Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

chore(harbor): Setup version stream for 2.10 #16129

Merged
merged 1 commit into from
Apr 1, 2024
Merged

chore(harbor): Setup version stream for 2.10 #16129

merged 1 commit into from
Apr 1, 2024

Conversation

EyeCantCU
Copy link
Member

  • Pin to 2.10
  • Rename harbor-core to harbor to simplify packaging for version streams
  • Withdraw non-versioned harbor

For new version streams

  • The upstream project actually supports multiple concurrent versions.
  • Any subpackages include the version string in their package name (e.g. name: ${{package.name}}-compat)
  • The package (and subpackages) provides: logical unversioned forms of the package (e.g. nodejs, nodejs-lts)

@EyeCantCU
chore(harbor): Setup version stream for 2.10
c89f5a7 
- Pin to 2.10
- Rename harbor-core to harbor to simplify packaging for version streams
- Withdraw non-versioned harbor

Signed-off-by: RJ Sampson <rj.sampson@chainguard.dev>
@github-actions GitHub Actions
Copy link
Contributor

github-actions bot commented Apr 1, 2024

Package harbor-2.10-jobservice: Click to expand/collapse

Package harbor-2.10-jobservice:
Added: /.PKGINFO
Added: /usr/bin/harbor-jobservice

Package harbor-2.10-portal: Click to expand/collapse

Package harbor-2.10-portal:
Added: /.PKGINFO
Added: /usr/share/nginx/html/1258.afb6367f114d0d88.js
Added: /usr/share/nginx/html/1653.1f5567d886b73afc.js
Added: /usr/share/nginx/html/1683.136563970cd0fd15.js
Added: /usr/share/nginx/html/2079.fd0f6568a232105b.js
Added: /usr/share/nginx/html/2789.e3bdd5f7452a2056.js
Added: /usr/share/nginx/html/2914.f5bb47976a370ea7.js
Added: /usr/share/nginx/html/3031.b707cc19f29fd705.js
Added: /usr/share/nginx/html/3204.585822ab7c82eabf.js
Added: /usr/share/nginx/html/3274.0198fd8eea34daa1.js
Added: /usr/share/nginx/html/3322.4402085913684103.js
Added: /usr/share/nginx/html/3651.1068219fd24c960e.js
Added: /usr/share/nginx/html/3664.eebf3564c283b660.js
Added: /usr/share/nginx/html/3751.cbde41d679daa5eb.js
Added: /usr/share/nginx/html/3785.47bf997ad2c6dc7d.js
Added: /usr/share/nginx/html/3rdpartylicenses.txt
Added: /usr/share/nginx/html/4529.3d0f9ac9062e1778.js
Added: /usr/share/nginx/html/4554.109c3b83fcfe0a4f.js
Added: /usr/share/nginx/html/4665.9fdcb7780b0842dc.js
Added: /usr/share/nginx/html/4771.c2cdabc0bc353a3e.js
Added: /usr/share/nginx/html/4812.a7ed33fe617730ca.js
Added: /usr/share/nginx/html/488.4fb0974f11ad58b4.js
Added: /usr/share/nginx/html/5070.062de1baeb2bd609.js
Added: /usr/share/nginx/html/5077.09438d825b4f750c.js
Added: /usr/share/nginx/html/5206.e907491daa7880a9.js
Added: /usr/share/nginx/html/5514.296fea282f12c0c5.js
Added: /usr/share/nginx/html/5691.435ce2a59790388c.js
Added: /usr/share/nginx/html/5738.88e55337743d3d99.js
Added: /usr/share/nginx/html/575.cebc430388c5a933.js
Added: /usr/share/nginx/html/5814.c68487fcaaae3037.js
Added: /usr/share/nginx/html/5817.e3be35a21c6bf7b6.js
Added: /usr/share/nginx/html/583.3be05dc663d97d04.js
Added: /usr/share/nginx/html/5834.0f034a8865a2fa2a.js
Added: /usr/share/nginx/html/6093.ab66451ff59a4176.js
Added: /usr/share/nginx/html/6149.0e5abcd8adce08e6.js
Added: /usr/share/nginx/html/6253.52dee94778778873.js
Added: /usr/share/nginx/html/6379.b57a7f2dcbbb8c9d.js
Added: /usr/share/nginx/html/6809.9238534a5156153f.js
Added: /usr/share/nginx/html/7215.b14bf4648bf7274b.js
Added: /usr/share/nginx/html/7922.b872a030a38cda25.js
Added: /usr/share/nginx/html/7939.4d52b00cbf1394c1.js
Added: /usr/share/nginx/html/795.fd1ee16523f75c32.js
Added: /usr/share/nginx/html/8244.8a4d04dfdbb4a930.js
Added: /usr/share/nginx/html/8343.93e2a2e5e0c1325b.js
Added: /usr/share/nginx/html/8787.b4e483ab9392f798.js
Added: /usr/share/nginx/html/8833.166f67533572b26d.js
Added: /usr/share/nginx/html/9546.af0a165002d12592.js
Added: /usr/share/nginx/html/9942.7bd3c4d96dd3ee9a.js
Added: /usr/share/nginx/html/LICENSE
Added: /usr/share/nginx/html/common.fbb4c0926a6170df.js
Added: /usr/share/nginx/html/dark-theme.css
Added: /usr/share/nginx/html/favicon.ico
Added: /usr/share/nginx/html/i18n/lang/de-de-lang.json
Added: /usr/share/nginx/html/i18n/lang/en-us-lang.json
Added: /usr/share/nginx/html/i18n/lang/es-es-lang.json
Added: /usr/share/nginx/html/i18n/lang/fr-fr-lang.json
Added: /usr/share/nginx/html/i18n/lang/pt-br-lang.json
Added: /usr/share/nginx/html/i18n/lang/tr-tr-lang.json
Added: /usr/share/nginx/html/i18n/lang/zh-cn-lang.json
Added: /usr/share/nginx/html/i18n/lang/zh-tw-lang.json
Added: /usr/share/nginx/html/images/artifact-chart.svg
Added: /usr/share/nginx/html/images/artifact-cnab.svg
Added: /usr/share/nginx/html/images/artifact-default.svg
Added: /usr/share/nginx/html/images/artifact-image.svg
Added: /usr/share/nginx/html/images/artifact-openpolicyagent.svg
Added: /usr/share/nginx/html/images/harbor-logo.svg
Added: /usr/share/nginx/html/images/helm-gray.svg
Added: /usr/share/nginx/html/images/kraken-logo-color.svg
Added: /usr/share/nginx/html/index.html
Added: /usr/share/nginx/html/light-theme.css
Added: /usr/share/nginx/html/main.4cef108c0f16930f.js
Added: /usr/share/nginx/html/polyfills.67cfd31b2752cc11.js
Added: /usr/share/nginx/html/runtime.34a7891c0831212e.js
Added: /usr/share/nginx/html/scripts.3846d86d42cdb753.js
Added: /usr/share/nginx/html/setting.json
Added: /usr/share/nginx/html/styles.75cb4562f0127450.css
Added: /usr/share/nginx/html/swagger-ui-index.html
Added: /usr/share/nginx/html/swagger-ui.bundle.js
Added: /usr/share/nginx/html/swagger-ui.bundle.js.LICENSE.txt
Added: /usr/share/nginx/html/swagger.json

