 |
Page History
Agenda - Wiki was down for meeting so minutes recorded in Word and pasted in. This has resulted in some formatting changes for this page.
EVS Discussion
Open System Tickets
| Description | Actions, Update | |
|---|---|---|
| NCI-SCTASK0750465 | Security team has flagged EVS stage host( nciws-p803) for JQuery vulnerability with full details as per below. | Eric asked us to remove it from lower tiers but we found no evidence of it there. It should be removed from Stage Jason sent email message to remove the jar from Stage. Appears that Systems was asking security team about location of file; sec team
ACTION: - wait till next week for update |
| NCI-INC0779210 | OUTAGE: NCIterms outage - Wed 9/27 → Thu 9/28 | Wait to watch status; ticket probably will be closed soon | OUTAGE: Outage continues: Tue 10/3 evening , Wed 10/4 | Note: there was an attack last night, Tue Oct 3 from 4:48 pm -> 5:10 pm.NCI-RITM0473138 | OUTAGE: Discuss DOS strategy, tactics with Systems | Deploy lexevscts2 to Prod | Requested 9/27 - no action yet. |
| ||
NCI-RITM0473138 | OUTAGE: Discuss DOS strategy, tactics with Systems | STATUS
|
NCI-RITM0471746 | Deploy lexevscts2 to Prod |
|
| SYSTEMS | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Systems | BACKGROUND: On Friday Sept 29th, we were asked to deploy a banner on public-facing websites if the government was shutdown. There was confusion about who was reponsible for which pages - and how to do it quickly (especially if systems groups goes to bare-bones support level. While the government was not shut down, we still want the ability to handle it better in the future. to be able to update public-facing pages with banners quickly and efficiently, with Consistent styling desired for all sites - in case the need ever arises again (in case of another shutdown/emergency/etc) ACTION:
ACTION: | SYSTEMS | EVS transition to virtual machines | Systems |
Application | URL | Developer/POC |
Term Browser | Guidehouse/Kim Ong | |
Metathesaurus Browser | Guidehouse/Kim Ong | |
Term Suggestion Application | Guidehouse/Kim Ong | |
EVS Explore | WCI/Brian Carlsen | |
EVSRESTAPI (Swagger Page) | WCI/Brian Carlsen | |
EVS website | Clint Malone? | |
Report Exporter | Mayo/Andrew Moore | |
LexEVS CTS2 docs | Mayo/Tracy Safran | |
LexEVS CTS2 Landing Page | Mayo/Tracy Safran | |
EVS Semantic Integration Platform | ESI/Ye Wu |
ACTION:
- Benson, Mark (NIH/NCI) [C] to schedule a mtg/ discuss a possible CSS file/ENV variable for banner message and report on
Monthly Planning and Focus
Completed Sprint - Sprint 212 (Sept 4 - Sept 29) – Burndown Report
Current Sprint - Sprint 213 (Oct 2 - Oct 27) LINK TO Jira Sprint 213
(see EVSREPEXP-475 -> 483)
RMI Retirement - in progress
Unfortunately, I do not have a detailed update at this time, other than there are efforts to update the test script. I believe that the the RMI is turned off on STAGE, and the test script would test other components to verity that there are no unseen side-effects.
- Improvements, Refactoring Code Debt, Feature development:
- LEXEVS-5341 Update Spring to Spring 6
- LEXEVSCTS2-453 Update CTS2 welcome with digital sytle requirements (header, footer, etc)
- Examine feasibility of Java 17
- BACKGROUND: a small number of LexEVS components (aka dependencies) are being phased off of java 8 (or are no longer being supported on java 8). We ideally want to use a current version of those components (dependencies). IF the current version of that component is only supported on Java 14 or later (just as an example), then we would have to migrate the ENTIRE LexEVS stack to Java 14 or later. (Note that the current Java version is Java 21 LTS, and the most popular non-LTS version is Java 14). So there is a risk that a vulnerability is found in the older version of the component/dependency and we would have to either migrate everything quickly to a new version, or not use that component (which might not be possible), or shutdown LexEVS entirely. Note that there are certain versions of Java which are "long-term support" versions - meaning that they will be supported for several years beyond non-LTS versions. LTS versions are Java 8, Java 11, Java 17, and Java 21.
- OBJECTIVE: find out what would it be like to upgrade from Java 8 LTS to Java 17 LTS. How hard would it be? How long might it take?
