Cloudsmith - Repositories - myob (myob) - appsec (appsec) - trufflehog

Package Search Help

You can use boolean logic (e.g. AND/OR/NOT) for complex search queries. For more help and examples, see the search documentation.

Search by package name:
my-package _(implicit)
name:my-package _(explicit)

Search by package filename:
filename:my-package.ext

Search by package tag:
tag:latest

Search by package version:
version:1.0.0 prerelease:true _{(prereleases)}
prerelease:false _{(no prereleases)}

Search by package architecture:
architecture:x86_64

Search by package distribution:
distribution:el

Search by package license:
license:MIT

Search by package format:
format:deb

Search by package status:
status:in_progress

Search by package file checksum:
checksum:5afba

Search by package security status:
severity:critical

Search by package vulnerabilities:
vulnerabilities:>1
vulnerabilities:<1000

Search by # of package downloads:
downloads:>8
downloads:<100

Search by package type:
type:binary
type:source

Search by package size (bytes):
size:>50000
size:<10000

Search by dependency name/version:
dependency:log4j
dependency:log4j=1.0.0
dependency:log4j>1.0.0

Search by uploaded date:
uploaded:>"1 day ago"
uploaded:<"August 14, 2022 EST"

Search by entitlement token (identifier):
entitlement:3lKPVJPosCsY

Search by policy violation:
policy_violated:true
deny_policy_violated:true
license_policy_violated:true
vulnerability_policy_violated:true

Search by repository:
repository:repo-name

Search queries for all Debian-specific (and related) package types

Search by component:
deb_component:unstable

Search queries for all Maven-specific (and related) package types

Search by group ID:
maven_group_id:org.apache

Search queries for all Docker-specific (and related) package types

Search by image digest:
docker_image_digest:sha256:7c5..6d4
(full hashref only)

Search by layer digest:
docker_layer_digest:sha256:4c4..ae4
(full hashref only)

Field type modifiers (depending on the type, you can influence behaviour)

For all queries, you can use:
~foo for negation

For string queries, you can use:
^foo to anchor to start of term
foo$ to anchor to end of term
foo*bar for fuzzy matching

For number/date or version queries, you can use:
>foo for values greater than
>=foo for values greater / equal
<foo for values less than
<=foo for values less / equal

Need a secure and centralised artifact repository to deliver Alpine, Cargo, CocoaPods, Composer, Conan, Conda, CRAN, Dart, Debian, Docker, Go, Helm, Hex, LuaRocks, Maven, npm, NuGet, P2, Python, RedHat, Ruby, Swift, Terraform, Vagrant, Raw & More packages?

Cloudsmith is the new standard in Package / Artifact Management and Software Distribution.

With support for all major package formats, you can trust us to manage your software supply chain.

Start My Free Trial

Set Me Up

Public — myob / appsec

public appsec packages

trufflehog 8dc6bc1a1283f9ff6f196e418e6…

Download

One-liner (summary)

A certifiably-awesome package curated by ops-arch bot, hosted by Cloudsmith.

Description

A certifiably-awesome package curated by ops-arch bot, hosted by Cloudsmith.

License

Unknown

Size

39.7 MB

Downloads

Tags

image amd64 linux 2cef68c479766201741…

Status	Quarantined
GPG Signature	Download
Storage Region	Dublin, Ireland
Type	Binary (contains binaries and binary artifacts)
Uploaded At	1 year, 2 months ago
Uploaded By
Slug Id	trufflehog-gzpc
Unique Id	OkptBpijSELZ
Version (Raw)	8dc6bc1a1283f9ff6f196e418e6eae6b78c8610a20f2bc6921426bc371262161
Version (Parsed)	Type: Unknown
	docker-specific metadata
Image Digest	sha256:8dc6bc1a1283f9ff6f196e418e6eae6b78c8610a20f2bc6921426bc371262161
Config Digest	sha256:144c00d7e85b55eaa732cc8e8d467c2e7be653359722de0451df3ed11e69c0aa
V1 OCI Index Digest	sha256:443a2278e5ce5a3a24ce39b358f7e4ab08d70fdbac1dd0b0a50cf2b6979d02d9
V1 Distribution (Signed) Digest	sha256:d88db1027ff217fa031a5aee2a4b8be6185e3e61ba01038bc013d6ed25a4a70d
V1 OCI Digest	sha256:27857f57aeedd9fc7253ffea43753fb0f318c499abd1ccfa967780906b003b7c
V2 Distribution List Digest	sha256:ab572cb15123d845da20c203c2a9e65519cf2780f9ffada831a8e944a9b28793
V1 Distribution Digest	sha256:6b8d66e690f7dda392d2fdeb26cf5a83bfdfbda70b34792a8c3f5fc1b6d6a623
V2 Distribution Digest	sha256:8dc6bc1a1283f9ff6f196e418e6eae6b78c8610a20f2bc6921426bc371262161
	extended metadata
Manifest Type	V2 Distribution
Architecture	amd64
Config	Attach Stderr Attach Stdin Attach Stdout Entrypoint /entrypoint.sh Env GPG_KEY=A035C8C19219BA821ECEA86B64E628F8D684696D \| LANG=C.UTF-8 \| PATH=/usr/local/bin:/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin \| PYTHON_GET_PIP_SHA256=dfe9fd5c28dc98b5ac17979a953ea550cec37ae1b47a5116007395bfacff2ab9 \| PYTHON_GET_PIP_URL=https://github.com/pypa/get-pip/raw/dbf0c85f76fb6e1ab42aa672ffca6f0a675d9ee4/public/get-pip.py \| PYTHON_PIP_VERSION=24.0 \| PYTHON_SETUPTOOLS_VERSION=65.5.1 \| PYTHON_VERSION=3.11.9 Image sha256:5ce5f1fe560f89664270d8b449ce39ef2ff96e83e8c63537f6ffeab34638f219 Open Stdin Stdin Once Tty User nonroot
Container	7a060e3df2e38e223fffadba9d8da94f752e35fdabf78648a1888dfa3920467b
Container Config	Attach Stderr Attach Stdin Attach Stdout Cmd /bin/sh -c #(nop) ENTRYPOINT ["/entrypoint.sh"] Entrypoint /entrypoint.sh Env GPG_KEY=A035C8C19219BA821ECEA86B64E628F8D684696D \| LANG=C.UTF-8 \| PATH=/usr/local/bin:/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin \| PYTHON_GET_PIP_SHA256=dfe9fd5c28dc98b5ac17979a953ea550cec37ae1b47a5116007395bfacff2ab9 \| PYTHON_GET_PIP_URL=https://github.com/pypa/get-pip/raw/dbf0c85f76fb6e1ab42aa672ffca6f0a675d9ee4/public/get-pip.py \| PYTHON_PIP_VERSION=24.0 \| PYTHON_SETUPTOOLS_VERSION=65.5.1 \| PYTHON_VERSION=3.11.9 Hostname 7a060e3df2e3 Image sha256:5ce5f1fe560f89664270d8b449ce39ef2ff96e83e8c63537f6ffeab34638f219 Open Stdin Stdin Once Tty User nonroot
Created	2024-04-23 11:47:40 UTC
Docker Version	20.10.25
Os	linux

This package was uploaded with the following V2 Distribution manifest:

{
   "schemaVersion": 2,
   "mediaType": "application/vnd.docker.distribution.manifest.v2+json",
   "config": {
      "mediaType": "application/vnd.docker.container.image.v1+json",
      "size": 9889,
      "digest": "sha256:b24dc0d9b4d8d5c5e9d0f4dbb5bfc52d7366fecccc8b019cbd8486eec236cf3b"
   },
   "layers": [
      {
         "mediaType": "application/vnd.docker.image.rootfs.diff.tar.gzip",
         "size": 3408729,
         "digest": "sha256:4abcf20661432fb2d719aaf90656f55c287f8ca915dc1c92ec14ff61e67fbaf8"
      },
      {
         "mediaType": "application/vnd.docker.image.rootfs.diff.tar.gzip",
         "size": 619598,
         "digest": "sha256:c3cdf40b8bda8e4ca4be0f5fa7f1d128907271efcbc72cbfc7c8b0f939ec25ea"
      },
      {
         "mediaType": "application/vnd.docker.image.rootfs.diff.tar.gzip",
         "size": 12669619,
         "digest": "sha256:ac499ccf2147611bc4388058b362c0bcc1ca63ec1a320a2f4ed5c0a9a76d08ea"
      },
      {
         "mediaType": "application/vnd.docker.image.rootfs.diff.tar.gzip",
         "size": 240,
         "digest": "sha256:416bfceb623eb12bf1c373489e0dba32f00fd4fef037b369538d190c615d49cd"
      },
      {
         "mediaType": "application/vnd.docker.image.rootfs.diff.tar.gzip",
         "size": 3130184,
         "digest": "sha256:76351c33299b900aa86b33176eac198fc861d4a7978046db4ae8b319e148088a"
      },
      {
         "mediaType": "application/vnd.docker.image.rootfs.diff.tar.gzip",
         "size": 6720853,
         "digest": "sha256:e29f5802e4403532ce43bdf72e307ab985330bdaa8db8421d89c9adb39b8ebb4"
      },
      {
         "mediaType": "application/vnd.docker.image.rootfs.diff.tar.gzip",
         "size": 5756800,
         "digest": "sha256:e6b4b945403ed288aca98e4d22d5ec82fb7e8369b69ad98afb9f93045e069b92"
      },
      {
         "mediaType": "application/vnd.docker.image.rootfs.diff.tar.gzip",
         "size": 544,
         "digest": "sha256:2981c607b4714ede1d35e0d67f4eb5f3d02c8bb045a4474307f0b8769f3a528c"
      },
      {
         "mediaType": "application/vnd.docker.image.rootfs.diff.tar.gzip",
         "size": 1272,
         "digest": "sha256:7080cb9256d16c6c44176f5c672b78228e23a60f1e8d6eeec8790167c1d46731"
      },
      {
         "mediaType": "application/vnd.docker.image.rootfs.diff.tar.gzip",
         "size": 908,
         "digest": "sha256:126d9e486121886755a08dcbc8600e1bbe168fa65e86acf8ce86d63522ecf2c7"
      },
      {
         "mediaType": "application/vnd.docker.image.rootfs.diff.tar.gzip",
         "size": 1478,
         "digest": "sha256:4367bb8f97eaa5f005d87526adfa6490c5398b144c6c13188c69f1f7975e91b2"
      },
      {
         "mediaType": "application/vnd.docker.image.rootfs.diff.tar.gzip",
         "size": 4646850,
         "digest": "sha256:869d2c14a342c0d7b01273de44b355c07f8eeaee4ea871fdadb1cfac795b3b38"
      },
      {
         "mediaType": "application/vnd.docker.image.rootfs.diff.tar.gzip",
         "size": 908,
         "digest": "sha256:07d03afe9fd7a495a16bc8a2941a442de133f1cab95920857436d5225a8dfcc9"
      },
      {
         "mediaType": "application/vnd.docker.image.rootfs.diff.tar.gzip",
         "size": 4646850,
         "digest": "sha256:869d2c14a342c0d7b01273de44b355c07f8eeaee4ea871fdadb1cfac795b3b38"
      },
      {
         "mediaType": "application/vnd.docker.image.rootfs.diff.tar.gzip",
         "size": 908,
         "digest": "sha256:07d03afe9fd7a495a16bc8a2941a442de133f1cab95920857436d5225a8dfcc9"
      }
   ]
}

	Digest: sha256:4abcf20661432fb2d719aaf90656f55c287f8ca915dc1c92ec14ff61e67fbaf8 Command: /bin/sh -c #(nop) ADD file:37a76ec18f9887751cd8473744917d08b7431fc4085097bb6a09d81b41775473 in /	3.3 MB
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: /bin/sh -c #(nop) CMD ["/bin/sh"]	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: ENV PATH=/usr/local/bin:/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: ENV LANG=C.UTF-8	32 bytes
	Digest: sha256:c3cdf40b8bda8e4ca4be0f5fa7f1d128907271efcbc72cbfc7c8b0f939ec25ea Command: RUN /bin/sh -c set -eux; apk add --no-cache ca-certificates tzdata ; # buildkit	605.1 KB
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: ENV GPG_KEY=A035C8C19219BA821ECEA86B64E628F8D684696D	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: ENV PYTHON_VERSION=3.11.9	32 bytes
	Digest: sha256:ac499ccf2147611bc4388058b362c0bcc1ca63ec1a320a2f4ed5c0a9a76d08ea Command: RUN /bin/sh -c set -eux; apk add --no-cache --virtual .build-deps gnupg tar xz bluez-dev bzip2-dev dpkg-dev dpkg expat-dev findutils gcc gdbm-dev libc-dev libffi-dev libnsl-dev libtirpc-dev linux-headers make ncurses-dev openssl-dev pax-utils readline-dev sqlite-dev tcl-dev tk tk-dev util-linux-dev xz-dev zlib-dev ; wget -O python.tar.xz "https://www.python.org/ftp/python/${PYTHON_VERSION%%[a-z]}/Python-$PYTHON_VERSION.tar.xz"; wget -O python.tar.xz.asc "https://www.python.org/ftp/python/${PYTHON_VERSION%%[a-z]}/Python-$PYTHON_VERSION.tar.xz.asc"; GNUPGHOME="$(mktemp -d)"; export GNUPGHOME; gpg --batch --keyserver hkps://keys.openpgp.org --recv-keys "$GPG_KEY"; gpg --batch --verify python.tar.xz.asc python.tar.xz; gpgconf --kill all; rm -rf "$GNUPGHOME" python.tar.xz.asc; mkdir -p /usr/src/python; tar --extract --directory /usr/src/python --strip-components=1 --file python.tar.xz; rm python.tar.xz; cd /usr/src/python; gnuArch="$(dpkg-architecture --query DEB_BUILD_GNU_TYPE)"; ./configure --build="$gnuArch" --enable-loadable-sqlite-extensions --enable-optimizations --enable-option-checking=fatal --enable-shared --with-lto --with-system-expat --without-ensurepip ; nproc="$(nproc)"; EXTRA_CFLAGS="-DTHREAD_STACK_SIZE=0x100000"; LDFLAGS="${LDFLAGS:--Wl},--strip-all"; make -j "$nproc" "EXTRA_CFLAGS=${EXTRA_CFLAGS:-}" "LDFLAGS=${LDFLAGS:-}" "PROFILE_TASK=${PROFILE_TASK:-}" ; rm python; make -j "$nproc" "EXTRA_CFLAGS=${EXTRA_CFLAGS:-}" "LDFLAGS=${LDFLAGS:--Wl},-rpath='\$\$ORIGIN/../lib'" "PROFILE_TASK=${PROFILE_TASK:-}" python ; make install; cd /; rm -rf /usr/src/python; find /usr/local -depth $ \( -type d -a \( -name test -o -name tests -o -name idle_test $ \) -o $ -type f -a \( -name '.pyc' -o -name '.pyo' -o -name 'libpython.a' $ \) \) -exec rm -rf '{}' + ; find /usr/local -type f -executable -not $ -name 'tkinter*' $ -exec scanelf --needed --nobanner --format '%n#p' '{}' ';' \| tr ',' '\n' \| sort -u \| awk 'system("[ -e /usr/local/lib/" $1 " ]") == 0 { next } { print "so:" $1 }' \| xargs -rt apk add --no-network --virtual .python-rundeps ; apk del --no-network .build-deps; python3 --version # buildkit	12.1 MB
	Digest: sha256:416bfceb623eb12bf1c373489e0dba32f00fd4fef037b369538d190c615d49cd Command: RUN /bin/sh -c set -eux; for src in idle3 pydoc3 python3 python3-config; do dst="$(echo "$src" \| tr -d 3)"; [ -s "/usr/local/bin/$src" ]; [ ! -e "/usr/local/bin/$dst" ]; ln -svT "$src" "/usr/local/bin/$dst"; done # buildkit	240 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: ENV PYTHON_PIP_VERSION=24.0	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: ENV PYTHON_SETUPTOOLS_VERSION=65.5.1	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: ENV PYTHON_GET_PIP_URL=https://github.com/pypa/get-pip/raw/dbf0c85f76fb6e1ab42aa672ffca6f0a675d9ee4/public/get-pip.py	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: ENV PYTHON_GET_PIP_SHA256=dfe9fd5c28dc98b5ac17979a953ea550cec37ae1b47a5116007395bfacff2ab9	32 bytes
	Digest: sha256:76351c33299b900aa86b33176eac198fc861d4a7978046db4ae8b319e148088a Command: RUN /bin/sh -c set -eux; wget -O get-pip.py "$PYTHON_GET_PIP_URL"; echo "$PYTHON_GET_PIP_SHA256 *get-pip.py" \| sha256sum -c -; export PYTHONDONTWRITEBYTECODE=1; python get-pip.py --disable-pip-version-check --no-cache-dir --no-compile "pip==$PYTHON_PIP_VERSION" "setuptools==$PYTHON_SETUPTOOLS_VERSION" ; rm -f get-pip.py; pip --version # buildkit	3.0 MB
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: CMD ["python3"]	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: /bin/sh -c #(nop) USER root	32 bytes
	Digest: sha256:e29f5802e4403532ce43bdf72e307ab985330bdaa8db8421d89c9adb39b8ebb4 Command: /bin/sh -c apk add --no-cache git less openssh-client	6.4 MB
	Digest: sha256:e6b4b945403ed288aca98e4d22d5ec82fb7e8369b69ad98afb9f93045e069b92 Command: /bin/sh -c pip install gitdb2==3.0.0 truffleHog==2.2.1	5.5 MB
	Digest: sha256:2981c607b4714ede1d35e0d67f4eb5f3d02c8bb045a4474307f0b8769f3a528c Command: /bin/sh -c addgroup -S -g 2000 nonroot	544 bytes
	Digest: sha256:7080cb9256d16c6c44176f5c672b78228e23a60f1e8d6eeec8790167c1d46731 Command: /bin/sh -c adduser -D -u 2000 -G nonroot nonroot	1.2 KB
	Digest: sha256:126d9e486121886755a08dcbc8600e1bbe168fa65e86acf8ce86d63522ecf2c7 Command: /bin/sh -c #(nop) COPY file:912eb83db77aaf6caccb13f8a2591f99a4c6ab0b2d05df68cef94a84b353376b in /entrypoint.sh	908 bytes
	Digest: sha256:4367bb8f97eaa5f005d87526adfa6490c5398b144c6c13188c69f1f7975e91b2 Command: /bin/sh -c #(nop) COPY file:32b341b97cc7a6ce285b7f7d2ce7478c94abb5bcb5007621f352005e85aa69b5 in /regex.json	1.4 KB
	Digest: sha256:869d2c14a342c0d7b01273de44b355c07f8eeaee4ea871fdadb1cfac795b3b38 Command: /bin/sh -c #(nop) COPY file:89eab4c1897dd3e64e5c0467069fd2dadc697eefd898d0eaf518d0428be16b2c in /bin/git-credential-myob	4.4 MB
	Digest: sha256:07d03afe9fd7a495a16bc8a2941a442de133f1cab95920857436d5225a8dfcc9 Command: /bin/sh -c chmod +x /entrypoint.sh	908 bytes
	Digest: sha256:869d2c14a342c0d7b01273de44b355c07f8eeaee4ea871fdadb1cfac795b3b38 Command: /bin/sh -c chmod g+x /bin/git-credential-myob	4.4 MB
	Digest: sha256:07d03afe9fd7a495a16bc8a2941a442de133f1cab95920857436d5225a8dfcc9 Command: /bin/sh -c chmod g+x /entrypoint.sh	908 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: /bin/sh -c #(nop) USER nonroot	32 bytes
	Digest: sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Command: /bin/sh -c #(nop) ENTRYPOINT ["/entrypoint.sh"]	32 bytes

trufflehog aaca6fc5daa2e25b5f77dc1cfaf5a2c93bb7504…	image amd64 linux 38.2 MB — 1 year, 2 months ago	138
trufflehog dfce8d647512e176219f4309862d2391db368c1…	image amd64 linux ab14b038c5a4aaa3185… 35.4 MB — 2 years, 6 months ago	47125
trufflehog 94bec3ab628ef799f67b2906bde4b0be28b4b00…	image amd64 linux 3c28f724ac72b123e4b… 37.5 MB — 2 years, 7 months ago	6
trufflehog cf221f9310fbb98a6a7ccc7a59eb8c9a3c380fa…	image amd64 linux f8b184baeb745125423… 37.6 MB — 2 years, 7 months ago	29
trufflehog ee8e9a0bd504644cf179fe6eef1269d616362a1…	image amd64 linux eac8b5e37e1b95bca72… 37.6 MB — 2 years, 7 months ago	0
trufflehog b5522189acbaf565f89685aa84e1ac1a211d244…	image amd64 linux bcffeb7a4c934c31262… 31.6 MB — 2 years, 9 months ago	0
trufflehog ac924a40bfe922e559ef5cb051fbc62072573ca…	image amd64 linux d077ceca34b1fd428dc… 31.6 MB — 2 years, 9 months ago	1
trufflehog db4792728038cd9febfd26d3af494bd393e4f11…	image amd64 linux 83f90895f5697f58080… 31.6 MB — 2 years, 11 months ago	0
trufflehog d096fed20c85a633184ce642f96618c3c9a7df5…	image amd64 linux 8bb36aa392705041706… a8cca377f0bf953c3b2… 45e5d5b990eb26a4308… 31.6 MB — 2 years, 11 months ago	0
trufflehog e8ce3be490cf4e708288e77cd3db6de47670252…	image amd64 linux 3672345b83ff3b90e2a… 31.6 MB — 3 years ago	5
trufflehog 8dc6bc1a1283f9ff6f196e418e6eae6b78c8610…	image amd64 linux 2cef68c479766201741… 39.7 MB — 1 year, 2 months ago	0
trufflehog 6277efabe0fece54c3ba75d7866287c99b4cce5…	image amd64 linux ef9812c6ec02cd85d22… preprod 42.3 MB — 8 months, 3 weeks ago	4
trufflehog 8dc11cf78f5cad39708ea6bd29a9edf9c998a8e…	image amd64 linux d4e3958e862b97cf110… 42.3 MB — 8 months, 4 weeks ago	0
trufflehog 7dc481950b27e7e7466b710c1cb504cfc0d88d4…	image amd64 linux latest 42.3 MB — 10 months, 3 weeks ago	42233
trufflehog 3568c89c024ac974a3e9abdeb7654ecfee61e20…	image amd64 linux 42.3 MB — 10 months, 3 weeks ago	0
trufflehog 846a4b4fe329209770e8b7127bfae86418b322a…	image amd64 linux 6a0e4f691d5346c1bb3… 108.4 MB — 10 months, 3 weeks ago	0
trufflehog 502dbf8e9ceb4fa08388ea7fdededa028642d52…	image amd64 linux 4c2bbf733f27e3acee5… 39.2 MB — 10 months, 3 weeks ago	0
trufflehog 1174e804b216d3279f10e3725748f5c53eac5ab…	image amd64 linux 0d8a928c5595ccc5aa4… 38.5 MB — 1 year, 1 month ago	0
trufflehog 70315e5910f629da5f152cc34e9996eee67da94…	image amd64 linux ee383c5b98096d89ee5… 38.5 MB — 1 year, 1 month ago	0
trufflehog 854c45dd9bc901405206ad319ec685164cde793…	image amd64 linux 0ab211a9f0c3f7bd3c0… 38.5 MB — 1 year, 2 months ago	0

Only packages within the same repository are displayed. The current package you're viewing is highlighted.

Last scanned

1 year, 2 months ago

Scan result

Vulnerable

Vulnerability count

Max. severity

Critical

Target:	. (alpine 3.19.1)
LOW	CVE-2024-2511: openssl: Unbounded memory growth with session handling in TLSv1.3 Issue summary: Some non-default TLS server configurations can cause unbounded memory growth when processing TLSv1.3 sessions Impact summary: An attacker may exploit certain server configurations to trigger unbounded memory growth that would lead to a Denial of Service This problem can occur in TLSv1.3 if the non-default SSL_OP_NO_TICKET option is being used (but not if early_data support is also configured and the default anti-replay protection is in use). In this case, under certain conditions, the session cache can get into an incorrect state and it will fail to flush properly as it fills. The session cache will continue to grow in an unbounded manner. A malicious client could deliberately create the scenario for this failure to force a Denial of Service. It may also happen by accident in normal operation. This issue only affects TLS servers supporting TLSv1.3. It does not affect TLS clients. The FIPS modules in 3.2, 3.1 and 3.0 are not affected by this issue. OpenSSL 1.0.2 is also not affected by this issue. Package Name: libcrypto3 Installed Version: 3.1.4-r5 Fixed Version: 3.1.4-r6 References: access.redhat.com github.com github.com github.com github.openssl.org nvd.nist.gov www.cve.org www.openssl.org www.openssl.org
LOW	CVE-2024-2511: openssl: Unbounded memory growth with session handling in TLSv1.3 Issue summary: Some non-default TLS server configurations can cause unbounded memory growth when processing TLSv1.3 sessions Impact summary: An attacker may exploit certain server configurations to trigger unbounded memory growth that would lead to a Denial of Service This problem can occur in TLSv1.3 if the non-default SSL_OP_NO_TICKET option is being used (but not if early_data support is also configured and the default anti-replay protection is in use). In this case, under certain conditions, the session cache can get into an incorrect state and it will fail to flush properly as it fills. The session cache will continue to grow in an unbounded manner. A malicious client could deliberately create the scenario for this failure to force a Denial of Service. It may also happen by accident in normal operation. This issue only affects TLS servers supporting TLSv1.3. It does not affect TLS clients. The FIPS modules in 3.2, 3.1 and 3.0 are not affected by this issue. OpenSSL 1.0.2 is also not affected by this issue. Package Name: libssl3 Installed Version: 3.1.4-r5 Fixed Version: 3.1.4-r6 References: access.redhat.com github.com github.com github.com github.openssl.org nvd.nist.gov www.cve.org www.openssl.org www.openssl.org
Target:	Python
CRITICAL	CVE-2023-40267: GitPython: Insecure non-multi options in clone and clone_from is not blocked GitPython before 3.1.32 does not block insecure non-multi options in clone and clone_from. NOTE: this issue exists because of an incomplete fix for CVE-2022-24439. Package Name: GitPython Installed Version: 3.0.6 Fixed Version: 3.1.32 References: access.redhat.com github.com github.com github.com github.com github.com github.com lists.fedoraproject.org lists.fedoraproject.org lists.fedoraproject.org lists.fedoraproject.org nvd.nist.gov ubuntu.com www.cve.org
HIGH	CVE-2022-24439: GitPython: improper user input validation leads into a RCE All versions of package gitpython are vulnerable to Remote Code Execution (RCE) due to improper user input validation, which makes it possible to inject a maliciously crafted remote URL into the clone command. Exploiting this vulnerability is possible because the library makes external calls to git without sufficient sanitization of input arguments. Package Name: GitPython Installed Version: 3.0.6 Fixed Version: 3.1.30 References: access.redhat.com github.com github.com github.com github.com github.com github.com lists.debian.org lists.fedoraproject.org lists.fedoraproject.org lists.fedoraproject.org lists.fedoraproject.org lists.fedoraproject.org lists.fedoraproject.org lists.fedoraproject.org lists.fedoraproject.org lists.fedoraproject.org lists.fedoraproject.org lists.fedoraproject.org lists.fedoraproject.org nvd.nist.gov security.gentoo.org security.snyk.io ubuntu.com www.cve.org
HIGH	CVE-2023-40590: gitpython: improper executable lookup on windows GitPython is a python library used to interact with Git repositories. When resolving a program, Python/Windows look for the current working directory, and after that the PATH environment. GitPython defaults to use the `git` command, if a user runs GitPython from a repo has a `git.exe` or `git` executable, that program will be run instead of the one in the user's `PATH`. This is more of a problem on how Python interacts with Windows systems, Linux and any other OS aren't affected by this. But probably people using GitPython usually run it from the CWD of a repo. An attacker can trick a user to download a repository with a malicious `git` executable, if the user runs/imports GitPython from that directory, it allows the attacker to run any arbitrary commands. There is no fix currently available for windows users, however there are a few mitigations. 1: Default to an absolute path for the git program on Windows, like `C:\\Program Files\\Git\\cmd\\git.EXE` (default git path installation). 2: Require users to set the `GIT_PYTHON_GIT_EXECUTABLE` environment variable on Windows systems. 3: Make this problem prominent in the documentation and advise users to never run GitPython from an untrusted repo, or set the `GIT_PYTHON_GIT_EXECUTABLE` env var to an absolute path. 4: Resolve the executable manually by only looking into the `PATH` environment variable. Package Name: GitPython Installed Version: 3.0.6 Fixed Version: 3.1.33 References: access.redhat.com docs.python.org github.com github.com github.com github.com github.com github.com github.com nvd.nist.gov www.cve.org
HIGH	CVE-2024-22190: Untrusted search path under some conditions on Windows allows arbitrary code execution GitPython is a python library used to interact with Git repositories. There is an incomplete fix for CVE-2023-40590. On Windows, GitPython uses an untrusted search path if it uses a shell to run `git`, as well as when it runs `bash.exe` to interpret hooks. If either of those features are used on Windows, a malicious `git.exe` or `bash.exe` may be run from an untrusted repository. This issue has been patched in version 3.1.41. Package Name: GitPython Installed Version: 3.0.6 Fixed Version: 3.1.41 References: github.com github.com github.com github.com github.com nvd.nist.gov
MEDIUM	CVE-2023-41040: GitPython: Blind local file inclusion GitPython is a python library used to interact with Git repositories. In order to resolve some git references, GitPython reads files from the `.git` directory, in some places the name of the file being read is provided by the user, GitPython doesn't check if this file is located outside the `.git` directory. This allows an attacker to make GitPython read any file from the system. This vulnerability is present in https://github.com/gitpython-developers/GitPython/blob/1c8310d7cae144f74a671cbe17e51f63a830adbf/git/refs/symbolic.py#L174-L175. That code joins the base directory with a user given string without checking if the final path is located outside the base directory. This vulnerability cannot be used to read the contents of files but could in theory be used to trigger a denial of service for the program. This issue has not yet been addressed. Package Name: GitPython Installed Version: 3.0.6 Fixed Version: 3.1.37 References: access.redhat.com github.com github.com github.com github.com github.com github.com github.com lists.debian.org nvd.nist.gov www.cve.org

Previous Version: 6277efabe0fece54c3b…

Next Version: e8ce3be490cf4e70828…

trufflehog 8dc6bc1a1283f9ff6f196e418e6…

One-liner (summary)

Description

License

Size

Downloads

Tags

trufflehog

trufflehog

trufflehog

trufflehog

trufflehog

trufflehog

trufflehog

trufflehog

trufflehog

trufflehog

trufflehog

trufflehog

trufflehog

trufflehog

trufflehog

trufflehog

trufflehog

trufflehog

trufflehog

trufflehog

Last scanned

Scan result

Vulnerability count

Max. severity

CVE-2024-2511: openssl: Unbounded memory growth with session handling in TLSv1.3

CVE-2024-2511: openssl: Unbounded memory growth with session handling in TLSv1.3

CVE-2023-40267: GitPython: Insecure non-multi options in clone and clone_from is not blocked

CVE-2022-24439: GitPython: improper user input validation leads into a RCE

CVE-2023-40590: gitpython: improper executable lookup on windows

CVE-2024-22190: Untrusted search path under some conditions on Windows allows arbitrary code execution

CVE-2023-41040: GitPython: Blind local file inclusion