mirror of
https://github.com/lunchcat/sif.git
synced 2026-07-07 12:57:09 -07:00
612bb61d00
modules/recon/solr-api-exposure.yaml flags an exposed Apache Solr admin api, keyed on the solr spec version paired with the solr home that a generic json endpoint does not carry, then extracts the solr version. modules/recon/spark-api-exposure.yaml flags an exposed Apache Spark master whose cluster state is reachable without authentication, keyed on a spark:// master url paired with the alive worker count, then extracts the master url. modules/recon/hadoop-yarn-api-exposure.yaml flags an exposed Hadoop YARN resource manager, keyed on the cluster info wrapper paired with the resource manager version, then extracts the hadoop version. internal/modules/bigdata_api_exposure_test.go drives the three modules end to end through ExecuteHTTPModule and asserts the leak alongside the near misses a strict review wants pinned: each service with one keying field missing, a non spark url behind the worker count, a generic json endpoint, a plain 200 and a 404. verify: go test ./internal/modules, each matcher and extractor proven to bite (break -> red, restore -> green).