- LEXEVS-5361- Investigate Java 17
- Miscellaneous bug fixes (several small bugs that have been identified over time and need to be addressed)
- EVSREPEXP-491 resolve branch-download list not being displayed on chrome browser (now FIXED)
- EVSREPEXP-433 Security issue: set-value vulnerability (in progress)
- LEXEVSCTS2-452 test_associations_subject_of call revealed hierarchy bug
- EVSREPEXP-478 Feedback form is not coming up
- LEXEVS-5252 Read an Entity by URI throwing a 302 error
- LEXEVSCTS2-431 Service resource does not populate Service name/version
- Investigate ERROR messages (both reported by Jason Lucas, and in
catalina.out)
ACTIONS
- Benson, Mark (NIH/NCI) [C] to add JIRA ticket to debug error messages found during outage to Sprint 213
- Coding complete on lexevs services - except for isolated dependencies
- The isolated dependencies largely depend on using an updated version of Java (e.g. they are using more current Java versions. Java 21 LTS is the current version. The more popular non-LTS Java version is Java 14)
- Scott is investigating costs and feasibility of Java 17 (see LEXEVS-5361 above)
- LEXEVSCTS2-447 javax-servlet - on hold, until we update Java 17
- LEXEVSCTS2-446 spring-boot - on hold, until we update Java 17
- Work on NCIt Browser - ehcache beta on dev. Kim approves promotion (Scott)
Vulnerable dependencies - in progress
- Red Herring: while Andrew was debugging, was getting "no results" for Concept codes – turns out it was service problems ?
- CLARIFICATION: Andrew clarified that the outage was with the API on DEV tier.
- Filed ticket: NCI-INC0779039 Hosting Application Outage - Missing or Incorrect Content
- The service was restarted, and the content (Concept Codes box) started showing data again.
- Improving unit testing is still in progress
EVSREPEXP-475- "Apply Digital Styling to Report Exporter" is now on PROD
- TADA/DEMO: https://evs.cancer.gov/report-exporter/
Feedback form
- Need to research approval procedure, Mark was asked to reach out to OCPL
- Andrew to supply copy of survey form from RE
ACTIONS
- Benson, Mark (NIH/NCI) [C] to report on info found out from OCPL schedule a mtg/ discuss a possible CSS file/ENV variable for banner message and report on
Monthly Planning and Focus
- Hibernate update in LexEVS. Version 5 to 6.
- NCItBrowser – ehcache. Merging into master to turn over to QA.
- Vulnerability issues updated in CTS2, looking at dependencies in LexEVS related to mybatis-spring.
- Will build scope document of Spring/Java changes over the next few weeks
EVSREPEXP-475- "Apply Digital Styling to Report Exporter" is now on PROD
- TADA/DEMO: https://evs.cancer.gov/report-exporter/
- Working on templating next
Statistics Dashboard
OBJECTIVE
- Met today. They will set Tracy up with Dev access to start planning dashboards.
- Access requested through service ticket.
Statistics Dashboard
OBJECTIVE
Complete Migration of Statistics Dashboard from SumoLogic to DataDog by March 2024
STATUS
The queries used in the Statistics Dashboard have been shared with < someone on migration team > (as of Sept 2023).
They are working on migrating from "SumoLogic" format to DataDog format
- SumoLogic Query:
- Data Dog Query
<note: removed images of DataDog vs SumoLogic queries, as they didn't add much to the discussion anyway >
ACTIONS
- Safran, Tracy (NIH/NCI) [C] ask how migration is going (show # of queries, # migrated, etc)
On Hold
Waiting on AWS team
Team Absences
Mayo Team - Tracy Oct 12,13. Andrew off Oct 27
MSC -
Leidos -
QA -
Gov -
Met today
Will do monthly terminology week starting
Then will work on META afterwards
DECIDED: Data Deployment should continue as planned - no reason to delay.
BROWSER UPDATES
Met today
- NCIt data on Prod
- Monthlies on Stage, need to be reviewed by QA.
- Metathesaurus slowed by Systems release schedule.
BROWSER UPDATES
- All covered above.
- Kim will keep track of the merges and will review when ready.
QA UPDATES
- 09d testing completed on ncim and ncit browsers on Prod
- RC on Report Exporter being tested on QA.
note outage discussion above
QA UPDATES
Terminology Updates and Schedule
Everyone is humbly asked to complete NIH Anti-Harassment training as soon.
- Unless your contracting company tells you otherwise - Please check and verify your status on theNIH HHS.gov Learning Portal to confirm completion.
- Lyuba and others get lists of people that haven't yet completed - and we can make her life easier if everyone has completed!
- Decided: You don't have to report your training status to Mark
...
Name | Role | Present |
|---|---|---|
| Remennik, Lyubov | NIH/NCI | |
Safran, Tracy | NIH/NCI [C] | |
| Ong, Kim L | NIH/NCI [C] | |
| Lucas, Jason R | NIH/NCI [C] | |
| Bauer, Scott | NIH/NCI [C] | |
| Alkis, Barry | NIH/NCI [C] | <checked in> |
| Solie, Chuck | NIH/NCI [C] | |
| Kondareddy, Swathi | NIH/NCI [C] | |
| Singh, Itendra | NIH/NCI [C] | |
| Zhang, Chao | NIH/NCI [C] | |
| Johnson, Connie | NIH/NCI [C] | |
| Whiteman, Lori | NIH/NCI [C] | |
| Benson, Mark | NIH/NCI [C] | |
| Andrew Moore | NIH/NCI [C] | |
| Snehal Deoruhkar | Mayo |
JIRA Issues
Recent EVS Stats Dashboard Related Bugs and Features
...