Package harbor-2.10-portal-nginx-config: Click to expand/collapse

Package harbor-2.10-portal-nginx-config:
Added: /.PKGINFO
Added: /etc/nginx/fastcgi.conf
Added: /etc/nginx/fastcgi.conf.default
Added: /etc/nginx/fastcgi_params
Added: /etc/nginx/fastcgi_params.default
Added: /etc/nginx/koi-utf
Added: /etc/nginx/koi-win
Added: /etc/nginx/mime.types
Added: /etc/nginx/mime.types.default
Added: /etc/nginx/nginx.conf
Added: /etc/nginx/nginx.conf.default
Added: /etc/nginx/scgi_params
Added: /etc/nginx/scgi_params.default
Added: /etc/nginx/uwsgi_params
Added: /etc/nginx/uwsgi_params.default
Added: /etc/nginx/win-utf

Package harbor-2.10-registryctl: Click to expand/collapse

Package harbor-2.10-registryctl:
Added: /.PKGINFO
Added: /usr/bin/harbor-registryctl

Package harbor-2.10: Click to expand/collapse

Package harbor-2.10:
Added: /.PKGINFO
Added: /harbor/icons/chart.png
Added: /harbor/icons/cnab.png
Added: /harbor/icons/cosign.png
Added: /harbor/icons/default.png
Added: /harbor/icons/image.png
Added: /harbor/icons/notation.png
Added: /harbor/icons/nydus.png
Added: /harbor/icons/wasm.png
Added: /harbor/migrations/postgresql/0001_initial_schema.up.sql
Added: /harbor/migrations/postgresql/0002_1.7.0_schema.up.sql
Added: /harbor/migrations/postgresql/0003_add_replication_op_uuid.up.sql
Added: /harbor/migrations/postgresql/0004_1.8.0_schema.up.sql
Added: /harbor/migrations/postgresql/0005_1.8.2_schema.up.sql
Added: /harbor/migrations/postgresql/0010_1.9.0_schema.up.sql
Added: /harbor/migrations/postgresql/0011_1.9.1_schema.up.sql
Added: /harbor/migrations/postgresql/0012_1.9.4_schema.up.sql
Added: /harbor/migrations/postgresql/0015_1.10.0_schema.up.sql
Added: /harbor/migrations/postgresql/0030_2.0.0_schema.up.sql
Added: /harbor/migrations/postgresql/0031_2.0.3_schema.up.sql
Added: /harbor/migrations/postgresql/0040_2.1.0_schema.up.sql
Added: /harbor/migrations/postgresql/0041_2.1.4_schema.up.sql
Added: /harbor/migrations/postgresql/0050_2.2.0_schema.up.sql
Added: /harbor/migrations/postgresql/0051_2.2.1_schema.up.sql
Added: /harbor/migrations/postgresql/0052_2.2.2_schema.up.sql
Added: /harbor/migrations/postgresql/0053_2.2.3_schema.up.sql
Added: /harbor/migrations/postgresql/0060_2.3.0_schema.up.sql
Added: /harbor/migrations/postgresql/0061_2.3.4_schema.up.sql
Added: /harbor/migrations/postgresql/0070_2.4.0_schema.up.sql
Added: /harbor/migrations/postgresql/0071_2.4.2_schema.up.sql
Added: /harbor/migrations/postgresql/0080_2.5.0_schema.up.sql
Added: /harbor/migrations/postgresql/0081_2.5.2_schema.up.sql
Added: /harbor/migrations/postgresql/0082_2.5.3_schema.up.sql
Added: /harbor/migrations/postgresql/0090_2.6.0_schema.up.sql
Added: /harbor/migrations/postgresql/0091_2.6.2_schema.up.sql
Added: /harbor/migrations/postgresql/0100_2.7.0_schema.up.sql
Added: /harbor/migrations/postgresql/0110_2.8.0_schema.up.sql
Added: /harbor/migrations/postgresql/0111_2.8.1_schema.up.sql
Added: /harbor/migrations/postgresql/0120_2.9.0_schema.up.sql
Added: /harbor/migrations/postgresql/0130_2.10.0_schema.up.sql
Added: /harbor/views/404.tpl
Added: /harbor/views/reset-password-mail.tpl
Added: /usr/bin/harbor-core

bincapz found differences: Click to expand/collapse

Deleted: harbor-2.10-portal/usr/share/nginx/html/swagger-ui.bundle.js

RISK KEY DESCRIPTION
meta lang php
-3/HIGH combo/stealer/browser uses HTTP, archives, and references multiple browsers: "Chrome
Firefox
POST
http
zip"
-3/HIGH techniques/code_eval evaluate code dynamically using exec()
-2/MEDIUM data/embedded/base64/url contains base64 url: "aHR0cDovL::$http
h0dHA6Ly::$http
odHRwOi8v::$http"
-2/MEDIUM net/download downloads files
-2/MEDIUM net/fetch invokes curl: "curl cvpa dbp del diff dir dnsn ebp echo
curl microlight""
-2/MEDIUM net/http/cookies able to access HTTP resources using cookies
-2/MEDIUM net/http/form/upload upload content via HTTP form
-2/MEDIUM net/http/post able to submit content via HTTP POST
-2/MEDIUM net/upload uploads files
-2/MEDIUM net/url/encode encodes URL, likely to pass GET variables
-2/MEDIUM ref/program/powershell powershell: "powershell"
-1/LOW encoding/base64 supports base64 encoded strings
-1/LOW encoding/json/decode jsondecode
-1/LOW encoding/json/encode encodes JSON
-1/LOW fs/directory/remove uses libc functions to remove directories
-1/LOW fs/file/capabilities/set set file capabilities
-1/LOW fs/link/create may create hard file links
-1/LOW fs/mount mounts file systems
-1/LOW net/hostname/resolve resolves network host names
-1/LOW net/http/request makes HTTP requests
-1/LOW net/oauth2 supports OAuth2
-1/LOW ref/path/hidden possible hidden file path: "/csv/.test
/plain/.test
/xml/.test"
-1/LOW ref/site/url contains embedded HTTPS URLs:
https://example.com/dictionary/
highlightjs/highlight.js#2277
highlightjs/highlight.js#2534
highlightjs/highlight.js#2559
highlightjs/highlight.js#2844
https://github.com/zloirock/core-js/blob/v3.33.2/LICENSE
https://instagram.com/explore/tags/
https://json-schema.org/draft/2020-12/schema
https://petstore.swagger.io/v2/swagger.json
https://reactjs.org/docs/error-decoder.html?invariant=
https://reactjs.org/link/react-polyfills
https://redux.js.org/Errors?code=
https://soundcloud.com/
https://spdx.org/licenses/
https://spec.openapis.org/oas/3.1/dialect/base
https://swagger.io
https://twitter.com/hashtag/
https://validator.swagger.io/validator
https://www.facebook.com/hashtag/
https://www.tiktok.com/@
https://www.tiktok.com/tag/
-1/LOW ref/words/password references a password: "Password
password"

Deleted: harbor-2.10-portal/usr/share/nginx/html/1258.afb6367f114d0d88.js

RISK KEY DESCRIPTION
-2/MEDIUM net/http/post able to submit content via HTTP POST
-2/MEDIUM net/url/request requests resources via URL

Deleted: harbor-2.10-portal/usr/share/nginx/html/6379.b57a7f2dcbbb8c9d.js

RISK KEY DESCRIPTION
-2/MEDIUM net/http/post able to submit content via HTTP POST
-2/MEDIUM net/url/request requests resources via URL

Deleted: harbor-2.10-portal/usr/share/nginx/html/main.4cef108c0f16930f.js

RISK KEY DESCRIPTION
-2/MEDIUM net/download downloads files
-2/MEDIUM net/http/cookies able to access HTTP resources using cookies
-2/MEDIUM net/http/form/upload upload content via HTTP form
-2/MEDIUM net/http/post able to submit content via HTTP POST
-2/MEDIUM net/upload uploads files
-2/MEDIUM net/url/encode encodes URL, likely to pass GET variables
-2/MEDIUM net/url/request requests resources via URL
-2/MEDIUM ref/words/intercept references interception: "intercept"
-1/LOW encoding/json/decode jsondecode
-1/LOW encoding/json/encode encodes JSON
-1/LOW fs/file/delete deletes files
-1/LOW ref/site/url contains embedded HTTPS URLs: "https://g.co/ng/security"
-1/LOW ref/words/password references a password: "password"

