From b48bab1c000d0e4eb741cda248b442711b35a6ae Mon Sep 17 00:00:00 2001 From: christianpaquin <> Date: Sun, 18 Aug 2024 12:42:43 +0000 Subject: [PATCH] daily dir and audit snapshot --- logs/daily_audit.json | 45 ++++------------------------- logs/daily_dir_snapshot.json | 56 +++++++++++++----------------------- 2 files changed, 26 insertions(+), 75 deletions(-) diff --git a/logs/daily_audit.json b/logs/daily_audit.json index 6ba8dac..329ee85 100644 --- a/logs/daily_audit.json +++ b/logs/daily_audit.json @@ -1,6 +1,6 @@ { "directory": "https://raw.githubusercontent.com/the-commons-project/vci-directory/main/vci-issuers.json", - "auditTime": "2024-08-17T12:32:28Z", + "auditTime": "2024-08-18T12:35:11Z", "issuerCount": 634, "issuersWithErrors": [ { @@ -208,7 +208,7 @@ }, "crls": [], "errors": [ - "TimeoutError: Timeout awaiting 'request' for 5000ms" + "HTTPError: Response code 404 (Not Found)" ] }, { @@ -1124,7 +1124,7 @@ "keys": [], "crls": [], "errors": [ - "RequestError: Client network socket disconnected before secure TLS connection was established" + "RequestError: read ECONNRESET" ] }, { @@ -1207,26 +1207,6 @@ "Issuer key endpoint's CORS 'access-control-allow-origin' header *, * does not match the requested origin" ] }, - { - "issuer": { - "iss": "https://retailepicfhir-uat.cvshealth.com/FhirProxyTST/api/epic/2021/Security/Open/EcKeys/32001/SHC", - "name": "CVS Health", - "website": "https://care.cvs.com/" - }, - "keys": [], - "tlsDetails": { - "version": "TLSv1.3", - "cipher": "TLS_AES_256_GCM_SHA384", - "kexAlg": "X25519, 253 bits", - "authAlg": "RSA-PSS", - "pubKeySize": "2048", - "compression": "NONE" - }, - "crls": [], - "errors": [ - "HTTPError: Response code 503 (Service Unavailable)" - ] - }, { "issuer": { "iss": "https://epicnsproxy.chop.edu/fhir/api/epic/2021/Security/Open/EcKeys/32001/SHC", @@ -1316,7 +1296,7 @@ "keys": [], "crls": [], "errors": [ - "RequestError: write EPROTO 140233968719744:error:14094458:SSL routines:ssl3_read_bytes:tlsv1 unrecognized name:../deps/openssl/openssl/ssl/record/rec_layer_s3.c:1563:SSL alert number 112\n" + "RequestError: write EPROTO 140715838371712:error:14094458:SSL routines:ssl3_read_bytes:tlsv1 unrecognized name:../deps/openssl/openssl/ssl/record/rec_layer_s3.c:1563:SSL alert number 112\n" ] } ], @@ -1384,21 +1364,8 @@ "HCA National", "West Tennessee Healthcare" ], - "previousAuditTime": "2024-08-16T12:35:47Z", + "previousAuditTime": "2024-08-17T12:32:28Z", "newIssuerCount": 0, "deletedIssuerCount": 0, - "removedKids": [ - { - "iss": "https://epiclbsprxyprodpass.houstonmethodist.org/PRD-FHIR/api/epic/2021/Security/Open/EcKeys/32001/SHC", - "kids": [ - "SArj0J9FU7dr183eb1Sd_n6-WsFayMhxjrc1EIDvps4" - ] - }, - { - "iss": "https://retailepicfhir-uat.cvshealth.com/FhirProxyTST/api/epic/2021/Security/Open/EcKeys/32001/SHC", - "kids": [ - "R6-vROogzwE51ZIHxRl7tp8SSRoAfMcGeOoF_G2VGlo" - ] - } - ] + "removedKids": [] } \ No newline at end of file diff --git a/logs/daily_dir_snapshot.json b/logs/daily_dir_snapshot.json index 3500f88..e3d1fcd 100644 --- a/logs/daily_dir_snapshot.json +++ b/logs/daily_dir_snapshot.json @@ -1,6 +1,6 @@ { "directory": "https://raw.githubusercontent.com/the-commons-project/vci-directory/main/vci-issuers.json", - "time": "2024-08-17T12:32:28Z", + "time": "2024-08-18T12:35:11Z", "issuerInfo": [ { "issuer": { @@ -5564,7 +5564,7 @@ ], "tlsDetails": { "version": "TLSv1.3", - "cipher": "TLS_CHACHA20_POLY1305_SHA256", + "cipher": "TLS_AES_256_GCM_SHA384", "kexAlg": "ECDH, prime256v1, 256 bits", "authAlg": "RSA-PSS", "pubKeySize": "2048", @@ -7356,7 +7356,7 @@ }, "crls": [], "errors": [ - "TimeoutError: Timeout awaiting 'request' for 5000ms" + "HTTPError: Response code 404 (Not Found)" ] }, { @@ -8041,8 +8041,8 @@ ], "tlsDetails": { "version": "TLSv1.2", - "cipher": "DHE-RSA-AES256-GCM-SHA384", - "kexAlg": "DH, 2048 bits", + "cipher": "ECDHE-RSA-AES256-SHA384", + "kexAlg": "ECDH, prime256v1, 256 bits", "authAlg": "RSA", "pubKeySize": "2048", "compression": "NONE" @@ -9834,14 +9834,6 @@ "crv": "P-256" } ], - "tlsDetails": { - "version": "TLSv1.2", - "cipher": "ECDHE-RSA-AES256-GCM-SHA384", - "kexAlg": "ECDH, secp521r1, 521 bits", - "authAlg": "RSA", - "pubKeySize": "2048", - "compression": "NONE" - }, "crls": [], "errors": [] }, @@ -12158,7 +12150,7 @@ "tlsDetails": { "version": "TLSv1.2", "cipher": "ECDHE-RSA-AES256-SHA384", - "kexAlg": "ECDH, secp521r1, 521 bits", + "kexAlg": "ECDH, prime256v1, 256 bits", "authAlg": "RSA", "pubKeySize": "2048", "compression": "NONE" @@ -14239,14 +14231,6 @@ "crv": "P-256" } ], - "tlsDetails": { - "version": "TLSv1.2", - "cipher": "ECDHE-RSA-AES256-GCM-SHA384", - "kexAlg": "ECDH, prime256v1, 256 bits", - "authAlg": "RSA", - "pubKeySize": "2048", - "compression": "NONE" - }, "crls": [], "errors": [] }, @@ -16475,14 +16459,6 @@ "crv": "P-256" } ], - "tlsDetails": { - "version": "TLSv1.2", - "cipher": "ECDHE-RSA-AES256-GCM-SHA384", - "kexAlg": "ECDH, prime256v1, 256 bits", - "authAlg": "RSA", - "pubKeySize": "2048", - "compression": "NONE" - }, "crls": [], "errors": [] }, @@ -17949,7 +17925,7 @@ "keys": [], "crls": [], "errors": [ - "RequestError: Client network socket disconnected before secure TLS connection was established" + "RequestError: read ECONNRESET" ] }, { @@ -18859,7 +18835,17 @@ "name": "CVS Health", "website": "https://care.cvs.com/" }, - "keys": [], + "keys": [ + { + "x": "RPvq62GN6LEA9lcSjqhYtBDqJl7FFMPN52kCQq7xjfE", + "y": "MEzX6hkTT7SV5UdEMihyEwpZS_Mg25hPA7xcKfp9JCI", + "kid": "R6-vROogzwE51ZIHxRl7tp8SSRoAfMcGeOoF_G2VGlo", + "use": "sig", + "kty": "EC", + "alg": "ES256", + "crv": "P-256" + } + ], "tlsDetails": { "version": "TLSv1.3", "cipher": "TLS_AES_256_GCM_SHA384", @@ -18869,9 +18855,7 @@ "compression": "NONE" }, "crls": [], - "errors": [ - "HTTPError: Response code 503 (Service Unavailable)" - ] + "errors": [] }, { "issuer": { @@ -19433,7 +19417,7 @@ "keys": [], "crls": [], "errors": [ - "RequestError: write EPROTO 140233968719744:error:14094458:SSL routines:ssl3_read_bytes:tlsv1 unrecognized name:../deps/openssl/openssl/ssl/record/rec_layer_s3.c:1563:SSL alert number 112\n" + "RequestError: write EPROTO 140715838371712:error:14094458:SSL routines:ssl3_read_bytes:tlsv1 unrecognized name:../deps/openssl/openssl/ssl/record/rec_layer_s3.c:1563:SSL alert number 112\n" ] }, {