Branch: refs/heads/master Home: https://github.com/tribe29/checkmk Commit: ede136b4d8c90253939156bb41bfe48a406f9dfb https://github.com/tribe29/checkmk/commit/ede136b4d8c90253939156bb41bfe48a4… Author: Hannes Rantzsch <hannes.rantzsch(a)tribe29.com> Date: 2022-07-26 (Tue, 26 Jul 2022) Changed paths: M tests/Makefile A tests/bandit-nosec-markers/bandit-exclusions.md A tests/bandit-nosec-markers/nosec_reason.py Log Message: ----------- check for un-annotated bandit nosec markers * bandit now excludes the tests folder * add a file to document all bandit '# nosec' exclusions in checkmk * add a script to keep track of them and manage the exclusion IDs * add 'test-bandit-nosec-markers' make target to run the script Change-Id: I2d38ca535f1e1ce96f34321b1d6a1a26f87e2ef9 Commit: 0292413f0cce96c7749c3401c08dc7f615997935 https://github.com/tribe29/checkmk/commit/0292413f0cce96c7749c3401c08dc7f61… Author: Hannes Rantzsch <hannes.rantzsch(a)tribe29.com> Date: 2022-07-26 (Tue, 26 Jul 2022) Changed paths: A buildscripts/scripts/test-python3-bandit.groovy R buildscripts/scripts/test-python3-bandit.jenkins Log Message: ----------- modernize bandit jenkins job Change-Id: Icf85f42fb16853d2b35ea7bfdcd32cf9f024d6c6 Commit: 0d00b81645533ab35772b7b06fca5c1d77dcb245 https://github.com/tribe29/checkmk/commit/0d00b81645533ab35772b7b06fca5c1d7… Author: Hannes Rantzsch <hannes.rantzsch(a)tribe29.com> Date: 2022-07-26 (Tue, 26 Jul 2022) Changed paths: M buildscripts/scripts/test-python3-bandit.groovy Log Message: ----------- add stage to check nosec markers to bandit job Change-Id: I9c85999a472076d45cdc5e22297c08340cb1f055 Commit: debd0776081eb20efbb5e5e826c163bbedd56911 https://github.com/tribe29/checkmk/commit/debd0776081eb20efbb5e5e826c163bbe… Author: Maximilian Wirtz <maximilian.wirtz(a)tribe29.com> Date: 2022-07-26 (Tue, 26 Jul 2022) Changed paths: M Pipfile M Pipfile.lock Log Message: ----------- Update lxml to 4.9.1 This fixes CVE-2022-2309. According to my analysis that vulnerability could not be triggered in Checkmk. Change-Id: I087fa2fda9856538be1d7d5cb342e41ebf1b744d Compare: https://github.com/tribe29/checkmk/compare/4e5108c62dde...debd0776081e