Affected by GO-2023-1283 and 4 other vulnerabilities

GO-2023-1283: KubePi allows malicious actor to login with a forged JWT token via Hardcoded Jwtsigkeys in github.com/KubeOperator/kubepi

GO-2023-1463: KubePi may allow unauthorized access to system API in github.com/KubeOperator/kubepi

GO-2023-1468: KubePi session fixation attack allows an attacker to hijack a legitimate user session. in github.com/KubeOperator/kubepi

GO-2023-1956: KubePi Privilege Escalation vulnerability in github.com/KubeOperator/kubepi

GO-2023-1957: KubePi may leak password hash of any user in github.com/KubeOperator/kubepi

v1

package

v1.4.2 Latest Latest Go to latest Published: Mar 7, 2022 License: Apache-2.0 Imports: 1 Imported by: 0

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/KubeOperator/kubepi

Links

Open Source Insights

Documentation ¶

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

This section is empty.

Types ¶

type BaseModel ¶

type BaseModel struct {
	ApiVersion string    `json:"apiVersion"`
	Kind       string    `json:"kind"`
	CreateAt   time.Time `json:"createAt" storm:"index"`
	UpdateAt   time.Time `json:"updateAt" storm:"index"`
	BuiltIn    bool      `json:"builtIn"`
	CreatedBy  string    `json:"createdBy"`
}

type Metadata ¶

type Metadata struct {
	Name        string `json:"name" storm:"unique" `
	Description string `json:"description"`
	UUID        string `json:"uuid" storm:"id,index,unique"`
}

Source Files ¶

View all Source files

base.go

Directories ¶

Path	Synopsis
chart
cluster
clusterapp
clusterrepo
config
imagerepo
ldap
project
role
system
user

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL