Affected by GO-2023-1622 and 2 other vulnerabilities

GO-2023-1622: Constellation allows Emergency shell access during initramfs boot phase in github.com/edgelesssys/constellation

GO-2024-2727: Constellation has pods exposed to peers in VPC in github.com/edgelesssys/constellation

GO-2025-4076: Constellation has insecure LUKS2 persistent storage partitions which may be opened and used in github.com/edgelesssys/constellation

image

package

v2.5.2 Latest Latest Go to latest Published: Feb 16, 2023 License: AGPL-3.0 Imports: 17 Imported by: 0

Details

Package image provides helping wrappers around a versionsapi fetcher.

It also enables local image overrides and download of raw images.

This section is empty.

This section is empty.

This section is empty.

type Downloader struct {
	// contains filtered or unexported fields
}

Downloader downloads raw images.

func NewDownloader() *Downloader

NewDownloader creates a new Downloader.

func (d *Downloader) Download(ctx context.Context, errWriter io.Writer, showBar bool, source, imageName string) (string, error)

Download downloads the raw image from source.

type Fetcher struct {
	// contains filtered or unexported fields
}

Fetcher fetches image references using a lookup table.

func New() *Fetcher

New returns a new image fetcher.

func (f *Fetcher) FetchReference(ctx context.Context, config *config.Config) (string, error)

FetchReference fetches the image reference for a given image version uid, CSP and image variant.