Releases: inguardians/peirates
Releases Β· inguardians/peirates
v1.1.20 - static compile and more tab-complete
- static compile
- more menus added to tab-complete
v1.1.19-static
- reactivated static compilation
v1.1.18 - tab completion on main menu
- added tab completion on main menu using ergochat/readline
v1.1.17 - IMDSv2 for AWS detection, kubelet kubeconfig dynamic detection
- IMDSv2 for AWS detection (thanks Dakota Riley)
- kubelet kubeconfig dynamic detection
- Welcome new contributor Dakota Riley!
v1.1.16 - Leaky Vessels
- Added a Leaky Vessels (CVE-2024-21626) exploit
v1.1.15 - experimental short menu
- added an experimental "short" menu function
- made additional UI improvements, e.g. curl function has one less prompt, some functions remove final "press enter" prompt
v1.14 - addressed library CVEs, added token display feature and verbose flag
- Added a feature to display the values of stored service account tokens
- Added a verbose (-v) flag to display additional DEBUG messages.
- Updated upstream libraries to handle vulnerabilities found in dependencies: CVE-2023-39325, CVE-2023-44487, CVE-2023-3978
v1.1.13
- Added cloud provider detection from @devsecfranklin
- Bump gopkg.in/yaml.v3 to avoid DoS risk on filesystem
- Added a function to get eth0 IP addr and put in banner
- Parse the current pod's service account name from its JWT
- Cleaned up menu formatting
v1.1.12 - Added kubectl-try-all options
- Added a second variation of kubectl-try-all that tries a command as every service account collected, no longer stopping on the first success.
v1.1.11
- Added image building and K8S deployment functions from @devsecfranklin
- Improved error handling on CoreDNS wildcard trick
- Added another kubelet kubeconfig file path and handled errors better
- Added a credits.md file and added a developer to it: @devsecfranklin