You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Add solution to deny_unpermitted_urls rule
Move custom collections to rules from package
Remove 'redhat' collection from rules specific to maven
and some minor cleanups.
Copy file name to clipboardExpand all lines: antora/docs/modules/ROOT/pages/packages/release_maven_repos.adoc
+4-2Lines changed: 4 additions & 2 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -13,11 +13,13 @@ Each Maven package listed in an SBOM must specify the repository URL that it com
13
13
14
14
Each Maven package listed in an SBOM must specify the repository URL that it comes from, and that URL must be present in the list of known and permitted Maven repositories. If no URL is specified, the package is assumed to come from Maven Central.
15
15
16
+
*Solution*: The Maven artifact originates from an untrusted or unpermitted repository. To resolve this, ensure the dependency is sourced from a repository defined in the 'allowed_maven_repositories' list in your policy configuration. If the repository is internal, add its URL to the allowed list in rule_data.
Copy file name to clipboardExpand all lines: antora/docs/modules/ROOT/pages/release_policy.adoc
+2-2Lines changed: 2 additions & 2 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -105,7 +105,6 @@ a| Include the set of policy rules required for Red Hat products.
105
105
106
106
Rules included:
107
107
108
-
* xref:packages/release_maven_repos.adoc#maven_repos_package[All maven artifacts have known repository URLs: All maven artifacts have known repository URLs]
* xref:packages/release_attestation_type.adoc#attestation_type__known_attestation_type[Attestation type: Known attestation type found]
111
110
* xref:packages/release_attestation_type.adoc#attestation_type__known_attestation_types_provided[Attestation type: Known attestation types provided]
@@ -243,7 +242,8 @@ a| Ruleset for validating artifacts built via Red Hat Maven repositories.
243
242
244
243
Rules included:
245
244
246
-
* xref:packages/release_maven_repos.adoc#maven_repos_package[All maven artifacts have known repository URLs: All maven artifacts have known repository URLs]
245
+
* xref:packages/release_maven_repos.adoc#maven_repos__deny_unpermitted_urls[All maven artifacts have known repository URLs: Known Repository URLs]
246
+
* xref:packages/release_maven_repos.adoc#maven_repos__policy_data_missing[All maven artifacts have known repository URLs: Policy data validation]
247
247
248
248
| [#redhat_rpms]`redhat_rpms`
249
249
a| Include the set of policy rules required for building Red Hat RPMs.
0 commit comments