chore(findings): aiml/apache/nifi

Summary

aiml/apache/nifi has 238 new findings discovered during continuous monitoring.

Layer: opensource/apache/nifi:2.3.0 is EOL, please update if possible

More information can be found in the VAT located here: https://vat.dso.mil/vat/image?imageName=aiml/apache/nifi&tag=2.3.0&branch=master

EPSS (Exploit Prediction Scoring System) provides an estimate of the likelihood that a vulnerability will be exploited in the wild.

KEV (Known Exploited Vulnerabilities) indicates whether a vulnerability is actively being exploited according to CISA.

id	source	severity	package	epss_score	kev
CVE-2024-22262	Twistlock CVE	High	spring-web-5.3.32	0.04703	false
CVE-2024-52338	Anchore CVE	Critical	arrow-memory-core-15.0.2	0.02270	false
CVE-2024-52338	Anchore CVE	Critical	arrow-memory-netty-15.0.2	0.02270	false
CVE-2024-52338	Anchore CVE	Critical	arrow-format-15.0.2	0.02270	false
CVE-2024-52338	Anchore CVE	Critical	arrow-vector-15.0.2	0.02270	false
CVE-2021-3826	Twistlock CVE	Low	binutils-2.35.2-63.el9	0.00368	false
CVE-2021-3826	Anchore CVE	Low	binutils-gold-2.35.2-63.el9	0.00368	false
CVE-2021-3826	Anchore CVE	Low	binutils-2.35.2-63.el9	0.00368	false
CVE-2024-38808	Twistlock CVE	Low	spring-web-5.3.32	0.00310	false
CVE-2025-48924	Twistlock CVE	Medium	org.apache.commons_commons-lang3-3.17.0	0.00309	false
CVE-2024-38809	Twistlock CVE	Medium	spring-web-5.3.32	0.00244	false
CVE-2025-27818	Anchore CVE	High	kafka-clients-3.9.0	0.00226	false
CVE-2025-27818	Anchore CVE	High	kafka-clients-3.9.0	0.00226	false
CVE-2021-45078	Twistlock CVE	Medium	binutils-2.35.2-63.el9	0.00208	false
CVE-2021-45078	Anchore CVE	Medium	binutils-2.35.2-63.el9	0.00208	false
CVE-2021-45078	Anchore CVE	Medium	binutils-gold-2.35.2-63.el9	0.00208	false
CVE-2025-1153	Twistlock CVE	Low	binutils-2.35.2-63.el9	0.00185	false
CVE-2025-1153	Anchore CVE	Low	binutils-gold-2.35.2-63.el9	0.00185	false
CVE-2025-1153	Anchore CVE	Low	binutils-2.35.2-63.el9	0.00185	false
CVE-2024-41996	Anchore CVE	Low	openssl-1:3.2.2-6.el9_5.1	0.00166	false
CVE-2021-20197	Twistlock CVE	Medium	binutils-2.35.2-63.el9	0.00138	false
CVE-2021-20197	Anchore CVE	Medium	binutils-gold-2.35.2-63.el9	0.00138	false
CVE-2021-20197	Anchore CVE	Medium	binutils-2.35.2-63.el9	0.00138	false
CVE-2023-40403	Twistlock CVE	Medium	libxslt-1.1.34-13.el9_6	0.00137	false
CVE-2023-40403	Anchore CVE	Medium	libxslt-1.1.34-13.el9_6	0.00137	false
CVE-2021-32256	Anchore CVE	Low	binutils-gold-2.35.2-63.el9	0.00115	false
CVE-2021-32256	Anchore CVE	Low	binutils-2.35.2-63.el9	0.00115	false
CVE-2025-48060	Anchore CVE	High	jq-1.6	0.00081	false
CVE-2025-1152	Twistlock CVE	Low	binutils-2.35.2-63.el9	0.00081	false
CVE-2025-1152	Anchore CVE	Low	binutils-2.35.2-63.el9	0.00081	false
CVE-2025-1152	Anchore CVE	Low	binutils-gold-2.35.2-63.el9	0.00081	false
CVE-2025-1150	Twistlock CVE	Low	binutils-2.35.2-63.el9	0.00081	false
CVE-2025-1150	Anchore CVE	Low	binutils-gold-2.35.2-63.el9	0.00081	false
CVE-2025-1150	Anchore CVE	Low	binutils-2.35.2-63.el9	0.00081	false
CVE-2024-13176	Anchore CVE	Low	openssl-1:3.2.2-6.el9_5.1	0.00080	false
CVE-2025-1151	Twistlock CVE	Low	binutils-2.35.2-63.el9	0.00075	false
CVE-2025-1151	Anchore CVE	Low	binutils-gold-2.35.2-63.el9	0.00075	false
CVE-2025-1151	Anchore CVE	Low	binutils-2.35.2-63.el9	0.00075	false
CVE-2024-38820	Twistlock CVE	Medium	spring-web-5.3.32	0.00070	false
CVE-2025-1377	Twistlock CVE	Low	elfutils-0.192-6.el9_6	0.00065	false
CVE-2025-1377	Anchore CVE	Low	elfutils-debuginfod-client-0.192-6.el9_6	0.00065	false
CVE-2025-1377	Anchore CVE	Low	elfutils-default-yama-scope-0.192-6.el9_6	0.00065	false
CVE-2025-1377	Anchore CVE	Low	elfutils-libs-0.192-6.el9_6	0.00065	false
CVE-2025-1377	Anchore CVE	Low	elfutils-libelf-0.192-6.el9_6	0.00065	false
CVE-2025-1948	Anchore CVE	High	jetty-websocket-core-client-12.0.16	0.00059	false
CVE-2025-1948	Anchore CVE	High	jetty-session-12.0.16	0.00059	false
CVE-2025-1948	Anchore CVE	High	jetty-websocket-jetty-api-12.0.16	0.00059	false
CVE-2025-1948	Anchore CVE	High	jetty-http2-hpack-12.0.16	0.00059	false
CVE-2025-1948	Anchore CVE	High	jetty-io-12.0.16	0.00059	false
CVE-2025-1948	Anchore CVE	High	jetty-ee10-servlet-12.0.16	0.00059	false
CVE-2025-1948	Anchore CVE	High	jetty-ee10-servlets-12.0.16	0.00059	false
CVE-2025-1948	Anchore CVE	High	jetty-security-12.0.16	0.00059	false
CVE-2025-1948	Anchore CVE	High	jetty-rewrite-12.0.16	0.00059	false
CVE-2025-1948	Anchore CVE	High	jetty-http-12.0.16	0.00059	false
CVE-2025-1948	Anchore CVE	High	jetty-alpn-client-12.0.16	0.00059	false
CVE-2025-1948	Anchore CVE	High	jetty-deploy-12.0.16	0.00059	false
CVE-2025-1948	Anchore CVE	High	jetty-rewrite-12.0.16	0.00059	false
CVE-2025-1948	Anchore CVE	High	jetty-util-12.0.16	0.00059	false
CVE-2025-1948	Anchore CVE	High	jetty-websocket-core-server-12.0.16	0.00059	false
CVE-2025-1948	Anchore CVE	High	jetty-io-12.0.16	0.00059	false
CVE-2025-1948	Anchore CVE	High	jetty-util-12.0.16	0.00059	false
CVE-2025-1948	Anchore CVE	High	jetty-websocket-core-common-12.0.16	0.00059	false
CVE-2025-1948	Anchore CVE	High	jetty-ee10-glassfish-jstl-12.0.16	0.00059	false
