Sebastian Falcone

Indexer Connector - Multiple CA files aren't supported

2

## Description The configuration for the indexer connector allows the user to define multiple CA (certificate authorities) files to connect to the indexer: ```xml /etc/pki/tls/private/private-ca-chain.pem ``` However, this is not...

|Dependency|Current version|Proposed version| |---|---|---| |Python|`3.10.13`|`>3.12.5`| ## Description There is a new Python vulnerability but there is no fix yet CVEs: - [CVE-2024-7592](https://nvd.nist.gov/vuln/detail/CVE-2024-7592) ## Areas affected The production code that uses...

## Description To pinpoint the root cause of the behaviour described in this issue: - https://github.com/wazuh/wazuh/issues/25212 [Here](ttps://github.com/wazuh/wazuh/issues/25212#issuecomment-2312870374), @pereyra-m proposes to re-run the tests in a custom branch, with these changes...

Prevent indexerConnector to index when cluster is yellow

2

|Related issue| |---| | #25416 | ## Description This PR fixes the monitoring class to prevent the indexerConnector to index while the cluster status is yellow ## Test If we...

|Dependency|Current version|Proposed version| |---|---|---| |libyaml|`0.1.7`|`>0.2.5`| ## Description There is a new **libyaml** vulnerability, the way it works is described here: - https://github.com/idhyt/pocs/blob/main/libyaml/CVE-2024-35325.c Currently, we are not vulnerable to it as...

## Description During the investigation of: - https://github.com/wazuh/external-devel-requests/issues/2975 It was discovered that the initialization of the monitoring class has some flaws and lets the indexerConnector make requests to a server...

## Description To validate the behaviour detected in the following issue: - https://github.com/wazuh/cti/issues/477 And validated in the next one: - https://github.com/wazuh/internal-devel-requests/issues/1506 We need to add component tests over the content...

Spike - Vulnerability Detector - 4.9.0 is requesting many snapshot downloads

5

|Wazuh version|Component|Install type|Install method|Platform| |---|---|---|---|---| | 4.9.0 | Content updater | Manager | Packages | - | ## Description It was found that the managers (4.9.0) are downloading a large...

Framework - UTs failing test after merging 4.10.0 into 4.10.1

1

|Wazuh version|Component| |---|---| | 4.10.1 & 4.10.2 | framework | ## Description After merging the 4.10.0 branch into 4.10.1, the "Framework unit tests" workflow failed ([see details](https://github.com/wazuh/wazuh/actions/runs/11391254302/job/31694639457?pr=26375)) > [!NOTE] >...