cyber-dojo
flows
differ-archived-at-1707630536
artifacts
60067244e9186a901d2267245af984ab64cb3b1db52cfae6c37f88faffb14297
By signing up, you agree to the
Terms of Service.
For more information about Kosli’s privacy practices, see the Kosli’s
Privacy Policy.
We’ll occasionally send you account-related emails.
We’ll occasionally send you account-related emails.
differ-archived-at-1707630536
Diff files from two traffic-lights
cyberdojo/differ:6cf68d3
Compliant
Download Evidence Package
JSON
{ "created_at": 1702049187.5442, "fingerprint": "60067244e9186a901d2267245af984ab64cb3b1db52cfae6c37f88faffb14297", "filename": "cyberdojo/differ:6cf68d3", "git_commit": "6cf68d332b04656931f8174b8f10ef5058e58fb8", "build_url": "https://github.com/cyber-dojo/differ/actions/runs/7143157616", "commit_url": "https://github.com/cyber-dojo/differ/commit/6cf68d332b04656931f8174b8f10ef5058e58fb8", "evidence": { "pull-request": { "evidence_type": "pull_request", "is_compliant": true, "build_url": "https://github.com/cyber-dojo/differ/actions/runs/7143157616", "evidence_url": "https://github.com/cyber-dojo/differ/pull/18", "user_data": {}, "pull_requests": [ { "merge_commit": "6cf68d332b04656931f8174b8f10ef5058e58fb8", "url": "https://github.com/cyber-dojo/differ/pull/18", "state": "closed", "approvers": [] } ], "git_provider": "github", "created_at": 1702049210.7771697, "has_audit_package": false }, "snyk-scan": { "evidence_type": "snyk", "is_compliant": true, "build_url": "https://github.com/cyber-dojo/differ/actions/runs/7143157616", "evidence_archive_fingerprint": "47e18c74eead1158b4dc9c524bc1a8db5d9b7222db151f66781ad71251867ef0", "user_data": {}, "snyk_results": { "applications": [ { "dependencyCount": 0, "displayTargetFile": "/usr/local/bundle/gems/concurrent-ruby-1.2.2/lib/concurrent-ruby/concurrent", "docker": {}, "filesystemPolicy": true, "hasUnknownVersions": false, "ignoreSettings": { "adminOnly": false, "disregardFilesystemIgnores": false, "reasonRequired": false }, "isPrivate": true, "licensesPolicy": { "orgLicenseRules": { "AGPL-1.0": { "instructions": "", "licenseType": "AGPL-1.0", "severity": "high" }, "AGPL-3.0": { "instructions": "", "licenseType": "AGPL-3.0", "severity": "high" }, "Artistic-1.0": { "instructions": "", "licenseType": "Artistic-1.0", "severity": "medium" }, "Artistic-2.0": { "instructions": "", "licenseType": "Artistic-2.0", "severity": "medium" }, "CDDL-1.0": { "instructions": "", "licenseType": "CDDL-1.0", "severity": "medium" }, "CPOL-1.02": { "instructions": "", "licenseType": "CPOL-1.02", "severity": "high" }, "EPL-1.0": { "instructions": "", "licenseType": "EPL-1.0", "severity": "medium" }, "GPL-2.0": { "instructions": "", "licenseType": "GPL-2.0", "severity": "high" }, "GPL-3.0": { "instructions": "", "licenseType": "GPL-3.0", "severity": "high" }, "LGPL-2.0": { "instructions": "", "licenseType": "LGPL-2.0", "severity": "medium" }, "LGPL-2.1": { "instructions": "", "licenseType": "LGPL-2.1", "severity": "medium" }, "LGPL-3.0": { "instructions": "", "licenseType": "LGPL-3.0", "severity": "medium" }, "MPL-1.1": { "instructions": "", "licenseType": "MPL-1.1", "severity": "medium" }, "MPL-2.0": { "instructions": "", "licenseType": "MPL-2.0", "severity": "medium" }, "MS-RL": { "instructions": "", "licenseType": "MS-RL", "severity": "medium" }, "SimPL-2.0": { "instructions": "", "licenseType": "SimPL-2.0", "severity": "high" } }, "severities": {} }, "ok": true, "org": "jonjagger", "packageManager": "maven", "path": "cyberdojo/differ:6cf68d3/differ:6cf68d3:/usr/local/bundle/gems/concurrent-ruby-1.2.2/lib/concurrent-ruby/concurrent", "policy": "# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.\nversion: v1.25.1\nignore: {}\npatch: {}\n", "projectName": "cyberdojo/differ:6cf68d3:/usr/local/bundle/gems/concurrent-ruby-1.2.2/lib/concurrent-ruby/concurrent", "summary": "No known vulnerabilities", "targetFile": "/usr/local/bundle/gems/concurrent-ruby-1.2.2/lib/concurrent-ruby/concurrent", "uniqueCount": 0, "vulnerabilities": [] } ], "dependencyCount": 83, "displayTargetFile": "Dockerfile", "docker": { "baseImage": "cyberdojo/sinatra-base:76dd1ca", "baseImageRemediation": { "advice": [ { "bold": true, "message": "Recommendations for your base image (cyberdojo/sinatra-base:76dd1ca) are not available.\nSee above for details and fixes on individual vulnerabilities" } ], "code": "UNTRACKED_BASE_IMAGE" }, "binariesVulns": { "affectedPkgs": {}, "issuesData": {} } }, "filesystemPolicy": true, "hasUnknownVersions": false, "ignoreSettings": { "adminOnly": false, "disregardFilesystemIgnores": false, "reasonRequired": false }, "isPrivate": true, "licensesPolicy": { "orgLicenseRules": { "AGPL-1.0": { "instructions": "", "licenseType": "AGPL-1.0", "severity": "high" }, "AGPL-3.0": { "instructions": "", "licenseType": "AGPL-3.0", "severity": "high" }, "Artistic-1.0": { "instructions": "", "licenseType": "Artistic-1.0", "severity": "medium" }, "Artistic-2.0": { "instructions": "", "licenseType": "Artistic-2.0", "severity": "medium" }, "CDDL-1.0": { "instructions": "", "licenseType": "CDDL-1.0", "severity": "medium" }, "CPOL-1.02": { "instructions": "", "licenseType": "CPOL-1.02", "severity": "high" }, "EPL-1.0": { "instructions": "", "licenseType": "EPL-1.0", "severity": "medium" }, "GPL-2.0": { "instructions": "", "licenseType": "GPL-2.0", "severity": "high" }, "GPL-3.0": { "instructions": "", "licenseType": "GPL-3.0", "severity": "high" }, "LGPL-2.0": { "instructions": "", "licenseType": "LGPL-2.0", "severity": "medium" }, "LGPL-2.1": { "instructions": "", "licenseType": "LGPL-2.1", "severity": "medium" }, "LGPL-3.0": { "instructions": "", "licenseType": "LGPL-3.0", "severity": "medium" }, "MPL-1.1": { "instructions": "", "licenseType": "MPL-1.1", "severity": "medium" }, "MPL-2.0": { "instructions": "", "licenseType": "MPL-2.0", "severity": "medium" }, "MS-RL": { "instructions": "", "licenseType": "MS-RL", "severity": "medium" }, "SimPL-2.0": { "instructions": "", "licenseType": "SimPL-2.0", "severity": "high" } }, "severities": {} }, "ok": true, "org": "jonjagger", "packageManager": "apk", "path": "cyberdojo/differ:6cf68d3/differ", "platform": "linux/amd64", "policy": "# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.\nversion: v1.25.1\nignore: {}\npatch: {}\n", "projectName": "docker-image|cyberdojo/differ", "summary": "No known operating system vulnerabilities", "targetFile": "Dockerfile", "uniqueCount": 0, "vulnerabilities": [] }, "created_at": 1702049222.8939512, "has_audit_package": true }, "branch-coverage": { "evidence_type": "generic", "is_compliant": true, "build_url": "https://github.com/cyber-dojo/differ/actions/runs/7143157616", "description": "server & client branch-coverage reports", "user_data": { "client": { "command_name": "Minitest", "groups": { "app": { "branches": { "covered": 8, "missed": 0, "total": 8 }, "lines": { "covered": 101, "missed": 0, "total": 101 } }, "test": { "branches": { "covered": 0, "missed": 0, "total": 0 }, "lines": { "covered": 230, "missed": 0, "total": 230 } } }, "timestamp": 1702049229 }, "server": { "command_name": "Minitest", "groups": { "app": { "branches": { "covered": 59, "missed": 1, "total": 60 }, "lines": { "covered": 352, "missed": 0, "total": 352 } }, "test": { "branches": { "covered": 0, "missed": 0, "total": 0 }, "lines": { "covered": 516, "missed": 0, "total": 516 } } }, "timestamp": 1702049223 } }, "created_at": 1702049231.2546182, "has_audit_package": false }, "lint": { "evidence_type": "generic", "is_compliant": true, "build_url": "https://github.com/cyber-dojo/differ/actions/runs/7143157616", "commit_sha": "6cf68d332b04656931f8174b8f10ef5058e58fb8", "evidence_archive_fingerprint": "5a16258cece13f9e440a4ecaf0b061a775870afa56ca21fc4b0bc3c53c7a70e3", "user_data": {}, "created_at": 1702049205.34052, "has_audit_package": true } }, "git_commit_info": { "sha1": "6cf68d332b04656931f8174b8f10ef5058e58fb8", "message": "Update base image that fixes snyk vulnerabilities (#18)", "author": "Jon Jagger <jon@kosli.com>", "timestamp": 1702049139, "branch": "main" }, "repo_url": "https://github.com/cyber-dojo/differ", "template": [ "artifact", "lint", "branch-coverage", "snyk-scan", "pull-request" ], "last_modified_at": 1702049231.2546182, "releases": [ 28, 27 ], "deployments": [ 332, 331 ], "state": "COMPLIANT", "html_url": "https://app.kosli.com/cyber-dojo/flows/differ-archived-at-1707630536/artifacts/60067244e9186a901d2267245af984ab64cb3b1db52cfae6c37f88faffb14297", "api_url": "https://app.kosli.com/api/v2/artifacts/cyber-dojo/differ-archived-at-1707630536/fingerprint/60067244e9186a901d2267245af984ab64cb3b1db52cfae6c37f88faffb14297" }
Artifact Information |
|
Name | cyberdojo/differ:6cf68d3 |
Fingerprint | 60067244e9186a901d2267245af984ab64cb3b1db52cfae6c37f88faffb14297 |
Git commit |
6cf68d3
Jon Jagger <jon@kosli.com> (main)
1702049139.0 • 5 months ago
Update base image that fixes snyk vulnerabilities (#18)
|
CI Build | https://github.com/cyber-dojo/differ/actions/runs/7143157616 |
Running | - |
Exited | aws-beta#2329 aws-prod#1532 |
Last modified | 1702049231.2546182 • 5 months ago |
Evidence
Evidence for 'lint'
{ "evidence_type": "generic", "is_compliant": true, "build_url": "https://github.com/cyber-dojo/differ/actions/runs/7143157616", "commit_sha": "6cf68d332b04656931f8174b8f10ef5058e58fb8", "evidence_archive_fingerprint": "5a16258cece13f9e440a4ecaf0b061a775870afa56ca21fc4b0bc3c53c7a70e3", "user_data": {}, "created_at": 1702049205.34052, "has_audit_package": true }
Evidence for 'branch-coverage'
