-
Task
-
Resolution: Unresolved
-
Highest
-
None
Ensure all Jenkins jobs are working fine for the SO repositories that are part of Jakarta release,
Update the vulnerable direct dependencies in their code base following the recommendations of SECCOM documented in https://wiki.onap.org/display/SV/London+SO
Identify resource or technical constraints to SECCOM by (M2).
Submit a LF Ticket for access to the Security Vulnerabilities space (if needed).
Execute packages upgrades accordingly.
Update statuses in the restricted Wiki (link above).
For the agreed resource or technical constraints provide waiver status with declaration on when it is planned to be solved.
For developer's convenience SV report is available here: https://wiki.onap.org/display/DW/SO+Security+Vulnerabilities
- blocks
-
REQ-1397 PACKAGES UPGRADES IN DIRECT DEPENDENCIES FOR LONDON RELEASE
- To Do