MastodonTech.de

kravietz 🦇There’s a series of vulnerabilities, including CRITICAL and HIGH, published for <a class="hashtag" href="https://agora.echelon.pl/tag/hashicorp" rel="nofollow noopener" target="_blank">#HashiCorp</a> <a class="hashtag" href="https://agora.echelon.pl/tag/vault" rel="nofollow noopener" target="_blank">#Vault</a> <a href="https://discuss.hashicorp.com/tag/security-vault" rel="nofollow noopener" target="_blank">https://discuss.hashicorp.com/tag/security-vault</a>

Sam Stepanyan :verified: 🐘<a href="https://infosec.exchange/tags/Vault" class="mention hashtag" rel="nofollow noopener" target="_blank">#Vault</a>: Cracking the Vault: how we found zero-day vulnerabilities (including <a href="https://infosec.exchange/tags/RCE" class="mention hashtag" rel="nofollow noopener" target="_blank">#RCE</a>) in authentication, identity, and authorization in <a href="https://infosec.exchange/tags/HashiCorp" class="mention hashtag" rel="nofollow noopener" target="_blank">#HashiCorp</a> Vault. Some existed for nearly a decade! Great research by <a href="https://bird.makeup/users/teamcyata" class="u-url mention" rel="nofollow noopener" target="_blank">@teamcyata</a> 👇 <a href="https://cyata.ai/blog/cracking-the-vault-how-we-found-zero-day-flaws-in-authentication-identity-and-authorization-in-hashicorp-vault/" rel="nofollow noopener" translate="no" target="_blank">https://cyata.ai/blog/cracking-the-vault-how-we-found-zero-day-flaws-in-authentication-identity-and-authorization-in-hashicorp-vault/</a>

IT NewsThis Week in Security: Perplexity v Cloudflare, GreedyBear, and HashiCorp - The Internet is fighting over whether robots.txt applies to AI agents. It all star... - <a href="https://hackaday.com/2025/08/08/this-week-in-security-perplexity-v-cloudflare-greedybear-and-hashicorp/" rel="nofollow noopener" translate="no" target="_blank">https://hackaday.com/2025/08/08/this-week-in-security-perplexity-v-cloudflare-greedybear-and-hashicorp/</a> <a href="https://schleuss.online/tags/thisweekinsecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#thisweekinsecurity</a> <a href="https://schleuss.online/tags/hackadaycolumns" class="mention hashtag" rel="nofollow noopener" target="_blank">#hackadaycolumns</a> <a href="https://schleuss.online/tags/securityhacks" class="mention hashtag" rel="nofollow noopener" target="_blank">#securityhacks</a> <a href="https://schleuss.online/tags/greedybear" class="mention hashtag" rel="nofollow noopener" target="_blank">#greedybear</a> <a href="https://schleuss.online/tags/hashicorp" class="mention hashtag" rel="nofollow noopener" target="_blank">#hashicorp</a> <a href="https://schleuss.online/tags/nvidia" class="mention hashtag" rel="nofollow noopener" target="_blank">#nvidia</a> <a href="https://schleuss.online/tags/ai" class="mention hashtag" rel="nofollow noopener" target="_blank">#ai</a>

Benjamin Carr, Ph.D. 👨🏻‍💻🧬<a href="https://hachyderm.io/tags/HashiCorp" class="mention hashtag" rel="nofollow noopener" target="_blank">#HashiCorp</a> speaks up about adjusting to life under <a href="https://hachyderm.io/tags/IBM" class="mention hashtag" rel="nofollow noopener" target="_blank">#IBM</a> Freshly acquired cloud darling talks mainframes, Ansible, and influencing Big Blue at HashiDays event "It's almost hard to describe IBM as one culture," said Dadgar during a later briefing. "Because things like <a href="https://hachyderm.io/tags/RedHat" class="mention hashtag" rel="nofollow noopener" target="_blank">#RedHat</a> are so different. So I'd say Red Hat is much closer to us in terms of [having] <a href="https://hachyderm.io/tags/opensource" class="mention hashtag" rel="nofollow noopener" target="_blank">#opensource</a> in their DNA. They are very community-oriented. <a href="https://www.theregister.com/2025/06/05/hashicorp_ibm_hashidays/" rel="nofollow noopener" translate="no" target="_blank">https://www.theregister.com/2025/06/05/hashicorp_ibm_hashidays/</a>

