fix/chore/docs: SAST, trivy, charts, LEGAL INFO, CHANGELOG #20
Conversation
… reference urls and reencode the reference before returning.
…n. login to docker when checking manifest before calling trivy
drcgjung
changed the title
|
Hi @drcgjung, the changes look good to me, but could you check why the tests are failing? |
I puzzled over this myself. But I found it out ... We use a quite stable public SPARQL server (query.wikidata.org) to test "real" internet remoting (and security restrictions). That service seemed to be down in that very moment. Wen I tested myself short term after, it was there again. Maybe just a routing prob inside the github/MS cloud ... Never occurred before and I would only think over the test design if this happens again. 2023-08-25T16:47:32.1579905Z Caused by: org.apache.jena.atlas.web.HttpException: POST https://query.wikidata.org/sparql Could you please restart the failed build? Should run through then. Thx. |
|
Ok passing after restart |
drcgjung
changed the title
WHAT
Incorporate mitigations from static code analysis.
Improve workflows
Improve maven build to include Legal Infos
Remove redundant and wrong COPYRIGHT
CHANGELOG prepared for release
WHY
results from mitigating all SAST findings which should not be accepted.
SNAPSHOT charts should be able to find a SNAPSHOT or latest image in dockerhub.
trivy step was disabled/muted due to docker manifest check requiring a login.
maven resources where not completely covering TRG7.05
CHANGELOG needs to reflect the (upcoming) release status.
FURTHER NOTES
Closes #22