available" + inputPath: testdata/no_status.yaml +- healthStatus: + status: Healthy + message: "Running" + inputPath: testdata/statefulset_ready.yaml +- healthStatus: + status: Progressing + message: "Not ready" + inputPath: testdata/statefulset_not_ready.yaml +- healthStatus: + status: Healthy + message: "Running" + inputPath: testdata/restore_complete.yaml +- healthStatus: + status: Progressing + message: "Restoring backup" + inputPath: testdata/restore_not_complete.yaml +- healthStatus: + status: Degraded + message: "Error creating ConfigMap" + inputPath: testdata/mariadb_error.yaml diff --git a/resource_customizations/k8s.mariadb.com/MariaDB/testdata/mariadb_error.yaml b/resource_customizations/k8s.mariadb.com/MariaDB/testdata/mariadb_error.yaml new file mode 100644 index 0000000000000..9566f9fa3c262 --- /dev/null +++ b/resource_customizations/k8s.mariadb.com/MariaDB/testdata/mariadb_error.yaml @@ -0,0 +1,27 @@ +apiVersion: k8s.mariadb.com/v1alpha1 +kind: MariaDB +metadata: + name: mariadb-server +spec: + rootPasswordSecretKeyRef: + name: mariadb + key: root-password + image: + repository: mariadb + tag: "10.7.4" + pullPolicy: IfNotPresent + port: 3306 + volumeClaimTemplate: + resources: + requests: + storage: 100Mi + storageClassName: standard + accessModes: + - ReadWriteOnce +status: + conditions: + - lastTransitionTime: '2023-04-20T15:31:15Z' + message: Error creating ConfigMap + reason: Failed + status: 'False' + type: Ready diff --git a/resource_customizations/k8s.mariadb.com/MariaDB/testdata/no_status.yaml b/resource_customizations/k8s.mariadb.com/MariaDB/testdata/no_status.yaml new file mode 100644 index 0000000000000..dcf61713069c1 --- /dev/null +++ b/resource_customizations/k8s.mariadb.com/MariaDB/testdata/no_status.yaml @@ -0,0 +1,22 @@ +apiVersion: k8s.mariadb.com/v1alpha1 +kind: MariaDB +metadata: + name: mariadb-server +spec: + rootPasswordSecretKeyRef: + name: mariadb + key: root-password + image: + repository: mariadb + tag: "10.7.4" + pullPolicy: IfNotPresent + port: 3306 + volumeClaimTemplate: + resources: + requests: + storage: 100Mi + storageClassName: standard + accessModes: + - ReadWriteOnce +status: + revision: 0 diff --git a/resource_customizations/k8s.mariadb.com/MariaDB/testdata/restore_complete.yaml b/resource_customizations/k8s.mariadb.com/MariaDB/testdata/restore_complete.yaml new file mode 100644 index 0000000000000..e861bc1119683 --- /dev/null +++ b/resource_customizations/k8s.mariadb.com/MariaDB/testdata/restore_complete.yaml @@ -0,0 +1,32 @@ +apiVersion: k8s.mariadb.com/v1alpha1 +kind: MariaDB +metadata: + name: mariadb-server +spec: + rootPasswordSecretKeyRef: + name: mariadb + key: root-password + image: + repository: mariadb + tag: "10.7.4" + pullPolicy: IfNotPresent + port: 3306 + volumeClaimTemplate: + resources: + requests: + storage: 100Mi + storageClassName: standard + accessModes: + - ReadWriteOnce +status: + conditions: + - lastTransitionTime: "2023-04-05T14:18:01Z" + message: Ready + reason: RestoreComplete + status: "True" + type: Bootstrapped + - lastTransitionTime: "2023-04-05T14:18:02Z" + message: Running + reason: RestoreComplete + status: "True" + type: Ready diff --git a/resource_customizations/k8s.mariadb.com/MariaDB/testdata/restore_not_complete.yaml b/resource_customizations/k8s.mariadb.com/MariaDB/testdata/restore_not_complete.yaml new file mode 100644 index 0000000000000..df7882ec56147 --- /dev/null +++ b/resource_customizations/k8s.mariadb.com/MariaDB/testdata/restore_not_complete.yaml @@ -0,0 +1,32 @@ +apiVersion: k8s.mariadb.com/v1alpha1 +kind: MariaDB +metadata: + name: mariadb-server +spec: + rootPasswordSecretKeyRef: + name: mariadb + key: root-password + image: + repository: mariadb + tag: "10.7.4" + pullPolicy: IfNotPresent + port: 3306 + volumeClaimTemplate: + resources: + requests: + storage: 100Mi + storageClassName: standard + accessModes: + - ReadWriteOnce +status: + conditions: + - lastTransitionTime: "2023-04-05T14:18:01Z" + message: Restoring backup + reason: RestoreNotComplete + status: "False" + type: Ready + - lastTransitionTime: "2023-04-05T14:18:02Z" + message: Not ready + reason: RestoreNotComplete + status: "False" + type: Bootstrapped diff --git a/resource_customizations/k8s.mariadb.com/MariaDB/testdata/statefulset_not_ready.yaml b/resource_customizations/k8s.mariadb.com/MariaDB/testdata/statefulset_not_ready.yaml new file mode 100644 index 0000000000000..faaf12dab205e --- /dev/null +++ b/resource_customizations/k8s.mariadb.com/MariaDB/testdata/statefulset_not_ready.yaml @@ -0,0 +1,27 @@ +apiVersion: k8s.mariadb.com/v1alpha1 +kind: MariaDB +metadata: + name: mariadb-server +spec: + rootPasswordSecretKeyRef: + name: mariadb + key: root-password + image: + repository: mariadb + tag: "10.7.4" + pullPolicy: IfNotPresent + port: 3306 + volumeClaimTemplate: + resources: + requests: + storage: 100Mi + storageClassName: standard + accessModes: + - ReadWriteOnce +status: + conditions: + - lastTransitionTime: "2023-04-05T14:18:01Z" + message: Not ready + reason: StatefulSetNotReady + status: "False" + type: Ready diff --git a/resource_customizations/k8s.mariadb.com/MariaDB/testdata/statefulset_ready.yaml b/resource_customizations/k8s.mariadb.com/MariaDB/testdata/statefulset_ready.yaml new file mode 100644 index 0000000000000..90d82fc08d583 --- /dev/null +++ b/resource_customizations/k8s.mariadb.com/MariaDB/testdata/statefulset_ready.yaml @@ -0,0 +1,27 @@ +apiVersion: k8s.mariadb.com/v1alpha1 +kind: MariaDB +metadata: + name: mariadb-server +spec: + rootPasswordSecretKeyRef: + name: mariadb + key: root-password + image: + repository: mariadb + tag: "10.7.4" + pullPolicy: IfNotPresent + port: 3306 + volumeClaimTemplate: + resources: + requests: + storage: 100Mi + storageClassName: standard + accessModes: + - ReadWriteOnce +status: + conditions: + - lastTransitionTime: "2023-04-05T14:18:01Z" + message: Running + reason: StatefulSetReady + status: "True" + type: Ready diff --git a/resource_customizations/k8s.mariadb.com/SqlJob/health.lua b/resource_customizations/k8s.mariadb.com/SqlJob/health.lua new file mode 100644 index 0000000000000..0a666f2c28fe3 --- /dev/null +++ b/resource_customizations/k8s.mariadb.com/SqlJob/health.lua @@ -0,0 +1,21 @@ +local health_status = {} +health_status.status = "Progressing" +health_status.message = "No status info available" + +if obj.status ~= nil and obj.status.conditions ~= nil then + + for i, condition in ipairs(obj.status.conditions) do + + health_status.message = condition.reason .. " " .. condition.message + if condition.reason == "JobComplete" and condition.status == "True" then + health_status.status = "Healthy" + return health_status + end + + if condition.reason == "JobFailed" and condition.status == "True" then + health_status.status = "Degraded" + return health_status + end + end +end +return health_status diff --git a/resource_customizations/k8s.mariadb.com/SqlJob/health_test.yaml b/resource_customizations/k8s.mariadb.com/SqlJob/health_test.yaml new file mode 100644 index 0000000000000..4ecd2cb9446c3 --- /dev/null +++ b/resource_customizations/k8s.mariadb.com/SqlJob/health_test.yaml @@ -0,0 +1,9 @@ +tests: +- healthStatus: + status: Healthy + message: "JobComplete Success" + inputPath: testdata/sqljobs-ok.yaml +- healthStatus: + status: Degraded + message: "JobFailed Failed" + inputPath: testdata/sqljobs-failed.yaml diff --git a/resource_customizations/k8s.mariadb.com/SqlJob/testdata/sqljobs-failed.yaml b/resource_customizations/k8s.mariadb.com/SqlJob/testdata/sqljobs-failed.yaml new file mode 100644 index 0000000000000..f676a151f4057 --- /dev/null +++ b/resource_customizations/k8s.mariadb.com/SqlJob/testdata/sqljobs-failed.yaml @@ -0,0 +1,24 @@ +apiVersion: k8s.mariadb.com/v1alpha1 +kind: SqlJob +metadata: + name: jobname +spec: + backoffLimit: 5 + database: dbname + mariaDbRef: + name: mariadb + waitForIt: true + passwordSecretKeyRef: + key: password + name: mariadb-root + restartPolicy: OnFailure + serviceAccountName: jobname + sql: "Some SQL" + username: root +status: + conditions: + - lastTransitionTime: "2024-03-19T11:39:00Z" + message: Failed + reason: JobFailed + status: "True" + type: Complete diff --git a/resource_customizations/k8s.mariadb.com/SqlJob/testdata/sqljobs-ok.yaml b/resource_customizations/k8s.mariadb.com/SqlJob/testdata/sqljobs-ok.yaml new file mode 100644 index 0000000000000..84d80cfa6abb1 --- /dev/null +++ b/resource_customizations/k8s.mariadb.com/SqlJob/testdata/sqljobs-ok.yaml @@ -0,0 +1,23 @@ +apiVersion: k8s.mariadb.com/v1alpha1 +kind: SqlJob +metadata: + name: jobname +spec: + backoffLimit: 5 + database: dbname + mariaDbRef: + name: mariadb + waitForIt: true + passwordSecretKeyRef: + key: password + name: mariadb-root + restartPolicy: Never + serviceAccountName: jobname + sql: "some SQL;" +status: + conditions: + - lastTransitionTime: "2024-04-22T14:08:49Z" + message: Success + reason: JobComplete + status: "True" + type: Complete diff --git a/resource_customizations/k8s.mariadb.com/User/health.lua b/resource_customizations/k8s.mariadb.com/User/health.lua new file mode 100644 index 0000000000000..8f0fcb704ab08 --- /dev/null +++ b/resource_customizations/k8s.mariadb.com/User/health.lua @@ -0,0 +1,23 @@ +local health_status = {} + +health_status.status = "Progressing" +health_status.message = "No status info available" + +if obj.status ~= nil and obj.status.conditions ~= nil then + + for i, condition in ipairs(obj.status.conditions) do + + health_status.message = condition.message + + if condition.type == "Ready" then + if condition.status == "True" then + health_status.status = "Healthy" + else + health_status.status = "Degraded" + end + return health_status + end + end +end + +return health_status diff --git a/resource_customizations/k8s.mariadb.com/User/health_test.yaml b/resource_customizations/k8s.mariadb.com/User/health_test.yaml new file mode 100644 index 0000000000000..b6e41d0e578c3 --- /dev/null +++ b/resource_customizations/k8s.mariadb.com/User/health_test.yaml @@ -0,0 +1,5 @@ +tests: +- healthStatus: + status: Healthy + message: "Created" + inputPath: testdata/user-created.yaml diff --git a/resource_customizations/k8s.mariadb.com/User/testdata/user-created.yaml b/resource_customizations/k8s.mariadb.com/User/testdata/user-created.yaml new file mode 100644 index 0000000000000..935f621efe464 --- /dev/null +++ b/resource_customizations/k8s.mariadb.com/User/testdata/user-created.yaml @@ -0,0 +1,37 @@ +apiVersion: k8s.mariadb.com/v1alpha1 +kind: User +metadata: + creationTimestamp: "2024-04-12T13:43:56Z" + finalizers: + - user.k8s.mariadb.com/finalizer + generation: 1 + labels: + db.bridge.a3p.com: mariadb + name: mariadb-metrics + namespace: bridge + ownerReferences: + - apiVersion: k8s.mariadb.com/v1alpha1 + blockOwnerDeletion: true + controller: true + kind: MariaDB + name: mariadb + uid: a29fc76f-66a5-4612-9b15-16c405f7edd9 + resourceVersion: "345121483" + uid: ecce1099-7b71-418b-b386-893db5fd7e59 +spec: + mariaDbRef: + name: mariadb + namespace: bridge + waitForIt: false + maxUserConnections: 3 + name: mariadb-metrics + passwordSecretKeyRef: + key: password + name: mariadb-metrics-password +status: + conditions: + - lastTransitionTime: "2024-04-12T13:43:57Z" + message: Created + reason: Created + status: "True" + type: Ready From 247055207d813195a8672f132aefc914edd6f886 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 8 May 2024 21:18:08 +0300 Subject: [PATCH 084/206] chore(deps): bump bitnami/kubectl in /test/container (#18085) Bumps bitnami/kubectl from `b909f3a` to `b330450`. --- updated-dependencies: - dependency-name: bitnami/kubectl dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- test/container/Dockerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/test/container/Dockerfile b/test/container/Dockerfile index 125cde44965b5..8832758743e1c 100644 --- a/test/container/Dockerfile +++ b/test/container/Dockerfile @@ -12,7 +12,7 @@ FROM docker.io/library/golang:1.22.1@sha256:0b55ab82ac2a54a6f8f85ec8b943b9e470c3 FROM docker.io/library/registry:2.8@sha256:4fac7a8257b1d7a86599043fcc181dfbdf9c8f57e337db763ac94b0e67c6cfb5 as registry -FROM docker.io/bitnami/kubectl:1.30@sha256:b909f3a93813f25192bcb57f5c1e482d53ba01413db69c8143fca882e6e930e5 as kubectl +FROM docker.io/bitnami/kubectl:1.30@sha256:b3304501336a48b5f845d0897d6c5252c7b2e4f98a9a6fe1a94a96f92a3a2dc9 as kubectl FROM docker.io/library/ubuntu:24.04@sha256:3f85b7caad41a95462cf5b787d8a04604c8262cdcdf9a472b8c52ef83375fe15 From 0ca4f741555adf4d654c51515ce20643aa8b2cdf Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 8 May 2024 21:22:24 +0300 Subject: [PATCH 085/206] chore(deps): bump library/node from 22.0.0 to 22.1.0 in /ui-test (#18063) Bumps library/node from 22.0.0 to 22.1.0. --- updated-dependencies: - dependency-name: library/node dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- ui-test/Dockerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/ui-test/Dockerfile b/ui-test/Dockerfile index 12917dcf41a70..b04ef00278c9b 100644 --- a/ui-test/Dockerfile +++ b/ui-test/Dockerfile @@ -1,4 +1,4 @@ -FROM docker.io/library/node:22.0.0@sha256:cbd62dc7ba7e50d01520f2c0a8d9853ec872187fa806ed61d0f87081c220386d as node +FROM docker.io/library/node:22.1.0@sha256:64c46a664eccedec63941dab4027c178a36debe08a232d4f9d7da5aca91cff3d as node RUN apt-get update && apt-get install --no-install-recommends -y \ software-properties-common From 2605a9845ba8cffc1e606ef707e4f3a67ccef6ac Mon Sep 17 00:00:00 2001 From: Michael Crenshaw <350466+crenshaw-dev@users.noreply.github.com> Date: Wed, 8 May 2024 18:50:09 -0400 Subject: [PATCH 086/206] chore(ci): fix release notes (#18132) Signed-off-by: Michael Crenshaw <350466+crenshaw-dev@users.noreply.github.com> --- .goreleaser.