From d423fd6040732947aba23eaf3bea83802d0c185b Mon Sep 17 00:00:00 2001
From: ironbank-bot <ironbank-bot@dsop.io>
Date: Thu, 10 Dec 2020 01:26:27 +0000
Subject: [PATCH 1/3] Migrate to hardening_manifest.yaml

---
 Dockerfile              |   8 --
 Jenkinsfile             |   2 -
 download.yaml           | 151 ------------------------------
 hardening_manifest.yaml | 203 ++++++++++++++++++++++++++++++++++++++++
 4 files changed, 203 insertions(+), 161 deletions(-)
 delete mode 100644 Jenkinsfile
 delete mode 100644 download.yaml
 create mode 100644 hardening_manifest.yaml

diff --git a/Dockerfile b/Dockerfile
index bb629af..18df38c 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -4,14 +4,6 @@ ARG BASE_TAG=8.3
 
 FROM ${BASE_REGISTRY}/${BASE_IMAGE}:${BASE_TAG}
 
-LABEL \
-  name="innosabi Appserver" \
-  maintainer="fedramp_admin@collaboration.ai" \
-  vendor="Collaboration.Ai" \
-  version="0.0.6" \
-  release="0" \
-  summary="innosabi application server" \
-  description="Based on php-cli and php-fpm"
 
 ARG VERSION=0.0.6
 #COPY LICENSE /licenses/innosabi
diff --git a/Jenkinsfile b/Jenkinsfile
deleted file mode 100644
index 20b46d5..0000000
--- a/Jenkinsfile
+++ /dev/null
@@ -1,2 +0,0 @@
-@Library('DCCSCR@master') _
-dccscrPipeline( version: "0.0.6" )
diff --git a/download.yaml b/download.yaml
deleted file mode 100644
index 78b42c1..0000000
--- a/download.yaml
+++ /dev/null
@@ -1,151 +0,0 @@
-resources:
-  - url: "https://getfedora.org/static/fedora.gpg"
-    filename: "fedora.gpg"
-    validation:
-      type: "sha256" 
-      value: "fa8c7bc737685389cb7faed7105b103f2afb3a2b8e329785d3fe3290e522d30e"
-  - url: "https://rpms.remirepo.net/RPM-GPG-KEY-remi2020"
-    filename: "RPM-GPG-KEY-remi2020"
-    validation:
-      type: "sha256" 
-      value: "0483c1e7a7bf6bf6fe62882585d3bb9d903656ad020dd7045f2d496229c01959" 
-  - url: "https://rpms.remirepo.net/RPM-GPG-KEY-remi2019"
-    filename: "RPM-GPG-KEY-remi2019"
-    validation:
-      type: "sha256" 
-      value: "bba72d91ef180f18d3e7626a36ddd605d6f82ae31ce37802498b05d5444f52bb" 
-  - url: "https://rpms.remirepo.net/RPM-GPG-KEY-remi2018"
-    filename: "RPM-GPG-KEY-remi2018"
-    validation:
-      type: "sha256" 
-      value: "01992da5a631f40d0c733441f8623e0ceddcb98541b70ad528c51f04877875fb" 
-  - url: "https://www.centos.org/keys/RPM-GPG-KEY-CentOS-Official"
-    filename: "RPM-GPG-KEY-CentOS-Official"
-    validation:
-      type: "sha256" 
-      value: "146059788b214d7ba0dd70c1cf21111e594c6cfde201da8a9a88fe7101be8a78" 
-  - url: "https://download-ib01.fedoraproject.org/pub/epel/8/Everything/x86_64/Packages/f/fastlz-0.1.0-0.12.20070619svnrev12.el8.x86_64.rpm"
-    filename: "fastlz.rpm"
-    validation:
-      type: "sha256" 
-      value: "9709ef361090892632cbdbb6002d96b4ab77e8b6dbed4568b215b153eda49e36" 
-  - url: "http://mirror.centos.org/centos/8/BaseOS/x86_64/os/Packages/gdk-pixbuf2-2.36.12-5.el8.x86_64.rpm"
-    filename: "gdk-pixbuf2.rpm"
-    validation:
-      type: "sha256" 
-      value: "94cb8dceb47a5b01e3c0542ea3b48601d720325da28e6e6d89ae529e4fddcd97" 
-  - url: "http://mirror.centos.org/centos/8/AppStream/x86_64/os/Packages/pixman-0.38.4-1.el8.x86_64.rpm"
-    filename: "pixman.rpm"
-    validation:
-      type: "sha256" 
-      value: "ddbbf3a8191dbc1a9fcb67ccf9cea0d34dbe9bbb74780e1359933cd03ee24451"
-  - url: "http://mirror.centos.org/centos/8/AppStream/x86_64/os/Packages/libXaw-1.0.13-10.el8.x86_64.rpm"
-    filename: "libXaw.rpm"
-    validation:
-      type: "sha256" 
-      value: "d82ca1d1d9aea848d05ac0ffe889f921a19f37883ae1cf6ba1ca0528e2ab46e4" 
-  - url: "http://mirror.centos.org/centos/8/AppStream/x86_64/os/Packages/ilmbase-2.2.0-11.el8.x86_64.rpm"
-    filename: "ilmbase.rpm"
-    validation:
-      type: "sha256" 
-      value: "ed2e48ad367e08c5f6d0e79c405ff38967506895c0e39209d301d56529f6ddaa" 
-  - url: "https://rpms.remirepo.net/enterprise/8/php73/x86_64/php-pecl-imagick-3.4.4-10.el8.remi.7.3.x86_64.rpm"
-    filename: "php-pecl-imagick.rpm"
-    validation:
-      type: "sha256" 
-      value: "4c65f8fa3421e96664a8c226248b0495a26adeb2bdd004170665ad7ae50b0b0b"
-  - url: "http://mirror.centos.org/centos/8/AppStream/x86_64/os/Packages/graphviz-2.40.1-40.el8.x86_64.rpm"
-    filename: "graphviz.rpm"
-    validation:
-      type: "sha256" 
-      value: "b70b6fdaf8fe66a2823d5d415b016acfb0d6f6b6a2a7154820db9ef76e908a90"
-  - url: "http://mirror.centos.org/centos/8/AppStream/x86_64/os/Packages/libwmf-lite-0.2.9-8.el8_0.x86_64.rpm"
-    filename: "libwmf-lite.rpm"
-    validation:
-      type: "sha256" 
-      value: "e539923a2a5b5f484264007524cf13bf9731c27454784ef2b05d516115cd7bf3" 
-  - url: "http://mirror.centos.org/centos/8/AppStream/x86_64/os/Packages/fftw-libs-double-3.3.5-11.el8.x86_64.rpm"
-    filename: "fftw-libs-double.rpm"
-    validation:
-      type: "sha256" 
-      value: "ed2767829f8545739e9861254cc4c729a43f0e67b981af3102649b4732feaeff" 
-  - url: "https://rpms.remirepo.net/enterprise/8/remi/x86_64/ImageMagick-6.9.11.45-1.el8.remi.x86_64.rpm"
-    filename: "ImageMagick.rpm"
-    validation:
-      type: "sha256" 
-      value: "9c2d0174c5d4b80d7fa1876fb820d3d08a88aa43f276f1d73421729c679af865"
-  - url: "https://rpms.remirepo.net/enterprise/8/remi/x86_64/ImageMagick-libs-6.9.11.45-1.el8.remi.x86_64.rpm"
-    filename: "ImageMagick-libs.rpm"
-    validation:
-      type: "sha256" 
-      value: "b5d7a88767f12ed7ef30a365760bde534716830e1e8b991548df44432d9b31d4"
-  - url: "http://mirror.centos.org/centos/8/AppStream/x86_64/os/Packages/cairo-1.15.12-3.el8.x86_64.rpm"
-    filename: "cairo.rpm"
-    validation:
-      type: "sha256" 
-      value: "2fcd7a063cab2e103fd4fdf8f4c63d09b9f3d60759c3b0982c75ed9a9e57bdf8" 
-  - url: "http://mirror.centos.org/centos/8-stream/AppStream/x86_64/os/Packages/LibRaw-0.19.5-2.el8.i686.rpm"
-    filename: "LibRaw.rpm"
-    validation:
-      type: "sha256" 
-      value: "6c1daf29b5fe10d281394196a40e0d914880eb3c31cf961f3ee99ab61d92a649"
-  - url: "http://mirror.centos.org/centos/8-stream/AppStream/x86_64/os/Packages/librsvg2-2.42.7-4.el8.x86_64.rpm"
-    filename: "librsvg2.rpm"
-    validation:
-      type: "sha256" 
-      value: "44f01d59b88bf019a11a25e9c38650d6f6d82abbdd2165783772d7d92c0c97af"
-  - url: "http://mirror.centos.org/centos/8/BaseOS/x86_64/os/Packages/libtool-ltdl-2.4.6-25.el8.x86_64.rpm"
-    filename: "libtool-ltdl.rpm"
-    validation:
-      type: "sha256" 
-      value: "7dcd11f03fa0979841bf0afe0a2ac8f360502d0a2dee8322a39115595c2464ec" 
-  - url: "https://rpms.remirepo.net/enterprise/8/remi/x86_64/liblqr-1-0.4.2-11.el8.remi.x86_64.rpm"
-    filename: "liblqr.rpm"
-    validation:
-      type: "sha256" 
-      value: "d79bd08cc0580fa3bd0f1c02c5a523403d8655411b4d7b49f7922963839156f4" 
-  - url: "http://mirror.centos.org/centos/8/AppStream/x86_64/os/Packages/xorg-x11-fonts-ISO8859-1-100dpi-7.5-19.el8.noarch.rpm"
-    filename: "xorg-x11-fonts.rpm"
-    validation:
-      type: "sha256" 
-      value: "723c0424ce3ec12586d390f2c6d01a2075e9f91543eb5b9a5a998636d49cb3b0" 
-  - url: "https://rpms.remirepo.net/enterprise/8/php73/x86_64/php-pecl-igbinary-3.1.6-1.el8.remi.7.3.x86_64.rpm"
-    filename: "php-pecl-igbinary.rpm"
-    validation:
-      type: "sha256" 
-      value: "40451064b4c3075573081902d0cfb42a5ab8f12f53f91a764e95b12da8e8ca3a"
-  - url: "https://rpms.remirepo.net/enterprise/8/php73/x86_64/php-pecl-msgpack-2.1.1-1.el8.remi.7.3.x86_64.rpm"
-    filename: "php-pecl-msgpack.rpm"
-    validation:
-      type: "sha256" 
-      value: "f6a1f7a29bd99d10932ac7a7a7fd7f7cae83e4b1a1e076979a1ca1c8e063bb2a"
-  - url: "http://mirror.centos.org/centos/8/AppStream/x86_64/os/Packages/libmemcached-1.0.18-15.el8.x86_64.rpm"
-    filename: "libmemcached.rpm"
-    validation:
-      type: "sha256" 
-      value: "a98237988be726539deb640103644929fcb0a3ffe5a4fcff1d488b866374b253" 
-  - url: "https://download-ib01.fedoraproject.org/pub/epel/8/Everything/x86_64/Packages/l/libraqm-0.7.0-4.el8.x86_64.rpm"
-    filename: "libraqm.rpm"
-    validation:
-      type: "sha256" 
-      value: "c71a88565f0951fac9e9de7ae5f2b5a48aceaf8da6f75d10ebbbb6717bde32fe" 
-  - url: "https://rpms.remirepo.net/enterprise/8/php73/x86_64/php-pecl-memcached-3.1.5-1.el8.remi.7.3.x86_64.rpm"
-    filename: "php-pecl-memcached.rpm"
-    validation:
-      type: "sha256" 
-      value: "e35fc7c08150ef638810a1a2dce19c06545ed575b0737a4aa0ec19347584170a"
-  - url: "http://mirror.centos.org/centos/8/AppStream/x86_64/os/Packages/libmemcached-libs-1.0.18-15.el8.x86_64.rpm"
-    filename: "libmemcached-libs.rpm"
-    validation:
-      type: "sha256" 
-      value: "412be2f692dbd7b761ba2cf35f6bbdf5c6af7ad862689f49399e3a176744f870" 
-  - url: "http://mirror.centos.org/centos/8/AppStream/x86_64/os/Packages/pango-1.42.4-6.el8.x86_64.rpm"
-    filename: "pango.rpm"
-    validation:
-      type: "sha256" 
-      value: "8246d152767da7e6dd297599ed4c55b8bde2a5c18e54d97a80d44eb3099d6e89" 
-  - url: "https://gitlab.com/crowdvector/dist/-/raw/feature/distribution/appserver/appserver.tar.gz.aes.tar.gz"
-    filename: "appserver.tar.gz.aes.tar.gz"
-    validation:
-      type: "sha256" 
-      value: "125282343b1c8ae7d2c5d1bfd10fb70b9f84a245b9837a245c74ae2c41f78ca5"
diff --git a/hardening_manifest.yaml b/hardening_manifest.yaml
new file mode 100644
index 0000000..4a7732b
--- /dev/null
+++ b/hardening_manifest.yaml
@@ -0,0 +1,203 @@
