QUA-884: update database version (#77)

* update database version

Author: dantevvp

.circleci/config.yml

@@ -11,14 +11,21 @@ jobs:
       - run: make test
 
   release_images:
-    docker:
-      - image: circleci/python:latest
+    machine:
+      docker_layer_caching: true
+    working_directory: ~/codeclimate/codeclimate-bundler-audit
     steps:
       - checkout
-      - setup_remote_docker:
-          docker_layer_caching: true
-      - run: docker login -u _json_key -p "$GCR_JSON_KEY" us.gcr.io
+      - run:
+          name: Validate owner
+          command: |
+            if [ "$CIRCLE_PROJECT_USERNAME" -ne "codeclimate" ]
+            then
+              echo "Skipping release for non-codeclimate branches"
+              circleci step halt
+            fi
       - run: make image
+      - run: echo "$GCR_JSON_KEY" | docker login -u _json_key --password-stdin us.gcr.io
       - run: bin/deploy
 
 
@@ -30,6 +37,9 @@ workflows:
       - release_images:
           requires:
             - build_and_test
+          filters:
+            branches:
+              only: /master|channel\/[\w-]+/
 notify:
   webhooks:
     - url: https://cc-slack-proxy.herokuapp.com/circle

DATABASE_VERSION

@@ -1 +1 @@
-Thu Apr  8 11:56:16 -03 2021
+Thu Jan 19 11:41:48 -03 2023

spec/fixtures/alphanumeric_versions/issues.json

@@ -1,44 +1,191 @@
 [
-    {
-        "categories": [
-            "Security"
-        ],
-        "check_name": "Insecure Source",
-        "content": {
-            "body": ""
-        },
-        "description": "Insecure Source URI found: http://rubygems.org/",
-        "location": {
-            "lines": {
-                "begin": 2,
-                "end": 2
-            },
-            "path": "Gemfile.lock"
-        },
-        "remediation_points": 5000000,
-        "severity": "normal",
-        "type": "Issue",
-        "fingerprint": "dc0e043c56c03c2ada6c448f1958cfcb"
-    },
-    {
-        "categories": [
-            "Security"
-        ],
-        "check_name": "Insecure Dependency",
-        "content": {
-            "body": "**Advisory**: CVE-2014-7819\n\n**Criticality**: Medium\n\n**URL**: https://groups.google.com/forum/#!topic/rubyonrails-security/doAVp0YaTqY\n\n**Solution**: upgrade to ~> 2.0.5, ~> 2.1.4, ~> 2.2.3, ~> 2.3.3, ~> 2.4.6, ~> 2.5.1, ~> 2.7.1, ~> 2.8.3, ~> 2.9.4, ~> 2.10.2, ~> 2.11.3, ~> 2.12.3, >= 3.0.0.beta.3"
-        },
-        "description": "Arbitrary file existence disclosure in Sprockets",
-        "location": {
-            "lines": {
-                "begin": 7,
-                "end": 7
-            },
-            "path": "Gemfile.lock"
-        },
-        "remediation_points": 500000,
-        "severity": "normal",
-        "type": "Issue",
-        "fingerprint": "d46fd8d3ccc9459f81fb4724ef158fdf"
-    }
-]
+  {
+    "categories": [
+      "Security"
+    ],
+    "check_name": "Insecure Source",
+    "content": {
+      "body": ""
+    },
+    "description": "Insecure Source URI found: http://rubygems.org/",
+    "location": {
+      "lines": {
+        "begin": 2,
+        "end": 2
+      },
+      "path": "Gemfile.lock"
+    },
+    "remediation_points": 5000000,
+    "severity": "normal",
+    "type": "Issue",
+    "fingerprint": "dc0e043c56c03c2ada6c448f1958cfcb"
+  },
+  {
+    "categories": [
+      "Security"
+    ],
+    "check_name": "Insecure Dependency",
+    "content": {
+      "body": "**Advisory**: CVE-2022-30123\n\n**Criticality**: Critical\n\n**URL**: https://groups.google.com/g/ruby-security-ann/c/LWB10kWzag8\n\n**Solution**: upgrade to >= 2.0.9.1, ~> 2.0.9, >= 2.1.4.1, ~> 2.1.4, >= 2.2.3.1"
+    },
+    "description": "Possible shell escape sequence injection vulnerability in Rack",
+    "location": {
+      "path": "Gemfile.lock",
+      "lines": {
+        "begin": 6,
+        "end": 6
+      }
+    },
+    "remediation_points": 50000000,
+    "severity": "normal",
+    "type": "Issue",
+    "fingerprint": "6a376055eeca86411f1c0ed705b3b98a"
+  },
+  {
+    "categories": [
+      "Security"
+    ],
+    "check_name": "Insecure Dependency",
+    "content": {
+      "body": "**Advisory**: CVE-2022-30122\n\n**Criticality**: High\n\n**URL**: https://groups.google.com/g/ruby-security-ann/c/L2Axto442qk\n\n**Solution**: upgrade to >= 2.0.9.1, ~> 2.0.9, >= 2.1.4.1, ~> 2.1.4, >= 2.2.3.1"
+    },
+    "description": "Denial of Service Vulnerability in Rack Multipart Parsing",
+    "location": {
+      "path": "Gemfile.lock",
+      "lines": {
+        "begin": 6,
+        "end": 6
+      }
+    },
+    "remediation_points": 50000000,
+    "severity": "critical",
+    "type": "Issue",
+    "fingerprint": "d8aa79ebf630c6b8a4d5cf2f01286f9c"
+  },
+  {
+    "categories": [
+      "Security"
+    ],
+    "check_name": "Insecure Dependency",
+    "content": {
+      "body": "**Advisory**: CVE-2020-8161\n\n**Criticality**: High\n\n**URL**: https://groups.google.com/forum/#!topic/ruby-security-ann/T4ZIsfRf2eA\n\n**Solution**: upgrade to ~> 2.1.3, >= 2.2.0"
+    },
+    "description": "Directory traversal in Rack::Directory app bundled with Rack",
+    "location": {
+      "path": "Gemfile.lock",
+      "lines": {
+        "begin": 6,
+        "end": 6
+      }
+    },
+    "remediation_points": 50000000,
+    "severity": "critical",
+    "type": "Issue",
+    "fingerprint": "bce85eaea420588144241f29821cb78d"
+  },
+  {
+    "categories": [
+      "Security"
+    ],
+    "check_name": "Insecure Dependency",
+    "content": {
+      "body": "**Advisory**: CVE-2020-8184\n\n**Criticality**: High\n\n**URL**: https://groups.google.com/g/rubyonrails-security/c/OWtmozPH9Ak\n\n**Solution**: upgrade to ~> 2.1.4, >= 2.2.3"
+    },
+    "description": "Percent-encoded cookies can be used to overwrite existing prefixed cookie names",
+    "location": {
+      "path": "Gemfile.lock",
+      "lines": {
+        "begin": 6,
+        "end": 6
+      }
+    },
+    "remediation_points": 50000000,
+    "severity": "critical",
+    "type": "Issue",
+    "fingerprint": "20ae609f117abfb10d58ab4038bbc649"
+  },
+  {
+    "categories": [
+      "Security"
+    ],
+    "check_name": "Insecure Dependency",
+    "content": {
+      "body": "**Advisory**: CVE-2019-16782\n\n**Criticality**: Medium\n\n**URL**: https://github.com/rack/rack/security/advisories/GHSA-hrqr-hxpp-chr3\n\n**Solution**: upgrade to ~> 1.6.12, >= 2.0.8"
+    },
+    "description": "Possible information leak / session hijack vulnerability",
+    "location": {
+      "path": "Gemfile.lock",
+      "lines": {
+        "begin": 6,
+        "end": 6
+      }
+    },
+    "remediation_points": 5000000,
+    "severity": "normal",
+    "type": "Issue",
+    "fingerprint": "bac4b040969df754dc593b82482e394f"
+  },
+  {
+    "categories": [
+      "Security"
+    ],
+    "check_name": "Insecure Dependency",
+    "content": {
+      "body": "**Advisory**: CVE-2018-16471\n\n**URL**: https://groups.google.com/forum/#!topic/ruby-security-ann/NAalCee8n6o\n\n**Solution**: upgrade to ~> 1.6.11, >= 2.0.6"
+    },
+    "description": "Possible XSS vulnerability in Rack",
+    "location": {
+      "path": "Gemfile.lock",
+      "lines": {
+        "begin": 6,
+        "end": 6
+      }
+    },
+    "remediation_points": 5000000,
+    "severity": "normal",
+    "type": "Issue",
+    "fingerprint": "5bfd48cd4526301acae4c4f98e8090e8"
+  },
+  {
+    "categories": [
+      "Security"
+    ],
+    "check_name": "Insecure Dependency",
+    "content": {
+      "body": "**Advisory**: CVE-2014-7819\n\n**Criticality**: Medium\n\n**URL**: https://groups.google.com/forum/#!topic/rubyonrails-security/doAVp0YaTqY\n\n**Solution**: upgrade to ~> 2.0.5, ~> 2.1.4, ~> 2.2.3, ~> 2.3.3, ~> 2.4.6, ~> 2.5.1, ~> 2.7.1, ~> 2.8.3, ~> 2.9.4, ~> 2.10.2, ~> 2.11.3, ~> 2.12.3, >= 3.0.0.beta.3"
+    },
+    "description": "CVE-2014-7819 rubygem-sprockets: arbitrary file existence disclosure",
+    "location": {
+      "path": "Gemfile.lock",
+      "lines": {
+        "begin": 7,
+        "end": 7
+      }
+    },
+    "remediation_points": 500000,
+    "severity": "normal",
+    "type": "Issue",
+    "fingerprint": "d46fd8d3ccc9459f81fb4724ef158fdf"
+  },
+  {
+    "categories": [
+      "Security"
+    ],
+    "check_name": "Insecure Dependency",
+    "content": {
+      "body": "**Advisory**: CVE-2018-3760\n\n**Criticality**: High\n\n**URL**: https://groups.google.com/forum/#!topic/ruby-security-ann/2S9Pwz2i16k\n\n**Solution**: upgrade to < 3.0.0, >= 2.12.5, < 4.0.0, >= 3.7.2, >= 4.0.0.beta8"
+    },
+    "description": "Path Traversal in Sprockets",
+    "location": {
+      "path": "Gemfile.lock",
+      "lines": {
+        "begin": 7,
+        "end": 7
+      }
+    },
+    "remediation_points": 5000000,
+    "severity": "critical",
+    "type": "Issue",
+    "fingerprint": "3e574413f7502654bc63250b9b3b29d7"
+  }
+]