[ENC]BladeXPPositiv: <a href="https://chaos.social/tags/copilot" class="mention hashtag" rel="nofollow noopener" target="_blank">#copilot</a> hat mir gerade zugestimmt das die API von <a href="https://chaos.social/tags/hashicorp" class="mention hashtag" rel="nofollow noopener" target="_blank">#hashicorp</a> Vault zumindest Teilweise scheiße ist. Negativ: Die API von Hashicorp. 🤦‍♂️

Risotto BiasDamn, <a href="https://toot.risottobias.org/tags/vault" class="mention hashtag" rel="nofollow noopener" target="_blank">#vault</a> documents the surface level of how their hashed logs work, but not like, a spec. All their search results are for usage documentation.<a href="https://toot.risottobias.org/tags/hashicorp" class="mention hashtag" rel="nofollow noopener" target="_blank">#hashicorp</a>

Benjamin Carr, Ph.D. 👨🏻‍💻🧬<a href="https://hachyderm.io/tags/RedHat" class="mention hashtag" rel="nofollow noopener" target="_blank">#RedHat</a> <a href="https://hachyderm.io/tags/Ansible" class="mention hashtag" rel="nofollow noopener" target="_blank">#Ansible</a> and <a href="https://hachyderm.io/tags/HashiCorp" class="mention hashtag" rel="nofollow noopener" target="_blank">#HashiCorp</a> <a href="https://hachyderm.io/tags/Terraform" class="mention hashtag" rel="nofollow noopener" target="_blank">#Terraform</a> Will Be Coming Together While no hard plans were revealed at <a href="https://hachyderm.io/tags/RedHatSummit" class="mention hashtag" rel="nofollow noopener" target="_blank">#RedHatSummit</a>, it's clear Red Hat's <a href="https://hachyderm.io/tags/DevOps" class="mention hashtag" rel="nofollow noopener" target="_blank">#DevOps</a> and HashiCorp's <a href="https://hachyderm.io/tags/IaC" class="mention hashtag" rel="nofollow noopener" target="_blank">#IaC</a> programs will end up working together. After <a href="https://hachyderm.io/tags/IBM" class="mention hashtag" rel="nofollow noopener" target="_blank">#IBM</a>’s acquisition of HashiCorp was completed in February 2025, IBM was poised to deliver a tightly integrated, end-to-end automation setup for enterprises navigating increasingly complex cloud environments. Terraform has 33.48% marketshare, Ansible, at 31.66%. <a href="https://thenewstack.io/red-hat-ansible-and-hashicorp-terraform-will-be-coming-together/" rel="nofollow noopener" translate="no" target="_blank">https://thenewstack.io/red-hat-ansible-and-hashicorp-terraform-will-be-coming-together/</a>

Hacker NewsTerraform MCP Server<a href="https://github.com/hashicorp/terraform-mcp-server" rel="nofollow noopener" translate="no" target="_blank">https://github.com/hashicorp/terraform-mcp-server</a><a href="https://mastodon.social/tags/HackerNews" class="mention hashtag" rel="nofollow noopener" target="_blank">#HackerNews</a> <a href="https://mastodon.social/tags/Terraform" class="mention hashtag" rel="nofollow noopener" target="_blank">#Terraform</a> <a href="https://mastodon.social/tags/MCP" class="mention hashtag" rel="nofollow noopener" target="_blank">#MCP</a> <a href="https://mastodon.social/tags/Server" class="mention hashtag" rel="nofollow noopener" target="_blank">#Server</a> <a href="https://mastodon.social/tags/HashiCorp" class="mention hashtag" rel="nofollow noopener" target="_blank">#HashiCorp</a> <a href="https://mastodon.social/tags/Cloud" class="mention hashtag" rel="nofollow noopener" target="_blank">#Cloud</a> <a href="https://mastodon.social/tags/Infrastructure" class="mention hashtag" rel="nofollow noopener" target="_blank">#Infrastructure</a> <a href="https://mastodon.social/tags/DevOps" class="mention hashtag" rel="nofollow noopener" target="_blank">#DevOps</a> <a href="https://mastodon.social/tags/Automation" class="mention hashtag" rel="nofollow noopener" target="_blank">#Automation</a> <a href="https://mastodon.social/tags/InfrastructureAsCode" class="mention hashtag" rel="nofollow noopener" target="_blank">#InfrastructureAsCode</a>

BSI WID Advisories Feed<a href="https://social.adlerweb.info/tags/BSI" class="mention hashtag" rel="nofollow noopener" target="_blank">#BSI</a> WID-SEC-2025-0933: [NEU] [mittel] <a href="https://social.adlerweb.info/tags/Hashicorp" class="mention hashtag" rel="nofollow noopener" target="_blank">#Hashicorp</a> <a href="https://social.adlerweb.info/tags/Vault" class="mention hashtag" rel="nofollow noopener" target="_blank">#Vault</a>: Mehrere SchwachstellenEin entfernter, authentisierter Angreifer kann mehrere Schwachstellen in Hashicorp Vault ausnutzen, um Sicherheitsvorkehrungen zu umgehen und um Informationen offenzulegen.<a href="https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-0933" rel="nofollow noopener" translate="no" target="_blank">https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-0933</a>

