Snippets Groups Projects

Merged VidyaDharani Lokam requested to merge az/vl-fix-logback into master 1 year ago

Change details

Common code

upgraded log4j2 version to 2.22.0

Azure

upgraded reactor-netty related dependencies to version 1.1.14
upgraded nimbus-jose-jwt-azure to 9.30.2.
remediate container_scanning flagged vulnerabilities log4j2,okio,okhttp

Changes in:

GCP
Azure
AWS
IBM

Edited 1 year ago by VidyaDharani Lokam

Activity

VidyaDharani Lokam assigned to @vidya 1 year ago

assigned to @vidya
VidyaDharani Lokam added 1 commit 1 year ago
added 1 commit

f154a721 - [MSCOSDU-1894] fix json-smart

Compare with previous version
VidyaDharani Lokam added 1 commit 1 year ago
added 1 commit

400ee791 - [MSCOSDU-1894] upgrade log4j

Compare with previous version
VidyaDharani Lokam added 1 commit 1 year ago
added 1 commit

ec416b84 - [MSCOSDU-1894] exclude logback vulnerability

Compare with previous version
VidyaDharani Lokam added 1 commit 1 year ago
added 1 commit

b50b6b96 - [MSCOSDU-1894] upgrade azure vulnerabilities

Compare with previous version
VidyaDharani Lokam changed milestone to %M23 - Release 0.26 1 year ago

changed milestone to %M23 - Release 0.26
VidyaDharani Lokam added Azure MRDependencies Upgrade Vulnerability Management labels 1 year ago

added Azure MRDependencies Upgrade Vulnerability Management labels
VidyaDharani Lokam added 1 commit 1 year ago
added 1 commit

25356ad6 - [MSCOSDU-1894] update notice

Compare with previous version
VidyaDharani Lokam marked this merge request as ready 1 year ago

marked this merge request as ready
VidyaDharani Lokam changed title from Draft: [MSCOSDU-1894] fix logback vulnerability to [MSCOSDU-1894] upgrade reactor-netty, log4j2, okhttp and okio 1 year ago

changed title from Draft: [MSCOSDU-1894] fix logback vulnerability to [MSCOSDU-1894] upgrade reactor-netty, log4j2, okhttp and okio
VidyaDharani Lokam changed the description 1 year ago

changed the description
VidyaDharani Lokam added Common Code label 1 year ago

added Common Code label
VidyaDharani Lokam changed the description 1 year ago

changed the description
Thulasi Dass Subramanian approved this merge request 1 year ago

approved this merge request
VidyaDharani Lokam requested review from @thulasi_dass 1 year ago

requested review from @thulasi_dass
VidyaDharani Lokam requested review from @Srinivasan_Narayanan 1 year ago

requested review from @Srinivasan_Narayanan
VidyaDharani Lokam @vidya · 1 year ago

Author Maintainer
Hello @Srinivasan_Narayanan @chad @vikasrana

Kindly review and approve the vulnerability remediation MR

Pipeline all jobs are passed except the IBM-test which is unrelated to this change.

cc: @thulasi_dass

Edited 1 year ago by VidyaDharani Lokam
VidyaDharani Lokam requested review from @chad 1 year ago

requested review from @chad
Srinivasan Narayanan approved this merge request 1 year ago

approved this merge request
Chad Leong approved this merge request 1 year ago

approved this merge request

Please register or sign in to reply