{ "evidence_type": "generic", "name": "branch-coverage", "is_compliant": true, "build_url": "https://github.com/cyber-dojo/differ/actions/runs/7143157616", "description": "server & client branch-coverage reports", "user_data": { "client": { "command_name": "Minitest", "groups": { "app": { "branches": { "covered": 8, "missed": 0, "total": 8 }, "lines": { "covered": 101, "missed": 0, "total": 101 } }, "test": { "branches": { "covered": 0, "missed": 0, "total": 0 }, "lines": { "covered": 230, "missed": 0, "total": 230 } } }, "timestamp": 1702049229 }, "server": { "command_name": "Minitest", "groups": { "app": { "branches": { "covered": 59, "missed": 1, "total": 60 }, "lines": { "covered": 352, "missed": 0, "total": 352 } }, "test": { "branches": { "covered": 0, "missed": 0, "total": 0 }, "lines": { "covered": 516, "missed": 0, "total": 516 } } }, "timestamp": 1702049223 } }, "created_at": 1702049231.2546182, "has_audit_package": false }
Evidence for 'snyk-scan'
{ "evidence_type": "snyk", "name": "snyk-scan", "is_compliant": true, "build_url": "https://github.com/cyber-dojo/differ/actions/runs/7143157616", "evidence_archive_fingerprint": "47e18c74eead1158b4dc9c524bc1a8db5d9b7222db151f66781ad71251867ef0", "user_data": {}, "snyk_results": { "applications": [ { "dependencyCount": 0, "displayTargetFile": "/usr/local/bundle/gems/concurrent-ruby-1.2.2/lib/concurrent-ruby/concurrent", "docker": {}, "filesystemPolicy": true, "hasUnknownVersions": false, "ignoreSettings": { "adminOnly": false, "disregardFilesystemIgnores": false, "reasonRequired": false }, "isPrivate": true, "licensesPolicy": { "orgLicenseRules": { "AGPL-1.0": { "instructions": "", "licenseType": "AGPL-1.0", "severity": "high" }, "AGPL-3.0": { "instructions": "", "licenseType": "AGPL-3.0", "severity": "high" }, "Artistic-1.0": { "instructions": "", "licenseType": "Artistic-1.0", "severity": "medium" }, "Artistic-2.0": { "instructions": "", "licenseType": "Artistic-2.0", "severity": "medium" }, "CDDL-1.0": { "instructions": "", "licenseType": "CDDL-1.0", "severity": "medium" }, "CPOL-1.02": { "instructions": "", "licenseType": "CPOL-1.02", "severity": "high" }, "EPL-1.0": { "instructions": "", "licenseType": "EPL-1.0", "severity": "medium" }, "GPL-2.0": { "instructions": "", "licenseType": "GPL-2.0", "severity": "high" }, "GPL-3.0": { "instructions": "", "licenseType": "GPL-3.0", "severity": "high" }, "LGPL-2.0": { "instructions": "", "licenseType": "LGPL-2.0", "severity": "medium" }, "LGPL-2.1": { "instructions": "", "licenseType": "LGPL-2.1", "severity": "medium" }, "LGPL-3.0": { "instructions": "", "licenseType": "LGPL-3.0", "severity": "medium" }, "MPL-1.1": { "instructions": "", "licenseType": "MPL-1.1", "severity": "medium" }, "MPL-2.0": { "instructions": "", "licenseType": "MPL-2.0", "severity": "medium" }, "MS-RL": { "instructions": "", "licenseType": "MS-RL", "severity": "medium" }, "SimPL-2.0": { "instructions": "", "licenseType": "SimPL-2.0", "severity": "high" } }, "severities": {} }, "ok": true, "org": "jonjagger", "packageManager": "maven", "path": "cyberdojo/differ:6cf68d3/differ:6cf68d3:/usr/local/bundle/gems/concurrent-ruby-1.2.2/lib/concurrent-ruby/concurrent", "policy": "# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.\nversion: v1.25.1\nignore: {}\npatch: {}\n", "projectName": "cyberdojo/differ:6cf68d3:/usr/local/bundle/gems/concurrent-ruby-1.2.2/lib/concurrent-ruby/concurrent", "summary": "No known vulnerabilities", "targetFile": "/usr/local/bundle/gems/concurrent-ruby-1.2.2/lib/concurrent-ruby/concurrent", "uniqueCount": 0, "vulnerabilities": [] } ], "dependencyCount": 83, "displayTargetFile": "Dockerfile", "docker": { "baseImage": "cyberdojo/sinatra-base:76dd1ca", "baseImageRemediation": { "advice": [ { "bold": true, "message": "Recommendations for your base image (cyberdojo/sinatra-base:76dd1ca) are not available.\nSee above for details and fixes on individual vulnerabilities" } ], "code": "UNTRACKED_BASE_IMAGE" }, "binariesVulns": { "affectedPkgs": {}, "issuesData": {} } }, "filesystemPolicy": true, "hasUnknownVersions": false, "ignoreSettings": { "adminOnly": false, "disregardFilesystemIgnores": false, "reasonRequired": false }, "isPrivate": true, "licensesPolicy": { "orgLicenseRules": { "AGPL-1.0": { "instructions": "", "licenseType": "AGPL-1.0", "severity": "high" }, "AGPL-3.0": { "instructions": "", "licenseType": "AGPL-3.0", "severity": "high" }, "Artistic-1.0": { "instructions": "", "licenseType": "Artistic-1.0", "severity": "medium" }, "Artistic-2.0": { "instructions": "", "licenseType": "Artistic-2.0", "severity": "medium" }, "CDDL-1.0": { "instructions": "", "licenseType": "CDDL-1.0", "severity": "medium" }, "CPOL-1.02": { "instructions": "", "licenseType": "CPOL-1.02", "severity": "high" }, "EPL-1.0": { "instructions": "", "licenseType": "EPL-1.0", "severity": "medium" }, "GPL-2.0": { "instructions": "", "licenseType": "GPL-2.0", "severity": "high" }, "GPL-3.0": { "instructions": "", "licenseType": "GPL-3.0", "severity": "high" }, "LGPL-2.0": { "instructions": "", "licenseType": "LGPL-2.0", "severity": "medium" }, "LGPL-2.1": { "instructions": "", "licenseType": "LGPL-2.1", "severity": "medium" }, "LGPL-3.0": { "instructions": "", "licenseType": "LGPL-3.0", "severity": "medium" }, "MPL-1.1": { "instructions": "", "licenseType": "MPL-1.1", "severity": "medium" }, "MPL-2.0": { "instructions": "", "licenseType": "MPL-2.0", "severity": "medium" }, "MS-RL": { "instructions": "", "licenseType": "MS-RL", "severity": "medium" }, "SimPL-2.0": { "instructions": "", "licenseType": "SimPL-2.0", "severity": "high" } }, "severities": {} }, "ok": true, "org": "jonjagger", "packageManager": "apk", "path": "cyberdojo/differ:6cf68d3/differ", "platform": "linux/amd64", "policy": "# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.\nversion: v1.25.1\nignore: {}\npatch: {}\n", "projectName": "docker-image|cyberdojo/differ", "summary": "No known operating system vulnerabilities", "targetFile": "Dockerfile", "uniqueCount": 0, "vulnerabilities": [] }, "created_at": 1702049222.8939512, "has_audit_package": true }
Evidence for 'pull-request'
{ "evidence_type": "pull_request", "name": "pull-request", "is_compliant": true, "build_url": "https://github.com/cyber-dojo/differ/actions/runs/7143157616", "evidence_url": "https://github.com/cyber-dojo/differ/pull/18", "user_data": {}, "pull_requests": [ { "merge_commit": "6cf68d332b04656931f8174b8f10ef5058e58fb8", "url": "https://github.com/cyber-dojo/differ/pull/18", "state": "closed", "approvers": [] } ], "git_provider": "github", "created_at": 1702049210.7771697, "has_audit_package": false }