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.goreleaser.yaml b/.goreleaser.yaml index 26341aa1d80c1..c156d37b19081 100644 --- a/.goreleaser.yaml +++ b/.goreleaser.yaml @@ -114,7 +114,7 @@ changelog: exclude: - '^test:' - '^.*?Bump(\([[:word:]]+\))?.+$' - - '^.*?[Bot](\([[:word:]]+\))?.+$' + - '^.*?\[Bot\](\([[:word:]]+\))?.+$' # yaml-language-server: $schema=https://goreleaser.com/static/schema.json From 0a408a6e3039524d39efd9c5b5b7da53e21ffd08 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 9 May 2024 10:49:29 +0300 Subject: [PATCH 087/206] chore(deps): bump library/busybox in /test/e2e/multiarch-container (#18134) Bumps library/busybox from `6776a33` to `5eef5ed`. --- updated-dependencies: - dependency-name: library/busybox dependency-type: direct:production ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- test/e2e/multiarch-container/Dockerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/test/e2e/multiarch-container/Dockerfile b/test/e2e/multiarch-container/Dockerfile index 97f665320188f..301bba5145506 100644 --- a/test/e2e/multiarch-container/Dockerfile +++ b/test/e2e/multiarch-container/Dockerfile @@ -1,2 +1,2 @@ -FROM docker.io/library/busybox@sha256:6776a33c72b3af7582a5b301e3a08186f2c21a3409f0d2b52dfddbdbe24a5b04 +FROM docker.io/library/busybox@sha256:5eef5ed34e1e1ff0a4ae850395cbf665c4de6b4b83a32a0bc7bcb998e24e7bbb CMD exec sh -c "trap : TERM INT; echo 'Hi' && tail -f /dev/null" From bab0ee08214e5212c9b9402b7f991edb4546437f Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 9 May 2024 10:49:50 +0300 Subject: [PATCH 088/206] chore(deps): bump bitnami/kubectl in /test/container (#18135) Bumps bitnami/kubectl from `b330450` to `aa73edb`. --- updated-dependencies: - dependency-name: bitnami/kubectl dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- test/container/Dockerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/test/container/Dockerfile b/test/container/Dockerfile index 8832758743e1c..b0773e0865af9 100644 --- a/test/container/Dockerfile +++ b/test/container/Dockerfile @@ -12,7 +12,7 @@ FROM docker.io/library/golang:1.22.1@sha256:0b55ab82ac2a54a6f8f85ec8b943b9e470c3 FROM docker.io/library/registry:2.8@sha256:4fac7a8257b1d7a86599043fcc181dfbdf9c8f57e337db763ac94b0e67c6cfb5 as registry -FROM docker.io/bitnami/kubectl:1.30@sha256:b3304501336a48b5f845d0897d6c5252c7b2e4f98a9a6fe1a94a96f92a3a2dc9 as kubectl +FROM docker.io/bitnami/kubectl:1.30@sha256:aa73edbac86a1b620049911f4b679003dd983a5e10f503bb49e372ec3b8194a9 as kubectl FROM docker.io/library/ubuntu:24.04@sha256:3f85b7caad41a95462cf5b787d8a04604c8262cdcdf9a472b8c52ef83375fe15 From f65399af141d496a08ef51676d29cc37a9d460bd Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 9 May 2024 12:05:25 +0300 Subject: [PATCH 089/206] chore(deps): bump library/node from 22.0.0 to 22.1.0 in /test/container (#18136) Bumps library/node from 22.0.0 to 22.1.0. --- updated-dependencies: - dependency-name: library/node dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: pasha-codefresh --- test/container/Dockerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/test/container/Dockerfile b/test/container/Dockerfile index b0773e0865af9..439bb9bf3968d 100644 --- a/test/container/Dockerfile +++ b/test/container/Dockerfile @@ -6,7 +6,7 @@ FROM docker.io/library/redis:7.2.4@sha256:7dd707032d90c6eaafd566f62a00f5b0116ae0 RUN ln -s /usr/lib/$(uname -m)-linux-gnu /usr/lib/linux-gnu # Please make sure to also check the contained yarn version and update the references below when upgrading this image's version -FROM docker.io/library/node:22.0.0@sha256:cbd62dc7ba7e50d01520f2c0a8d9853ec872187fa806ed61d0f87081c220386d as node +FROM docker.io/library/node:22.1.0@sha256:64c46a664eccedec63941dab4027c178a36debe08a232d4f9d7da5aca91cff3d as node FROM docker.io/library/golang:1.22.1@sha256:0b55ab82ac2a54a6f8f85ec8b943b9e470c39e32c109b766bbc1b801f3fa8d3b as golang From ebb92d8c3bcda64348d98c14646cbdf5adcde0c6 Mon Sep 17 00:00:00 2001 From: Blake Pettersson Date: Thu, 9 May 2024 02:52:49 -1000 Subject: [PATCH 090/206] fix: add endpointslice replace (#18141) Since #17491 I got a bunch of weird errors in Goland, along with the error message below: ``` go: k8s.io/endpointslice@v0.0.0: invalid version: unknown revision v0.0.0 ``` Adding an endpointslice alias fixes that. Signed-off-by: Blake Pettersson --- go.mod | 1 + 1 file changed, 1 insertion(+) diff --git a/go.mod b/go.mod index