From 57323f9ca8ac6ac7d8a9ee72eb1c9558f19d1638 Mon Sep 17 00:00:00 2001 From: Artur Ribeiro Date: Fri, 28 Jun 2024 11:06:05 +0100 Subject: [PATCH 01/10] add cwe infos to dockerCompose queries --- assets/queries/dockerCompose/cgroup_not_default/metadata.json | 2 +- .../container_capabilities_unrestricted/metadata.json | 2 +- .../metadata.json | 2 +- assets/queries/dockerCompose/cpus_not_limited/metadata.json | 2 +- .../default_seccomp_profile_disabled/metadata.json | 4 ++-- .../docker_socket_mounted_in_container/metadata.json | 2 +- .../queries/dockerCompose/healthcheck_not_set/metadata.json | 2 +- .../dockerCompose/host_namespace_is_shared/metadata.json | 2 +- assets/queries/dockerCompose/memory_not_limited/metadata.json | 2 +- .../dockerCompose/no_new_privileges_not_set/metadata.json | 2 +- assets/queries/dockerCompose/pids_limit_not_set/metadata.json | 2 +- .../dockerCompose/privileged_containers_enabled/metadata.json | 2 +- .../privileged_ports_mapped_in_container/metadata.json | 2 +- .../restart_policy_on_failure_not_set_to_5/metadata.json | 2 +- .../queries/dockerCompose/security_opt_not_set/metadata.json | 2 +- .../dockerCompose/shared_host_ipc_namespace/metadata.json | 2 +- .../dockerCompose/shared_host_network_namespace/metadata.json | 2 +- .../dockerCompose/shared_host_user_namespace/metadata.json | 2 +- .../shared_volumes_between_containers/metadata.json | 3 ++- .../volume_has_sensitive_host_directory/metadata.json | 2 +- .../volume_mounted_in_multiple_containers/metadata.json | 2 +- 21 files changed, 23 insertions(+), 22 deletions(-) diff --git a/assets/queries/dockerCompose/cgroup_not_default/metadata.json b/assets/queries/dockerCompose/cgroup_not_default/metadata.json index 3a1631dcfae..7044c7dc4a9 100644 --- a/assets/queries/dockerCompose/cgroup_not_default/metadata.json +++ b/assets/queries/dockerCompose/cgroup_not_default/metadata.json @@ -7,5 +7,5 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/compose-file-v3/#cgroup_parent", "platform": "DockerCompose", "descriptionID": "b3657456", - "cwe": "" + "cwe": "400" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/container_capabilities_unrestricted/metadata.json b/assets/queries/dockerCompose/container_capabilities_unrestricted/metadata.json index 3914befe8d0..4d841348e2e 100644 --- a/assets/queries/dockerCompose/container_capabilities_unrestricted/metadata.json +++ b/assets/queries/dockerCompose/container_capabilities_unrestricted/metadata.json @@ -7,6 +7,6 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/compose-file-v3/#cap_add-cap_drop", "platform": "DockerCompose", "descriptionID": "1ddab108", - "cwe": "", + "cwe": "400", "oldSeverity": "LOW" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/container_traffic_not_bound_to_host_interface/metadata.json b/assets/queries/dockerCompose/container_traffic_not_bound_to_host_interface/metadata.json index 26eaf9bbd79..85ef2217ba4 100644 --- a/assets/queries/dockerCompose/container_traffic_not_bound_to_host_interface/metadata.json +++ b/assets/queries/dockerCompose/container_traffic_not_bound_to_host_interface/metadata.json @@ -7,5 +7,5 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/compose-file-v3/#ports", "platform": "DockerCompose", "descriptionID": "909d1bcd", - "cwe": "" + "cwe": "693" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/cpus_not_limited/metadata.json b/assets/queries/dockerCompose/cpus_not_limited/metadata.json index 206c9a605bd..1cde793bfc9 100644 --- a/assets/queries/dockerCompose/cpus_not_limited/metadata.json +++ b/assets/queries/dockerCompose/cpus_not_limited/metadata.json @@ -7,5 +7,5 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/compose-file-v3/#resources", "platform": "DockerCompose", "descriptionID": "d58d94a1", - "cwe": "" + "cwe": "400" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/default_seccomp_profile_disabled/metadata.json b/assets/queries/dockerCompose/default_seccomp_profile_disabled/metadata.json index 7ab7002b41c..a6e4e3c9783 100644 --- a/assets/queries/dockerCompose/default_seccomp_profile_disabled/metadata.json +++ b/assets/queries/dockerCompose/default_seccomp_profile_disabled/metadata.json @@ -3,9 +3,9 @@ "queryName": "Default Seccomp Profile Disabled", "severity": "MEDIUM", "category": "Resource Management", - "descriptionText": "Seccomp offers a whitelist of common system calls, blocking all others. Having less kernel exposed to an app then increases security.", + "descriptionText": "Seccomp offers a whitelist of common system calls, blocking all others. This reduces the kernel's exposure to the application, thereby increasing security.", "descriptionUrl": "https://docs.docker.com/compose/compose-file/compose-file-v3/#security_opt", "platform": "DockerCompose", "descriptionID": "3702d7fb", - "cwe": "" + "cwe": "269" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/docker_socket_mounted_in_container/metadata.json b/assets/queries/dockerCompose/docker_socket_mounted_in_container/metadata.json index fffebee05ab..39e808644c4 100644 --- a/assets/queries/dockerCompose/docker_socket_mounted_in_container/metadata.json +++ b/assets/queries/dockerCompose/docker_socket_mounted_in_container/metadata.json @@ -7,5 +7,5 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/#volumes", "platform": "DockerCompose", "descriptionID": "8acc9d24", - "cwe": "" + "cwe": "284" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/healthcheck_not_set/metadata.json b/assets/queries/dockerCompose/healthcheck_not_set/metadata.json index 5f08f8af6f5..b3068e35867 100644 --- a/assets/queries/dockerCompose/healthcheck_not_set/metadata.json +++ b/assets/queries/dockerCompose/healthcheck_not_set/metadata.json @@ -7,5 +7,5 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/compose-file-v3/#healthcheck", "platform": "DockerCompose", "descriptionID": "449b7c5c", - "cwe": "" + "cwe": "703" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/host_namespace_is_shared/metadata.json b/assets/queries/dockerCompose/host_namespace_is_shared/metadata.json index 8472f349703..4f6be95a250 100644 --- a/assets/queries/dockerCompose/host_namespace_is_shared/metadata.json +++ b/assets/queries/dockerCompose/host_namespace_is_shared/metadata.json @@ -7,5 +7,5 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/compose-file-v3/#pid", "platform": "DockerCompose", "descriptionID": "39a43177", - "cwe": "" + "cwe": "250" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/memory_not_limited/metadata.json b/assets/queries/dockerCompose/memory_not_limited/metadata.json index 199db339da3..c7fcc529238 100644 --- a/assets/queries/dockerCompose/memory_not_limited/metadata.json +++ b/assets/queries/dockerCompose/memory_not_limited/metadata.json @@ -7,5 +7,5 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/compose-file-v3/#resources", "platform": "DockerCompose", "descriptionID": "8fcb9f7d", - "cwe": "" + "cwe": "770" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/no_new_privileges_not_set/metadata.json b/assets/queries/dockerCompose/no_new_privileges_not_set/metadata.json index 028313eee6f..10e01dec087 100644 --- a/assets/queries/dockerCompose/no_new_privileges_not_set/metadata.json +++ b/assets/queries/dockerCompose/no_new_privileges_not_set/metadata.json @@ -7,5 +7,5 @@ "descriptionUrl": "https://docs.docker.com/engine/reference/run/#security-configuration", "platform": "DockerCompose", "descriptionID": "be48e182", - "cwe": "" + "cwe": "250" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/pids_limit_not_set/metadata.json b/assets/queries/dockerCompose/pids_limit_not_set/metadata.json index 37d222ac53b..84d407887c1 100644 --- a/assets/queries/dockerCompose/pids_limit_not_set/metadata.json +++ b/assets/queries/dockerCompose/pids_limit_not_set/metadata.json @@ -7,5 +7,5 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/compose-file-v3/#domainname-hostname-ipc-mac_address-privileged-read_only-shm_size-stdin_open-tty-user-working_dir", "platform": "DockerCompose", "descriptionID": "2d241407", - "cwe": "" + "cwe": "770" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/privileged_containers_enabled/metadata.json b/assets/queries/dockerCompose/privileged_containers_enabled/metadata.json index 0599b5d334b..7a00af986aa 100644 --- a/assets/queries/dockerCompose/privileged_containers_enabled/metadata.json +++ b/assets/queries/dockerCompose/privileged_containers_enabled/metadata.json @@ -7,5 +7,5 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/#privileged", "platform": "DockerCompose", "descriptionID": "029f6145", - "cwe": "" + "cwe": "250" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/privileged_ports_mapped_in_container/metadata.json b/assets/queries/dockerCompose/privileged_ports_mapped_in_container/metadata.json index 625c13a4310..4198cde82f0 100644 --- a/assets/queries/dockerCompose/privileged_ports_mapped_in_container/metadata.json +++ b/assets/queries/dockerCompose/privileged_ports_mapped_in_container/metadata.json @@ -7,5 +7,5 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/compose-file-v3/#cap_add-cap_drop", "platform": "DockerCompose", "descriptionID": "686dd55f", - "cwe": "" + "cwe": "269" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/restart_policy_on_failure_not_set_to_5/metadata.json b/assets/queries/dockerCompose/restart_policy_on_failure_not_set_to_5/metadata.json index 32d8326487d..69a87d63914 100644 --- a/assets/queries/dockerCompose/restart_policy_on_failure_not_set_to_5/metadata.json +++ b/assets/queries/dockerCompose/restart_policy_on_failure_not_set_to_5/metadata.json @@ -7,5 +7,5 @@ "descriptionUrl": "https://docs.docker.com/config/containers/start-containers-automatically/#use-a-restart-policy", "platform": "DockerCompose", "descriptionID": "d21fff2e", - "cwe": "" + "cwe": "693" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/security_opt_not_set/metadata.json b/assets/queries/dockerCompose/security_opt_not_set/metadata.json index 2a74d57f16e..d4a57cc8e5a 100644 --- a/assets/queries/dockerCompose/security_opt_not_set/metadata.json +++ b/assets/queries/dockerCompose/security_opt_not_set/metadata.json @@ -7,5 +7,5 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/compose-file-v3/#security_opt", "platform": "DockerCompose", "descriptionID": "83fb7a65", - "cwe": "" + "cwe": "693" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/shared_host_ipc_namespace/metadata.json b/assets/queries/dockerCompose/shared_host_ipc_namespace/metadata.json index e7da49791c0..3178ad94b61 100644 --- a/assets/queries/dockerCompose/shared_host_ipc_namespace/metadata.json +++ b/assets/queries/dockerCompose/shared_host_ipc_namespace/metadata.json @@ -7,5 +7,5 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/compose-file-v3/#domainname-hostname-ipc-mac_address-privileged-read_only-shm_size-stdin_open-tty-user-working_dir", "platform": "DockerCompose", "descriptionID": "987dc2d7", - "cwe": "" + "cwe": "668" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/shared_host_network_namespace/metadata.json b/assets/queries/dockerCompose/shared_host_network_namespace/metadata.json index 3ccf62ec2c3..20db391b32d 100644 --- a/assets/queries/dockerCompose/shared_host_network_namespace/metadata.json +++ b/assets/queries/dockerCompose/shared_host_network_namespace/metadata.json @@ -7,5 +7,5 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/compose-file-v3/#network_mode", "platform": "DockerCompose", "descriptionID": "25acba10", - "cwe": "" + "cwe": "668" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/shared_host_user_namespace/metadata.json b/assets/queries/dockerCompose/shared_host_user_namespace/metadata.json index ead1b10fc13..ebd511565c5 100644 --- a/assets/queries/dockerCompose/shared_host_user_namespace/metadata.json +++ b/assets/queries/dockerCompose/shared_host_user_namespace/metadata.json @@ -7,5 +7,5 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/compose-file-v3/#userns_mode", "platform": "DockerCompose", "descriptionID": "b7859ec8", - "cwe": "" + "cwe": "668" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/shared_volumes_between_containers/metadata.json b/assets/queries/dockerCompose/shared_volumes_between_containers/metadata.json index 5a99c3ba493..5b7dd4648b7 100644 --- a/assets/queries/dockerCompose/shared_volumes_between_containers/metadata.json +++ b/assets/queries/dockerCompose/shared_volumes_between_containers/metadata.json @@ -6,5 +6,6 @@ "descriptionText": "Volumes shared between containers can cause data corruption or can be used to share malicious files between containers.", "descriptionUrl": "https://docs.docker.com/compose/compose-file/compose-file-v3/#volumes", "platform": "DockerCompose", - "descriptionID": "574aa3ab" + "descriptionID": "574aa3ab", + "cwe": "693" } diff --git a/assets/queries/dockerCompose/volume_has_sensitive_host_directory/metadata.json b/assets/queries/dockerCompose/volume_has_sensitive_host_directory/metadata.json index 8d278dfdcd3..9b65b832540 100644 --- a/assets/queries/dockerCompose/volume_has_sensitive_host_directory/metadata.json +++ b/assets/queries/dockerCompose/volume_has_sensitive_host_directory/metadata.json @@ -7,5 +7,5 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/compose-file-v3/#volume-configuration-reference", "platform": "DockerCompose", "descriptionID": "8361cc0a", - "cwe": "" + "cwe": "668" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/volume_mounted_in_multiple_containers/metadata.json b/assets/queries/dockerCompose/volume_mounted_in_multiple_containers/metadata.json index a1da1dc5096..23a0d25ca95 100644 --- a/assets/queries/dockerCompose/volume_mounted_in_multiple_containers/metadata.json +++ b/assets/queries/dockerCompose/volume_mounted_in_multiple_containers/metadata.json @@ -7,5 +7,5 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/compose-file-v3/#volumes", "platform": "DockerCompose", "descriptionID": "1c7ca167", - "cwe": "" + "cwe": "668" } \ No newline at end of file From 5b0e44bf62d59a49f5466831b9bc1e0f09737884 Mon Sep 17 00:00:00 2001 From: Artur Ribeiro Date: Fri, 28 Jun 2024 11:28:04 +0100 Subject: [PATCH 02/10] add cloudProvider common to all queries --- assets/queries/dockerCompose/cgroup_not_default/metadata.json | 1 + .../container_capabilities_unrestricted/metadata.json | 1 + .../container_traffic_not_bound_to_host_interface/metadata.json | 1 + assets/queries/dockerCompose/cpus_not_limited/metadata.json | 1 + .../dockerCompose/default_seccomp_profile_disabled/metadata.json | 1 + .../docker_socket_mounted_in_container/metadata.json | 1 + assets/queries/dockerCompose/healthcheck_not_set/metadata.json | 1 + .../queries/dockerCompose/host_namespace_is_shared/metadata.json | 1 + assets/queries/dockerCompose/memory_not_limited/metadata.json | 1 + .../dockerCompose/no_new_privileges_not_set/metadata.json | 1 + assets/queries/dockerCompose/pids_limit_not_set/metadata.json | 1 + .../dockerCompose/privileged_containers_enabled/metadata.json | 1 + .../privileged_ports_mapped_in_container/metadata.json | 1 + .../restart_policy_on_failure_not_set_to_5/metadata.json | 1 + assets/queries/dockerCompose/security_opt_not_set/metadata.json | 1 + .../dockerCompose/shared_host_ipc_namespace/metadata.json | 1 + .../dockerCompose/shared_host_network_namespace/metadata.json | 1 + .../dockerCompose/shared_host_user_namespace/metadata.json | 1 + .../shared_volumes_between_containers/metadata.json | 1 + .../volume_has_sensitive_host_directory/metadata.json | 1 + .../volume_mounted_in_multiple_containers/metadata.json | 1 + 21 files changed, 21 insertions(+) diff --git a/assets/queries/dockerCompose/cgroup_not_default/metadata.json b/assets/queries/dockerCompose/cgroup_not_default/metadata.json index 7044c7dc4a9..354aab46da9 100644 --- a/assets/queries/dockerCompose/cgroup_not_default/metadata.json +++ b/assets/queries/dockerCompose/cgroup_not_default/metadata.json @@ -7,5 +7,6 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/compose-file-v3/#cgroup_parent", "platform": "DockerCompose", "descriptionID": "b3657456", + "cloudProvider": "common", "cwe": "400" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/container_capabilities_unrestricted/metadata.json b/assets/queries/dockerCompose/container_capabilities_unrestricted/metadata.json index 4d841348e2e..3bc0e6a32ee 100644 --- a/assets/queries/dockerCompose/container_capabilities_unrestricted/metadata.json +++ b/assets/queries/dockerCompose/container_capabilities_unrestricted/metadata.json @@ -7,6 +7,7 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/compose-file-v3/#cap_add-cap_drop", "platform": "DockerCompose", "descriptionID": "1ddab108", + "cloudProvider": "common", "cwe": "400", "oldSeverity": "LOW" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/container_traffic_not_bound_to_host_interface/metadata.json b/assets/queries/dockerCompose/container_traffic_not_bound_to_host_interface/metadata.json index 85ef2217ba4..9b7b8d8f84a 100644 --- a/assets/queries/dockerCompose/container_traffic_not_bound_to_host_interface/metadata.json +++ b/assets/queries/dockerCompose/container_traffic_not_bound_to_host_interface/metadata.json @@ -7,5 +7,6 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/compose-file-v3/#ports", "platform": "DockerCompose", "descriptionID": "909d1bcd", + "cloudProvider": "common", "cwe": "693" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/cpus_not_limited/metadata.json b/assets/queries/dockerCompose/cpus_not_limited/metadata.json index 1cde793bfc9..08174c0c46a 100644 --- a/assets/queries/dockerCompose/cpus_not_limited/metadata.json +++ b/assets/queries/dockerCompose/cpus_not_limited/metadata.json @@ -7,5 +7,6 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/compose-file-v3/#resources", "platform": "DockerCompose", "descriptionID": "d58d94a1", + "cloudProvider": "common", "cwe": "400" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/default_seccomp_profile_disabled/metadata.json b/assets/queries/dockerCompose/default_seccomp_profile_disabled/metadata.json index a6e4e3c9783..6cdcfbda141 100644 --- a/assets/queries/dockerCompose/default_seccomp_profile_disabled/metadata.json +++ b/assets/queries/dockerCompose/default_seccomp_profile_disabled/metadata.json @@ -7,5 +7,6 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/compose-file-v3/#security_opt", "platform": "DockerCompose", "descriptionID": "3702d7fb", + "cloudProvider": "common", "cwe": "269" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/docker_socket_mounted_in_container/metadata.json b/assets/queries/dockerCompose/docker_socket_mounted_in_container/metadata.json index 39e808644c4..e58adf9cee9 100644 --- a/assets/queries/dockerCompose/docker_socket_mounted_in_container/metadata.json +++ b/assets/queries/dockerCompose/docker_socket_mounted_in_container/metadata.json @@ -7,5 +7,6 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/#volumes", "platform": "DockerCompose", "descriptionID": "8acc9d24", + "cloudProvider": "common", "cwe": "284" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/healthcheck_not_set/metadata.json b/assets/queries/dockerCompose/healthcheck_not_set/metadata.json index b3068e35867..6a1049d793f 100644 --- a/assets/queries/dockerCompose/healthcheck_not_set/metadata.json +++ b/assets/queries/dockerCompose/healthcheck_not_set/metadata.json @@ -7,5 +7,6 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/compose-file-v3/#healthcheck", "platform": "DockerCompose", "descriptionID": "449b7c5c", + "cloudProvider": "common", "cwe": "703" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/host_namespace_is_shared/metadata.json b/assets/queries/dockerCompose/host_namespace_is_shared/metadata.json index 4f6be95a250..38b28790155 100644 --- a/assets/queries/dockerCompose/host_namespace_is_shared/metadata.json +++ b/assets/queries/dockerCompose/host_namespace_is_shared/metadata.json @@ -7,5 +7,6 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/compose-file-v3/#pid", "platform": "DockerCompose", "descriptionID": "39a43177", + "cloudProvider": "common", "cwe": "250" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/memory_not_limited/metadata.json b/assets/queries/dockerCompose/memory_not_limited/metadata.json index c7fcc529238..48dc32ce4cc 100644 --- a/assets/queries/dockerCompose/memory_not_limited/metadata.json +++ b/assets/queries/dockerCompose/memory_not_limited/metadata.json @@ -7,5 +7,6 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/compose-file-v3/#resources", "platform": "DockerCompose", "descriptionID": "8fcb9f7d", + "cloudProvider": "common", "cwe": "770" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/no_new_privileges_not_set/metadata.json b/assets/queries/dockerCompose/no_new_privileges_not_set/metadata.json index 10e01dec087..bf48237e60d 100644 --- a/assets/queries/dockerCompose/no_new_privileges_not_set/metadata.json +++ b/assets/queries/dockerCompose/no_new_privileges_not_set/metadata.json @@ -7,5 +7,6 @@ "descriptionUrl": "https://docs.docker.com/engine/reference/run/#security-configuration", "platform": "DockerCompose", "descriptionID": "be48e182", + "cloudProvider": "common", "cwe": "250" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/pids_limit_not_set/metadata.json b/assets/queries/dockerCompose/pids_limit_not_set/metadata.json index 84d407887c1..e6873f7a3f3 100644 --- a/assets/queries/dockerCompose/pids_limit_not_set/metadata.json +++ b/assets/queries/dockerCompose/pids_limit_not_set/metadata.json @@ -7,5 +7,6 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/compose-file-v3/#domainname-hostname-ipc-mac_address-privileged-read_only-shm_size-stdin_open-tty-user-working_dir", "platform": "DockerCompose", "descriptionID": "2d241407", + "cloudProvider": "common", "cwe": "770" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/privileged_containers_enabled/metadata.json b/assets/queries/dockerCompose/privileged_containers_enabled/metadata.json index 7a00af986aa..ba0c401ad4a 100644 --- a/assets/queries/dockerCompose/privileged_containers_enabled/metadata.json +++ b/assets/queries/dockerCompose/privileged_containers_enabled/metadata.json @@ -7,5 +7,6 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/#privileged", "platform": "DockerCompose", "descriptionID": "029f6145", + "cloudProvider": "common", "cwe": "250" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/privileged_ports_mapped_in_container/metadata.json b/assets/queries/dockerCompose/privileged_ports_mapped_in_container/metadata.json index 4198cde82f0..06a189695ea 100644 --- a/assets/queries/dockerCompose/privileged_ports_mapped_in_container/metadata.json +++ b/assets/queries/dockerCompose/privileged_ports_mapped_in_container/metadata.json @@ -7,5 +7,6 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/compose-file-v3/#cap_add-cap_drop", "platform": "DockerCompose", "descriptionID": "686dd55f", + "cloudProvider": "common", "cwe": "269" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/restart_policy_on_failure_not_set_to_5/metadata.json b/assets/queries/dockerCompose/restart_policy_on_failure_not_set_to_5/metadata.json index 69a87d63914..8556ff67a43 100644 --- a/assets/queries/dockerCompose/restart_policy_on_failure_not_set_to_5/metadata.json +++ b/assets/queries/dockerCompose/restart_policy_on_failure_not_set_to_5/metadata.json @@ -7,5 +7,6 @@ "descriptionUrl": "https://docs.docker.com/config/containers/start-containers-automatically/#use-a-restart-policy", "platform": "DockerCompose", "descriptionID": "d21fff2e", + "cloudProvider": "common", "cwe": "693" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/security_opt_not_set/metadata.json b/assets/queries/dockerCompose/security_opt_not_set/metadata.json index d4a57cc8e5a..81c7414afb4 100644 --- a/assets/queries/dockerCompose/security_opt_not_set/metadata.json +++ b/assets/queries/dockerCompose/security_opt_not_set/metadata.json @@ -7,5 +7,6 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/compose-file-v3/#security_opt", "platform": "DockerCompose", "descriptionID": "83fb7a65", + "cloudProvider": "common", "cwe": "693" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/shared_host_ipc_namespace/metadata.json b/assets/queries/dockerCompose/shared_host_ipc_namespace/metadata.json index 3178ad94b61..6fd2ea5e509 100644 --- a/assets/queries/dockerCompose/shared_host_ipc_namespace/metadata.json +++ b/assets/queries/dockerCompose/shared_host_ipc_namespace/metadata.json @@ -7,5 +7,6 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/compose-file-v3/#domainname-hostname-ipc-mac_address-privileged-read_only-shm_size-stdin_open-tty-user-working_dir", "platform": "DockerCompose", "descriptionID": "987dc2d7", + "cloudProvider": "common", "cwe": "668" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/shared_host_network_namespace/metadata.json b/assets/queries/dockerCompose/shared_host_network_namespace/metadata.json index 20db391b32d..26f4a9cfa8e 100644 --- a/assets/queries/dockerCompose/shared_host_network_namespace/metadata.json +++ b/assets/queries/dockerCompose/shared_host_network_namespace/metadata.json @@ -7,5 +7,6 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/compose-file-v3/#network_mode", "platform": "DockerCompose", "descriptionID": "25acba10", + "cloudProvider": "common", "cwe": "668" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/shared_host_user_namespace/metadata.json b/assets/queries/dockerCompose/shared_host_user_namespace/metadata.json index ebd511565c5..bcaa06886ae 100644 --- a/assets/queries/dockerCompose/shared_host_user_namespace/metadata.json +++ b/assets/queries/dockerCompose/shared_host_user_namespace/metadata.json @@ -7,5 +7,6 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/compose-file-v3/#userns_mode", "platform": "DockerCompose", "descriptionID": "b7859ec8", + "cloudProvider": "common", "cwe": "668" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/shared_volumes_between_containers/metadata.json b/assets/queries/dockerCompose/shared_volumes_between_containers/metadata.json index 5b7dd4648b7..7af97ad290c 100644 --- a/assets/queries/dockerCompose/shared_volumes_between_containers/metadata.json +++ b/assets/queries/dockerCompose/shared_volumes_between_containers/metadata.json @@ -7,5 +7,6 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/compose-file-v3/#volumes", "platform": "DockerCompose", "descriptionID": "574aa3ab", + "cloudProvider": "common", "cwe": "693" } diff --git a/assets/queries/dockerCompose/volume_has_sensitive_host_directory/metadata.json b/assets/queries/dockerCompose/volume_has_sensitive_host_directory/metadata.json index 9b65b832540..1d2a9e89cb9 100644 --- a/assets/queries/dockerCompose/volume_has_sensitive_host_directory/metadata.json +++ b/assets/queries/dockerCompose/volume_has_sensitive_host_directory/metadata.json @@ -7,5 +7,6 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/compose-file-v3/#volume-configuration-reference", "platform": "DockerCompose", "descriptionID": "8361cc0a", + "cloudProvider": "common", "cwe": "668" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/volume_mounted_in_multiple_containers/metadata.json b/assets/queries/dockerCompose/volume_mounted_in_multiple_containers/metadata.json index 23a0d25ca95..a09c6af840a 100644 --- a/assets/queries/dockerCompose/volume_mounted_in_multiple_containers/metadata.json +++ b/assets/queries/dockerCompose/volume_mounted_in_multiple_containers/metadata.json @@ -7,5 +7,6 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/compose-file-v3/#volumes", "platform": "DockerCompose", "descriptionID": "1c7ca167", + "cloudProvider": "common", "cwe": "668" } \ No newline at end of file From c80dade7ebaf63a63e3a6b7fafe3ef3bfde3aa56 Mon Sep 17 00:00:00 2001 From: Artur Ribeiro Date: Fri, 28 Jun 2024 13:53:24 +0100 Subject: [PATCH 03/10] add oldSeverity field to queries metadata --- assets/queries/dockerCompose/cgroup_not_default/metadata.json | 1 + .../container_traffic_not_bound_to_host_interface/metadata.json | 1 + assets/queries/dockerCompose/cpus_not_limited/metadata.json | 1 + .../dockerCompose/default_seccomp_profile_disabled/metadata.json | 1 + .../docker_socket_mounted_in_container/metadata.json | 1 + assets/queries/dockerCompose/healthcheck_not_set/metadata.json | 1 + .../queries/dockerCompose/host_namespace_is_shared/metadata.json | 1 + assets/queries/dockerCompose/memory_not_limited/metadata.json | 1 + .../dockerCompose/no_new_privileges_not_set/metadata.json | 1 + assets/queries/dockerCompose/pids_limit_not_set/metadata.json | 1 + .../dockerCompose/privileged_containers_enabled/metadata.json | 1 + .../privileged_ports_mapped_in_container/metadata.json | 1 + .../restart_policy_on_failure_not_set_to_5/metadata.json | 1 + assets/queries/dockerCompose/security_opt_not_set/metadata.json | 1 + .../dockerCompose/shared_host_ipc_namespace/metadata.json | 1 + .../dockerCompose/shared_host_network_namespace/metadata.json | 1 + .../dockerCompose/shared_host_user_namespace/metadata.json | 1 + .../shared_volumes_between_containers/metadata.json | 1 + .../volume_has_sensitive_host_directory/metadata.json | 1 + .../volume_mounted_in_multiple_containers/metadata.json | 1 + 20 files changed, 20 insertions(+) diff --git a/assets/queries/dockerCompose/cgroup_not_default/metadata.json b/assets/queries/dockerCompose/cgroup_not_default/metadata.json index 354aab46da9..c564a6a024e 100644 --- a/assets/queries/dockerCompose/cgroup_not_default/metadata.json +++ b/assets/queries/dockerCompose/cgroup_not_default/metadata.json @@ -7,6 +7,7 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/compose-file-v3/#cgroup_parent", "platform": "DockerCompose", "descriptionID": "b3657456", + "oldSeverity": "MEDIUM", "cloudProvider": "common", "cwe": "400" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/container_traffic_not_bound_to_host_interface/metadata.json b/assets/queries/dockerCompose/container_traffic_not_bound_to_host_interface/metadata.json index 9b7b8d8f84a..f7fe7f259ae 100644 --- a/assets/queries/dockerCompose/container_traffic_not_bound_to_host_interface/metadata.json +++ b/assets/queries/dockerCompose/container_traffic_not_bound_to_host_interface/metadata.json @@ -7,6 +7,7 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/compose-file-v3/#ports", "platform": "DockerCompose", "descriptionID": "909d1bcd", + "oldSeverity": "MEDIUM", "cloudProvider": "common", "cwe": "693" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/cpus_not_limited/metadata.json b/assets/queries/dockerCompose/cpus_not_limited/metadata.json index 08174c0c46a..58b965cb13f 100644 --- a/assets/queries/dockerCompose/cpus_not_limited/metadata.json +++ b/assets/queries/dockerCompose/cpus_not_limited/metadata.json @@ -7,6 +7,7 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/compose-file-v3/#resources", "platform": "DockerCompose", "descriptionID": "d58d94a1", + "oldSeverity": "LOW", "cloudProvider": "common", "cwe": "400" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/default_seccomp_profile_disabled/metadata.json b/assets/queries/dockerCompose/default_seccomp_profile_disabled/metadata.json index 6cdcfbda141..1cb3bdacbf7 100644 --- a/assets/queries/dockerCompose/default_seccomp_profile_disabled/metadata.json +++ b/assets/queries/dockerCompose/default_seccomp_profile_disabled/metadata.json @@ -8,5 +8,6 @@ "platform": "DockerCompose", "descriptionID": "3702d7fb", "cloudProvider": "common", + "oldSeverity": "MEDIUM", "cwe": "269" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/docker_socket_mounted_in_container/metadata.json b/assets/queries/dockerCompose/docker_socket_mounted_in_container/metadata.json index e58adf9cee9..6f79cee5846 100644 --- a/assets/queries/dockerCompose/docker_socket_mounted_in_container/metadata.json +++ b/assets/queries/dockerCompose/docker_socket_mounted_in_container/metadata.json @@ -7,6 +7,7 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/#volumes", "platform": "DockerCompose", "descriptionID": "8acc9d24", + "oldSeverity": "HIGH", "cloudProvider": "common", "cwe": "284" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/healthcheck_not_set/metadata.json b/assets/queries/dockerCompose/healthcheck_not_set/metadata.json index 6a1049d793f..87600b6fc4f 100644 --- a/assets/queries/dockerCompose/healthcheck_not_set/metadata.json +++ b/assets/queries/dockerCompose/healthcheck_not_set/metadata.json @@ -7,6 +7,7 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/compose-file-v3/#healthcheck", "platform": "DockerCompose", "descriptionID": "449b7c5c", + "oldSeverity": "MEDIUM", "cloudProvider": "common", "cwe": "703" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/host_namespace_is_shared/metadata.json b/assets/queries/dockerCompose/host_namespace_is_shared/metadata.json index 38b28790155..dfe994999b0 100644 --- a/assets/queries/dockerCompose/host_namespace_is_shared/metadata.json +++ b/assets/queries/dockerCompose/host_namespace_is_shared/metadata.json @@ -7,6 +7,7 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/compose-file-v3/#pid", "platform": "DockerCompose", "descriptionID": "39a43177", + "oldSeverity": "MEDIUM", "cloudProvider": "common", "cwe": "250" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/memory_not_limited/metadata.json b/assets/queries/dockerCompose/memory_not_limited/metadata.json index 48dc32ce4cc..f4e9314d789 100644 --- a/assets/queries/dockerCompose/memory_not_limited/metadata.json +++ b/assets/queries/dockerCompose/memory_not_limited/metadata.json @@ -7,6 +7,7 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/compose-file-v3/#resources", "platform": "DockerCompose", "descriptionID": "8fcb9f7d", + "oldSeverity": "MEDIUM", "cloudProvider": "common", "cwe": "770" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/no_new_privileges_not_set/metadata.json b/assets/queries/dockerCompose/no_new_privileges_not_set/metadata.json index bf48237e60d..4e3e421d91d 100644 --- a/assets/queries/dockerCompose/no_new_privileges_not_set/metadata.json +++ b/assets/queries/dockerCompose/no_new_privileges_not_set/metadata.json @@ -7,6 +7,7 @@ "descriptionUrl": "https://docs.docker.com/engine/reference/run/#security-configuration", "platform": "DockerCompose", "descriptionID": "be48e182", + "oldSeverity": "HIGH", "cloudProvider": "common", "cwe": "250" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/pids_limit_not_set/metadata.json b/assets/queries/dockerCompose/pids_limit_not_set/metadata.json index e6873f7a3f3..ed0c93acf4d 100644 --- a/assets/queries/dockerCompose/pids_limit_not_set/metadata.json +++ b/assets/queries/dockerCompose/pids_limit_not_set/metadata.json @@ -7,6 +7,7 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/compose-file-v3/#domainname-hostname-ipc-mac_address-privileged-read_only-shm_size-stdin_open-tty-user-working_dir", "platform": "DockerCompose", "descriptionID": "2d241407", + "oldSeverity": "MEDIUM", "cloudProvider": "common", "cwe": "770" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/privileged_containers_enabled/metadata.json b/assets/queries/dockerCompose/privileged_containers_enabled/metadata.json index ba0c401ad4a..a2dd95c77df 100644 --- a/assets/queries/dockerCompose/privileged_containers_enabled/metadata.json +++ b/assets/queries/dockerCompose/privileged_containers_enabled/metadata.json @@ -7,6 +7,7 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/#privileged", "platform": "DockerCompose", "descriptionID": "029f6145", + "oldSeverity": "HIGH", "cloudProvider": "common", "cwe": "250" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/privileged_ports_mapped_in_container/metadata.json b/assets/queries/dockerCompose/privileged_ports_mapped_in_container/metadata.json index 06a189695ea..d5d7f415967 100644 --- a/assets/queries/dockerCompose/privileged_ports_mapped_in_container/metadata.json +++ b/assets/queries/dockerCompose/privileged_ports_mapped_in_container/metadata.json @@ -8,5 +8,6 @@ "platform": "DockerCompose", "descriptionID": "686dd55f", "cloudProvider": "common", + "oldSeverity": "MEDIUM", "cwe": "269" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/restart_policy_on_failure_not_set_to_5/metadata.json b/assets/queries/dockerCompose/restart_policy_on_failure_not_set_to_5/metadata.json index 8556ff67a43..c335b30fa74 100644 --- a/assets/queries/dockerCompose/restart_policy_on_failure_not_set_to_5/metadata.json +++ b/assets/queries/dockerCompose/restart_policy_on_failure_not_set_to_5/metadata.json @@ -7,6 +7,7 @@ "descriptionUrl": "https://docs.docker.com/config/containers/start-containers-automatically/#use-a-restart-policy", "platform": "DockerCompose", "descriptionID": "d21fff2e", + "oldSeverity": "MEDIUM", "cloudProvider": "common", "cwe": "693" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/security_opt_not_set/metadata.json b/assets/queries/dockerCompose/security_opt_not_set/metadata.json index 81c7414afb4..8f6498e3b7f 100644 --- a/assets/queries/dockerCompose/security_opt_not_set/metadata.json +++ b/assets/queries/dockerCompose/security_opt_not_set/metadata.json @@ -8,5 +8,6 @@ "platform": "DockerCompose", "descriptionID": "83fb7a65", "cloudProvider": "common", + "oldSeverity": "MEDIUM", "cwe": "693" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/shared_host_ipc_namespace/metadata.json b/assets/queries/dockerCompose/shared_host_ipc_namespace/metadata.json index 6fd2ea5e509..56e8c608f41 100644 --- a/assets/queries/dockerCompose/shared_host_ipc_namespace/metadata.json +++ b/assets/queries/dockerCompose/shared_host_ipc_namespace/metadata.json @@ -7,6 +7,7 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/compose-file-v3/#domainname-hostname-ipc-mac_address-privileged-read_only-shm_size-stdin_open-tty-user-working_dir", "platform": "DockerCompose", "descriptionID": "987dc2d7", + "oldSeverity": "MEDIUM", "cloudProvider": "common", "cwe": "668" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/shared_host_network_namespace/metadata.json b/assets/queries/dockerCompose/shared_host_network_namespace/metadata.json index 26f4a9cfa8e..30897c5777a 100644 --- a/assets/queries/dockerCompose/shared_host_network_namespace/metadata.json +++ b/assets/queries/dockerCompose/shared_host_network_namespace/metadata.json @@ -8,5 +8,6 @@ "platform": "DockerCompose", "descriptionID": "25acba10", "cloudProvider": "common", + "oldSeverity": "MEDIUM", "cwe": "668" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/shared_host_user_namespace/metadata.json b/assets/queries/dockerCompose/shared_host_user_namespace/metadata.json index bcaa06886ae..137f60ed7af 100644 --- a/assets/queries/dockerCompose/shared_host_user_namespace/metadata.json +++ b/assets/queries/dockerCompose/shared_host_user_namespace/metadata.json @@ -7,6 +7,7 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/compose-file-v3/#userns_mode", "platform": "DockerCompose", "descriptionID": "b7859ec8", + "oldSeverity": "MEDIUM", "cloudProvider": "common", "cwe": "668" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/shared_volumes_between_containers/metadata.json b/assets/queries/dockerCompose/shared_volumes_between_containers/metadata.json index 7af97ad290c..eba6b0930f8 100644 --- a/assets/queries/dockerCompose/shared_volumes_between_containers/metadata.json +++ b/assets/queries/dockerCompose/shared_volumes_between_containers/metadata.json @@ -7,6 +7,7 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/compose-file-v3/#volumes", "platform": "DockerCompose", "descriptionID": "574aa3ab", + "oldSeverity": "INFO", "cloudProvider": "common", "cwe": "693" } diff --git a/assets/queries/dockerCompose/volume_has_sensitive_host_directory/metadata.json b/assets/queries/dockerCompose/volume_has_sensitive_host_directory/metadata.json index 1d2a9e89cb9..69145e77e90 100644 --- a/assets/queries/dockerCompose/volume_has_sensitive_host_directory/metadata.json +++ b/assets/queries/dockerCompose/volume_has_sensitive_host_directory/metadata.json @@ -7,6 +7,7 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/compose-file-v3/#volume-configuration-reference", "platform": "DockerCompose", "descriptionID": "8361cc0a", + "oldSeverity": "HIGH", "cloudProvider": "common", "cwe": "668" } \ No newline at end of file diff --git a/assets/queries/dockerCompose/volume_mounted_in_multiple_containers/metadata.json b/assets/queries/dockerCompose/volume_mounted_in_multiple_containers/metadata.json index a09c6af840a..669f6787ce6 100644 --- a/assets/queries/dockerCompose/volume_mounted_in_multiple_containers/metadata.json +++ b/assets/queries/dockerCompose/volume_mounted_in_multiple_containers/metadata.json @@ -8,5 +8,6 @@ "platform": "DockerCompose", "descriptionID": "1c7ca167", "cloudProvider": "common", + "oldSeverity": "HIGH", "cwe": "668" } \ No newline at end of file From a0101e3d3e1477d72545c1b0b195d96dd8b4dd49 Mon Sep 17 00:00:00 2001 From: Artur Ribeiro Date: Fri, 28 Jun 2024 14:28:01 +0100 Subject: [PATCH 04/10] add cloudProvider and cwe field to e2e tests after query update --- e2e/fixtures/E2E_CLI_096_RESULT.json | 2 ++ e2e/fixtures/E2E_CLI_097_RESULT.json | 2 ++ 2 files changed, 4 insertions(+) diff --git a/e2e/fixtures/E2E_CLI_096_RESULT.json b/e2e/fixtures/E2E_CLI_096_RESULT.json index 7bba95a6aa0..7f9660b402b 100644 --- a/e2e/fixtures/E2E_CLI_096_RESULT.json +++ b/e2e/fixtures/E2E_CLI_096_RESULT.json @@ -32,6 +32,8 @@ "query_url": "https://docs.docker.com/compose/compose-file/compose-file-v3/#resources", "severity": "MEDIUM", "platform": "DockerCompose", + "cwe": "770", + "cloud_provider": "COMMON", "category": "Resource Management", "experimental": false, "description": "Memory limits should be defined for each container. This prevents potential resource exhaustion by ensuring that containers consume not more than the designated amount of memory", diff --git a/e2e/fixtures/E2E_CLI_097_RESULT.json b/e2e/fixtures/E2E_CLI_097_RESULT.json index dd5870acd9f..409babfe7a5 100644 --- a/e2e/fixtures/E2E_CLI_097_RESULT.json +++ b/e2e/fixtures/E2E_CLI_097_RESULT.json @@ -32,6 +32,8 @@ "query_url": "https://docs.docker.com/compose/compose-file/compose-file-v3/#resources", "severity": "MEDIUM", "platform": "DockerCompose", + "cwe": "770", + "cloud_provider": "COMMON", "category": "Resource Management", "experimental": false, "description": "Memory limits should be defined for each container. This prevents potential resource exhaustion by ensuring that containers consume not more than the designated amount of memory", From ed42baa56a57669f8200b9fcd9788dea5537e41f Mon Sep 17 00:00:00 2001 From: Artur Ribeiro <153724638+ArturRibeiro-CX@users.noreply.github.com> Date: Mon, 1 Jul 2024 14:28:33 +0100 Subject: [PATCH 05/10] remove cwe info from volume has sensitive host directory --- .../volume_has_sensitive_host_directory/metadata.json | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/assets/queries/dockerCompose/volume_has_sensitive_host_directory/metadata.json b/assets/queries/dockerCompose/volume_has_sensitive_host_directory/metadata.json index 69145e77e90..16b0b30f5ca 100644 --- a/assets/queries/dockerCompose/volume_has_sensitive_host_directory/metadata.json +++ b/assets/queries/dockerCompose/volume_has_sensitive_host_directory/metadata.json @@ -9,5 +9,5 @@ "descriptionID": "8361cc0a", "oldSeverity": "HIGH", "cloudProvider": "common", - "cwe": "668" -} \ No newline at end of file + "cwe": "" +} From a3a0a1536d21a4d10e4e814bacee1da419168b33 Mon Sep 17 00:00:00 2001 From: Artur Ribeiro Date: Mon, 8 Jul 2024 14:45:00 +0100 Subject: [PATCH 06/10] revert addition of cwe and fix unit test samples --- .../volume_has_sensitive_host_directory/metadata.json | 2 -- .../volume_has_sensitive_host_directory/test/negative2.yaml | 2 ++ .../volume_has_sensitive_host_directory/test/positive3.yaml | 4 +++- .../test/positive_expected_result.json | 2 +- 4 files changed, 6 insertions(+), 4 deletions(-) diff --git a/assets/queries/dockerCompose/volume_has_sensitive_host_directory/metadata.json b/assets/queries/dockerCompose/volume_has_sensitive_host_directory/metadata.json index 16b0b30f5ca..6720d11e034 100644 --- a/assets/queries/dockerCompose/volume_has_sensitive_host_directory/metadata.json +++ b/assets/queries/dockerCompose/volume_has_sensitive_host_directory/metadata.json @@ -7,7 +7,5 @@ "descriptionUrl": "https://docs.docker.com/compose/compose-file/compose-file-v3/#volume-configuration-reference", "platform": "DockerCompose", "descriptionID": "8361cc0a", - "oldSeverity": "HIGH", - "cloudProvider": "common", "cwe": "" } diff --git a/assets/queries/dockerCompose/volume_has_sensitive_host_directory/test/negative2.yaml b/assets/queries/dockerCompose/volume_has_sensitive_host_directory/test/negative2.yaml index 88f8c87b69e..613bc25ff31 100644 --- a/assets/queries/dockerCompose/volume_has_sensitive_host_directory/test/negative2.yaml +++ b/assets/queries/dockerCompose/volume_has_sensitive_host_directory/test/negative2.yaml @@ -1,5 +1,7 @@ version: '3' +services: + image: docker volumes: wordpress-db-data: driver: local-persist diff --git a/assets/queries/dockerCompose/volume_has_sensitive_host_directory/test/positive3.yaml b/assets/queries/dockerCompose/volume_has_sensitive_host_directory/test/positive3.yaml index 354a3677c70..050b5c052bf 100644 --- a/assets/queries/dockerCompose/volume_has_sensitive_host_directory/test/positive3.yaml +++ b/assets/queries/dockerCompose/volume_has_sensitive_host_directory/test/positive3.yaml @@ -1,5 +1,7 @@ version: '3' +services: + image: docker volumes: wordpress-db-data: driver: local-persist @@ -9,4 +11,4 @@ volumes: wp-content: driver: local-persist driver_opts: - mountpoint: /var/data + mountpoint: /var/data \ No newline at end of file diff --git a/assets/queries/dockerCompose/volume_has_sensitive_host_directory/test/positive_expected_result.json b/assets/queries/dockerCompose/volume_has_sensitive_host_directory/test/positive_expected_result.json index 9c39a13ce87..0c70a091734 100644 --- a/assets/queries/dockerCompose/volume_has_sensitive_host_directory/test/positive_expected_result.json +++ b/assets/queries/dockerCompose/volume_has_sensitive_host_directory/test/positive_expected_result.json @@ -14,7 +14,7 @@ { "queryName": "Volume Has Sensitive Host Directory", "severity": "HIGH", - "line": 12, + "line": 14, "filename": "positive3.yaml" }, { From 8caf103124fb2b3dbe32c98c2588ad434eb25a96 Mon Sep 17 00:00:00 2001 From: Artur Ribeiro Date: Tue, 16 Jul 2024 11:12:44 +0100 Subject: [PATCH 07/10] add cwe as a required field to queries metadata --- .github/scripts/queries-validator/metadata-schema.json | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/.github/scripts/queries-validator/metadata-schema.json b/.github/scripts/queries-validator/metadata-schema.json index df2bd24a115..183276d720c 100644 --- a/.github/scripts/queries-validator/metadata-schema.json +++ b/.github/scripts/queries-validator/metadata-schema.json @@ -22,7 +22,8 @@ "descriptionUrl", "cloudProvider", "platform", - "descriptionID" + "descriptionID", + "cwe" ], "properties": { "id": { From 712492e09a36cc943afab5c039f81eceb8f0d6d8 Mon Sep 17 00:00:00 2001 From: Artur Ribeiro Date: Fri, 20 Sep 2024 12:07:36 +0100 Subject: [PATCH 08/10] update versions to fix cx_one vulnerabilities --- go.mod | 88 ++++++++++++------------ go.sum | 211 +++++++++++++++++++++++++++------------------------------ 2 files changed, 144 insertions(+), 155 deletions(-) diff --git a/go.mod b/go.mod index 43c799d2f0b..266bfdb0051 100644 --- a/go.mod +++ b/go.mod @@ -40,7 +40,7 @@ require ( github.com/relex/aini v1.6.0 github.com/rs/zerolog v1.33.0 github.com/sosedoff/ansible-vault-go v0.2.0 - github.com/spf13/cobra v1.8.0 + github.com/spf13/cobra v1.8.1 github.com/spf13/pflag v1.0.5 github.com/spf13/viper v1.19.0 github.com/stretchr/testify v1.9.0 @@ -53,7 +53,7 @@ require ( golang.org/x/text v0.17.0 golang.org/x/tools v0.22.0 gopkg.in/yaml.v3 v3.0.1 - helm.sh/helm/v3 v3.15.3 + helm.sh/helm/v3 v3.16.1 mvdan.cc/sh/v3 v3.8.0 ) @@ -62,18 +62,20 @@ require ( cloud.google.com/go/compute/metadata v0.3.0 // indirect cloud.google.com/go/iam v1.1.6 // indirect cloud.google.com/go/storage v1.38.0 // indirect + dario.cat/mergo v1.0.1 // indirect github.com/Microsoft/hcsshim v0.12.5 // indirect github.com/apparentlymart/go-textseg/v15 v15.0.0 // indirect github.com/aws/aws-sdk-go v1.44.295 // indirect github.com/aws/smithy-go v1.20.2 // indirect + github.com/blang/semver/v4 v4.0.0 // indirect github.com/containerd/log v0.1.0 // indirect github.com/containerd/typeurl/v2 v2.1.1 // indirect github.com/distribution/reference v0.6.0 // indirect github.com/evanphx/json-patch/v5 v5.6.0 // indirect github.com/felixge/httpsnoop v1.0.4 // indirect + github.com/fxamacker/cbor/v2 v2.7.0 // indirect github.com/go-ini/ini v1.67.0 // indirect github.com/go-logr/stdr v1.2.2 // indirect - github.com/golang/glog v1.2.1 // indirect github.com/golang/groupcache v0.0.0-20210331224755-41bb18bfe9da // indirect github.com/google/flatbuffers v24.3.25+incompatible // indirect github.com/google/gnostic-models v0.6.8 // indirect @@ -92,42 +94,42 @@ require ( github.com/samber/lo v1.38.1 // indirect github.com/sourcegraph/conc v0.3.0 // indirect github.com/tchap/go-patricia/v2 v2.3.1 // indirect + github.com/x448/float16 v0.8.4 // indirect go.opencensus.io v0.24.0 // indirect - go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.49.0 // indirect - go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.52.0 // indirect - go.opentelemetry.io/otel v1.27.0 // indirect - go.opentelemetry.io/otel/exporters/otlp/otlptrace v1.27.0 // indirect - go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc v1.27.0 // indirect - go.opentelemetry.io/otel/metric v1.27.0 // indirect - go.opentelemetry.io/otel/sdk v1.27.0 // indirect - go.opentelemetry.io/otel/trace v1.27.0 // indirect + go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.53.0 // indirect + go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.53.0 // indirect + go.opentelemetry.io/otel v1.28.0 // indirect + go.opentelemetry.io/otel/metric v1.28.0 // indirect + go.opentelemetry.io/otel/sdk v1.28.0 // indirect + go.opentelemetry.io/otel/trace v1.28.0 // indirect go.uber.org/multierr v1.11.0 // indirect golang.org/x/exp v0.0.0-20240604190554-fc45aab8b7f8 // indirect golang.org/x/mod v0.18.0 // indirect google.golang.org/api v0.171.0 // indirect google.golang.org/genproto v0.0.0-20240213162025-012b6fc9bca9 // indirect google.golang.org/genproto/googleapis/api v0.0.0-20240604185151-ef581f913117 // indirect - google.golang.org/genproto/googleapis/rpc v0.0.0-20240604185151-ef581f913117 // indirect + google.golang.org/genproto/googleapis/rpc v0.0.0-20240701130421-f6361c86f094 // indirect + gopkg.in/evanphx/json-patch.v4 v4.12.0 // indirect ) require ( github.com/Azure/go-ansiterm v0.0.0-20230124172434-306776ec8161 // indirect github.com/MakeNowJust/heredoc v1.0.0 // indirect github.com/Masterminds/goutils v1.1.1 // indirect - github.com/Masterminds/semver/v3 v3.2.1 // indirect - github.com/Masterminds/sprig/v3 v3.2.3 // indirect + github.com/Masterminds/semver/v3 v3.3.0 // indirect + github.com/Masterminds/sprig/v3 v3.3.0 // indirect github.com/Masterminds/squirrel v1.5.4 // indirect github.com/OneOfOne/xxhash v1.2.8 // indirect github.com/VividCortex/ewma v1.2.0 // indirect github.com/agext/levenshtein v1.2.3 // indirect - github.com/asaskevich/govalidator v0.0.0-20200907205600-7a23bdc65eef // indirect + github.com/asaskevich/govalidator v0.0.0-20230301143203-a9d515a09cc2 // indirect github.com/beorn7/perks v1.0.1 // indirect github.com/bgentry/go-netrc v0.0.0-20140422174119-9fd32a8b3d3d // indirect github.com/boombuler/barcode v1.0.1 // indirect github.com/cespare/xxhash/v2 v2.3.0 // indirect github.com/chai2010/gettext-go v1.0.2 // indirect github.com/containerd/containerd v1.7.21-0.20240730235713-20966044526b // indirect - github.com/cyphar/filepath-securejoin v0.2.4 // indirect + github.com/cyphar/filepath-securejoin v0.3.1 // indirect github.com/davecgh/go-spew v1.1.2-0.20180830191138-d8f796af33cc // indirect github.com/docker/cli v27.1.1+incompatible // indirect github.com/docker/distribution v2.8.3+incompatible // indirect @@ -136,7 +138,7 @@ require ( github.com/docker/go-connections v0.5.0 // indirect github.com/docker/go-metrics v0.0.1 // indirect github.com/emicklei/go-restful/v3 v3.11.0 // indirect - github.com/evanphx/json-patch v5.7.0+incompatible // indirect + github.com/evanphx/json-patch v5.9.0+incompatible // indirect github.com/exponent-io/jsonpath v0.0.0-20151013193312-d6023ce2651d // indirect github.com/fatih/color v1.17.0 // indirect github.com/fsnotify/fsnotify v1.7.0 // indirect @@ -145,7 +147,7 @@ require ( github.com/go-logr/logr v1.4.2 // indirect github.com/go-openapi/jsonpointer v0.19.6 // indirect github.com/go-openapi/jsonreference v0.20.2 // indirect - github.com/go-openapi/swag v0.22.3 // indirect + github.com/go-openapi/swag v0.22.4 // indirect github.com/gobwas/glob v0.2.3 // indirect github.com/gogo/protobuf v1.3.2 // indirect github.com/golang/protobuf v1.5.4 // indirect @@ -159,10 +161,10 @@ require ( github.com/hashicorp/go-cleanhttp v0.5.2 // indirect github.com/hashicorp/go-safetemp v1.0.0 // indirect github.com/hashicorp/go-version v1.7.0 // indirect - github.com/huandu/xstrings v1.4.0 // indirect - github.com/imdario/mergo v0.3.13 // indirect + github.com/huandu/xstrings v1.5.0 // indirect + github.com/imdario/mergo v0.3.16 // indirect github.com/inconshreveable/mousetrap v1.1.0 // indirect - github.com/jmoiron/sqlx v1.3.5 // indirect + github.com/jmoiron/sqlx v1.4.0 // indirect github.com/josharian/intern v1.0.0 // indirect github.com/json-iterator/go v1.1.12 // indirect github.com/jung-kurt/gofpdf v1.16.3-0.20210918000319-0c885ad36193 // indirect @@ -182,7 +184,7 @@ require ( github.com/mitchellh/mapstructure v1.5.0 // indirect github.com/mitchellh/reflectwalk v1.0.2 // indirect github.com/moby/locker v1.0.1 // indirect - github.com/moby/spdystream v0.2.0 // indirect + github.com/moby/spdystream v0.4.0 // indirect github.com/moby/term v0.5.0 // indirect github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect github.com/modern-go/reflect2 v1.0.2 // indirect @@ -195,17 +197,17 @@ require ( github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2 // indirect github.com/prometheus/client_golang v1.19.1 // indirect github.com/prometheus/client_model v0.6.1 // indirect - github.com/prometheus/common v0.54.0 // indirect + github.com/prometheus/common v0.55.0 // indirect github.com/prometheus/procfs v0.15.1 // indirect github.com/rcrowley/go-metrics v0.0.0-20201227073835-cf1acfcdf475 // indirect github.com/rivo/uniseg v0.4.7 // indirect - github.com/rubenv/sql-migrate v1.5.2 // indirect + github.com/rubenv/sql-migrate v1.7.0 // indirect github.com/ruudk/golang-pdf417 v0.0.0-20201230142125-a7e3863a1245 // indirect github.com/sabhiram/go-gitignore v0.0.0-20210923224102-525f6e181f06 - github.com/shopspring/decimal v1.3.1 // indirect + github.com/shopspring/decimal v1.4.0 // indirect github.com/sirupsen/logrus v1.9.3 // indirect github.com/spf13/afero v1.11.0 // indirect - github.com/spf13/cast v1.6.0 // indirect + github.com/spf13/cast v1.7.0 // indirect github.com/subosito/gotenv v1.6.0 // indirect github.com/tdewolff/parse/v2 v2.7.14 // indirect github.com/tidwall/match v1.1.1 // indirect @@ -217,33 +219,33 @@ require ( github.com/xo/terminfo v0.0.0-20210125001918-ca9a967f8778 // indirect github.com/yashtewari/glob-intersection v0.2.0 // indirect go.starlark.net v0.0.0-20230525235612-a134d8f9ddca // indirect - golang.org/x/crypto v0.25.0 // indirect - golang.org/x/oauth2 v0.20.0 // indirect + golang.org/x/crypto v0.26.0 // indirect + golang.org/x/oauth2 v0.21.0 // indirect golang.org/x/sync v0.8.0 // indirect - golang.org/x/sys v0.22.0 // indirect - golang.org/x/term v0.21.0 // indirect + golang.org/x/sys v0.23.0 // indirect + golang.org/x/term v0.23.0 // indirect golang.org/x/time v0.5.0 // indirect - google.golang.org/grpc v1.64.1 // indirect - google.golang.org/protobuf v1.34.1 // indirect + google.golang.org/grpc v1.65.0 // indirect + google.golang.org/protobuf v1.34.2 // indirect gopkg.in/inf.v0 v0.9.1 // indirect gopkg.in/ini.v1 v1.67.0 // indirect gopkg.in/yaml.v2 v2.4.0 // indirect - k8s.io/api v0.30.3 - k8s.io/apiextensions-apiserver v0.30.3 // indirect - k8s.io/apimachinery v0.30.3 - k8s.io/apiserver v0.30.3 // indirect - k8s.io/cli-runtime v0.30.0 // indirect - k8s.io/client-go v0.30.3 - k8s.io/component-base v0.30.3 // indirect - k8s.io/klog/v2 v2.120.1 // indirect + k8s.io/api v0.31.0 + k8s.io/apiextensions-apiserver v0.31.0 // indirect + k8s.io/apimachinery v0.31.0 + k8s.io/apiserver v0.31.0 // indirect + k8s.io/cli-runtime v0.31.0 // indirect + k8s.io/client-go v0.31.0 + k8s.io/component-base v0.31.0 // indirect + k8s.io/klog/v2 v2.130.1 // indirect k8s.io/kube-openapi v0.0.0-20240228011516-70dd3763d340 // indirect - k8s.io/kubectl v0.30.0 // indirect + k8s.io/kubectl v0.31.0 // indirect k8s.io/utils v0.0.0-20240711033017-18e509b52bc8 // indirect oras.land/oras-go v1.2.5 // indirect sigs.k8s.io/controller-runtime v0.14.6 sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd // indirect - sigs.k8s.io/kustomize/api v0.13.5-0.20230601165947-6ce0bf390ce3 // indirect - sigs.k8s.io/kustomize/kyaml v0.14.3-0.20230601165947-6ce0bf390ce3 // indirect + sigs.k8s.io/kustomize/api v0.17.2 // indirect + sigs.k8s.io/kustomize/kyaml v0.17.1 // indirect sigs.k8s.io/structured-merge-diff/v4 v4.4.1 // indirect sigs.k8s.io/yaml v1.4.0 // indirect ) diff --git a/go.sum b/go.sum index a6c30f4053f..b9d6848238c 100644 --- a/go.sum +++ b/go.sum @@ -184,7 +184,11 @@ cloud.google.com/go/workflows v1.6.0/go.mod h1:6t9F5h/unJz41YqfBmqSASJSXccBLtD1V cloud.google.com/go/workflows v1.7.0/go.mod h1:JhSrZuVZWuiDfKEFxU0/F1PQjmpnpcoISEXH2bcHC3M= code.cloudfoundry.org/bytefmt v0.0.0-20240604172014-5a751eb643b0 h1:/zh+lZn/dv5wns9ZFzolffRDQzjVq9RVHIhmZmjew2s= code.cloudfoundry.org/bytefmt v0.0.0-20240604172014-5a751eb643b0/go.mod h1:UYsU3izGHz/6DkJDzzw0ZjiiNBN8r1/G1a8/2d8gAcc= +dario.cat/mergo v1.0.1 h1:Ra4+bf83h2ztPIQYNP99R6m+Y7KfnARDfID+a+vLl4s= +dario.cat/mergo v1.0.1/go.mod h1:uNxQE+84aUszobStD9th8a29P2fMDhsBdgRYvZOxGmk= dmitri.shuralyov.com/gpu/mtl v0.0.0-20190408044501-666a987793e9/go.mod h1:H6x//7gZCb22OMCxBHrMx7a5I7Hp++hsVxbQ4BYO7hU= +filippo.io/edwards25519 v1.1.0 h1:FNf4tywRC1HmFuKW5xopWpigGjJKiJSV0Cqo0cJWDaA= +filippo.io/edwards25519 v1.1.0/go.mod h1:BxyFTGdWcka3PhytdK4V28tE5sGfRvvvRV7EaN4VDT4= github.com/Azure/go-ansiterm v0.0.0-20230124172434-306776ec8161 h1:L/gRVlceqvL25UVaW/CKtUDjefjrs0SPonmDGUVOYP0= github.com/Azure/go-ansiterm v0.0.0-20230124172434-306776ec8161/go.mod h1:xomTg63KZ2rFqZQzSB4Vz2SUXa1BpHTVz9L5PTmPC4E= github.com/BurntSushi/toml v0.3.1/go.mod h1:xHWCNGjB5oqiDr8zfno3MHue2Ht5sIBksp03qcyfWMU= @@ -197,11 +201,10 @@ github.com/MakeNowJust/heredoc v1.0.0 h1:cXCdzVdstXyiTqTvfqk9SDHpKNjxuom+DOlyEeQ github.com/MakeNowJust/heredoc v1.0.0/go.mod h1:mG5amYoWBHf8vpLOuehzbGGw0EHxpZZ6lCpQ4fNJ8LE= github.com/Masterminds/goutils v1.1.1 h1:5nUrii3FMTL5diU80unEVvNevw1nH4+ZV4DSLVJLSYI= github.com/Masterminds/goutils v1.1.1/go.mod h1:8cTjp+g8YejhMuvIA5y2vz3BpJxksy863GQaJW2MFNU= -github.com/Masterminds/semver/v3 v3.2.0/go.mod h1:qvl/7zhW3nngYb5+80sSMF+FG2BjYrf8m9wsX0PNOMQ= -github.com/Masterminds/semver/v3 v3.2.1 h1:RN9w6+7QoMeJVGyfmbcgs28Br8cvmnucEXnY0rYXWg0= -github.com/Masterminds/semver/v3 v3.2.1/go.mod h1:qvl/7zhW3nngYb5+80sSMF+FG2BjYrf8m9wsX0PNOMQ= -github.com/Masterminds/sprig/v3 v3.2.3 h1:eL2fZNezLomi0uOLqjQoN6BfsDD+fyLtgbJMAj9n6YA= -github.com/Masterminds/sprig/v3 v3.2.3/go.mod h1:rXcFaZ2zZbLRJv/xSysmlgIM1u11eBaRMhvYXJNkGuM= +github.com/Masterminds/semver/v3 v3.3.0 h1:B8LGeaivUe71a5qox1ICM/JLl0NqZSW5CHyL+hmvYS0= +github.com/Masterminds/semver/v3 v3.3.0/go.mod h1:4V+yj/TJE1HU9XfppCwVMZq3I84lprf4nC11bSS5beM= +github.com/Masterminds/sprig/v3 v3.3.0 h1:mQh0Yrg1XPo6vjYXgtf5OtijNAKJRNcTdOOGZe3tPhs= +github.com/Masterminds/sprig/v3 v3.3.0/go.mod h1:Zy1iXRYNqNLUolqCpL4uhk6SHUMAOSCzdgBfDb35Lz0= github.com/Masterminds/squirrel v1.5.4 h1:uUcX/aBc8O7Fg9kaISIUsHXdKuqehiXAMQTYX8afzqM= github.com/Masterminds/squirrel v1.5.4/go.mod h1:NNaOrjSoIDfDA40n7sr2tPNZRfjzjA400rg+riTZj10= github.com/Microsoft/go-winio v0.6.2 h1:F2VQgta7ecxGYO8k3ZZz3RS8fVIXVxONVUPlNERoyfY= @@ -232,8 +235,8 @@ github.com/arbovm/levenshtein v0.0.0-20160628152529-48b4e1c0c4d0 h1:jfIu9sQUG6Ig github.com/arbovm/levenshtein v0.0.0-20160628152529-48b4e1c0c4d0/go.mod h1:t2tdKJDJF9BV14lnkjHmOQgcvEKgtqs5a1N3LNdJhGE= github.com/armon/go-socks5 v0.0.0-20160902184237-e75332964ef5 h1:0CwZNZbxp69SHPdPJAN/hZIm0C4OItdklCFmMRWYpio= github.com/armon/go-socks5 v0.0.0-20160902184237-e75332964ef5/go.mod h1:wHh0iHkYZB8zMSxRWpUBQtwG5a7fFgvEO+odwuTv2gs= -github.com/asaskevich/govalidator v0.0.0-20200907205600-7a23bdc65eef h1:46PFijGLmAjMPwCCCo7Jf0W6f9slllCkkv7vyc1yOSg= -github.com/asaskevich/govalidator v0.0.0-20200907205600-7a23bdc65eef/go.mod h1:WaHUgvxTVq04UNunO+XhnAqY/wQc+bxr74GqbsZ/Jqw= +github.com/asaskevich/govalidator v0.0.0-20230301143203-a9d515a09cc2 h1:DklsrG3dyBCFEj5IhUbnKptjxatkF07cF2ak3yi77so= +github.com/asaskevich/govalidator v0.0.0-20230301143203-a9d515a09cc2/go.mod h1:WaHUgvxTVq04UNunO+XhnAqY/wQc+bxr74GqbsZ/Jqw= github.com/aws/aws-sdk-go v1.44.122/go.mod h1:y4AeaBuwd2Lk+GepC1E9v0qOiTws0MIWAX4oIKwKHZo= github.com/aws/aws-sdk-go v1.44.295 h1:SGjU1+MqttXfRiWHD6WU0DRhaanJgAFY+xIhEaugV8Y= github.com/aws/aws-sdk-go v1.44.295/go.mod h1:aVsgQcEevwlmQ7qHE9I3h+dtQgpqhFB+i8Phjh7fkwI= @@ -249,6 +252,8 @@ github.com/bgentry/go-netrc v0.0.0-20140422174119-9fd32a8b3d3d h1:xDfNPAt8lFiC1U github.com/bgentry/go-netrc v0.0.0-20140422174119-9fd32a8b3d3d/go.mod h1:6QX/PXZ00z/TKoufEY6K/a0k6AhaJrQKdFe6OfVXsa4= github.com/bigkevmcd/go-configparser v0.0.0-20230427073640-c6b631f70126 h1:uru++pUKoS/yYU3Ohq9VItZdK/cT7FFJH/UUjOlxc+s= github.com/bigkevmcd/go-configparser v0.0.0-20230427073640-c6b631f70126/go.mod h1:zqqfbfnDeSdRs1WihmMjSbhb2Ptw8Jbus831xoqiIec= +github.com/blang/semver/v4 v4.0.0 h1:1PFHFE6yCCTv8C1TeyNNarDzntLi7wMI5i/pzqYIsAM= +github.com/blang/semver/v4 v4.0.0/go.mod h1:IbckMUScFkM3pff0VJDNKRiT6TG/YpiHIM2yvyW5YoQ= github.com/boombuler/barcode v1.0.0/go.mod h1:paBWMcWSl3LHKBqUq+rly7CNSldXjb2rDl3JlRe0mD8= github.com/boombuler/barcode v1.0.1 h1:NDBbPmhS+EqABEs5Kg3n/5ZNjy73Pz7SIV+KCeqyXcs= github.com/boombuler/barcode v1.0.1/go.mod h1:paBWMcWSl3LHKBqUq+rly7CNSldXjb2rDl3JlRe0mD8= @@ -300,12 +305,12 @@ github.com/containerd/log v0.1.0/go.mod h1:VRRf09a7mHDIRezVKTRCrOq78v577GXq3bSa3 github.com/containerd/typeurl/v2 v2.1.1 h1:3Q4Pt7i8nYwy2KmQWIw2+1hTvwTE/6w9FqcttATPO/4= github.com/containerd/typeurl/v2 v2.1.1/go.mod h1:IDp2JFvbwZ31H8dQbEIY7sDl2L3o3HZj1hsSQlywkQ0= github.com/coreos/go-systemd/v22 v22.5.0/go.mod h1:Y58oyj3AT4RCenI/lSvhwexgC+NSVTIJ3seZv2GcEnc= -github.com/cpuguy83/go-md2man/v2 v2.0.3/go.mod h1:tgQtvFlXSQOSOSIRvRPT7W67SCa46tRHOmNcaadrF8o= +github.com/cpuguy83/go-md2man/v2 v2.0.4/go.mod h1:tgQtvFlXSQOSOSIRvRPT7W67SCa46tRHOmNcaadrF8o= github.com/creack/pty v1.1.9/go.mod h1:oKZEueFk5CKHvIhNR5MUki03XCEU+Q6VDXinZuGJ33E= github.com/creack/pty v1.1.21 h1:1/QdRyBaHHJP61QkWMXlOIBfsgdDeeKfK8SYVUWJKf0= github.com/creack/pty v1.1.21/go.mod h1:MOBLtS5ELjhRRrroQr9kyvTxUAFNvYEK993ew/Vr4O4= -github.com/cyphar/filepath-securejoin v0.2.4 h1:Ugdm7cg7i6ZK6x3xDF1oEu1nfkyfH53EtKeQYTC3kyg= -github.com/cyphar/filepath-securejoin v0.2.4/go.mod h1:aPGpWjXOXUn2NCNjFvBE6aRxGGx79pTxQpKOJNYHHl4= +github.com/cyphar/filepath-securejoin v0.3.1 h1:1V7cHiaW+C+39wEfpH6XlLBQo3j/PciWFrgfCLS8XrE= +github.com/cyphar/filepath-securejoin v0.3.1/go.mod h1:F7i41x/9cBF7lzCrVsYs9fuzwRZm4NQsGTBdpp6mETc= github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38= github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38= github.com/davecgh/go-spew v1.1.2-0.20180830191138-d8f796af33cc h1:U9qPSI2PIWSS1VwoXQT9A3Wy9MM3WgvqSxFWenqJduM= @@ -352,8 +357,8 @@ github.com/envoyproxy/go-control-plane v0.9.9-0.20210512163311-63b5d3c536b0/go.m github.com/envoyproxy/go-control-plane v0.9.10-0.20210907150352-cf90f659a021/go.mod h1:AFq3mo9L8Lqqiid3OhADV3RfLJnjiw63cSpi+fDTRC0= github.com/envoyproxy/go-control-plane v0.10.2-0.20220325020618-49ff273808a1/go.mod h1:KJwIaB5Mv44NWtYuAOFCVOjcI94vtpEz2JU/D2v6IjE= github.com/envoyproxy/protoc-gen-validate v0.1.0/go.mod h1:iSmxcyjqTsJpI2R4NaDN7+kN2VEUnK/pcBlmesArF7c= -github.com/evanphx/json-patch v5.7.0+incompatible h1:vgGkfT/9f8zE6tvSCe74nfpAVDQ2tG6yudJd8LBksgI= -github.com/evanphx/json-patch v5.7.0+incompatible/go.mod h1:50XU6AFN0ol/bzJsmQLiYLvXMP4fmwYFNcr97nuDLSk= +github.com/evanphx/json-patch v5.9.0+incompatible h1:fBXyNpNMuTTDdquAq/uisOr2lShz4oaXpDTX2bLe7ls= +github.com/evanphx/json-patch v5.9.0+incompatible/go.mod h1:50XU6AFN0ol/bzJsmQLiYLvXMP4fmwYFNcr97nuDLSk= github.com/evanphx/json-patch/v5 v5.6.0 h1:b91NhWfaz02IuVxO9faSllyAtNXHMPkC5J8sJCLunww= github.com/evanphx/json-patch/v5 v5.6.0/go.mod h1:G79N1coSVB93tBe7j6PhzjmR3/2VvlbKOFpnXhI9Bw4= github.com/exponent-io/jsonpath v0.0.0-20151013193312-d6023ce2651d h1:105gxyaGwCFad8crR9dcMQWvV9Hvulu6hwUh4tWPJnM= @@ -371,6 +376,8 @@ github.com/frankban/quicktest v1.14.6 h1:7Xjx+VpznH+oBnejlPUj8oUpdxnVs4f8XU8WnHk github.com/frankban/quicktest v1.14.6/go.mod h1:4ptaffx2x8+WTWXmUCuVU6aPUX1/Mz7zb5vbUoiM6w0= github.com/fsnotify/fsnotify v1.7.0 h1:8JEhPFa5W2WU7YfeZzPNqzMP6Lwt7L2715Ggo0nosvA= github.com/fsnotify/fsnotify v1.7.0/go.mod h1:40Bi/Hjc2AVfZrqy+aj+yEI+/bRxZnMJyTJwOpGvigM= +github.com/fxamacker/cbor/v2 v2.7.0 h1:iM5WgngdRBanHcxugY4JySA0nk1wZorNOpTgCMedv5E= +github.com/fxamacker/cbor/v2 v2.7.0/go.mod h1:pxXPTn3joSm21Gbwsv0w9OSA2y1HFR9qXEeXQVeNoDQ= github.com/getsentry/sentry-go v0.28.2-0.20240729102758-eb05e4b3014c h1:RQztYpXOOQULmDrm/1IXZDdeMvxejM1DFqnl3vWbaqY= github.com/getsentry/sentry-go v0.28.2-0.20240729102758-eb05e4b3014c/go.mod h1:jhPesDAL0Q0W2+2YEuVOvdWmVtdsr1+jtBrlDEVWwLY= github.com/ghodss/yaml v1.0.0/go.mod h1:4dBDuWmgqj2HViK6kFavaiC9ZROes6MMH2rRYeMEF04= @@ -397,22 +404,16 @@ github.com/go-openapi/jsonpointer v0.19.6 h1:eCs3fxoIi3Wh6vtgmLTOjdhSpiqphQ+DaPn github.com/go-openapi/jsonpointer v0.19.6/go.mod h1:osyAmYz/mB/C3I+WsTTSgw1ONzaLJoLCyoi6/zppojs= github.com/go-openapi/jsonreference v0.20.2 h1:3sVjiK66+uXK/6oQ8xgcRKcFgQ5KXa2KvnJRumpMGbE= github.com/go-openapi/jsonreference v0.20.2/go.mod h1:Bl1zwGIM8/wsvqjsOQLJ/SH+En5Ap4rVB5KVcIDZG2k= -github.com/go-openapi/swag v0.22.3 h1:yMBqmnQ0gyZvEb/+KzuWZOXgllrXT4SADYbvDaXHv/g= github.com/go-openapi/swag v0.22.3/go.mod h1:UzaqsxGiab7freDnrUUra0MwWfN/q7tE4j+VcZ0yl14= -github.com/go-sql-driver/mysql v1.6.0 h1:BCTh4TKNUYmOmMUcQ3IipzF5prigylS7XXjEkfCHuOE= -github.com/go-sql-driver/mysql v1.6.0/go.mod h1:DCzpHaOWr8IXmIStZouvnhqoel9Qv2LBy8hT2VhHyBg= +github.com/go-openapi/swag v0.22.4 h1:QLMzNJnMGPRNDCbySlcj1x01tzU8/9LTTL9hZZZogBU= +github.com/go-openapi/swag v0.22.4/go.mod h1:UzaqsxGiab7freDnrUUra0MwWfN/q7tE4j+VcZ0yl14= +github.com/go-sql-driver/mysql v1.8.1 h1:LedoTUt/eveggdHS9qUFC1EFSa8bU2+1pZjSRpvNJ1Y= +github.com/go-sql-driver/mysql v1.8.1/go.mod h1:wEBSXgmK//2ZFJyE+qWnIsVGmvmEKlqwuVSjsCm7DZg= github.com/go-stack/stack v1.8.0/go.mod h1:v0f6uXyyMGvRgIKkXu+yp6POWl0qKG85gN/melR3HDY= -github.com/go-task/slim-sprig v0.0.0-20230315185526-52ccab3ef572 h1:tfuBGBXKqDEevZMzYi5KSi8KkcZtzBcTgAUUtapy0OI= github.com/go-task/slim-sprig/v3 v3.0.0 h1:sUs3vkvUymDpBKi3qH1YSqBQk9+9D/8M2mN1vB6EwHI= github.com/go-task/slim-sprig/v3 v3.0.0/go.mod h1:W848ghGpv3Qj3dhTPRyJypKRiqCdHZiAzKg9hl15HA8= github.com/go-test/deep v1.0.3 h1:ZrJSEWsXzPOxaZnFteGEfooLba+ju3FYIbOrS+rQd68= github.com/go-test/deep v1.0.3/go.mod h1:wGDj63lr65AM2AQyKZd/NYHGb0R+1RLqB8NKt3aSFNA= -github.com/gobuffalo/logger v1.0.6 h1:nnZNpxYo0zx+Aj9RfMPBm+x9zAU2OayFh/xrAWi34HU= -github.com/gobuffalo/logger v1.0.6/go.mod h1:J31TBEHR1QLV2683OXTAItYIg8pv2JMHnF/quuAbMjs= -github.com/gobuffalo/packd v1.0.1 h1:U2wXfRr4E9DH8IdsDLlRFwTZTK7hLfq9qT/QHXGVe/0= -github.com/gobuffalo/packd v1.0.1/go.mod h1:PP2POP3p3RXGz7Jh6eYEf93S7vA2za6xM7QT85L4+VY= -github.com/gobuffalo/packr/v2 v2.8.3 h1:xE1yzvnO56cUC0sTpKR3DIbxZgB54AftTFMhB2XEWlY= -github.com/gobuffalo/packr/v2 v2.8.3/go.mod h1:0SahksCVcx4IMnigTjiFuyldmTrdTctXsOdiU5KwbKc= github.com/gobwas/glob v0.2.3 h1:A4xDbljILXROh+kObIiy5kIaPYD8e96x1tgBhUI5J+Y= github.com/gobwas/glob v0.2.3/go.mod h1:d3Ez4x06l9bZtSvzIay5+Yzi0fmZzPgnTbPcKjJAkT8= github.com/gocarina/gocsv v0.0.0-20240520201108-78e41c74b4b1 h1:FWNFq4fM1wPfcK40yHE5UO3RUdSNPaBC+j3PokzA6OQ= @@ -515,7 +516,6 @@ github.com/google/s2a-go v0.1.7 h1:60BLSyTrOV4/haCDW4zb1guZItoSq8foHCXrAnjBo/o= github.com/google/s2a-go v0.1.7/go.mod h1:50CgR4k1jNlWBu4UfS4AcfhVe1r6pdZPygJ3R8F0Qdw= github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 h1:El6M4kTTCOh6aBiKaUGG7oYTSPP8MxqL4YI3kZKwcP4= github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510/go.mod h1:pupxD2MaaD3pAXIBCelhxNneeOaAeabZDe5s4K6zSpQ= -github.com/google/uuid v1.1.1/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo= github.com/google/uuid v1.1.2/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo= github.com/google/uuid v1.3.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo= github.com/google/uuid v1.6.0 h1:NIvaJDMOsjHA8n1jAhLSgzrAzy1Hgr+hNrb57e+94F0= @@ -543,7 +543,6 @@ github.com/gorilla/handlers v1.5.1 h1:9lRY6j8DEeeBT10CvO9hGW0gmky0BprnvDI5vfhUHH github.com/gorilla/handlers v1.5.1/go.mod h1:t8XrUpc4KVXb7HGyJ4/cEnwQiaxrX/hz1Zv/4g96P1Q= github.com/gorilla/mux v1.8.1 h1:TuBL49tXwgrFYWhqrNgrUNEY92u81SPhu7sTdzQEiWY= github.com/gorilla/mux v1.8.1/go.mod h1:AKf9I4AEqPTmMytcMc0KkNouC66V3BtZ4qD5fmWSiMQ= -github.com/gorilla/websocket v1.4.2/go.mod h1:YR8l580nyteQvAITg2hZ9XVh4b55+EU/adAjf1fMHhE= github.com/gorilla/websocket v1.5.3 h1:saDtZ6Pbx/0u+bgYQ3q96pZgCzfhKXGPqt7kZ72aNNg= github.com/gorilla/websocket v1.5.3/go.mod h1:YR8l580nyteQvAITg2hZ9XVh4b55+EU/adAjf1fMHhE= github.com/gosuri/uitable v0.0.4 h1:IG2xLKRvErL3uhY6e1BylFzG+aJiwQviDDTfOKeKTpY= @@ -578,14 +577,12 @@ github.com/hashicorp/hcl/v2 v2.20.1 h1:M6hgdyz7HYt1UN9e61j+qKJBqR3orTWbI1HKBJEdx github.com/hashicorp/hcl/v2 v2.20.1/go.mod h1:TZDqQ4kNKCbh1iJp99FdPiUaVDDUPivbqxZulxDYqL4= github.com/hashicorp/terraform-json v0.22.1 h1:xft84GZR0QzjPVWs4lRUwvTcPnegqlyS7orfb5Ltvec= github.com/hashicorp/terraform-json v0.22.1/go.mod h1:JbWSQCLFSXFFhg42T7l9iJwdGXBYV8fmmD6o/ML4p3A= -github.com/huandu/xstrings v1.3.3/go.mod h1:y5/lhBue+AyNmUVz9RLU9xbLR0o4KIIExikq4ovT0aE= -github.com/huandu/xstrings v1.4.0 h1:D17IlohoQq4UcpqD7fDk80P7l+lwAmlFaBHgOipl2FU= -github.com/huandu/xstrings v1.4.0/go.mod h1:y5/lhBue+AyNmUVz9RLU9xbLR0o4KIIExikq4ovT0aE= +github.com/huandu/xstrings v1.5.0 h1:2ag3IFq9ZDANvthTwTiqSSZLjDc+BedvHPAp5tJy2TI= +github.com/huandu/xstrings v1.5.0/go.mod h1:y5/lhBue+AyNmUVz9RLU9xbLR0o4KIIExikq4ovT0aE= github.com/ianlancetaylor/demangle v0.0.0-20181102032728-5e5cf60278f6/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc= github.com/ianlancetaylor/demangle v0.0.0-20200824232613-28f6c0f3b639/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc= -github.com/imdario/mergo v0.3.11/go.mod h1:jmQim1M+e3UYxmgPu/WyfjB3N3VflVyUjjjwH0dnCYA= -github.com/imdario/mergo v0.3.13 h1:lFzP57bqS/wsqKssCGmtLAb8A0wKjLGrve2q3PPVcBk= -github.com/imdario/mergo v0.3.13/go.mod h1:4lJ1jqUDcsbIECGy0RUJAXNIhg+6ocWgb1ALK2O4oXg= +github.com/imdario/mergo v0.3.16 h1:wwQJbIsHYGMUyLSPrEq1CT16AhnhNJQ51+4fdHUnCl4= +github.com/imdario/mergo v0.3.16/go.mod h1:WBLT9ZmE3lPoWsEzCh9LPo3TiwVN+ZKEjmz+hD27ysY= github.com/inconshreveable/mousetrap v1.1.0 h1:wN+x4NVGpMsO7ErUn/mUI3vEoE6Jt13X2s0bqwp9tc8= github.com/inconshreveable/mousetrap v1.1.0/go.mod h1:vpF70FUmC8bwa3OWnCshd2FqLfsEA9PFc4w1p2J65bw= github.com/jessevdk/go-flags v1.4.0/go.mod h1:4FA24M0QyGHXBuZZK/XkWh8h0e1EYbRYJSGM75WSRxI= @@ -593,8 +590,8 @@ github.com/jmespath/go-jmespath v0.4.0 h1:BEgLn5cpjn8UN1mAw4NjwDrS35OdebyEtFe+9Y github.com/jmespath/go-jmespath v0.4.0/go.mod h1:T8mJZnbsbmF+m6zOOFylbeCJqk5+pHWvzYPziyZiYoo= github.com/jmespath/go-jmespath/internal/testify v1.5.1 h1:shLQSRRSCCPj3f2gpwzGwWFoC7ycTf1rcQZHOlsJ6N8= github.com/jmespath/go-jmespath/internal/testify v1.5.1/go.mod h1:L3OGu8Wl2/fWfCI6z80xFu9LTZmf1ZRjMHUOPmWr69U= -github.com/jmoiron/sqlx v1.3.5 h1:vFFPA71p1o5gAeqtEAwLU4dnX2napprKtHr7PYIcN3g= -github.com/jmoiron/sqlx v1.3.5/go.mod h1:nRVWtLre0KfCLJvgxzCsLVMogSvQ1zNJtpYr2Ccp0mQ= +github.com/jmoiron/sqlx v1.4.0 h1:1PLqN7S1UYp5t4SrVVnt4nUVNemrDAtxlulVe+Qgm3o= +github.com/jmoiron/sqlx v1.4.0/go.mod h1:ZrZ7UsYB/weZdl2Bxg6jCRO9c3YHl8r3ahlKmRT4JLY= github.com/johnfercher/maroto v1.0.0 h1:yo26a/Mxj2YbHCzpIW7FypKtdvv9BdeLNHaApHwLCXU= github.com/johnfercher/maroto v1.0.0/go.mod h1:qeujdhKT+677jMjGWlIa5OCgR04GgIHvByJ6pSC+hOw= github.com/josharian/intern v1.0.0 h1:vlS4z54oSdjm0bgjRigI+G1HpF+tI+9rE5LLzOg8HmY= @@ -608,8 +605,6 @@ github.com/jstemmer/go-junit-report v0.9.1/go.mod h1:Brl9GWCQeLvo8nXZwPNNblvFj/X github.com/julienschmidt/httprouter v1.2.0/go.mod h1:SYymIcj16QtmaHHD7aYtjjsJG7VTCxuUUipMqKk8s4w= github.com/jung-kurt/gofpdf v1.16.3-0.20210918000319-0c885ad36193 h1:CayMi+tPSM/E2jT9zBgpgCrLiRkAfV6Vw0qf63NCsfQ= github.com/jung-kurt/gofpdf v1.16.3-0.20210918000319-0c885ad36193/go.mod h1:1hl7y57EsiPAkLbOwzpzqgx1A30nQCk/YmFV8S2vmK0= -github.com/karrick/godirwalk v1.16.1 h1:DynhcF+bztK8gooS0+NDJFrdNZjJ3gzVzC545UNA9iw= -github.com/karrick/godirwalk v1.16.1/go.mod h1:j4mkqPuvaLI8mp1DroR3P6ad7cyYd4c1qeJ3RV7ULlk= github.com/kisielk/errcheck v1.5.0/go.mod h1:pFxgyoBC7bSaBwPgfKdkLd5X25qrDl4LWUI2bnpBCr8= github.com/kisielk/gotool v1.0.0/go.mod h1:XhKaO+MFFWcvkIS/tQcRk01m1F5IRFswLeQ+oQHNcck= github.com/klauspost/compress v1.15.11/go.mod h1:QPwzmACJjUTFsnSHH934V6woptycfrDDJnH7hvFVbGM= @@ -629,7 +624,6 @@ github.com/lann/builder v0.0.0-20180802200727-47ae307949d0 h1:SOEGU9fKiNWd/HOJuq github.com/lann/builder v0.0.0-20180802200727-47ae307949d0/go.mod h1:dXGbAdH5GtBTC4WfIxhKZfyBF/HBFgRZSWwZ9g/He9o= github.com/lann/ps v0.0.0-20150810152359-62de8c46ede0 h1:P6pPBnrTSX3DEVR4fDembhRWSsG5rVo6hYhAB/ADZrk= github.com/lann/ps v0.0.0-20150810152359-62de8c46ede0/go.mod h1:vmVJ0l/dxyfGW6FmdpVm2joNMFikkuWg0EoCKLGUMNw= -github.com/lib/pq v1.2.0/go.mod h1:5WUZQaWbwv1U+lTReE5YruASi9Al49XbQIvNi/34Woo= github.com/lib/pq v1.10.9 h1:YXG7RB+JIjhP29X+OtkiDnYaXQwpS4JEWq7dtCCRUEw= github.com/lib/pq v1.10.9/go.mod h1:AlVN5x4E4T544tWzH6hKfbfQvm3HdbOxrmggDNAPY9o= github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de h1:9TO3cAIGXtEhnIaL+V+BEER86oLrvS+kWobKpbJuye0= @@ -640,12 +634,6 @@ github.com/magiconair/properties v1.8.7 h1:IeQXZAiQcpL9mgcAe1Nu6cX9LLw6ExEHKjN0V github.com/magiconair/properties v1.8.7/go.mod h1:Dhd985XPs7jluiymwWYZ0G4Z61jb3vdS329zhj2hYo0= github.com/mailru/easyjson v0.7.7 h1:UGYAvKxe3sBsEDzO8ZeWOSlIQfWFlxbzLZe7hwFURr0= github.com/mailru/easyjson v0.7.7/go.mod h1:xzfreul335JAWq5oZzymOObrkdz5UnU4kGfJJLY9Nlc= -github.com/markbates/errx v1.1.0 h1:QDFeR+UP95dO12JgW+tgi2UVfo0V8YBHiUIOaeBPiEI= -github.com/markbates/errx v1.1.0/go.mod h1:PLa46Oex9KNbVDZhKel8v1OT7hD5JZ2eI7AHhA0wswc= -github.com/markbates/oncer v1.0.0 h1:E83IaVAHygyndzPimgUYJjbshhDTALZyXxvk9FOlQRY= -github.com/markbates/oncer v1.0.0/go.mod h1:Z59JA581E9GP6w96jai+TGqafHPW+cPfRxz2aSZ0mcI= -github.com/markbates/safe v1.0.1 h1:yjZkbvRM6IzKj9tlu/zMJLS0n/V351OZWRnF3QfaUxI= -github.com/markbates/safe v1.0.1/go.mod h1:nAqgmRi7cY2nqMc92/bSEeQA+R4OheNU2T1kNSCBdG0= github.com/mattn/go-colorable v0.0.9/go.mod h1:9vuHe8Xs5qXnSaW/c/ABM9alt+Vo+STaOChaDxuIBZU= github.com/mattn/go-colorable v0.1.13 h1:fFA4WZxdEF4tXPZVKMLwD8oUnCTTo08duU7wxecdEvA= github.com/mattn/go-colorable v0.1.13/go.mod h1:7S9/ev0klgBDR4GtXTXX8a3vIGJpMovkB8vQcUbaXHg= @@ -657,13 +645,11 @@ github.com/mattn/go-isatty v0.0.20/go.mod h1:W+V8PltTTMOvKvAeJH7IuucS94S2C6jfK/D github.com/mattn/go-runewidth v0.0.4/go.mod h1:LwmH8dsx7+W8Uxz3IHJYH5QSwggIsqBzpuz5H//U1FU= github.com/mattn/go-runewidth v0.0.15 h1:UNAjwbU9l54TA3KzvqLGxwWjHmMgBUVhBiTjelZgg3U= github.com/mattn/go-runewidth v0.0.15/go.mod h1:Jdepj2loyihRzMpdS35Xk/zdY8IAYHsh153qUoGf23w= -github.com/mattn/go-sqlite3 v1.14.6/go.mod h1:NyWgC/yNuGj7Q9rpYnZvas74GogHl5/Z4A/KQRfk6bU= -github.com/mattn/go-sqlite3 v1.14.15 h1:vfoHhTN1af61xCRSWzFIWzx2YskyMTwHLrExkBOjvxI= -github.com/mattn/go-sqlite3 v1.14.15/go.mod h1:2eHXhiwb8IkHr+BDWZGa96P6+rkvnG63S2DGjv9HUNg= +github.com/mattn/go-sqlite3 v1.14.22 h1:2gZY6PC6kBnID23Tichd1K+Z0oS6nE/XwU+Vz/5o4kU= +github.com/mattn/go-sqlite3 v1.14.22/go.mod h1:Uh1q+B4BYcTPb+yiD3kU8Ct7aC0hY9fxUwlHK0RXw+Y= github.com/matttproud/golang_protobuf_extensions v1.0.1/go.mod h1:D8He9yQNgCq6Z5Ld7szi9bcBfOoFv/3dc6xSMkL2PC0= github.com/miekg/dns v1.1.57 h1:Jzi7ApEIzwEPLHWRcafCN9LZSBbqQpxjt/wpgvg7wcM= github.com/miekg/dns v1.1.57/go.mod h1:uqRjCRUuEAA6qsOiJvDd+CFo/vW+y5WR6SNmHE55hZk= -github.com/mitchellh/copystructure v1.0.0/go.mod h1:SNtv71yrdKgLRyLFxmLdkAbkKEFWgYaq1OVrnRcwhnw= github.com/mitchellh/copystructure v1.2.0 h1:vpKXTN4ewci03Vljg/q9QvCGUDttBOGBIa15WveJJGw= github.com/mitchellh/copystructure v1.2.0/go.mod h1:qLl+cE2AmVv+CoeAwDPye/v+N2HKCj9FbZEVFJRxO9s= github.com/mitchellh/go-homedir v1.1.0 h1:lukF9ziXFxDFPkA1vsr5zpc1XuPDn/wFntq5mG+4E0Y= @@ -674,15 +660,14 @@ github.com/mitchellh/go-wordwrap v1.0.1 h1:TLuKupo69TCn6TQSyGxwI1EblZZEsQ0vMlAFQ github.com/mitchellh/go-wordwrap v1.0.1/go.mod h1:R62XHJLzvMFRBbcrT7m7WgmE1eOyTSsCt+hzestvNj0= github.com/mitchellh/mapstructure v1.5.0 h1:jeMsZIYE/09sWLaz43PL7Gy6RuMjD2eJVyuac5Z2hdY= github.com/mitchellh/mapstructure v1.5.0/go.mod h1:bFUtVrKA4DC2yAKiSyO/QUcy7e+RRV2QTWOzhPopBRo= -github.com/mitchellh/reflectwalk v1.0.0/go.mod h1:mSTlrgnPZtwu0c4WaC2kGObEpuNDbx0jmZXqmk4esnw= github.com/mitchellh/reflectwalk v1.0.2 h1:G2LzWKi524PWgd3mLHV8Y5k7s6XUvT0Gef6zxSIeXaQ= github.com/mitchellh/reflectwalk v1.0.2/go.mod h1:mSTlrgnPZtwu0c4WaC2kGObEpuNDbx0jmZXqmk4esnw= github.com/moby/buildkit v0.15.1-0.20240730223335-bc92b63b98aa h1:z92Wl4gmPxFt5wL0Stbl9mQ+3iv6x7mcD7niQHhgAYw= github.com/moby/buildkit v0.15.1-0.20240730223335-bc92b63b98aa/go.mod h1:CJPmyL9eDzHLepMLptubdQ3uckgHFdhxWR1Idj6YgNo= github.com/moby/locker v1.0.1 h1:fOXqR41zeveg4fFODix+1Ch4mj/gT0NE1XJbp/epuBg= github.com/moby/locker v1.0.1/go.mod h1:S7SDdo5zpBK84bzzVlKr2V0hz+7x9hWbYC/kq7oQppc= -github.com/moby/spdystream v0.2.0 h1:cjW1zVyyoiM0T7b6UoySUFqzXMoqRckQtXwGPiBhOM8= -github.com/moby/spdystream v0.2.0/go.mod h1:f7i0iNDQJ059oMTcWxx8MA/zKFIuD/lY+0GqbN2Wy8c= +github.com/moby/spdystream v0.4.0 h1:Vy79D6mHeJJjiPdFEL2yku1kl0chZpJfZcPpb16BRl8= +github.com/moby/spdystream v0.4.0/go.mod h1:xBAYlnt/ay+11ShkdFKNAG7LsyK/tmNBVvVOwrfMgdI= github.com/moby/sys/mountinfo v0.7.1 h1:/tTvQaSJRr2FshkhXiIpux6fQ2Zvc4j7tAhMTStAG2g= github.com/moby/sys/mountinfo v0.7.1/go.mod h1:IJb6JQeOklcdMU9F5xQ8ZALD+CUr5VlGpwtX+VE0rpI= github.com/moby/term v0.5.0 h1:xt8Q1nalod/v7BqbG21f8mQPqH+xAaC9C3N3wfWbVP0= @@ -743,8 +728,8 @@ github.com/prometheus/client_model v0.6.1 h1:ZKSh/rekM+n3CeS952MLRAdFwIKqeY8b62p github.com/prometheus/client_model v0.6.1/go.mod h1:OrxVMOVHjw3lKMa8+x6HeMGkHMQyHDk9E3jmP2AmGiY= github.com/prometheus/common v0.4.1/go.mod h1:TNfzLD0ON7rHzMJeJkieUDPYmFC7Snx/y86RQel1bk4= github.com/prometheus/common v0.6.0/go.mod h1:eBmuwkDJBwy6iBfxCBob6t6dR6ENT/y+J+Zk0j9GMYc= -github.com/prometheus/common v0.54.0 h1:ZlZy0BgJhTwVZUn7dLOkwCZHUkrAqd3WYtcFCWnM1D8= -github.com/prometheus/common v0.54.0/go.mod h1:/TQgMJP5CuVYveyT7n/0Ix8yLNNXy9yRSkhnLTHPDIQ= +github.com/prometheus/common v0.55.0 h1:KEi6DK7lXW/m7Ig5i47x0vRzuBsHuvJdi5ee6Y3G1dc= +github.com/prometheus/common v0.55.0/go.mod h1:2SECS4xJG1kd8XF9IcM1gMX6510RAEL65zxzNImwdc8= github.com/prometheus/procfs v0.0.0-20181005140218-185b4288413d/go.mod h1:c3At6R/oaqEKCNdg8wHV1ftS6bRYblBhIjjI8uT2IGk= github.com/prometheus/procfs v0.0.2/go.mod h1:TjEm7ze935MbeOT/UhFTIMYKhuLP4wbCsTZCD3I8kEA= github.com/prometheus/procfs v0.0.3/go.mod h1:4A/X28fw3Fc593LaREMrKMqOKvUAntwMDaekg4FpcdQ= @@ -764,8 +749,8 @@ github.com/rogpeppe/go-internal v1.12.0/go.mod h1:E+RYuTGaKKdloAfM02xzb0FW3Paa99 github.com/rs/xid v1.5.0/go.mod h1:trrq9SKmegXys3aeAKXMUTdJsYXVwGY3RLcfgqegfbg= github.com/rs/zerolog v1.33.0 h1:1cU2KZkvPxNyfgEmhHAz/1A9Bz+llsdYzklWFzgp0r8= github.com/rs/zerolog v1.33.0/go.mod h1:/7mN4D5sKwJLZQ2b/znpjC3/GQWY/xaDXUM0kKWRHss= -github.com/rubenv/sql-migrate v1.5.2 h1:bMDqOnrJVV/6JQgQ/MxOpU+AdO8uzYYA/TxFUBzFtS0= -github.com/rubenv/sql-migrate v1.5.2/go.mod h1:H38GW8Vqf8F0Su5XignRyaRcbXbJunSWxs+kmzlg0Is= +github.com/rubenv/sql-migrate v1.7.0 h1:HtQq1xyTN2ISmQDggnh0c9U3JlP8apWh8YO2jzlXpTI= +github.com/rubenv/sql-migrate v1.7.0/go.mod h1:S4wtDEG1CKn+0ShpTtzWhFpHHI5PvCUtiGI+C+Z2THE= github.com/russross/blackfriday/v2 v2.1.0 h1:JIOH55/0cWyOuilr9/qlrm0BSXldqnqwMsf35Ld67mk= github.com/russross/blackfriday/v2 v2.1.0/go.mod h1:+Rmxgy9KzJVeS9/2gXHxylqXiyQDYRxCVz55jmeOWTM= github.com/ruudk/golang-pdf417 v0.0.0-20181029194003-1af4ab5afa58/go.mod h1:6lfFZQK844Gfx8o5WFuvpxWRwnSoipWe/p622j1v06w= @@ -781,9 +766,8 @@ github.com/samber/lo v1.38.1 h1:j2XEAqXKb09Am4ebOg31SpvzUTTs6EN3VfgeLUhPdXM= github.com/samber/lo v1.38.1/go.mod h1:+m/ZKRl6ClXCE2Lgf3MsQlWfh4bn1bz6CXEOxnEXnEA= github.com/sergi/go-diff v1.3.1 h1:xkr+Oxo4BOQKmkn/B9eMK0g5Kg/983T9DqqPHwYqD+8= github.com/sergi/go-diff v1.3.1/go.mod h1:aMJSSKb2lpPvRNec0+w3fl7LP9IOFzdc9Pa4NFbPK1I= -github.com/shopspring/decimal v1.2.0/go.mod h1:DKyhrW/HYNuLGql+MJL6WCR6knT2jwCFRcu2hWCYk4o= -github.com/shopspring/decimal v1.3.1 h1:2Usl1nmF/WZucqkFZhnfFYxxxu8LG21F6nPQBE5gKV8= -github.com/shopspring/decimal v1.3.1/go.mod h1:DKyhrW/HYNuLGql+MJL6WCR6knT2jwCFRcu2hWCYk4o= +github.com/shopspring/decimal v1.4.0 h1:bxl37RwXBklmTi0C79JfXCEBD1cqqHt0bbgBAGFp81k= +github.com/shopspring/decimal v1.4.0/go.mod h1:gawqmDU56v4yIKSwfBSFip1HdCCXN8/+DMd9qYNcwME= github.com/sirupsen/logrus v1.2.0/go.mod h1:LxeOpSwHxABJmUn/MG1IvRgCAasNZTLOkJPxbbu5VWo= github.com/sirupsen/logrus v1.9.3 h1:dueUQJ1C2q9oE3F7wvmSGAaVtTmUizReu6fjN8uqzbQ= github.com/sirupsen/logrus v1.9.3/go.mod h1:naHLuLoDiP4jHNo9R0sCBMtWGeIprob74mVsIT4qYEQ= @@ -794,11 +778,10 @@ github.com/sourcegraph/conc v0.3.0/go.mod h1:Sdozi7LEKbFPqYX2/J+iBAM6HpqSLTASQIK github.com/spaolacci/murmur3 v0.0.0-20180118202830-f09979ecbc72/go.mod h1:JwIasOWyU6f++ZhiEuf87xNszmSA2myDM2Kzu9HwQUA= github.com/spf13/afero v1.2.2 h1:5jhuqJyZCZf2JRofRvN/nIFgIWNzPa3/Vz8mYylgbWc= github.com/spf13/afero v1.2.2/go.mod h1:9ZxEEn6pIJ8Rxe320qSDBk6AsU0r9pR7Q4OcevTdifk= -github.com/spf13/cast v1.3.1/go.mod h1:Qx5cxh0v+4UWYiBimWS+eyWzqEqokIECu5etghLkUJE= -github.com/spf13/cast v1.6.0 h1:GEiTHELF+vaR5dhz3VqZfFSzZjYbgeKDpBxQVS4GYJ0= -github.com/spf13/cast v1.6.0/go.mod h1:ancEpBxwJDODSW/UG4rDrAqiKolqNNh2DX3mk86cAdo= -github.com/spf13/cobra v1.8.0 h1:7aJaZx1B85qltLMc546zn58BxxfZdR/W22ej9CFoEf0= -github.com/spf13/cobra v1.8.0/go.mod h1:WXLWApfZ71AjXPya3WOlMsY9yMs7YeiHhFVlvLyhcho= +github.com/spf13/cast v1.7.0 h1:ntdiHjuueXFgm5nzDRdOS4yfT43P5Fnud6DH50rz/7w= +github.com/spf13/cast v1.7.0/go.mod h1:ancEpBxwJDODSW/UG4rDrAqiKolqNNh2DX3mk86cAdo= +github.com/spf13/cobra v1.8.1 h1:e5/vxKd/rZsfSJMUX1agtjeTDf+qv1/JdBF8gg5k9ZM= +github.com/spf13/cobra v1.8.1/go.mod h1:wHxEcudfqmLYa8iTfL+OuZPbBZkmvliBWKIezN3kD9Y= github.com/spf13/pflag v1.0.5 h1:iy+VFUOCP1a+8yFto/drg2CJ5u0yRoB7fZw3DKv/JXA= github.com/spf13/pflag v1.0.5/go.mod h1:McXfInJRrz4CZXVZOBLb0bTZqETkiAhM9Iw0y3An2Bg= github.com/spf13/viper v1.19.0 h1:RWq5SEjt8o25SROyN3z2OrDB9l7RPd3lwTWU8EcEdcI= @@ -843,6 +826,8 @@ github.com/tidwall/pretty v1.2.1/go.mod h1:ITEVvHYasfjBbM0u2Pg8T2nJnzm8xPwvNhhso github.com/ulikunitz/xz v0.5.10/go.mod h1:nbz6k7qbPmH4IRqmfOplQw/tblSgqTqBwxkY0oWt/14= github.com/ulikunitz/xz v0.5.11 h1:kpFauv27b6ynzBNT/Xy+1k+fK4WswhN/6PN5WhFAGw8= github.com/ulikunitz/xz v0.5.11/go.mod h1:nbz6k7qbPmH4IRqmfOplQw/tblSgqTqBwxkY0oWt/14= +github.com/x448/float16 v0.8.4 h1:qLwI1I70+NjRFUR3zs1JPUCgaCXSh3SW62uAKT1mSBM= +github.com/x448/float16 v0.8.4/go.mod h1:14CWIYCyZA/cWjXOioeEpHeN/83MdbZDRQHoFcYsOfg= github.com/xeipuuv/gojsonpointer v0.0.0-20180127040702-4e3ac2762d5f/go.mod h1:N2zxlSyiKSe5eX1tZViRH5QA0qijqEDrYZiPEAiq3wU= github.com/xeipuuv/gojsonpointer v0.0.0-20190905194746-02993c407bfb h1:zGWFAtiMcyryUHoUjUJX0/lt1H2+i2Ka2n+D3DImSNo= github.com/xeipuuv/gojsonpointer v0.0.0-20190905194746-02993c407bfb/go.mod h1:N2zxlSyiKSe5eX1tZViRH5QA0qijqEDrYZiPEAiq3wU= @@ -883,27 +868,29 @@ go.opencensus.io v0.22.5/go.mod h1:5pWMHQbX5EPX2/62yrJeAkowc+lfs/XD7Uxpq3pI6kk= go.opencensus.io v0.23.0/go.mod h1:XItmlyltB5F7CS4xOC1DcqMoFqwtC6OG2xF7mCv7P7E= go.opencensus.io v0.24.0 h1:y73uSU6J157QMP2kn2r30vwW1A2W2WFwSCGnAVxeaD0= go.opencensus.io v0.24.0/go.mod h1:vNK8G9p7aAivkbmorf4v+7Hgx+Zs0yY+0fOtgBfjQKo= -go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.49.0 h1:4Pp6oUg3+e/6M4C0A/3kJ2VYa++dsWVTtGgLVj5xtHg= -go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.49.0/go.mod h1:Mjt1i1INqiaoZOMGR1RIUJN+i3ChKoFRqzrRQhlkbs0= -go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.52.0 h1:9l89oX4ba9kHbBol3Xin3leYJ+252h0zszDtBwyKe2A= -go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.52.0/go.mod h1:XLZfZboOJWHNKUv7eH0inh0E9VV6eWDFB/9yJyTLPp0= -go.opentelemetry.io/otel v1.27.0 h1:9BZoF3yMK/O1AafMiQTVu0YDj5Ea4hPhxCs7sGva+cg= -go.opentelemetry.io/otel v1.27.0/go.mod h1:DMpAK8fzYRzs+bi3rS5REupisuqTheUlSZJ1WnZaPAQ= -go.opentelemetry.io/otel/exporters/otlp/otlptrace v1.27.0 h1:R9DE4kQ4k+YtfLI2ULwX82VtNQ2J8yZmA7ZIF/D+7Mc= -go.opentelemetry.io/otel/exporters/otlp/otlptrace v1.27.0/go.mod h1:OQFyQVrDlbe+R7xrEyDr/2Wr67Ol0hRUgsfA+V5A95s= +go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.53.0 h1:9G6E0TXzGFVfTnawRzrPl83iHOAV7L8NJiR8RSGYV1g= +go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.53.0/go.mod h1:azvtTADFQJA8mX80jIH/akaE7h+dbm/sVuaHqN13w74= +go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.53.0 h1:4K4tsIXefpVJtvA/8srF4V4y0akAoPHkIslgAkjixJA= +go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.53.0/go.mod h1:jjdQuTGVsXV4vSs+CJ2qYDeDPf9yIJV23qlIzBm73Vg= +go.opentelemetry.io/otel v1.28.0 h1:/SqNcYk+idO0CxKEUOtKQClMK/MimZihKYMruSMViUo= +go.opentelemetry.io/otel v1.28.0/go.mod h1:q68ijF8Fc8CnMHKyzqL6akLO46ePnjkgfIMIjUIX9z4= +go.opentelemetry.io/otel/exporters/otlp/otlptrace v1.28.0 h1:3Q/xZUyC1BBkualc9ROb4G8qkH90LXEIICcs5zv1OYY= +go.opentelemetry.io/otel/exporters/otlp/otlptrace v1.28.0/go.mod h1:s75jGIWA9OfCMzF0xr+ZgfrB5FEbbV7UuYo32ahUiFI= go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc v1.27.0 h1:qFffATk0X+HD+f1Z8lswGiOQYKHRlzfmdJm0wEaVrFA= go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc v1.27.0/go.mod h1:MOiCmryaYtc+V0Ei+Tx9o5S1ZjA7kzLucuVuyzBZloQ= -go.opentelemetry.io/otel/metric v1.27.0 h1:hvj3vdEKyeCi4YaYfNjv2NUje8FqKqUY8IlF0FxV/ik= -go.opentelemetry.io/otel/metric v1.27.0/go.mod h1:mVFgmRlhljgBiuk/MP/oKylr4hs85GZAylncepAX/ak= -go.opentelemetry.io/otel/sdk v1.27.0 h1:mlk+/Y1gLPLn84U4tI8d3GNJmGT/eXe3ZuOXN9kTWmI= -go.opentelemetry.io/otel/sdk v1.27.0/go.mod h1:Ha9vbLwJE6W86YstIywK2xFfPjbWlCuwPtMkKdz/Y4A= -go.opentelemetry.io/otel/trace v1.27.0 h1:IqYb813p7cmbHk0a5y6pD5JPakbVfftRXABGt5/Rscw= -go.opentelemetry.io/otel/trace v1.27.0/go.mod h1:6RiD1hkAprV4/q+yd2ln1HG9GoPx39SuvvstaLBl+l4= +go.opentelemetry.io/otel/metric v1.28.0 h1:f0HGvSl1KRAU1DLgLGFjrwVyismPlnuU6JD6bOeuA5Q= +go.opentelemetry.io/otel/metric v1.28.0/go.mod h1:Fb1eVBFZmLVTMb6PPohq3TO9IIhUisDsbJoL/+uQW4s= +go.opentelemetry.io/otel/sdk v1.28.0 h1:b9d7hIry8yZsgtbmM0DKyPWMMUMlK9NEKuIG4aBqWyE= +go.opentelemetry.io/otel/sdk v1.28.0/go.mod h1:oYj7ClPUA7Iw3m+r7GeEjz0qckQRJK2B8zjcZEfu7Pg= +go.opentelemetry.io/otel/trace v1.28.0 h1:GhQ9cUuQGmNDd5BTCP2dAvv75RdMxEfTmYejp+lkx9g= +go.opentelemetry.io/otel/trace v1.28.0/go.mod h1:jPyXzNPg6da9+38HEwElrQiHlVMTnVfM3/yv2OlIHaI= go.opentelemetry.io/proto/otlp v0.7.0/go.mod h1:PqfVotwruBrMGOCsRd/89rSnXhoiJIqeYNgFYFoEGnI= -go.opentelemetry.io/proto/otlp v1.2.0 h1:pVeZGk7nXDC9O2hncA6nHldxEjm6LByfA2aN8IOkz94= -go.opentelemetry.io/proto/otlp v1.2.0/go.mod h1:gGpR8txAl5M03pDhMC79G6SdqNV26naRm/KDsgaHD8A= +go.opentelemetry.io/proto/otlp v1.3.1 h1:TrMUixzpM0yuc/znrFTP9MMRh8trP93mkCiDVeXrui0= +go.opentelemetry.io/proto/otlp v1.3.1/go.mod h1:0X1WI4de4ZsLrrJNLAQbFeLCm3T7yBkR0XqQ7niQU+8= go.starlark.net v0.0.0-20230525235612-a134d8f9ddca h1:VdD38733bfYv5tUZwEIskMM93VanwNIi5bIKnDrJdEY= go.starlark.net v0.0.0-20230525235612-a134d8f9ddca/go.mod h1:jxU+3+j+71eXOW14274+SmmuW82qJzl6iZSeqEtTGds= +go.uber.org/goleak v1.3.0 h1:2K3zAYmnTNqV73imy9J1T3WC+gmCePx2hEGkimedGto= +go.uber.org/goleak v1.3.0/go.mod h1:CoHD4mav9JJNrW/WLlf7HGZPjdw8EucARQHekz1X6bE= go.uber.org/multierr v1.11.0 h1:blXXJkSxSSfBVBlC76pxqeO+LN3aDfLQo+309xJstO0= go.uber.org/multierr v1.11.0/go.mod h1:20+QtiLqy0Nd6FdQB9TLXag12DsQkrbs3htMFfDN80Y= go.uber.org/zap v1.26.0 h1:sI7k6L95XOKS281NhVKOFCUNIvv9e0w4BF8N3u+tCRo= @@ -1029,8 +1016,8 @@ golang.org/x/oauth2 v0.0.0-20220822191816-0ebed06d0094/go.mod h1:h4gKUeWbJ4rQPri golang.org/x/oauth2 v0.0.0-20220909003341-f21342109be1/go.mod h1:h4gKUeWbJ4rQPri7E0u6Gs4e9Ri2zaLxzw5DI5XGrYg= golang.org/x/oauth2 v0.0.0-20221014153046-6fdb5e3db783/go.mod h1:h4gKUeWbJ4rQPri7E0u6Gs4e9Ri2zaLxzw5DI5XGrYg= golang.org/x/oauth2 v0.1.0/go.mod h1:G9FE4dLTsbXUu90h/Pf85g4w1D+SSAgR+q46nJZ8M4A= -golang.org/x/oauth2 v0.20.0 h1:4mQdhULixXKP1rwYBW0vAijoXnkTG0BLCDRzfe1idMo= -golang.org/x/oauth2 v0.20.0/go.mod h1:XYTD2NtWslqkgxebSiOHnXEap4TF09sJSc7H1sXbhtI= +golang.org/x/oauth2 v0.21.0 h1:tsimM75w1tF/uws5rbeHzIWxEqElMehnc+iW793zsZs= +golang.org/x/oauth2 v0.21.0/go.mod h1:XYTD2NtWslqkgxebSiOHnXEap4TF09sJSc7H1sXbhtI= golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM= golang.org/x/sync v0.0.0-20181108010431-42b317875d0f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM= golang.org/x/sync v0.0.0-20181221193216-37e7f081c4d4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM= @@ -1121,8 +1108,8 @@ golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= golang.org/x/sys v0.12.