vitam-devops
vitam-devops
 **Checkmarx One – Scan Summary & Details** – [7360de80\-7ac9\-4665\-b938\-9785a13b119e](https://eu.ast.checkmarx.net/projects/3f06ff53-d733-40ac-a6fb-49e415cb793f/scans?id=7360de80-7ac9-4665-b938-9785a13b119e&branch=bug_12827_6.x) ### New Issues Severity|Issue|Source File / Package|Checkmarx Insight ---|---|---|--- |[CVE-2015-4852](https://devhub.checkmarx.com/cve-details/CVE-2015-4852)|Maven\-commons\-collections:commons\-collections\-3\.2\.1|[Vulnerable Package](https://eu.ast.checkmarx.net/sca/#/projects/3f06ff53-d733-40ac-a6fb-49e415cb793f/reports/7360de80-7ac9-4665-b938-9785a13b119e/vulnerabilities/CVE-2015-4852%3AMaven-commons-collections%3Acommons-collections-3.2.1/vulnerabilityDetails) |[CVE-2015-6420](https://devhub.checkmarx.com/cve-details/CVE-2015-6420)|Maven\-commons\-collections:commons\-collections\-3\.2\.1|[Vulnerable Package](https://eu.ast.checkmarx.net/sca/#/projects/3f06ff53-d733-40ac-a6fb-49e415cb793f/reports/7360de80-7ac9-4665-b938-9785a13b119e/vulnerabilities/CVE-2015-6420%3AMaven-commons-collections%3Acommons-collections-3.2.1/vulnerabilityDetails) |[CVE-2015-7501](https://devhub.checkmarx.com/cve-details/CVE-2015-7501)|Maven\-commons\-collections:commons\-collections\-3\.2\.1|[Vulnerable Package](https://eu.ast.checkmarx.net/sca/#/projects/3f06ff53-d733-40ac-a6fb-49e415cb793f/reports/7360de80-7ac9-4665-b938-9785a13b119e/vulnerabilities/CVE-2015-7501%3AMaven-commons-collections%3Acommons-collections-3.2.1/vulnerabilityDetails) |[CVE-2016-2170](https://devhub.checkmarx.com/cve-details/CVE-2016-2170)|Maven\-commons\-collections:commons\-collections\-3\.2\.1|[Vulnerable Package](https://eu.ast.checkmarx.net/sca/#/projects/3f06ff53-d733-40ac-a6fb-49e415cb793f/reports/7360de80-7ac9-4665-b938-9785a13b119e/vulnerabilities/CVE-2016-2170%3AMaven-commons-collections%3Acommons-collections-3.2.1/vulnerabilityDetails) |[CVE-2019-15599](https://devhub.checkmarx.com/cve-details/CVE-2019-15599)|Npm\-tree\-kill\-1\.2\.1|[Vulnerable Package](https://eu.ast.checkmarx.net/sca/#/projects/3f06ff53-d733-40ac-a6fb-49e415cb793f/reports/7360de80-7ac9-4665-b938-9785a13b119e/vulnerabilities/CVE-2019-15599%3ANpm-tree-kill-1.2.1/vulnerabilityDetails) |[CVE-2020-13936](https://devhub.checkmarx.com/cve-details/CVE-2020-13936)|Maven\-org\.apache\.velocity:velocity\-1\.7|[Vulnerable...
 **Checkmarx One – Scan Summary & Details** – [7c31653e\-2218\-4c62\-8bbc\-a04ccbffbfdb](https://eu.ast.checkmarx.net/projects/3f06ff53-d733-40ac-a6fb-49e415cb793f/scans?id=7c31653e-2218-4c62-8bbc-a04ccbffbfdb&branch=bug_13045_fix_mongod_uri) ### No New Or Fixed Issues Found
 **Checkmarx One – Scan Summary & Details** – [bd45e7e9\-65c7\-4eb4\-ae3d\-ce015b2e75fa](https://eu.ast.checkmarx.net/projects/3f06ff53-d733-40ac-a6fb-49e415cb793f/scans?id=bd45e7e9-65c7-4eb4-ae3d-ce015b2e75fa&branch=story_12387_fix_panel) ### New Issues Severity|Issue|Source File / Package|Checkmarx Insight ---|---|---|--- |[CVE-2019-15599](https://devhub.checkmarx.com/cve-details/CVE-2019-15599)|Npm\-tree\-kill\-1\.2\.1|[Vulnerable Package](https://eu.ast.checkmarx.net/sca/#/projects/3f06ff53-d733-40ac-a6fb-49e415cb793f/reports/bd45e7e9-65c7-4eb4-ae3d-ce015b2e75fa/vulnerabilities/CVE-2019-15599%3ANpm-tree-kill-1.2.1/vulnerabilityDetails) |[CVE-2020-28502](https://devhub.checkmarx.com/cve-details/CVE-2020-28502)|Npm\-xmlhttprequest\-ssl\-1\.5\.5|[Vulnerable Package](https://eu.ast.checkmarx.net/sca/#/projects/3f06ff53-d733-40ac-a6fb-49e415cb793f/reports/bd45e7e9-65c7-4eb4-ae3d-ce015b2e75fa/vulnerabilities/CVE-2020-28502%3ANpm-xmlhttprequest-ssl-1.5.5/vulnerabilityDetails) |[CVE-2020-36048](https://devhub.checkmarx.com/cve-details/CVE-2020-36048)|Npm\-engine\.io\-3\.2\.1|[Vulnerable Package](https://eu.ast.checkmarx.net/sca/#/projects/3f06ff53-d733-40ac-a6fb-49e415cb793f/reports/bd45e7e9-65c7-4eb4-ae3d-ce015b2e75fa/vulnerabilities/CVE-2020-36048%3ANpm-engine.io-3.2.1/vulnerabilityDetails) |[CVE-2020-36049](https://devhub.checkmarx.com/cve-details/CVE-2020-36049)|Npm\-socket\.io\-parser\-3\.2\.0|[Vulnerable Package](https://eu.ast.checkmarx.net/sca/#/projects/3f06ff53-d733-40ac-a6fb-49e415cb793f/reports/bd45e7e9-65c7-4eb4-ae3d-ce015b2e75fa/vulnerabilities/CVE-2020-36049%3ANpm-socket.io-parser-3.2.0/vulnerabilityDetails) |[CVE-2020-7660](https://devhub.checkmarx.com/cve-details/CVE-2020-7660)|Npm\-serialize\-javascript\-1\.9\.1|[Vulnerable Package](https://eu.ast.checkmarx.net/sca/#/projects/3f06ff53-d733-40ac-a6fb-49e415cb793f/reports/bd45e7e9-65c7-4eb4-ae3d-ce015b2e75fa/vulnerabilities/CVE-2020-7660%3ANpm-serialize-javascript-1.9.1/vulnerabilityDetails) |[CVE-2020-7788](https://devhub.checkmarx.com/cve-details/CVE-2020-7788)|Npm\-ini\-1\.3\.5|[Vulnerable...
 **Checkmarx One – Scan Summary & Details** – [75bb81e0\-f021\-4874\-8db2\-476c0f7a9ad5](https://eu.ast.checkmarx.net/projects/3f06ff53-d733-40ac-a6fb-49e415cb793f/scans?id=75bb81e0-f021-4874-8db2-476c0f7a9ad5&branch=story_11854_translations) ### New Issues Severity|Issue|Source File / Package|Checkmarx Insight ---|---|---|--- |[CVE-2019-15599](https://devhub.checkmarx.com/cve-details/CVE-2019-15599)|Npm\-tree\-kill\-1\.2\.1|[Vulnerable Package](https://eu.ast.checkmarx.net/sca/#/projects/3f06ff53-d733-40ac-a6fb-49e415cb793f/reports/75bb81e0-f021-4874-8db2-476c0f7a9ad5/vulnerabilities/CVE-2019-15599%3ANpm-tree-kill-1.2.1/vulnerabilityDetails) |[CVE-2020-28469](https://devhub.checkmarx.com/cve-details/CVE-2020-28469)|Npm\-glob\-parent\-3\.1\.0|[Vulnerable