Affected by GO-2023-1581 and 5 other vulnerabilities

GO-2023-1581: Uncontrolled Resource Consumption in Hashicorp Nomad in github.com/hashicorp/nomad

GO-2023-1899: Hashicorp Nomad ACLs Cannot Deny Access to Workload’s Own Variables in github.com/hashicorp/nomad

GO-2024-2669: API token secret ID leak to Sentinel in github.com/hashicorp/nomad

GO-2024-2670: ACL security vulnerability in github.com/hashicorp/nomad

GO-2024-3073: Nomad Vulnerable to Allocation Directory Escape On Non-Existing File Paths Through Archive Unpacking in github.com/hashicorp/nomad

GO-2024-3262: Hashicorp Nomad Incorrect Authorization vulnerability in github.com/hashicorp/nomad

spread

package

v1.4.4-changelog Latest Latest Go to latest Published: Feb 15, 2023 License: MPL-2.0 Imports: 0 Imported by: 0

Details

Package spread provides end-to-end tests for Nomads spread job specification attribute. This does NOT test Nomads spread scheduler.

In order to run this test suite only, from the e2e directory you can trigger go test -v -run '^TestSpread' ./spread