October 2014 - overlord-issues - Jboss List Archives

[JBoss JIRA] (RTGOV-601) Enforcer issues in multiple modules

by Brett Meyer (JIRA)

[ https://issues.jboss.org/browse/RTGOV-601?page=com.atlassian.jira.plugin.... ] Brett Meyer updated RTGOV-601: ------------------------------ Description: org.overlord.rtgov.activity-management:activity org.overlord.rtgov.integration:rtgov-switchyard After upgrading to the BOM CR14, enforcer fails, but no actual errors are shown during the build. The only thing relevant I can find: {code} [WARNING] The dependency xercesImpl-2.9.1 matches a vulnerability recorded in the victims database. [CVE-2009-2625] [WARNING] Rule 0: com.redhat.victims.VictimsRule failed with message: +=======================+ |VULNERABILITY DETECTED!| +=======================+ For more information visit: - https://access.redhat.com/security/cve/CVE-2009-2625 {code} What's odd is that we don't explicitly depend on xercesImpl. I'm not sure if that's a bug in the plugin: failing due to a warning on a transitive dependency. For now, enforcer is completely disabled on the listed modules. was: org.overlord.rtgov.activity-management:activity org.overlord.rtgov.integration:rtgov-switchyard After upgrading to the BOM CR14, enforcer fails, but no actual errors are shown during the build. The only thing relevant I can find: {code} [WARNING] The dependency xercesImpl-2.9.1 matches a vulnerability recorded in the victims database. [CVE-2009-2625] [WARNING] Rule 0: com.redhat.victims.VictimsRule failed with message: +=======================+ |VULNERABILITY DETECTED!| +=======================+ For more information visit: - https://access.redhat.com/security/cve/CVE-2009-2625 {code} What's odd is that we don't explicitly depend on xercesImpl. I'm not sure if that's a bug in the plugin: failing due to a warning on a transitive dependency. For now, enforcer is completely disabled on the module. > Enforcer issues in multiple modules > ----------------------------------- > > Key: RTGOV-601 > URL: https://issues.jboss.org/browse/RTGOV-601 > Project: RTGov (Run Time Governance) > Issue Type: Bug > Reporter: Brett Meyer > Assignee: Gary Brown > > org.overlord.rtgov.activity-management:activity > org.overlord.rtgov.integration:rtgov-switchyard > After upgrading to the BOM CR14, enforcer fails, but no actual errors are shown during the build. The only thing relevant I can find: > {code} > [WARNING] The dependency xercesImpl-2.9.1 matches a vulnerability recorded in the victims database. [CVE-2009-2625] > [WARNING] Rule 0: com.redhat.victims.VictimsRule failed with message: > +=======================+ > |VULNERABILITY DETECTED!| > +=======================+ > For more information visit: > - https://access.redhat.com/security/cve/CVE-2009-2625 > {code} > What's odd is that we don't explicitly depend on xercesImpl. I'm not sure if that's a bug in the plugin: failing due to a warning on a transitive dependency. > For now, enforcer is completely disabled on the listed modules. -- This message was sent by Atlassian JIRA (v6.3.1#6329)

10 years, 2 months

1
0
0 / 0

[JBoss JIRA] (RTGOV-601) Enforcer issues in multiple modules

by Brett Meyer (JIRA)

[ https://issues.jboss.org/browse/RTGOV-601?page=com.atlassian.jira.plugin.... ] Brett Meyer updated RTGOV-601: ------------------------------ Description: org.overlord.rtgov.activity-management:activity org.overlord.rtgov.integration:rtgov-switchyard After upgrading to the BOM CR14, enforcer fails, but no actual errors are shown during the build. The only thing relevant I can find: {code} [WARNING] The dependency xercesImpl-2.9.1 matches a vulnerability recorded in the victims database. [CVE-2009-2625] [WARNING] Rule 0: com.redhat.victims.VictimsRule failed with message: +=======================+ |VULNERABILITY DETECTED!| +=======================+ For more information visit: - https://access.redhat.com/security/cve/CVE-2009-2625 {code} What's odd is that we don't explicitly depend on xercesImpl. I'm not sure if that's a bug in the plugin: failing due to a warning on a transitive dependency. For now, enforcer is completely disabled on the module. was: After upgrading to the BOM CR14, enforcer fails, but no actual errors are shown during the build. The only thing relevant I can find: {code} [WARNING] The dependency xercesImpl-2.9.1 matches a vulnerability recorded in the victims database. [CVE-2009-2625] [WARNING] Rule 0: com.redhat.victims.VictimsRule failed with message: +=======================+ |VULNERABILITY DETECTED!| +=======================+ For more information visit: - https://access.redhat.com/security/cve/CVE-2009-2625 {code} What's odd is that we don't explicitly depend on xercesImpl. I'm not sure if that's a bug in the plugin: failing due to a warning on a transitive dependency. For now, enforcer is completely disabled on the module. > Enforcer issues in multiple modules > ----------------------------------- > > Key: RTGOV-601 > URL: https://issues.jboss.org/browse/RTGOV-601 > Project: RTGov (Run Time Governance) > Issue Type: Bug > Reporter: Brett Meyer > Assignee: Gary Brown > > org.overlord.rtgov.activity-management:activity > org.overlord.rtgov.integration:rtgov-switchyard > After upgrading to the BOM CR14, enforcer fails, but no actual errors are shown during the build. The only thing relevant I can find: > {code} > [WARNING] The dependency xercesImpl-2.9.1 matches a vulnerability recorded in the victims database. [CVE-2009-2625] > [WARNING] Rule 0: com.redhat.victims.VictimsRule failed with message: > +=======================+ > |VULNERABILITY DETECTED!| > +=======================+ > For more information visit: > - https://access.redhat.com/security/cve/CVE-2009-2625 > {code} > What's odd is that we don't explicitly depend on xercesImpl. I'm not sure if that's a bug in the plugin: failing due to a warning on a transitive dependency. > For now, enforcer is completely disabled on the module. -- This message was sent by Atlassian JIRA (v6.3.1#6329)

