-
Notifications
You must be signed in to change notification settings - Fork 37
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
* Add cluster scope to alert rule groups for linking them with UX (#600) * Removing duplicate alerts from ci recommended alerts * Remove test branch * Remove preview keyword from policy readme * Add cluster id scope to rule groups for alerts to be linked to UX * adding terraform update * Add cicd and prod near ring cluster monitoring for managed prometheus (#602) * Removing duplicate alerts from ci recommended alerts * Remove test branch * Remove preview keyword from policy readme * Add cicd and prod near ring cluster monitoring for managed prometheus * Make single file for alerts and update dashboard to include unit in memory * Replace label for cluster name with clusterName property * Add telemetry for scrape interval (#614) * Removing duplicate alerts from ci recommended alerts * Remove test branch * Remove preview keyword from policy readme * Add telemetry for scrape interval hash * remove branch name * Upgrade dependencies (#616) * upgrade all dependencies but collector * update golang * Update CVEs * update config * remove branch * make build fail when trivy fails * fix trivy scan for image not found for PRs * windows fix for replicaset collecting windows data (#620) * fix: remove uneeded windows scrape config in replicaset * . * . * . * revert windows telegraf update * missed end * remove examplar disablement for windows * bin place me_win configs --------- Co-authored-by: Grace Wehner <[email protected]> Co-authored-by: bragi92 <[email protected]> * Bug fix- update cert thumbprint to latest ame prod cert (#615) * Removing duplicate alerts from ci recommended alerts * Remove test branch * Remove preview keyword from policy readme * Bug fix- update cert thumbprint for image signing to latest ame prod cert * Fix $ substitution issue in relabel and metric relabel config (#618) * dollar fix for node name and node ip * test $ replacement * clean up build * Bump @adobe/css-tools in /tools/az-prom-rules-converter/web-app-example (#577) Bumps [@adobe/css-tools](https://github.com/adobe/css-tools) from 4.0.1 to 4.3.1. - [Changelog](https://github.com/adobe/css-tools/blob/main/History.md) - [Commits](https://github.com/adobe/css-tools/commits) --- updated-dependencies: - dependency-name: "@adobe/css-tools" dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --------- Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: Sohamdg081992 <[email protected]> Co-authored-by: Grace Wehner <[email protected]> Co-authored-by: bragi92 <[email protected]> Co-authored-by: rashmichandrashekar <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
- Loading branch information
1 parent
8c55db7
commit e9c13ba
Showing
42 changed files
with
13,901 additions
and
8,691 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,29 +1,23 @@ | ||
# Check for HIGH/CRITICAL & MEDIUM CVEs. HIGH/CRITICAL to be fixed asap, MEDIUM is best effort | ||
# ignore these CVEs, but continue scanning to catch other vulns. Note : this will ignore these cves globally | ||
|
||
# CRITICAL/HIGH | ||
# Ruby GEM | ||
CVE-2021-33621 | ||
# node-exporter | ||
CVE-2021-38561 | ||
CVE-2021-44716 | ||
CVE-2022-21698 | ||
CVE-2022-27191 | ||
# opt/telegraf/telegraf | ||
CVE-2022-23471 | ||
CVE-2023-25153 | ||
CVE-2023-25173 | ||
# CRITICAL | ||
# none | ||
|
||
# MEDIUM | ||
# opt/telegraf/telegraf | ||
CVE-2019-3826 | ||
# kube-state-metrics | ||
CVE-2022-41723 | ||
# opt/microsoft/otelcollector/otelcollector | ||
# opt/promconfigvalidator | ||
# opt/telegraf/telegraf | ||
# kube-state-metrics | ||
# bin/node_exporter | ||
CVE-2022-41717 | ||
CVE-2022-46146 | ||
CVE-2022-41721 | ||
# =========== HIGH ================ | ||
# HIGH - otelcollector | ||
CVE-2023-2253 | ||
CVE-2023-28840 | ||
# HIGH - promconfigvalidator | ||
CVE-2023-2253 | ||
CVE-2023-28840 | ||
|
||
# =========== MEDIUM ================ | ||
# MEDIUM - otelcollector | ||
CVE-2023-28841 | ||
CVE-2023-28842 | ||
CVE-2023-40577 | ||
# MEDIUM - promconfigvalidator | ||
CVE-2023-28841 | ||
CVE-2023-28842 | ||
CVE-2023-40577 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Oops, something went wrong.