privilegedescalation/headlamp-rook-plugin
Archived
12
0
Fork 0
Code Issues 8 Pull Requests 1 Actions Packages Projects Releases 14 Wiki Activity

Compare commits

merge into: privilegedescalation/headlamp-rook-plugin:gandalf/fix-e2e-storage-class-selector
Branches Tags
privilegedescalation/headlamp-rook-plugin:main privilegedescalation/headlamp-rook-plugin:gandalf/fix-echo-printf-pri-1757 privilegedescalation/headlamp-rook-plugin:dev privilegedescalation/headlamp-rook-plugin:gandalf/pri-1749-inline-release privilegedescalation/headlamp-rook-plugin:gandalf/pri-1750-inline-workflows privilegedescalation/headlamp-rook-plugin:gandalf/remove-installation-policy privilegedescalation/headlamp-rook-plugin:gandalf/pri-1636-inline-dual-approval privilegedescalation/headlamp-rook-plugin:inline-ci-edb7f04a privilegedescalation/headlamp-rook-plugin:uat privilegedescalation/headlamp-rook-plugin:gandalf/fix-pnpm-ignored-builds privilegedescalation/headlamp-rook-plugin:gandalf/fix-ci-lockfile privilegedescalation/headlamp-rook-plugin:hugh/normalize-e2e-workflow-to-main privilegedescalation/headlamp-rook-plugin:gandalf/fix-storage-classes-test privilegedescalation/headlamp-rook-plugin:gandalf/fix-e2e-pri-935-storage-classes-button-role privilegedescalation/headlamp-rook-plugin:hugh/fix-configmap-naming-pri-907 privilegedescalation/headlamp-rook-plugin:hugh/fix-e2e-deploy-step-pri-956 privilegedescalation/headlamp-rook-plugin:gandalf/fix-e2e-pri-879 privilegedescalation/headlamp-rook-plugin:hugh/fix-e2e-plugin-name-20260506123605 privilegedescalation/headlamp-rook-plugin:hugh/fix-e2e-ref privilegedescalation/headlamp-rook-plugin:fix/elliptic-override-ghsa-848j-6mx2-7j84 privilegedescalation/headlamp-rook-plugin:gandalf/e2e-fix privilegedescalation/headlamp-rook-plugin:gandalf/fix-flaky-storage-class privilegedescalation/headlamp-rook-plugin:gandalf/fix-e2e-rbac-cluster-scoped-permissions privilegedescalation/headlamp-rook-plugin:gandalf/fix-e2e-storage-class-selector privilegedescalation/headlamp-rook-plugin:fix/elliptic-vulnerability-override privilegedescalation/headlamp-rook-plugin:e2e-infra-sync privilegedescalation/headlamp-rook-plugin:gandalf/add-e2e-infra privilegedescalation/headlamp-rook-plugin:gandalf/consolidate-e2e-pr privilegedescalation/headlamp-rook-plugin:pr-38 privilegedescalation/headlamp-rook-plugin:fix-lodash privilegedescalation/headlamp-rook-plugin:release/v1.0.1
privilegedescalation/headlamp-rook-plugin:v1.0.2 privilegedescalation/headlamp-rook-plugin:v1.0.1 privilegedescalation/headlamp-rook-plugin:v1.0.0 privilegedescalation/headlamp-rook-plugin:v0.2.8 privilegedescalation/headlamp-rook-plugin:v0.2.7 privilegedescalation/headlamp-rook-plugin:v0.2.6 privilegedescalation/headlamp-rook-plugin:v0.2.5 privilegedescalation/headlamp-rook-plugin:v0.2.4 privilegedescalation/headlamp-rook-plugin:v0.2.2 privilegedescalation/headlamp-rook-plugin:v0.2.1 privilegedescalation/headlamp-rook-plugin:v0.2.0 privilegedescalation/headlamp-rook-plugin:v0.1.3 privilegedescalation/headlamp-rook-plugin:v0.1.2 privilegedescalation/headlamp-rook-plugin:v0.1.1
..
pull from: privilegedescalation/headlamp-rook-plugin:fix/elliptic-override-ghsa-848j-6mx2-7j84
Branches Tags
privilegedescalation/headlamp-rook-plugin:gandalf/fix-echo-printf-pri-1757 privilegedescalation/headlamp-rook-plugin:dev privilegedescalation/headlamp-rook-plugin:gandalf/pri-1749-inline-release privilegedescalation/headlamp-rook-plugin:gandalf/pri-1750-inline-workflows privilegedescalation/headlamp-rook-plugin:main privilegedescalation/headlamp-rook-plugin:gandalf/remove-installation-policy privilegedescalation/headlamp-rook-plugin:gandalf/pri-1636-inline-dual-approval privilegedescalation/headlamp-rook-plugin:inline-ci-edb7f04a privilegedescalation/headlamp-rook-plugin:uat privilegedescalation/headlamp-rook-plugin:gandalf/fix-pnpm-ignored-builds privilegedescalation/headlamp-rook-plugin:gandalf/fix-ci-lockfile privilegedescalation/headlamp-rook-plugin:hugh/normalize-e2e-workflow-to-main privilegedescalation/headlamp-rook-plugin:gandalf/fix-storage-classes-test privilegedescalation/headlamp-rook-plugin:gandalf/fix-e2e-pri-935-storage-classes-button-role privilegedescalation/headlamp-rook-plugin:hugh/fix-configmap-naming-pri-907 privilegedescalation/headlamp-rook-plugin:hugh/fix-e2e-deploy-step-pri-956 privilegedescalation/headlamp-rook-plugin:gandalf/fix-e2e-pri-879 privilegedescalation/headlamp-rook-plugin:hugh/fix-e2e-plugin-name-20260506123605 privilegedescalation/headlamp-rook-plugin:hugh/fix-e2e-ref privilegedescalation/headlamp-rook-plugin:fix/elliptic-override-ghsa-848j-6mx2-7j84 privilegedescalation/headlamp-rook-plugin:gandalf/e2e-fix privilegedescalation/headlamp-rook-plugin:gandalf/fix-flaky-storage-class privilegedescalation/headlamp-rook-plugin:gandalf/fix-e2e-rbac-cluster-scoped-permissions privilegedescalation/headlamp-rook-plugin:gandalf/fix-e2e-storage-class-selector privilegedescalation/headlamp-rook-plugin:fix/elliptic-vulnerability-override privilegedescalation/headlamp-rook-plugin:e2e-infra-sync privilegedescalation/headlamp-rook-plugin:gandalf/add-e2e-infra privilegedescalation/headlamp-rook-plugin:gandalf/consolidate-e2e-pr privilegedescalation/headlamp-rook-plugin:pr-38 privilegedescalation/headlamp-rook-plugin:fix-lodash privilegedescalation/headlamp-rook-plugin:release/v1.0.1
privilegedescalation/headlamp-rook-plugin:v1.0.2 privilegedescalation/headlamp-rook-plugin:v1.0.1 privilegedescalation/headlamp-rook-plugin:v1.0.0 privilegedescalation/headlamp-rook-plugin:v0.2.8 privilegedescalation/headlamp-rook-plugin:v0.2.7 privilegedescalation/headlamp-rook-plugin:v0.2.6 privilegedescalation/headlamp-rook-plugin:v0.2.5 privilegedescalation/headlamp-rook-plugin:v0.2.4 privilegedescalation/headlamp-rook-plugin:v0.2.2 privilegedescalation/headlamp-rook-plugin:v0.2.1 privilegedescalation/headlamp-rook-plugin:v0.2.0 privilegedescalation/headlamp-rook-plugin:v0.1.3 privilegedescalation/headlamp-rook-plugin:v0.1.2 privilegedescalation/headlamp-rook-plugin:v0.1.1

1 Commits
gandalf/fix-e2e-storage-class-selector .. fix/elliptic-override-ghsa-848j-6mx2-7j84

Author SHA1 Message Date
Chris Farhood 013f9260ec fix: add elliptic override for GHSA-848j-6mx2-7j84 
Add pnpm.overrides.elliptic to prevent version regression on
the transitive elliptic vulnerability (CVE-2025-14505).

Vulnerability path:
@kinvolk/headlamp-plugin → vite-plugin-node-polyfills →
node-stdlib-browser → crypto-browserify → browserify-sign → elliptic

Note: pnpm audit will still report the vulnerability until
upstream publishes elliptic 6.6.2+. This override safeguards
against pulling a worse version.

Co-Authored-By: Paperclip <noreply@paperclip.ing>
 2026-05-05 18:07:05 +00:00
2 changed files with 531 additions and 535 deletions
Expand all files Collapse all files
e2e/rook.spec.ts
+2 -6
View File
@@ -44,12 +44,8 @@ test.describe('Rook plugin smoke tests', () => {
await page.goto('/c/main/rook-ceph');
const sidebar = page.getByRole('navigation', { name: 'Navigation' });
const rookBtn = sidebar.getByRole('button', { name: /rook/i });
await rookBtn.click();
await page.waitForLoadState('networkidle');
const storageClassesLink = sidebar.getByRole('button', { name: /storage classes/i });
await expect(storageClassesLink).toBeVisible({ timeout: 15_000 });
const storageClassesLink = sidebar.getByRole('link', { name: /storage classes/i });
await expect(storageClassesLink).toBeVisible({ timeout: 10_000 });
await storageClassesLink.click();
await page.waitForLoadState('networkidle');
pnpm-lock.yaml
Generated
+529 -529
View File
File diff suppressed because it is too large Load Diff