Loading...

XML

Word

Printable

Type: Story
Resolution: Duplicate
Priority: Highest
Fix Version/s: Casablanca Release
Affects Version/s: None
Labels:
- Logging
- POMBA

Epic Link:
Platform Maturity: Performance, Stability, Resiliency, Scalability
Sprint:
Dublin-Logging

https://jenkins.onap.org/job/logging-analytics-maven-clm-master/36/console
https://jenkins.onap.org/view/logging-analytics/job/logging-analytics-maven-clm-master/

Don't post CVE titles or text - proprietary
see fix for guava to start in integration ~~INT-619~~

tomcat embed core 8527 use 8533
Overriding managed version 1.2.3 for logback-classic pom.xml /logging-demo line 266 Maven pom Loading Problem
Overriding managed version 2.9.6 for jackson-core pom.xml /logging-demo line 148 Maven pom Loading Problem
Overriding managed version 5.0.9.RELEASE for spring-core pom.xml /logging-demo line 215 Maven pom Loading Problem
Overriding managed version 5.0.9.RELEASE for spring-web pom.xml /logging-demo line 251 Maven pom Loading Problem
Overriding managed version 5.0.9.RELEASE for spring-webmvc pom.xml /logging-demo line 256 Maven pom Loading Problem
The import org.junit.Assert is never used ApplicationServiceTest.java /logging-demo/src/test/java/org/onap/logging/demo line 23 Java Problem

Yes, I have jackson, eclipselink and spring - red, orange in policy - but in the security tab - I understand the orange is not required - it is level 5 (doing 9 and 7 levels first) - https://nexus-iq.wl.linuxfoundation.org/assets/index.html#/reports/logging-analytics/5b256c9721e8448bb4015229d4b5548f

ref: as "Critical" (Level 7 to 10) and "Severe" (Level 4 to 6).

page you can't see

https://wiki.onap.org/pages/viewpage.action?pageId=43385152

- - Sort By Name
  - Sort By Date
  - Ascending
  - Descending
  - Thumbnails
  - List
  - Download All

Screenshot 2018-08-20 10.34.08.png
168 kB
20/Aug/18 2:40 PM
Screenshot 2018-08-20 10.36.53.png
152 kB
20/Aug/18 2:40 PM
Screenshot 2018-10-10 09.01.03.png
211 kB
10/Oct/18 1:16 PM
Screenshot 2018-10-10 09.01.11.png
189 kB
10/Oct/18 1:16 PM

blocks

LOG-749 Prepare logging repo for casablanca branching - post release LOG-715

Closed

is duplicated by

LOG-246 Address CLM warnings

Closed

relates to

INT-619 Develop recommendation for com.google.guava

Closed

LOG-616 POMBA: Address CLM critical issues by M4/RC2 - 6 High across all projects

Closed

links to

https://gerrit.onap.org/r/#/c/70161/

mentioned in: Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...

(6 mentioned in)

1.	logging: CLM fix logback-classic 1.1.3 override of 1.2.3 because of eelf 1.0.0	Closed	michaelobrien
2.	Fix Jackson-databind 2.5.1 CLM issue	Closed	michaelobrien
3.	Fix glassfish bean-validator 2.4 (EclipseLink)	Closed	michaelobrien
4.	fix spring-core 4.3.6 clm issue	Closed	michaelobrien
5.	fix tomcat-embed-core 8.5.27 to use 8.5.33	Closed	michaelobrien

Assignee:: michaelobrien

Reporter:: michaelobrien

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Created:: 14/Aug/18 3:14 AM

Updated:: 12/Aug/23 3:50 AM

Resolved:: 19/Nov/18 8:38 PM

Details

Description

Attachments

Attachments

Issue Links

Sub-Tasks

Activity

People

Dates