quay/events/vulnerability_found.html at konflux/mintmaker/master/https-proxy-agent-7.x

mirror of https://github.com/quay/quay.git synced 2026-01-26 06:21:37 +03:00

Files

Ivan Bazulic 6392ca972a secscan: Fix Slack notification creation on initial index (PROJQUAY-7037) (#2923 )

* secscan: Fix Slack notification creation on initial index (PROJQUAY-7037)
This fixes the Slack and e-mail notifications when images are indexed on initial push, where `tags` information was missing. If an image is a manifest child, instead of the tag, we provide a full SHA digest to the client.
Also adds the ability to filter security vulnerabilites depending on their severity. If the `NOTIFICATION_MIN_SEVERITY_ON_NEW_INDEX` is not set in the `config.yaml` file, we will automatically create notifications only for vulnerabilities marked "high" or "critical". This variable can take values defined here:

3248a72da6/util/secscan/__init__.py (L1)

Example:

```
NOTIFICATION_MIN_SEVERITY_ON_NEW_INDEX: Medium
```

* Removed superfulous debug statements

* Add default to config.yaml, remove extra comment

* Fix isort sorting

* Update vulnerability_found.html

* Update vulnerability_found.html

* Isort formatting fix

* Update vulnerability_found.html

2024-06-12 09:51:11 -04:00

640 B

Raw Permalink Blame History

View Raw

640 B Raw Permalink Blame History

640 B

Raw Permalink Blame History