From bbed0a587f97506e72282269b9a273cf35554586 Mon Sep 17 00:00:00 2001
From: "mend-for-github-com[bot]"
 <50673670+mend-for-github-com[bot]@users.noreply.github.com>
Date: Wed, 15 Jan 2025 23:25:05 +0530
Subject: [PATCH 1/2] DLPX-93075 Configure Mend for cloud-init (#95)

* Add .whitesource configuration file

* DLPX-93075 Configure Mend for cloud-init

---------

Co-authored-by: mend-for-github-com[bot] <50673670+mend-for-github-com[bot]@users.noreply.github.com>
Co-authored-by: Shibasish Nandi <119420781+ShibasishDelphix@users.noreply.github.com>
---
 .whitesource | 48 ++++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 48 insertions(+)
 create mode 100644 .whitesource

diff --git a/.whitesource b/.whitesource
new file mode 100644
index 00000000..e82e82f3
--- /dev/null
+++ b/.whitesource
@@ -0,0 +1,48 @@
+{
+  "scanSettings": {
+    "configMode": "AUTO",
+    "configExternalURL": "",
+    "projectToken": "",
+    "enableLicenseViolations": "true",
+    "displayLicenseViolations": "true",
+    "enableIaC": "true",
+    "baseBranches": []
+  },
+  "scanSettingsSAST": {
+    "enableScan": true,
+    "scanPullRequests": true,
+    "incrementalScan": true,
+    "baseBranches": [],
+    "snippetSize": 10
+  },
+  "checkRunSettings": {
+    "vulnerableCheckRunConclusionLevel": "failure",
+    "displayMode": "diff",
+    "useMendCheckNames": true
+  },
+  "checkRunSettingsSAST": {
+    "checkRunConclusionLevel": "failure",
+    "severityThreshold": "high"
+  },
+  "issueSettings": {
+    "minSeverityLevel": "LOW",
+    "issueType": "DEPENDENCY"
+  },
+  "issueSettingsSAST": {
+    "minSeverityLevel": "high",
+    "issueType": "repo"
+  },
+  "remediateSettings": {
+    "workflowRules": {
+      "enabled": true
+    }
+  },
+   "imageSettings":{
+       "imageTracing":{
+           "enableImageTracingPR": false,
+           "addRepositoryCoordinate": false,
+           "addDockerfilePath": false,
+           "addMendIdentifier": false
+       }
+   }
+}
\ No newline at end of file

From 9dd1b8f19365271eab154394d97cd8c8974390e8 Mon Sep 17 00:00:00 2001
From: David Mendez <david.mendez@delphix.com>
Date: Wed, 26 Mar 2025 15:40:26 -0700
Subject: [PATCH 2/2] DLPX-93763 GCP cloud-init may allow privileged user
 creation

PR URL: https://www.github.com/delphix/cloud-init/pull/108
---
 config/cloud.cfg.tmpl | 1 -
 1 file changed, 1 deletion(-)

diff --git a/config/cloud.cfg.tmpl b/config/cloud.cfg.tmpl
index 82a7e0fe..6784c54d 100644
--- a/config/cloud.cfg.tmpl
+++ b/config/cloud.cfg.tmpl
@@ -134,7 +134,6 @@ cloud_init_modules:
   - ca_certs
 {% endif %}
   - rsyslog
-  - users_groups
   - ssh
   - set_passwords