Cameron Johnston
Cameron Johnston
## Expected Behavior The `silence_check` and `silence_client` definitions implemented in this cookbook should use the [new native silencing implementation added in Sensu 0.26](https://sensuapp.org/docs/0.26/reference/silencing.html). ## Current Behavior The `silence_check` and `silence_client`...
## Expected Behavior Cookbook should implement installation of Sensu on macos as it is a [supported platform](https://sensuapp.org/docs/latest/overview/platforms.html) for Sensu Core. ## Current Behavior The cookbook does not support installation on...
## Expected Behavior It should be possible to specify `proxy_requests` attributes directly on a `sensu_check` resource. ## Current Behavior `proxy_requests` attributes must be passed via `sensu_check` `additional` property. ## Possible...
## Feature Suggestion As a sensuctl user I can determine the version of the backends I am communicating with ## Possible Implementation `sensuctl cluster version` ? ## Context In a...
## Expected Behavior Network interface attributes automatically detected by sensu-agent are easy to insert into a command string using token substitution ## Current Behavior Automatically detected network interface attributes are...
## Expected Behavior Dependencies should remain up-to-date to address known security vulnerabilities. ## Current Behavior uchiwa-web ships Bootstrap 3.1.1 which is subject to XSS vulnerabilities: * [CVE-2018-14040](https://nvd.nist.gov/vuln/detail/CVE-2018-14040) * [CVE-2018-14041](https://nvd.nist.gov/vuln/detail/CVE-2018-14041) ##...
## Expected Behavior Uchiwa implements a referrer policy to minimize disclosure of URL and other sensitive information in cross-site requests ## Current Behavior Referrer policy is not implemented. ## Possible...
## Expected Behavior Dependencies should remain up-to-date to address known security vulnerabilities. ## Current Behavior uchiwa-web ships Moment.js 2.16.0 which is subject to known vulnerabilities: * [CVE-2017-18214](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18214) * [CWE-400](https://cwe.mitre.org/data/definitions/400.html) ##...
## Expected Behavior Uchiwa supports HTTP Strict Transport Security (HSTS) as a mechanism for protecting against protocol downgrade attacks and cookie hijacking. ## Current Behavior Uchiwa does not implement HSTS...
## Expected Behavior Dependencies should remain up-to-date to address potential security vulnerabilities. ## Current Behavior uchiwa-web ships Angular 1.6.10 ## Possible Solution Upgrade to latest 1.7 release ## Context The...