NCL-9661 Update release labels

[rnc]

Checklist:

• Have you added unit tests for your change?

[github-actions]

Mend Scan Results

Status: ⚠️ Findings detected

⚠️ SCA findings detected

⚠️ SAST findings detected

SCA scan output

y-codec-http-4.1.132.Final.jar [2 HIGH, 4 MEDIUM]
					|-- netty-codec-4.1.132.Final.jar [1 HIGH]
				|-- netty-codec-http-4.1.132.Final.jar [2 HIGH, 4 MEDIUM]
					|-- netty-codec-4.1.132.Final.jar [1 HIGH]
				|-- netty-handler-proxy-4.1.132.Final.jar [1 HIGH]
					|-- netty-codec-http-4.1.132.Final.jar [2 HIGH, 4 MEDIUM]
					|-- netty-codec-socks-4.1.132.Final.jar
						|-- netty-codec-4.1.132.Final.jar [1 HIGH]
					|-- netty-codec-4.1.132.Final.jar [1 HIGH]
				|-- netty-resolver-dns-4.1.132.Final.jar
					|-- netty-codec-dns-4.1.132.Final.jar [1 HIGH]
						|-- netty-codec-4.1.132.Final.jar [1 HIGH]
					|-- netty-codec-4.1.132.Final.jar [1 HIGH]
|-- maven-scm-api-1.13.0.jar
	|-- plexus-utils-3.6.1.jar [1 HIGH]
|-- maven-scm-provider-jgit-1.13.0.jar
	|-- maven-scm-provider-git-commons-1.13.0.jar
		|-- plexus-utils-3.6.1.jar [1 HIGH]
	|-- plexus-utils-3.6.1.jar [1 HIGH]
	|-- org.eclipse.jgit-4.5.4.201711221230-r.jar [1 HIGH, 1 MEDIUM]
|-- maven-scm-provider-svnexe-1.13.0.jar
	|-- commons-lang-2.6.jar [1 MEDIUM]
	|-- maven-scm-provider-svn-commons-1.13.0.jar
		|-- plexus-utils-3.6.1.jar [1 HIGH]
	|-- plexus-utils-3.6.1.jar [1 HIGH]
testsuite-3.0.1-SNAPSHOT.jar
|-- application-3.0.1-SNAPSHOT.jar
	|-- quarkus-elytron-security-ldap-3.34.5.jar
		|-- quarkus-elytron-security-3.34.5.jar
			|-- quarkus-vertx-http-3.34.5.jar [1 HIGH]
		|-- wildfly-elytron-realm-ldap-2.8.4.Final.jar
			|-- wildfly-elytron-realm-2.8.4.Final.jar
				|-- wildfly-elytron-auth-util-2.8.4.Final.jar
					|-- sshd-common-2.17.1.jar
						|-- bcpkix-jdk18on-1.83.jar [1 MEDIUM]
	|-- quarkus-hibernate-validator-3.34.5.jar
		|-- quarkus-vertx-http-3.34.5.jar [1 HIGH]
	|-- quarkus-jdbc-postgresql-3.34.5.jar
		|-- postgresql-42.7.10.jar [1 HIGH]
	|-- quarkus-oidc-3.34.5.jar
		|-- quarkus-vertx-http-3.34.5.jar [1 HIGH]
	|-- quarkus-opentelemetry-3.34.5.jar
		|-- quarkus-grpc-common-3.34.5.jar
			|-- vertx-grpc-4.5.26.jar
				|-- grpc-netty-1.79.0.jar
					|-- netty-codec-http2-4.1.132.Final.jar [1 HIGH]
					|-- netty-handler-proxy-4.1.132.Final.jar [1 HIGH]
		|-- quarkus-tls-registry-3.34.5.jar
			|-- smallrye-private-key-pem-parser-0.9.2.jar
				|-- bcpkix-jdk18on-1.83.jar [1 MEDIUM]
					|-- bcutil-jdk18on-1.83.jar
						|-- bcprov-jdk18on-1.83.jar [2 CRITICAL, 1 MEDIUM]
				|-- bcprov-jdk18on-1.83.jar [2 CRITICAL, 1 MEDIUM]
		|-- quarkus-vertx-3.34.5.jar
			|-- quarkus-netty-3.34.5.jar
				|-- netty-codec-http2-4.1.132.Final.jar [1 HIGH]
				|-- netty-codec-http-4.1.132.Final.jar [2 HIGH, 4 MEDIUM]
				|-- netty-codec-4.1.132.Final.jar [1 HIGH]
	|-- quarkus-smallrye-health-3.34.5.jar
		|-- quarkus-vertx-http-3.34.5.jar [1 HIGH]
	|-- quarkus-smallrye-openapi-3.34.5.jar
		|-- quarkus-swagger-ui-3.34.5.jar
			|-- quarkus-vertx-http-3.34.5.jar [1 HIGH]
		|-- quarkus-vertx-http-3.34.5.jar [1 HIGH]
	|-- reports-rest-3.0.1-SNAPSHOT.jar
		|-- quarkus-rest-jackson-3.34.5.jar
			|-- quarkus-rest-3.34.5.jar
				|-- quarkus-vertx-http-3.34.5.jar [1 HIGH]
		|-- quarkus-websockets-3.34.5.jar
			|-- quarkus-vertx-http-3.34.5.jar [1 HIGH]
			|-- quarkus-websockets-client-3.34.5.jar
				|-- quarkus-http-websocket-core-5.4.0.jar
					|-- netty-codec-http-4.1.132.Final.jar [2 HIGH, 4 MEDIUM]
		|-- reports-backend-3.0.1-SNAPSHOT.jar
			|-- communication-3.0.1-SNAPSHOT.jar
				|-- quarkus-undertow-3.34.5.jar
					|-- quarkus-http-core-5.4.0.jar
						|-- netty-codec-http-4.1.132.Final.jar [2 HIGH, 4 MEDIUM]
					|-- quarkus-vertx-http-3.34.5.jar [1 HIGH]
				|-- galley-cache-partyline-1.22-jakarta.jar
					|-- partyline-2.4.jar
						|-- infinispan-core-9.4.24.Final.jar [1 HIGH, 1 MEDIUM]
				|-- galley-transport-httpclient-1.22-jakarta.jar
					|-- jhttpc-1.17.jar
						|-- bcpkix-jdk18on-1.83.jar [1 MEDIUM]
						|-- bcprov-jdk18on-1.83.jar [2 CRITICAL, 1 MEDIUM]
				|-- source-code-manager-3.0.1-SNAPSHOT.jar
					|-- quarkus-quartz-3.34.5.jar
						|-- quarkus-scheduler-3.34.5.jar
							|-- quarkus-vertx-http-3.34.5.jar [1 HIGH]
					|-- maven-scm-api-1.13.0.jar
						|-- plexus-utils-3.6.1.jar [1 HIGH]
					|-- maven-scm-provider-jgit-1.13.0.jar
						|-- maven-scm-provider-git-commons-1.13.0.jar
							|-- plexus-utils-3.6.1.jar [1 HIGH]
						|-- plexus-utils-3.6.1.jar [1 HIGH]
						|-- org.eclipse.jgit-4.5.4.201711221230-r.jar [1 HIGH, 1 MEDIUM]
					|-- maven-scm-provider-svnexe-1.13.0.jar
						|-- commons-lang-2.6.jar [1 MEDIUM]
						|-- maven-scm-provider-svn-commons-1.13.0.jar
							|-- plexus-utils-3.6.1.jar [1 HIGH]
						|-- plexus-utils-3.6.1.jar [1 HIGH]
|-- rest-client-jakarta-3.4.5.jar
	|-- rest-client-3.4.5-jakarta.jar
		|-- vertx-core-4.5.26.jar
			|-- netty-codec-haproxy-4.1.132.Final.jar
				|-- netty-codec-4.1.132.Final.jar [1 HIGH]
			|-- netty-codec-http2-4.1.132.Final.jar [1 HIGH]
				|-- netty-codec-http-4.1.132.Final.jar [2 HIGH, 4 MEDIUM]
				|-- netty-codec-4.1.132.Final.jar [1 HIGH]
			|-- netty-codec-http-4.1.132.Final.jar [2 HIGH, 4 MEDIUM]
				|-- netty-codec-4.1.132.Final.jar [1 HIGH]
			|-- netty-handler-proxy-4.1.132.Final.jar [1 HIGH]
				|-- netty-codec-http-4.1.132.Final.jar [2 HIGH, 4 MEDIUM]
				|-- netty-codec-socks-4.1.132.Final.jar
					|-- netty-codec-4.1.132.Final.jar [1 HIGH]
				|-- netty-codec-4.1.132.Final.jar [1 HIGH]
			|-- netty-handler-4.1.132.Final.jar
				|-- netty-codec-4.1.132.Final.jar [1 HIGH]
			|-- netty-resolver-dns-4.1.132.Final.jar
				|-- netty-codec-dns-4.1.132.Final.jar [1 HIGH]
					|-- netty-codec-4.1.132.Final.jar [1 HIGH]
				|-- netty-codec-4.1.132.Final.jar [1 HIGH]


