Skip to content

cookiejack15/test-terraform-rce

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
.github
.github
 
 
infrastructure/legit-module/terraform
infrastructure/legit-module/terraform
 
 
PAYLOAD_FOR_FORK.md
PAYLOAD_FOR_FORK.md
 
 
README.md
README.md
 
 

Repository files navigation

Test Terraform RCE

This repository is a test to validate the Terraform External Data Source RCE vulnerability in CI/CD pipelines.

Structure

.github/
  workflows/
    terraform-orchestrator.yml   # Main workflow
    _terraform-module.yml        # Reusable workflow
  scripts/
    build_matrix.py              # Module detection script
infrastructure/
  legit-module/
    terraform/
      main.tf
      terraform.tfvars

Test Instructions

  1. Fork this repository
  2. In your fork, create a new module with malicious payload
  3. Open a PR to this repository
  4. Observe if the workflow executes the payload

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages