File tree Expand file tree Collapse file tree 3 files changed +17
-17
lines changed Expand file tree Collapse file tree 3 files changed +17
-17
lines changed Original file line number Diff line number Diff line change 3838
3939- name : Cleanup /tmp
4040 command : rm -rf /tmp/*
41-
41+
42+ - name : Delete files triggering vulnerability scans
43+ ansible.builtin.file :
44+ path : " {{ item }}"
45+ state : absent
46+ loop : # NB: items here MUST have a justification!
47+ # ondemand install: raised at https://github.com/OSC/ondemand/security/advisories/GHSA-f7j8-ppqm-m5vw
48+ # All declared not to be an issue by Open Ondemand as relevant packages not installed
49+ - " /opt/ood/ondemand/root/usr/share/gems/3.1/ondemand/{{ ondemand_package_version }}-1/gems/bootstrap_form-2.7.0/test/dummy/Gemfile.lock"
50+ - " /opt/ood/ondemand/root/usr/share/gems/3.1/ondemand/{{ ondemand_package_version }}-1/gems/bootstrap_form-4.5.0/demo/yarn.lock"
51+ - /var/www/ood/apps/sys/dashboard/node_modules/data-confirm-modal/Gemfile.lock
52+ # chrony role: only used for role dev, venv never created on disk
53+ - /etc/ansible-init/playbooks/roles/mrlesmithjr.chrony/poetry.lock
54+ - /etc/ansible-init/playbooks/roles/mrlesmithjr.chrony/requirements.txt
55+
4256- name : Get package facts
4357 package_facts :
4458
Load Diff This file was deleted.
Original file line number Diff line number Diff line change 11{
22 "cluster_image" : {
3- "RL8" : " openhpc-RL8-250221-0904-e4ff694e "
4- "RL9" : " openhpc-RL9-250221-0904-e4ff694e "
3+ "RL8" : " openhpc-RL8-250305-1110-534ed276 "
4+ "RL9" : " openhpc-RL9-250305-1110-534ed276 "
55 }
66}
You can’t perform that action at this time.
0 commit comments