Comments (14)
Updating issue after ping interval. Status:
Project is out of compliance with Binary Artifacts policy: binaries present in source code
Rule Description
Binary Artifacts are an increased security risk in your repository. Binary artifacts cannot be reviewed, allowing the introduction of possibly obsolete or maliciously subverted executables. For more information see the Security Scorecards Documentation for Binary Artifacts.
Remediation Steps
To remediate, remove the generated executable artifacts from the repository.
Artifacts Found
- grr/core/executables/windows/GRRNanny_Win32.exe
- grr/core/executables/windows/GRRNanny_x64.exe
- grr/core/executables/windows/templates/unzipsfx/unzipsfx-amd64.exe
- grr/core/executables/windows/templates/unzipsfx/unzipsfx-i386.exe
- grr/test/grr_response_test/test_data/fingerprint/SoftwareUpdate.exe
- grr/test/grr_response_test/test_data/fingerprint/pciide.sys
- grr/test/grr_response_test/test_data/fingerprint/simple
- grr/test/grr_response_test/test_data/linux_hello
- grr/test/grr_response_test/test_data/win_hello.exe
Additional Information
This policy is drawn from Security Scorecards, which is a tool that scores a project's adherence to security best practices. You may wish to run a Scorecards scan directly on this repository for more details.
from grr.
Mentioned binaries are not build artifacts, but are used for client building and tests.
from grr.
Reopening issue. Status:
Project is out of compliance with Binary Artifacts policy: binaries present in source code
Rule Description
Binary Artifacts are an increased security risk in your repository. Binary artifacts cannot be reviewed, allowing the introduction of possibly obsolete or maliciously subverted executables. For more information see the Security Scorecards Documentation for Binary Artifacts.
Remediation Steps
To remediate, remove the generated executable artifacts from the repository.
Artifacts Found
- grr/core/executables/windows/GRRNanny_Win32.exe
- grr/core/executables/windows/GRRNanny_x64.exe
- grr/core/executables/windows/templates/unzipsfx/unzipsfx-amd64.exe
- grr/core/executables/windows/templates/unzipsfx/unzipsfx-i386.exe
- grr/test/grr_response_test/test_data/fingerprint/SoftwareUpdate.exe
- grr/test/grr_response_test/test_data/fingerprint/pciide.sys
- grr/test/grr_response_test/test_data/fingerprint/simple
- grr/test/grr_response_test/test_data/linux_hello
- grr/test/grr_response_test/test_data/win_hello.exe
Additional Information
This policy is drawn from Security Scorecards, which is a tool that scores a project's adherence to security best practices. You may wish to run a Scorecards scan directly on this repository for more details.
from grr.
Updating issue after ping interval. Status:
Project is out of compliance with Binary Artifacts policy: binaries present in source code
Rule Description
Binary Artifacts are an increased security risk in your repository. Binary artifacts cannot be reviewed, allowing the introduction of possibly obsolete or maliciously subverted executables. For more information see the Security Scorecards Documentation for Binary Artifacts.
Remediation Steps
To remediate, remove the generated executable artifacts from the repository.
Artifacts Found
- grr/core/executables/windows/GRRNanny_Win32.exe
- grr/core/executables/windows/GRRNanny_x64.exe
- grr/core/executables/windows/templates/unzipsfx/unzipsfx-amd64.exe
- grr/core/executables/windows/templates/unzipsfx/unzipsfx-i386.exe
- grr/test/grr_response_test/test_data/fingerprint/SoftwareUpdate.exe
- grr/test/grr_response_test/test_data/fingerprint/pciide.sys
- grr/test/grr_response_test/test_data/fingerprint/simple
- grr/test/grr_response_test/test_data/linux_hello
- grr/test/grr_response_test/test_data/win_hello.exe
Additional Information
This policy is drawn from Security Scorecards, which is a tool that scores a project's adherence to security best practices. You may wish to run a Scorecards scan directly on this repository for more details.
from grr.
Updating issue after ping interval. Status:
Project is out of compliance with Binary Artifacts policy: binaries present in source code
Rule Description
Binary Artifacts are an increased security risk in your repository. Binary artifacts cannot be reviewed, allowing the introduction of possibly obsolete or maliciously subverted executables. For more information see the Security Scorecards Documentation for Binary Artifacts.
Remediation Steps
To remediate, remove the generated executable artifacts from the repository.
Artifacts Found
- grr/core/executables/windows/GRRNanny_Win32.exe
- grr/core/executables/windows/GRRNanny_x64.exe
- grr/core/executables/windows/templates/unzipsfx/unzipsfx-amd64.exe
- grr/core/executables/windows/templates/unzipsfx/unzipsfx-i386.exe
- grr/test/grr_response_test/test_data/fingerprint/SoftwareUpdate.exe
- grr/test/grr_response_test/test_data/fingerprint/pciide.sys
- grr/test/grr_response_test/test_data/fingerprint/simple
- grr/test/grr_response_test/test_data/linux_hello
- grr/test/grr_response_test/test_data/win_hello.exe
Additional Information
This policy is drawn from Security Scorecards, which is a tool that scores a project's adherence to security best practices. You may wish to run a Scorecards scan directly on this repository for more details.
from grr.
Reopening issue. See its status below.
Project is out of compliance with Binary Artifacts policy: binaries present in source code
Rule Description
Binary Artifacts are an increased security risk in your repository. Binary artifacts cannot be reviewed, allowing the introduction of possibly obsolete or maliciously subverted executables. For more information see the Security Scorecards Documentation for Binary Artifacts.
Remediation Steps
To remediate, remove the generated executable artifacts from the repository.
Artifacts Found
- grr/test/grr_response_test/test_data/fingerprint/SoftwareUpdate.exe
- grr/test/grr_response_test/test_data/fingerprint/pciide.sys
- grr/test/grr_response_test/test_data/fingerprint/simple
- grr/test/grr_response_test/test_data/linux_hello
- grr/test/grr_response_test/test_data/win_hello.exe
Additional Information
This policy is drawn from Security Scorecards, which is a tool that scores a project's adherence to security best practices. You may wish to run a Scorecards scan directly on this repository for more details.
from grr.
Updating issue after ping interval. See its status below.
Project is out of compliance with Binary Artifacts policy: binaries present in source code
Rule Description
Binary Artifacts are an increased security risk in your repository. Binary artifacts cannot be reviewed, allowing the introduction of possibly obsolete or maliciously subverted executables. For more information see the Security Scorecards Documentation for Binary Artifacts.
Remediation Steps
To remediate, remove the generated executable artifacts from the repository.
Artifacts Found
- grr/test/grr_response_test/test_data/fingerprint/SoftwareUpdate.exe
- grr/test/grr_response_test/test_data/fingerprint/pciide.sys
- grr/test/grr_response_test/test_data/fingerprint/simple
- grr/test/grr_response_test/test_data/linux_hello
- grr/test/grr_response_test/test_data/win_hello.exe
Additional Information
This policy is drawn from Security Scorecards, which is a tool that scores a project's adherence to security best practices. You may wish to run a Scorecards scan directly on this repository for more details.
from grr.
Updating issue after ping interval. See its status below.
Project is out of compliance with Binary Artifacts policy: binaries present in source code
Rule Description
Binary Artifacts are an increased security risk in your repository. Binary artifacts cannot be reviewed, allowing the introduction of possibly obsolete or maliciously subverted executables. For more information see the Security Scorecards Documentation for Binary Artifacts.
Remediation Steps
To remediate, remove the generated executable artifacts from the repository.
Artifacts Found
- grr/test/grr_response_test/test_data/fingerprint/SoftwareUpdate.exe
- grr/test/grr_response_test/test_data/fingerprint/pciide.sys
- grr/test/grr_response_test/test_data/fingerprint/simple
- grr/test/grr_response_test/test_data/linux_hello
- grr/test/grr_response_test/test_data/win_hello.exe
Additional Information
This policy is drawn from Security Scorecards, which is a tool that scores a project's adherence to security best practices. You may wish to run a Scorecards scan directly on this repository for more details.
from grr.
Policy is now in compliance. Closing issue.
from grr.
Reopening issue. See its status below.
Project is out of compliance with Binary Artifacts policy: binaries present in source code
Rule Description
Binary Artifacts are an increased security risk in your repository. Binary artifacts cannot be reviewed, allowing the introduction of possibly obsolete or maliciously subverted executables. For more information see the Security Scorecards Documentation for Binary Artifacts.
Remediation Steps
To remediate, remove the generated executable artifacts from the repository.
Artifacts Found
- grr/test/grr_response_test/test_data/fingerprint/SoftwareUpdate.exe
- grr/test/grr_response_test/test_data/fingerprint/pciide.sys
- grr/test/grr_response_test/test_data/fingerprint/simple
- grr/test/grr_response_test/test_data/linux_hello
- grr/test/grr_response_test/test_data/win_hello.exe
Additional Information
This policy is drawn from Security Scorecards, which is a tool that scores a project's adherence to security best practices. You may wish to run a Scorecards scan directly on this repository for more details.
from grr.
Updating issue after ping interval. See its status below.
Project is out of compliance with Binary Artifacts policy: binaries present in source code
Rule Description
Binary Artifacts are an increased security risk in your repository. Binary artifacts cannot be reviewed, allowing the introduction of possibly obsolete or maliciously subverted executables. For more information see the Security Scorecards Documentation for Binary Artifacts.
Remediation Steps
To remediate, remove the generated executable artifacts from the repository.
Artifacts Found
- grr/test/grr_response_test/test_data/fingerprint/SoftwareUpdate.exe
- grr/test/grr_response_test/test_data/fingerprint/pciide.sys
- grr/test/grr_response_test/test_data/fingerprint/simple
- grr/test/grr_response_test/test_data/linux_hello
- grr/test/grr_response_test/test_data/win_hello.exe
Additional Information
This policy is drawn from Security Scorecards, which is a tool that scores a project's adherence to security best practices. You may wish to run a Scorecards scan directly on this repository for more details.
from grr.
Updating issue after ping interval. See its status below.
Project is out of compliance with Binary Artifacts policy: binaries present in source code
Rule Description
Binary Artifacts are an increased security risk in your repository. Binary artifacts cannot be reviewed, allowing the introduction of possibly obsolete or maliciously subverted executables. For more information see the Security Scorecards Documentation for Binary Artifacts.
Remediation Steps
To remediate, remove the generated executable artifacts from the repository.
Artifacts Found
- grr/test/grr_response_test/test_data/fingerprint/SoftwareUpdate.exe
- grr/test/grr_response_test/test_data/fingerprint/pciide.sys
- grr/test/grr_response_test/test_data/fingerprint/simple
- grr/test/grr_response_test/test_data/linux_hello
- grr/test/grr_response_test/test_data/win_hello.exe
Additional Information
This policy is drawn from Security Scorecards, which is a tool that scores a project's adherence to security best practices. You may wish to run a Scorecards scan directly on this repository for more details.
from grr.
Updating issue after ping interval. See its status below.
Project is out of compliance with Binary Artifacts policy: binaries present in source code
Rule Description
Binary Artifacts are an increased security risk in your repository. Binary artifacts cannot be reviewed, allowing the introduction of possibly obsolete or maliciously subverted executables. For more information see the Security Scorecards Documentation for Binary Artifacts.
Remediation Steps
To remediate, remove the generated executable artifacts from the repository.
Artifacts Found
- grr/test/grr_response_test/test_data/fingerprint/SoftwareUpdate.exe
- grr/test/grr_response_test/test_data/fingerprint/pciide.sys
- grr/test/grr_response_test/test_data/fingerprint/simple
- grr/test/grr_response_test/test_data/linux_hello
- grr/test/grr_response_test/test_data/win_hello.exe
Additional Information
This policy is drawn from Security Scorecards, which is a tool that scores a project's adherence to security best practices. You may wish to run a Scorecards scan directly on this repository for more details.
from grr.
Related Issues (20)
- Feature Request: Enable client installer to accept command line arguments for assigning labels at installation time HOT 1
- GRR on single port with Docker deployment HOT 1
- ETA for next release (Ubuntu 20.04LTS or 22.04LTS) HOT 1
- Installation issue GRR HOT 2
- Error unpacking grr-server_3.4.6-7_amd64.deb HOT 1
- Installation of the Zeek/Linux using the docker pull Repo : Error encountered as i tried to install FleetSpeak Service on Windows Client(dbg_GRR_3.4.6.7_amd64.msi/GRR_3.4.6.7_amd64.msi HOT 1
- grr-server_3.4.6-7 on Ubuntu 22.04 - Unmet Dependency HOT 1
- [GUI] Upgrade fsevents package
- Latest Docker image out of date HOT 2
- Need to update `cryptography` module version for running on Apple Silicon M1 architecture. HOT 5
- GRR Client Crashes "Serialized message too large" HOT 7
- Windows x86 client absent HOT 1
- Launch binaries failed with "Error 1406: Data too long for column 'data_value' at row 1" HOT 1
- Client: ValueError: FLEETSPEAK_COMMS_CHANNEL_INFD is not set HOT 2
- Windows on ARM, Support? HOT 2
- Condition logic prevents some valid artifacts from being collected on Windows 10 HOT 1
- Elasticsearch output plugin - Errors on _bulk api post HOT 12
- GRR Client installation error - Permission Denied (PublicKey) HOT 1
- grr_api_client to Werkzeug 2.x
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from grr.