From 4b620f29a25e5f5c99a2957a647965894ac53522 Mon Sep 17 00:00:00 2001 From: RapidFort Sync Bot Date: Wed, 9 Oct 2024 10:00:34 +0000 Subject: [PATCH] Sync Latest Updates from Team RapidFort by Rapidfort Readme Bot Signed-off-by: RapidFort Sync Bot --- community_images/etcd/bitnami/image.yml | 1 + community_images/fluentd/official/image.yml | 1 + community_images/mongodb/bitnami/image.yml | 1 + community_images/nginx/bitnami/image.yml | 1 + community_images/postgresql/bitnami/image.yml | 2 + .../tomcat-openjdk8/ironbank/README.md | 71 ++++++++++++++++++ .../ironbank/assets/github_logo.png | Bin 0 -> 6694 bytes image.lst | 7 +- 8 files changed, 80 insertions(+), 4 deletions(-) create mode 100644 community_images/tomcat-openjdk8/ironbank/README.md create mode 100644 community_images/tomcat-openjdk8/ironbank/assets/github_logo.png diff --git a/community_images/etcd/bitnami/image.yml b/community_images/etcd/bitnami/image.yml index 7ee122bc95..984fa1c647 100644 --- a/community_images/etcd/bitnami/image.yml +++ b/community_images/etcd/bitnami/image.yml @@ -21,6 +21,7 @@ disclaimer: | is_locked: "False" bitnami_excluded_branches: - "3.3" +use_rapid_stub: true input_registry: registry: docker.io account: bitnami diff --git a/community_images/fluentd/official/image.yml b/community_images/fluentd/official/image.yml index 52dd0604c7..163c44f19b 100755 --- a/community_images/fluentd/official/image.yml +++ b/community_images/fluentd/official/image.yml @@ -33,6 +33,7 @@ repo_sets: runtimes: - type: docker_compose script: dc_coverage.sh + before_script: dc_before.sh compose_file: docker-compose.yml image_keys: fluentd-official: diff --git a/community_images/mongodb/bitnami/image.yml b/community_images/mongodb/bitnami/image.yml index ed5636ec5e..a5f683c19e 100644 --- a/community_images/mongodb/bitnami/image.yml +++ b/community_images/mongodb/bitnami/image.yml @@ -19,6 +19,7 @@ what_is_text: | disclaimer: | Disclaimer: The respective trademarks mentioned in the offering are owned by the respective companies. We do not provide a commercial license for any of these products. This listing has an open-source license. MongoDB(R) is run and maintained by MongoDB, which is a completely separate project from RapidFort. is_locked: "False" +use_rapid_stub: true input_registry: registry: docker.io account: bitnami diff --git a/community_images/nginx/bitnami/image.yml b/community_images/nginx/bitnami/image.yml index d1c19caeb7..3f66544e88 100644 --- a/community_images/nginx/bitnami/image.yml +++ b/community_images/nginx/bitnami/image.yml @@ -19,6 +19,7 @@ what_is_text: | disclaimer: | Trademarks: This software listing is packaged by RapidFort. The respective trademarks mentioned in the offering are owned by the respective companies, and use of them does not imply any affiliation or endorsement. is_locked: "False" +use_rapid_stub: true input_registry: registry: docker.io account: bitnami diff --git a/community_images/postgresql/bitnami/image.yml b/community_images/postgresql/bitnami/image.yml index 34d20e8891..be45f13f79 100644 --- a/community_images/postgresql/bitnami/image.yml +++ b/community_images/postgresql/bitnami/image.yml @@ -19,6 +19,7 @@ what_is_text: | disclaimer: | Trademarks: This software listing is packaged by RapidFort. The respective trademarks mentioned in the offering are owned by the respective companies, and use of them does not imply any affiliation or endorsement. is_locked: "False" +use_rapid_stub: true input_registry: registry: docker.io account: bitnami @@ -46,6 +47,7 @@ runtimes: - type: docker_compose script: dc_coverage.sh compose_file: docker-compose.yml + wait_time_sec: 30 image_keys: postgresql: repository: "PG_IMAGE_REPOSITORY" diff --git a/community_images/tomcat-openjdk8/ironbank/README.md b/community_images/tomcat-openjdk8/ironbank/README.md new file mode 100644 index 0000000000..b1d11aefa9 --- /dev/null +++ b/community_images/tomcat-openjdk8/ironbank/README.md @@ -0,0 +1,71 @@ +RapidFort + + +
+ +[![DH Image][dh-rf-badge]][rf-dh-image-link] +[![Slack][slack-badge]][slack-link] + +Near Zero CVE images available at hub.rapidfort.com/repositories. + +⚠️ CRITICAL NOTICE
+As of 7/2024 community-images will be gated. Please register for free at www.rapidfort.com to access these images + +## 🚧 This Image is being updated 🚧 +We are currently updating this image documentation to reflect the latest changes and features. Some sections might be incomplete or during this process + +Thank you for your understanding and patience! + + +## What is a hardened image? + +A hardened container image is a functionally equivalent copy of a container image that has been optimized by removing unnecessary software components, significantly reducing its software attack surface and improving its security. Removing unnecessary software components is a critical practice to protect your infrastructure from attacks and limiting the blast radius of any attacks. + +RapidFort is the pioneering Software Attack Surface Management (SASM) platform in the market. Many container images can be reduced by 60-90%, have far fewer vulnerabilities, and load much faster because of their reduced size. Learn more at [RapidFort.com][rf-link]. + +Vulnerability reports for RapidFort's hardened images are updated daily to include newly discovered vulnerabilities and fixes. + +View on GitHub + +
+
+ +## Need support + +Join our slack community for any questions. + + +RapidFort Community Slack + + +## 🌟 Support this project + +[![](https://user-images.githubusercontent.com/48997634/174794647-0c851917-e5c9-4fb9-bf88-b61d89dc2f4f.gif)](https://github.com/rapidfort/community-images/stargazers) + +### [⏫⭐️ Scroll to the star button](#start-of-content) + +If you find this project useful, please star this repo just like many [amazing people](https://github.com/rapidfort/community-images/stargazers) have. + +## Have questions? + +![RapidFort](https://raw.githubusercontent.com/rapidfort/community-images/main/contrib/github_logo_footer.png) + + +Learn more about RapidFort's pioneering Software Attack Surface Management platform at [RapidFort.com](RapidFort.com). + +
+
+ + +[dh-rf-badge]: https://img.shields.io/badge/dockerhub-images-important.svg?logo=Docker + +[fossa-badge]: https://app.fossa.com/api/projects/git%2Bgithub.com%2Frapidfort%2Fcommunity-images.svg?type=shield +[fossa-link]: https://app.fossa.com/projects/git%2Bgithub.com%2Frapidfort%2Fcommunity-images?ref=badge_shield + + +[slack-badge]: https://img.shields.io/static/v1?label=Join&message=slack&logo=slack&logoColor=E01E5A&color=4A154B +[slack-link]: https://join.slack.com/t/rapidfortcommunity/shared_invite/zt-1g3wy28lv-DaeGexTQ5IjfpbmYW7Rm_Q + +[rf-h-badge]: https://img.shields.io/static/v1?label=RapidFort&labelColor=333F48&message=hardened&color=50B4C4&logo=data:image/png;base64,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 + +[rf-dh-image-link]: https://hub.docker.com/r/rapidfort/ \ No newline at end of file diff --git a/community_images/tomcat-openjdk8/ironbank/assets/github_logo.png b/community_images/tomcat-openjdk8/ironbank/assets/github_logo.png new file mode 100644 index 0000000000000000000000000000000000000000..ad5b38ffc99d4b074bc6e83733e9098e0e684978 GIT binary patch literal 6694 zcmV+>8rkKEP)e!MoFbOSAaI+1}*dziU zbQh$Pk!ZGY2SXwl8O%m^opnXn8TcgV>||#{OS3NtjUNV*ZftGf*3|#>JI-8e(i_lo*HVcAPP@| zfa{E0xgzGwo*nv}3q`@t=Vy!gcXkRw2+1q`B9=As1uu_6i;FGk8IM79W zWb}&lIRkGW6dPac6^D)-6@(Cybv)mHAqcELgEm_qx7``M;B@eUMIyy~@X^1Cov-c@ zJsW-`)~FymHSZ|eDXA85F!%P`<=^4q zucke=c;Ny;2q6uJFYfz#{Q5tbHp`TVd~|I5nU-8`zsLwt{BlAFX)uCVyYQ2n+S~T1 zJ0^vEY;0_v$j$gfApM09LP%-}g!|IWww6xM^Dg7xlarkV(b6YUB;v2V{-!we-cd1n z<;H|&smaY!xIUi{Lb8A_#4Tf23qMo;mO_qbJeSLr%~h-=hmRZ;d-uI5&JLcNyl>Ux zPl$UT`ktK34CBPFPl=72d&T|(2SwUJsw4}X2qCU`zQ0LjvB=3zMB|Z4JZs2*eDu%L z?mK+oAEiilblevD+6!M@6kT1NV%d`Kh_r)h)ze@6R=l;ZU*zfc6GEcnef`Zfq=@%P zk9_RgYeS+AwhAKaX3sD|uKWI9925il_D*Kv5JE^4;FY(}Y`wK*Z0za^;dwPL{6Qp& zJaFWD|J7gq#k9xakKcOBEn-eSFVY6Q_w~rX$;6@*wJ>Hq{B%n7baYgl2`mwPGBz$0aY9I3T0DPIYfH{s z=!