Releases: OWASP/wrongsecrets
1.5.9: LCM & Challenge text updates
What's Changed
- Bump s4u/setup-maven-action from 1.5.0 to 1.5.1 by @dependabot in #455
- Updated challenge texts for kubernetes and vault challenges for CTF-party by @commjoen in #456
- Bump cyclonedx-maven-plugin from 2.7.1 to 2.7.2 by @dependabot in #458
- Bump asciidoctorj.version from 2.5.6 to 2.5.7 by @dependabot in #459
- Bump jruby-complete from 9.3.8.0 to 9.3.9.0 by @dependabot in #461
- Bump libraries-bom from 26.1.2 to 26.1.3 by @dependabot in #463
- Bump spring.security.version from 5.7.3 to 5.7.4 by @dependabot in #457
- Bump spring-boot-starter-parent from 2.7.4 to 2.7.5 by @dependabot in #462
- Bump bootstrap from 5.2.0 to 5.2.2 by @dependabot in #460
Full Changelog: 1.5.8...1.5.9
1.5.8: Migration to K8S 1.23, extended CTF documentation & hardened CTF deployments in k8s
1.5.7: Challenge0, LCM, and Java19
What's Changed
- fix for challenge8 by @commjoen in #433
- Create k8s container for ctf party by @commjoen in #435
- Challenge0 by @commjoen in #434
- Bump checkstyle from 10.3.3 to 10.3.4 by @dependabot in #438
- Bump asciidoctorj.version from 2.5.5 to 2.5.6 by @dependabot in #440
- Bump spring-boot-starter-parent from 2.7.3 to 2.7.4 by @dependabot in #437
- Bump eclipse-temurin from 18-jre-focal to 19-jre-focal by @dependabot in #436
- Bump spring-cloud-dependencies from 2021.0.3 to 2021.0.4 by @dependabot in #444
- Bump azure-security-keyvault-secrets from 4.4.6 to 4.5.0 by @dependabot in #445
- Bump terraform-aws-modules/eks/aws from 18.29.0 to 18.30.0 in /aws by @dependabot in #442
- Bump azure-identity from 1.5.5 to 1.6.0 by @dependabot in #439
- Bump aws.sdk.version from 2.17.267 to 2.17.285 by @dependabot in #441
- Update terraform-aws-modules/vpc/aws requirement from ~> 3.14.4 to ~> 3.16.0 in /aws by @dependabot in #443
- Bump jruby-complete from 9.3.7.0 to 9.3.8.0 by @dependabot in #447
- Bump libraries-bom from 26.1.1 to 26.1.2 by @dependabot in #446
- Upgrade to java 19 by @commjoen in #449
Full Changelog: 1.5.6...1.5.7
1.5.6: 2 new Web3 challenges!
What's Changed
- Challenge26: Smart Contract Challenge 2 by @neatzsche in #430
- Challenge27: Smart Contract Challenge 3 by @neatzsche in #431
- Textual improvements for challenge 26 & 27 by @commjoen in #432
Full Changelog: 1.5.5...1.5.6
Secial thanks
We would like to thank @neatzsche for his awesome work at the 2 new Web3 challenges!
1.5.5: Challenge 25 and more CTF preparations
What's Changed
- Adding ctf-client mode for the ctf-party by @commjoen in #427
- Challenge25: Web3 Smart Contract Challenge 1 by @neatzsche in #428
- Configure secret names in cloud & finalizing challenge 25 by @commjoen in #429
Full Changelog: 1.5.4...1.5.5
Special thanks
We would like to thank @neatzsche for his awesome first contribution to the project!
1.5.4: CTF Fixes, github scopes, terraform fixes & virtual desktop improvements
What's Changed
- fix: refactor terraform and add pre-commit linting by @bendehaan in #405
- Fix/update tf by @bendehaan in #414
- Reduce github action token scopes by @commjoen in #416
- Small fixes for CTF and related materialss by @commjoen in #417
- Update POM file with new version: 1.5.4RC6 by @commjoen in #419
- Addition of kubectl to webdesktop by @commjoen in #420
Full Changelog: 1.5.3...1.5.4
Thanks
We would like thank @mikewoudenberg , @bendehaan and @madhuakula for their hard work on this release!
1.5.3: Challenge 24, Fly support, Okteto support, LCM, CTF improvements, Desktop improvements
What's Changed
-
Added crypto challenge 24 for (solution for #377) And updated wrongsecrets Desktop by @commjoen in #382
-
Migrate to Java 18 JRE (latest) as base container reducing Docker container size by @commjoen in #386
-
Updated the link to Secrets management cheatsheet by @commjoen in #400
-
Fixed Docker Web Desktop to support docker commands by @madhuakula in #402
-
Add Okteto support, enable hosted-wrongsecrets hint alternatives, fixes for GCP/AWS/Azure & introduce latest docker tag by @commjoen in #388
-
LCM:
- Bump azure-security-keyvault-secrets from 4.4.4 to 4.4.6 by @dependabot in #390
- Bump maven-checkstyle-plugin from 3.1.2 to 3.2.0 by @dependabot in #391
- Bump libraries-bom from 26.0.0 to 26.1.1 by @dependabot in #392
- Bump spring.security.version from 5.7.2 to 5.7.3 by @dependabot in #393
- Bump checkstyle from 10.3.2 to 10.3.3 by @dependabot in #394
- Bump spring-boot-starter-parent from 2.7.2 to 2.7.3 by @dependabot in #397
- Bump azure-identity from 1.5.3 to 1.5.4 by @dependabot in #395
- Bump jruby-complete from 9.3.6.0 to 9.3.7.0 by @dependabot in #398
- Bump aws.sdk.version from 2.17.244 to 2.17.265 by @dependabot in #399
- Bump bootstrap from 5.1.3 to 5.2.0 by @dependabot in #396
New Contributors
- @madhuakula made their first contribution in #402
Full Changelog: 1.5.2...1.5.3
Thank you
We would like to thank @bendehaan and @madhuakula for their hard work on this release!
1.5.2 Challenge 23, toolcontainers & LCM
What's Changed
-
LCM:
- Bump javascript-obfuscator from 3.1.0 to 4.0.0 in /js by @dependabot in #362
- Bump s4u/setup-maven-action from 1.4.0 to 1.5.0 by @dependabot in #376
-
First iteration of the Docker toolcontainer by @commjoen in #375 See https://github.com/commjoen/wrongsecrets#want-to-play-but-are-not-allowed-to-install-the-tools for more details.
Full Changelog: 1.5.1...1.5.2
1.5.1: CTF Improvements - part 1: ui and k8s/cloud stubbing
What's Changed
Full Changelog: 1.5.0...1.5.1
Thanks
Thanks to @mikewoudenberg for reviewing the visual improvements.
1.5.0 CTF, LCM and improved scoring
What's Changed
CTF & Scoring:
- Basic CTFD support by @commjoen in #350
- Disable spoiling in CTF mode, adding first tests for CTF mode by @commjoen in #364
- Improved CTFD support, better scoring system, and added support for fbctf by @commjoen in #365
LCM:
- Bump azure/setup-helm from 3.1 to 3.3 by @dependabot in #348
- Bump lycheeverse/lychee-action from 1.5.0 to 1.5.1 by @dependabot in #349
- Bump checkstyle from 10.3.1 to 10.3.2 by @dependabot in #351
- Bump cyclonedx-maven-plugin from 2.7.0 to 2.7.1 by @dependabot in #354
- Bump cyclonedx-core-java from 7.1.5 to 7.2.0 by @dependabot in #356
- Bump spring-boot-starter-parent from 2.7.1 to 2.7.2 by @dependabot in #357
- Bump asciidoctorj.version from 2.5.4 to 2.5.5 by @dependabot in #355
- Bump exec-maven-plugin from 3.0.0 to 3.1.0 by @dependabot in #359
- Bump libraries-bom from 25.4.0 to 26.0.0 by @dependabot in #352
- Bump aws.sdk.version from 2.17.223 to 2.17.243 by @dependabot in #353
- Bump azure-security-keyvault-secrets from 4.4.3 to 4.4.4 by @dependabot in #358
- Update dependabot to include js and TF by @commjoen in #360
- Bump aws.sdk.version from 2.17.243 to 2.17.244 by @dependabot in #361
- Add OWASP ORG as GitHub sponsor option by @kingthorin in #363
- Change versions for GCP and add new auth plugin by @bendehaan in #369
New Contributors
- @kingthorin made their first contribution in #363
Full Changelog: 1.4.7...1.5.0
Special Thank
We would like to thank @bendehaan, @nbaars , and @kingthorin for their work on this release!