mockserver icon indicating copy to clipboard operation
mockserver copied to clipboard

Published 20 hours ago verified publisher icon mock-server

Is this project dead?

Open Discordia opened this issue 8 months ago • 4 comments

There has been no releases since 2023. Maven and others are reporting about security problems. So is this project dead and if so what are people moving to? WireMock?

Discordia avatar Mar 11 '25 12:03 Discordia

Today we had a security incident reported that the latest docker image from docker hub is doing dns querys to www.litecoinpool.org. I highly recommend not using mockserver anymore.

ghost avatar Mar 27 '25 14:03 ghost

Today we had a security incident reported that the latest docker image from docker hub is doing dns querys to www.litecoinpool.org. I highly recommend not using mockserver anymore.

Hey @simon-eon,

thanks for sharing this! Can you talk about how you detected the questionable dns queries and on what platform? So far I could not see those dns queries with wireshark (on macOS with Docker Desktop and mockserver/mockserver:5.15.0).

jhfdevelop avatar Apr 14 '25 14:04 jhfdevelop

Today we had a security incident reported that the latest docker image from docker hub is doing dns querys to www.litecoinpool.org. I highly recommend not using mockserver anymore.

Hey @simon-eon,

thanks for sharing this! Can you talk about how you detected the questionable dns queries and on what platform? So far I could not see those dns queries with wireshark (on macOS with Docker Desktop and mockserver/mockserver:5.15.0).

It's probably due to latest; 5.15.0 has different digest. But I didn't check latest with wireshark myself.

mnagovitsin avatar Apr 15 '25 12:04 mnagovitsin

Duplicate of https://github.com/mock-server/mockserver/issues/1912

AB-xdev avatar May 08 '25 08:05 AB-xdev

Duplicate of #1912

Which is itself a dupe of #1904

DidierLoiseau avatar Jul 03 '25 09:07 DidierLoiseau