- Sort Score
- Result 10 results
- Languages All
Results 1 - 10 of 52 for compromised (0.22 sec)
-
platforms/software/dependency-management/src/integTest/groovy/org/gradle/integtests/resolve/verification/DependencyVerificationIntegrityCheckIntegTest.groovy
This can indicate that a dependency has been compromised. Please carefully verify the checksums.""" : """Dependency verification failed for configuration ':compileClasspath': - On artifact foo-1.0.jar (org:foo:1.0) in repository 'maven': expected a 'sha1' checksum of '${fooChecksum}' but was '93d6c93d9a76d27ec3462e7b57de5df1eb45bc7b' This can indicate that a dependency has been compromised. Please carefully verify the checksums."""
Registered: Wed Jun 12 18:38:38 UTC 2024 - Last Modified: Fri Feb 02 07:31:22 UTC 2024 - 41.4K bytes - Viewed (0) -
platforms/software/dependency-management/src/main/java/org/gradle/api/internal/artifacts/ivyservice/ivyresolve/verification/report/AbstractTextDependencyVerificationReportRenderer.java
if (highLevelErrors.isMaybeCompromised()) { StringBuilder sb = new StringBuilder(); sb.append("This can indicate that a dependency has been compromised. Please carefully verify the "); if (highLevelErrors.hasFailedSignatures()) { sb.append("signatures and "); } sb.append("checksums.");
Registered: Wed Jun 12 18:38:38 UTC 2024 - Last Modified: Tue Oct 10 21:10:11 UTC 2023 - 2.7K bytes - Viewed (0) -
platforms/software/dependency-management/src/integTest/groovy/org/gradle/integtests/resolve/verification/DependencyVerificationSignatureCheckIntegTest.groovy
This can indicate that a dependency has been compromised. Please carefully verify the checksums.""" whenVerbose """Dependency verification failed for configuration ':compileClasspath': - On artifact foo-1.0.jar (org:foo:1.0) in repository 'maven': expected a 'sha256' checksum of 'invalid' but was '${getChecksum(foo, "sha256")}' This can indicate that a dependency has been compromised. Please carefully verify the checksums.""" }
Registered: Wed Jun 12 18:38:38 UTC 2024 - Last Modified: Thu Mar 21 14:42:50 UTC 2024 - 75.1K bytes - Viewed (0) -
platforms/documentation/docs/src/docs/userguide/dep-man/01-core-dependency-management/dependency_verification.adoc
** you can use <<#sec:trusting-several-checksums,`also-trust`>> to accept the additional checksums * the dependency was compromised ** immediately inform the maintainers of the library ** notify the repository maintainers of the compromised library
Registered: Wed Jun 12 18:38:38 UTC 2024 - Last Modified: Wed Feb 07 20:36:31 UTC 2024 - 56.7K bytes - Viewed (0) -
testing/distributions-integ-tests/src/integTest/groovy/org/gradle/DistributionIntegritySpec.groovy
/* * Integration test to verify the integrity of the dependencies. The goal is to be able to check the dependencies * even we assume that the Gradle binaries are compromised. Ultimately this test should run outside of the Gradle. */ @Override String getDistributionLabel() { 'bin' } @Override int getMaxDistributionSizeBytes() {
Registered: Wed Jun 12 18:38:38 UTC 2024 - Last Modified: Thu Apr 04 07:21:38 UTC 2024 - 3.1K bytes - Viewed (0) -
okhttp/src/test/java/okhttp3/internal/tls/CertificatePinnerChainValidationTest.kt
HeldCertificate.Builder() .serialNumber(3L) .certificateAuthority(0) .commonName("compromised intermediate") .signedBy(pinnedRoot) .build() val attackerIntermediate = HeldCertificate.Builder() .keyPair(attackerCa.keyPair) // Share keys between compromised CA and intermediate! .serialNumber(4L)
Registered: Sun Jun 16 04:42:17 UTC 2024 - Last Modified: Mon Jan 08 01:13:22 UTC 2024 - 23.8K bytes - Viewed (0) -
platforms/software/dependency-management/src/main/java/org/gradle/api/internal/artifacts/verification/model/Checksum.java
* from one repository to the other (either by end of lines, additional line * at the end of the file, ...). Because they are different doesn't mean that * they are compromised, so this is a facility for the user to declare "I know * I should use a single source of truth but the infrastructure is hard or * impossible to fix so let's trust this source". *
Registered: Wed Jun 12 18:38:38 UTC 2024 - Last Modified: Tue Oct 10 21:10:11 UTC 2023 - 3.9K bytes - Viewed (0) -
platforms/software/dependency-management/src/main/java/org/gradle/api/internal/artifacts/ivyservice/ivyresolve/verification/report/HtmlDependencyVerificationReportRenderer.java
" <p>This indicates that a dependency was <i>signed</i> but that the signature verification <b>failed</b>.</p>", " <p>This happens when a dependency was compromised or that the signature was made for a different artifact than the one you got.</p>", " <p>It's important that you <b>carefully review this problem</b>.</p>");
Registered: Wed Jun 12 18:38:38 UTC 2024 - Last Modified: Thu Mar 21 14:42:50 UTC 2024 - 20.8K bytes - Viewed (0) -
docs/security/README.md
#### Key rotation
Registered: Sun Jun 16 00:44:34 UTC 2024 - Last Modified: Sat Feb 12 00:51:25 UTC 2022 - 13.8K bytes - Viewed (0) -
mvnw.cmd
"If('%WRAPPER_SHA_256_SUM%' -ne $hash){"^ " Write-Output 'Error: Failed to validate Maven wrapper SHA-256, your Maven wrapper might be compromised.';"^ " Write-Output 'Investigate or delete %WRAPPER_JAR% to attempt a clean download.';"^ " Write-Output 'If you updated your Maven version, you need to update the specified wrapperSha256Sum property.';"^
Registered: Wed Jun 12 16:38:11 UTC 2024 - Last Modified: Mon Oct 16 20:48:20 UTC 2023 - 7.4K bytes - Viewed (0)