10 years, 2 months

1
0
0 / 0

[JBoss JIRA] (RTGOV-601) Enforcer issues in multiple modules

by Brett Meyer (JIRA)

[ https://issues.jboss.org/browse/RTGOV-601?page=com.atlassian.jira.plugin.... ] Brett Meyer updated RTGOV-601: ------------------------------ Summary: Enforcer issues in multiple modules (was: Enforcer issues in org.overlord.rtgov.activity-management:activity) > Enforcer issues in multiple modules > ----------------------------------- > > Key: RTGOV-601 > URL: https://issues.jboss.org/browse/RTGOV-601 > Project: RTGov (Run Time Governance) > Issue Type: Bug > Reporter: Brett Meyer > Assignee: Gary Brown > > After upgrading to the BOM CR14, enforcer fails, but no actual errors are shown during the build. The only thing relevant I can find: > {code} > [WARNING] The dependency xercesImpl-2.9.1 matches a vulnerability recorded in the victims database. [CVE-2009-2625] > [WARNING] Rule 0: com.redhat.victims.VictimsRule failed with message: > +=======================+ > |VULNERABILITY DETECTED!| > +=======================+ > For more information visit: > - https://access.redhat.com/security/cve/CVE-2009-2625 > {code} > What's odd is that we don't explicitly depend on xercesImpl. I'm not sure if that's a bug in the plugin: failing due to a warning on a transitive dependency. > For now, enforcer is completely disabled on the module. -- This message was sent by Atlassian JIRA (v6.3.1#6329)

10 years, 2 months

1
0
0 / 0

[JBoss JIRA] (RTGOV-601) Enforcer issues in org.overlord.rtgov.activity-management:activity

by Brett Meyer (JIRA)

Brett Meyer created RTGOV-601: --------------------------------- Summary: Enforcer issues in org.overlord.rtgov.activity-management:activity Key: RTGOV-601 URL: https://issues.jboss.org/browse/RTGOV-601 Project: RTGov (Run Time Governance) Issue Type: Bug Reporter: Brett Meyer Assignee: Gary Brown After upgrading to the BOM CR14, enforcer fails, but no actual errors are shown during the build. The only thing relevant I can find: {code} [WARNING] The dependency xercesImpl-2.9.1 matches a vulnerability recorded in the victims database. [CVE-2009-2625] [WARNING] Rule 0: com.redhat.victims.VictimsRule failed with message: +=======================+ |VULNERABILITY DETECTED!| +=======================+ For more information visit: - https://access.redhat.com/security/cve/CVE-2009-2625 {code} What's odd is that we don't explicitly depend on xercesImpl. I'm not sure if that's a bug in the plugin: failing due to a warning on a transitive dependency. For now, enforcer is completely disabled on the module. -- This message was sent by Atlassian JIRA (v6.3.1#6329)

10 years, 2 months

1
0
0 / 0

[JBoss JIRA] (SRAMP-592) Credentials and server url are hardcoded in s-ramp tests

by RH Bugzilla Integration (JIRA)

[ https://issues.jboss.org/browse/SRAMP-592?page=com.atlassian.jira.plugin.... ] RH Bugzilla Integration commented on SRAMP-592: ----------------------------------------------- Brett Meyer <brmeyer(a)redhat.com> changed the Status of [bug 1152512|https://bugzilla.redhat.com/show_bug.cgi?id=1152512] from NEW to MODIFIED > Credentials and server url are hardcoded in s-ramp tests > -------------------------------------------------------- > > Key: SRAMP-592 > URL: https://issues.jboss.org/browse/SRAMP-592 > Project: S-RAMP > Issue Type: Bug > Affects Versions: 0.6.0.Final > Reporter: Stefan Bunciak > Assignee: Stefan Bunciak > Priority: Minor > Fix For: 0.7.0.Final > > -- This message was sent by Atlassian JIRA (v6.3.1#6329)

10 years, 2 months

1
0
0 / 0

[JBoss JIRA] (SRAMP-597) Finish supporting/testing EAP domain mode

by Brett Meyer (JIRA)

Brett Meyer created SRAMP-597: --------------------------------- Summary: Finish supporting/testing EAP domain mode Key: SRAMP-597 URL: https://issues.jboss.org/browse/SRAMP-597 Project: S-RAMP Issue Type: Enhancement Reporter: Brett Meyer Assignee: Brett Meyer SRAMP-394 started this process, but testing ran into issues that were never documented or researched. Pick the task back up. -- This message was sent by Atlassian JIRA (v6.3.1#6329)

10 years, 2 months

1
0
0 / 0

[JBoss JIRA] (SRAMP-465) Investigate alternative methods for relationship resolution

by Brett Meyer (JIRA)

[ https://issues.jboss.org/browse/SRAMP-465?page=com.atlassian.jira.plugin.... ] Brett Meyer commented on SRAMP-465: ----------------------------------- Currently, if you manually uploaded a WsdlDocument, then uploaded a WAR that contained that exact same WSDL, you'd get duplicate WsdlDocuments. The same is true if you upload 2 WARs with the same WSDLs within them. One improvement could be checking hashes to see if the exact artifact already exists, then reusing it in the relationships. > Investigate alternative methods for relationship resolution > ----------------------------------------------------------- > > Key: SRAMP-465 > URL: https://issues.jboss.org/browse/SRAMP-465 > Project: S-RAMP > Issue Type: Feature Request > Reporter: Brett Meyer > Assignee: Brett Meyer > > Investigate increased automatic artifact relationships (ie, service A depends on service B), useful for impact analysis. Possibly include Java-specific improvements, such as custom annotations (and scanning). -- This message was sent by Atlassian JIRA (v6.3.1#6329)

10 years, 2 months

1
0
0 / 0

[JBoss JIRA] (SRAMP-465) Investigate alternative methods for relationship resolution

by Brett Meyer (JIRA)

[ https://issues.jboss.org/browse/SRAMP-465?page=com.atlassian.jira.plugin.... ] Brett Meyer updated SRAMP-465: ------------------------------ Description: Investigate increased automatic artifact relationships (ie, service A depends on service B), useful for impact analysis. Possibly include Java-specific improvements, such as custom annotations (and scanning). was:Investigate increased automatic artifact relationships (ie, service A depends on service B), useful for impact analysis. Possibly include Java-specific improvements, such as custom annotations (and scanning). > Investigate alternative methods for relationship resolution > ----------------------------------------------------------- > > Key: SRAMP-465 > URL: https://issues.jboss.org/browse/SRAMP-465 > Project: S-RAMP > Issue Type: Feature Request > Reporter: Brett Meyer > Assignee: Brett Meyer > > Investigate increased automatic artifact relationships (ie, service A depends on service B), useful for impact analysis. Possibly include Java-specific improvements, such as custom annotations (and scanning). -- This message was sent by Atlassian JIRA (v6.3.1#6329)

10 years, 2 months

1
0
0 / 0

[JBoss JIRA] (SRAMP-592) Credentials and server url are hardcoded in s-ramp tests

by RH Bugzilla Integration (JIRA)

[ https://issues.jboss.org/browse/SRAMP-592?page=com.atlassian.jira.plugin.... ] RH Bugzilla Integration updated SRAMP-592: ------------------------------------------ Bugzilla Update: Perform Bugzilla References: https://bugzilla.redhat.com/show_bug.cgi?id=1152512 > Credentials and server url are hardcoded in s-ramp tests > -------------------------------------------------------- > > Key: SRAMP-592 > URL: https://issues.jboss.org/browse/SRAMP-592 > Project: S-RAMP > Issue Type: Bug > Affects Versions: 0.6.0.Final > Reporter: Stefan Bunciak > Assignee: Stefan Bunciak > Priority: Minor > Fix For: 0.7.0.Final > > -- This message was sent by Atlassian JIRA (v6.3.1#6329)

10 years, 2 months

1
0
0 / 0

[JBoss JIRA] (SRAMP-596) Set urn:x-s-ramp:2013:kind atom category

by Brett Meyer (JIRA)

Brett Meyer created SRAMP-596: --------------------------------- Summary: Set urn:x-s-ramp:2013:kind atom category Key: SRAMP-596 URL: https://issues.jboss.org/browse/SRAMP-596 Project: S-RAMP Issue Type: Sub-task Reporter: Brett Meyer Assignee: Brett Meyer urn:x-s-ramp:2013:kind Indicates the kind of the entry Occurs in Artifact Entry, Relationship Target Entry, Relationship Type Entry, and Property Entry documents, except as noted below. Legal values for the term attribute are "derived" Indicates entry is part of a Derived Model "modeled" Indicates entry is pre-defined and is part of the SOA or Service Implementation Models or is part of an extended artifact model "generic" Indicates entry is ad-hoc Does not occur in Artifact Entry documents. -- This message was sent by Atlassian JIRA (v6.3.1#6329)

10 years, 2 months

1
0
0 / 0

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

overlord-issues October 2014