Issue Tracker: Issueshttps://issues.rudder.io/https://issues.rudder.io/themes/rudder7/favicon/favicon.ico?17096450182024-03-28T16:54:26ZIssue Tracker
Redmine Rudder - Bug #24620 (Pending release): Add a warning in "rudder agent info" when cf-execd is stoppedhttps://issues.rudder.io/issues/246202024-03-28T16:54:26ZAlexis Moussetalexis.mousset@rudder.ioRudder - Bug #24618 (Pending release): Techniques should not be writable by apache in SELinuxhttps://issues.rudder.io/issues/246182024-03-28T16:38:36ZAlexis Moussetalexis.mousset@rudder.io
<p>It used to be the case for the old technique editor.</p> CIS - Architecture #24612 (Pending release): Add shell tests to CIShttps://issues.rudder.io/issues/246122024-03-28T11:22:15ZAlexis Moussetalexis.mousset@rudder.io
<p>Currently we have our blanket check for syntax error, but as shell scripts are part of the policy, we can do better.</p> Rudder - Architecture #24610 (In progress): Improve tracing loggershttps://issues.rudder.io/issues/246102024-03-28T11:09:25ZAlexis Moussetalexis.mousset@rudder.ioRudder - Bug #24609 (Pending release): Fix typo in file replace lineshttps://issues.rudder.io/issues/246092024-03-28T10:36:36ZAlexis Moussetalexis.mousset@rudder.io
<p>remplacement</p> Rudder - Enhancement #24608 (Pending release): Update the security policyhttps://issues.rudder.io/issues/246082024-03-28T09:34:03ZAlexis Moussetalexis.mousset@rudder.io
<p>Make it a bit nicer.</p> Rudder - Architecture #24604 (Pending release): Rename reports files for consistency with inventoryhttps://issues.rudder.io/issues/246042024-03-27T14:14:33ZAlexis Moussetalexis.mousset@rudder.io
<p>See <a class="issue tracker-1 status-11 priority-16 priority-default parent" title="Bug: Add a unique component to inventory and inventory signature file name (Pending release)" href="https://issues.rudder.io/issues/24560">#24560</a></p> Rudder - Bug #24592 (Pending release): Allow technique id starting with a numberhttps://issues.rudder.io/issues/245922024-03-25T15:02:10ZAlexis Moussetalexis.mousset@rudder.io
<p>It is not a problem on CFEngine and we can easily workaround it on windows.</p> Rudder - Bug #24564 (Pending release): Teach relayd about a new report file namehttps://issues.rudder.io/issues/245642024-03-21T18:23:21ZAlexis Moussetalexis.mousset@rudder.io
<p>Starting from 8.1 we'll homogenize with the new inventory file names.</p>
<p>We also apply it to old relayd to ease the migration phase.</p> Rudder - Bug #24560 (Pending release): Add a unique component to inventory and inventory signatur...https://issues.rudder.io/issues/245602024-03-21T12:23:40ZAlexis Moussetalexis.mousset@rudder.io
<p>We have seen desync cases where an orphan <code>.ocs</code> in the <code>acceptet-nodes-updates</code> causes all further inventories to fail due to failed signature verification.</p>
<p>We want to match the file pairs correctly.</p> Rudder - Bug #24522 (Pending release): npm dep security checks are ignoredhttps://issues.rudder.io/issues/245222024-03-18T15:07:21ZAlexis Moussetalexis.mousset@rudder.io
<p>This is bad.</p> Rudder - Bug #24517 (Pending release): Ignore angularjs DoS in 7.3https://issues.rudder.io/issues/245172024-03-15T22:33:24ZAlexis Moussetalexis.mousset@rudder.io
<pre>
[2024-03-15T22:24:24.571Z] + npx better-npm-audit audit --level high
[2024-03-15T22:24:24.849Z] ╔═════════════════════════════════════════════════════════════════════╗
[2024-03-15T22:24:24.849Z] ║ === list of exceptions === ║
[2024-03-15T22:24:24.849Z] ║ ║
[2024-03-15T22:24:24.849Z] ║ ID │ Status │ Expiry │ Notes ║
[2024-03-15T22:24:24.849Z] ║ GHSA-ww39-953v-wcq6 │ active │ │ Only a DoS, let's ignore it ║
[2024-03-15T22:24:24.849Z] ║ GHSA-w573-4hg7-7wgq │ active │ │ Only a DoS, let's ignore it ║
[2024-03-15T22:24:24.849Z] ╚═════════════════════╧════════╧════════╧═════════════════════════════╝
[2024-03-15T22:24:24.849Z]
[2024-03-15T22:24:26.870Z] ╔═════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════╗
[2024-03-15T22:24:26.870Z] ║ === npm audit security report === ║
[2024-03-15T22:24:26.870Z] ║ ║
[2024-03-15T22:24:26.870Z] ║ ID │ Module │ Title │ Paths │ Sev. │ URL │ Ex. ║
[2024-03-15T22:24:26.870Z] ║ 1089210 │ angular │ angular vulnerable to regular expression denial of │ angular │ moderate │ https://github.com/advisories/GHSA-m2h2-264f-f486 │ n ║
[2024-03-15T22:24:26.870Z] ║ │ │ service (ReDoS) │ │ │ │ ║
[2024-03-15T22:24:26.870Z] ║ 1093574 │ angular │ Angular (deprecated package) Cross-site Scripting │ angular │ moderate │ https://github.com/advisories/GHSA-prc3-vjfx-vhm9 │ n ║
[2024-03-15T22:24:26.870Z] ║ 1096633 │ angular │ angular vulnerable to super-linear runtime due to │ angular │ high │ https://github.com/advisories/GHSA-4w4v-5hc9-xrr2 │ n ║
[2024-03-15T22:24:26.870Z] ║ │ │ backtracking │ │ │ │ ║
[2024-03-15T22:24:26.870Z] ║ 1094087 │ decode-uri-component │ decode-uri-component vulnerable to Denial of │ decode-uri-component │ high │ https://github.com/advisories/GHSA-w573-4hg7-7wgq │ y ║
[2024-03-15T22:24:26.870Z] ║ │ │ Service (DoS) │ │ │ │ ║
[2024-03-15T22:24:26.870Z] ║ 1096592 │ es5-ext │ es5-ext vulnerable to Regular Expression Denial of │ es5-ext │ low │ https://github.com/advisories/GHSA-4gmj-3p3h-gm8h │ n ║
[2024-03-15T22:24:26.870Z] ║ │ │ Service in `function#copy` and │ │ │ │ ║
[2024-03-15T22:24:26.870Z] ║ │ │ `function#toStringTokens` │ │ │ │ ║
[2024-03-15T22:24:26.870Z] ║ 1095007 │ glob-parent │ glob-parent vulnerable to Regular Expression │ glob-parent │ high │ https://github.com/advisories/GHSA-ww39-953v-wcq6 │ y ║
[2024-03-15T22:24:26.870Z] ║ │ │ Denial of Service in enclosure regex │ │ │ │ ║
[2024-03-15T22:24:26.870Z] ║ 1092972 │ request │ Server-Side Request Forgery in Request │ request │ moderate │ https://github.com/advisories/GHSA-p8p7-x288-28g6 │ n ║
[2024-03-15T22:24:26.870Z] ║ 1096483 │ semver │ semver vulnerable to Regular Expression Denial of │ semver │ moderate │ https://github.com/advisories/GHSA-c2qf-rxjj-qqgw │ n ║
[2024-03-15T22:24:26.870Z] ║ │ │ Service │ │ │ │ ║
[2024-03-15T22:24:26.870Z] ║ 1096643 │ tough-cookie │ tough-cookie Prototype Pollution vulnerability │ tough-cookie │ moderate │ https://github.com/advisories/GHSA-72xf-g2v4-qvf3 │ n ║
[2024-03-15T22:24:26.870Z] ╚═════════╧══════════════════════╧════════════════════════════════════════════════════╧══════════════════════╧══════════╧═══════════════════════════════════════════════════╧═════╝
[2024-03-15T22:24:26.870Z]
[2024-03-15T22:24:26.870Z] 1 vulnerabilities found. Node security advisories: 1096633
script returned exit code 1
</pre> Rudder - Bug #24516 (Pending release): Vulnerability in miohttps://issues.rudder.io/issues/245162024-03-15T20:55:06ZAlexis Moussetalexis.mousset@rudder.ioRudder - Bug #24403 (Pending release): Remove specific dependencies version from rudder-api-clienthttps://issues.rudder.io/issues/244032024-03-11T10:38:12ZAlexis Moussetalexis.mousset@rudder.io
<p>These dependencies are not used in the package version which uses python dependencies from system repos.</p>
<p>There is no specific meaning to these versions and they are not tested, let's remove them.</p> Rudder - Architecture #24302 (Pending release): Add outcome conditions in rudderc docshttps://issues.rudder.io/issues/243022024-03-01T14:50:40ZAlexis Moussetalexis.mousset@rudder.io
<p>This is really a requirement.</p>