Affected by GO-2022-0560
and 9 other vulnerabilities
GO-2022-0560: Nomad Spread Job Stanza May Trigger Panic in Servers in github.com/hashicorp/nomad
GO-2022-0577: HashiCorp Nomad vulnerable to Allocation of Resources Without Limits or Throttling in github.com/hashicorp/nomad
GO-2022-0584: Arbitrary file reads in HashiCorp Nomad in github.com/hashicorp/nomad
GO-2022-0600: HashiCorp Nomad Artifact Download Race Condition in github.com/hashicorp/nomad
GO-2022-0732: Privilege escalation in Hashicorp Nomad in github.com/hashicorp/nomad
GO-2022-1062: Nomad Panics On Job Submission With Bad Artifact Stanza Source URL in github.com/hashicorp/nomad
GO-2024-2670: ACL security vulnerability in github.com/hashicorp/nomad
GO-2024-3073: Nomad Vulnerable to Allocation Directory Escape On Non-Existing File Paths Through Archive Unpacking in github.com/hashicorp/nomad
GO-2024-3262: Hashicorp Nomad Incorrect Authorization vulnerability in github.com/hashicorp/nomad
GO-2024-3354: Hashicorp Nomad Incorrect Privilege Assignment vulnerability in github.com/hashicorp/nomad
package
Version:
v1.2.1
Opens a new window with list of versions in this module.
Published: Nov 19, 2021
License: MPL-2.0
Opens a new window with license information.
Imports: 8
Opens a new window with list of imports.
Imported by: 5
Opens a new window with list of known importers.
Documentation
¶
View Source
var DefaultEnvDenyList = []string{
"CONSUL_TOKEN",
"CONSUL_HTTP_TOKEN",
"VAULT_TOKEN",
"NOMAD_LICENSE",
"AWS_ACCESS_KEY_ID", "AWS_SECRET_ACCESS_KEY", "AWS_SESSION_TOKEN",
"GOOGLE_APPLICATION_CREDENTIALS",
}
DefaultEnvDenyList is the default set of environment variables that are
filtered when passing the environment variables of the host to the task.
Update https://www.nomadproject.io/docs/configuration/client#env-denylist
whenever this is changed.
type DiskUsage struct {
DiskMB int64
UsedMB int64
}
Source Files
¶
Click to show internal directories.
Click to hide internal directories.