Affected by GO-2024-2582 and 4 other vulnerabilities

GO-2024-2582: Minder trusts client-provided mapping from repo name to upstream ID in github.com/stacklok/minder

GO-2024-2864: Denial of service of Minder Server with attacker-controlled REST endpoint in github.com/stacklok/minder

GO-2024-2871: Stacklok Minder vulnerable to denial of service from maliciously crafted templates in github.com/stacklok/minder

GO-2024-2885: Denial of service of Minder Server from maliciously crafted GitHub attestations in github.com/stacklok/minder

GO-2024-2934: Minder affected by denial of service from maliciously configured Git repository in github.com/stacklok/minder

eval

package

v0.0.11 Latest Latest Go to latest Published: Nov 4, 2023 License: Apache-2.0 Imports: 9 Imported by: 0

Details

Package eval provides necessary interfaces and implementations for evaluating rules.

This section is empty.

This section is empty.

func NewRuleEvaluator(rt *pb.RuleType, cli *providers.ProviderBuilder) (engif.Evaluator, error)

NewRuleEvaluator creates a new rule data evaluator

This section is empty.

Path	Synopsis
jq Package jq provides the jq profile evaluator	Package jq provides the jq profile evaluator
pr_actions Package pr_actions contains shared code to take on PRs	Package pr_actions contains shared code to take on PRs
rego Package rego provides the rego rule evaluator	Package rego provides the rego rule evaluator
trusty Package trusty provides an evaluator that uses the trusty API	Package trusty provides an evaluator that uses the trusty API
vulncheck Package vulncheck provides the vulnerability check evaluator	Package vulncheck provides the vulnerability check evaluator