From 7357185c0af7de9bb1f762976294147aa0356334 Mon Sep 17 00:00:00 2001 From: Yalabe Date: Thu, 3 Jun 2021 08:33:08 -0700 Subject: [PATCH 1/2] VerisonBump --- .DS_Store | Bin 0 -> 6148 bytes Dockerfile | 2 +- hardening_manifest.yaml | 29 ++++++++++++++--------------- 3 files changed, 15 insertions(+), 16 deletions(-) create mode 100644 .DS_Store diff --git a/.DS_Store b/.DS_Store new file mode 100644 index 0000000000000000000000000000000000000000..af20415acd264d0d30fb9cd34361608faecb2574 GIT binary patch literal 6148 zcmeHKOHRWu5PdEce+f2xHb_~pZ6$7ymUe*zEZ_jpKNV?<+JZo0kv(_d3LJwov4S^a z3z9UISRn)+$$pvfe4OVbjsckJZTkS&1hC8|SX^b7BQh>+MhecdPBfaMkKR!{nJOiGA-^PHvyNhUHgdw^}zrXTPsIZmaRdnjBsL{8DYjiNyhzOm;J1;RWnV211 zp+WC9V}`6TL=P7j&?Z`!)(NI4Nb-wCP@^dL) z&)>==^Bm(&``mdcTghBobLTbTs&sg_QU0uqF!{YqU%chd=`E9KW6qp%qxA_)&SM2< zT>A>2!xLhex!UQqF;Xx2%r0?7TjZ_Jb(~_7_Ac}?-c;Zf!O&rBQ9m8*^awyK(yYR3`2~=ez+vbxw#X5Rv7tm8YTOaS*l^kd=NCGRE!uDx zcla=_vT-LAqt%%|P@TV9s#oBqT%3E@K z>&(r`UK_AovWbXaY*9nlx$RglWGmifQ{h-37sSwEY>^g<{}E6ceCHYXQ3gH$uLIQ~ literal 0 HcmV?d00001 diff --git a/Dockerfile b/Dockerfile index 0867802..315bdef 100644 --- a/Dockerfile +++ b/Dockerfile @@ -27,7 +27,7 @@ COPY gosu-amd64 /usr/local/bin/gosu COPY /scripts/docker-entrypoint.sh /usr/local/bin/ ENV MONGO_MAJOR 4.4 -ENV MONGO_VERSION 4.4.5 +ENV MONGO_VERSION 4.4.6 COPY /config/* /tmp/mongo_install/ diff --git a/hardening_manifest.yaml b/hardening_manifest.yaml index 83dd10e..78bee01 100644 --- a/hardening_manifest.yaml +++ b/hardening_manifest.yaml @@ -8,7 +8,7 @@ name: "opensource/mongodb/mongodb" # The most specific version should be the first tag and will be shown # on ironbank.dsop.io tags: -- "4.4.5" +- "4.4.6" - "latest" # Build args passed to Dockerfile ARGs @@ -27,7 +27,7 @@ labels: org.opencontainers.image.url: "https://github.com/dockerfile/mongodb" ## Name of the distributing entity, organization or individual org.opencontainers.image.vendor: "opensource" - org.opencontainers.image.version: "4.4.5" + org.opencontainers.image.version: "4.4.6" ## Keywords to help with search (ex. "cicd,gitops,golang") mil.dso.ironbank.image.keywords: "mongodb,database,NoSQL" ## This value can be "opensource" or "commercial" @@ -38,30 +38,29 @@ labels: # List of resources to make available to the offline build context resources: - filename: mongodb-org.rpm - url: https://repo.mongodb.org/yum/redhat/8/mongodb-org/4.4/x86_64/RPMS/mongodb-org-4.4.5-1.el8.x86_64.rpm + url: https://repo.mongodb.org/yum/redhat/8/mongodb-org/4.4/x86_64/RPMS/mongodb-org-4.4.6-1.el8.x86_64.rpm validation: type: sha256 - value: 8a38ca4352c794a382d76d84b3dc21e931a20dbc9a10dc0513c085fcb01cdc7b + value: 25b64aff8fbc55d84d43fd1f9e98d06228947aaf5bcde88229d3d515fe7b8c10 - filename: mongodb-org-mongos.rpm - url: https://repo.mongodb.org/yum/redhat/8/mongodb-org/4.4/x86_64/RPMS/mongodb-org-mongos-4.4.5-1.el8.x86_64.rpm + url: https://repo.mongodb.org/yum/redhat/8/mongodb-org/4.4/x86_64/RPMS/mongodb-org-mongos-4.4.6-1.el8.x86_64.rpm validation: type: sha256 - value: 8efce362b50f8458cec314f9621ef1007a2a855762585a9f11e0d95f28b9f8ea + value: de0e254e09cb22e8c83d1f38b39d5b7e61cd2b108bd4b4ed0977a6fcc0ba8f1b - filename: mongodb-org-server.rpm - url: https://repo.mongodb.org/yum/redhat/8/mongodb-org/4.4/x86_64/RPMS/mongodb-org-server-4.4.5-1.el8.x86_64.rpm + url: https://repo.mongodb.org/yum/redhat/8/mongodb-org/4.4/x86_64/RPMS/mongodb-org-server-4.4.6-1.el8.x86_64.rpm