Uploaded image for project: 'Artifactory Binary Repository'
  1. Artifactory Binary Repository
  2. RTFACT-22952

Release bundle repo mapping causes Xray scanning to not find the files

    XMLWordPrintable

    Details

    • Severity:
      High

      Description

      please see the latest comment from Shai Ben-Zvi about the root cause.

      ----------------------------------------------------------------------------

      When creating a release bundle upon giving a combination input of properties and mappings - The release bundle which will be created will be a wrong repository - Distribution will switch between the target repository and the source.

      Steps to reproduce:
      1. Create a Docker repository: for example 'dso-docker-dev-local'
      2. Push some images.
      3. Add customer properties on the manifest.json on some of them(or all) I did as follows:
      properties: image = alpine

      4. Create a release bundle through the UI with the following input:

      name: dso-alpine
      version: 1
      Query parameters:
      name: image
      repository names: 'dso-docker-dev-local'
      properties: image = alpine
      path mappings:

      dso-docker-dev-local/(.*)
      dso-docker-local/$1

      Expected input: The repository path will be the source repo 'dso-docker-dev-local' but instead it's the target 'dso-docker-local' (which doesn't really exist on my end) and this leads to wrong information inside the Release bundle info and Xray will not be able to scan the release bundle.

        Attachments

          Activity

              People

              Assignee:
              hezic Hezi Cohen
              Reporter:
              shaibz Shai Ben-Zvi
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved: