Jeroen Willemsen
Jeroen Willemsen
Currently the Terratests only check the cloud challenges, but there are no checks on whether any challenges are disabled in the home page, while all of the challenges should be...
The obfuscated front-end function does sometimes give back a different value than the actual value used in the backend in challenge16. We need to: - [ ] make sure we...
We need to add a section in the readme that explains how you can disable/remove a challenge: In short: you have to remove the challenge from https://github.com/OWASP/wrongsecrets/blob/c981b2e0557301ab30a4b1a294de7080ec54ac49/src/main/resources/wrong-secrets-configuration.yaml and then you...
This challenge is about using docker secrets from docker buildx buildpacks: Use the --secret, but then with a hardcoded value referenced in the shell script to publish the docker container...
Create a challenge for docker compose setup, where the compose secret is hardcoded inside teh docker compose yml TODO: - [ ] Implement a docker-compose setup for wrongsecrets with the...
This challenge is about packing and explaining why you should not have nexus deployment credentials in your github project hardcoded. However, we will not have an actual nexus setup right...
This is a challenge based on https://developer.hashicorp.com/vault/tutorials/kubernetes/kubernetes-sidecar, but now, together with the new secret, also add another secret, but then hardcode the actual value as part of the template which...
In order to become more efficient in CLI time there are a bunch of things we can simplify: - [ ] 1. create 1 clean-install with all the sskips in...
aad-pod-identity is no longer supported & K8S namespace does not enforce restricted policy in Azure
In order to complete the migration to Kubernetes 1.25 on AKS and enforce the `restricted` psa in the default namespace, we need to migrate from `aad-pod-identity` to https://azure.github.io/azure-workload-identity/docs/ Issue is...
In order to speed up challengecreation we can best create a cli which creates the required class file and asciidoc. It only needs options like: - type (cloud/k8s/docker) - Title...