No Policy violations were detected

Project 'dependency-analysis' was updated, for more information, visit the Mend platform: https://ibmets.whitesourcesoftware.com/app/orgs/Enterprise%20Applications/applications/summary?project=17cd357b-3d0e-43ac-a982-661505cac482
Or the Core UI: https://ibmets.whitesourcesoftware.com/Wss/WSS.html#!project;token=d38fa0abfb554c9cac571a09497e0af3f534680889b74705ab11e416b1c07dd4

Mend AI scan succeeded.

Support Token: 1c637106766c647379ad09702bf5fbbcb1778748496784

SAST scan output

warning: 'info' method of 'org.slf4j.Logger' object could be abused to perform a Log Injection attack. User input reached a Log4j sink. (reports-rest/src/main/java/org/jboss/da/rest/reports/Reports.java:142)
warning: 'info' method of 'org.slf4j.Logger' object could be abused to perform a Log Injection attack. User input reached a Log4j sink. (reports-rest/src/main/java/org/jboss/da/rest/reports/Reports.java:140)
warning: 'info' method of 'org.slf4j.Logger' object could be abused to perform a Log Injection attack. User input reached a Log4j sink. (reports-rest/src/main/java/org/jboss/da/rest/reports/Reports.java:122)
warning: 'info' method of 'org.slf4j.Logger' object could be abused to perform a Log Injection attack. User input reached a Log4j sink. (source-code-manager/src/main/java/org/jboss/da/scm/impl/SCMImpl.java:69)
warning: 'info' method of 'org.slf4j.Logger' object could be abused to perform a Log Injection attack. User input reached a Log4j sink. (reports-rest/src/main/java/org/jboss/da/rest/reports/Reports.java:124)
warning: 'info' method of 'org.slf4j.Logger' object could be abused to perform a Log Injection attack. User input reached a Log4j sink. (reports-backend/src/main/java/org/jboss/da/reports/impl/ReportsGeneratorImpl.java:571)
warning: 'info' method of 'org.slf4j.Logger' object could be abused to perform a Log Injection attack. User input reached a Log4j sink. (reports-rest/src/main/java/org/jboss/da/rest/reports/Reports.java:101)
warning: 'info' method of 'org.slf4j.Logger' object could be abused to perform a Log Injection attack. User input reached a Log4j sink. (reports-rest/src/main/java/org/jboss/da/rest/reports/Reports.java:103)
warning: 'info' method of 'org.slf4j.Logger' object could be abused to perform a Log Injection attack. User input reached a Log4j sink. (source-code-manager/src/main/java/org/jboss/da/scm/impl/SCMImpl.java:44)

Full logs and artifacts