Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump github.com/gophish/gophish from 0.1.2 to 0.12.0 in /src/test/resources/com/doddi/vulnerability_scanner_idea_plugin/system/golang/gomod #50

Open
wants to merge 1 commit into
base: master
Choose a base branch
from

Conversation

dependabot[bot]
Copy link

@dependabot dependabot bot commented on behalf of github Sep 15, 2022

Bumps github.com/gophish/gophish from 0.1.2 to 0.12.0.

Release notes

Sourced from github.com/gophish/gophish's releases.

Gophish v0.12.0

Gophish just got better.

We're excited to announce the release of Gophish v0.12.0. This release includes important security fixes, adds some features, and fixes some bugs.

Attachment Tracking

This has been a long time requested feature, and we're super excited to release it! We've added the ability to add gophish variables to a number of file types which can be attached to emails. As a trivial example it is possible to include Hello {{.FirstName}}, please click here: {{.URL}} to a Word document, or with a little more effort add tracking pixels to documents. This will allow notification of when users have opened attached files, or enabled macros in Office documents. We currently support the following file extensions: docx, docm, pptx, xlsx, xlsm, txt, html, ics. Please see the documentation for more guidance and examples.

Inline Image Attachments #1525

Images in emails are now marked as embedded rather than attached, so email clients don't show them as attachments. This is a great addition to improve the quality of campaigns. Thanks @​dzsibi

Custom Sender Envelopes #2334

We've added the ability to specify an envelope sender in templates. If left empty, it will fallback to the SMTP-From in the Sender-settings. This can be used to pass SPF-checks but still send a spoofing email. Thanks @​ChessSpider and @​ptitdoc

Added functionality to lock accounts #2060

Added minor functionality to display last login time for each user in the User Management page and the ability to lock user accounts.

Open Redirect #2262

Fixed a minor Open Redirect issue. Thanks @​Kirill89

Changelog

You can find the full changelog for this release here.

How to Upgrade

To upgrade, download the release for your platform, extract into a folder, and copy (remember to copy, not move so that you have a backup) your existing gophish.db file into the new directory. Then, run the new Gophish binary and you'll be good to go!

Now, one more thing:

We want to hear from you!

Have questions, comments, or feature ideas about Gophish? Let us know by filing an issue.

Enjoy

SHA256 Hash Filename
42f228158e91e2fce182fbd60a6669fcbed21f76186563f264a941efbc9c1159 gophish-v0.12.0-linux-64bit.zip
d06945497f0f3467748c50e518aa4e526e8c71cd7fa58c23541cb65477539306 gophish-v0.12.0-osx-64bit.zip
c0fdc4a980914893a9d19544bb6233586db8d81a139657e9773ca8e03c387a02 gophish-v0.12.0-windows-64bit.zip

Gophish v0.11.0

Gophish just got better.

We're excited to announce the release of Gophish v0.11.0. This release includes important security fixes, adds some minor features, and fixes some bugs.

Security Fixes

This release addresses multiple security issues that were identified and reported by the community. As always, we encourage sending in security reports via our security policy, and are appreciative of all the work that went in to finding and reporting these vulnerabilities.

... (truncated)

Commits
  • 6b61426 Bumped version to 0.12.0
  • 90cd444 Minified template.js resolving #2545
  • 5ef2d75 Fixed Account Locked bug, allowing user accounts to be locked
  • 6fb77bf Fixed formatting from Custom Envelope PR #2334
  • d0ff382 Disallow deleting of admin user from the UI (#2487)
  • 0c255bb Disallow changing of admin username from the UI (#2487)
  • b7c6966 Embed or attach files based on their file extension (#1525)
  • 704e6d5 Fix modal titles saying new when editing existing content (#2318)
  • bb516ef 986 custom envelope sender remerge (#2334)
  • e0acb99 Bump minimist from 1.2.0 to 1.2.5 (#2401)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

Bumps [github.com/gophish/gophish](https://github.com/gophish/gophish) from 0.1.2 to 0.12.0.
- [Release notes](https://github.com/gophish/gophish/releases)
- [Commits](gophish/gophish@v0.1.2...v0.12.0)

---
updated-dependencies:
- dependency-name: github.com/gophish/gophish
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Sep 15, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants