Affected by GO-2023-1520 and 13 other vulnerabilities

GO-2023-1520: JWT audience claim is not verified in github.com/argoproj/argo-cd

GO-2023-1577: Users with any cluster secret update access may update out-of-bounds cluster secrets in github.com/argoproj/argo-cd

GO-2023-1670: Argo CD authenticated but unauthorized users may enumerate Application names via the API in github.com/argoproj/argo-cd

GO-2023-2049: Argo CD cluster secret might leak in cluster details page in github.com/argoproj/argo-cd

GO-2024-2646: Cross-site scripting on application summary component in github.com/argoproj/argo-cd/v2

GO-2024-2792: Argo CD vulnerable to a Denial of Service via malicious jqPathExpressions in ignoreDifferences in github.com/argoproj/argo-cd

GO-2024-2877: ArgoCD Vulnerable to Use of Risky or Missing Cryptographic Algorithms in Redis Cache in github.com/argoproj/argo-cd

GO-2024-2898: Argo-cd authenticated users can enumerate clusters by name in github.com/argoproj/argo-cd

GO-2024-3002: Argo CD Unauthenticated Denial of Service (DoS) Vulnerability via /api/webhook Endpoint in github.com/argoproj/argo-cd

GO-2025-3433: Argo CD does not scrub secret values from patch errors in github.com/argoproj/argo-cd

GO-2025-3720: Argo CD allows cross-site scripting on repositories page in github.com/argoproj/argo-cd

GO-2025-3993: Unauthenticated argocd-server panic via a malicious Bitbucket-Server webhook payload in github.com/argoproj/argo-cd

GO-2025-3994: Repository Credentials Race Condition Crashes Argo CD Server in github.com/argoproj/argo-cd

GO-2025-3996: argo-cd vulnerable unauthenticated DoS via malformed Gogs webhook payload in github.com/argoproj/argo-cd

The highest tagged major version is v3.

managedfields

package

v2.3.6 Latest Latest Go to latest Published: Jul 12, 2022 License: Apache-2.0 Imports: 5 Imported by: 1

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/argoproj/argo-cd

Links

Open Source Insights

Documentation ¶

Index ¶

func Compare(live, config *unstructured.Unstructured) (*typed.Comparison, error)
func Normalize(live, config *unstructured.Unstructured, trustedManagers []string) (*unstructured.Unstructured, *unstructured.Unstructured, error)
func PathToNestedFields(path fieldpath.Path) []string

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

func Compare ¶

func Compare(live, config *unstructured.Unstructured) (*typed.Comparison, error)

Compare will compare the live and the config state and returned a typed.Comparison as a result.

func Normalize ¶

func Normalize(live, config *unstructured.Unstructured, trustedManagers []string) (*unstructured.Unstructured, *unstructured.Unstructured, error)

Normalize will compare the live and config states. If config mutates a field that belongs to one of the trustedManagers it will remove that field from both live and config objects and return the normalized objects in this order. This function won't modify the live and config parameters. It is a no-op if no trustedManagers is provided. It is also a no-op if live or config are nil.

func PathToNestedFields ¶

func PathToNestedFields(path fieldpath.Path) []string

PathToNestedFields will convert a path into a slice of field names so it can be used in unstructured nested fields operations.

Types ¶

This section is empty.

Source Files ¶

View all Source files

managed_fields.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL