6 matches found
EUVD-2023-1211
Malicious code in bioql PyPI...
Malicious code in terraform-config (npm)
--- -= Per source details. Do not edit below this line.=-...
CVE-2023-4782
Terraform version 1.0.8 through 1.5.6 allows arbitrary file write during the init operation if run on maliciously crafted Terraform configuration. This vulnerability is fixed in Terraform 1.5.7...
CVE-2023-30618
The CVE-2023-30618 issue affects Kitchen-Terraform, where v7.0.0 regressed to print all Terraform output values, including sensitive ones, at the info level during kitchen converge. This is a local-access disclosure risk, since logs on the attacker’s host could contain sensitive data. Affected co...
CVE-2023-30618 Sensitive Terraform Output Values Printed At Info Logging Level In Kitchen-Terraform
Kitchen-Terraform provides a set of Test Kitchen plugins which enable the use of Test Kitchen to converge a Terraform configuration and verify the resulting infrastructure systems with InSpec controls. Kitchen-Terraform v7.0.0 introduced a regression which caused all Terraform output values,...
Serverless, Real-time Malware Detection: BinaryAlert
BinaryAlert is an open-source serverless AWS pipeline where any file uploaded to an S3 bucket is immediately scanned with a configurable set of YARA rules. An alert will fire as soon as any match is found, giving an incident response team the ability to quickly contain the threat before it spread...