f40438b208e5d..307f52040f730 100644 --- a/go.mod +++ b/go.mod @@ -325,6 +325,7 @@ replace ( k8s.io/cri-api => k8s.io/cri-api v0.29.2 k8s.io/csi-translation-lib => k8s.io/csi-translation-lib v0.29.2 k8s.io/dynamic-resource-allocation => k8s.io/dynamic-resource-allocation v0.29.2 + k8s.io/endpointslice => k8s.io/endpointslice v0.29.2 k8s.io/kms => k8s.io/kms v0.29.2 k8s.io/kube-aggregator => k8s.io/kube-aggregator v0.29.2 k8s.io/kube-controller-manager => k8s.io/kube-controller-manager v0.29.2 From a89e3589b4926ae1f558302c8b3fb98fde4126cd Mon Sep 17 00:00:00 2001 From: Alexandre Gaudreault Date: Thu, 9 May 2024 11:16:50 -0400 Subject: [PATCH 091/206] fix(ui): consistent resource menu across views (#18060) (#18069) * add icon in app table view Signed-off-by: Alexandre Gaudreault * use defaut menu in tree-grouped Signed-off-by: Alexandre Gaudreault * use default menu in pod views Signed-off-by: Alexandre Gaudreault * fix custom delete actions Signed-off-by: Alexandre Gaudreault * menu item in list Signed-off-by: Alexandre Gaudreault * fix pod wrongly identified as root in network graph Signed-off-by: Alexandre Gaudreault * update docs error Signed-off-by: Alexandre Gaudreault * call delete pod action if kind is pod Signed-off-by: Alexandre Gaudreault * add logs action to pods Signed-off-by: Alexandre Gaudreault * delete in app details Signed-off-by: Alexandre Gaudreault * use managed instead of root for menu items Signed-off-by: Alexandre Gaudreault * lint fix Signed-off-by: Alexandre Gaudreault * fix lint again Signed-off-by: Alexandre Gaudreault --------- Signed-off-by: Alexandre Gaudreault --- cmd/argocd/commands/app_resources.go | 4 +- .../commands/argocd_app_delete-resource.md | 4 +- .../application-details.tsx | 13 +- .../application-resource-list.tsx | 245 +++++++++--------- .../application-pod-view/pod-view.tsx | 116 +++------ .../application-resource-tree.tsx | 130 ++++------ .../applications-list/applications-table.tsx | 18 +- .../resource-details/resource-details.tsx | 2 +- ui/src/app/applications/components/utils.tsx | 91 ++++--- ui/src/app/webpack.config.js | 2 +- 10 files changed, 291 insertions(+), 334 deletions(-) diff --git a/cmd/argocd/commands/app_resources.go b/cmd/argocd/commands/app_resources.go index b1aa819472086..d58808f96f243 100644 --- a/cmd/argocd/commands/app_resources.go +++ b/cmd/argocd/commands/app_resources.go @@ -108,8 +108,8 @@ func NewApplicationDeleteResourceCommand(clientOpts *argocdclient.ClientOptions) errors.CheckError(err) command.Flags().StringVar(&group, "group", "", "Group") command.Flags().StringVar(&namespace, "namespace", "", "Namespace") - command.Flags().BoolVar(&force, "force", false, "Indicates whether to orphan the dependents of the deleted resource") - command.Flags().BoolVar(&orphan, "orphan", false, "Indicates whether to force delete the resource") + command.Flags().BoolVar(&force, "force", false, "Indicates whether to force delete the resource") + command.Flags().BoolVar(&orphan, "orphan", false, "Indicates whether to orphan the dependents of the deleted resource") command.Flags().BoolVar(&all, "all", false, "Indicates whether to patch multiple matching of resources") command.Flags().StringVar(&project, "project", "", `The name of the application's project - specifying this allows the command to report "not found" instead of "permission denied" if the app does not exist`) command.Run = func(c *cobra.Command, args []string) { diff --git a/docs/user-guide/commands/argocd_app_delete-resource.md b/docs/user-guide/commands/argocd_app_delete-resource.md index 4a305eb4b4489..e397c0c019fa8 100644 --- a/docs/user-guide/commands/argocd_app_delete-resource.md +++ b/docs/user-guide/commands/argocd_app_delete-resource.md @@ -12,12 +12,12 @@ argocd app delete-resource APPNAME [flags] ``` --all Indicates whether to patch multiple matching of resources - --force Indicates whether to orphan the dependents of the deleted resource + --force Indicates whether to force delete the resource --group string Group -h, --help help for delete-resource --kind string Kind --namespace string Namespace - --orphan Indicates whether to force delete the resource + --orphan Indicates whether to orphan the dependents of the deleted resource --project string The name of the application's project - specifying this allows the command to report "not found" instead of "permission denied" if the app does not exist --resource-name string Name of resource ``` diff --git a/ui/src/app/applications/components/application-details/application-details.tsx