From: osgn422w <gervais-martial.ngueko@intl.att.com>
Date: Tue, 4 Jun 2019 13:32:39 +0000 (+0200)
Subject: improve security
X-Git-Tag: 4.0.4~3
X-Git-Url: https://gerrit.onap.org/r/gitweb?a=commitdiff_plain;ds=sidebyside;h=20f2f6357dbff97aa4a085846150c230b399a478;p=clamp.git

improve security

Improve security section of release notes

Issue-ID: SECCOM-238

Change-Id: I8ab31bc1d759625781daeb45e1f6562d69ea6e9a
Signed-off-by: osgn422w <gervais-martial.ngueko@intl.att.com>
---

diff --git a/docs/release-notes.rst b/docs/release-notes.rst
index e5305e0e..547c9655 100644
--- a/docs/release-notes.rst
+++ b/docs/release-notes.rst
@@ -32,6 +32,16 @@ The main goal of the Dublin release was to:
 
 **Security Notes**
 
+*Fixed Security Issues*
+
+    - `OJSI-128 <https://jira.onap.org/browse/OJSI-128>`_ In default deployment CLAMP (clamp) exposes HTTP port 30258 outside of cluster.
+    - `OJSI-147 <https://jira.onap.org/browse/OJSI-147>`_ In default deployment CLAMP (cdash-kibana) exposes HTTP port 30290 outside of cluster.
+    - `OJSI-152 <https://jira.onap.org/browse/OJSI-152>`_ In default deployment CLAMP (clamp) exposes HTTP port 30295 outside of cluster.
+
+*Known Security Issues*
+
+*Known Vulnerabilities in Used Modules*
+
 CLAMP code has been formally scanned during build time using NexusIQ and all Critical vulnerabilities have been addressed, items that remain open have been assessed for risk and actions to be taken in future release. 
 The CLAMP open Critical security vulnerabilities and their risk assessment have been documented as part of the `project <https://wiki.onap.org/pages/viewpage.action?pageId=64003444>`_.