CVE-2025-1948	Anchore CVE	High	jetty-http2-server-12.0.16	0.00059	false
CVE-2025-1948	Anchore CVE	High	jetty-jndi-12.0.16	0.00059	false
CVE-2025-1948	Anchore CVE	High	jetty-websocket-jetty-server-12.0.16	0.00059	false
CVE-2025-1948	Anchore CVE	High	jetty-ee10-websocket-jetty-server-12.0.16	0.00059	false
CVE-2025-1948	Anchore CVE	High	jetty-xml-12.0.16	0.00059	false
CVE-2025-1948	Anchore CVE	High	jetty-http-12.0.16	0.00059	false
CVE-2025-1948	Anchore CVE	High	jetty-client-12.0.16	0.00059	false
CVE-2025-1948	Anchore CVE	High	jetty-ee10-webapp-12.0.16	0.00059	false
CVE-2025-1948	Anchore CVE	High	jetty-server-12.0.16	0.00059	false
CVE-2025-1948	Anchore CVE	High	jetty-rewrite-12.0.16	0.00059	false
CVE-2025-1948	Anchore CVE	High	jetty-plus-12.0.16	0.00059	false
CVE-2025-1948	Anchore CVE	High	jetty-server-12.0.16	0.00059	false
CVE-2025-1948	Anchore CVE	High	jetty-websocket-jetty-common-12.0.16	0.00059	false
CVE-2025-1948	Anchore CVE	High	jetty-alpn-server-12.0.16	0.00059	false
CVE-2025-1948	Anchore CVE	High	jetty-ee10-annotations-12.0.16	0.00059	false
CVE-2025-1948	Anchore CVE	High	jetty-rewrite-12.0.16	0.00059	false
CVE-2025-1948	Anchore CVE	High	jetty-ee10-plus-12.0.16	0.00059	false
CVE-2025-1948	Anchore CVE	High	jetty-ee10-websocket-servlet-12.0.16	0.00059	false
CVE-2025-1948	Anchore CVE	High	jetty-ee-12.0.16	0.00059	false
CVE-2025-1948	Anchore CVE	High	jetty-alpn-java-server-12.0.16	0.00059	false
CVE-2025-1948	Anchore CVE	High	jetty-websocket-jetty-client-12.0.16	0.00059	false
CVE-2025-1948	Twistlock CVE	Low	org.eclipse.jetty_jetty-io-12.0.16	0.00059	false
CVE-2025-48734	Twistlock CVE	Low	commons-beanutils_commons-beanutils-1.10.0	0.00056	false
CVE-2024-23337	Anchore CVE	Medium	jq-1.6	0.00055	false
CVE-2022-27943	Anchore CVE	Low	cpp-11.5.0-5.el9_5	0.00050	false
CVE-2022-27943	Anchore CVE	Low	libgomp-11.5.0-5.el9_5	0.00050	false
CVE-2025-54988	Anchore CVE	Critical	tika-parser-text-module-3.1.0	0.00049	false
CVE-2025-54988	Anchore CVE	Critical	tika-core-3.1.0	0.00049	false
CVE-2025-1376	Twistlock CVE	Low	elfutils-0.192-6.el9_6	0.00048	false
CVE-2025-1376	Anchore CVE	Low	elfutils-libs-0.192-6.el9_6	0.00048	false
CVE-2025-1376	Anchore CVE	Low	elfutils-libelf-0.192-6.el9_6	0.00048	false
CVE-2025-1376	Anchore CVE	Low	elfutils-debuginfod-client-0.192-6.el9_6	0.00048	false
CVE-2025-1376	Anchore CVE	Low	elfutils-default-yama-scope-0.192-6.el9_6	0.00048	false
CVE-2023-1972	Twistlock CVE	Low	binutils-2.35.2-63.el9	0.00045	false
CVE-2023-1972	Anchore CVE	Low	binutils-gold-2.35.2-63.el9	0.00045	false
