update project

202ea0e0 · thl-cmk · 0321f466 · 202ea0e0 · 202ea0e0 · 202ea0e0
Commit 202ea0e0 authored 2 years ago by thl-cmk
--- a/agents/bakery/cve_2021_44228_log4j.py
+++ b/agents/bakery/cve_2021_44228_log4j.py
@@ -27,6 +27,8 @@
 # 2022-02-13: added options --api-key and --http-proxy
 # 2022-02-24: removed deployment of the logpresso executable -> separate package log4j_executable.mkp
 #             optimised code for config file generation
+# 2022-05-06: fixed not enough values to unpack in exclude_paths bulk (THX to Rene Calmer[at]forum.checkmk.com)
+#
 from pathlib import Path
 from typing import List
@@ -170,7 +172,7 @@ def get_cve_2021_44228_log4j_files(conf: List[any]) -> FileGenerator:
                    path = path.strip(' ').strip("'").strip('"')
                    options_array.append(f'--exclude "{path}"')
            elif 'exclude_paths_file' in options['exclude_paths']['exclude_paths']:
-                label, exclude_paths = options['exclude_paths']
+                label, exclude_paths = options['exclude_paths']['exclude_paths']
                options_array.append(f'--exclude-config {config_path}cve_2021_44228_log4j_exclude.cfg')
            if 'exclude_paths_pattern' in options['exclude_paths'].keys():
                for path in options['exclude_paths']['exclude_paths_pattern']:

--- a/cve_2021_44228_log4j.mkp
+++ b/cve_2021_44228_log4j.mkp
--- a/packages/cve_2021_44228_log4j
+++ b/packages/cve_2021_44228_log4j
@@ -37,7 +37,7 @@
 'name': 'cve_2021_44228_log4j',
 'num_files': 9,
 'title': 'CVE-2021-44228-log4j scanner plugin',
- 'version': '20220309.v0.1.4',
+ 'version': '20220506.v0.1.4a',
 'version.min_required': '2.0.0',
 'version.packaged': '2021.09.20',
 'version.usable_until': None}
\ No newline at end of file
--- a/web/plugins/metrics/cve_2021_44228_log4j.py
+++ b/web/plugins/metrics/cve_2021_44228_log4j.py
@@ -78,17 +78,20 @@ check_metrics['cve_2021_44228_log4j'] = {
 graph_info['cve_2021_44228_log4j_found'] = {
    'title': _('Files found'),
    'metrics': [
-        ('files_mitigated', '-stack'),
+        ('files_safe', '-stack'),
        ('files_skipped', '-stack'),
-        ('files_safe', 'stack'),
+        ('files_mitigated', '-stack'),
-        ('files_potential_vulnerable', 'stack'),
        ('files_vulnerable', 'stack'),
+        ('files_potential_vulnerable', 'stack'),
    ],
    'scalars': [
        ('files_vulnerable:crit', _('crit')),
        ('files_vulnerable:warn', _('warn')),
    ],
-    'optional_metrics': ['files_skipped'],
+    'optional_metrics': [
+        'files_skipped',
+        'files_safe',
+    ],
 }
 graph_info['cve_2021_44228_log4j_scanned'] = {