Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

fix: upgrade to Ontop 5.1.0 and resolve important trivy and veracode issues #64

Merged
merged 13 commits into from
Nov 22, 2023
Merged

fix: upgrade to Ontop 5.1.0 and resolve important trivy and veracode issues #64

Show file tree
Hide file tree
Changes from 1 commit
Commits
Show all changes
13 commits
Select commit Hold shift + click to select a range
3fe344c
fix(provisioning-agent): use the correct docker user and group ids as…
drcgjung Oct 18, 2023
f9c7ea3
chore: upgrade version and remove redundant cyclone SBOMs
drcgjung Oct 18, 2023
82f2421
chore: update DEPENDENCIES
drcgjung Oct 18, 2023
baec622
Merge remote-tracking branch 'eclipse/main' into fix/provider-agent-d…
drcgjung Oct 20, 2023
a3e076c
chore: upgrade version script and pin github actions
drcgjung Nov 15, 2023
97fa9ee
docs: cyclone link is obsolete
drcgjung Nov 15, 2023
d3a06bb
chore: update DEPENDENCIES
drcgjung Nov 15, 2023
e64d772
fix: upgrade to Ontop 5.1.0 and resolve important trivy and veracode …
drcgjung Nov 15, 2023
fd6f868
fix(workflow): wrong comment identiation in trivy workflow.
drcgjung Nov 16, 2023
a8b2423
fix: align to TRG guidelines and define as aggregate project.
drcgjung Nov 16, 2023
77e501d
fix(docker): minimize the use of apk/apt to stay with base images.
drcgjung Nov 20, 2023
02ddcd2
Merge branch 'fix/provider-agent-docker-user' into fix/upgrade-ontop-510
drcgjung Nov 20, 2023
146c3c5
chore(deps): update DEPENDENCIES
SebastianBezold Nov 22, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
6 changes: 3 additions & 3 deletions .github/workflows/build.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -97,7 +97,7 @@
# Enable deployment access (on demand or main branch and version tags only)
- name: Login to GitHub Container Registry
if: ${{ ( github.event.inputs.deploy_docker == 'true' || github.ref == 'refs/heads/main' || startsWith(github.ref, 'refs/tags/v') ) }}
uses: docker/login-action@v2

Check warning on line 100 in .github/workflows/build.yml

View workflow job for this annotation

GitHub Actions / Analyze

[MEDIUM] Unpinned Actions Full Length Commit SHA 

Pinning an action to a full length commit SHA is currently the only way to use an action as an immutable release. Pinning to a particular SHA helps mitigate the risk of a bad actor adding a backdoor to the action's repository, as they would need to generate a SHA-1 collision for a valid Git object payload. When selecting a SHA, you should verify it is from the action's repository and not a repository fork.
with:
registry: ${{ steps.set-docker-repo.outputs.REGISTRY }}
# Use existing DockerHub credentials present as secrets
Expand Down Expand Up @@ -125,7 +125,7 @@
# Create SemVer or ref tags dependent of trigger event
- name: Docker Meta Conforming
id: meta-conf
uses: docker/metadata-action@v4

Check warning on line 128 in .github/workflows/build.yml

View workflow job for this annotation

GitHub Actions / Analyze

[MEDIUM] Unpinned Actions Full Length Commit SHA 

Pinning an action to a full length commit SHA is currently the only way to use an action as an immutable release. Pinning to a particular SHA helps mitigate the risk of a bad actor adding a backdoor to the action's repository, as they would need to generate a SHA-1 collision for a valid Git object payload. When selecting a SHA, you should verify it is from the action's repository and not a repository fork.
with:
images: |
${{ steps.set-docker-repo.outputs.REPO }}/conforming-agent
Expand All @@ -137,12 +137,12 @@
type=semver,pattern={{version}}
type=semver,pattern={{major}}
type=semver,pattern={{major}}.{{minor}}
type=raw,value=1.10.2-SNAPSHOT,enable=${{ github.event.inputs.deploy_docker == 'true' || github.ref == format('refs/heads/{0}', 'main') }}
type=raw,value=1.10.15-SNAPSHOT,enable=${{ github.event.inputs.deploy_docker == 'true' || github.ref == format('refs/heads/{0}', 'main') }}
type=raw,value=latest,enable=${{ github.ref == format('refs/heads/{0}', 'main') }}

# build in any case, but push only main and version tag settings
- name: Conforming Container Build and Push
uses: docker/build-push-action@v3

Check warning on line 145 in .github/workflows/build.yml

View workflow job for this annotation

GitHub Actions / Analyze

[MEDIUM] Unpinned Actions Full Length Commit SHA 

Pinning an action to a full length commit SHA is currently the only way to use an action as an immutable release. Pinning to a particular SHA helps mitigate the risk of a bad actor adding a backdoor to the action's repository, as they would need to generate a SHA-1 collision for a valid Git object payload. When selecting a SHA, you should verify it is from the action's repository and not a repository fork.
with:
context: conforming/.
file: conforming/src/main/docker/Dockerfile
Expand Down Expand Up @@ -176,7 +176,7 @@
type=semver,pattern={{version}}
type=semver,pattern={{major}}
type=semver,pattern={{major}}.{{minor}}
type=raw,value=1.10.2-SNAPSHOT,enable=${{ github.event.inputs.deploy_docker == 'true' || github.ref == format('refs/heads/{0}', 'main') }}
type=raw,value=1.10.15-SNAPSHOT,enable=${{ github.event.inputs.deploy_docker == 'true' || github.ref == format('refs/heads/{0}', 'main') }}
type=raw,value=latest,enable=${{ github.ref == format('refs/heads/{0}', 'main') }}

# build in any case, but push only main and version tag settings
Expand All @@ -203,7 +203,7 @@
# Create SemVer or ref tags dependent of trigger event
- name: Docker Meta Provisioning
id: meta-prov
uses: docker/metadata-action@v4

Check warning on line 206 in .github/workflows/build.yml

View workflow job for this annotation

GitHub Actions / Analyze

[MEDIUM] Unpinned Actions Full Length Commit SHA 

Pinning an action to a full length commit SHA is currently the only way to use an action as an immutable release. Pinning to a particular SHA helps mitigate the risk of a bad actor adding a backdoor to the action's repository, as they would need to generate a SHA-1 collision for a valid Git object payload. When selecting a SHA, you should verify it is from the action's repository and not a repository fork.
with:
images: |
${{ steps.set-docker-repo.outputs.REPO }}/provisioning-agent
Expand All @@ -215,7 +215,7 @@
type=semver,pattern={{version}}
type=semver,pattern={{major}}
type=semver,pattern={{major}}.{{minor}}
type=raw,value=1.10.2-SNAPSHOT,enable=${{ github.event.inputs.deploy_docker == 'true' || github.ref == format('refs/heads/{0}', 'main') }}
type=raw,value=1.10.15-SNAPSHOT,enable=${{ github.event.inputs.deploy_docker == 'true' || github.ref == format('refs/heads/{0}', 'main') }}
type=raw,value=latest,enable=${{ github.ref == format('refs/heads/{0}', 'main') }}

# build in any case, but push only main and version tag settings
Expand All @@ -232,7 +232,7 @@
# Important step to push image description to DockerHub - since this is version independent, we always take it from main
- name: Update Docker Hub description for Provisioning Agent
if: ${{ steps.set-docker-repo.outputs.REPO == 'docker.io' && github.ref == 'refs/heads/main' }}
uses: peter-evans/dockerhub-description@v3

Check warning on line 235 in .github/workflows/build.yml

View workflow job for this annotation

GitHub Actions / Analyze

[MEDIUM] Unpinned Actions Full Length Commit SHA 

Pinning an action to a full length commit SHA is currently the only way to use an action as an immutable release. Pinning to a particular SHA helps mitigate the risk of a bad actor adding a backdoor to the action's repository, as they would need to generate a SHA-1 collision for a valid Git object payload. When selecting a SHA, you should verify it is from the action's repository and not a repository fork.
with:
readme-filepath: provisioning/README.md
username: ${{ secrets.DOCKER_HUB_USER || github.actor }}
Expand Down
66 changes: 34 additions & 32 deletions DEPENDENCIES
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -5,24 +5,24 @@ maven/mavencentral/ch.qos.logback/logback-classic/1.4.8, EPL-1.0 OR LGPL-2.1-onl
maven/mavencentral/ch.qos.logback/logback-core/1.2.11, EPL-1.0, approved, CQ13635
maven/mavencentral/ch.qos.logback/logback-core/1.2.12, EPL-1.0, approved, CQ13635
maven/mavencentral/ch.qos.logback/logback-core/1.4.8, EPL-1.0 OR LGPL-2.1-only, approved, #3373
maven/mavencentral/com.fasterxml.jackson.core/jackson-annotations/2.13.2, Apache-2.0, approved, clearlydefined
maven/mavencentral/com.fasterxml.jackson.core/jackson-annotations/2.13.4, Apache-2.0, approved, clearlydefined
maven/mavencentral/com.fasterxml.jackson.core/jackson-annotations/2.13.5, Apache-2.0, approved, clearlydefined
maven/mavencentral/com.fasterxml.jackson.core/jackson-annotations/2.15.2, Apache-2.0, approved, #7947
maven/mavencentral/com.fasterxml.jackson.core/jackson-core/2.13.2, Apache-2.0, approved, #2133
maven/mavencentral/com.fasterxml.jackson.core/jackson-core/2.13.5, Apache-2.0, approved, #2133
maven/mavencentral/com.fasterxml.jackson.core/jackson-core/2.15.2, MIT AND Apache-2.0, approved, #7932
maven/mavencentral/com.fasterxml.jackson.core/jackson-databind/2.13.4.2, Apache-2.0, approved, #2134
maven/mavencentral/com.fasterxml.jackson.core/jackson-databind/2.13.5, Apache-2.0, approved, #2134
maven/mavencentral/com.fasterxml.jackson.core/jackson-databind/2.15.1, Apache-2.0, approved, #7934
maven/mavencentral/com.fasterxml.jackson.core/jackson-databind/2.15.2, Apache-2.0, approved, #7934
maven/mavencentral/com.fasterxml.jackson.dataformat/jackson-dataformat-xml/2.15.2, Apache-2.0, approved, #9237
maven/mavencentral/com.fasterxml.jackson.dataformat/jackson-dataformat-yaml/2.15.1, Apache-2.0, approved, #8802
maven/mavencentral/com.fasterxml.jackson.datatype/jackson-datatype-guava/2.13.2, Apache-2.0, approved, clearlydefined
maven/mavencentral/com.fasterxml.jackson.datatype/jackson-datatype-jdk8/2.13.4, Apache-2.0, approved, clearlydefined
maven/mavencentral/com.fasterxml.jackson.datatype/jackson-datatype-jdk8/2.13.5, Apache-2.0, approved, clearlydefined
maven/mavencentral/com.fasterxml.jackson.datatype/jackson-datatype-joda/2.15.2, Apache-2.0, approved, clearlydefined
maven/mavencentral/com.fasterxml.jackson.datatype/jackson-datatype-joda/2.15.2, Apache-2.0, approved, #11369
maven/mavencentral/com.fasterxml.jackson.datatype/jackson-datatype-jsr310/2.13.4, Apache-2.0, approved, clearlydefined
maven/mavencentral/com.fasterxml.jackson.datatype/jackson-datatype-jsr310/2.13.5, Apache-2.0, approved, clearlydefined
maven/mavencentral/com.fasterxml.jackson.datatype/jackson-datatype-jsr310/2.15.1, Apache-2.0, approved, #7930
maven/mavencentral/com.fasterxml.jackson.jaxrs/jackson-jaxrs-base/2.15.2, Apache-2.0, approved, clearlydefined
maven/mavencentral/com.fasterxml.jackson.jaxrs/jackson-jaxrs-base/2.15.2, Apache-2.0, approved, #11061
maven/mavencentral/com.fasterxml.jackson.jaxrs/jackson-jaxrs-json-provider/2.15.2, Apache-2.0, approved, #9101
maven/mavencentral/com.fasterxml.jackson.module/jackson-module-jaxb-annotations/2.15.2, Apache-2.0, approved, #9100
maven/mavencentral/com.fasterxml.jackson.module/jackson-module-parameter-names/2.13.4, Apache-2.0, approved, clearlydefined
Expand All @@ -49,6 +49,7 @@ maven/mavencentral/commons-io/commons-io/2.11.0, Apache-2.0, approved, CQ23745
maven/mavencentral/commons-lang/commons-lang/2.6, Apache-2.0, approved, CQ6183
maven/mavencentral/commons-logging/commons-logging/1.2, Apache-2.0, approved, CQ10162
maven/mavencentral/io.github.classgraph/classgraph/4.8.154, MIT, approved, CQ22530
maven/mavencentral/io.github.solf/nullanno/3.0.0, NOASSERTION, restricted, clearlydefined
maven/mavencentral/io.micrometer/micrometer-core/1.9.12, Apache-2.0 AND (Apache-2.0 AND MIT), approved, #7711
maven/mavencentral/io.mikael/urlbuilder/2.0.9, Apache-2.0, approved, #9815
maven/mavencentral/io.netty/netty-buffer/4.1.94.Final, Apache-2.0, approved, CQ21842
Expand All @@ -61,14 +62,14 @@ maven/mavencentral/io.netty/netty-transport-native-epoll/4.1.94.Final, Apache-2.
maven/mavencentral/io.netty/netty-transport-native-unix-common/4.1.94.Final, Apache-2.0 AND BSD-3-Clause AND MIT, approved, CQ20926
maven/mavencentral/io.netty/netty-transport/4.1.94.Final, Apache-2.0 AND BSD-3-Clause AND MIT, approved, CQ20926
maven/mavencentral/io.sgr/s2-geometry-library-java/1.0.0, Apache-2.0, approved, CQ22121
maven/mavencentral/io.swagger.core.v3/swagger-annotations/2.2.12, Apache-2.0, approved, clearlydefined
maven/mavencentral/io.swagger.core.v3/swagger-annotations/2.2.12, Apache-2.0, approved, #11362
maven/mavencentral/io.swagger.core.v3/swagger-core/2.2.12, Apache-2.0, approved, #9265
maven/mavencentral/io.swagger.core.v3/swagger-integration/2.2.12, Apache-2.0, approved, #10352
maven/mavencentral/io.swagger.core.v3/swagger-jaxrs2/2.2.12, Apache-2.0, approved, #9814
maven/mavencentral/io.swagger.core.v3/swagger-models/2.2.12, Apache-2.0, approved, #10353
maven/mavencentral/it.unibz.inf.ontop/ontop-model/5.0.2, Apache-2.0, approved, #9817
maven/mavencentral/it.unibz.inf.ontop/ontop-obda-core/5.0.2, Apache-2.0, approved, #9812
maven/mavencentral/it.unibz.inf.ontop/ontop-rdb/5.0.2, Apache-2.0, approved, #9813
maven/mavencentral/it.unibz.inf.ontop/ontop-model/5.1.0, , restricted, clearlydefined
maven/mavencentral/it.unibz.inf.ontop/ontop-obda-core/5.1.0, , restricted, clearlydefined
maven/mavencentral/it.unibz.inf.ontop/ontop-rdb/5.1.0, , restricted, clearlydefined
maven/mavencentral/jakarta.activation/jakarta.activation-api/1.2.2, EPL-2.0 OR BSD-3-Clause OR GPL-2.0-only with Classpath-exception-2.0, approved, ee4j.jaf
maven/mavencentral/jakarta.annotation/jakarta.annotation-api/1.3.5, EPL-2.0 OR GPL-2.0-only with Classpath-exception-2.0, approved, ee4j.ca
maven/mavencentral/jakarta.servlet/jakarta.servlet-api/4.0.4, EPL-2.0 OR GPL-2.0-only with Classpath-exception-2.0, approved, ee4j.servlet
Expand Down Expand Up @@ -117,14 +118,15 @@ maven/mavencentral/org.apache.lucene/lucene-spatial-extras/8.9.0, Apache-2.0, ap
maven/mavencentral/org.apache.lucene/lucene-spatial3d/8.9.0, Apache-2.0, approved, #6140
maven/mavencentral/org.apache.solr/solr-solrj/8.9.0, Apache-2.0 AND (Apache-2.0 AND MIT), approved, #6141
maven/mavencentral/org.apache.tomcat.embed/tomcat-embed-core/9.0.76, Apache-2.0 AND (CDDL-1.0 OR GPL-2.0 WITH Classpath-exception-2.0), approved, CQ20188
maven/mavencentral/org.apache.tomcat.embed/tomcat-embed-core/9.0.78, Apache-2.0 AND (CDDL-1.0 OR GPL-2.0 WITH Classpath-exception-2.0), approved, CQ20188
maven/mavencentral/org.apache.tomcat.embed/tomcat-embed-core/9.0.81, Apache-2.0 AND (CDDL-1.0 OR GPL-2.0 WITH Classpath-exception-2.0), approved, CQ20188
maven/mavencentral/org.apache.tomcat.embed/tomcat-embed-el/9.0.76, Apache-2.0, approved, CQ20193
maven/mavencentral/org.apache.tomcat.embed/tomcat-embed-el/9.0.78, Apache-2.0, approved, CQ20193
maven/mavencentral/org.apache.tomcat.embed/tomcat-embed-el/9.0.81, Apache-2.0, approved, CQ20193
maven/mavencentral/org.apache.tomcat.embed/tomcat-embed-websocket/9.0.76, Apache-2.0, approved, CQ20194
maven/mavencentral/org.apache.tomcat.embed/tomcat-embed-websocket/9.0.78, Apache-2.0, approved, CQ20194
maven/mavencentral/org.apache.tomcat/tomcat-annotations-api/9.0.78, Apache-2.0, approved, clearlydefined
maven/mavencentral/org.apache.zookeeper/zookeeper-jute/3.6.2, Apache-2.0, approved, clearlydefined
maven/mavencentral/org.apache.zookeeper/zookeeper/3.6.2, Apache-2.0, approved, clearlydefined
maven/mavencentral/org.apache.tomcat.embed/tomcat-embed-websocket/9.0.81, Apache-2.0, approved, CQ20194
maven/mavencentral/org.apache.tomcat/tomcat-annotations-api/9.0.81, , restricted, clearlydefined
maven/mavencentral/org.apache.yetus/audience-annotations/0.12.0, Apache-2.0, approved, clearlydefined
maven/mavencentral/org.apache.zookeeper/zookeeper-jute/3.7.2, Apache-2.0, approved, clearlydefined
maven/mavencentral/org.apache.zookeeper/zookeeper/3.7.2, Apache-2.0, approved, clearlydefined
maven/mavencentral/org.apiguardian/apiguardian-api/1.1.2, Apache-2.0, approved, clearlydefined
maven/mavencentral/org.assertj/assertj-core/3.19.0, Apache-2.0, approved, clearlydefined
maven/mavencentral/org.attoparser/attoparser/2.0.5.RELEASE, Apache-2.0, approved, CQ18900
Expand All @@ -134,40 +136,40 @@ maven/mavencentral/org.codehaus.woodstox/stax2-api/4.2.1, BSD-2-Clause, approved
maven/mavencentral/org.codehaus.woodstox/woodstox-core-asl/4.4.1, Apache-2.0, approved, clearlydefined
maven/mavencentral/org.eclipse.jetty.http2/http2-client/9.4.50.v20221201, EPL-2.0 OR Apache-2.0, approved, rt.jetty
maven/mavencentral/org.eclipse.jetty.http2/http2-common/9.4.50.v20221201, EPL-2.0 OR Apache-2.0, approved, rt.jetty
maven/mavencentral/org.eclipse.jetty.http2/http2-hpack/9.4.50.v20221201, EPL-2.0 OR Apache-2.0, approved, rt.jetty
maven/mavencentral/org.eclipse.jetty.http2/http2-hpack/9.4.53.v20231009, EPL-2.0 OR Apache-2.0, approved, rt.jetty
maven/mavencentral/org.eclipse.jetty.http2/http2-http-client-transport/9.4.50.v20221201, EPL-2.0 OR Apache-2.0, approved, rt.jetty
maven/mavencentral/org.eclipse.jetty/jetty-alpn-client/9.4.51.v20230217, EPL-2.0 OR Apache-2.0, approved, rt.jetty
maven/mavencentral/org.eclipse.jetty/jetty-alpn-java-client/9.4.51.v20230217, EPL-2.0 OR Apache-2.0, approved, rt.jetty
maven/mavencentral/org.eclipse.jetty/jetty-client/9.4.51.v20230217, EPL-2.0 OR Apache-2.0, approved, rt.jetty
maven/mavencentral/org.eclipse.jetty/jetty-http/9.4.51.v20230217, EPL-2.0 OR Apache-2.0, approved, rt.jetty
maven/mavencentral/org.eclipse.jetty/jetty-io/9.4.51.v20230217, EPL-2.0 OR Apache-2.0, approved, rt.jetty
maven/mavencentral/org.eclipse.jetty/jetty-util/9.4.51.v20230217, EPL-2.0 OR Apache-2.0, approved, rt.jetty
maven/mavencentral/org.eclipse.jetty/jetty-alpn-client/9.4.53.v20231009, EPL-2.0 OR Apache-2.0, approved, rt.jetty
maven/mavencentral/org.eclipse.jetty/jetty-alpn-java-client/9.4.53.v20231009, EPL-2.0 OR Apache-2.0, approved, rt.jetty
maven/mavencentral/org.eclipse.jetty/jetty-client/9.4.53.v20231009, EPL-2.0 OR Apache-2.0, approved, rt.jetty
maven/mavencentral/org.eclipse.jetty/jetty-http/9.4.53.v20231009, EPL-2.0 OR Apache-2.0, approved, rt.jetty
maven/mavencentral/org.eclipse.jetty/jetty-io/9.4.53.v20231009, EPL-2.0 OR Apache-2.0, approved, rt.jetty
maven/mavencentral/org.eclipse.jetty/jetty-util/9.4.53.v20231009, EPL-2.0 OR Apache-2.0, approved, rt.jetty
maven/mavencentral/org.eclipse.rdf4j/rdf4j-client/4.3.3, BSD-3-Clause, approved, technology.rdf4j
maven/mavencentral/org.eclipse.rdf4j/rdf4j-collection-factory-api/4.3.3, BSD-3-Clause, approved, technology.rdf4j
maven/mavencentral/org.eclipse.rdf4j/rdf4j-collection-factory-mapdb/4.3.3, BSD-3-Clause, approved, technology.rdf4j
maven/mavencentral/org.eclipse.rdf4j/rdf4j-common-annotation/4.1.3, BSD-3-Clause, approved, technology.rdf4j
maven/mavencentral/org.eclipse.rdf4j/rdf4j-common-annotation/4.2.4, BSD-3-Clause, approved, technology.rdf4j
maven/mavencentral/org.eclipse.rdf4j/rdf4j-common-annotation/4.3.3, BSD-3-Clause, approved, technology.rdf4j
maven/mavencentral/org.eclipse.rdf4j/rdf4j-common-exception/4.1.3, BSD-3-Clause, approved, technology.rdf4j
maven/mavencentral/org.eclipse.rdf4j/rdf4j-common-exception/4.2.4, BSD-3-Clause, approved, technology.rdf4j
maven/mavencentral/org.eclipse.rdf4j/rdf4j-common-exception/4.3.3, BSD-3-Clause, approved, technology.rdf4j
maven/mavencentral/org.eclipse.rdf4j/rdf4j-common-io/4.1.3, BSD-3-Clause, approved, technology.rdf4j
maven/mavencentral/org.eclipse.rdf4j/rdf4j-common-io/4.2.4, BSD-3-Clause, approved, technology.rdf4j
maven/mavencentral/org.eclipse.rdf4j/rdf4j-common-io/4.3.3, BSD-3-Clause, approved, technology.rdf4j
maven/mavencentral/org.eclipse.rdf4j/rdf4j-common-iterator/4.1.3, BSD-3-Clause, approved, technology.rdf4j
maven/mavencentral/org.eclipse.rdf4j/rdf4j-common-iterator/4.2.4, BSD-3-Clause, approved, technology.rdf4j
maven/mavencentral/org.eclipse.rdf4j/rdf4j-common-iterator/4.3.3, BSD-3-Clause, approved, technology.rdf4j
maven/mavencentral/org.eclipse.rdf4j/rdf4j-common-text/4.1.3, BSD-3-Clause, approved, technology.rdf4j
maven/mavencentral/org.eclipse.rdf4j/rdf4j-common-text/4.2.4, BSD-3-Clause, approved, technology.rdf4j
maven/mavencentral/org.eclipse.rdf4j/rdf4j-common-text/4.3.3, BSD-3-Clause, approved, technology.rdf4j
maven/mavencentral/org.eclipse.rdf4j/rdf4j-common-transaction/4.3.3, BSD-3-Clause, approved, technology.rdf4j
maven/mavencentral/org.eclipse.rdf4j/rdf4j-common-util/4.1.3, BSD-3-Clause, approved, technology.rdf4j
maven/mavencentral/org.eclipse.rdf4j/rdf4j-common-util/4.2.4, BSD-3-Clause, approved, technology.rdf4j
maven/mavencentral/org.eclipse.rdf4j/rdf4j-common-util/4.3.3, BSD-3-Clause, approved, technology.rdf4j
maven/mavencentral/org.eclipse.rdf4j/rdf4j-common-xml/4.3.3, BSD-3-Clause, approved, technology.rdf4j
maven/mavencentral/org.eclipse.rdf4j/rdf4j-config/4.3.3, BSD-3-Clause, approved, technology.rdf4j
maven/mavencentral/org.eclipse.rdf4j/rdf4j-http-client/4.3.3, BSD-3-Clause, approved, technology.rdf4j
maven/mavencentral/org.eclipse.rdf4j/rdf4j-http-protocol/4.3.3, BSD-3-Clause, approved, technology.rdf4j
maven/mavencentral/org.eclipse.rdf4j/rdf4j-http-server-spring/4.3.3, BSD-3-Clause, approved, technology.rdf4j
maven/mavencentral/org.eclipse.rdf4j/rdf4j-model-api/4.1.3, BSD-3-Clause, approved, technology.rdf4j
maven/mavencentral/org.eclipse.rdf4j/rdf4j-model-api/4.2.4, BSD-3-Clause, approved, technology.rdf4j
maven/mavencentral/org.eclipse.rdf4j/rdf4j-model-api/4.3.3, BSD-3-Clause, approved, technology.rdf4j
maven/mavencentral/org.eclipse.rdf4j/rdf4j-model-vocabulary/4.1.3, BSD-3-Clause, approved, technology.rdf4j
maven/mavencentral/org.eclipse.rdf4j/rdf4j-model-vocabulary/4.2.4, BSD-3-Clause, approved, technology.rdf4j
maven/mavencentral/org.eclipse.rdf4j/rdf4j-model-vocabulary/4.3.3, BSD-3-Clause, approved, technology.rdf4j
maven/mavencentral/org.eclipse.rdf4j/rdf4j-model/4.1.3, BSD-3-Clause, approved, technology.rdf4j
maven/mavencentral/org.eclipse.rdf4j/rdf4j-model/4.2.4, BSD-3-Clause, approved, technology.rdf4j
maven/mavencentral/org.eclipse.rdf4j/rdf4j-model/4.3.3, BSD-3-Clause, approved, technology.rdf4j
maven/mavencentral/org.eclipse.rdf4j/rdf4j-query/4.3.3, BSD-3-Clause, approved, technology.rdf4j
maven/mavencentral/org.eclipse.rdf4j/rdf4j-queryalgebra-evaluation/4.3.3, BSD-3-Clause, approved, technology.rdf4j
Expand Down Expand Up @@ -300,6 +302,6 @@ maven/mavencentral/org.thymeleaf.extras/thymeleaf-extras-java8time/3.0.4.RELEASE
maven/mavencentral/org.thymeleaf/thymeleaf-spring5/3.0.15.RELEASE, Apache-2.0, approved, clearlydefined
maven/mavencentral/org.thymeleaf/thymeleaf/3.0.15.RELEASE, EPL-2.0, approved, CQ22180
maven/mavencentral/org.unbescape/unbescape/1.1.6.RELEASE, Apache-2.0, approved, CQ18904
maven/mavencentral/org.xerial.snappy/snappy-java/1.1.10.2, Apache-2.0 AND (Apache-2.0 AND BSD-3-Clause), approved, #9098
maven/mavencentral/org.xerial.snappy/snappy-java/1.1.10.5, Apache-2.0 AND (Apache-2.0 AND BSD-3-Clause), approved, #9098
maven/mavencentral/org.xmlunit/xmlunit-core/2.9.1, Apache-2.0, approved, #6272
maven/mavencentral/org.yaml/snakeyaml/2.0, Apache-2.0 AND (Apache-2.0 OR BSD-3-Clause OR EPL-1.0 OR GPL-2.0-or-later OR LGPL-2.1-or-later), approved, #7275
12 changes: 6 additions & 6 deletions NOTICE.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -59,9 +59,9 @@ You may recreate an up-to-date DEPENDENCIES file by invoking
```

We provide Software-Bill-Of-Material (SBOM) documents for each KA-RI module for each release:
* [Conforming Agent](conforming/conforming-agent-1.10.2-SNAPSHOT-sbom.json)
* [Provisioning Agent](provisioning/provisioning-agent-1.10.2-SNAPSHOT-sbom.json)
* [Remoting Agent](remoting/remoting-agent-1.10.2-SNAPSHOT-sbom.json)
* [Conforming Agent](conforming/conforming-agent-1.10.15-SNAPSHOT-sbom.json)
* [Provisioning Agent](provisioning/provisioning-agent-1.10.15-SNAPSHOT-sbom.json)
* [Remoting Agent](remoting/remoting-agent-1.10.15-SNAPSHOT-sbom.json)

You may recreate up-to-date SBOMs by invoking

Expand All @@ -70,9 +70,9 @@ You may recreate up-to-date SBOMs by invoking
```

