-
Notifications
You must be signed in to change notification settings - Fork 3.4k
Does not currently pass VHD scanning #31491
Copy link
Copy link
Open
Labels
Security-IssuebugThis issue requires a change to an existing behavior in the product in order to be resolved.This issue requires a change to an existing behavior in the product in order to be resolved.customer-reportedIssues that are reported by GitHub users external to the Azure organization.Issues that are reported by GitHub users external to the Azure organization.
Description
Metadata
Metadata
Assignees
Labels
Security-IssuebugThis issue requires a change to an existing behavior in the product in order to be resolved.This issue requires a change to an existing behavior in the product in order to be resolved.customer-reportedIssues that are reported by GitHub users external to the Azure organization.Issues that are reported by GitHub users external to the Azure organization.
Type
Fields
Give feedbackNo fields configured for issues without a type.
Describe the bug
Transient dependency of the python azure-cli-core package on knack to pygments is resulting in a failed VHD scan when attempting to verify an image with azure. See the direct issue raised with pygments at: pygments/pygments#2892
Related command
az
Errors
Malware detected on your VHD and the list of filenames includes (Malware detected on your VHD and the list of filenames includes (Image digestId: , File name: templates.cpython-312.pyc, Malware Information: Avira bitdefender ConfirmedMaliciousURL hXXps[:]//gizmojo[.]org/templating? ) .Please fix the issues with these files and resubmit the request
Issue script & Debug output
az
Expected behavior
Clean scan.
Environment Summary
From pipdeptree:
├── azure-cli-core [required: ==2.72.0, installed: 2.72.0]
...
│ ├── knack [required: ~=0.11.0, installed: 0.11.0]
...
│ │ ├── Pygments [required: Any, installed: 2.19.1]
Additional context
No response