From b3938e7fa00d05325a774c0f1b45480484814597 Mon Sep 17 00:00:00 2001 From: Stuart Clements Date: Mon, 21 Oct 2019 12:55:44 +0200 Subject: [PATCH] Splitting system and project cve lists --- .../vulnerability_scanning/configure_system_whitelist.md | 2 +- .../working_with_projects/configure_project_whitelist.md | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/docs/harbor-doc-reorg/administration/vulnerability_scanning/configure_system_whitelist.md b/docs/harbor-doc-reorg/administration/vulnerability_scanning/configure_system_whitelist.md index 9377e8768..2c4a05956 100644 --- a/docs/harbor-doc-reorg/administration/vulnerability_scanning/configure_system_whitelist.md +++ b/docs/harbor-doc-reorg/administration/vulnerability_scanning/configure_system_whitelist.md @@ -2,7 +2,7 @@ When you run vulnerability scans, images that are subject to Common Vulnerabilities and Exposures (CVE) are identified. According to the severity of the CVE and your security settings, these images might not be permitted to run. As a system administrator, you can create whitelists of CVEs to ignore during vulnerability scanning. -You can set a system-wide CVE whitelist or you can set CVE whitelists on a per-project basis. +You can set a system-wide CVE whitelist or you can set CVE whitelists on a per-project basis. For information about per-project CVE whitelists, see [Configure a Per-Project CVE Whitelist](../../working_with_projects/configure_project_whitelist.md). System-wide CVE whitelists apply to all of the projects in a Harbor instance. diff --git a/docs/harbor-doc-reorg/working_with_projects/configure_project_whitelist.md b/docs/harbor-doc-reorg/working_with_projects/configure_project_whitelist.md index 0f5a91496..7049f64e5 100644 --- a/docs/harbor-doc-reorg/working_with_projects/configure_project_whitelist.md +++ b/docs/harbor-doc-reorg/working_with_projects/configure_project_whitelist.md @@ -2,7 +2,7 @@ When you run vulnerability scans, images that are subject to Common Vulnerabilities and Exposures (CVE) are identified. According to the severity of the CVE and your security settings, these images might not be permitted to run. You can create whitelists of CVEs to ignore during vulnerability scanning. -Harbor administrators can set a system-wide CVE whitelist. By default, the system whitelist is applied to all projects. Project administrators can configure different CVE whitelists for individual projects, that override the system whitelist. +Harbor administrators can set a system-wide CVE whitelist. For information about site-wide CVE whitelists, see [Configure System-Wide CVE Whitelists](../administration/vulnerability_scanning/configire_system_whitelist.md). By default, the system whitelist is applied to all projects. Project administrators can configure different CVE whitelists for individual projects, that override the system whitelist. 1. Go to **Projects**, select a project, and select **Configuration**. 1. Under **CVE whitelist**, select **Project whitelist**.