Afterwards, you find the current documents under:
* [Conforming Agent](conforming/target/conforming-agent-1.10.2-SNAPSHOT-sbom.json)
* [Provisioning Agent](provisioning/target/provisioning-agent-1.10.2-SNAPSHOT-sbom.json)
* [Remoting Agent](remoting/target/remoting-agent-1.10.2-SNAPSHOT-sbom.json)
* [Conforming Agent](conforming/target/conforming-agent-1.10.15-SNAPSHOT-sbom.json)
* [Provisioning Agent](provisioning/target/provisioning-agent-1.10.15-SNAPSHOT-sbom.json)
* [Remoting Agent](remoting/target/remoting-agent-1.10.15-SNAPSHOT-sbom.json)

The KA-RI build and runtime platform is relying on:
* [Java Runtime Environment (JRE >=11 - license depends on chosen provider)](https://de.wikipedia.org/wiki/Java-Laufzeitumgebung)
Expand Down
4 changes: 2 additions & 2 deletions charts/conforming-agent/Chart.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -28,7 +28,7 @@ home: https://github.com/eclipse-tractusx/knowledge-agents/
sources:
- https://github.com/eclipse-tractusx/knowledge-agents/tree/main/conforming
type: application
appVersion: "1.10.2-SNAPSHOT"
version: 1.10.2-SNAPSHOT
appVersion: "1.10.15-SNAPSHOT"
version: 1.10.15-SNAPSHOT
maintainers:
- name: 'Tractus-X Knowledge Agents Team'
4 changes: 2 additions & 2 deletions charts/conforming-agent/README.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -20,7 +20,7 @@

# conforming-agent

![Version: 1.10.2-SNAPSHOT](https://img.shields.io/badge/Version-1.10.2--SNAPSHOT-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.10.2-SNAPSHOT](https://img.shields.io/badge/AppVersion-1.10.2--SNAPSHOT-informational?style=flat-square)
![Version: 1.10.15-SNAPSHOT](https://img.shields.io/badge/Version-1.10.2--SNAPSHOT-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.10.15-SNAPSHOT](https://img.shields.io/badge/AppVersion-1.10.2--SNAPSHOT-informational?style=flat-square)

A Helm chart for the Tractus-X Conforming Agent which is a container to assess the conformity of all other parts of the Agent-Enabled Dataspace.

Expand All @@ -31,7 +31,7 @@ This chart has no prerequisites.
## TL;DR
```shell
$ helm repo add eclipse-tractusx https://eclipse-tractusx.github.io/charts/dev
$ helm install my-release eclipse-tractusx/conforming-agent --version 1.10.2-SNAPSHOT
$ helm install my-release eclipse-tractusx/conforming-agent --version 1.10.15-SNAPSHOT
```

## Maintainers
Expand Down
Loading
Loading