Scott Williams 🐧And if you were hoping that the <a href="https://mastodon.online/tags/copyleft" class="mention hashtag" rel="nofollow noopener" target="_blank">#copyleft</a> from <a href="https://mastodon.online/tags/AGPL" class="mention hashtag" rel="nofollow noopener" target="_blank">#AGPL</a> would somehow prevent <a href="https://mastodon.online/tags/Redis" class="mention hashtag" rel="nofollow noopener" target="_blank">#Redis</a> from relicensing back to SSPL or worse, you might want to read their <a href="https://mastodon.online/tags/CLA" class="mention hashtag" rel="nofollow noopener" target="_blank">#CLA</a>, while remembering what <a href="https://mastodon.online/tags/Hashicorp" class="mention hashtag" rel="nofollow noopener" target="_blank">#Hashicorp</a> did: <a href="https://github.com/redis/redis/blob/unstable/CONTRIBUTING.md" rel="nofollow noopener" translate="no" target="_blank">https://github.com/redis/redis/blob/unstable/CONTRIBUTING.md</a><a href="https://mastodon.online/tags/redis" class="mention hashtag" rel="nofollow noopener" target="_blank">#redis</a>

Johannes Kastl....aaaaaand <a href="https://digitalcourage.social/tags/OpenBao" class="mention hashtag" rel="nofollow noopener" target="_blank">#OpenBao</a> (the fork of <a href="https://digitalcourage.social/tags/Hashicorp" class="mention hashtag" rel="nofollow noopener" target="_blank">#Hashicorp</a> <a href="https://digitalcourage.social/tags/Vault" class="mention hashtag" rel="nofollow noopener" target="_blank">#Vault</a>) is on its way to <a href="https://fosstodon.org/@opensuse" class="u-url mention" rel="nofollow noopener" target="_blank">@opensuse</a> <a href="https://digitalcourage.social/tags/Tumbleweed" class="mention hashtag" rel="nofollow noopener" target="_blank">#Tumbleweed</a> in the latest version 2.2.1. Since 2.2.0 the webui is included in OpenBao, so this can be a full replacement for Vault!Looking forward to doing more testing with it!In case you want to try it out, here is a <a href="https://digitalcourage.social/tags/vagrant" class="mention hashtag" rel="nofollow noopener" target="_blank">#vagrant</a> <a href="https://digitalcourage.social/tags/libvirt" class="mention hashtag" rel="nofollow noopener" target="_blank">#libvirt</a> setup using <a href="https://digitalcourage.social/tags/Ansible" class="mention hashtag" rel="nofollow noopener" target="_blank">#Ansible</a> to prepare an OpenBao server VM and a client using a secret. <a href="https://codeberg.org/johanneskastl/openbao_vagrant_libvirt_ansible" rel="nofollow noopener" translate="no" target="_blank">https://codeberg.org/johanneskastl/openbao_vagrant_libvirt_ansible</a><a href="https://digitalcourage.social/tags/secretmanagement" class="mention hashtag" rel="nofollow noopener" target="_blank">#secretmanagement</a> <a href="https://digitalcourage.social/tags/kms" class="mention hashtag" rel="nofollow noopener" target="_blank">#kms</a> <a href="https://digitalcourage.social/tags/devops" class="mention hashtag" rel="nofollow noopener" target="_blank">#devops</a>

bitExpert AG<a href="https://rheinneckar.social/tags/bitBlog" class="mention hashtag" rel="nofollow noopener" target="_blank">#bitBlog</a> Managing dynamic secrets with <a href="https://rheinneckar.social/tags/Hashicorp" class="mention hashtag" rel="nofollow noopener" target="_blank">#Hashicorp</a> Vault & Boundary<a href="https://blog.bitexpert.de/blog/dynamic_secrets_with_vault_boundary" rel="nofollow noopener" translate="no" target="_blank">https://blog.bitexpert.de/blog/dynamic_secrets_with_vault_boundary</a>

