Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

nuclei/3.3.0 package update #24139

Merged
merged 1 commit into from
Jul 17, 2024
Merged

nuclei/3.3.0 package update #24139

merged 1 commit into from
Jul 17, 2024

Conversation

octo-sts[bot]
Copy link
Contributor

@octo-sts octo-sts bot commented Jul 17, 2024

@octo-sts octo-sts bot added request-version-update request for a newer version of a package automated pr labels Jul 17, 2024
@github-actions GitHub Actions
Copy link
Contributor

Package nuclei: Click to expand/collapse

Package nuclei:

.PKGINFO metadata:

  (
  	"""
  	# Generated by melange
  	pkgname = nuclei
- 	pkgver = 3.2.9-r2
+ 	pkgver = 3.3.0-r0
  	arch = x86_64
- 	size = 87184963
+ 	size = 86532447
  	origin = nuclei
  	pkgdesc = yaml based vulnerability scanner
  	url = 
- 	commit = de1069c7d33720a183063b37a88859e7679167da
- 	builddate = 1719975930
+ 	commit = e328f70cbcd84606746ac8ee4bf00e26c7029abb
  	license = MIT
- 	provides = cmd:nuclei=3.2.9-r2
- 	datahash = ca6d0da62b62ea0213e7d15becfbd6e2de47fdd71742d067a9407e7cd17a3232
+ 	provides = cmd:nuclei=3.3.0-r0
+ 	datahash = 204e822b66166a1d372cce3b5918e01c1eea1361b1c19f24db6b2c2c3ad8d3a3
  	"""
  )

Modified: /usr/bin/nuclei

bincapz found differences: Click to expand/collapse

Changed: /tmp/wolfictl-apk-3092688326/nuclei/usr/bin/nuclei [🔥 HIGH → 🚨 CRITICAL]

2 new behaviors

RISK KEY DESCRIPTION EVIDENCE
+CRITICAL combo/stealer/wallet makes HTTPS connections and references multiple wallets Coinbas
Metamask
http
+MEDIUM 3P/threat_hunting/powershell references 'powershell' tool, by mthcht \:c

Moved: nuclei/var/lib/db/sbom/nuclei-3.2.9-r2.spdx.json -> /tmp/wolfictl-apk-3092688326/nuclei/var/lib/db/sbom/nuclei-3.3.0-r0.spdx.json (similarity: 0.96)

@octo-sts Octo STS
Copy link
Contributor Author

octo-sts bot commented Jul 17, 2024

bincapz detected files with a risk score equal or higher than 'CRITICAL': Click to expand/collapse

/tmp/bincapz3424788760/packages/x86_64/nuclei-3.3.0-r0.apk/usr/bin/nuclei [🚨 CRITICAL]

RISK KEY DESCRIPTION EVIDENCE
CRITICAL combo/stealer/wallet makes HTTPS connections and references multiple wallets Coinbas
Metamask
http
HIGH net/geoip public service for IP geolocation ip-api.com
HIGH net/public_ip public service to discover external IP address ipify.org
ipinfo.io
HIGH ref/site/grayware References websites that host code that can be used maliciously shodan.io
HIGH secrets/slack accesses Slack data .config
Slack
leveldb

@egibs egibs mentioned this pull request Jul 17, 2024
Merged
@hectorj2f hectorj2f merged commit 20c8a6e into main Jul 17, 2024
8 checks passed
@hectorj2f hectorj2f deleted the wolfictl-6f4b0c10-ea00-4967-af2b-35464b1c9db7 branch July 17, 2024 18:56
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@egibs egibs egibs approved these changes

@hectorj2f hectorj2f hectorj2f approved these changes

Assignees
No one assigned
Labels
automated pr request-version-update request for a newer version of a package service:bincapz/blocking
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@hectorj2f @egibs @wolfi-bot