v1.1.15 - experimental short menu

• added an experimental "short" menu function
• made additional UI improvements, e.g. curl function has one less prompt, some functions remove final "press enter" prompt

v1.14 - addressed library CVEs, added token display feature and verbose flag

• Added a feature to display the values of stored service account tokens
• Added a verbose (-v) flag to display additional DEBUG messages.
• Updated upstream libraries to handle vulnerabilities found in dependencies: CVE-2023-39325, CVE-2023-44487, CVE-2023-3978

v1.1.13

• Added cloud provider detection from @devsecfranklin
• Bump gopkg.in/yaml.v3 to avoid DoS risk on filesystem
• Added a function to get eth0 IP addr and put in banner
• Parse the current pod's service account name from its JWT
• Cleaned up menu formatting

v1.1.12 - Added kubectl-try-all options

• Added a second variation of kubectl-try-all that tries a command as every service account collected, no longer stopping on the first success.

v1.1.11

• Added image building and K8S deployment functions from @devsecfranklin
• Improved error handling on CoreDNS wildcard trick
• Added another kubelet kubeconfig file path and handled errors better
• Added a credits.md file and added a developer to it: @devsecfranklin

v1.1.10 fixed kubelet cert/key pulling code to handle kubelet kubeconfig files with embedded user cert/key pairs

• fixed kubelet cert/key pulling code to handle kubelet kubeconfig files with embedded user cert/key pairs
• updated kubeconfig file parsing to parse via the YAML library, which is much more resilient

v1.1.9 Updated recovering service account tokens from the node filesystem to handle the ServiceAccount admission controller

Updated recovering service account tokens from the node filesystem to handle the ServiceAccount admission controller

v1.1.8-beta: harvesting secrets from the node filesystem is now available on menu and one-shot

Beta feature: one-shot (non-interactive) menu items work, but are under-documented in the UI.
New feature (GA): harvest secrets from the node filesystem is now available on-menu and -m one-shot

Alpha Release - use with caution - allows you to do service discovery via CoreDNS wildcard SRV request

• Alpha feature: one-shot (non-interactive) menu items work, but are under-documented in the UI.
• New feature (GA) : service discovery via CoreDNS wildcard SRV request using methodology posted by @ raesene

v1.1.6-alpha Alpha Release

Alpha Release - use with caution - allows you to run menu items from the command-line in a one-shot method, to allow scripting