Deleted: harbor-2.10-portal/usr/share/nginx/html/5814.c68487fcaaae3037.js

RISK KEY DESCRIPTION
-1/LOW encoding/json/decode jsondecode
-1/LOW encoding/json/encode encodes JSON

Deleted: harbor-2.10-portal/usr/share/nginx/html/4812.a7ed33fe617730ca.js

RISK KEY DESCRIPTION
-1/LOW encoding/json/decode jsondecode
-1/LOW encoding/json/encode encodes JSON

Deleted: harbor-2.10-portal/usr/share/nginx/html/common.fbb4c0926a6170df.js

RISK KEY DESCRIPTION
-2/MEDIUM exec/shell_command execute a shell command
-1/LOW encoding/json/encode encodes JSON

Deleted: harbor-2.10-portal/usr/share/nginx/html/1653.1f5567d886b73afc.js

RISK KEY DESCRIPTION
-2/MEDIUM exec/shell_command execute a shell command
-2/MEDIUM net/http/post able to submit content via HTTP POST
-2/MEDIUM net/url/request requests resources via URL
-1/LOW ref/words/password references a password: "password"

Deleted: harbor-2.10-portal/usr/share/nginx/html/5738.88e55337743d3d99.js

RISK KEY DESCRIPTION
-2/MEDIUM net/http/post able to submit content via HTTP POST
-2/MEDIUM net/url/request requests resources via URL

Deleted: harbor-2.10-portal/usr/share/nginx/html/8833.166f67533572b26d.js

RISK KEY DESCRIPTION
-1/LOW encoding/json/encode encodes JSON
-1/LOW fs/file/delete/forcibly forcibly deletes files using rm

