#336 fix docker-compose build error Pull request opened by tinder-tder This fixes the error when running docker-compose build

$ docker-compose build
ERROR: Service "postgres" defines an invalid healthcheck: when "test" is a list the first item must be either NONE, CMD or CMD-SHELL

jmpsec/osctrl ✅ All checks have passed 4/4 successful checks

#337 add redis connection string support (to support tls and more connecti… Pull request opened by tinder-tder This will add a new cli option "redis-connection-string" to use a redis connection string instead of the current default config format. This will allow more control over connection options such as TLS connections (rediss://) and setting option parameters. jmpsec/osctrl ✅ All checks have passed 4/4 successful checks

how should the carver.json file look like for s3 if files are pulled from some clients..

@Ziffare the format of the

carver.json

should be as follows:

{
  "s3": {
    "bucket": "this-is-my-bucket",
    "region": "aws-region",
    "accessKey": "THISISTHEACCESSKEY",
    "secretAccessKey": "hereisthesecretaccesskey"
  }
}

#338 Saml path crashing with nil pointer Issue created by tinder-tder O am trying to figure out how to get SAML logins working with Okta but am struggling with the lack of documentation. When configuring the saml.json and setting the admin auth to 'saml' I can get it to start up but when trying to hit the 'saml/acs' path on the admin server it causes a crash.

Feb  7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: server.go:3197: http: panic serving 10.0.101.226:60668: runtime error: invalid memory address or nil pointer dereference
Feb  7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: goroutine 3522 [running]:
Feb  7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: net/http.(*conn).serve.func1()
Feb  7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: #011/usr/local/go/src/net/http/server.go:1825 +0xbf
Feb  7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: panic({0xf73c20, 0x188cbe0})
Feb  7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: #011/usr/local/go/src/runtime/panic.go:844 +0x258
Feb  7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: <http://github.com/crewjam/saml.findChildren(0xc000023260|github.com/crewjam/saml.findChildren(0xc000023260>?, {0x10da9b0, 0x22}, {0x10bba10, 0x9})
Feb  7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: #011/root/go/pkg/mod/github.com/crewjam/saml@v0.4.9/service_provider.go:1580 +0x49
Feb  7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: <http://github.com/crewjam/saml.findChild(0x125ece8|github.com/crewjam/saml.findChild(0x125ece8>?, {0x10da9b0, 0x22}, {0x10bba10, 0x9})
Feb  7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: #011/root/go/pkg/mod/github.com/crewjam/saml@v0.4.9/service_provider.go:1626 +0x31
Feb  7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: <http://github.com/crewjam/saml.(*ServiceProvider).validateSignature(0xc000031600|github.com/crewjam/saml.(*ServiceProvider).validateSignature(0xc000031600>, 0x0)
Feb  7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: #011/root/go/pkg/mod/github.com/crewjam/saml@v0.4.9/service_provider.go:1076 +0x56
Feb  7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: <http://github.com/crewjam/saml.(*ServiceProvider).parseResponse(0xc000031600|github.com/crewjam/saml.(*ServiceProvider).parseResponse(0xc000031600>, 0x18d7938?, {0xc0004ea390?, 0x1, 0x1}, {0x7f8978c2a060?, 0x18d7938?, 0x0?}, 0x0)
Feb  7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: #011/root/go/pkg/mod/github.com/crewjam/saml@v0.4.9/service_provider.go:832 +0x95
Feb  7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: <http://github.com/crewjam/saml.(*ServiceProvider).ParseXMLResponse(0xc0000ca000|github.com/crewjam/saml.(*ServiceProvider).ParseXMLResponse(0xc0000ca000>?, {0x18d7938, 0x0, 0x0}, {0xc0004ea390, 0x1, 0x1})
Feb  7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: #011/root/go/pkg/mod/github.com/crewjam/saml@v0.4.9/service_provider.go:806 +0x2fe
Feb  7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: <http://github.com/crewjam/saml.(*ServiceProvider).parseResponseHTTP(0xc00059e101|github.com/crewjam/saml.(*ServiceProvider).parseResponseHTTP(0xc00059e101>?, 0xc00022e300, {0xc0004ea390, 0x1, 0x1})
Feb  7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: #011/root/go/pkg/mod/github.com/crewjam/saml@v0.4.9/service_provider.go:663 +0x197
Feb  7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: <http://github.com/crewjam/saml.(*ServiceProvider).ParseResponse(0xf138c0|github.com/crewjam/saml.(*ServiceProvider).ParseResponse(0xf138c0>?, 0xc00022e300?, {0xc0004ea390?, 0x1?, 0x1?})
Feb  7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: #011/root/go/pkg/mod/github.com/crewjam/saml@v0.4.9/service_provider.go:601 +0xff
Feb  7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: <http://github.com/crewjam/saml/samlsp.(*Middleware).ServeACS(0xc000031600|github.com/crewjam/saml/samlsp.(*Middleware).ServeACS(0xc000031600>, {0x125e410, 0xc0003a4000}, 0xc0004f0210?)
Feb  7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: #011/root/go/pkg/mod/github.com/crewjam/saml@v0.4.9/samlsp/middleware.go:89 +0x13a
Feb  7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: <http://github.com/crewjam/saml/samlsp.(*Middleware).ServeHTTP(0xc000031600|github.com/crewjam/saml/samlsp.(*Middleware).ServeHTTP(0xc000031600>, {0x125e410, 0xc0003a4000}, 0xc00022e300)
Feb  7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: #011/root/go/pkg/mod/github.com/crewjam/saml@v0.4.9/samlsp/middleware.go:60 +0xe5
Feb  7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: <http://github.com/gorilla/mux.(*Router).ServeHTTP(0xc000444300|github.com/gorilla/mux.(*Router).ServeHTTP(0xc000444300>, {0x125e410, 0xc0003a4000}, 0xc000346200)
Feb  7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: #011/root/go/pkg/mod/github.com/gorilla/mux@v1.8.0/mux.go:210 +0x1cf
Feb  7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: net/http.serverHandler.ServeHTTP({0xc0004f1200?}, {0x125e410, 0xc0003a4000}, 0xc000346200)
Feb  7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: #011/usr/local/go/src/net/http/server.go:2916 +0x43b
Feb  7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: net/http.(*conn).serve(0xc0002723c0, {0x125ed58, 0xc0003f9800})
Feb  7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: #011/usr/local/go/src/net/http/server.go:1966 +0x5d7
Feb  7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: created by net/http.(*Server).Serve
Feb  7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: #011/usr/local/go/src/net/http/server.go:3071 +0x4db
Feb  7 18:48:50 ip-10-0-2-179 osctrl-admin[111372]: auth.go:50: GetSession saml: session not present
Feb  7 18:48:50 ip-10-0-2-179 osctrl-admin[111372]: auth.go:60: error parsing JWT: token contains an invalid number of segments
Feb  7 18:48:50 ip-10-0-2-179 osctrl-admin[111372]: auth.go:50: GetSession saml: session not present
Feb  7 18:48:50 ip-10-0-2-179 osctrl-admin[111372]: auth.go:60: error parsing JWT: token contains an invalid number of segments

the saml.json file looks like:

{
  "saml": {
    "metadataurl": "<metadata url from okta app>",
    "keypath": "/opt/osctrl/config/stub.key",
    "certpath": "/opt/osctrl/config/stub.crt",
    "loginurl": "<sso url from okta>",
    "rooturl": "https://<admin dns entry>"
  }
}

Any help would be appreciated in setting up saml with okta. I have looked at the crewjam repo and there are similar questions about okta setup that have no resolution or dont offer any details. https://github.com/crewjam/saml/issues?q=is%3Aissue+is%3Aopen+okta jmpsec/osctrl

2 new commits pushed to

<https://github.com/jmpsec/osctrl/tree/main|main>

by javuto

<https://github.com/jmpsec/osctrl/commit/71740b16a29d3595dcd5eedd7ecfdcb9be63d3ba|71740b16>

- fix docker-compose build error

<https://github.com/jmpsec/osctrl/commit/d90587abc49581549f988b1064517ef1b40a6522|d90587ab>

- Merge pull request #336 from tinder-tder/postgres_docker_build_fix jmpsec/osctrl

Hi, I have deployed osctrl using docker and I am able to get to login screen using browser. But login fails with 'invalid credentials'. I have used the same credentials as configured in docker-compose.yml "OSCTRL_USER" and "OSCTRL_PASS". Any idea what could cause this issue ?

2 new commits pushed to

<https://github.com/jmpsec/osctrl/tree/main|main>

by javuto

<https://github.com/jmpsec/osctrl/commit/d200006818316ecf0faf2a01b6ad9addba3103cf|d2000068>

- add redis connection string support (to support tls and more connection options)

<https://github.com/jmpsec/osctrl/commit/fecdd20b922dbe00f2454454a0c71f55083831e8|fecdd20b>

- Merge pull request #337 from tinder-tder/redis_connection_string jmpsec/osctrl

#339 Build osctrl components for arm64 + darwin. Build osctr-cli for Windows Pull request opened by CptOfEvilMinions Background Our CI/CD pipeline is not building Docker containers for Darwin arm64 (M1 macbooks). Changes This PR instructs the CI/CD pipeline to build osctrl component for Linux (amd64, arm64), darwin (amd64, arm64), and osctrl-cli for Windows. jmpsec/osctrl ✅ All checks have passed 30/30 successful checks

5 new commits pushed to

<https://github.com/jmpsec/osctrl/tree/main|main>

by javuto

<https://github.com/jmpsec/osctrl/commit/eef658bba9a4d0492385c18159afc07fe0e9db7c|eef658bb>

- Build osctrl components for arm64 + darwin. Build osctr-cli for Windows

<https://github.com/jmpsec/osctrl/commit/fcfb24f478c75681a20d764a307b4f126f53aeb1|fcfb24f4>

- Update all workflows

<https://github.com/jmpsec/osctrl/commit/73b614352b4b0ac4b3abd7e4fea7a1802fd47c5b|73b61435>

- Update typo

<https://github.com/jmpsec/osctrl/commit/fb86abe88227e3a856e367eac149494fa33020f0|fb86abe8>

- Update all workflows -2

<https://github.com/jmpsec/osctrl/commit/89a9ade388a6ad7a7a1a1a80eb913a36a24d751c|89a9ade3>

- Merge pull request #339 from jmpsec/arm64 jmpsec/osctrl

#340 mistake Issue created by massimiliano-dalcero none jmpsec/osctrl

#341 Dev env Pull request opened by CptOfEvilMinions Background: A unified development environment didn't exist. Changes: Create a Docker dev env and removed legacy Docker scripts/configs. Tests: ``` ➜ osctrl git:(dev-env) docker-compose -f docker-compose-dev.yml build [+] Building 137.7s (62/71) => [osctrl-admin-dev:v0.3.1 internal] load build definition from Dockerfile-dev-admin 0.0s => => transferring dockerfile: 1.06kB 0.0s => [osctrl-tls-dev:v0.3.1 internal] load build definition from Dockerfile-dev-tls 0.0s => => transferring dockerfile: 682B 0.0s => [osctrl-api-dev:v0.3.1 internal] load build definition from Dockerfile-dev-api 0.0s => => transferring dockerfile: 682B 0.0s => [osctrl-osquery-dev:v0.3.1 internal] load build definition from Dockerfile-dev-cli 0.0s => => transferring dockerfile: 1.60kB 0.0s => [osctrl-cli-dev:v0.3.1 internal] load build definition from Dockerfile-dev-cli 0.0s => => transferring dockerfile: 1.60kB 0.0s => [osctrl-admin-dev:v0.3.1 internal] load .dockerignore 0.0s => => transferring context: 34B 0.0s => [osctrl-tls-dev:v0.3.1 internal] load .dockerignore 0.0s => => transferring context: 34B 0.0s => [osctrl-api-dev:v0.3.1 internal] load .dockerignore 0.0s => => transferring context: 34B 0.0s => [osctrl-osquery-dev:v0.3.1 internal] load .dockerignore 0.0s => => transferring context: 34B 0.0s => [osctrl-cli-dev:v0.3.1 internal] load .dockerignore 0.0s => => transferring context: 34B 0.0s => [osctrl-admin-dev:v0.3.1 internal] load metadata for docker.io/library/golang:1.19.2 1.6s => [osctrl-api-dev:v0.3.1 1/11] FROM docker.io/library/golang:1.19.2@sha256:992d5fea982526ce265a0631a391e3c94694f4d15190fd170f35d91b2e6cb0ba 0.1s => => resolve docker.io/library/golang:1.19.2@sha256:992d5fea982526ce265a0631a391e3c94694f4d15190fd170f35d91b2e6cb0ba 0.0s => [osctrl-api-dev:v0.3.1 internal] load build context 0.2s => => transferring context: 79.16kB 0.1s => [osctrl-tls-dev:v0.3.1 internal] load build context 0.1s => => transferring context: 79.16kB 0.1s => [osctrl-osquery-dev:v0.3.1 internal] load build context 0.1s => => transferring context: 79.16kB 0.1s => [osctrl-cli-dev:v0.3.1 internal] load build context 0.1s => => transferring context: 79.16kB 0.1s => [osctrl-admin-dev:v0.3.1 internal] load build context 0.1s => => transferring context: 79.16kB 0.1s => CACHED [osctrl-admin-dev:v0.3.1 2/11] WORKDIR /usr/src/app 0.0s => CACHED [osctrl-osquery-dev:v0.3.1 3/11] RUN go install github.com/cosmtrek/air@v1.41.0 0.0s => CACHED [osctrl-api-dev:v0.3.1 4/11] RUN go install github.com/go-delve/delve/cmd/dlv@v1.20.1 0.0s => [osctrl-osquery-dev:v0.3.1 osctrl-cli-dev 5/13] COPY . /usr/src/app 0.2s => CACHED [osctrl-admin-dev:v0.3.1 3/15] RUN go install github.com/cosmtrek/air@v1.41.0 … jmpsec/osctrl ✅ All checks have passed 28/28 successful checks

#342 Bump golang.org/x/text from 0.3.7 to 0.3.8 in /users Pull request opened by dependabot[bot] Bumps golang.org/x/text from 0.3.7 to 0.3.8. Commits • `434eadc` language: reject excessively large Accept-Language strings • `23407e7` go.mod: ignore cyclic dependency for tagging • `b18d3dd` secure/precis: replace bytes.Compare with bytes.Equal • `795e854` all: replace io/ioutil with io and os package • `b0ca10f` internal/language: bump script types to uint16 and update registry • `ba9b0e1` go.mod: update x/tools to HEAD • `d03b418` A+C: delete AUTHORS and CONTRIBUTORS • `b4bca84` language/display: fix Tag method comment • `ea49e3e` go.mod: update x/tools to HEAD • `78819d0` go.mod: update to golang.org/x/text v0.1.10 • Additional commits viewable in compare view Dependabot compatibility score Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting

@dependabot rebase

. * * * Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: •

@dependabot rebase

will rebase this PR •

@dependabot recreate

will recreate this PR, overwriting any edits that have been made to it •

@dependabot merge

will merge this PR after your CI passes on it •

@dependabot squash and merge

will squash and merge this PR after your CI passes on it •

@dependabot cancel merge

will cancel a previously requested merge and block automerging •

@dependabot reopen

will reopen this PR if it is closed •

@dependabot close

will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually •

@dependabot ignore this major version

will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) •

@dependabot ignore this minor version

will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) •

@dependabot ignore this dependency

will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) •

@dependabot use these labels

will set the current labels as the default for future PRs for this repo and language •

@dependabot use these reviewers

will set the current reviewers as the default for future PRs for this repo and language •

@dependabot use these assignees

will set the current assignees as the default for future PRs for this repo and language •

@dependabot use this milestone

will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the Security Alerts page. jmpsec/osctrl ✅ All checks have passed 30/30 successful checks

2 new commits pushed to

<https://github.com/jmpsec/osctrl/tree/main|main>

by javuto

<https://github.com/jmpsec/osctrl/commit/21b700782e2ecb524940a78bf94eb352ffed6c20|21b70078>

- Bump golang.org/x/text from 0.3.7 to 0.3.8 in /users

<https://github.com/jmpsec/osctrl/commit/b36ef3846ef72ef1f9c9a7420fdc0a34bca5de8e|b36ef384>

- Merge pull request #342 from jmpsec/dependabot/go_modules/users/golang.org/x/text-0.3.8 jmpsec/osctrl

#343 Bump golang.org/x/sys from 0.0.0-20220114195835-da31bd327af9 to 0.1.0 in /backend Pull request opened by dependabot[bot] Bumps golang.org/x/sys from 0.0.0-20220114195835-da31bd327af9 to 0.1.0. Commits • See full diff in compare view Dependabot compatibility score Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting

@dependabot rebase

. * * * Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: •

@dependabot rebase

will rebase this PR •

@dependabot recreate

will recreate this PR, overwriting any edits that have been made to it •

@dependabot merge

will merge this PR after your CI passes on it •

@dependabot squash and merge

will squash and merge this PR after your CI passes on it •

@dependabot cancel merge

will cancel a previously requested merge and block automerging •

@dependabot reopen

will reopen this PR if it is closed •

@dependabot close

will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually •

@dependabot ignore this major version

will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) •

@dependabot ignore this minor version

will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) •

@dependabot ignore this dependency

will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) •

@dependabot use these labels

will set the current labels as the default for future PRs for this repo and language •

@dependabot use these reviewers

will set the current reviewers as the default for future PRs for this repo and language •

@dependabot use these assignees

will set the current assignees as the default for future PRs for this repo and language •

@dependabot use this milestone

will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the Security Alerts page. jmpsec/osctrl GitHub Actions: build_and_test (cli, windows, arm64) GitHub Actions: build_and_test (cli, windows, amd64) GitHub Actions: build_and_test (cli, darwin, arm64) GitHub Actions: build_and_test (cli, darwin, amd64) GitHub Actions: build_and_test (cli, linux, arm64) GitHub Actions: build_and_test (cli, windows, arm64) GitHub Actions: build_and_test (cli, linux, amd64) GitHub Actions: build_and_test (cli, windows, amd64) GitHub Actions: build_and_test (api, windows, arm64) GitHub Actions: build_and_test (cli, darwin, arm64) GitHub Actions: build_and_test (api, windows, amd64) GitHub Actions: build_and_test (cli, darwin, amd64) GitHub Actions: build_and_test (api, darwin, arm64) GitHub Actions: build_and_test (cli, linux, arm64) GitHub Actions: build_and_test (api, darwin, amd64) GitHub Actions: build_and_test (cli, linux, amd64) GitHub Actions: build_and_test (api, linux, arm64) GitHub Actions: build_and_test (api, windows, arm64) GitHub Actions: build_and_test (api, linux, amd64) GitHub Actions: build_and_test (api, windows, amd64) GitHub Actions: build_and_test (api, darwin, arm64) GitHub Actions: build_and_test (api, darwin, amd64) GitHub Actions: build_and_test (admin, darwin, arm64) GitHub Actions: build_and_test (api, linux, arm64) GitHub Actions: build_and_test (admin, darwin, amd64) GitHub Actions: build_and_test (api, linux, amd64) GitHub Actions: build_and_test (admin, windows, arm64) GitHub Actions: build_and_test (admin, linux, arm64) ✅ 2 other checks have passed 2/30 successful checks

#344 Bump golang.org/x/text from 0.3.7 to 0.3.8 in /backend Pull request opened by dependabot[bot] Bumps golang.org/x/text from 0.3.7 to 0.3.8. Commits • `434eadc` language: reject excessively large Accept-Language strings • `23407e7` go.mod: ignore cyclic dependency for tagging • `b18d3dd` secure/precis: replace bytes.Compare with bytes.Equal • `795e854` all: replace io/ioutil with io and os package • `b0ca10f` internal/language: bump script types to uint16 and update registry • `ba9b0e1` go.mod: update x/tools to HEAD • `d03b418` A+C: delete AUTHORS and CONTRIBUTORS • `b4bca84` language/display: fix Tag method comment • `ea49e3e` go.mod: update x/tools to HEAD • `78819d0` go.mod: update to golang.org/x/text v0.1.10 • Additional commits viewable in compare view Dependabot compatibility score Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting

@dependabot rebase

. * * * Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: •

@dependabot rebase

will rebase this PR •

@dependabot recreate

will recreate this PR, overwriting any edits that have been made to it •

@dependabot merge

will merge this PR after your CI passes on it •

@dependabot squash and merge

will squash and merge this PR after your CI passes on it •

@dependabot cancel merge

will cancel a previously requested merge and block automerging •

@dependabot reopen

will reopen this PR if it is closed •

@dependabot close

will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually •

@dependabot ignore this major version

will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) •

@dependabot ignore this minor version

will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) •

@dependabot ignore this dependency

will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) •

@dependabot use these labels

will set the current labels as the default for future PRs for this repo and language •

@dependabot use these reviewers

will set the current reviewers as the default for future PRs for this repo and language •

@dependabot use these assignees

will set the current assignees as the default for future PRs for this repo and language •

@dependabot use this milestone

will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the Security Alerts page. jmpsec/osctrl GitHub Actions: build_and_test (cli, windows, arm64) GitHub Actions: build_and_test (cli, windows, amd64) GitHub Actions: build_and_test (cli, windows, arm64) GitHub Actions: build_and_test (cli, darwin, arm64) GitHub Actions: build_and_test (cli, windows, amd64) GitHub Actions: build_and_test (cli, darwin, amd64) GitHub Actions: build_and_test (cli, darwin, arm64) GitHub Actions: build_and_test (cli, linux, arm64) GitHub Actions: build_and_test (cli, darwin, amd64) GitHub Actions: build_and_test (cli, linux, amd64) GitHub Actions: build_and_test (cli, linux, arm64) GitHub Actions: build_and_test (cli, linux, amd64) GitHub Actions: build_and_test (api, darwin, arm64) GitHub Actions: build_and_test (api, darwin, arm64) GitHub Actions: build_and_test (api, darwin, amd64) GitHub Actions: build_and_test (api, darwin, amd64) GitHub Actions: build_and_test (api, linux, arm64) GitHub Actions: build_and_test (api, linux, arm64) GitHub Actions: build_and_test (api, linux, amd64) GitHub Actions: build_and_test (api, linux, amd64) GitHub Actions: build_and_test (admin, darwin, arm64) GitHub Actions: build_and_test (admin, darwin, arm64) ✅ 8 other checks have passed 8/30 successful checks

#345 Preparing settings to be set by environment Pull request opened by javuto Big refactor, to prepare settings to be environment independent. jmpsec/osctrl ✅ All checks have passed 30/30 successful checks

2 new commits pushed to

<https://github.com/jmpsec/osctrl/tree/main|main>

by javuto

<https://github.com/jmpsec/osctrl/commit/4cfff01786deebc6bd3de9dd34c11c2e0b9f0a3d|4cfff017>

- Settings by environment

<https://github.com/jmpsec/osctrl/commit/1784ab9782b379e548c613af6b1f8e97217796c0|1784ab97>

- Merge pull request #345 from jmpsec/logging-env-db jmpsec/osctrl

2 new commits pushed to

<https://github.com/jmpsec/osctrl/tree/main|main>

by javuto

<https://github.com/jmpsec/osctrl/commit/249e653b22ccba95bd5da38197a75063ab5b25ef|249e653b>

- Bump golang.org/x/sys in /backend

<https://github.com/jmpsec/osctrl/commit/6d6b68931e9f390357a6e032cab96b8d10da00cf|6d6b6893>

- Merge pull request #343 from jmpsec/dependabot/go_modules/backend/golang.org/x/sys-0.1.0 jmpsec/osctrl

2 new commits pushed to

<https://github.com/jmpsec/osctrl/tree/main|main>

by javuto

<https://github.com/jmpsec/osctrl/commit/0ceb40fad2673996221e4ca26fe84be85c43776f|0ceb40fa>

- Bump golang.org/x/text from 0.3.7 to 0.3.8 in /backend

<https://github.com/jmpsec/osctrl/commit/38c6f3f162dd3a8334fd24ef17c0726d0fa6ce51|38c6f3f1>

- Merge pull request #344 from jmpsec/dependabot/go_modules/backend/golang.org/x/text-0.3.8 jmpsec/osctrl

#346 Tidy up dependencies Pull request opened by javuto jmpsec/osctrl ✅ All checks have passed 30/30 successful checks

2 new commits pushed to

<https://github.com/jmpsec/osctrl/tree/main|main>

by javuto

<https://github.com/jmpsec/osctrl/commit/80724d857c1216473f5e8c7170d615c696101c0c|80724d85>

- Tidy up dependencies

<https://github.com/jmpsec/osctrl/commit/79aca0443fbb99e482089589214c615c9165a157|79aca044>

- Merge pull request #346 from jmpsec/dependencies-tidy jmpsec/osctrl

#127 Carve files using `osctrl-api` Issue created by javuto Ability to carve files should be added to

osctrl-api

to increase the automation capabilities. jmpsec/osctrl

#347 osctrl-cli from docker container doesn`t work Issue created by an4oys942 If you deploy the project using docker-compose, then the osctrl-cli code in the container is not working $ /opt/osctrl/bin/osctrl-cli user add --username admin --username Changeme123! --admin --environment dev panic: runtime error: invalid memory address or nil pointer dereference [signal SIGSEGV: segmentation violation code=0x1 addr=0x0 pc=0x8583df] goroutine 1 [running]: github.com/jmpsec/osctrl/environments.(*Environment).Get(_, {_, _}) /home/runner/work/osctrl/osctrl/environments/environments.go:114 +0xff main.addUser(0x0?) /home/runner/work/osctrl/osctrl/cli/user.go:61 +0x188 main.cliWrapper.func1(0xc0000dc480?) /home/runner/work/osctrl/osctrl/cli/main.go:1475 +0x4e2 github.com/urfave/cli/v2.(*Command).Run(0xc00023c480, 0xc000248b80) /home/runner/go/pkg/mod/github.com/urfave/cli/v2@v2.3.0/command.go:163 +0x5bb github.com/urfave/cli/v2.(*App).RunAsSubcommand(0xc0002344e0, 0xc0002489c0) /home/runner/go/pkg/mod/github.com/urfave/cli/v2@v2.3.0/app.go:434 +0xc8a github.com/urfave/cli/v2.(*Command).startApp(0xc00023c360, 0xc0002489c0) /home/runner/go/pkg/mod/github.com/urfave/cli/v2@v2.3.0/command.go:278 +0x713 github.com/urfave/cli/v2.(*Command).Run(0xc000232280?, 0x15?) /home/runner/go/pkg/mod/github.com/urfave/cli/v2@v2.3.0/command.go:94 +0xba github.com/urfave/cli/v2.(*App).RunContext(0xc0002341a0, {0xc0c560?, 0xc000028088}, {0xc0000200a0, 0xa, 0xa}) /home/runner/go/pkg/mod/github.com/urfave/cli/v2@v2.3.0/app.go:313 +0xb48 github.com/urfave/cli/v2.(*App).Run(...) /home/runner/go/pkg/mod/github.com/urfave/cli/v2@v2.3.0/app.go:224 main.main() /home/runner/work/osctrl/osctrl/cli/main.go:1504 +0x1f4 $ /opt/osctrl/bin/osctrl-cli settings show panic: runtime error: invalid memory address or nil pointer dereference [signal SIGSEGV: segmentation violation code=0x1 addr=0x0 pc=0x75d75f] goroutine 1 [running]: github.com/jmpsec/osctrl/settings.(*Settings).RetrieveAllValues(0x0) /home/runner/work/osctrl/osctrl/settings/settings.go:231 +0x5f main.listConfiguration(0x0?) /home/runner/work/osctrl/osctrl/cli/settings.go:14 +0x35 main.cliWrapper.func1(0xc00027f530?) /home/runner/work/osctrl/osctrl/cli/main.go:1475 +0x4e2 github.com/urfave/cli/v2.(*Command).Run(0xc0002305a0, 0xc000280b00) /home/runner/go/pkg/mod/github.com/urfave/cli/v2@v2.3.0/command.go:163 +0x5bb github.com/urfave/cli/v2.(*App).RunAsSubcommand(0xc0001ccea0, 0xc000280980) /home/runner/go/pkg/mod/github.com/urfave/cli/v2@v2.3.0/app.go:434 +0xc8a github.com/urfave/cli/v2.(*Command).startApp(0xc000230120, 0xc000280980) /home/runner/go/pkg/mod/github.com/urfave/cli/v2@v2.3.0/command.go:278 +0x713 github.com/urfave/cli/v2.(*Command).Run(0xa3ff60?, 0xc0001f9ef0?) /home/runner/go/pkg/mod/github.com/urfave/cli/v2@v2.3.0/command.go:94 +0xba github.com/urfave/cli/v2.(*App).RunContext(0xc0001ccb60, {0xc0c560?, 0xc0000ae020}, {0xc000094150, 0x3, 0x3}) /home/runner/go/pkg/mod/github.com/urfave/cli/v2@v2.3.0/app.go:313 +0xb48 github.com/urfave/cli/v2.(*App).Run(...) /home/runner/go/pkg/mod/github.com/urfave/cli/v2@v2.3.0/app.go:224 main.main() /home/runner/work/osctrl/osctrl/cli/main.go:1504 +0x1f4 jmpsec/osctrl

#348 Bump github.com/crewjam/saml from 0.4.9 to 0.4.13 Pull request opened by dependabot[bot] Bumps github.com/crewjam/saml from 0.4.9 to 0.4.13. Commits • `8e92368` Merge pull request from GHSA-5mqj-xc49-246p • `2aeb2ef` Update README example to use displayName attribute (#486) • `5049389` Bump github.com/kr/pretty from 0.3.0 to 0.3.1 (#484) • `73bf1ff` Bump github.com/stretchr/testify from 1.6.1 to 1.8.1 (#483) • `cfc9c75` Bump github.com/golang-jwt/jwt/v4 from 4.4.2 to 4.4.3 (#467) • `b7ab93b` Bump github.com/google/go-cmp from 0.5.8 to 0.5.9 (#459) • `5a6e8cc` update etreeutils.TransformExcC14n signature (#478) • `957d92a` update test expectations • `8b7e458` fmt • `f98e759` feat: Add Subject ID attribute support (#454) • Additional commits viewable in compare view Dependabot compatibility score Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting

@dependabot rebase

. * * * Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: •

@dependabot rebase

will rebase this PR •

@dependabot recreate

will recreate this PR, overwriting any edits that have been made to it •

@dependabot merge

will merge this PR after your CI passes on it •

@dependabot squash and merge

will squash and merge this PR after your CI passes on it •

@dependabot cancel merge

will cancel a previously requested merge and block automerging •

@dependabot reopen

will reopen this PR if it is closed •

@dependabot close

will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually •

@dependabot ignore this major version

will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) •

@dependabot ignore this minor version

will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) •

@dependabot ignore this dependency

will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the Security Alerts page. jmpsec/osctrl ✅ All checks have passed 30/30 successful checks

2 new commits pushed to

<https://github.com/jmpsec/osctrl/tree/main|main>

by javuto

<https://github.com/jmpsec/osctrl/commit/71f9071ce92a5c9cd6ea0d2dcb7f3e011224e77e|71f9071c>

- Bump github.com/crewjam/saml from 0.4.9 to 0.4.13

<https://github.com/jmpsec/osctrl/commit/cccf7902f18c8b4795c2050421015190ff1c14d2|cccf7902>

- Merge pull request #348 from jmpsec/dependabot/go_modules/github.com/crewjam/saml-0.4.13 jmpsec/osctrl

#349 Adding icon to amzn linux Pull request opened by javuto Using

redhat

icon for Amazon Linux jmpsec/osctrl ✅ All checks have passed 30/30 successful checks

2 new commits pushed to

<https://github.com/jmpsec/osctrl/tree/main|main>

by javuto

<https://github.com/jmpsec/osctrl/commit/99efc0d90b523a961ddaddb0dba3fc1dba05fb45|99efc0d9>

- Adding icon to amzn linux

<https://github.com/jmpsec/osctrl/commit/fed8fa1daaeb5885b11caad94987725bddbfd9f0|fed8fa1d>

- Merge pull request #349 from jmpsec/adding-amzn-platform jmpsec/osctrl

#350 How to contribute to this repository. Issue created by talk2sohail Hi, My name is Md Sohail. I have been working as a Software Engineer for the past 2 years. I recently discovered Osquery in my workplace and wanted to learn more. So I came across this project which is extensively using Osquery. I wanted to upskill myself by contributing any way possible. Can anyone please tell me how can I get started? I have basic knowledge of Osquery ( Like making queries, setting up the service for custom config, etc ) and little working knowledge of Go as well. Thanking with anticipation. Regards, Sohail jmpsec/osctrl