Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

update snyk expirations #786

Merged
merged 1 commit into from
Dec 3, 2024
Merged

update snyk expirations #786

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
18 changes: 9 additions & 9 deletions .snyk
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -7,60 +7,60 @@ ignore:
reason: >-
Upgrade path is complex, Issue tracked in github:
https://github.com/GSA/data.gov/issues/4217
expires: 2024-11-30T13:35:17.967Z
expires: 2025-02-28T19:29:54.032Z
created: 2023-11-01T13:35:17.972Z
SNYK-PYTHON-BEAKER-575115:
- '*':
reason: >-
No remediation available yet; Not affecting us since the storage is
not accessible to any other client
expires: 2024-11-30T16:20:58.017Z
expires: 2025-02-28T19:29:54.032Z
created: 2022-12-08T16:20:58.023Z
SNYK-PYTHON-WERKZEUG-3319936:
- '*':
reason: >-
Upgrade path is complex, Issue tracked in github:
https://github.com/GSA/data.gov/issues/4217
expires: 2024-11-30T16:20:58.017Z
expires: 2025-02-28T19:29:54.032Z
created: 2023-02-15T16:20:58.023Z
SNYK-PYTHON-WERKZEUG-3319935:
- '*':
reason: >-
Upgrade path is complex, Issue tracked in github:
https://github.com/GSA/data.gov/issues/4217
expires: 2024-11-30T16:20:58.017Z
expires: 2025-02-28T16:20:58.017Z
created: 2023-02-15T16:20:58.023Z
SNYK-PYTHON-FLASK-5490129:
- '*':
reason: >-
Upgrade path is complex, Issue tracked in github:
https://github.com/GSA/data.gov/issues/4303
expires: 2024-11-30T16:20:58.017Z
expires: 2025-02-28T19:29:54.032Z
created: 2023-05-08T16:20:58.023Z
SNYK-PYTHON-PYOPENSSL-6149520:
- '*':
reason: >-
No remediation available yet; Issue tracked in github:
https://github.com/GSA/data.gov/issues/4532
expires: 2024-11-30T19:29:54.032Z
expires: 2025-02-28T19:29:54.032Z
created: 2024-01-11T19:29:54.039Z
SNYK-PYTHON-PYOPENSSL-6157250:
- '*':
reason: >-
No remediation available yet; Issue tracked in github:
https://github.com/GSA/data.gov/issues/4591
expires: 2024-11-30T19:29:54.032Z
expires: 2025-02-28T19:29:54.032Z
SNYK-PYTHON-PYOPENSSL-6592766:
- '*':
reason: >-
No remediation available yet; Low severity.
expires: 2024-11-30T17:24:47.251Z
expires: 2025-02-28T17:24:47.251Z
created: 2024-04-24T17:24:47.257Z
SNYK-PYTHON-WERKZEUG-6808933:
- '*':
reason: >-
Not affecting us since no debugger is enabled in cloud.gov apps
expires: 2024-11-30T16:20:58.017Z
expires: 2025-02-28T19:29:54.032Z
SNYK-PYTHON-WERKZEUG-8309091:
- '*':
reason: >-
Expand Down
13 changes: 8 additions & 5 deletions Dockerfile
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,18 +1,21 @@
FROM ckan/ckan-dev:2.10.5
FROM ckan/ckan-dev:2.10.5-py3.10
# Inherit from here: https://github.com/okfn/docker-ckan/blob/master/ckan-dev/2.10/Dockerfile
# And then from here: https://github.com/okfn/docker-ckan/blob/master/ckan-base/2.10/Dockerfile

ENV CKAN_HOME /srv/app
ENV CKAN_CONFIG /app/config
ENV APP_DIR /app
USER root

rshewitt marked this conversation as resolved.
Show resolved Hide resolved
ENV CKAN_HOME=/srv/app
ENV CKAN_CONFIG=/app/config
ENV APP_DIR=/app
# ENV CKAN_ENV docker

# TODO: Figure out if these things are necessary?
# add dependencies for cryptography and vim
# RUN apk add libressl-dev musl-dev libffi-dev xmlsec vim xmlsec-dev

# Install vim and zip
RUN apk add vim zip xmlsec
RUN apt-get update -y && \
apt-get install -y vim zip xmlsec1 ncat

COPY requirements.txt requirements-dev.txt ${APP_DIR}/
ADD setup.py README.md ${APP_DIR}/
Expand Down
Loading