+---
+apiVersion: v1
+
+# The repository name in registry1, excluding /ironbank/
+name: "collaborationai/crowd-vector/appserver"
+
+# List of tags to push for the repository in registry1
+# The most specific version should be the first tag and will be shown
+# on ironbank.dsop.io
+tags:
+- "0.0.6"
+- "latest"
+
+# Build args passed to Dockerfile ARGs
+args:
+  BASE_IMAGE: "redhat/ubi/ubi8"
+  BASE_TAG: "8.3"
+
+# Docker image labels
+labels:
+  org.opencontainers.image.title: "appserver"
+  ## Human-readable description of the software packaged in the image
+  # org.opencontainers.image.description: "FIXME"
+  ## License(s) under which contained software is distributed
+  # org.opencontainers.image.licenses: "FIXME"
+  ## URL to find more information on the image
+  # org.opencontainers.image.url: "FIXME"
+  ## Name of the distributing entity, organization or individual
+  # org.opencontainers.image.vendor: "FIXME"
+  org.opencontainers.image.version: "0.0.6"
+  ## Keywords to help with search (ex. "cicd,gitops,golang")
+  # mil.dso.ironbank.image.keywords: "FIXME"
+  ## This value can be "opensource" or "commercial"
+  # mil.dso.ironbank.image.type: "FIXME"
+  ## Product the image belongs to for grouping multiple images
+  # mil.dso.ironbank.product.name: "FIXME"
+
+# List of resources to make available to the offline build context
+resources:
+- filename: fedora.gpg
+  url: https://getfedora.org/static/fedora.gpg
+  validation:
+    type: sha256
+    value: fa8c7bc737685389cb7faed7105b103f2afb3a2b8e329785d3fe3290e522d30e
+- filename: RPM-GPG-KEY-remi2020
+  url: https://rpms.remirepo.net/RPM-GPG-KEY-remi2020
+  validation:
+    type: sha256
+    value: 0483c1e7a7bf6bf6fe62882585d3bb9d903656ad020dd7045f2d496229c01959
+- filename: RPM-GPG-KEY-remi2019
+  url: https://rpms.remirepo.net/RPM-GPG-KEY-remi2019
+  validation:
+    type: sha256
+    value: bba72d91ef180f18d3e7626a36ddd605d6f82ae31ce37802498b05d5444f52bb
+- filename: RPM-GPG-KEY-remi2018
+  url: https://rpms.remirepo.net/RPM-GPG-KEY-remi2018
+  validation:
+    type: sha256
+    value: 01992da5a631f40d0c733441f8623e0ceddcb98541b70ad528c51f04877875fb
+- filename: RPM-GPG-KEY-CentOS-Official
+  url: https://www.centos.org/keys/RPM-GPG-KEY-CentOS-Official
+  validation:
+    type: sha256
+    value: 146059788b214d7ba0dd70c1cf21111e594c6cfde201da8a9a88fe7101be8a78
+- filename: fastlz.rpm
+  url: https://download-ib01.fedoraproject.org/pub/epel/8/Everything/x86_64/Packages/f/fastlz-0.1.0-0.12.20070619svnrev12.el8.x86_64.rpm
+  validation:
+    type: sha256
+    value: 9709ef361090892632cbdbb6002d96b4ab77e8b6dbed4568b215b153eda49e36
+- filename: gdk-pixbuf2.rpm
+  url: http://mirror.centos.org/centos/8/BaseOS/x86_64/os/Packages/gdk-pixbuf2-2.36.12-5.el8.x86_64.rpm
+  validation:
+    type: sha256
+    value: 94cb8dceb47a5b01e3c0542ea3b48601d720325da28e6e6d89ae529e4fddcd97
+- filename: pixman.rpm
+  url: http://mirror.centos.org/centos/8/AppStream/x86_64/os/Packages/pixman-0.38.4-1.el8.x86_64.rpm
+  validation:
+    type: sha256
+    value: ddbbf3a8191dbc1a9fcb67ccf9cea0d34dbe9bbb74780e1359933cd03ee24451
+- filename: libXaw.rpm
+  url: http://mirror.centos.org/centos/8/AppStream/x86_64/os/Packages/libXaw-1.0.13-10.el8.x86_64.rpm
+  validation:
+    type: sha256
+    value: d82ca1d1d9aea848d05ac0ffe889f921a19f37883ae1cf6ba1ca0528e2ab46e4
+- filename: ilmbase.rpm
+  url: http://mirror.centos.org/centos/8/AppStream/x86_64/os/Packages/ilmbase-2.2.0-11.el8.x86_64.rpm
+  validation:
+    type: sha256
+    value: ed2e48ad367e08c5f6d0e79c405ff38967506895c0e39209d301d56529f6ddaa
+- filename: php-pecl-imagick.rpm
+  url: https://rpms.remirepo.net/enterprise/8/php73/x86_64/php-pecl-imagick-3.4.4-10.el8.remi.7.3.x86_64.rpm
+  validation:
+    type: sha256
+    value: 4c65f8fa3421e96664a8c226248b0495a26adeb2bdd004170665ad7ae50b0b0b
+- filename: graphviz.rpm
+  url: http://mirror.centos.org/centos/8/AppStream/x86_64/os/Packages/graphviz-2.40.1-40.el8.x86_64.rpm
+  validation:
+    type: sha256
+    value: b70b6fdaf8fe66a2823d5d415b016acfb0d6f6b6a2a7154820db9ef76e908a90
+- filename: libwmf-lite.rpm
+  url: http://mirror.centos.org/centos/8/AppStream/x86_64/os/Packages/libwmf-lite-0.2.9-8.el8_0.x86_64.rpm
+  validation:
+    type: sha256
+    value: e539923a2a5b5f484264007524cf13bf9731c27454784ef2b05d516115cd7bf3
+- filename: fftw-libs-double.rpm
+  url: http://mirror.centos.org/centos/8/AppStream/x86_64/os/Packages/fftw-libs-double-3.3.5-11.el8.x86_64.rpm
+  validation:
+    type: sha256
+    value: ed2767829f8545739e9861254cc4c729a43f0e67b981af3102649b4732feaeff
+- filename: ImageMagick.rpm
+  url: https://rpms.remirepo.net/enterprise/8/remi/x86_64/ImageMagick-6.9.11.45-1.el8.remi.x86_64.rpm
+  validation:
+    type: sha256
+    value: 9c2d0174c5d4b80d7fa1876fb820d3d08a88aa43f276f1d73421729c679af865
+- filename: ImageMagick-libs.rpm
+  url: https://rpms.remirepo.net/enterprise/8/remi/x86_64/ImageMagick-libs-6.9.11.45-1.el8.remi.x86_64.rpm
+  validation:
+    type: sha256
+    value: b5d7a88767f12ed7ef30a365760bde534716830e1e8b991548df44432d9b31d4
+- filename: cairo.rpm
+  url: http://mirror.centos.org/centos/8/AppStream/x86_64/os/Packages/cairo-1.15.12-3.el8.x86_64.rpm
+  validation:
+    type: sha256
+    value: 2fcd7a063cab2e103fd4fdf8f4c63d09b9f3d60759c3b0982c75ed9a9e57bdf8
+- filename: LibRaw.rpm
+  url: http://mirror.centos.org/centos/8-stream/AppStream/x86_64/os/Packages/LibRaw-0.19.5-2.el8.i686.rpm
+  validation:
+    type: sha256
+    value: 6c1daf29b5fe10d281394196a40e0d914880eb3c31cf961f3ee99ab61d92a649
+- filename: librsvg2.rpm
+  url: http://mirror.centos.org/centos/8-stream/AppStream/x86_64/os/Packages/librsvg2-2.42.7-4.el8.x86_64.rpm
+  validation:
+    type: sha256
+    value: 44f01d59b88bf019a11a25e9c38650d6f6d82abbdd2165783772d7d92c0c97af
+- filename: libtool-ltdl.rpm
+  url: http://mirror.centos.org/centos/8/BaseOS/x86_64/os/Packages/libtool-ltdl-2.4.6-25.el8.x86_64.rpm
+  validation:
+    type: sha256
+    value: 7dcd11f03fa0979841bf0afe0a2ac8f360502d0a2dee8322a39115595c2464ec
+- filename: liblqr.rpm
+  url: https://rpms.remirepo.net/enterprise/8/remi/x86_64/liblqr-1-0.4.2-11.el8.remi.x86_64.rpm
+  validation:
+    type: sha256
+    value: d79bd08cc0580fa3bd0f1c02c5a523403d8655411b4d7b49f7922963839156f4