b/ui/src/app/applications/components/application-details/application-details.tsx index a3e8175591dde..790919f5c271a 100644 --- a/ui/src/app/applications/components/application-details/application-details.tsx +++ b/ui/src/app/applications/components/application-details/application-details.tsx @@ -573,16 +573,12 @@ export class ApplicationDetails extends React.Component {data => ( this.selectNode(fullName)} resources={data} nodeMenu={node => - AppUtils.renderResourceMenu( - {...node, root: node}, - application, - tree, - this.appContext.apis, - this.appChanged, - () => this.getApplicationActionMenu(application, false) + AppUtils.renderResourceMenu(node, application, tree, this.appContext.apis, this.appChanged, () => + this.getApplicationActionMenu(application, false) ) } tree={tree} @@ -608,10 +604,11 @@ export class ApplicationDetails extends React.Component {data => ( this.selectNode(fullName)} resources={data} nodeMenu={node => - AppUtils.renderResourceMenu({...node, root: node}, application, tree, this.appContext.apis, this.appChanged, () => + AppUtils.renderResourceMenu(node, application, tree, this.appContext.apis, this.appChanged, () => this.getApplicationActionMenu(application, false) ) } diff --git a/ui/src/app/applications/components/application-details/application-resource-list.tsx b/ui/src/app/applications/components/application-details/application-resource-list.tsx index 0d22e1e51686d..6fc06abe9a150 100644 --- a/ui/src/app/applications/components/application-details/application-resource-list.tsx +++ b/ui/src/app/applications/components/application-details/application-resource-list.tsx @@ -4,14 +4,16 @@ import * as classNames from 'classnames'; import * as models from '../../../shared/models'; import {ResourceIcon} from '../resource-icon'; import {ResourceLabel} from '../resource-label'; -import {ComparisonStatusIcon, HealthStatusIcon, nodeKey, createdOrNodeKey} from '../utils'; +import {ComparisonStatusIcon, HealthStatusIcon, nodeKey, createdOrNodeKey, isSameNode} from '../utils'; +import {AppDetailsPreferences} from '../../../shared/services'; import {Consumer} from '../../../shared/context'; import Moment from 'react-moment'; import {format} from 'date-fns'; -import {ResourceNode, ResourceRef} from '../../../shared/models'; +import {ResourceNode} from '../../../shared/models'; import './application-resource-list.scss'; export interface ApplicationResourceListProps { + pref: AppDetailsPreferences; resources: models.ResourceStatus[]; onNodeClick?: (fullName: string) => any; nodeMenu?: (node: models.ResourceNode) => React.ReactNode; @@ -19,29 +21,25 @@ export interface ApplicationResourceListProps { } export const ApplicationResourceList = (props: ApplicationResourceListProps) => { - function getResNode(nodes: ResourceNode[], nodeId: string): models.ResourceNode { - for (const node of nodes) { - if (nodeKey(node) === nodeId) { - return node; - } - } - return null; - } - const parentNode = ((props.resources || []).length > 0 && (getResNode(props.tree.nodes, nodeKey(props.resources[0])) as ResourceNode)?.parentRefs?.[0]) || ({} as ResourceRef); - const searchParams = new URLSearchParams(window.location.search); - const view = searchParams.get('view'); + const nodeByKey = new Map(); + props.tree?.nodes?.forEach(res => nodeByKey.set(nodeKey(res), res)); + + const firstParentNode = props.resources.length > 0 && (nodeByKey.get(nodeKey(props.resources[0])) as ResourceNode)?.parentRefs?.[0]; + const isSameParent = firstParentNode && props.resources?.every(x => (nodeByKey.get(nodeKey(x)) as ResourceNode)?.parentRefs?.every(p => isSameNode(p, firstParentNode))); + const isSameKind = props.resources?.every(x => x.group === props.resources[0].group && x.kind === props.resources[0].kind); + const view = props.pref.view; const ParentRefDetails = () => { - return Object.keys(parentNode).length > 0 ? ( + return isSameParent ? (
    Parent Node Info
    Name:
    -
    {parentNode?.name}
    +
    {firstParentNode.name}
    Kind:
    -
    {parentNode?.kind}
    +
    {firstParentNode.kind}
    ) : ( @@ -49,123 +47,114 @@ export const ApplicationResourceList = (props: ApplicationResourceListProps) => ); }; return ( -
    - {/* Display only when the view is set to or network */} - {(view === 'tree' || view === 'network') && ( -
    - -
    - )} -
    -
    -
    -
    -
    NAME
    -
    GROUP/KIND
    -
    SYNC ORDER
    -
    NAMESPACE
    - {(parentNode.kind === 'Rollout' || parentNode.kind === 'Deployment') &&
    REVISION
    } -
    CREATED AT
    -
