Affected by GO-2022-0344 and 7 other vulnerabilities

GO-2022-0344: containerd CRI plugin: Insecure handling of image volumes in github.com/containerd/containerd

GO-2022-0360: Ambiguous OCI manifest parsing in github.com/containerd/containerd

GO-2022-0482: containerd CRI plugin: Host memory exhaustion through ExecSync in github.com/containerd/containerd

GO-2022-0784: containerd-shim API Exposed to Host Network Containers in github.com/containerd/containerd

GO-2022-0803: containerd v1.2.x can be coerced into leaking credentials during image pull in github.com/containerd/containerd

GO-2022-0921: Archive package allows chmod of file outside of unpack target directory in github.com/containerd/containerd

GO-2022-0938: Insufficiently restricted permissions on plugin directories in github.com/containerd/containerd

GO-2022-1147: containerd CRI stream server vulnerable to host memory exhaustion via terminal in github.com/containerd/containerd

The highest tagged major version is v2.

reaper

package

v1.0.0-alpha1 Latest Latest Go to latest Published: Jul 19, 2017 License: Apache-2.0, CC-BY-SA-4.0 Imports: 6 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Rendered for

This section is empty.

View Source

var Default = &Monitor{
	cmds:    make(map[int]*Cmd),
	unknown: make(map[int]int),
}

func Reap() error

Reap should be called when the process receives an SIGCHLD. Reap will reap all exited processes and close their wait channels

type Cmd struct {
	ExitCh chan int
	// contains filtered or unexported fields
}

type Monitor struct {
	sync.Mutex
	// contains filtered or unexported fields
}

func (m *Monitor) CombinedOutput(c *exec.Cmd) ([]byte, error)

func (m *Monitor) Command(pid int) *Cmd

Command returns the registered pid for the command created

func (m *Monitor) Delete(pid int)

func (m *Monitor) Output(c *exec.Cmd) ([]byte, error)

func (m *Monitor) Register(pid int, c *Cmd)

func (m *Monitor) RegisterNL(pid int, c *Cmd)

RegisterNL does not grab the lock internally the caller is responsible for locking the monitor

func (m *Monitor) Run(c *exec.Cmd) error

Run runs and waits for the command to finish

func (m *Monitor) Start(c *exec.Cmd) error

Start starts the command a registers the process with the reaper

func (m *Monitor) Wait(c *exec.Cmd) (int, error)

func (m *Monitor) WaitPid(pid int) (int, error)