Issue Tracker: Issueshttps://issues.rudder.io/https://issues.rudder.io/themes/rudder7/favicon/favicon.ico?17096450182024-03-18T15:10:13ZIssue Tracker
Redmine Rudder - Bug #24523 (Pending release): rudderc test should dump the report file path or workdir w...https://issues.rudder.io/issues/245232024-03-18T15:10:13ZFélix DALLIDET
<p>It is currently pretty hard to retrieve this information when working in temporary environments.</p> Rudder - Bug #24522 (Pending release): npm dep security checks are ignoredhttps://issues.rudder.io/issues/245222024-03-18T15:07:21ZAlexis Moussetalexis.mousset@rudder.io
<p>This is bad.</p> Rudder - Bug #24520 (Pending release): Async tests are failing for node certificateshttps://issues.rudder.io/issues/245202024-03-18T13:09:29ZClark ANDRIANASOLO
<p>Sometimes the test <code>TestWriteNodeCertificatesPem.scala</code> fails with the following error :</p>
<pre><code>
[2024-03-18T11:43:43.416Z] Failed tests: when there is an error in async, we shoud get a log(com.normation.rudder.services.policies.TestWriteNodeCertificatesPem): '' doesn't match '(?s).*Unexpected: Error when executing reload command.*code: -2147483648.*'
</pre></code></pre> Rudder - Bug #24519 (Pending release): The "condition" border appears on all methods in the tech....https://issues.rudder.io/issues/245192024-03-18T09:13:20ZRaphael GAUTHIER
<p>If a condition has been defined for a block or method, a blue border appears to highlight this.</p>
<p>But now it appears on all items, even those without a condition.</p> CIS - Bug #24518 (Pending technical review): Add tests for section 3.4.1 (ubuntu 20, ufw firewall)https://issues.rudder.io/issues/245182024-03-18T08:19:02ZNicolas CHARLESnicolas.charles@rudder.ioRudder - Bug #24517 (Pending release): Ignore angularjs DoS in 7.3https://issues.rudder.io/issues/245172024-03-15T22:33:24ZAlexis Moussetalexis.mousset@rudder.io
<pre>
[2024-03-15T22:24:24.571Z] + npx better-npm-audit audit --level high
[2024-03-15T22:24:24.849Z] ╔═════════════════════════════════════════════════════════════════════╗
[2024-03-15T22:24:24.849Z] ║ === list of exceptions === ║
[2024-03-15T22:24:24.849Z] ║ ║
[2024-03-15T22:24:24.849Z] ║ ID │ Status │ Expiry │ Notes ║
[2024-03-15T22:24:24.849Z] ║ GHSA-ww39-953v-wcq6 │ active │ │ Only a DoS, let's ignore it ║
[2024-03-15T22:24:24.849Z] ║ GHSA-w573-4hg7-7wgq │ active │ │ Only a DoS, let's ignore it ║
[2024-03-15T22:24:24.849Z] ╚═════════════════════╧════════╧════════╧═════════════════════════════╝
[2024-03-15T22:24:24.849Z]
[2024-03-15T22:24:26.870Z] ╔═════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════════╗
[2024-03-15T22:24:26.870Z] ║ === npm audit security report === ║
[2024-03-15T22:24:26.870Z] ║ ║
[2024-03-15T22:24:26.870Z] ║ ID │ Module │ Title │ Paths │ Sev. │ URL │ Ex. ║
[2024-03-15T22:24:26.870Z] ║ 1089210 │ angular │ angular vulnerable to regular expression denial of │ angular │ moderate │ https://github.com/advisories/GHSA-m2h2-264f-f486 │ n ║
[2024-03-15T22:24:26.870Z] ║ │ │ service (ReDoS) │ │ │ │ ║
[2024-03-15T22:24:26.870Z] ║ 1093574 │ angular │ Angular (deprecated package) Cross-site Scripting │ angular │ moderate │ https://github.com/advisories/GHSA-prc3-vjfx-vhm9 │ n ║
[2024-03-15T22:24:26.870Z] ║ 1096633 │ angular │ angular vulnerable to super-linear runtime due to │ angular │ high │ https://github.com/advisories/GHSA-4w4v-5hc9-xrr2 │ n ║
[2024-03-15T22:24:26.870Z] ║ │ │ backtracking │ │ │ │ ║
[2024-03-15T22:24:26.870Z] ║ 1094087 │ decode-uri-component │ decode-uri-component vulnerable to Denial of │ decode-uri-component │ high │ https://github.com/advisories/GHSA-w573-4hg7-7wgq │ y ║
[2024-03-15T22:24:26.870Z] ║ │ │ Service (DoS) │ │ │ │ ║
[2024-03-15T22:24:26.870Z] ║ 1096592 │ es5-ext │ es5-ext vulnerable to Regular Expression Denial of │ es5-ext │ low │ https://github.com/advisories/GHSA-4gmj-3p3h-gm8h │ n ║
[2024-03-15T22:24:26.870Z] ║ │ │ Service in `function#copy` and │ │ │ │ ║
[2024-03-15T22:24:26.870Z] ║ │ │ `function#toStringTokens` │ │ │ │ ║
[2024-03-15T22:24:26.870Z] ║ 1095007 │ glob-parent │ glob-parent vulnerable to Regular Expression │ glob-parent │ high │ https://github.com/advisories/GHSA-ww39-953v-wcq6 │ y ║
[2024-03-15T22:24:26.870Z] ║ │ │ Denial of Service in enclosure regex │ │ │ │ ║
[2024-03-15T22:24:26.870Z] ║ 1092972 │ request │ Server-Side Request Forgery in Request │ request │ moderate │ https://github.com/advisories/GHSA-p8p7-x288-28g6 │ n ║
[2024-03-15T22:24:26.870Z] ║ 1096483 │ semver │ semver vulnerable to Regular Expression Denial of │ semver │ moderate │ https://github.com/advisories/GHSA-c2qf-rxjj-qqgw │ n ║
[2024-03-15T22:24:26.870Z] ║ │ │ Service │ │ │ │ ║
[2024-03-15T22:24:26.870Z] ║ 1096643 │ tough-cookie │ tough-cookie Prototype Pollution vulnerability │ tough-cookie │ moderate │ https://github.com/advisories/GHSA-72xf-g2v4-qvf3 │ n ║
[2024-03-15T22:24:26.870Z] ╚═════════╧══════════════════════╧════════════════════════════════════════════════════╧══════════════════════╧══════════╧═══════════════════════════════════════════════════╧═════╝
[2024-03-15T22:24:26.870Z]
[2024-03-15T22:24:26.870Z] 1 vulnerabilities found. Node security advisories: 1096633
script returned exit code 1
</pre> Rudder - Bug #24516 (Pending release): Vulnerability in miohttps://issues.rudder.io/issues/245162024-03-15T20:55:06ZAlexis Moussetalexis.mousset@rudder.ioRudder - Bug #24515 (Pending release): Rudder should finish to migrate all techniques when bootin...https://issues.rudder.io/issues/245152024-03-15T18:09:23ZVincent MEMBRÉvme@rudder.io
<p>Hence instead of having only one technique not rewritten we end with this one plus all the other that were not migrated</p> CIS - Bug #24514 (New): Importing CIS techniques fails on Rudder 8.1 beta 2 serverhttps://issues.rudder.io/issues/245142024-03-15T15:44:08ZMichel BOUISSOU
<p>Techniques compiled from latest CIS techniques git on 2024/03/15 with “make techniques”.</p>
<p>Archive if techniques was compiled and produced without error.</p>
<p>Trying to import the produced archive on a rudder server version 8.1.0~beta2~git202403150219-debian12 gives the following errors :</p>
<pre>
# curl -k -X POST -H "X-API-TOKEN: $(cat /var/rudder/run/api-token)" https://localhost/rudder/api/latest/archives/import --form "archive=@/tmp/cis-archive.zip"
{"action":"import","result":"error","errorDetails":"Accumulated: Error when extracting archive for technique at path systemSettings/misc/cis_ubuntu20_audit_srv_1; cause was: Inconsistency: Error when parsing 'cis_ubuntu20_audit_srv_1' as a version. Only ascii (non-control, non-space) chars are allowed in a version string. ; Error when extracting archive for technique at path systemSettings/misc/cis_ubuntu20_enforce_wk_1; cause was: Inconsistency: Error when parsing 'cis_ubuntu20_enforce_wk_1' as a version. Only ascii (non-control, non-space) chars are allowed in a version string. ; Error when extracting archive for technique at path systemSettings/misc/cis_ubuntu20_enforce_srv_1; cause was: Inconsistency: Error when parsing 'cis_ubuntu20_enforce_srv_1' as a version. Only ascii (non-control, non-space) chars are allowed in a version string. ; Error when extracting archive for technique at path systemSettings/misc/cis_ubuntu20_audit_srv_2; cause was: Inconsistency: Error when parsing 'cis_ubuntu20_audit_srv_2' as a version. Only ascii (non-control, non-space) chars are allowed in a version string. ; Error when extracting archive for technique at path systemSettings/misc/cis_ubuntu20_enforce_wk_2; cause was: Inconsistency: Error when parsing 'cis_ubuntu20_enforce_wk_2' as a version. Only ascii (non-control, non-space) chars are allowed in a version string. ; Error when extracting archive for technique at path systemSettings/misc/cis_ubuntu20_audit_wk_2; cause was: Inconsistency: Error when parsing 'cis_ubuntu20_audit_wk_2' as a version. Only ascii (non-control, non-space) chars are allowed in a version string. ; Error when extracting archive for technique at path systemSettings/misc/cis_ubuntu20_enforce_srv_2; cause was: Inconsistency: Error when parsing 'cis_ubuntu20_enforce_srv_2' as a version. Only ascii (non-control, non-space) chars are allowed in a version string. ; Error when extracting archive for technique at path systemSettings/misc/cis_ubuntu20_audit_wk_1; cause was: Inconsistency: Error when parsing 'cis_ubuntu20_audit_wk_1' as a version. Only ascii (non-control, non-space) chars are allowed in a version string."}
</pre> Rudder - Bug #24512 (New): Plugin information webpage is buggedhttps://issues.rudder.io/issues/245122024-03-15T15:23:30ZFélix DALLIDET
<p>See the screenshot, the version parsing is broken.<br />Be careful, the issue is not what is written in red but the `Plugin ID` and `Plugin Version` being error messages.</p> Rudder - Bug #24511 (New): The blue scroll bar in the hook webpage is not there anymorehttps://issues.rudder.io/issues/245112024-03-15T15:21:40ZFélix DALLIDETRudder - Bug #24510 (In progress): "Usage survey" setting select button is way too largehttps://issues.rudder.io/issues/245102024-03-15T15:20:53ZFélix DALLIDET
<p>See the screenshot.</p> Rudder - Bug #24509 (New): In the technique editor a popup shows up when removing a method from a...https://issues.rudder.io/issues/245092024-03-15T15:19:17ZFélix DALLIDET
<p>This feels very bugged.<br />It is not happening when removing an already saved method in the technique, you need to add a method and immediately remove it to trigger the popup.</p> Rudder - Bug #24508 (New): The "Target rules" page in a directive detail is confusinghttps://issues.rudder.io/issues/245082024-03-15T15:16:31ZFélix DALLIDET
<p>See the screenshot, the filters are empty, the "Display Rules from subcategories" show two checkmarks and the "Rules" checkbox is not clickable even if it looks like it is.</p> Rudder - Bug #24507 (New): Redundant "Compliance" title in the "Compliance" tab inside a group de...https://issues.rudder.io/issues/245072024-03-15T15:12:43ZFélix DALLIDET
<p>See the screenshot, the title can be safely removed.</p>