In vm2 for versions up to 3.9.19, Node.js custom inspect function allows attackers to escape the sandbox and run arbitrary code.
Nicolás Georger ngeorger
🗨️
leesh3288
/ vm2_3.9.19_sandbox_escape_2.md
Last active
March 30, 2024 07:00
Sandbox Escape in vm2@3.9.19 via custom inspect function
ngeorger
/ microk8s-2node-cluster-md
Last active
April 29, 2023 18:57
Create a 2 node kubernetes cluster with microk8s
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ## MASTER NODE: | |
| ```sh | |
| microk8s.add-node --token-ttl 3600 --format yaml --token $(openssl rand -hex 32) | |
| ``` | |
| ## WORKER NODE | |
| Using the previous output: |
ngeorger
/ backup-ns-secrets-k8s.sh
Last active
December 29, 2023 04:55
Backup or dump kubernetes secrets by namespaces
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/bash | |
| # This script is based on this one https://kevinsimper.medium.com/how-to-dump-all-kubernetes-secrets-to-yaml-files-b5afcf2d1f56 | |
| # But also it reads every namespace in your current default context and dumps it's secrets as a file named as the namespace and yml extension | |
| # Tested on non-productive environments. | |
| kubectl get namespaces | awk '{print $1}' | xargs -I{} sh -c 'kubectl get secrets -o yaml -n "$1" --no-headers >> "$1.yaml"' - {} |
Klerith
/ recomendada.Dockerfile
Last active
November 26, 2023 20:03
NextJS - Dockerfile - Configuración simple y recomendada
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Fuente: https://github.com/vercel/next.js/blob/canary/examples/with-docker/README.md | |
| # Install dependencies only when needed | |
| FROM node:16-alpine AS deps | |
| # Check https://github.com/nodejs/docker-node/tree/b4117f9333da4138b03a546ec926ef50a31506c3#nodealpine to understand why libc6-compat might be needed. | |
| RUN apk add --no-cache libc6-compat | |
| WORKDIR /app | |
| COPY package.json yarn.lock ./ | |
| RUN yarn install --frozen-lockfile |
kenji21
/ xcode-previous-older-sdks.md
Last active
May 8, 2024 11:37
Use previous/older SDKs with Xcode
Since monterey update does not allow us to use Xcode previous than 13, let's show how to "install previous SDKs"
Swift toolchains, from https://swift.org/download/
Previous Xcode.xip, from the https://developer.apple.com
tuladhar
/ self-hosted-runner-template.yaml
Last active
March 6, 2023 04:25
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| apiVersion: actions.summerwind.dev/v1alpha1 | |
| kind: RunnerDeployment | |
| metadata: | |
| name: runner-deployment | |
| spec: | |
| template: | |
| spec: | |
| repository: tuladhar/self-hosted-runner | |
| --- | |
| apiVersion: actions.summerwind.dev/v1alpha1 |
thedivtagguy
/ sheets-to-md.py
Created
January 6, 2021 03:39
Converting Google Sheets to Markdown Files
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Takes in a file CSV file and outputs each row as a Markdown file with YAML front matter named after first column. | |
| # Data in the first row of the CSV is assumed to be the column heading. | |
| # Original work borrowed from: https://github.com/EvanLovely/csv_to_jekyll | |
| # Adapted from https://www.bryanklein.com/blog/hugo-python-gsheets-oh-my/ | |
| # Import the python libraries. | |
| import gspread | |
| from oauth2client.service_account import ServiceAccountCredentials | |
| from pathlib import Path | |
| import os |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <!-- | |
| Parameters: | |
| type - (Required) album / track / playlist / artist | |
| id - (Required) Target ID | |
| width - (Optional) width | |
| height - (Optional) height | |
| --> | |
| {{ if .IsNamedParams }} | |
| <iframe src="https://open.spotify.com/embed/{{ .Get "type" }}/{{ .Get "id" }}" |
vikpe
/ fix_authenticity_of_github_problem.md
Last active
May 2, 2024 16:22
FIX: The authenticity of host github.com can't be established.
Error
The authenticity of host 'github.com (140.82.113.4)' can't be established.
Fix
ssh-keyscan github.com >> ~/.ssh/known_hosts
fatihyildizhan
/ Docker 23 + Traefik 2.9.10 and v1.7 + Let's Encrypt + Github Registry V2 ghcr.io + Updated on 12 April 2023
Last active
October 22, 2023 11:58
Docker 23 + Traefik 2.9.10 and v1.7 + Let's Encrypt + Github Registry V2 ghcr.io + Updated on 12 April 2023
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Docker 23 + Traefik v2.9.10 and v1.7 + Let's Encrypt + Github Registry V2 ghcr.io + Updated on 12 April 2023 | |
| Content: | |
| - Ubuntu 22.04 | |
| - Docker Engine 23.0.3 | |
| - Docker Compose 2.17.2 | |
| - Traefik v1.7.18 with dnsChallenge | |
| - Traefik v2.9.9 with httpChallenge | |
| -- | |
| - Github Registry V2 ghcr.io |
NewerOlder