Loading...

XML

Word

Printable

Type: Task
Resolution: Done
Priority: Undefined
Fix Version/s: 4.9.0
Affects Version/s: None
Component/s: None
Labels:
None

Activity Type:
Security & Compliance
Epic Link:
ROX-30760
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Ready:
False
Intelligence Requested:
Market:
Target Version:

Future

Severity:
Important

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

Overview:

Few security issues seem to have been introduced through third-party libraries used in the ACS code. Some of these appears like real issues that can be resolved by updating the affected libraries.

SAST Result Link: https://cov01.lab.eng.brq2.redhat.com/osh/task/966295/log/rhacs-collector-container-4.8.2-2/scan-results-imp.html
Container Name: advanced-cluster-security/rhacs-collector-rhel8@sha256:edf106cdd912029966377e2037ae5465b13e21e923154f5499345422729a1940

Acceptance Criteria:

Address issues by upgrading third-party libraries
Or update https://gitlab.cee.redhat.com/osh/known-false-positives for false-positive issues

Review deadline:

https://spaces.redhat.com/pages/viewpage.action?spaceKey=PRODSEC&title=Weakness+Management+Standard#WeaknessManagementStandard-4.ReviewDeadline&RequiredResolutionTargets

Assignee:: Unassigned

Reporter:: Yadnyawalk Tale

Team:: ACS Collector

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Due:: 2025/10/04

Created:: 2025/09/04 10:15 AM

Updated:: 2025/10/08 12:48 PM

Resolved:: 2025/10/08 12:48 PM

Details

Description

Overview:

Acceptance Criteria:

Review deadline:

Attachments

Easy Agile Planning Poker

Activity

People

Dates