CVE-2023-1972	Anchore CVE	Low	binutils-2.35.2-63.el9	0.00045	false
CVE-2023-1579	Twistlock CVE	Medium	binutils-2.35.2-63.el9	0.00040	false
CVE-2023-1579	Anchore CVE	Medium	binutils-gold-2.35.2-63.el9	0.00040	false
CVE-2023-1579	Anchore CVE	Medium	binutils-2.35.2-63.el9	0.00040	false
CVE-2025-4598	Anchore CVE	Medium	systemd-rpm-macros-252-51.el9_6.1	0.00037	false
CVE-2025-4598	Anchore CVE	Medium	systemd-252-51.el9_6.1	0.00037	false
CVE-2025-4598	Anchore CVE	Medium	systemd-pam-252-51.el9_6.1	0.00037	false
CVE-2023-24056	Twistlock CVE	Low	pkgconf-1.7.3-10.el9	0.00037	false
CVE-2023-24056	Anchore CVE	Low	pkgconf-pkg-config-1.7.3-10.el9	0.00037	false
CVE-2023-24056	Anchore CVE	Low	pkgconf-m4-1.7.3-10.el9	0.00037	false
CVE-2023-24056	Anchore CVE	Low	libpkgconf-1.7.3-10.el9	0.00037	false
CVE-2023-24056	Anchore CVE	Low	pkgconf-1.7.3-10.el9	0.00037	false
CVE-2025-1371	Twistlock CVE	Low	elfutils-0.192-6.el9_6	0.00029	false
CVE-2025-1371	Anchore CVE	Low	elfutils-libelf-0.192-6.el9_6	0.00029	false
CVE-2025-1371	Anchore CVE	Low	elfutils-default-yama-scope-0.192-6.el9_6	0.00029	false
CVE-2025-1371	Anchore CVE	Low	elfutils-debuginfod-client-0.192-6.el9_6	0.00029	false
CVE-2025-1371	Anchore CVE	Low	elfutils-libs-0.192-6.el9_6	0.00029	false
CVE-2025-4565	Twistlock CVE	High	protobuf-3.20.3	0.00025	false
CVE-2025-8941	Anchore CVE	High	pam-1.5.1-26.el9_6	0.00024	false
CVE-2024-57360	Twistlock CVE	Low	binutils-2.35.2-63.el9	0.00024	false
CVE-2024-57360	Anchore CVE	Low	binutils-gold-2.35.2-63.el9	0.00024	false
CVE-2024-57360	Anchore CVE	Low	binutils-2.35.2-63.el9	0.00024	false
CVE-2025-5245	Twistlock CVE	Medium	binutils-2.35.2-63.el9	0.00022	false
CVE-2025-5245	Anchore CVE	Medium	binutils-gold-2.35.2-63.el9	0.00022	false
CVE-2025-5245	Anchore CVE	Medium	binutils-2.35.2-63.el9	0.00022	false
CVE-2022-44840	Twistlock CVE	Low	binutils-2.35.2-63.el9	0.00021	false
CVE-2022-44840	Anchore CVE	Low	binutils-gold-2.35.2-63.el9	0.00021	false
CVE-2022-44840	Anchore CVE	Low	binutils-2.35.2-63.el9	0.00021	false
CVE-2022-38533	Twistlock CVE	Low	binutils-2.35.2-63.el9	0.00017	false
CVE-2022-38533	Anchore CVE	Low	binutils-gold-2.35.2-63.el9	0.00017	false
CVE-2022-38533	Anchore CVE	Low	binutils-2.35.2-63.el9	0.00017	false
CVE-2025-7546	Twistlock CVE	Medium	binutils-2.35.2-63.el9	0.00015	false
CVE-2025-7546	Anchore CVE	Medium	binutils-2.35.2-63.el9	0.00015	false
CVE-2025-7546	Anchore CVE	Medium	binutils-gold-2.35.2-63.el9	0.00015	false
CVE-2025-7545	Twistlock CVE	Medium	binutils-2.35.2-63.el9	0.00014	false
CVE-2025-7545	Anchore CVE	Medium	binutils-gold-2.35.2-63.el9	0.00014	false
