GO-2024-3076: Trufflehog vulnerable to Blind SSRF in some Detectors in github.com/trufflesecurity/trufflehog
package
Version:
v3.80.5
Opens a new window with list of versions in this module.
Published: Aug 1, 2024
License: AGPL-3.0
Opens a new window with license information.
Imports: 12
Opens a new window with list of imports.
Imported by: 0
Opens a new window with list of known importers.
Documentation
¶
type HttpStatusTest struct {
Endpoint string `json:"endpoint"`
Method string `json:"method"`
Payload interface{} `json:"payload"`
ValidStatuses []int `json:"valid_status_code"`
InvalidStatuses []int `json:"invalid_status_code"`
}
type SecretInfo struct {
Users []User
Permissions []string
}
type User struct {
FullName string `json:"fullName"`
Username string `json:"username"`
Role struct {
Name string `json:"name"`
} `json:"role"`
}
type UsersJSON struct {
Users []User `json:"data"`
}
Source Files
¶
Click to show internal directories.
Click to hide internal directories.