corda-runtime-os icon indicating copy to clipboard operation
corda-runtime-os copied to clipboard

Published 20 hours ago verified publisher icon corda

NOTICK - Add KafkaSnoop for Kafka message inspection.

Open driessamyn opened this issue 3 years ago • 2 comments

Add KafkaSnoop for inspection of (deserialised) Kafka Messages in example docker compose network.

driessamyn avatar Feb 25 '22 09:02 driessamyn

:thinking: Nexus IQ found multiple policy violations introduced by this PR:

T7 7    dependency logo  de.javakaffee : kryo-serializers : 0.43

:warning: No recommended versions are available for this component

Threat (of 10) Policy Violation Details
7 Component-Similar Unknown modification to component:
  • Match state was 'Similar'
  • Coordinates were de.javakaffee : kryo-serializers : 0.43 (do not match org.eclipse.* : * : * : * : )
  • Coordinates were de.javakaffee : kryo-serializers : 0.43 (do not match net.corda. : * : * : * : *)
7 Security-Medium Medium risk CVSS score:
  • Found security vulnerability: sonatype-2020-0220
  • Coordinates were de.javakaffee : kryo-serializers : 0.43 (do not match net.corda : corda : * : * : *)
T5 5    dependency logo  net.corda : corda-kotlin-reflection : 5.0.0-DevPreview-1.0.1

:warning: No recommended versions are available for this component

Threat (of 10) Policy Violation Details
5 License-Non Standard License containing non standard terms detected. Legal review required.:
  • Found licenses in the 'Non Standard' license threat group ('Non-Standard')
T5 5    dependency logo  net.corda : corda-serialization-encoding : 5.0.0-DevPreview-1.0.1

:warning: No recommended versions are available for this component

Threat (of 10) Policy Violation Details
5 License-Non Standard License containing non standard terms detected. Legal review required.:
  • Found licenses in the 'Non Standard' license threat group ('Non-Standard')
T2 2    dependency logo  corda-message-patterns-5.0.0.0-alpha-1645781467575.jar

:warning: No recommended versions are available for this component

Threat (of 10) Policy Violation Details
2 Component-Unknown Unknown 3rd party component:
  • Match state was 'Unknown'
  • Component does not contain proprietary packages

Nexus IQ Report Detail

Application: Flow worker Organization: Corda 5 Date: 2022-02-25 09:39:45 GMT PR Branch: Develop Stage - Full Report Base Branch: Build Stage - Full Report

Give feedback

r3iqbot avatar Feb 25 '22 09:02 r3iqbot

This PR is stale because it has been open 7 days with no activity. Remove the Stale label or add a comment - otherwise this will be closed in 7 days.

github-actions[bot] avatar Mar 20 '24 00:03 github-actions[bot]