CVE-2025-7545	Anchore CVE	Medium	binutils-2.35.2-63.el9	0.00014	false
CVE-2024-25260	Twistlock CVE	Low	elfutils-0.192-6.el9_6	0.00014	false
CVE-2024-25260	Anchore CVE	Low	elfutils-default-yama-scope-0.192-6.el9_6	0.00014	false
CVE-2024-25260	Anchore CVE	Low	elfutils-libs-0.192-6.el9_6	0.00014	false
CVE-2024-25260	Anchore CVE	Low	elfutils-debuginfod-client-0.192-6.el9_6	0.00014	false
CVE-2024-25260	Anchore CVE	Low	elfutils-libelf-0.192-6.el9_6	0.00014	false
CVE-2022-47011	Twistlock CVE	Low	binutils-2.35.2-63.el9	0.00014	false
CVE-2022-47011	Anchore CVE	Low	binutils-gold-2.35.2-63.el9	0.00014	false
CVE-2022-47011	Anchore CVE	Low	binutils-2.35.2-63.el9	0.00014	false
CVE-2022-47010	Twistlock CVE	Low	binutils-2.35.2-63.el9	0.00014	false
CVE-2022-47010	Anchore CVE	Low	binutils-gold-2.35.2-63.el9	0.00014	false
CVE-2022-47010	Anchore CVE	Low	binutils-2.35.2-63.el9	0.00014	false
CVE-2022-47008	Twistlock CVE	Low	binutils-2.35.2-63.el9	0.00014	false
CVE-2022-47008	Anchore CVE	Low	binutils-2.35.2-63.el9	0.00014	false
CVE-2022-47008	Anchore CVE	Low	binutils-gold-2.35.2-63.el9	0.00014	false
CVE-2022-47007	Twistlock CVE	Low	binutils-2.35.2-63.el9	0.00014	false
CVE-2022-47007	Anchore CVE	Low	binutils-gold-2.35.2-63.el9	0.00014	false
CVE-2022-47007	Anchore CVE	Low	binutils-2.35.2-63.el9	0.00014	false
CVE-2025-3198	Twistlock CVE	Low	binutils-2.35.2-63.el9	0.00011	false
CVE-2025-3198	Anchore CVE	Low	binutils-2.35.2-63.el9	0.00011	false
CVE-2025-3198	Anchore CVE	Low	binutils-gold-2.35.2-63.el9	0.00011	false
CVE-2023-2222	Anchore CVE	Low	binutils-2.35.2-63.el9	N/A	false
CVE-2023-2222	Anchore CVE	Low	binutils-gold-2.35.2-63.el9	N/A	false
e7573262736ef52353cde3bae2617782	Anchore Compliance	Low		N/A	N/A
c729a8d6781533232ed18e890502e1f3	Anchore Compliance	Critical		N/A	N/A
addbb93c22e9b0988b8b40392a4538cb	Anchore Compliance	Low		N/A	N/A
abb121e9621abdd452f65844954cf1c1	Anchore Compliance	Low		N/A	N/A
GHSA-wxr5-93ph-8wr9	Anchore CVE	High	commons-beanutils-1.10.1	N/A	N/A
GHSA-wxr5-93ph-8wr9	Anchore CVE	High	commons-beanutils-1.10.1	N/A	N/A
GHSA-wxr5-93ph-8wr9	Anchore CVE	High	commons-beanutils-1.10.1	N/A	N/A
GHSA-wxr5-93ph-8wr9	Anchore CVE	High	commons-beanutils-1.10.0	N/A	N/A
GHSA-vgq5-3255-v292	Anchore CVE	Medium	kafka-clients-3.9.0	N/A	N/A
GHSA-vgq5-3255-v292	Anchore CVE	Medium	kafka-clients-3.9.0	N/A	N/A
GHSA-r936-gwx5-v52f	Anchore CVE	Medium	spring-webmvc-6.2.3	N/A	N/A
GHSA-prj3-ccx8-p6x4	Anchore CVE	High	netty-codec-http2-4.1.119.Final	N/A	N/A
GHSA-prj3-ccx8-p6x4	Anchore CVE	High	netty-codec-http2-4.1.119.Final	N/A	N/A
GHSA-prj3-ccx8-p6x4	Anchore CVE	High	netty-codec-http2-4.1.119.Final	N/A	N/A
GHSA-prj3-ccx8-p6x4	Anchore CVE	High	netty-codec-http2-4.1.119.Final	N/A	N/A
GHSA-mmxm-8w33-wc4h	Anchore CVE	High	jetty-http2-common-12.0.16	N/A	N/A
GHSA-j288-q9x7-2f5v	Anchore CVE	Medium	commons-lang3-3.17.0	N/A	N/A
GHSA-j288-q9x7-2f5v	Anchore CVE	Medium	commons-lang3-3.17.0	N/A	N/A
GHSA-j288-q9x7-2f5v	Anchore CVE	Medium	commons-lang3-3.17.0	N/A	N/A
GHSA-j288-q9x7-2f5v	Anchore CVE	Medium	commons-lang3-3.17.0	N/A	N/A
GHSA-j288-q9x7-2f5v	Anchore CVE	Medium	commons-lang-2.4	N/A	N/A
GHSA-j288-q9x7-2f5v	Anchore CVE	Medium	commons-lang3-3.17.0	N/A	N/A
GHSA-j288-q9x7-2f5v	Anchore CVE	Medium	commons-lang3-3.17.0	N/A	N/A
GHSA-j288-q9x7-2f5v	Anchore CVE	Medium	commons-lang3-3.17.0	N/A	N/A
GHSA-j288-q9x7-2f5v	Anchore CVE	Medium	commons-lang3-3.17.0	N/A	N/A
GHSA-j288-q9x7-2f5v	Anchore CVE	Medium	commons-lang3-3.17.0	N/A	N/A
GHSA-j288-q9x7-2f5v	Anchore CVE	Medium	commons-lang3-3.17.0	N/A	N/A
GHSA-j288-q9x7-2f5v	Anchore CVE	Medium	commons-lang3-3.17.0	N/A	N/A
GHSA-j288-q9x7-2f5v	Anchore CVE	Medium	commons-lang3-3.17.0	N/A	N/A
GHSA-j288-q9x7-2f5v	Anchore CVE	Medium	commons-lang3-3.17.0	N/A	N/A
GHSA-hgjh-9rj2-g67j	Anchore CVE	High	spring-web-5.3.32	N/A	N/A
GHSA-9342-92gg-6v29	Anchore CVE	Medium	smtp-2.0.3	N/A	N/A
GHSA-9342-92gg-6v29	Anchore CVE	Medium	smtp-2.0.3	N/A	N/A
GHSA-8qvm-5x2c-j2w7	Anchore CVE	High	protobuf-3.20.3	N/A	N/A
GHSA-889j-63jv-qhr8	Anchore CVE	High	jetty-http2-common-12.0.16	N/A	N/A
GHSA-6r3c-xf4w-jxjm	Anchore CVE	Medium	spring-web-6.2.3	N/A	N/A
GHSA-6r3c-xf4w-jxjm	Anchore CVE	Medium	spring-web-6.2.3	N/A	N/A
GHSA-6r3c-xf4w-jxjm	Anchore CVE	Medium	spring-web-6.2.3	N/A	N/A
GHSA-4wp7-92pw-q264	Anchore CVE	Low	spring-context-6.2.3	N/A	N/A
GHSA-4wp7-92pw-q264	Anchore CVE	Low	spring-context-6.2.3	N/A	N/A
GHSA-4wp7-92pw-q264	Anchore CVE	Low	spring-context-6.2.3	N/A	N/A
GHSA-4wp7-92pw-q264	Anchore CVE	Low	spring-context-6.2.3	N/A	N/A
GHSA-4wp7-92pw-q264	Anchore CVE	Low	spring-context-6.2.3	N/A	N/A
GHSA-4wp7-92pw-q264	Anchore CVE	Low	spring-context-6.2.3	N/A	N/A
GHSA-4wp7-92pw-q264	Anchore CVE	Low	spring-context-6.2.3	N/A	N/A
GHSA-4wp7-92pw-q264	Anchore CVE	Low	spring-context-6.2.3	N/A	N/A
GHSA-4q2v-9p7v-3v22	Anchore CVE	Medium	reactor-netty-http-1.0.48	N/A	N/A
GHSA-4q2v-9p7v-3v22	Anchore CVE	Medium	reactor-netty-http-1.0.48	N/A	N/A
GHSA-4gc7-5j7h-4qph	Anchore CVE	Medium	spring-web-5.3.32	N/A	N/A
GHSA-2wrp-6fg6-hmc5	Anchore CVE	High	spring-web-5.3.32	N/A	N/A
GHSA-2rmj-mq67-h97g	Anchore CVE	Medium	spring-web-5.3.32	N/A	N/A
