-
Notifications
You must be signed in to change notification settings - Fork 30
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Refactor E2E Vulnerability Detection tests cases to remove false positive CVE-2023-4822 #5369
Merged
juliamagan
merged 16 commits into
4.8.0
from
fix/5368-remove-false-positive-CVE-2023-4822
May 22, 2024
Merged
Refactor E2E Vulnerability Detection tests cases to remove false positive CVE-2023-4822 #5369
juliamagan
merged 16 commits into
4.8.0
from
fix/5368-remove-false-positive-CVE-2023-4822
May 22, 2024
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
1 task
2 tasks
santipadilla
approved these changes
May 22, 2024
3 tasks
juliamagan
approved these changes
May 22, 2024
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Description
It has been detected that vulnerability CVE-2023-4822 was not expected for test defined grafana packages. This PR removes this vulnerability for grafana packages metadata along with including new
grafana-enterprise
packages that match with non-vulnerable-to-vulnerable test caseWarning
The proposed new Grafana nonvulnerable package has some vulnerabilities. However, this package has been selected due to these vulnerabilities has not been validated by NVD. When this occur, Grafana packages should be updated by the proposed in #5368 (comment)
Testing performed
Build: https://ci.wazuh.info/job/Test_e2e_system/287/console
Result analysis