apigee / ahr Goto Github PK
View Code? Open in Web Editor NEWLicense: Apache License 2.0
License: Apache License 2.0
This issue was automatically created by Allstar.
Security Policy Violation
Project is out of compliance with Binary Artifacts policy: binaries present in source code
Rule Description
Binary Artifacts are an increased security risk in your repository. Binary artifacts cannot be reviewed, allowing the introduction of possibly obsolete or maliciously subverted executables. For more information see the Security Scorecards Documentation for Binary Artifacts.
Remediation Steps
To remediate, remove the generated executable artifacts from the repository.
Artifacts Found
Additional Information
This policy is drawn from Security Scorecards, which is a tool that scores a project's adherence to security best practices. You may wish to run a Scorecards scan directly on this repository for more details.
Allstar has been installed on all Google managed GitHub orgs. Policies are gradually being rolled out and enforced by the GOSST and OSPO teams. Learn more at http://go/allstar
This issue will auto resolve when the policy is in compliance.
Issue created by Allstar. See https://github.com/ossf/allstar/ for more information. For questions specific to the repository, please contact the owner or maintainer.
Just a heads up you might want to make these ports:
https://github.com/apigee/ahr/blob/main/bin/ahr-cluster-ctl#L267-L268
dependent on the ASM version. ASM 1.7+ use 15021
instead of 15020
. Users willing to use the status port for NEG health checks will run into issues otherwise.
could you please documented this repo like below
https://github.com/yuriylesyuk/ahr/wiki/Anthos-On-Prem-Apigee-Hybrid-1.3-AHR-Manual
When defining another region as us-east-1 in the AWS environment variables, this breaks the deployment.
This is defined in section "AWS: for a current session"
[...]
export AWS_REGION=us-east-1
[...]
On some steps there are hardcoded references to us-east-1 region and zones.
For example in the following files:
Somewhere along 1.5 the apigee-distributed-trace
SA has been renamed to apigee-runtime
I guess this needs to be added to this list here: https://github.com/apigee/ahr/blob/main/bin/ahr-sa-ctl#L101
The SA name format changed in the 1.8 new install preview
For ORG SAs:
SECRET_NAME=$sa_id-gcp-sa-key-$ORG
For ENV SAs:
SECRET_NAME=$sa_id-gcp-sa-key-$ORG-$env
For Other SAs:
SECRET_NAME=apigee-metrics-gcp-sa-key
SECRET_NAME=apigee-logger-gcp-sa-key
To overcome this name format issues in future, may be a regex expression to feed to this method will help.
Thanks
Gana
A declarative, efficient, and flexible JavaScript library for building user interfaces.
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. ๐๐๐
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google โค๏ธ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.