@EeYD|c@&06W|xE12qC1-1aYPJUGM8}ub=ir z`YSn;G8%~ZGaEL_|KHWOZAvpO2>hIU`H4nk(9G{*6D~qXsu;=%5v|{C)R z<@YR^CgNzYHBcs15s!EOxJR7*@|+-qkhFmHAzB-Gr5_X(4Fj??4+cs zh)gd;?{L6dqOy0j2EeMVrm12znU~O>KpoAX654#5g%;E(L zWPf$Mw<+vc_6`HY{-5uy>oFjN)D=H%1)Y<9##EIXWn&#o---yO>9MYPmNeHP8 z&ejS<@55hxT(!%2q$46SMKl@)1QHXMDA$jYhYi8T^Dw!I{O{wxIVtni5z%(sew*AM zJg$VbD~NvAmDxx2Uf33R?H>jLyvTAT(H*=GL|0iX>aPw28RCqnTlw+WJ~g?T*RpEx z9q7W2=d((dkmkkNTEXQ!LL;uP zL5RNffoR7oyXD}Qge{vl$*h}F?}x#N{aOfVN_^*t9Abj#Fi!M`JZuO~T=4p{=gv(E zT2v6NDiMcp-@9~)xI6Hk7cE*K7p6e8e(1>iVmOF&Ris~TViNX8sj5zR-U)xhC4MEzlkSk?q!^5CaS%hkiM+m@}4_ zQ}#y~`UEKUy=QZ;HTo|Hx;`rVsMM7Oz#znlPePiG+D>*tjFK$Pw(6k=WTf0-5h{4p z=wS|l#b150v_tdIbpeL(Z|Qq^a&l4Khsi}<3?c5Yg+Bb~V|j}r;_AKBdt={s_HA>v zKCsV9#MK06DLC;-NORJ%?WaHM6Bz-W0v}wlT+D21oA%hB+S6<{lECb zrAw2Y6(PzHUpe7eoSgjl*a`9WJMYTZLbxGk7 z10l%e&?h;Sh!4lGLv*kmuyoWuBeEWduzHa`ptww!a^jParlR(F(hv(iK*fU8*Tx|yi1hst-XEU$dwk=A;k%s7! z^`a&|2_elv?S)+HSyCyaHylK)5KA+Y1Q{givyj54N2&0id)EI*?0RXN{JS@Z#FZc2 z|N0wp;?3T)}>GEl@(5gPMEf5HEPyfBn5xqEfU4o;kc@ z8FdHN2y6@8ONM8T^gVdZxL*w>xDTcAfBt8GD!p{I(hpvbbi_)7LFUXC|0y24Z@JuN zq&a?k?D(|72m64OMS#fq<4;crSH{P$1_RNMbE+mGBzx4QM8DDtMgV13K!im zBCPi^fsF!Wwu&bDNENK6h%4~9Xqp9J<>(cpF6o9*(D$1V(wL-P$RXCfeJ@XmOd*7b zHhVNrT(91=fyY!%H!K)L=8vwt(Rx;;_tgsQkBXL6D_wnp6Ont;vVNfNHzA}kNqs-^ z6DLne;l{+HY!5JdVx=DlI2MdhLJV<6q>bm>!1MIxT4pIb-Vf1mEkU~hHQ@JSRgb+fe;AcX}bzn!J;3ceb5zkRQRM^^;5Ypge zOUU74uX%c%^pw#!O9zvO=rN8;PWaDiG7+d%cx1I_@D~<}O3Rzb40&JnYC*1dH9*hw zQsign#k!}ToV18gh=g7-7mC}Hber^*hX^4JiJz%8JCWxNQAS~p$;g#aIkAUHLio)P zukQ6dQoPMHL-^0|qGh!1c~Us5$`|1e!y8{-OvyyiP^AiyU`2J^d50i`G&Y$Ma@nR; zi^SzhId31FQtpnFJ++z+{+8+)j_36++$A$bAn5hXx1QfMA-33tN>-C@l$kJWo<&Hb zlPMuL!7^)TE2|T=hYK=Bl+}WWxL!i8XR1^(O;ERw2qBG4CJTZT@Rz~h;E-JG!3B8F zSS$iSOzVYSe;3%SZjL3AB;u?L+Ges!ZjXl{Zf=#ro&BGp3B zl>lY`Ow}Z$dB}D|o}Zmafb|mnW%n!*wFb?@l&yk{n@WH}C;H-qG#8l`a)9VFZbhbU zuhb(&Z`H#$w!0Fx3ig4EFB8&yWJ1W%%2m$`*Fp5Tb@L08jj&u%0t$Pj)+_2LZ@v9+Ah&#eSEq1A399OpSWU1pk^IaA zwhBw|2_cG13HfNT#VaNxE4{X+vR5z=RAX^yg=*3T;@T=K!6$_1WUl++;R6F=B#2_e zO3>r<@Yb_e5HXw0xGF^@Y!#N^6GC({>5-QcG4$Y$BXqT}SCp-SK_iZ>!V-K!h)Kgt zcIu$g^TQ+WI8R*a_DUR|y&Sr&5~pP?OYjLHHX2gM0T!KbwJ!ARl}A^`>)#TFZmYO< zYh(#NA*2)yE96+5IZpJd#2=NHm9|%wEt#n1#9)DC>0Dq5J|UzO4J+gTLhdT&)v{Oc zerjD#S6hW8_=J!!8d}H!M9{@6pHdvOq;le^uR`QvtFQ#05K@kY7jl5fPnXhtCA5_+ zxKV?Ni><;Ed_qVRnnK87YitR`JSxii!0W=Ab-A#7>5?h$9R-%)6GEcU6haOl$WgOC z5HVNMUO_ajCQhT;Dr;9i#u9u&NF%R`3i?&i#KA#V^=e9)0H0pla=<4ir%E}rUy&?v` zJSVfd(ElI*)_+6T59|+u7NqV*J;n+o8JvjNdnoGnnB@4FtV;RSanlJoJm+0~+r-8f zdqbb6>=n6kP++gb6>?;&D4#outy0Sp{6oJy>a<_@p<;jJHg?3{MhIl@_LryJ*As{W zu9)Jmci$W0fE5tW4o)t|3D3p(fqja*mTnaA-uNDW@YJ)ZI&Sr#DTN$h z;f!?l?f5= zDH(jg`or%Bw^BABUR!N3*FUG;gK|A-I%`E|XW!OPzx-_AcV4)7QCc0i9CsBO7h7eE z%yqACs-d(SR!+Z!#19dd*QR~3&bal}aFa|BVid3@FW?Em>*XFG0dFrU?7e2)4a;nVBqBhD$!J%zRUfGt`?{$XRFBfuY!=cA_pwX zc1SBK_yOZM>6Qxi2|r*L!GVpS1CLk<2E+~jpR~u#{LVY9`+@HR6LDMmrbgkIz^lgb z$9|OaRxz;c4+bz@lpt2HS>D>`wrt^q_n+L$#eiy_uef5wBz&o01Lpt=?{F^n1eTS# zKd?ah9gEx0WX|?^_#P2pnL(Hgw4S>0yovAB{=H)RbRoyYY1)18Fq+m{QNSw?^UGBf zzF3}AZVNlBw8Jo4B}*mvh{jA@E}L;I^{W~Pk2z6=sH&QvXN@V^gM&k&USR(rkmg{h zBFtKY@5dZ$%Zd2Z=iV;Y%{6~3mA20CIp(=@_FVlfsd~}$LJlS}MeHJt6A+_6a2c`Z zcXpPwRkBus?>dl~m;)Lv(akA{%B@{=vUi zXT4N_q8)R=k+cYa?fi0GfFudFf!a3t9TnSaKRZ*I{jpgvG) zUk;@In$?>lvI6v!^>>w~@3GcU$PISAv`rR4n5lL+c_27AS;`4HG9y4KTcuVd_^zNb z5w|E{`=jQ)n<URjDRO&V|v{npCwY*iuK~d}#^&_#Z8CuH{{A%Hn#Q;oOWzFN$^L3H) zt0S+1s$8w7_9IO+y3bpUiDmrWdNw>Kni)pq7E}qp9(n6I&SCb7UIlvGXabb>68v&t z`(>{3!w*KjqOe_+*e=&$MVXi3h%T#fyzm_%0}1JrX}dB?Q|3iAGG^vPoE$F)zQcQ$ zE|G;_X{f=dHx%*`z&3z*>%Ji@f^znXn#9BFbOFmk3BF$036FWFF}dl|23TPpr&3uE zh(yf+6911vB-a8Vd_QJhHjY0sY`TKU*)(4fnYqv|+iKfy8>OOt^Ei(dt5D+>XpI)< zS9Cf$qT4lkW#_=#2d7wXesEid?xZQSDC+@*JOs0ZANGn8Gc$TrC?PZ_Ow&+;Uk<&p zbFo+;BVv6&P?GObZ3t_`w3p5XlXqxVWqrOeK?xx+%dVrKx(Q|teZ5$POVw=B{kDA; z(jVi#=W$D0TFj3`MX&7K(y>Xbd1~F{W44m~W`-Vl2snxKC|b{hU1phi*KHMj(kU$^ z_^$M zUy`nyagd9L7(L44me%9y)qI_KF1do=p+3;49xjAJ9tpjKUuCb@q8BCZO2D#Kf^Xyb z_0Prn@z|>Pa15i|Oe$U4oi-qNwuMf*>kt5#*+T%9noH!1=f1Y@jp^^5aDOn+tTp=m z)T8}z8lguX0ad~eZ+9|#CAbgvin{bvxzIr6VrQ)c--i0}=wceB^{Xkqh{m>B(mG4M z*8DuzE{jafPI4Sn>HEtrxL#fnN4P_R^&Q& z(}*x4kBDBvulir;y`PnriD(2TbJj}m!!R#t0e(EC($j1`$6ZRjZN6|4ueM$cU%WUu zD5)Ec8(P#pvib=rjy4fTif27DoNyIpUKuGd-|@Ltc#f?FZlx-j z5m=bVre2*Q(*z@O2O!LIiYaUW6`WX~5Q4UB$&KaU@Iy>v34UB`QF&O_fUOOxi`R=m z)2#GF&v5jP&r;Nd)H_#O2!m$5(^OUWLbI035$5-z>yaYZU$_u>mx3uthx z%;VL}6QADLx7U0@ni5=^>LuZ*x+@nw*?uVc56XO8UbV!Wq%^nB{H#)++11rq5dpzx zn;ike#1;ij!^5SQ^wWuQtjl2@pGxg_DdY-I#hiax^*K7xHwE1kyY9S07W?Q|tS-17 zYhXLxQID(n+9c;`3h=$JzrA+J6XIq;2q7eM1p0j`7yRe4AcPQ-NeaR{46|+!GNP8ylNf5G{SVT<(X05JE`Rkx}@}*6pRDaGgj( zuFwSiyTL!_2|@@V6(fkiFQa8jdwc7iC<3l<5^|lfv8yWzLab=Xc?%1|n-^@tJQfoX wLP#{EX#2s<6K90)9Sba!&u7h=aZJSEj{&+ZKhPEyDgXcg07*qoM6N<$f{JtlqyPW_ literal 0 HcmV?d00001 diff --git a/image.lst b/image.lst index feb30a202a..c5ed84ac7e 100644 --- a/image.lst +++ b/image.lst @@ -168,6 +168,7 @@ gitlab-kas/ironbank cass/ironbank kyverno-background-controller/ironbank grafana-plugins/ironbank +gitaly/ironbank postfix/ironbank kyverno-reports-controller/ironbank kyverno-cleanup-controller/ironbank @@ -189,12 +190,10 @@ boundary/ironbank haproxy-latest/ironbank molecule/ironbank camel-k/ironbank -postgresql/bitnami-ironbank +postgresql16/bitnami-ironbank clickhouse/ironbank jq/ironbank ansible-operator/ironbank k6/ironbank registry-v2/ironbank -kafka-bridge/ironbank -cockroachdb/ironbank -tomcat-openjdk8/ironbank \ No newline at end of file +