chore(findings): opensource/gitlab-triage/gitlab-triage
Summary
opensource/gitlab-triage/gitlab-triage has 4 new findings discovered during continuous monitoring.
| id | source | package |
|---|---|---|
| GHSA-8cr8-4vfw-mr7h | anchore_cve | rexml-3.2.3 |
| CVE-2020-25613 | anchore_cve | webrick-1.6.0 |
| CVE-2021-28965 | twistlock_cve | rexml-3.2.3 |
| CVE-2020-25613 | twistlock_cve | webrick-1.6.0 |
More information can be found in the failed pipeline located here: https://repo1.dso.mil/dsop/opensource/gitlab-triage/gitlab-triage/-/jobs/3405531
Definition of Done
Justifications:
- All findings have been justified
- Justifications have been provided to the container hardening team
Approval Process:
- Findings Approver has reviewed and approved all justifications
- Approval request has been sent to Authorizing Official
- Approval request has been processed by Authorizing Official
To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information