    STATUS
    + props.resources.length > 0 && ( +
    + {/* Display only when the view is set to or network */} + {(view === 'tree' || view === 'network') && ( +
    +
    -
    - {props.resources - .sort((first, second) => -createdOrNodeKey(first).localeCompare(createdOrNodeKey(second))) - .map(res => ( -
    props.onNodeClick && props.onNodeClick(nodeKey(res))}> -
    -
    -
    - -
    -
    {ResourceLabel({kind: res.kind})}
    + )} +
    +
    +
    +
    +
    NAME
    +
    GROUP/KIND
    +
    SYNC ORDER
    +
    NAMESPACE
    + {isSameKind && props.resources[0].kind === 'ReplicaSet' &&
    REVISION
    } +
    CREATED AT
    +
    STATUS
    +
    +
    + {props.resources + .sort((first, second) => -createdOrNodeKey(first).localeCompare(createdOrNodeKey(second))) + .map(res => ( +
    props.onNodeClick && props.onNodeClick(nodeKey(res))}> +
    +
    +
    + +
    +
    {ResourceLabel({kind: res.kind})}
    +
    -
    -
    - {res.name} - {res.kind === 'Application' && ( - - {ctx => ( - - e.stopPropagation()} - title='Open application'> - - - - )} - - )} -
    -
    {[res.group, res.kind].filter(item => !!item).join('/')}
    -
    {res.syncWave || '-'}
    -
    {res.namespace}
    - {res.kind === 'ReplicaSet' && - ((getResNode(props.tree.nodes, nodeKey(res)) as ResourceNode).info || []) - .filter(tag => !tag.name.includes('Node')) - .slice(0, 4) - .map((tag, i) => { - return ( -
    - {tag?.value?.split(':')[1] || '-'} -
    - ); - })} +     +
    {[res.group, res.kind].filter(item => !!item).join('/')}
    +
    {res.syncWave || '-'}
    +
    {res.namespace}
    + {isSameKind && + res.kind === 'ReplicaSet' && + ((nodeByKey.get(nodeKey(res)) as ResourceNode).info || []) + .filter(tag => !tag.name.includes('Node')) + .slice(0, 4) + .map((tag, i) => { + return ( +
    + {tag?.value?.split(':')[1] || '-'} +
    + ); + })} -
    - {res.createdAt && ( - - - {res.createdAt} - -  ago   {format(new Date(res.createdAt), 'MM/dd/yy')} - - )} -
    -
    - {res.health && ( - - {res.health.status}   - - )} - {res.status && } - {res.hook && } - {props.nodeMenu && ( -
    - ( - - )}> - {() => - props.nodeMenu({ - name: res.name, - version: res.version, - kind: res.kind, - namespace: res.namespace, - group: res.group, - info: null, - uid: '', - resourceVersion: null, - parentRefs: [] - }) - } - -
    - )} +
    + {res.createdAt && ( + + + {res.createdAt} + +  ago   {format(new Date(res.createdAt), 'MM/dd/yy')} + + )} +
    +
    + {res.health && ( + + {res.health.status}   + + )} + {res.status && } + {res.hook && } + {props.nodeMenu && ( +
    + ( + + )}> + {() => props.nodeMenu(nodeByKey.get(nodeKey(res)))} + +
    + )} +
    -
    - ))} + ))} +
    -
    + ) ); }; diff --git a/ui/src/app/applications/components/application-pod-view/pod-view.tsx b/ui/src/app/applications/components/application-pod-view/pod-view.tsx index a0d29c2c804f0..caba162b82eba 100644 --- a/ui/src/app/applications/components/application-pod-view/pod-view.tsx +++ b/ui/src/app/applications/components/application-pod-view/pod-view.tsx @@ -11,7 +11,7 @@ import {PodViewPreferences, services, ViewPreferences} from '../../../shared/ser import {ResourceTreeNode} from '../application-resource-tree/application-resource-tree'; import {ResourceIcon} from '../resource-icon'; import {ResourceLabel} from '../resource-label'; -import {ComparisonStatusIcon, isYoungerThanXMinutes, HealthStatusIcon, nodeKey, PodHealthIcon, deletePodAction} from '../utils'; +import {ComparisonStatusIcon, isYoungerThanXMinutes, HealthStatusIcon, nodeKey, PodHealthIcon} from '../utils'; import './pod-view.scss'; import {PodTooltip} from './pod-tooltip'; @@ -157,83 +157,43 @@ export class PodView extends React.Component { )}
    - {group.pods.map(pod => ( - ( - } - popperOptions={{ - modifiers: { - preventOverflow: { - enabled: true - }, - hide: { - enabled: false - }, - flip: { - enabled: false - } - } - }} - key={pod.metadata.name}> -
    - {isYoungerThanXMinutes(pod, 30) && ( - - )} -
    - -
    -
    -     - )} - items={[ - { - title: ( - - Info - - ), - action: () => this.props.onItemClick(pod.fullName) - }, - { - title: ( - - Logs - - ), - action: () => { - this.appContext.apis.navigation.goto('.', {node: pod.fullName, tab: 'logs'}, {replace: true}); - } - }, - { - title: ( - - Exec - - ), - action: () => { - this.appContext.apis.navigation.goto('.', {node: pod.fullName, tab: 'exec'}, {replace: true}); - } - }, - { - title: ( - - Delete - - ), - action: () => { - deletePodAction( - pod, - this.appContext, - this.props.app.metadata.name, - this.props.app.metadata.namespace - ); - } - } - ]} - /> - ))} + {group.pods.map( + pod => + this.props.nodeMenu && ( + ( + } + popperOptions={{ + modifiers: { + preventOverflow: { + enabled: true + }, + hide: { + enabled: false + }, + flip: { + enabled: false + } + } + }} + key={pod.metadata.name}> +
