gitlab-org--gitlab-foss/changelogs/unreleased/security-kubeclient-ssrf.yml at fe61d36cfa7f2fb57beb667ea83537cfc671f1a1 - kotovalexarian-likes-gitlab/gitlab-org--gitlab-foss - Forgejo by Causa Arcana

kotovalexarian-likes-gitlab/gitlab-org--gitlab-foss

Thong Kuah 6eb3fc69f6 Monkey kubeclient to not follow any redirects.

This should prevent any malicious server from responding with a location
that will redirect us and expose internal services, as kubeclient's
rest-client will no longer follow redirects.

2018-10-26 09:47:00 -05:00

5 lines

96 B

YAML

Raw Blame History

 ---
 title: Monkey kubeclient to not follow any redirects.
 merge_request:
 author:
 type: security