Christophe Tafani-Dereeper

icon indicating a website link https://christophetd.fr icon indicating an email [email protected]

icon company @DataDog

Results 134 comments of Christophe Tafani-Dereeper

Unable to assume role

Conversely; is there any downside to allowing `sts:SetSourceIdentity` on the role? I think not. Let me send out a PR to make sure this works fine for most people

Unable to assume role

@prsimoes c.f. #224, can you have a look and confirm it fixes your issue? I attached a Mac OS build below for your convenience https://drive.google.com/file/d/1ZZOJ9HqAIUvXbaIxKXbTmmgRHmfZF-sx/view?usp=sharing

Unable to assume role

Thanks. Guess it can't hurt to merge it. Thanks for reporting!

K8s provider: support KUBECONFIG environment variable containing multiple paths

Thanks for reporting! What behavior would you expect?

K8s provider: support KUBECONFIG environment variable containing multiple paths

Stratus Red Team already picks up the current context - it should also honor the `KUBECONFIG` environment variable if it's set, c.f. https://github.com/DataDog/stratus-red-team/blob/main/v2/internal/providers/kubernetes.go#L51-L85, but it fails to consider that it...

Standardize Naming of Instances Created During Warmup Stage

Thanks for reporting! Definitely agree with you.

k8s.persistence.create-token on GKE/EKS: misleading success message

Thanks for reporting! Is this really a problem, though? If I were an attacker, I'd likely go with a high timeout. If the returned token has a lower expiration, well...

Terraform detonator

@stvnswager Can you provide a few examples of scenarios you wanted to test?

Censys response is not valid JSON and cannot be decoded.

Could you add a print to see the response you get?

Censys response is not valid JSON and cannot be decoded.

Could you add a print to see the response you get?