    + {isYoungerThanXMinutes(pod, 30) && ( + + )} +
    + +
    +
    +     + )}> + {() => this.props.nodeMenu(pod)} +     + ) + )}
    PODS
    {(podPrefs.sortMode === 'parentResource' || podPrefs.sortMode === 'topLevelResource') && ( diff --git a/ui/src/app/applications/components/application-resource-tree/application-resource-tree.tsx b/ui/src/app/applications/components/application-resource-tree/application-resource-tree.tsx index cb8fd8f43ecbd..0e1cfb9a00783 100644 --- a/ui/src/app/applications/components/application-resource-tree/application-resource-tree.tsx +++ b/ui/src/app/applications/components/application-resource-tree/application-resource-tree.tsx @@ -1,4 +1,4 @@ -import {DropDown, DropDownMenu, Tooltip} from 'argo-ui'; +import {DropDown, Tooltip} from 'argo-ui'; import * as classNames from 'classnames'; import * as dagre from 'dagre'; import * as React from 'react'; @@ -15,7 +15,6 @@ import {ResourceLabel} from '../resource-label'; import { BASE_COLORS, ComparisonStatusIcon, - deletePodAction, getAppOverridesCount, HealthStatusIcon, isAppNode, @@ -592,83 +591,58 @@ function renderPodGroupByStatus(props: ApplicationResourceTreeProps, node: any,
    ) : ( - pods.map(pod => ( - ( - - {pod.metadata.name} -
    Health: {pod.health}
    - {pod.createdAt && ( - - Created: - - {pod.createdAt} - - ago ({{pod.createdAt}}) - - )} -
    - } - popperOptions={{ - modifiers: { - preventOverflow: { - enabled: true - }, - hide: { - enabled: false - }, - flip: { - enabled: false + pods.map( + pod => + props.nodeMenu && ( + ( + + {pod.metadata.name} +
    Health: {pod.health}
    + {pod.createdAt && ( + + Created: + + {pod.createdAt} + + ago ({{pod.createdAt}}) + + )} +
    } - } - }} - key={pod.metadata.name}> -
    - {isYoungerThanXMinutes(pod, 30) && ( - - )} -
    - -
    -
    - - )} - items={[ - { - title: ( - - Info - - ), - action: () => props.onNodeClick(pod.fullName) - }, - { - title: ( - - Logs - - ), - action: () => { - props.appContext.apis.navigation.goto('.', {node: pod.fullName, tab: 'logs'}, {replace: true}); - } - }, - { - title: ( - - Delete - - ), - action: () => { - deletePodAction(pod, props.appContext, props.app.metadata.name, props.app.metadata.namespace); - } - } - ]} - /> - )) + popperOptions={{ + modifiers: { + preventOverflow: { + enabled: true + }, + hide: { + enabled: false + }, + flip: { + enabled: false + } + } + }} + key={pod.metadata.name}> +
    + {isYoungerThanXMinutes(pod, 30) && ( + + )} +
    + +
    +
    + + )}> + {() => props.nodeMenu(pod)} + + ) + ) )}
    ); diff --git a/ui/src/app/applications/components/applications-list/applications-table.tsx b/ui/src/app/applications/components/applications-list/applications-table.tsx index a34ea5d4d2191..a024059e16e5b 100644 --- a/ui/src/app/applications/components/applications-list/applications-table.tsx +++ b/ui/src/app/applications/components/applications-list/applications-table.tsx @@ -140,9 +140,21 @@ export const ApplicationsTable = (props: { )} items={[ - {title: 'Sync', action: () => props.syncApplication(app.metadata.name, app.metadata.namespace)}, - {title: 'Refresh', action: () => props.refreshApplication(app.metadata.name, app.metadata.namespace)}, - {title: 'Delete', action: () => props.deleteApplication(app.metadata.name, app.metadata.namespace)} + { + title: 'Sync', + iconClassName: 'fa fa-fw fa-sync', + action: () => props.syncApplication(app.metadata.name, app.metadata.namespace) + }, + { + title: 'Refresh', + iconClassName: 'fa fa-fw fa-redo', + action: () => props.refreshApplication(app.metadata.name, app.metadata.namespace) + }, + { + title: 'Delete', + iconClassName: 'fa fa-fw fa-times-circle', + action: () => props.deleteApplication(app.metadata.name, app.metadata.namespace) + } ]} />
    diff --git a/ui/src/app/applications/components/resource-details/resource-details.tsx b/ui/src/app/applications/components/resource-details/resource-details.tsx index d20285878a53c..580bea554344d 100644 --- a/ui/src/app/applications/components/resource-details/resource-details.tsx +++ b/ui/src/app/applications/components/resource-details/resource-details.tsx @@ -303,7 +303,7 @@ export const ResourceDetails = (props: ResourceDetailsProps) => { SYNC {' '}