validation: type: sha256 - value: 5fa796d4739406d68e9527dbe28c8dfa4be6689dd492c0a13c9f351a3ba1300f + value: bad8e5d1cd2c221b98879b47abb96b2a090d021d75bdf8c8c7dfcbca17e86cce - filename: mongodb-org-shell.rpm - url: https://repo.mongodb.org/yum/redhat/8/mongodb-org/4.4/x86_64/RPMS/mongodb-org-shell-4.4.5-1.el8.x86_64.rpm + url: https://repo.mongodb.org/yum/redhat/8/mongodb-org/4.4/x86_64/RPMS/mongodb-org-shell-4.4.6-1.el8.x86_64.rpm validation: type: sha256 - value: 4d6eaee2c4ff50ad284dc89489ab793213ebb1b6df52568ee7af6b541f2387f5 + value: d958db7d7eaecdf56208122b08a71fcf896d776ad3420daa06c20fc96ea39bcc - filename: mongodb-org-tools.rpm - url: https://repo.mongodb.org/yum/redhat/8/mongodb-org/4.4/x86_64/RPMS/mongodb-org-tools-4.4.5-1.el8.x86_64.rpm - validation: + url: https://repo.mongodb.org/yum/redhat/8/mongodb-org/4.4/x86_64/RPMS/mongodb-org-tools-4.4.6-1.el8.x86_64.rpm type: sha256 - value: afd12f1023012724f18afea54514dd30deb74a9784153b960363ded4959a4d63 + value: 1061ecb357955b302c316b1fffde30e35ee4bd6f09d8466507769ff717bbae57 - filename: js-yaml.js url: https://raw.githubusercontent.com/nodeca/js-yaml/3.13.0/dist/js-yaml.js validation: @@ -83,10 +82,10 @@ resources: type: sha256 value: 66d18afe97a5e4b9c229125616ef35ba5ee050ab06f642403e99749048fd188d - filename: mongodb-org-database-tools-extra.rpm - url: https://repo.mongodb.org/yum/redhat/8/mongodb-org/4.4/x86_64/RPMS/mongodb-org-database-tools-extra-4.4.5-1.el8.x86_64.rpm + url: https://repo.mongodb.org/yum/redhat/8/mongodb-org/4.4/x86_64/RPMS/mongodb-org-database-tools-extra-4.4.6-1.el8.x86_64.rpm validation: type: sha256 - value: f94f13389c2093f07425baab6a6e6a80335150551eb6fbb2caf5f5a0f337ba90 + value: de6d787ca292540f48b501c85147ba505a1f8a3b6c9c0938cecec1b3e98dda1c # List of project maintainers # FIXME: Fill in the following details for the current container owner in the whitelist -- GitLab From 6e44e93631c72de139b4abe61a75872c6f7b42b3 Mon Sep 17 00:00:00 2001 From: Yalabe Date: Thu, 3 Jun 2021 08:41:15 -0700 Subject: [PATCH 2/2] Update Hardening Manifest --- .DS_Store | Bin 6148 -> 0 bytes hardening_manifest.yaml | 1 + 2 files changed, 1 insertion(+) delete mode 100644 .DS_Store diff --git a/.DS_Store b/.DS_Store deleted file mode 100644 index af20415acd264d0d30fb9cd34361608faecb2574..0000000000000000000000000000000000000000 GIT binary patch literal 0 HcmV?d00001 literal 6148 zcmeHKOHRWu5PdEce+f2xHb_~pZ6$7ymUe*zEZ_jpKNV?<+JZo0kv(_d3LJwov4S^a z3z9UISRn)+$$pvfe4OVbjsckJZTkS&1hC8|SX^b7BQh>+MhecdPBfaMkKR!{nJOiGA-^PHvyNhUHgdw^}zrXTPsIZmaRdnjBsL{8DYjiNyhzOm;J1;RWnV211 zp+WC9V}`6TL=P7j&?Z`!)(NI4Nb-wCP@^dL) z&)>==^Bm(&``mdcTghBobLTbTs&sg_QU0uqF!{YqU%chd=`E9KW6qp%qxA_)&SM2< zT>A>2!xLhex!UQqF;Xx2%r0?7TjZ_Jb(~_7_Ac}?-c;Zf!O&rBQ9m8*^awyK(yYR3`2~=ez+vbxw#X5Rv7tm8YTOaS*l^kd=NCGRE!uDx zcla=_vT-LAqt%%|P@TV9s#oBqT%3E@K z>&(r`UK_AovWbXaY*9nlx$RglWGmifQ{h-37sSwEY>^g<{}E6ceCHYXQ3gH$uLIQ~ diff --git a/hardening_manifest.yaml b/hardening_manifest.yaml index 78bee01..cb290a7 100644 --- a/hardening_manifest.yaml +++ b/hardening_manifest.yaml @@ -59,6 +59,7 @@ resources: value: d958db7d7eaecdf56208122b08a71fcf896d776ad3420daa06c20fc96ea39bcc - filename: mongodb-org-tools.rpm url: https://repo.mongodb.org/yum/redhat/8/mongodb-org/4.4/x86_64/RPMS/mongodb-org-tools-4.4.6-1.el8.x86_64.rpm + validation: type: sha256 value: 1061ecb357955b302c316b1fffde30e35ee4bd6f09d8466507769ff717bbae57 - filename: js-yaml.js -- GitLab