+- filename: xorg-x11-fonts.rpm
+  url: http://mirror.centos.org/centos/8/AppStream/x86_64/os/Packages/xorg-x11-fonts-ISO8859-1-100dpi-7.5-19.el8.noarch.rpm
+  validation:
+    type: sha256
+    value: 723c0424ce3ec12586d390f2c6d01a2075e9f91543eb5b9a5a998636d49cb3b0
+- filename: php-pecl-igbinary.rpm
+  url: https://rpms.remirepo.net/enterprise/8/php73/x86_64/php-pecl-igbinary-3.1.6-1.el8.remi.7.3.x86_64.rpm
+  validation:
+    type: sha256
+    value: 40451064b4c3075573081902d0cfb42a5ab8f12f53f91a764e95b12da8e8ca3a
+- filename: php-pecl-msgpack.rpm
+  url: https://rpms.remirepo.net/enterprise/8/php73/x86_64/php-pecl-msgpack-2.1.1-1.el8.remi.7.3.x86_64.rpm
+  validation:
+    type: sha256
+    value: f6a1f7a29bd99d10932ac7a7a7fd7f7cae83e4b1a1e076979a1ca1c8e063bb2a
+- filename: libmemcached.rpm
+  url: http://mirror.centos.org/centos/8/AppStream/x86_64/os/Packages/libmemcached-1.0.18-15.el8.x86_64.rpm
+  validation:
+    type: sha256
+    value: a98237988be726539deb640103644929fcb0a3ffe5a4fcff1d488b866374b253
+- filename: libraqm.rpm
+  url: https://download-ib01.fedoraproject.org/pub/epel/8/Everything/x86_64/Packages/l/libraqm-0.7.0-4.el8.x86_64.rpm
+  validation:
+    type: sha256
+    value: c71a88565f0951fac9e9de7ae5f2b5a48aceaf8da6f75d10ebbbb6717bde32fe
+- filename: php-pecl-memcached.rpm
+  url: https://rpms.remirepo.net/enterprise/8/php73/x86_64/php-pecl-memcached-3.1.5-1.el8.remi.7.3.x86_64.rpm
+  validation:
+    type: sha256
+    value: e35fc7c08150ef638810a1a2dce19c06545ed575b0737a4aa0ec19347584170a
+- filename: libmemcached-libs.rpm
+  url: http://mirror.centos.org/centos/8/AppStream/x86_64/os/Packages/libmemcached-libs-1.0.18-15.el8.x86_64.rpm
+  validation:
+    type: sha256
+    value: 412be2f692dbd7b761ba2cf35f6bbdf5c6af7ad862689f49399e3a176744f870
+- filename: pango.rpm
+  url: http://mirror.centos.org/centos/8/AppStream/x86_64/os/Packages/pango-1.42.4-6.el8.x86_64.rpm
+  validation:
+    type: sha256
+    value: 8246d152767da7e6dd297599ed4c55b8bde2a5c18e54d97a80d44eb3099d6e89
+- filename: appserver.tar.gz.aes.tar.gz
+  url: https://gitlab.com/crowdvector/dist/-/raw/feature/distribution/appserver/appserver.tar.gz.aes.tar.gz
+  validation:
+    type: sha256
+    value: 125282343b1c8ae7d2c5d1bfd10fb70b9f84a245b9837a245c74ae2c41f78ca5
+
+# List of project maintainers
+# FIXME: Fill in the following details for the current container owner in the whitelist
+# FIXME: Include any other vendor information if applicable
+maintainers:
+- email: "jay@collaboration.ai"
+#   # The name of the current container owner
+#   name: "FIXME"
+#   # The gitlab username of the current container owner
+#   username: "FIXME"
+#   cht_member: true # FIXME: Uncomment if the maintainer is a member of CHT
+# - name: "FIXME"
+#   username: "FIXME"
+#   email: "FIXME"
-- 
GitLab


From db0570cef26899337804f625f13390eb9ce06784 Mon Sep 17 00:00:00 2001
From: "kwami.delali" <kwami.delali@solute.us>
Date: Fri, 5 Feb 2021 18:07:18 +0000
Subject: [PATCH 2/3] Update hardening_manifest.yaml

---
 hardening_manifest.yaml | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/hardening_manifest.yaml b/hardening_manifest.yaml
