From 476dc95f1209f1948849ec245347349b0ac1af88 Mon Sep 17 00:00:00 2001 From: Murat Kumykov Date: Mon, 21 Jun 2021 22:37:00 +0000 Subject: [PATCH 1/6] 2021.06 update --- Dockerfile | 2 +- README.md | 3 ++- hardening_manifest.yaml | 10 +++++----- 3 files changed, 8 insertions(+), 7 deletions(-) diff --git a/Dockerfile b/Dockerfile index db62049..04e0415 100644 --- a/Dockerfile +++ b/Dockerfile @@ -22,7 +22,7 @@ RUN yum -y update \ FROM base AS install # Add Coverity software package -ARG COVERITY_ARCHIVE=coverity-platform-linux64-2021.03.tar.gz +ARG COVERITY_ARCHIVE=coverity-platform-linux64-2021.06.tar.gz COPY ${COVERITY_ARCHIVE} ${COVERITY_HOME} RUN tar zxvf ${COVERITY_HOME}/${COVERITY_ARCHIVE} -C ${COVERITY_HOME} && \ rm -f ${COVERITY_HOME}/${COVERITY_ARCHIVE} && \ diff --git a/README.md b/README.md index c4a0975..c40b801 100644 --- a/README.md +++ b/README.md @@ -1,4 +1,4 @@ -# coverity 2021.03 +# coverity 2021.06 ## Using the Image ### Credentials @@ -23,6 +23,7 @@ Container can be run by executing the following command: -e DB_USER=coverity \ -e DB_PASSWORD=coverity \ -e DB_PORT=5432 \ + -e DB_NAME=coverity \ -e DB_HOST=postgres coverity` environment variables should correspond to the actual database setup. diff --git a/hardening_manifest.yaml b/hardening_manifest.yaml index 8043c23..9d1a337 100644 --- a/hardening_manifest.yaml +++ b/hardening_manifest.yaml @@ -8,7 +8,7 @@ name: "synopsys/coverity/coverity" # The most specific version should be the first tag and will be shown # on ironbank.dsop.io tags: -- "2021.03" +- "2021.06" - "latest" # Build args passed to Dockerfile ARGs @@ -27,7 +27,7 @@ labels: org.opencontainers.image.url: "coverity" ## Name of the distributing entity, organization or individual org.opencontainers.image.vendor: "Synopsys, Inc." - org.opencontainers.image.version: "2021.03" + org.opencontainers.image.version: "2021.06" ## Keywords to help with search (ex. "cicd,gitops,golang") mil.dso.ironbank.image.keywords: "SAST" ## This value can be "opensource" or "commercial" @@ -37,11 +37,11 @@ labels: # List of resources to make available to the offline build context resources: -- filename: coverity-platform-linux64-2021.03.tar.gz - url: https://dccscr-projects.s3.amazonaws.com/coverity/2021.03/coverity-platform-linux64-2021.03-1.tar.gz +- filename: coverity-platform-linux64-2021.06.tar.gz + url: https://dccscr-projects.s3.amazonaws.com/coverity/2021.06/coverity-platform-linux64-2021.06.tar.gz validation: type: sha256 - value: c862a8453f976648e35be40824d841b81a28f1ef6fe59c8a0203af7c9aada8c0 + value: c90a76a77b61ebdfb54b7ed575a96806c3d06b2993b3d35811e3f385f9025d30 # List of project maintainers maintainers: -- GitLab From a27cfed8d2d1dbfd4e7b014ae534d25455525ae6 Mon Sep 17 00:00:00 2001 From: Murat Kumykov Date: Tue, 22 Jun 2021 21:51:38 +0000 Subject: [PATCH 2/6] ubi 8.4 used --- Dockerfile | 2 +- hardening_manifest.yaml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/Dockerfile b/Dockerfile index 04e0415..396b6fa 100644 --- a/Dockerfile +++ b/Dockerfile @@ -1,6 +1,6 @@ ARG BASE_REGISTRY=registry1.dso.mil ARG BASE_IMAGE=ironbank/redhat/ubi/ubi8 -ARG BASE_TAG=8.3 +ARG BASE_TAG=8.4 FROM ${BASE_REGISTRY}/${BASE_IMAGE}:${BASE_TAG} AS base diff --git a/hardening_manifest.yaml b/hardening_manifest.yaml index 9d1a337..99111d6 100644 --- a/hardening_manifest.yaml +++ b/hardening_manifest.yaml @@ -14,7 +14,7 @@ tags: # Build args passed to Dockerfile ARGs args: BASE_IMAGE: "redhat/ubi/ubi8" - BASE_TAG: "8.3" + BASE_TAG: "8.4" # Docker image labels labels: -- GitLab From b8346cd08a5ed3df4abbd0d5e0a0586b88c5556d Mon Sep 17 00:00:00 2001 From: Murat Kumykov Date: Fri, 9 Jul 2021 17:55:36 +0000 Subject: [PATCH 3/6] release 2021.06-SP1 --- .gitlab/CODEOWNERS | 0 .gitlab/issue_templates/Access Request.md | 0 .gitlab/issue_templates/Application - Archive.md | 0 .gitlab/issue_templates/Application - Initial.md | 0 .gitlab/issue_templates/Application - Update.md | 0 .gitlab/issue_templates/Bug.md | 0 .gitlab/issue_templates/Feature Request.md | 0 .gitlab/issue_templates/Leadership Question.md | 0 .gitlab/issue_templates/New Findings.md | 0 .gitlab/issue_templates/Onboarding Question.md | 0 .gitlab/issue_templates/Pipeline Failure.md | 0 Dockerfile | 4 +++- LICENSE | 0 README.md | 0 hardening_manifest.yaml | 6 +++--- 15 files changed, 6 insertions(+), 4 deletions(-) mode change 100644 => 100755 .gitlab/CODEOWNERS mode change 100644 => 100755 .gitlab/issue_templates/Access Request.md mode change 100644 => 100755 .gitlab/issue_templates/Application - Archive.md mode change 100644 => 100755 .gitlab/issue_templates/Application - Initial.md mode change 100644 => 100755 .gitlab/issue_templates/Application - Update.md mode change 100644 => 100755 .gitlab/issue_templates/Bug.md mode change 100644 => 100755 .gitlab/issue_templates/Feature Request.md mode change 100644 => 100755 .gitlab/issue_templates/Leadership Question.md mode change 100644 => 100755 .gitlab/issue_templates/New Findings.md mode change 100644 => 100755 .gitlab/issue_templates/Onboarding Question.md mode change 100644 => 100755 .gitlab/issue_templates/Pipeline Failure.md mode change 100644 => 100755 Dockerfile mode change 100644 => 100755 LICENSE mode change 100644 => 100755 README.md mode change 100644 => 100755 hardening_manifest.yaml diff --git a/.gitlab/CODEOWNERS b/.gitlab/CODEOWNERS old mode 100644 new mode 100755 diff --git a/.gitlab/issue_templates/Access Request.md b/.gitlab/issue_templates/Access Request.md old mode 100644 new mode 100755 diff --git a/.gitlab/issue_templates/Application - Archive.md b/.gitlab/issue_templates/Application - Archive.md old mode 100644 new mode 100755 diff --git a/.gitlab/issue_templates/Application - Initial.md b/.gitlab/issue_templates/Application - Initial.md old mode 100644 new mode 100755 diff --git a/.gitlab/issue_templates/Application - Update.md b/.gitlab/issue_templates/Application - Update.md old mode 100644 new mode 100755 diff --git a/.gitlab/issue_templates/Bug.md b/.gitlab/issue_templates/Bug.md old mode 100644 new mode 100755 diff --git a/.gitlab/issue_templates/Feature Request.md b/.gitlab/issue_templates/Feature Request.md old mode 100644 new mode 100755 diff --git a/.gitlab/issue_templates/Leadership Question.md b/.gitlab/issue_templates/Leadership Question.md old mode 100644 new mode 100755 diff --git a/.gitlab/issue_templates/New Findings.md b/.gitlab/issue_templates/New Findings.md old mode 100644 new mode 100755 diff --git a/.gitlab/issue_templates/Onboarding Question.md b/.gitlab/issue_templates/Onboarding Question.md old mode 100644 new mode 100755 diff --git a/.gitlab/issue_templates/Pipeline Failure.md b/.gitlab/issue_templates/Pipeline Failure.md old mode 100644 new mode 100755 diff --git a/Dockerfile b/Dockerfile old mode 100644 new mode 100755 index 396b6fa..5977d65 --- a/Dockerfile +++ b/Dockerfile @@ -22,7 +22,7 @@ RUN yum -y update \ FROM base AS install # Add Coverity software package -ARG COVERITY_ARCHIVE=coverity-platform-linux64-2021.06.tar.gz +ARG COVERITY_ARCHIVE=coverity-platform-linux64-2021.06-1.tar.gz COPY ${COVERITY_ARCHIVE} ${COVERITY_HOME} RUN tar zxvf ${COVERITY_HOME}/${COVERITY_ARCHIVE} -C ${COVERITY_HOME} && \ rm -f ${COVERITY_HOME}/${COVERITY_ARCHIVE} && \ @@ -37,6 +37,8 @@ FROM base COPY --from=install /home/coverity /home/coverity COPY --from=install /usr/local/bin /usr/local/bin +ENV PATH=${COVERITY_HOME}cov-platform/bin:${COVERITY_HOME}/cov-platform/postgres/bin:$PATH + # Expose Coverity default HTTP ports. EXPOSE 8080 8443 9090 diff --git a/LICENSE b/LICENSE old mode 100644 new mode 100755 diff --git a/README.md b/README.md old mode 100644 new mode 100755 diff --git a/hardening_manifest.yaml b/hardening_manifest.yaml old mode 100644 new mode 100755 index 99111d6..530d89c --- a/hardening_manifest.yaml +++ b/hardening_manifest.yaml @@ -37,11 +37,11 @@ labels: # List of resources to make available to the offline build context resources: -- filename: coverity-platform-linux64-2021.06.tar.gz - url: https://dccscr-projects.s3.amazonaws.com/coverity/2021.06/coverity-platform-linux64-2021.06.tar.gz +- filename: coverity-platform-linux64-2021.06-SP1.tar.gz + url: https://dccscr-projects.s3.amazonaws.com/coverity/2021.06/coverity-platform-linux64-2021.06-SP1.tar.gz validation: type: sha256 - value: c90a76a77b61ebdfb54b7ed575a96806c3d06b2993b3d35811e3f385f9025d30 + value: 18ed2f25e6f0f7da19784cfe65fd066032d60427910dcffa20f07f9ac2dd709a # List of project maintainers maintainers: -- GitLab From c448d2da2e7df21ddcc6c338fbce9586ea092695 Mon Sep 17 00:00:00 2001 From: Murat Kumykov Date: Fri, 9 Jul 2021 18:04:58 +0000 Subject: [PATCH 4/6] release 2021.06 --- Dockerfile | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/Dockerfile b/Dockerfile index 5977d65..aa376ed 100755 --- a/Dockerfile +++ b/Dockerfile @@ -22,7 +22,7 @@ RUN yum -y update \ FROM base AS install # Add Coverity software package -ARG COVERITY_ARCHIVE=coverity-platform-linux64-2021.06-1.tar.gz +ARG COVERITY_ARCHIVE=coverity-platform-linux64-2021.06-SP1.tar.gz COPY ${COVERITY_ARCHIVE} ${COVERITY_HOME} RUN tar zxvf ${COVERITY_HOME}/${COVERITY_ARCHIVE} -C ${COVERITY_HOME} && \ rm -f ${COVERITY_HOME}/${COVERITY_ARCHIVE} && \ @@ -37,7 +37,7 @@ FROM base COPY --from=install /home/coverity /home/coverity COPY --from=install /usr/local/bin /usr/local/bin -ENV PATH=${COVERITY_HOME}cov-platform/bin:${COVERITY_HOME}/cov-platform/postgres/bin:$PATH +ENV PATH=${COVERITY_HOME}/cov-platform/bin:${COVERITY_HOME}/cov-platform/postgres/bin:$PATH # Expose Coverity default HTTP ports. EXPOSE 8080 8443 9090 -- GitLab From 0b4805bf3170d5c05621e4d10f7eace7369fe21a Mon Sep 17 00:00:00 2001 From: Murat Kumykov Date: Fri, 23 Jul 2021 15:53:19 +0000 Subject: [PATCH 5/6] 2021.06-SP2 --- Dockerfile | 2 +- hardening_manifest.yaml | 6 +++--- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/Dockerfile b/Dockerfile index aa376ed..43ccdac 100755 --- a/Dockerfile +++ b/Dockerfile @@ -22,7 +22,7 @@ RUN yum -y update \ FROM base AS install # Add Coverity software package -ARG COVERITY_ARCHIVE=coverity-platform-linux64-2021.06-SP1.tar.gz +ARG COVERITY_ARCHIVE=coverity-platform-linux64-2021.06-SP2.tar.gz COPY ${COVERITY_ARCHIVE} ${COVERITY_HOME} RUN tar zxvf ${COVERITY_HOME}/${COVERITY_ARCHIVE} -C ${COVERITY_HOME} && \ rm -f ${COVERITY_HOME}/${COVERITY_ARCHIVE} && \ diff --git a/hardening_manifest.yaml b/hardening_manifest.yaml index 530d89c..eb487d8 100755 --- a/hardening_manifest.yaml +++ b/hardening_manifest.yaml @@ -37,11 +37,11 @@ labels: # List of resources to make available to the offline build context resources: -- filename: coverity-platform-linux64-2021.06-SP1.tar.gz - url: https://dccscr-projects.s3.amazonaws.com/coverity/2021.06/coverity-platform-linux64-2021.06-SP1.tar.gz +- filename: coverity-platform-linux64-2021.06-SP2.tar.gz + url: https://dccscr-projects.s3.amazonaws.com/coverity/2021.06/coverity-platform-linux64-2021.06-SP2.tar.gz validation: type: sha256 - value: 18ed2f25e6f0f7da19784cfe65fd066032d60427910dcffa20f07f9ac2dd709a + value: 8c2052babd749acf3fae475ec5879c061ab4a3047590bed874770237a535a03d # List of project maintainers maintainers: -- GitLab From 7721527a0682ad7c2a66494fadd31d951ebf6479 Mon Sep 17 00:00:00 2001 From: Murat Kumykov Date: Fri, 23 Jul 2021 16:00:03 +0000 Subject: [PATCH 6/6] 2021.06-SP2 --- Dockerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Dockerfile b/Dockerfile index 43ccdac..d3ef64f 100755 --- a/Dockerfile +++ b/Dockerfile @@ -57,4 +57,4 @@ WORKDIR /home/coverity # Run Coverity CMD /usr/local/bin/entrypoint.sh - +# -- GitLab