CCE-90085-2	OSCAP Compliance	Medium		N/A	N/A
CCE-88413-0	OSCAP Compliance	Medium		N/A	N/A
CCE-86356-3	OSCAP Compliance	Medium		N/A	N/A
CCE-86068-4	OSCAP Compliance	Medium		N/A	N/A
CCE-83984-5	OSCAP Compliance	Medium		N/A	N/A
CCE-83980-3	OSCAP Compliance	Medium		N/A	N/A
CCE-83979-5	OSCAP Compliance	Medium		N/A	N/A
CCE-83641-1	OSCAP Compliance	Low		N/A	N/A
CCE-83621-3	OSCAP Compliance	Medium		N/A	N/A
CCE-83615-5	OSCAP Compliance	Medium		N/A	N/A
CCE-83589-2	OSCAP Compliance	Medium		N/A	N/A
CCE-83588-4	OSCAP Compliance	Medium		N/A	N/A
CCE-83587-6	OSCAP Compliance	Medium		N/A	N/A
CCE-83583-5	OSCAP Compliance	Medium		N/A	N/A
CCE-83579-3	OSCAP Compliance	Medium		N/A	N/A
CCE-83575-1	OSCAP Compliance	Medium		N/A	N/A
CCE-83570-2	OSCAP Compliance	Medium		N/A	N/A
CCE-83568-6	OSCAP Compliance	Medium		N/A	N/A
CCE-83567-8	OSCAP Compliance	Medium		N/A	N/A
CCE-83566-0	OSCAP Compliance	Medium		N/A	N/A
CCE-83565-2	OSCAP Compliance	Medium		N/A	N/A
CCE-83564-5	OSCAP Compliance	Medium		N/A	N/A
CCE-83563-7	OSCAP Compliance	Medium		N/A	N/A
9087b8304ce40557ef50cf8597e6ffc0	Anchore Compliance	Critical		N/A	N/A
698044205a9c4a6d48b7937e66a6bf4f	Anchore Compliance	Low		N/A	N/A
3e5fad1c039f3ecfd1dcdc94d2f1f9a0	Anchore Compliance	Low		N/A	N/A
3d12c1b91ff25e67618dfd5d1f8757a6	Anchore Compliance	Critical		N/A	N/A
34de21e516c0ca50a96e5386f163f8bf	Anchore Compliance	Low		N/A	N/A
320a97c6816565eedf3545833df99dd0	Anchore Compliance	Low		N/A	N/A
017eefbf31b63be7970d16edfb7d62fc	Anchore Compliance	Critical		N/A	N/A

More information can be found in the VAT located here: https://vat.dso.mil/vat/image?imageName=aiml/apache/nifi&tag=2.3.0&branch=master

Tasks

Contributor:

Provide justifications for findings in the VAT (docs)
Apply the StatusVerification label to this issue and wait for feedback

Iron Bank:

Review findings and justifications

Note: If the above process is rejected for any reason, the Verification label will be removed and the issue will be sent back to Open. Any comments will be listed in this issue for you to address. Once they have been addressed, you must re-add the Verification label.

Questions?

Contact the Iron Bank team by commenting on this issue with your questions or concerns. If you do not receive a response, add /cc @ironbank-notifications/onboarding.

Additionally, Iron Bank hosts an AMA working session every Wednesday from 1630-1730EST to answer questions.

Edited Sep 05, 2025 by CHORE_TOKEN

To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information

Admin message

chore(findings): aiml/apache/nifi

Summary

Tasks

Questions?