Affected by GO-2022-0704
and 12 other vulnerabilities
GO-2022-0704: Unauthenticated users can exploit an enumeration vulnerability in Harbor (CVE-2019-19030) in github.com/goharbor/harbor
GO-2022-0781: Harbor is vulnerable to a limited Server-Side Request Forgery (SSRF) (CVE-2020-13788) in github.com/goharbor/harbor
GO-2022-0785: "catalog's registry v2 api exposed on unauthenticated path in Harbor" in github.com/goharbor/harbor
GO-2022-0818: Missing Authorization in Harbor in github.com/goharbor/harbor
GO-2022-0853: SQL Injection in Cloud Native Computing Foundation Harbor in github.com/goharbor/harbor
GO-2022-0863: Privilege Escalation in Cloud Native Computing Foundation Harbor in github.com/goharbor/harbor
GO-2022-0865: Authenticated users can exploit an enumeration vulnerability in Harbor in github.com/goharbor/harbor
GO-2022-0876: Cross-site Request Forgery (CSRF) in Cloud Native Computing Foundation Harbor in github.com/goharbor/harbor
GO-2022-0883: SQL Injection in Cloud Native Computing Foundation Harbor in github.com/goharbor/harbor
GO-2023-2109: Harbor timing attack risk in github.com/goharbor/harbor
GO-2024-2915: Open Redirect URL in Harbor in github.com/goharbor/harbor
GO-2024-2916: SQL Injection in Harbor scan log API in github.com/goharbor/harbor
GO-2024-3013: Harbor fails to validate the user permissions when updating project configurations in github.com/goharbor/harbor
package
Version:
v1.8.4
Opens a new window with list of versions in this module.
Published: Sep 27, 2019
License: Apache-2.0
Opens a new window with license information.
Imports: 3
Opens a new window with list of imports.
Imported by: 30
Opens a new window with list of known importers.
Documentation
¶
func GetJobAuthSecret() string
GetJobAuthSecret get the auth secret from the env
GetLogLevel returns the log level
GetUIAuthSecret get the auth secret of UI side
type Configuration struct {
Protocol string `yaml:"protocol"`
Port string `yaml:"port"`
LogLevel string `yaml:"log_level"`
HTTPSConfig struct {
Cert string `yaml:"cert"`
Key string `yaml:"key"`
} `yaml:"https_config,omitempty"`
}
Configuration loads the configuration of registry controller.
Load the configuration options from the specified yaml file.
Source Files
¶
Click to show internal directories.
Click to hide internal directories.