Package](https://eu.ast.checkmarx.net/sca/#/projects/3f06ff53-d733-40ac-a6fb-49e415cb793f/reports/75bb81e0-f021-4874-8db2-476c0f7a9ad5/vulnerabilities/CVE-2020-28469%3ANpm-glob-parent-3.1.0/vulnerabilityDetails) |[CVE-2020-28502](https://devhub.checkmarx.com/cve-details/CVE-2020-28502)|Npm\-xmlhttprequest\-ssl\-1\.5\.5|[Vulnerable Package](https://eu.ast.checkmarx.net/sca/#/projects/3f06ff53-d733-40ac-a6fb-49e415cb793f/reports/75bb81e0-f021-4874-8db2-476c0f7a9ad5/vulnerabilities/CVE-2020-28502%3ANpm-xmlhttprequest-ssl-1.5.5/vulnerabilityDetails) |[CVE-2020-36048](https://devhub.checkmarx.com/cve-details/CVE-2020-36048)|Npm\-engine\.io\-3\.2\.1|[Vulnerable Package](https://eu.ast.checkmarx.net/sca/#/projects/3f06ff53-d733-40ac-a6fb-49e415cb793f/reports/75bb81e0-f021-4874-8db2-476c0f7a9ad5/vulnerabilities/CVE-2020-36048%3ANpm-engine.io-3.2.1/vulnerabilityDetails) |[CVE-2020-36049](https://devhub.checkmarx.com/cve-details/CVE-2020-36049)|Npm\-socket\.io\-parser\-3\.2\.0|[Vulnerable Package](https://eu.ast.checkmarx.net/sca/#/projects/3f06ff53-d733-40ac-a6fb-49e415cb793f/reports/75bb81e0-f021-4874-8db2-476c0f7a9ad5/vulnerabilities/CVE-2020-36049%3ANpm-socket.io-parser-3.2.0/vulnerabilityDetails) |[CVE-2020-7660](https://devhub.checkmarx.com/cve-details/CVE-2020-7660)|Npm\-serialize\-javascript\-1\.9\.1|[Vulnerable...
 **Checkmarx One – Scan Summary & Details** – [d1944ec8\-f918\-4dd7\-bf0a\-85b3d721758c](https://eu.ast.checkmarx.net/projects/3f06ff53-d733-40ac-a6fb-49e415cb793f/scans?id=d1944ec8-f918-4dd7-bf0a-85b3d721758c&branch=story_11854_standalone_components) ### New Issues Severity|Issue|Source File / Package|Checkmarx Insight ---|---|---|--- |[CVE-2019-15599](https://devhub.checkmarx.com/cve-details/CVE-2019-15599)|Npm\-tree\-kill\-1\.2\.1|[Vulnerable Package](https://eu.ast.checkmarx.net/sca/#/projects/3f06ff53-d733-40ac-a6fb-49e415cb793f/reports/d1944ec8-f918-4dd7-bf0a-85b3d721758c/vulnerabilities/CVE-2019-15599%3ANpm-tree-kill-1.2.1/vulnerabilityDetails) |[CVE-2020-28469](https://devhub.checkmarx.com/cve-details/CVE-2020-28469)|Npm\-glob\-parent\-3\.1\.0|[Vulnerable Package](https://eu.ast.checkmarx.net/sca/#/projects/3f06ff53-d733-40ac-a6fb-49e415cb793f/reports/d1944ec8-f918-4dd7-bf0a-85b3d721758c/vulnerabilities/CVE-2020-28469%3ANpm-glob-parent-3.1.0/vulnerabilityDetails) |[CVE-2020-28502](https://devhub.checkmarx.com/cve-details/CVE-2020-28502)|Npm\-xmlhttprequest\-ssl\-1\.5\.5|[Vulnerable Package](https://eu.ast.checkmarx.net/sca/#/projects/3f06ff53-d733-40ac-a6fb-49e415cb793f/reports/d1944ec8-f918-4dd7-bf0a-85b3d721758c/vulnerabilities/CVE-2020-28502%3ANpm-xmlhttprequest-ssl-1.5.5/vulnerabilityDetails) |[CVE-2020-36048](https://devhub.checkmarx.com/cve-details/CVE-2020-36048)|Npm\-engine\.io\-3\.2\.1|[Vulnerable Package](https://eu.ast.checkmarx.net/sca/#/projects/3f06ff53-d733-40ac-a6fb-49e415cb793f/reports/d1944ec8-f918-4dd7-bf0a-85b3d721758c/vulnerabilities/CVE-2020-36048%3ANpm-engine.io-3.2.1/vulnerabilityDetails) |[CVE-2020-36049](https://devhub.checkmarx.com/cve-details/CVE-2020-36049)|Npm\-socket\.io\-parser\-3\.2\.0|[Vulnerable Package](https://eu.ast.checkmarx.net/sca/#/projects/3f06ff53-d733-40ac-a6fb-49e415cb793f/reports/d1944ec8-f918-4dd7-bf0a-85b3d721758c/vulnerabilities/CVE-2020-36049%3ANpm-socket.io-parser-3.2.0/vulnerabilityDetails) |[CVE-2020-7660](https://devhub.checkmarx.com/cve-details/CVE-2020-7660)|Npm\-serialize\-javascript\-1\.9\.1|[Vulnerable...
 **Checkmarx One – Scan Summary & Details** – [69b21039\-9ffc\-4ac6\-9e38\-e8d69107e1ad](https://eu.ast.checkmarx.net/projects/3f06ff53-d733-40ac-a6fb-49e415cb793f/scans?id=69b21039-9ffc-4ac6-9e38-e8d69107e1ad&branch=bug_12629_invalid_control_on_management_rule) ### New Issues Severity|Issue|Source File / Package|Checkmarx Insight ---|---|---|--- |[CVE-2019-15599](https://devhub.checkmarx.com/cve-details/CVE-2019-15599)|Npm\-tree\-kill\-1\.2\.1|[Vulnerable Package](https://eu.ast.checkmarx.net/sca/#/projects/3f06ff53-d733-40ac-a6fb-49e415cb793f/reports/69b21039-9ffc-4ac6-9e38-e8d69107e1ad/vulnerabilities/CVE-2019-15599%3ANpm-tree-kill-1.2.1/vulnerabilityDetails) |[CVE-2020-28502](https://devhub.checkmarx.com/cve-details/CVE-2020-28502)|Npm\-xmlhttprequest\-ssl\-1\.5\.5|[Vulnerable Package](https://eu.ast.checkmarx.net/sca/#/projects/3f06ff53-d733-40ac-a6fb-49e415cb793f/reports/69b21039-9ffc-4ac6-9e38-e8d69107e1ad/vulnerabilities/CVE-2020-28502%3ANpm-xmlhttprequest-ssl-1.5.5/vulnerabilityDetails) |[CVE-2020-36048](https://devhub.checkmarx.com/cve-details/CVE-2020-36048)|Npm\-engine\.io\-3\.2\.1|[Vulnerable Package](https://eu.ast.checkmarx.net/sca/#/projects/3f06ff53-d733-40ac-a6fb-49e415cb793f/reports/69b21039-9ffc-4ac6-9e38-e8d69107e1ad/vulnerabilities/CVE-2020-36048%3ANpm-engine.io-3.2.1/vulnerabilityDetails) |[CVE-2020-36049](https://devhub.checkmarx.com/cve-details/CVE-2020-36049)|Npm\-socket\.io\-parser\-3\.2\.0|[Vulnerable Package](https://eu.ast.checkmarx.net/sca/#/projects/3f06ff53-d733-40ac-a6fb-49e415cb793f/reports/69b21039-9ffc-4ac6-9e38-e8d69107e1ad/vulnerabilities/CVE-2020-36049%3ANpm-socket.io-parser-3.2.0/vulnerabilityDetails) |[CVE-2020-7660](https://devhub.checkmarx.com/cve-details/CVE-2020-7660)|Npm\-serialize\-javascript\-1\.9\.1|[Vulnerable Package](https://eu.ast.checkmarx.net/sca/#/projects/3f06ff53-d733-40ac-a6fb-49e415cb793f/reports/69b21039-9ffc-4ac6-9e38-e8d69107e1ad/vulnerabilities/CVE-2020-7660%3ANpm-serialize-javascript-1.9.1/vulnerabilityDetails) |[CVE-2020-7788](https://devhub.checkmarx.com/cve-details/CVE-2020-7788)|Npm\-ini\-1\.3\.5|[Vulnerable...
 **Checkmarx One – Scan Summary & Details** – [891fb4a2\-91ca\-4a8f\-9711\-d1d37413b8c7](https://eu.ast.checkmarx.net/projects/3f06ff53-d733-40ac-a6fb-49e415cb793f/scans?id=891fb4a2-91ca-4a8f-9711-d1d37413b8c7&branch=feature%2Fvas-11852-set-same-site-cookie) ### New Issues Severity|Issue|Source File / Package|Checkmarx Insight ---|---|---|--- |Passwords And Secrets \- Generic Password|/vitamui\_vars\.yml: [302](https://github.com/ProgrammeVitam/vitam-ui/blob/feature/vas-11852-set-same-site-cookie//deployment/environments/group_vars/all/vitamui_vars.yml#L302)|Query to find passwords and...