gitlab-org--gitlab-foss/changelogs/unreleased/security-kubeclient-ssrf.yml at 8a235c0c05efec1c8ee14c7454982dc2b8ca9464 - kotovalexarian-likes-gitlab/gitlab-org--gitlab-foss - Forgejo by Causa Arcana

kotovalexarian-likes-gitlab/gitlab-org--gitlab-foss

Thong Kuah 6eb3fc69f6 Monkey kubeclient to not follow any redirects.

This should prevent any malicious server from responding with a location
that will redirect us and expose internal services, as kubeclient's
rest-client will no longer follow redirects.

2018-10-26 09:47:00 -05:00

5 lines

96 B

YAML

Raw Blame History

 ---
 title: Monkey kubeclient to not follow any redirects.
 merge_request:
 author:
 type: security