search

xmidt-org / ancla

Ancla provides event webhook registry capabilities to XMiDT services.
Apache License 2.0
1 stars 2 forks source link

Webhook validator #223

Closed maurafortino closed 1 month ago

maurafortino commented 1 month ago

-Updated the BuildURLChecker function to be a method off of the validation config -Added two new config struct to the validation config - one for IP configuration and one Domain configuration (based on conversation with Wes)

guardrails[bot] commented 1 month ago

:warning: We detected 1 security issue in this pull request:

Vulnerable Libraries (1)
Severity | Details :-: | :-- Medium | [pkg:golang/github.com/aws/aws-sdk-go@v1.50.26](https://github.com/xmidt-org/ancla/blob/eca294ff58fe09f05e302be5c2bf76b86ae82b3c/go.sum#L78) - **no patch available** More info on how to fix Vulnerable Libraries in [Go](https://docs.guardrails.io/docs/en/vulnerabilities/go/using_vulnerable_libraries.html?utm_source=ghpr).

👉 Go to the dashboard for detailed results.

📥 Happy? Share your feedback with us.

guardrails[bot] commented 1 month ago

:warning: We detected 1 security issue in this pull request:

Vulnerable Libraries (1)
Severity | Details :-: | :-- Medium | [pkg:golang/github.com/aws/aws-sdk-go@v1.50.26](https://github.com/xmidt-org/ancla/blob/412da3ec84adde76f4682535f46ac5925f08e255/go.sum#L78) - **no patch available** More info on how to fix Vulnerable Libraries in [Go](https://docs.guardrails.io/docs/en/vulnerabilities/go/using_vulnerable_libraries.html?utm_source=ghpr).

👉 Go to the dashboard for detailed results.

📥 Happy? Share your feedback with us.

guardrails[bot] commented 1 month ago

:warning: We detected 4 security issues in this pull request:

Vulnerable Libraries (4)
Severity | Details :-: | :-- High | [pkg:golang/github.com/xmidt-org/webhook-schema@v0.1.1-0.20240711140319-0ee06ff248b5](https://github.com/xmidt-org/ancla/blob/c67b9f6da4434e52cea8b18a45adc2331c73d632/go.mod#L20) upgrade to: *> v0.1.1-0.20240711140319-0ee06ff248b5* High | [pkg:golang/github.com/xmidt-org/touchstone@v0.1.5](https://github.com/xmidt-org/ancla/blob/c67b9f6da4434e52cea8b18a45adc2331c73d632/go.mod#L18) upgrade to: *> v0.1.5* High | [pkg:golang/github.com/xmidt-org/urlegit@v0.1.12](https://github.com/xmidt-org/ancla/blob/c67b9f6da4434e52cea8b18a45adc2331c73d632/go.mod#L19) upgrade to: *> v0.1.12* High | [pkg:golang/github.com/xmidt-org/argus@v0.9.13-0.20240711141248-1f7e75700ffb](https://github.com/xmidt-org/ancla/blob/c67b9f6da4434e52cea8b18a45adc2331c73d632/go.mod#L14) upgrade to: *> v0.9.13-0.20240711141248-1f7e75700ffb* More info on how to fix Vulnerable Libraries in [Go](https://docs.guardrails.io/docs/en/vulnerabilities/go/using_vulnerable_libraries.html?utm_source=ghpr).

👉 Go to the dashboard for detailed results.

📥 Happy? Share your feedback with us.

guardrails[bot] commented 1 month ago

:warning: We detected 4 security issues in this pull request:

Vulnerable Libraries (4)
Severity | Details :-: | :-- High | [pkg:golang/github.com/xmidt-org/urlegit@v0.1.12](https://github.com/xmidt-org/ancla/blob/be99f0173ff7ea60079769be49067db8fb7bc01a/go.mod#L19) upgrade to: *> v0.1.12* High | [pkg:golang/github.com/xmidt-org/argus@v0.9.13-0.20240711141248-1f7e75700ffb](https://github.com/xmidt-org/ancla/blob/be99f0173ff7ea60079769be49067db8fb7bc01a/go.mod#L14) upgrade to: *> v0.9.13-0.20240711141248-1f7e75700ffb* High | [pkg:golang/github.com/xmidt-org/webhook-schema@v0.1.1-0.20240711140319-0ee06ff248b5](https://github.com/xmidt-org/ancla/blob/be99f0173ff7ea60079769be49067db8fb7bc01a/go.mod#L20) upgrade to: *> v0.1.1-0.20240711140319-0ee06ff248b5* High | [pkg:golang/github.com/xmidt-org/touchstone@v0.1.5](https://github.com/xmidt-org/ancla/blob/be99f0173ff7ea60079769be49067db8fb7bc01a/go.mod#L18) upgrade to: *> v0.1.5* More info on how to fix Vulnerable Libraries in [Go](https://docs.guardrails.io/docs/en/vulnerabilities/go/using_vulnerable_libraries.html?utm_source=ghpr).

👉 Go to the dashboard for detailed results.

📥 Happy? Share your feedback with us.

guardrails[bot] commented 1 month ago

:warning: We detected 4 security issues in this pull request:

Vulnerable Libraries (4)
Severity | Details :-: | :-- High | [pkg:golang/github.com/xmidt-org/webhook-schema@v0.1.1-0.20240711140319-0ee06ff248b5](https://github.com/xmidt-org/ancla/blob/9221d3e293a7bcc59842d97b96fb55ce0a3ab4aa/go.mod#L20) upgrade to: *> v0.1.1-0.20240711140319-0ee06ff248b5* High | [pkg:golang/github.com/xmidt-org/argus@v0.9.13-0.20240711141248-1f7e75700ffb](https://github.com/xmidt-org/ancla/blob/9221d3e293a7bcc59842d97b96fb55ce0a3ab4aa/go.mod#L14) upgrade to: *> v0.9.13-0.20240711141248-1f7e75700ffb* High | [pkg:golang/github.com/xmidt-org/urlegit@v0.1.12](https://github.com/xmidt-org/ancla/blob/9221d3e293a7bcc59842d97b96fb55ce0a3ab4aa/go.mod#L19) upgrade to: *> v0.1.12* High | [pkg:golang/github.com/xmidt-org/touchstone@v0.1.5](https://github.com/xmidt-org/ancla/blob/9221d3e293a7bcc59842d97b96fb55ce0a3ab4aa/go.mod#L18) upgrade to: *> v0.1.5* More info on how to fix Vulnerable Libraries in [Go](https://docs.guardrails.io/docs/en/vulnerabilities/go/using_vulnerable_libraries.html?utm_source=ghpr).

👉 Go to the dashboard for detailed results.

📥 Happy? Share your feedback with us.

maurafortino commented 1 month ago

this PR is no longer needed - forgot I had accidentally merged the validator change into unit-tests so there are no changes now to be made.