compliance
compliance copied to clipboard
Mirantis
Docker Enterprise Edition Security Controls for Compliance
Bumps [addressable](https://github.com/sporkmonger/addressable) from 2.5.1 to 2.8.0. Changelog Sourced from addressable's changelog. Addressable 2.8.0 fixes ReDoS vulnerability in Addressable::Template#match no longer replaces + with spaces in queries for non-http(s) schemes fixed...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Bumps [json](https://github.com/flori/json) from 2.0.2 to 2.3.1. Changelog Sourced from json's changelog. 2020-06-30 (2.3.1) Spelling and grammar fixes for comments. Pull request #191 by Josh Kline. Enhance generic JSON and #generate...
Bumps [rake](https://github.com/ruby/rake) from 12.0.0 to 13.0.1. Changelog *Sourced from [rake's changelog](https://github.com/ruby/rake/blob/master/History.rdoc).* > === 13.0.1 > > ==== Bug fixes > > * Fixed bug: Reenabled task raises previous exception on...
Welcome to [WhiteSource for GitHub.com](https://github.com/apps/whitesource-for-github-com)! This is an onboarding PR to help you understand and configure settings before WhiteSource starts scanning your repository for security vulnerabilities. :vertical_traffic_light: WhiteSource for GitHub.com...
![mend-for-github-com[bot] avatar](https://avatars.githubusercontent.com/in/30796?v=4 "mend-for-github-com[bot] avatar"){kind=avatar}
Bumps [excon](https://github.com/excon/excon) from 0.58.0 to 0.71.0. Changelog *Sourced from [excon's changelog](https://github.com/excon/excon/blob/master/changelog.txt).* > 0.71.0 2019-12-12 > ================= > > fix for leftover data with interrupted persistent connections > > 0.70.0 2019-12-02...
Bumps [rubyzip](https://github.com/rubyzip/rubyzip) from 1.2.1 to 1.3.0. Release notes *Sourced from [rubyzip's releases](https://github.com/rubyzip/rubyzip/releases).* > ## v1.3.0 > Security > > - Add `validate_entry_sizes` option so that callers can trust an entry's...
Bumps [ffi](https://github.com/ffi/ffi) from 1.9.18 to 1.11.1. Changelog *Sourced from [ffi's changelog](https://github.com/ffi/ffi/blob/master/CHANGELOG.md).* > 1.11.1 / 2019-05-20 > ------------------- > > Changed: > * Raise required ruby version to >=2.0. [#699](https://github-redirect.dependabot.com/ffi/ffi/issues/699), [#700](https://github-redirect.dependabot.com/ffi/ffi/issues/700)...
UCP 2.2.0 supports login session timeouts in minutes, but per https://github.com/docker/orca/issues/8904, this can only be accomplished via the UCP config TOML
Per https://www.hhs.gov/sites/default/files/nist-csf-to-hipaa-security-rule-crosswalk-02-22-2016-final.pdf and http://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-66r1.pdf, include mappings to HIPAA Security Rule