Deleted: harbor-2.10-portal/usr/share/nginx/html/8787.b4e483ab9392f798.js

RISK KEY DESCRIPTION
-1/LOW fd/multiplex monitor multiple file descriptors

Deleted: harbor-2.10-portal/usr/share/nginx/html/3204.585822ab7c82eabf.js

RISK KEY DESCRIPTION
-1/LOW encoding/json/decode jsondecode

Deleted: harbor-2.10/usr/bin/harbor-core

RISK KEY DESCRIPTION
meta compiler go
meta lang c++
-3/HIGH ref/site/unusual unusual http hostname: "http://beego.vip/"
-2/MEDIUM archives/zip works with zip files
-2/MEDIUM combo/net/tunnel_proxy network tunnel proxy: "Proxy
TLS13
TLSVersion
crypto
proxy
socket
tunnel"
-2/MEDIUM data/embedded/html contains HTML content
-2/MEDIUM databases/mysql accesses MySQL databases
-2/MEDIUM databases/postgresql accesses PostgreSQL databases
-2/MEDIUM databases/sqlite accesses SQLite databases
-2/MEDIUM evasion/content/length/0 sets HTTP content length to zero
-2/MEDIUM exec/program executes another program
-2/MEDIUM exec/shell_echo uses the echo command to generate output
-2/MEDIUM fs/permission/chown changes file ownership
-2/MEDIUM fs/permission/modify modifies file permissions
-2/MEDIUM kernel/dev/block/device accesses raw generic block devices: "/dev/sda1"
-2/MEDIUM kernel/uname/get get system identification (os_release)
-2/MEDIUM net/dns/reverse looks up the reverse hostname for an IP
-2/MEDIUM net/download downloads files
-2/MEDIUM net/fetch executable calls fetch tool: "curl -v -X"
-2/MEDIUM net/http/cookies able to access HTTP resources using cookies
-2/MEDIUM net/http/post able to submit form content via HTTP POST
-2/MEDIUM net/ip/parse parses IP address (IPv4 or IPv6)
-2/MEDIUM net/mac/address retrieves network MAC address
-2/MEDIUM net/ntlm uses the Windows NTLM authentication scheme
-2/MEDIUM net/raw_sockets uses raw sockets
-2/MEDIUM net/upload uploads files
-2/MEDIUM net/url/encode encodes URL, likely to pass GET variables
-2/MEDIUM net/url/request requests resources via URL
-2/MEDIUM ref/extensions/office references multiple Office file extensions (possible exfil): "docm
docx
eml
ppam
ppt
xlsx"
-2/MEDIUM ref/path/etc/hosts references /etc/hosts: "/etc/hosts"
-2/MEDIUM ref/path/usr/local references paths within /usr/local: "/usr/local/share/mime/globs2mime"
-2/MEDIUM ref/site/http/dynamic uRL that is dynamically generated: "http://%sListen
http://%sdefaultVal
https://%s/auth/tokenmissing
https://%serror"
-2/MEDIUM ref/words/agent references an 'agent': "agentClientUDPParams
agentEndpointConfig
agentJan
agentPUBLIC
agentUploader
agent_host
agent_port
agentkeep
agents
http_user_agent
niltrace_jaeger_agent"
-2/MEDIUM ref/words/intercept references interception: "interceptors"
-2/MEDIUM ref/words/server_address references a 'server address', possible C2 client: "dserverAddressByClientCIDRsdeletionGracePer
preconditionsserverAddressincludeObjectlabelSelectorfie"
-1/LOW compression/gzip works with gzip files
-1/LOW crypto/aes supports AES (Advanced Encryption Standard)
-1/LOW crypto/ecdsa uses the Go crypto/ecdsa library
-1/LOW crypto/ed25519 elliptic curve algorithm used by TLS and SSH
-1/LOW crypto/tls tls
-1/LOW data/embedded/pem/test_key contains TESTING KEY directive
-1/LOW encoding/base64 supports base64 encoded strings
-1/LOW encoding/json supports JSON encoded objects
-1/LOW encoding/json/decode jsondecode
-1/LOW encoding/json/encode encodes JSON
-1/LOW env/USER uSER
-1/LOW fs/directory/list uses Go functions to list a directory
-1/LOW fs/directory/remove uses libc functions to remove directories
-1/LOW fs/file/delete deletes files
-1/LOW fs/file/read reads files
-1/LOW fs/file/times/set change file timestamps with nanosecond precision
-1/LOW fs/link/read read value of a symbolic link
-1/LOW fs/mount mounts file systems
-1/LOW fs/watch monitors filesystem events
-1/LOW kernel/cpu/info gets number of processors
-1/LOW kernel/hostname/get gets the hostname of the machine
-1/LOW kernel/netlink communicate with kernel services
-1/LOW kernel/seccomp operate on Secure Computing state of the process
-1/LOW net/dns uses DNS (Domain Name Service)
-1/LOW net/dns/txt uses DNS TXT (text) records
-1/LOW net/grpc uses the gRPC Remote Procedure Call framework
-1/LOW net/hostname/resolve uses Go to resolve network hosts
-1/LOW net/http/accept/encoding able to decode multiple forms of HTTP responses (example: gzip)
-1/LOW net/http/auth makes HTTP requests with basic authentication
-1/LOW net/http/request makes HTTP requests
-1/LOW net/http2 uses the HTTP/2 protocol
-1/LOW net/http_proxy able to use an HTTP proxy that requires authentication
-1/LOW net/ip/multicast/send send data to multiple nodes simultaneously
-1/LOW net/oauth2 supports OAuth2
-1/LOW net/sendfile transfer data between file descriptors
-1/LOW net/socket/listen listen on a socket
-1/LOW net/socket/local/address get local address of connected socket
-1/LOW net/socket/peer/address get peer address of connected socket
-1/LOW net/socket/receive receive a message from a socket
-1/LOW net/socket/send send a message to a socket
-1/LOW net/udp/receive listens for UDP responses
-1/LOW net/udp/send sends UDP packets
-1/LOW net/url handles URL strings
-1/LOW process/groupid/set set real and effective group ID of process
-1/LOW process/groups/set set group access list
-1/LOW ref/path/etc references paths within /etc:
/etc/apache/mime.typesgzip
/etc/ceph/keyring.
/etc/ceph/user.secret
/etc/core/ca/ca.crt/systeminfo/getcer
/etc/core/keymetric
/etc/core/private
/etc/group
/etc/hostsgetsockoptnetlinkrib
/etc/httpd/conf/mime.typesmime
/etc/machine-id/etc/os-releaseexporti
/etc/mime.types
/etc/nsswitch.confinvalid
/etc/os-releaseexporting
/etc/passwd
/etc/pki/ca-trust/extracted/pem/tls-c
/etc/pki/tls/cacert.peminvalid
/etc/pki/tls/certs/ca-bundle.crtx
/etc/protocolsunknown
/etc/resolv.confnon-
/etc/servicesdal
/etc/ssl/ca-bundle.pemx
/etc/ssl/cert.peminvalid
/etc/ssl/certs/ca-certificates.crtadd
/etc/zoneinfoparsing
-1/LOW ref/path/etc/resolv.conf accesses DNS resolver configuration: "/etc/resolv.conf"
-1/LOW ref/path/var references paths within /var:
/var/lib/dbus/machine-idoidc
/var/lib/dbus/machine-idparentbased_traceidratioselect
/var/run/logquota.warnedscan.stoppedunmarshal
/var/run/postgresqlinvalid
/var/run/syslogartifact.pulledartifact.pushed/scan/%s/reportInternal
-1/LOW ref/site/url contains embedded HTTPS URLs:
https://127.0.0.1
https://192.168.1.2
https://access.redhat.com/documentation/en-us/red_hat_subscription_manage
https://accounts.google.comgetting
https://acme-v02.api.letsencrypt.org/directorytable
https://asia.gcr.io.tencentcloudcr.comCreateInstanceToken/preheats/
https://cdn.jsdelivr.net/npm/redoc/bundles/redoc.standalone.jsError
https://en.wikipedia.org/wiki/Cron.ClusterTrustBundleList
https://en.wikipedia.org/wiki/List_of_tz_database_time_zones.
https://eu.gcr.iojfrog-artifactoryDescribeInstances
https://examples.k8s.io/mysql-cinder-pd/README.mdA
https://examples.k8s.io/mysql-cinder-pd/README.mdContainer
https://examples.k8s.io/mysql-cinder-pd/README.mdList
https://examples.k8s.io/mysql-cinder-pd/README.mdPersistentVolume
https://examples.k8s.io/mysql-cinder-pd/README.mdaction
https://examples.k8s.io/mysql-cinder-pd/README.mdnodeTopology
https://examples.k8s.io/volumes/cephfs/README.md
https://examples.k8s.io/volumes/glusterfs/README.mdIf
https://examples.k8s.io/volumes/iscsi/README.mdResource
https://examples.k8s.io/volumes/rbd/README.mdrules
https://examples.k8s.io/volumes/storageos/README.md
https://fonts.googleapis.com/css?family=Montserrat
https://gcr.iosimple-defaultDescribeImagesnot
https://git.k8s.io/community/contributors/devel/sig-architecture/api-conv
https://git.k8s.io/enhancements/keps/sig-network/580-pod-readiness-gatesT
https://git.k8s.io/enhancements/keps/sig-node/281-dynamic-kubelet-configu
https://git.k8s.io/enhancements/keps/sig-node/585-runtime-classaddresses
https://git.k8s.io/enhancements/keps/sig-node/585-runtime-classallocateLo
https://git.k8s.io/enhancements/keps/sig-node/688-pod-overhead/README.mdR
https://git.k8s.io/enhancements/keps/sig-node/688-pod-overhead/README.mdn
https://github.com/OAI/OpenAPI-Specification/blob/master/versions/2.0.md
https://github.com/alibaba/Dragonflyno
https://github.com/aliyun/alibaba-cloud-sdk-go/issues
https://github.com/beego/beego/v2/blob/master/orm/models_fields.go
https://github.com/google/cel-spec
https://github.com/grpc/grpc/blob/master/doc/health-checking.md
https://github.com/kubernetes-sigs/windows-gmsa
https://github.com/kubernetes/apiserver/blob/master/pkg/authentication/us
kubernetes/kubernetes#108255.
https://github.com/opencontainers/runtime-spec/blob/master/config.md
https://github.com/otan/gopgkrb5cannot
https://github.com/uber/kraken/blob/master/assets/kraken-logo-color.svgGe
https://github.com/uber/krakenproto
https://golang.org/pkg/unicode/
https://host01.comLDAP_GROUP_BASE_DNPOSTGRESQL_SSLMODETRACE_SERVICE_NAMET
https://hub.docker.com/v2/users/#/failed
https://hub.docker.comProcessing
https://issue.k8s.io/106267Namespace
https://issues.k8s.io/61966Path
https://k8s.io/docs/reference/access-authn-authz/certificate-signing-requ
https://kubernetes-csi.github.io/docs/ephemeral-local-volumes.html
https://kubernetes.io/docs/concepts/architecture/garbage-collection/
https://kubernetes.io/docs/concepts/architecture/nodes/
https://kubernetes.io/docs/concepts/configuration/assign-pod-node/The
https://kubernetes.io/docs/concepts/configuration/manage-resources-contai
https://kubernetes.io/docs/concepts/configuration/secret/
https://kubernetes.io/docs/concepts/configuration/secretID
https://kubernetes.io/docs/concepts/configuration/secretName
https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/
https://kubernetes.io/docs/concepts/containers/images.regarding
https://kubernetes.io/docs/concepts/containers/images/
https://kubernetes.io/docs/concepts/containers/imagesOS
https://kubernetes.io/docs/concepts/containers/runtime-class/Standard
https://kubernetes.io/docs/concepts/nodes/node/
https://kubernetes.io/docs/concepts/overview/working-with-objects/annotat
https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/
https://kubernetes.io/docs/concepts/overview/working-with-objects/labelsT
https://kubernetes.io/docs/concepts/overview/working-with-objects/names/
https://kubernetes.io/docs/concepts/overview/working-with-objects/namespa
https://kubernetes.io/docs/concepts/policy/resource-quotas/List
https://kubernetes.io/docs/concepts/policy/resource-quotas/secretRef
https://kubernetes.io/docs/concepts/policy/resource-quotas/volumeName
https://kubernetes.io/docs/concepts/scheduling-eviction/pod-overhead/
https://kubernetes.io/docs/concepts/services-networking/service/An
https://kubernetes.io/docs/concepts/storage/persistent-volumes/
https://kubernetes.io/docs/concepts/storage/persistent-volumesItems
https://kubernetes.io/docs/concepts/storage/persistent-volumesfsType
https://kubernetes.io/docs/concepts/storage/volumesSpecifies
https://kubernetes.io/docs/concepts/workloads/controllers/cron-jobs/
https://kubernetes.io/docs/concepts/workloads/controllers/daemonset/Repre
https://kubernetes.io/docs/concepts/workloads/controllers/daemonset/glust
https://kubernetes.io/docs/concepts/workloads/controllers/daemonset/spec
https://kubernetes.io/docs/concepts/workloads/controllers/jobs-run-to-com
https://kubernetes.io/docs/concepts/workloads/controllers/replicationcont
https://kubernetes.io/docs/concepts/workloads/pods/init-containers/The
https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle/
https://kubernetes.io/docs/concepts/workloads/pods/pod-qos/
https://kubernetes.io/docs/reference/access-authn-authz/authentication/
https://kubernetes.io/docs/reference/using-api/api-concepts/
https://kubernetes.io/docs/reference/using-api/cel/
https://kubernetes.io/docs/tasks/access-application-cluster/create-extern
https://kubernetes.io/docs/tasks/administer-cluster/namespaces/Pod
https://kubernetes.io/docs/tasks/administer-cluster/namespaces/secretFile
https://kubernetes.io/docs/tasks/configure-pod-container/configure-servic
https://kubernetes.io/docs/tasks/configure-pod-container/security-context
https://kubernetes.io/docs/tasks/inject-data-application/define-command-a
https://opentelemetry.io/schemas/1.24.0Failed
https://opentelemetry.io/schemas/1.4.0id_token
https://pkg.go.dev/k8s.io/apiserver/pkg/cel/library
https://pr.k8s.io/79391
https://protobuf.dev/reference/go/faq
https://raw.githubusercontent.com/alibaba/Dragonfly/master/docs/images/lo
https://registry-1.docker.iologin
https://registry-internal.
https://registry-vpc.
https://registry.
https://tools.ietf.org/html/rfc1123
https://tools.ietf.org/html/rfc4648
https://tools.ietf.org/html/rfc5280
https://unpkg.com/rapidoc/dist/rapidoc-min.jscan
https://unpkg.com/swagger-ui-dist/favicon-16x16.pnghttps
https://unpkg.com/swagger-ui-dist/favicon-32x32.pngfailed
https://unpkg.com/swagger-ui-dist/swagger-ui-bundle.jsfailed
https://unpkg.com/swagger-ui-dist/swagger-ui-standalone-preset.js/project
https://unpkg.com/swagger-ui-dist/swagger-ui.css/projects/
https://us.gcr.iohttps
https://www.iana.org/assignments/service-names
https://www.rfc-editor.org/rfc/rfc6455
https://www.rfc-editor.org/rfc/rfc9113.html
-1/LOW ref/site/url/unusual contains HTTP hostname with unusual top-level domain: "http://beego.vip/"
-1/LOW ref/words/password references a password: "Password
password"
-1/LOW secrets/private_key private key

Deleted: harbor-2.10-portal/usr/share/nginx/html/3751.cbde41d679daa5eb.js

RISK KEY DESCRIPTION
-2/MEDIUM net/download downloads files
-2/MEDIUM net/url/request requests resources via URL
-1/LOW encoding/json/decode jsondecode
-1/LOW encoding/json/encode encodes JSON
-1/LOW ref/site/url contains embedded HTTPS URLs: "https://nvd.nist.gov/vuln/detail/
https://openid.net/connect/"
-1/LOW ref/words/password references a password: "password"

Deleted: harbor-2.10-portal/usr/share/nginx/html/575.cebc430388c5a933.js

RISK KEY DESCRIPTION
-2/MEDIUM net/url/request requests resources via URL

Deleted: harbor-2.10-portal/usr/share/nginx/html/2914.f5bb47976a370ea7.js

RISK KEY DESCRIPTION
-1/LOW ref/site/url contains embedded HTTPS URLs: "https://nvd.nist.gov/vuln/detail/"

Deleted: harbor-2.10-portal/usr/share/nginx/html/8343.93e2a2e5e0c1325b.js

RISK KEY DESCRIPTION
-2/MEDIUM net/download downloads files
-2/MEDIUM net/upload uploads files
-1/LOW encoding/json/decode jsondecode
-1/LOW encoding/json/encode encodes JSON
-1/LOW fd/multiplex monitor multiple file descriptors

Deleted: harbor-2.10-portal/usr/share/nginx/html/7215.b14bf4648bf7274b.js

RISK KEY DESCRIPTION
-2/MEDIUM net/download downloads files
-2/MEDIUM net/http/post able to submit content via HTTP POST
-2/MEDIUM net/upload uploads files
-2/MEDIUM net/url/request requests resources via URL
-1/LOW encoding/json/decode jsondecode
-1/LOW encoding/json/encode encodes JSON
-1/LOW fs/file/delete deletes files
-1/LOW ref/words/password references a password: "password"

Deleted: harbor-2.10-portal/usr/share/nginx/html/3785.47bf997ad2c6dc7d.js

RISK KEY DESCRIPTION
-2/MEDIUM net/http/post able to submit content via HTTP POST
-2/MEDIUM net/url/request requests resources via URL

Deleted: harbor-2.10-portal/usr/share/nginx/html/6149.0e5abcd8adce08e6.js

RISK KEY DESCRIPTION
-2/MEDIUM net/http/post able to submit content via HTTP POST
-2/MEDIUM net/url/request requests resources via URL

Deleted: harbor-2.10-portal/usr/share/nginx/html/4554.109c3b83fcfe0a4f.js

RISK KEY DESCRIPTION
-3/HIGH techniques/code_eval evaluate code dynamically using exec()
-2/MEDIUM net/http/post able to submit content via HTTP POST
-2/MEDIUM ref/words/agent references an 'agent': "agentStubMap"
-1/LOW encoding/json/encode encodes JSON
-1/LOW fd/multiplex monitor multiple file descriptors
-1/LOW ref/site/url contains embedded HTTPS URLs: "https://github.com/markedjs/marked.
https://marked.js.org/"

Deleted: harbor-2.10-portal/usr/share/nginx/html/5206.e907491daa7880a9.js

RISK KEY DESCRIPTION
-1/LOW encoding/json/encode encodes JSON

Deleted: harbor-2.10-portal/usr/share/nginx/html/3031.b707cc19f29fd705.js

RISK KEY DESCRIPTION
-2/MEDIUM net/url/request requests resources via URL
-1/LOW encoding/json/encode encodes JSON

Deleted: harbor-2.10-portal/usr/share/nginx/html/6253.52dee94778778873.js

RISK KEY DESCRIPTION
-2/MEDIUM net/http/post able to submit content via HTTP POST
-2/MEDIUM net/url/request requests resources via URL
-1/LOW encoding/json/encode encodes JSON

Deleted: harbor-2.10-portal/usr/share/nginx/html/3322.4402085913684103.js

RISK KEY DESCRIPTION
-1/LOW encoding/json/encode encodes JSON

Deleted: harbor-2.10-portal/usr/share/nginx/html/4771.c2cdabc0bc353a3e.js

RISK KEY DESCRIPTION
-2/MEDIUM net/http/post able to submit content via HTTP POST
-2/MEDIUM net/url/request requests resources via URL
-1/LOW encoding/json/decode jsondecode
-1/LOW encoding/json/encode encodes JSON
-1/LOW ref/site/url contains embedded HTTPS URLs: "https://github.com/goharbor/harbor/wiki/Reduce-job-queue-latency
https://goharbor.io/blog/harbor-1.10-release/"
-1/LOW ref/words/password references a password: "password"

Deleted: harbor-2.10-portal/usr/share/nginx/html/5817.e3be35a21c6bf7b6.js

RISK KEY DESCRIPTION
-2/MEDIUM net/download downloads files
-2/MEDIUM net/http/post able to submit content via HTTP POST
-2/MEDIUM net/url/request requests resources via URL
-1/LOW encoding/json/encode encodes JSON
-1/LOW ref/words/password references a password: "password"

Deleted: harbor-2.10-portal/usr/share/nginx/html/6809.9238534a5156153f.js

RISK KEY DESCRIPTION
-2/MEDIUM net/url/request requests resources via URL

Deleted: harbor-2.10-portal/usr/share/nginx/html/488.4fb0974f11ad58b4.js

RISK KEY DESCRIPTION
-2/MEDIUM net/http/post able to submit content via HTTP POST
-2/MEDIUM net/url/request requests resources via URL
-1/LOW ref/words/password references a password: "password"

Deleted: harbor-2.10-portal/usr/share/nginx/html/6093.ab66451ff59a4176.js

RISK KEY DESCRIPTION
-1/LOW encoding/json/encode encodes JSON

Deleted: harbor-2.10-portal/usr/share/nginx/html/2079.fd0f6568a232105b.js

RISK KEY DESCRIPTION
-2/MEDIUM net/http/post able to submit content via HTTP POST
-2/MEDIUM net/url/request requests resources via URL

Deleted: harbor-2.10-portal/usr/share/nginx/html/9546.af0a165002d12592.js

RISK KEY DESCRIPTION
-1/LOW encoding/json/decode jsondecode
-1/LOW ref/site/url contains embedded HTTPS URLs: "https://github.com/goharbor/harbor"
-1/LOW ref/words/password references a password: "password"

Deleted: harbor-2.10-portal/usr/share/nginx/html/3664.eebf3564c283b660.js

RISK KEY DESCRIPTION
-2/MEDIUM exec/shell_command execute a shell command
-2/MEDIUM net/http/post able to submit content via HTTP POST
-2/MEDIUM net/url/request requests resources via URL

Deleted: harbor-2.10-portal/usr/share/nginx/html/8244.8a4d04dfdbb4a930.js

RISK KEY DESCRIPTION
-2/MEDIUM net/url/request requests resources via URL

Deleted: harbor-2.10-portal/usr/share/nginx/html/polyfills.67cfd31b2752cc11.js

RISK KEY DESCRIPTION
-3/HIGH techniques/code_eval evaluate code dynamically using exec()
-2/MEDIUM ref/words/intercept references interception: "interceptCurrZone
interceptDlgt
interceptZS"
-1/LOW encoding/json/encode encodes JSON
-1/LOW process/create create a new child process using fork

Deleted: harbor-2.10-portal/usr/share/nginx/html/3274.0198fd8eea34daa1.js

RISK KEY DESCRIPTION
-2/MEDIUM net/download downloads files
-2/MEDIUM net/url/request requests resources via URL

Deleted: harbor-2.10-portal/usr/share/nginx/html/5691.435ce2a59790388c.js

RISK KEY DESCRIPTION
-1/LOW encoding/json/encode encodes JSON
-1/LOW ref/words/password references a password: "password"

Deleted: harbor-2.10-portal/usr/share/nginx/html/4665.9fdcb7780b0842dc.js

RISK KEY DESCRIPTION
-2/MEDIUM net/http/post able to submit content via HTTP POST
-2/MEDIUM net/url/request requests resources via URL

Deleted: harbor-2.10-portal/usr/share/nginx/html/9942.7bd3c4d96dd3ee9a.js

RISK KEY DESCRIPTION
-1/LOW ref/words/password references a password: "password"

Deleted: harbor-2.10-portal/usr/share/nginx/html/583.3be05dc663d97d04.js

RISK KEY DESCRIPTION
-2/MEDIUM net/http/post able to submit content via HTTP POST
-2/MEDIUM net/url/request requests resources via URL

Deleted: harbor-2.10-portal/usr/share/nginx/html/5514.296fea282f12c0c5.js

RISK KEY DESCRIPTION
-3/HIGH techniques/code_eval evaluate code dynamically using exec()
-2/MEDIUM ref/path/relative references and possibly executes relative path: "./artifacts-tab
./info-tab"
-2/MEDIUM shell/exec executes a shell: "/bin/sh -c""
-1/LOW encoding/base64 supports base64 encoded strings
-1/LOW encoding/json/encode encodes JSON
-1/LOW net/hostname/resolve resolves network host names
-1/LOW ref/site/url contains embedded HTTP URLs: "http://www.w3.org/2000/svg"

Deleted: harbor-2.10-registryctl/usr/bin/harbor-registryctl

RISK KEY DESCRIPTION
meta compiler go
meta lang c++
-2/MEDIUM archives/zip works with zip files
-2/MEDIUM data/embedded/html contains HTML content
-2/MEDIUM databases/mysql accesses MySQL databases
-2/MEDIUM databases/postgresql accesses PostgreSQL databases
-2/MEDIUM databases/sqlite accesses SQLite databases
-2/MEDIUM evasion/content/length/0 sets HTTP content length to zero
-2/MEDIUM exec/program executes another program
-2/MEDIUM exec/shell_echo uses the echo command to generate output
-2/MEDIUM fs/permission/chown changes file ownership
-2/MEDIUM fs/permission/modify modifies file permissions
-2/MEDIUM kernel/uname/get get system identification (os_release)
-2/MEDIUM net/dns/reverse looks up the reverse hostname for an IP
-2/MEDIUM net/http/cookies able to access HTTP resources using cookies
-2/MEDIUM net/http/post able to submit form content via HTTP POST
-2/MEDIUM net/ip/parse parses IP address (IPv4 or IPv6)
-2/MEDIUM net/mac/address retrieves network MAC address
-2/MEDIUM net/raw_sockets uses raw sockets
-2/MEDIUM net/upload uploads files
-2/MEDIUM net/url/encode encodes URL, likely to pass GET variables
-2/MEDIUM net/url/request requests resources via URL
-2/MEDIUM ref/path/etc/hosts references /etc/hosts: "/etc/hosts"
-2/MEDIUM ref/path/usr/local references paths within /usr/local: "/usr/local/share/mime/globs2mime"
-2/MEDIUM ref/words/agent references an 'agent': "agentClientUDPParams
agentEndpointConfig
agentUploader
agent_host
agent_port
agentdelete
agentkeep
jaeger_agent
user_agent"
-1/LOW compression/gzip works with gzip files
-1/LOW crypto/aes supports AES (Advanced Encryption Standard)
-1/LOW crypto/ecdsa uses the Go crypto/ecdsa library
-1/LOW crypto/ed25519 elliptic curve algorithm used by TLS and SSH
-1/LOW crypto/tls tls
-1/LOW encoding/base64 supports base64 encoded strings
-1/LOW encoding/json supports JSON encoded objects
-1/LOW encoding/json/decode jsondecode
-1/LOW encoding/json/encode encodes JSON
-1/LOW env/USER uSER
-1/LOW fs/directory/create creates directories
-1/LOW fs/directory/list uses Go functions to list a directory
-1/LOW fs/directory/remove uses libc functions to remove directories
-1/LOW fs/file/delete deletes files
-1/LOW fs/file/read reads files
-1/LOW fs/link/read read value of a symbolic link
-1/LOW fs/watch monitors filesystem events
-1/LOW kernel/cpu/info gets number of processors
-1/LOW kernel/hostname/get gets the hostname of the machine
-1/LOW kernel/netlink communicate with kernel services
-1/LOW net/dns uses DNS (Domain Name Service)
-1/LOW net/dns/txt uses DNS TXT (text) records
-1/LOW net/grpc uses the gRPC Remote Procedure Call framework
-1/LOW net/hostname/resolve uses Go to resolve network hosts
-1/LOW net/http/accept/encoding able to decode multiple forms of HTTP responses (example: gzip)
-1/LOW net/http/auth makes HTTP requests with basic authentication
-1/LOW net/http/request makes HTTP requests
-1/LOW net/http2 uses the HTTP/2 protocol
-1/LOW net/http_proxy able to use an HTTP proxy that requires authentication
-1/LOW net/sendfile transfer data between file descriptors
-1/LOW net/socket/listen listen on a socket
-1/LOW net/socket/local/address get local address of connected socket
-1/LOW net/socket/peer/address get peer address of connected socket
-1/LOW net/socket/receive receive a message from a socket
-1/LOW net/socket/send send a message to a socket
-1/LOW net/udp/receive listens for UDP responses
-1/LOW net/udp/send sends UDP packets
-1/LOW net/url handles URL strings
-1/LOW process/groups/set set group access list
-1/LOW ref/path/etc references paths within /etc:
/etc/apache/mime.typesgzip
/etc/group
/etc/hostsgetsockoptnetlinkribsetsock
/etc/httpd/conf/mime.typesmime
/etc/machine-id/etc/os-releaseexporti
/etc/mime.types
/etc/nsswitch.confinvalid
/etc/os-releaseexporting
/etc/passwd
/etc/pki/ca-trust/extracted/pem/tls-c
/etc/pki/tls/cacert.peminvalid
/etc/pki/tls/certs/ca-bundle.crtx
/etc/pki/tls/certsdontfreezetheworldt
/etc/protocolsunknown
/etc/resolv.confnon-
/etc/services
/etc/ssl/ca-bundle.pemx
/etc/ssl/cert.peminvalid
/etc/ssl/certs/ca-certificates.crtadd
/etc/ssl/certsuser
/etc/zoneinfoparsing
-1/LOW ref/path/etc/resolv.conf accesses DNS resolver configuration: "/etc/resolv.conf"
-1/LOW ref/path/var references paths within /var: "/var/lib/dbus/machine-idnistec
/var/lib/dbus/machine-idparentbased_traceidratiotag
/var/lib/registry%q"
-1/LOW ref/site/url contains embedded HTTPS URLs:
https://api.loganalytics.iohttps
https://api.loganalytics.usservicebus.chinacloudapi.cndocuments.microsoft
https://batch.chinacloudapi.cn/mysql.database.chinacloudapi.cnhttps
https://batch.cloudapi.de/mysql.database.cloudapi.decloudapp.microsoftazu
https://batch.core.usgovcloudapi.net/https
https://batch.core.windows.net/https
https://cosmos.azure.comawssdk.client.LogRequestCredentialsEndpointErrora
https://database.chinacloudapi.cn/AWS_CONTAINER_CREDENTIALS_FULL_URIIgnor
https://database.cloudapi.de/request
https://database.usgovcloudapi.net/failed
https://database.windows.net/postgres.database.cloudapi.dehttps
https://datalake.azure.net/https
https://dev.azuresynapse.nethttps
https://dev.azuresynapse.usgovcloudapi.netincorrect
https://gallery.azure.com/https
https://gallery.chinacloudapi.cn/mariadb.database.chinacloudapi.cnhttps
https://gallery.cloudapi.de/mariadb.database.cloudapi.defailed
https://gallery.usgovcloudapi.net/mariadb.database.usgovcloudapi.netdev.a
https://github.com/beego/beego/v2/blob/master/orm/models_fields.go
https://graph.chinacloudapi.cn/https
https://graph.cloudapi.de/https
https://graph.microsoft.com/https
https://graph.microsoft.us/https
https://graph.windows.net/mariadb.database.azure.comhttps
https://host01.comLDAP_GROUP_BASE_DNPOSTGRESQL_SSLMODETRACE_SERVICE_NAMET
https://ip-ranges.amazonaws.com/ip-ranges.jsonNo
https://#.chinacloudapi.cn/https
https://#.microsoftonline.com/https
https://#.microsoftonline.de/AWS_CONTAINER_AUTHORIZATION_TOKENfailed
https://#.microsoftonline.us/https
https://manage.chinacloudapi.com/https
https://manage.chinacloudapi.com/publishsettings/indexhttps
https://manage.microsoftazure.de/publishsettings/indexuuid
https://manage.windowsazure.com/https
https://manage.windowsazure.com/publishsettings/indexX-Amz-Copy-Source-Se
https://manage.windowsazure.us/https
https://manage.windowsazure.us/publishsettings/indexevent
https://managedhsm.azure.net/https
https://managedhsm.azure.netservicebus.usgovcloudapi.nethttps
https://management.azure.com/https
https://management.chinacloudapi.cn/https
https://management.core.chinacloudapi.cn/https
https://management.core.cloudapi.de/6ba7b810-9dad-11d1-80b4-00c04fd430c86
https://management.core.usgovcloudapi.net/https
https://management.core.windows.net/https
https://management.microsoftazure.de/awsdk.client.LogResponse.ResponseBod
https://management.usgovcloudapi.net/https
https://microsoftgraph.chinacloudapi.cn/operator
https://microsoftgraph.chinacloudapi.cnwrong
https://opentelemetry.io/schemas/1.24.0Failed
https://opentelemetry.io/schemas/1.4.011102230246251565404236316680908203
https://ossrdbms-aad.database.chinacloudapi.cninvalid
https://ossrdbms-aad.database.cloudapi.deinvalid
https://ossrdbms-aad.database.usgovcloudapi.netinvalid
https://ossrdbms-aad.database.windows.nethttps
https://protobuf.dev/reference/go/faq
https://redirectuploadIdversionsSTANDARDtenantid
https://servicebus.azure.net/https
https://servicebus.chinacloudapi.cn/https
https://servicebus.cloudapi.de/https
https://servicebus.usgovcloudapi.net/https
https://servicebus.windows.net/https
https://storage.azure.com/database.usgovcloudapi.netcloudapp.usgovcloudap
https://vault.azure.cn/vault.microsoftazure.deunexpected
https://vault.azure.cnazuretrafficmanager.deservicebus.cloudapi.deAZUREUS
https://vault.azure.net/mysql.database.azure.comhttps
https://vault.azure.netusgovtrafficmanager.netvault.usgovcloudapi.nethttp
https://vault.microsoftazure.de/uuid
https://vault.microsoftazure.deuuid
https://vault.usgovcloudapi.net/mysql.database.usgovcloudapi.nethttp
https://vault.usgovcloudapi.nethttps
-1/LOW ref/words/password references a password: "Password
password"
-1/LOW secrets/private_key private key

Deleted: harbor-2.10-portal/usr/share/nginx/html/3651.1068219fd24c960e.js

RISK KEY DESCRIPTION
-1/LOW ref/words/password references a password: "password"

Deleted: harbor-2.10-portal/usr/share/nginx/html/scripts.3846d86d42cdb753.js

RISK KEY DESCRIPTION
-3/HIGH techniques/code_eval evaluate code dynamically using exec()
-2/MEDIUM net/download downloads files
-2/MEDIUM net/upload uploads files
-2/MEDIUM ref/ip hardcoded IP address:
18.28.28.28
31.78.94.94
32.71.92.92
34.23.69.43
36.61.67.67
36.61.72.72
41.27.83.52
43.19.84.41
43.43.87.85
44.21.87.33
56.24.81.81
58.49.65.94
72.86.88.88
82.77.79.79
85.88.91.91
91.88.87.87
91.88.88.88
-2/MEDIUM ref/program/powershell powershell: "powershell"
-1/LOW encoding/json/decode jsondecode
-1/LOW encoding/json/encode encodes JSON
-1/LOW fs/file/delete deletes files
-1/LOW ref/site/url contains embedded HTTPS URLs: "https://github.com/markedjs/marked.
https://marked.js.org/"

Deleted: harbor-2.10-jobservice/usr/bin/harbor-jobservice

RISK KEY DESCRIPTION
meta compiler go
meta lang c++
-2/MEDIUM archives/zip works with zip files
-2/MEDIUM data/embedded/html contains HTML content
-2/MEDIUM databases/mysql accesses MySQL databases
-2/MEDIUM databases/postgresql accesses PostgreSQL databases
-2/MEDIUM databases/sqlite accesses SQLite databases
-2/MEDIUM evasion/content/length/0 sets HTTP content length to zero
-2/MEDIUM exec/program executes another program
-2/MEDIUM exec/shell_echo uses the echo command to generate output
-2/MEDIUM fs/permission/chown changes file ownership
-2/MEDIUM fs/permission/modify modifies file permissions
-2/MEDIUM kernel/uname/get get system identification (os_release)
-2/MEDIUM net/dns/reverse looks up the reverse hostname for an IP
-2/MEDIUM net/download downloads files
-2/MEDIUM net/http/cookies able to access HTTP resources using cookies
-2/MEDIUM net/http/post able to submit content via HTTP POST
-2/MEDIUM net/ip/parse parses IP address (IPv4 or IPv6)
-2/MEDIUM net/mac/address retrieves network MAC address
-2/MEDIUM net/raw_sockets uses raw sockets
-2/MEDIUM net/upload uploads files
-2/MEDIUM net/url/encode encodes URL, likely to pass GET variables
-2/MEDIUM net/url/request requests resources via URL
-2/MEDIUM ref/path/etc/hosts references /etc/hosts: "/etc/hosts"
-2/MEDIUM ref/path/usr/local references paths within /usr/local: "/usr/local/share/mime/globs2mime"
-2/MEDIUM ref/words/agent references an 'agent': "agentClientUDPParams
agentEndpointConfig
agentUploader
agent_host
agent_port
agentkeep
hook_agent
jaeger_agent
user_agent"
-2/MEDIUM ref/words/intercept references interception: "interceptors"
-1/LOW compression/gzip works with gzip files
-1/LOW crypto/aes supports AES (Advanced Encryption Standard)
-1/LOW crypto/ecdsa uses the Go crypto/ecdsa library
-1/LOW crypto/ed25519 elliptic curve algorithm used by TLS and SSH
-1/LOW crypto/tls tls
-1/LOW data/embedded/pem/test_key contains TESTING KEY directive
-1/LOW encoding/base64 supports base64 encoded strings
-1/LOW encoding/csv works with CSV (comma separated value) files
-1/LOW encoding/json supports JSON encoded objects
-1/LOW encoding/json/decode jsondecode
-1/LOW encoding/json/encode encodes JSON
-1/LOW env/USER uSER
-1/LOW fs/directory/list uses Go functions to list a directory
-1/LOW fs/directory/remove uses libc functions to remove directories
-1/LOW fs/file/delete deletes files
-1/LOW fs/file/read reads files
-1/LOW fs/link/read read value of a symbolic link
-1/LOW fs/mount mounts file systems
-1/LOW fs/watch monitors filesystem events
-1/LOW kernel/cpu/info gets number of processors
-1/LOW kernel/hostname/get gets the hostname of the machine
-1/LOW kernel/netlink communicate with kernel services
-1/LOW net/dns uses DNS (Domain Name Service)
-1/LOW net/dns/txt uses DNS TXT (text) records
-1/LOW net/grpc uses the gRPC Remote Procedure Call framework
-1/LOW net/hostname/resolve uses Go to resolve network hosts
-1/LOW net/http/accept/encoding able to decode multiple forms of HTTP responses (example: gzip)
-1/LOW net/http/auth makes HTTP requests with basic authentication
-1/LOW net/http/request makes HTTP requests
-1/LOW net/http2 uses the HTTP/2 protocol
-1/LOW net/http_proxy able to use an HTTP proxy that requires authentication
-1/LOW net/oauth2 supports OAuth2
-1/LOW net/sendfile transfer data between file descriptors
-1/LOW net/socket/listen listen on a socket
-1/LOW net/socket/local/address get local address of connected socket
-1/LOW net/socket/peer/address get peer address of connected socket
-1/LOW net/socket/receive receive a message from a socket
-1/LOW net/socket/send send a message to a socket
-1/LOW net/udp/receive listens for UDP responses
-1/LOW net/udp/send sends UDP packets
-1/LOW net/url handles URL strings
-1/LOW ref/path/etc references paths within /etc:
/etc/apache/mime.typesgzip
/etc/core/keymetric
/etc/group
/etc/hostsgetsockoptnetlinkrib
/etc/httpd/conf/mime.typesmime
/etc/machine-id/etc/os-releaseexporti
/etc/mime.types
/etc/nsswitch.confinvalid
/etc/os-releaseexporting
/etc/passwd
/etc/pki/ca-trust/extracted/pem/tls-c
/etc/pki/tls/cacert.peminvalid
/etc/pki/tls/certs/ca-bundle.crtx
/etc/pki/tls/certsbufio
/etc/protocolsunknown
/etc/resolv.confnon-
/etc/services.
/etc/ssl/ca-bundle.pemx
/etc/ssl/cert.peminvalid
/etc/ssl/certs/ca-certificates.crtadd
/etc/ssl/certsbad
/etc/zoneinfoparsing
-1/LOW ref/path/etc/resolv.conf accesses DNS resolver configuration: "/etc/resolv.conf"
-1/LOW ref/path/var references paths within /var:
/var/lib/dbus/machine-idparentbased_traceidratiounexpected
/var/lib/dbus/machine-idx509
/var/run/logarchitectureDEPENDENCIESharbor_labelcontent_typex-sdk-cli
/var/run/postgresqlinvalid
/var/run/syslogcannot
-1/LOW ref/site/url contains embedded HTTPS URLs:
https://127.0.0.1
https://LC_CTYPEErrorMapRequiredobjectIDDurationfunctionEndpointtrace_idp
https://asia.gcr.io.tencentcloudcr.comCreateInstanceTokeninvalid
https://eu.gcr.iojfrog-artifactoryDescribeInstances
https://gcr.iosimple-defaultDescribeImages
https://ghcr.iodocker-registryTC3-HMAC-SHA256CreateNamespace
https://github.com/alibaba/Dragonflyfailed
https://github.com/aliyun/alibaba-cloud-sdk-go/issues
https://github.com/beego/beego/v2/blob/master/orm/models_fields.go
https://github.com/otan/gopgkrb5ID-
https://github.com/uber/kraken/blob/master/assets/kraken-logo-color.svg
https://github.com/uber/krakenunsupported
https://host01.comLDAP_GROUP_BASE_DNPOSTGRESQL_SSLMODETRACE_SERVICE_NAMET
https://hub.docker.com/v2/users/#/failed
https://hub.docker.comProcessing
https://opentelemetry.io/schemas/1.24.0Failed
https://opentelemetry.io/schemas/1.4.0non-positive
https://protobuf.dev/reference/go/faq
https://raw.githubusercontent.com/alibaba/Dragonfly/master/docs/images/lo
https://registry-1.docker.iologin
https://registry-internal.
https://registry-vpc.
https://registry.
https://us.gcr.iohttps
-1/LOW ref/words/password references a password: "Password
password"
-1/LOW secrets/private_key private key
-1/LOW service/stop service stop

@EyeCantCU EyeCantCU merged commit db9a438 into main Apr 1, 2024
8 checks passed
@EyeCantCU EyeCantCU deleted the harbor-2.10 branch April 1, 2024 16:46
# for free to join this conversation on GitHub. Already have an account? # to comment
Reviewers

@debasishbsws debasishbsws

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@EyeCantCU @debasishbsws