LeanpubHashiCorp Certified: Terraform Associate (003) <a href="http://leanpub.com/courses/leanpub/terraform-associate" rel="nofollow noopener" translate="no" target="_blank">http://leanpub.com/courses/leanpub/terraform-associate</a> by Mattias Fjellström is the featured online course on the Leanpub homepage! <a href="https://leanpub.com" rel="nofollow noopener" translate="no" target="_blank">https://leanpub.com</a> <a href="https://mastodon.social/tags/CloudComputing" class="mention hashtag" rel="nofollow noopener" target="_blank">#CloudComputing</a> <a href="https://mastodon.social/tags/InfrastructureAsCode" class="mention hashtag" rel="nofollow noopener" target="_blank">#InfrastructureAsCode</a> <a href="https://mastodon.social/tags/hashicorp" class="mention hashtag" rel="nofollow noopener" target="_blank">#hashicorp</a> <a href="https://mastodon.social/tags/courses" class="mention hashtag" rel="nofollow noopener" target="_blank">#courses</a> <a href="https://mastodon.social/tags/terraform" class="mention hashtag" rel="nofollow noopener" target="_blank">#terraform</a>

Johannes KastlDear <a href="https://digitalcourage.social/tags/AWX" class="mention hashtag" rel="nofollow noopener" target="_blank">#AWX</a> users out there (AWX as in Ansible, not AWS as in Amazon...),does anyone have good pointers on connecting AWX and <a href="https://digitalcourage.social/tags/Hashicorp" class="mention hashtag" rel="nofollow noopener" target="_blank">#Hashicorp</a> <a href="https://digitalcourage.social/tags/Vault" class="mention hashtag" rel="nofollow noopener" target="_blank">#Vault</a> / <a href="https://digitalcourage.social/tags/OpenBoa" class="mention hashtag" rel="nofollow noopener" target="_blank">#OpenBoa</a> **without** having to define each secret/credential again in AWX?I have set up a basic connection according to the documentation: <a href="https://ansible.readthedocs.io/projects/awx/en/24.6.1/userguide/credential_plugins.html#ug-credentials-hashivault" rel="nofollow noopener" translate="no" target="_blank">https://ansible.readthedocs.io/projects/awx/en/24.6.1/userguide/credential_plugins.html#ug-credentials-hashivault</a> And I have created a credential using that lookup and could successfully output its value in a playbook run in AWX.But having to define a AWX credential for each secret that I need to pull from Vault/OpenBoa sounds like a lot of unnecessary duplication. (Yes, I know you can manage AWX via Ansible. We do that already. But still, you need to define the credentials in your code somewhere for the automation to create it in AWX)<a href="https://digitalcourage.social/tags/DevOps" class="mention hashtag" rel="nofollow noopener" target="_blank">#DevOps</a> <a href="https://digitalcourage.social/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#security</a> <a href="https://digitalcourage.social/tags/InfrastructureAsCode" class="mention hashtag" rel="nofollow noopener" target="_blank">#InfrastructureAsCode</a> <a href="https://digitalcourage.social/tags/Ansible" class="mention hashtag" rel="nofollow noopener" target="_blank">#Ansible</a>

Stephan HochdörferI'm excited to announce that I've been selected as a HashiCorp Ambassador for 2025. Our journey with HashiCorp started early on with Vagrant to simplify project virtualization. In 2019, we chose Nomad over Kubernetes for its simplicity and scalability. Last year, we implemented Boundary & Vault for simple and secure remote access based on user identity.If you want to know more about Nomad or Boundary, let me know.<a href="https://phpc.social/tags/bitExpert" class="mention hashtag" rel="nofollow noopener" target="_blank">#bitExpert</a> <a href="https://phpc.social/tags/Hashicorp" class="mention hashtag" rel="nofollow noopener" target="_blank">#Hashicorp</a> <a href="https://phpc.social/tags/Ambassador" class="mention hashtag" rel="nofollow noopener" target="_blank">#Ambassador</a> <a href="https://phpc.social/tags/LearnAndGrow" class="mention hashtag" rel="nofollow noopener" target="_blank">#LearnAndGrow</a>

Dickenhobelix"I migrated to Tofu"Vegans 🤝 DevOps<a href="https://chaos.social/tags/IBM" class="mention hashtag" rel="nofollow noopener" target="_blank">#IBM</a> <a href="https://chaos.social/tags/HashiCorp" class="mention hashtag" rel="nofollow noopener" target="_blank">#HashiCorp</a>

Johannes KastlUuuuuuuh, <a href="https://digitalcourage.social/tags/OpenBao" class="mention hashtag" rel="nofollow noopener" target="_blank">#OpenBao</a> (the open source fork of <a href="https://digitalcourage.social/tags/Hashicorp" class="mention hashtag" rel="nofollow noopener" target="_blank">#Hashicorp</a> <a href="https://digitalcourage.social/tags/Vault" class="mention hashtag" rel="nofollow noopener" target="_blank">#Vault</a>) just released version 2.2.0 and now includes the UI, that was missing so far.The package for <a href="https://fosstodon.org/@opensuse" class="u-url mention" rel="nofollow noopener" target="_blank">@opensuse</a> was adapted, tested and worked out fine. Will soon be available in <a href="https://digitalcourage.social/tags/Tumbleweed" class="mention hashtag" rel="nofollow noopener" target="_blank">#Tumbleweed</a>!If you want to test this out, feel free to use this vagrant-libvirt setup of mine: <a href="https://codeberg.org/johanneskastl/openbao_vagrant_libvirt_ansible" rel="nofollow noopener" translate="no" target="_blank">https://codeberg.org/johanneskastl/openbao_vagrant_libvirt_ansible</a><a href="https://digitalcourage.social/tags/openSUSE" class="mention hashtag" rel="nofollow noopener" target="_blank">#openSUSE</a> <a href="https://digitalcourage.social/tags/secretsmanagement" class="mention hashtag" rel="nofollow noopener" target="_blank">#secretsmanagement</a> <a href="https://digitalcourage.social/tags/opensource" class="mention hashtag" rel="nofollow noopener" target="_blank">#opensource</a> <a href="https://digitalcourage.social/tags/hellyeah" class="mention hashtag" rel="nofollow noopener" target="_blank">#hellyeah</a> <a href="https://digitalcourage.social/tags/vagrant" class="mention hashtag" rel="nofollow noopener" target="_blank">#vagrant</a> <a href="https://digitalcourage.social/tags/libvirt" class="mention hashtag" rel="nofollow noopener" target="_blank">#libvirt</a>

LinuxNews.deIBM schließt den Kauf von HashiCorp ab <a href="https://linuxnews.de/ibm-schliesst-den-kauf-von-hashicorp-ab/" rel="nofollow noopener" translate="no" target="_blank">https://linuxnews.de/ibm-schliesst-den-kauf-von-hashicorp-ab/</a> <a href="https://social.anoxinon.de/tags/ibm" class="mention hashtag" rel="nofollow noopener" target="_blank">#ibm</a> <a href="https://social.anoxinon.de/tags/hashicorp" class="mention hashtag" rel="nofollow noopener" target="_blank">#hashicorp</a> <a href="https://social.anoxinon.de/tags/linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#linux</a> <a href="https://social.anoxinon.de/tags/opensource" class="mention hashtag" rel="nofollow noopener" target="_blank">#opensource</a> <a href="https://social.anoxinon.de/tags/cloud" class="mention hashtag" rel="nofollow noopener" target="_blank">#cloud</a>

LinuxiacIBM completes its $6.4B acquisition of HashiCorp, strengthening Red Hat and integrating Terraform and Vault into its automation suite. <a href="https://linuxiac.com/ibm-completes-6-4-billion-acquisition-of-hashicorp/" rel="nofollow noopener" translate="no" target="_blank">https://linuxiac.com/ibm-completes-6-4-billion-acquisition-of-hashicorp/</a><a href="https://mastodon.social/tags/ibm" class="mention hashtag" rel="nofollow noopener" target="_blank">#ibm</a> <a href="https://mastodon.social/tags/hashicorp" class="mention hashtag" rel="nofollow noopener" target="_blank">#hashicorp</a> <a href="https://mastodon.social/tags/terraform" class="mention hashtag" rel="nofollow noopener" target="_blank">#terraform</a>

Boiling SteamIBM completes acquisition of HashiCorp: <a href="https://newsroom.ibm.com/2025-02-27-ibm-completes-acquisition-of-hashicorp,-creates-comprehensive,-end-to-end-hybrid-cloud-platform" rel="nofollow noopener" target="_blank">https://newsroom.ibm.com/2025-02-27-ibm-completes-acquisition-of-hashicorp,-creates-comprehensive,-end-to-end-hybrid-cloud-platform</a> <a href="https://mastodon.cloud/tags/linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#linux</a> <a href="https://mastodon.cloud/tags/hashicorp" class="mention hashtag" rel="nofollow noopener" target="_blank">#hashicorp</a> <a href="https://mastodon.cloud/tags/ibm" class="mention hashtag" rel="nofollow noopener" target="_blank">#ibm</a> <a href="https://mastodon.cloud/tags/acquisition" class="mention hashtag" rel="nofollow noopener" target="_blank">#acquisition</a>

Frühere Suchanfragen

Suchoptionen

Verwaltet von:

Serverstatistik:

#hashicorp