index 4a7732b..105a843 100644
--- a/hardening_manifest.yaml
+++ b/hardening_manifest.yaml
@@ -198,6 +198,7 @@ maintainers:
 #   # The gitlab username of the current container owner
 #   username: "FIXME"
 #   cht_member: true # FIXME: Uncomment if the maintainer is a member of CHT
-# - name: "FIXME"
-#   username: "FIXME"
-#   email: "FIXME"
+- name: "Delali Kwami"
+  username: "kwami.delali"
+  email: "kwami.delali@solute.us"
+  cht_member: true
-- 
GitLab


From 60237e0d22d424892e4b9b58ba371e9a1bdb3804 Mon Sep 17 00:00:00 2001
From: crowdvector <fedramp_admin@collaboration.ai>
Date: Fri, 5 Feb 2021 20:59:20 +0000
Subject: [PATCH 3/3] Update hardening_manifest.yaml

---
 hardening_manifest.yaml | 26 +++++++++++---------------
 1 file changed, 11 insertions(+), 15 deletions(-)

diff --git a/hardening_manifest.yaml b/hardening_manifest.yaml
index 105a843..cd1900c 100644
--- a/hardening_manifest.yaml
+++ b/hardening_manifest.yaml
@@ -20,20 +20,20 @@ args:
 labels:
   org.opencontainers.image.title: "appserver"
   ## Human-readable description of the software packaged in the image
-  # org.opencontainers.image.description: "FIXME"
+  org.opencontainers.image.description: "innosabi appserver"
   ## License(s) under which contained software is distributed
-  # org.opencontainers.image.licenses: "FIXME"
+  org.opencontainers.image.licenses: "COMMERCIAL"
   ## URL to find more information on the image
-  # org.opencontainers.image.url: "FIXME"
+  org.opencontainers.image.url: "https://collaboration.ai/products/crowdvector/"
   ## Name of the distributing entity, organization or individual
-  # org.opencontainers.image.vendor: "FIXME"
+  org.opencontainers.image.vendor: "Collaboration.Ai"
   org.opencontainers.image.version: "0.0.6"
   ## Keywords to help with search (ex. "cicd,gitops,golang")
-  # mil.dso.ironbank.image.keywords: "FIXME"
+  mil.dso.ironbank.image.keywords: "CrowdVector"
   ## This value can be "opensource" or "commercial"
-  # mil.dso.ironbank.image.type: "FIXME"
+  mil.dso.ironbank.image.type: "commercial"
   ## Product the image belongs to for grouping multiple images
-  # mil.dso.ironbank.product.name: "FIXME"
+  mil.dso.ironbank.product.name: "CrowdVector"
 
 # List of resources to make available to the offline build context
 resources:
@@ -189,15 +189,11 @@ resources:
     value: 125282343b1c8ae7d2c5d1bfd10fb70b9f84a245b9837a245c74ae2c41f78ca5
 
 # List of project maintainers
-# FIXME: Fill in the following details for the current container owner in the whitelist
-# FIXME: Include any other vendor information if applicable
 maintainers:
-- email: "jay@collaboration.ai"
-#   # The name of the current container owner
-#   name: "FIXME"
-#   # The gitlab username of the current container owner
-#   username: "FIXME"
-#   cht_member: true # FIXME: Uncomment if the maintainer is a member of CHT
+- email: "fedramp_admin@collaboration.ai"
+  name: "Collaboration.Ai"
+  username: "crowdvector"
+  cht_member: false
 - name: "Delali Kwami"
   username: "kwami.delali"
   email: "kwami.delali@solute.us"
-- 
GitLab