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= golang.org/x/sys v0.17.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA= golang.org/x/sys v0.19.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA= -golang.org/x/sys v0.22.0 h1:RI27ohtqKCnwULzJLqkv897zojh5/DwS/ENaMzUOaWI= -golang.org/x/sys v0.22.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA= +golang.org/x/sys v0.23.0 h1:YfKFowiIMvtgl1UERQoTPPToxltDeZfbj4H7dVUCwmM= +golang.org/x/sys v0.23.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA= golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo= golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8= golang.org/x/term v0.0.0-20220526004731-065cf7ba2467/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8= @@ -1130,8 +1117,8 @@ golang.org/x/term v0.1.0/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8= golang.org/x/term v0.5.0/go.mod h1:jMB1sMXY+tzblOD4FWmEbocvup2/aLOaQEp7JmGp78k= golang.org/x/term v0.17.0/go.mod h1:lLRBjIVuehSbZlaOtGMbcMncT+aqLLLmKrsjNrUguwk= golang.org/x/term v0.19.0/go.mod h1:2CuTdWZ7KHSQwUzKva0cbMg6q2DMI3Mmxp+gKJbskEk= -golang.org/x/term v0.21.0 h1:WVXCp+/EBEHOj53Rvu+7KiT/iElMrO8ACK16SMZ3jaA= -golang.org/x/term v0.21.0/go.mod h1:ooXLefLobQVslOqselCNF4SxFAaoS6KujMbsGzSDmX0= +golang.org/x/term v0.23.0 h1:F6D4vR+EHoL9/sWAWgAR1H2DcHr4PareCbAaCo1RpuU= +golang.org/x/term v0.23.0/go.mod h1:DgV24QBUrK6jhZXl+20l6UWznPlwAHm1Q1mGHtydmSk= golang.org/x/text v0.0.0-20170915032832-14c0d48ead0c/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ= golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ= golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ= @@ -1382,8 +1369,8 @@ google.golang.org/genproto v0.0.0-20240213162025-012b6fc9bca9 h1:9+tzLLstTlPTRyJ google.golang.org/genproto v0.0.0-20240213162025-012b6fc9bca9/go.mod h1:mqHbVIp48Muh7Ywss/AD6I5kNVKZMmAa/QEW58Gxp2s= google.golang.org/genproto/googleapis/api v0.0.0-20240604185151-ef581f913117 h1:+rdxYoE3E5htTEWIe15GlN6IfvbURM//Jt0mmkmm6ZU= google.golang.org/genproto/googleapis/api v0.0.0-20240604185151-ef581f913117/go.mod h1:OimBR/bc1wPO9iV4NC2bpyjy3VnAwZh5EBPQdtaE5oo= -google.golang.org/genproto/googleapis/rpc v0.0.0-20240604185151-ef581f913117 h1:1GBuWVLM/KMVUv1t1En5Gs+gFZCNd360GGb4sSxtrhU= -google.golang.org/genproto/googleapis/rpc v0.0.0-20240604185151-ef581f913117/go.mod h1:EfXuqaE1J41VCDicxHzUDm+8rk+7ZdXzHV0IhO/I6s0= +google.golang.org/genproto/googleapis/rpc v0.0.0-20240701130421-f6361c86f094 h1:BwIjyKYGsK9dMCBOorzRri8MQwmi7mT9rGHsCEinZkA= +google.golang.org/genproto/googleapis/rpc v0.0.0-20240701130421-f6361c86f094/go.mod h1:Ue6ibwXGpU+dqIcODieyLOcgj7z8+IcskoNIgZxtrFY= google.golang.org/grpc v1.19.0/go.mod h1:mqu4LbDTu4XGKhr4mRzUsmM4RtVoemTSY81AxZiDr8c= google.golang.org/grpc v1.20.1/go.mod h1:10oTOabMzJvdu6/UiuZezV6QK5dSlG84ov/aaiqXj38= google.golang.org/grpc v1.21.1/go.mod h1:oYelfM1adQP15Ek0mdvEgi9Df8B9CZIaU1084ijfRaM= @@ -1419,8 +1406,8 @@ google.golang.org/grpc v1.48.0/go.mod h1:vN9eftEi1UMyUsIF80+uQXhHjbXYbm0uXoFCACu google.golang.org/grpc v1.49.0/go.mod h1:ZgQEeidpAuNRZ8iRrlBKXZQP1ghovWIVhdJRyCDK+GI= google.golang.org/grpc v1.50.0/go.mod h1:ZgQEeidpAuNRZ8iRrlBKXZQP1ghovWIVhdJRyCDK+GI= google.golang.org/grpc v1.50.1/go.mod h1:ZgQEeidpAuNRZ8iRrlBKXZQP1ghovWIVhdJRyCDK+GI= -google.golang.org/grpc v1.64.1 h1:LKtvyfbX3UGVPFcGqJ9ItpVWW6oN/2XqTxfAnwRRXiA= -google.golang.org/grpc v1.64.1/go.mod h1:hiQF4LFZelK2WKaP6W0L92zGHtiQdZxk8CrSdvyjeP0= +google.golang.org/grpc v1.65.0 h1:bs/cUb4lp1G5iImFFd3u5ixQzweKizoZJAwBNLR42lc= +google.golang.org/grpc v1.65.0/go.mod h1:WgYC2ypjlB0EiQi6wdKixMqukr6lBc0Vo+oOgjrM5ZQ= google.golang.org/grpc/cmd/protoc-gen-go-grpc v1.1.0/go.mod h1:6Kw0yEErY5E/yWrBtf03jp27GLLJujG4z/JK95pnjjw= google.golang.org/protobuf v1.33.0 h1:uNO2rsAINq/JlFpSdYEKIZ0uKD/R9cpdv0T+yoGwGmI= google.golang.org/protobuf v1.33.0/go.mod h1:c6P6GXX6sHbq/GpV6MGZEdwhWPcYBgnhAHhKbcUYpos= @@ -1431,6 +1418,8 @@ gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c h1:Hei/4ADfdWqJk1ZMxUNpqntN gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c/go.mod h1:JHkPIbrfpd72SG/EVd6muEfDQjcINNoR0C8j2r3qZ4Q= gopkg.in/cheggaaa/pb.v1 v1.0.27/go.mod h1:V/YB90LKu/1FcN3WVnfiiE5oMCibMjukxqG/qStrOgw= gopkg.in/errgo.v2 v2.1.0/go.mod h1:hNsd1EY+bozCKY1Ytp96fpM3vjJbqLJn88ws8XvfDNI= +gopkg.in/evanphx/json-patch.v4 v4.12.0 h1:n6jtcsulIzXPJaxegRbvFNNrZDjbij7ny3gmSPG+6V4= +gopkg.in/evanphx/json-patch.v4 v4.12.0/go.mod h1:p8EYWUEYMpynmqDbY58zCKCFZw8pRWMG4EsWvDvM72M= gopkg.in/inf.v0 v0.9.1 h1:73M5CoZyi3ZLMOyDlQh031Cx6N9NDJ2Vvfl76EDAgDc= gopkg.in/inf.v0 v0.9.1/go.mod h1:cWUDdTG/fYaXco+Dcufb5Vnc6Gp2YChqWtbxRZE0mXw= gopkg.in/ini.v1 v1.67.0 h1:Dgnx+6+nfE+IfzjUEISNeydPJh9AXNNsWbGP9KzCsOA= @@ -1439,17 +1428,15 @@ gopkg.in/yaml.v2 v2.2.1/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI= gopkg.in/yaml.v2 v2.2.2/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI= gopkg.in/yaml.v2 v2.2.3/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI= gopkg.in/yaml.v2 v2.2.8/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI= -gopkg.in/yaml.v2 v2.3.0/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI= gopkg.in/yaml.v2 v2.4.0 h1:D8xgwECY7CYvx+Y2n4sBz93Jn9JRvxdiyyo8CTfuKaY= gopkg.in/yaml.v2 v2.4.0/go.mod h1:RDklbk79AGWmwhnvt/jBztapEOGDOx6ZbXqjP6csGnQ= gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM= -gopkg.in/yaml.v3 v3.0.0/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM= gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA= gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM= gotest.tools/v3 v3.5.0 h1:Ljk6PdHdOhAb5aDMWXjDLMMhph+BpztA4v1QdqEW2eY= gotest.tools/v3 v3.5.0/go.mod h1:isy3WKz7GK6uNw/sbHzfKBLvlvXwUyV06n6brMxxopU= -helm.sh/helm/v3 v3.15.3 h1:HcZDaVFe9uHa6hpsR54mJjYyRy4uz/pc6csg27nxFOc= -helm.sh/helm/v3 v3.15.3/go.mod h1:FzSIP8jDQaa6WAVg9F+OkKz7J0ZmAga4MABtTbsb9WQ= +helm.sh/helm/v3 v3.16.1 h1:cER6tI/8PgUAsaJaQCVBUg3VI9KN4oVaZJgY60RIc0c= +helm.sh/helm/v3 v3.16.1/go.mod h1:r+xBHHP20qJeEqtvBXMf7W35QDJnzY/eiEBzt+TfHps= honnef.co/go/tools v0.0.0-20190102054323-c2f93a96b099/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4= honnef.co/go/tools v0.0.0-20190106161140-3f1c8253044a/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4= honnef.co/go/tools v0.0.0-20190418001031-e561f6794a2a/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4= @@ -1457,26 +1444,26 @@ honnef.co/go/tools v0.0.0-20190523083050-ea95bdfd59fc/go.mod h1:rf3lG4BRIbNafJWh honnef.co/go/tools v0.0.1-2019.2.3/go.mod h1:a3bituU0lyd329TUQxRnasdCoJDkEUEAqEt0JzvZhAg= honnef.co/go/tools v0.0.1-2020.1.3/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k= honnef.co/go/tools v0.0.1-2020.1.4/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k= -k8s.io/api v0.30.3 h1:ImHwK9DCsPA9uoU3rVh4QHAHHK5dTSv1nxJUapx8hoQ= -k8s.io/api v0.30.3/go.mod h1:GPc8jlzoe5JG3pb0KJCSLX5oAFIW3/qNJITlDj8BH04= -k8s.io/apiextensions-apiserver v0.30.3 h1:oChu5li2vsZHx2IvnGP3ah8Nj3KyqG3kRSaKmijhB9U= -k8s.io/apiextensions-apiserver v0.30.3/go.mod h1:uhXxYDkMAvl6CJw4lrDN4CPbONkF3+XL9cacCT44kV4= -k8s.io/apimachinery v0.30.3 h1:q1laaWCmrszyQuSQCfNB8cFgCuDAoPszKY4ucAjDwHc= -k8s.io/apimachinery v0.30.3/go.mod h1:iexa2somDaxdnj7bha06bhb43Zpa6eWH8N8dbqVjTUc= -k8s.io/apiserver v0.30.3 h1:QZJndA9k2MjFqpnyYv/PH+9PE0SHhx3hBho4X0vE65g= -k8s.io/apiserver v0.30.3/go.mod h1:6Oa88y1CZqnzetd2JdepO0UXzQX4ZnOekx2/PtEjrOg= -k8s.io/cli-runtime v0.30.0 h1:0vn6/XhOvn1RJ2KJOC6IRR2CGqrpT6QQF4+8pYpWQ48= -k8s.io/cli-runtime v0.30.0/go.mod h1:vATpDMATVTMA79sZ0YUCzlMelf6rUjoBzlp+RnoM+cg= -k8s.io/client-go v0.30.3 h1:bHrJu3xQZNXIi8/MoxYtZBBWQQXwy16zqJwloXXfD3k= -k8s.io/client-go v0.30.3/go.mod h1:8d4pf8vYu665/kUbsxWAQ/JDBNWqfFeZnvFiVdmx89U= -k8s.io/component-base v0.30.3 h1:Ci0UqKWf4oiwy8hr1+E3dsnliKnkMLZMVbWzeorlk7s= -k8s.io/component-base v0.30.3/go.mod h1:C1SshT3rGPCuNtBs14RmVD2xW0EhRSeLvBh7AGk1quA= -k8s.io/klog/v2 v2.120.1 h1:QXU6cPEOIslTGvZaXvFWiP9VKyeet3sawzTOvdXb4Vw= -k8s.io/klog/v2 v2.120.1/go.mod h1:3Jpz1GvMt720eyJH1ckRHK1EDfpxISzJ7I9OYgaDtPE= +k8s.io/api v0.31.0 h1:b9LiSjR2ym/SzTOlfMHm1tr7/21aD7fSkqgD/CVJBCo= +k8s.io/api v0.31.0/go.mod h1:0YiFF+JfFxMM6+1hQei8FY8M7s1Mth+z/q7eF1aJkTE= +k8s.io/apiextensions-apiserver v0.31.0 h1:fZgCVhGwsclj3qCw1buVXCV6khjRzKC5eCFt24kyLSk= +k8s.io/apiextensions-apiserver v0.31.0/go.mod h1:b9aMDEYaEe5sdK+1T0KU78ApR/5ZVp4i56VacZYEHxk= +k8s.io/apimachinery v0.31.0 h1:m9jOiSr3FoSSL5WO9bjm1n6B9KROYYgNZOb4tyZ1lBc= +k8s.io/apimachinery v0.31.0/go.mod h1:rsPdaZJfTfLsNJSQzNHQvYoTmxhoOEofxtOsF3rtsMo= +k8s.io/apiserver v0.31.0 h1:p+2dgJjy+bk+B1Csz+mc2wl5gHwvNkC9QJV+w55LVrY= +k8s.io/apiserver v0.31.0/go.mod h1:KI9ox5Yu902iBnnyMmy7ajonhKnkeZYJhTZ/YI+WEMk= +k8s.io/cli-runtime v0.31.0 h1:V2Q1gj1u3/WfhD475HBQrIYsoryg/LrhhK4RwpN+DhA= +k8s.io/cli-runtime v0.31.0/go.mod h1:vg3H94wsubuvWfSmStDbekvbla5vFGC+zLWqcf+bGDw= +k8s.io/client-go v0.31.0 h1:QqEJzNjbN2Yv1H79SsS+SWnXkBgVu4Pj3CJQgbx0gI8= +k8s.io/client-go v0.31.0/go.mod h1:Y9wvC76g4fLjmU0BA+rV+h2cncoadjvjjkkIGoTLcGU= +k8s.io/component-base v0.31.0 h1:/KIzGM5EvPNQcYgwq5NwoQBaOlVFrghoVGr8lG6vNRs= +k8s.io/component-base v0.31.0/go.mod h1:TYVuzI1QmN4L5ItVdMSXKvH7/DtvIuas5/mm8YT3rTo= +k8s.io/klog/v2 v2.130.1 h1:n9Xl7H1Xvksem4KFG4PYbdQCQxqc/tTUyrgXaOhHSzk= +k8s.io/klog/v2 v2.130.1/go.mod h1:3Jpz1GvMt720eyJH1ckRHK1EDfpxISzJ7I9OYgaDtPE= k8s.io/kube-openapi v0.0.0-20240228011516-70dd3763d340 h1:BZqlfIlq5YbRMFko6/PM7FjZpUb45WallggurYhKGag= k8s.io/kube-openapi v0.0.0-20240228011516-70dd3763d340/go.mod h1:yD4MZYeKMBwQKVht279WycxKyM84kkAx2DPrTXaeb98= -k8s.io/kubectl v0.30.0 h1:xbPvzagbJ6RNYVMVuiHArC1grrV5vSmmIcSZuCdzRyk= -k8s.io/kubectl v0.30.0/go.mod h1:zgolRw2MQXLPwmic2l/+iHs239L49fhSeICuMhQQXTI= +k8s.io/kubectl v0.31.0 h1:kANwAAPVY02r4U4jARP/C+Q1sssCcN/1p9Nk+7BQKVg= +k8s.io/kubectl v0.31.0/go.mod h1:pB47hhFypGsaHAPjlwrNbvhXgmuAr01ZBvAIIUaI8d4= k8s.io/utils v0.0.0-20240711033017-18e509b52bc8 h1:pUdcCO1Lk/tbT5ztQWOBi5HBgbBP1J8+AsQnQCKsi8A= k8s.io/utils v0.0.0-20240711033017-18e509b52bc8/go.mod h1:OLgZIPagt7ERELqWJFomSt595RzquPNLL48iOWgYOg0= mvdan.cc/sh/v3 v3.8.0 h1:ZxuJipLZwr/HLbASonmXtcvvC9HXY9d2lXZHnKGjFc8= @@ -1490,10 +1477,10 @@ sigs.k8s.io/controller-runtime v0.14.6 h1:oxstGVvXGNnMvY7TAESYk+lzr6S3V5VFxQ6d92 sigs.k8s.io/controller-runtime v0.14.6/go.mod h1:WqIdsAY6JBsjfc/CqO0CORmNtoCtE4S6qbPc9s68h+0= sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd h1:EDPBXCAspyGV4jQlpZSudPeMmr1bNJefnuqLsRAsHZo= sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd/go.mod h1:B8JuhiUyNFVKdsE8h686QcCxMaH6HrOAZj4vswFpcB0= -sigs.k8s.io/kustomize/api v0.13.5-0.20230601165947-6ce0bf390ce3 h1:XX3Ajgzov2RKUdc5jW3t5jwY7Bo7dcRm+tFxT+NfgY0= -sigs.k8s.io/kustomize/api v0.13.5-0.20230601165947-6ce0bf390ce3/go.mod h1:9n16EZKMhXBNSiUC5kSdFQJkdH3zbxS/JoO619G1VAY= -sigs.k8s.io/kustomize/kyaml v0.14.3-0.20230601165947-6ce0bf390ce3 h1:W6cLQc5pnqM7vh3b7HvGNfXrJ/xL6BDMS0v1V/HHg5U= -sigs.k8s.io/kustomize/kyaml v0.14.3-0.20230601165947-6ce0bf390ce3/go.mod h1:JWP1Fj0VWGHyw3YUPjXSQnRnrwezrZSrApfX5S0nIag= +sigs.k8s.io/kustomize/api v0.17.2 h1:E7/Fjk7V5fboiuijoZHgs4aHuexi5Y2loXlVOAVAG5g= +sigs.k8s.io/kustomize/api v0.17.2/go.mod h1:UWTz9Ct+MvoeQsHcJ5e+vziRRkwimm3HytpZgIYqye0= +sigs.k8s.io/kustomize/kyaml v0.17.1 h1:TnxYQxFXzbmNG6gOINgGWQt09GghzgTP6mIurOgrLCQ= +sigs.k8s.io/kustomize/kyaml v0.17.1/go.mod h1:9V0mCjIEYjlXuCdYsSXvyoy2BTsLESH7TlGV81S282U= sigs.k8s.io/structured-merge-diff/v4 v4.4.1 h1:150L+0vs/8DA78h1u02ooW1/fFq/Lwr+sGiqlzvrtq4= sigs.k8s.io/structured-merge-diff/v4 v4.4.1/go.mod h1:N8hJocpFajUSSeSJ9bOZ77VzejKZaXsTtZo4/u7Io08= sigs.k8s.io/yaml v1.4.0 h1:Mk1wCc2gy/F0THH0TAp1QYyJNzRm2KCLy3o5ASXVI5E= From b13e8f518fa1ec82f07c0372fba06cc19ea1131a Mon Sep 17 00:00:00 2001 From: Artur Ribeiro Date: Fri, 20 Sep 2024 13:16:47 +0100 Subject: [PATCH 09/10] dummy pr for checkmarx scan --- README.md | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/README.md b/README.md index 377993f8461..90d3f84ff17 100644 --- a/README.md +++ b/README.md @@ -264,7 +264,7 @@ KICS is used by various companies and organizations, some are listed below. If y - [Keptn](https://github.com/keptn) / [Keptn Lifecycle Toolkit](https://keptn.sh) **Keeping Infrastructure as Code Secure!** - + --- -© 2024 Checkmarx Ltd. All Rights Reserved. +© 2024 Checkmarx Ltd. All Rights Reserved. \ No newline at end of file From e46131f011a03eea370f4fbec4bb98f124e6932e Mon Sep 17 00:00:00 2001 From: Artur Ribeiro Date: Fri, 20 Sep 2024 13:20:53 +0100 Subject: [PATCH 10/10] trigger cxOne pipeline