Rebranding (#66)

* update readme
* update CTFd home page image
* update dependencies

README.md

@@ -1,7 +1,7 @@
-[![cicd-goat](images/banner.png)](https://www.cidersecurity.io/)
+[![cicd-goat](images/banner.png)](https://www.paloaltonetworks.com/prisma/cloud/cloud-code-security)
 
-[![Maintained by Cider Security](https://img.shields.io/badge/maintained%20by-Cider%20Security-brightgreen)](https://www.cidersecurity.io/?utm_source=github&utm_medium=github_page&utm_campaign=ci%2fcd%20goat%20_060422)
-[![](https://img.shields.io/badge/Top%2010%20Risks-8%2F10-2de4fd)](https://www.cidersecurity.io/top-10-cicd-security-risks/?utm_source=github&utm_medium=github_page&utm_campaign=ci%2fcd%20goat_060422)
+[![maintained by](https://img.shields.io/badge/maintained%20by-Palo%20Alto%20Networks-orange)](https://www.paloaltonetworks.com/prisma/cloud/cloud-code-security)
+[![top 10](https://img.shields.io/badge/Top%2010%20Risks-8%2F10-2de4fd)](https://owasp.org/www-project-top-10-ci-cd-security-risks/)
 [![.github/workflows/release.yaml](https://github.com/cider-security-research/cicd-goat/actions/workflows/release.yaml/badge.svg)](https://github.com/cider-security-research/cicd-goat/actions/workflows/release.yaml)
 [![CircleCI](https://circleci.com/gh/cider-security-research/cicd-goat/tree/main.svg?style=svg)](https://circleci.com/gh/cider-security-research/cicd-goat/tree/main)
 ![Docker pulls](https://badgen.net/docker/pulls/cidersecurity/goat-jenkins-server)
@@ -11,7 +11,7 @@
 Deliberately vulnerable CI/CD environment.
 Hack CI/CD pipelines, capture the flags. :triangular_flag_on_post:
 
-Created by [Cider Security](https://www.cidersecurity.io/?utm_source=github&utm_medium=github_page&utm_campaign=ci%2fcd%20goat%20_060422).
+Created by Cider Security [(Acquired by Palo Alto Networks)](https://www.paloaltonetworks.com/prisma/cloud/cloud-code-security).
 
 ## Table of Contents
 
@@ -29,7 +29,7 @@ Created by [Cider Security](https://www.cidersecurity.io/?utm_source=github&utm_
 ## Description
 The CI/CD Goat project allows engineers and security practitioners to learn and practice CI/CD security through a set of 11 challenges, enacted against a real, full blown CI/CD environment. The scenarios are of varying difficulty levels, with each scenario focusing on one primary attack vector.
 
-The challenges cover the [Top 10 CI/CD Security Risks](https://www.cidersecurity.io/top-10-cicd-security-risks/?utm_source=github&utm_medium=github_page&utm_campaign=ci%2fcd%20goat_060422), including Insufficient Flow Control Mechanisms, PPE (Poisoned Pipeline Execution), Dependency Chain Abuse, PBAC (Pipeline-Based Access Controls), and more.\
+The challenges cover the [Top 10 CI/CD Security Risks](https://owasp.org/www-project-top-10-ci-cd-security-risks/), including Insufficient Flow Control Mechanisms, PPE (Poisoned Pipeline Execution), Dependency Chain Abuse, PBAC (Pipeline-Based Access Controls), and more.\
 The different challenges are inspired by Alice in Wonderland, each one is themed as a different character.
 
 The project’s environment is based on Docker containers and can be run locally. These containers are: 

ctfd/data/CTFd/.data/filesystem_cache/1c9d62f8512930ca33bc8e727c709e79

@@ -0,0 +1 @@
+J�n�d.�]�.

ctfd/data/CTFd/.data/filesystem_cache/27012d08ab39889f3a5787449c40ee82

@@ -0,0 +1 @@
+Jnt�d.�K
.

ctfd/data/CTFd/.data/filesystem_cache/2dda28c31ff2c415154ede7b67060d1b

@@ -0,0 +1 @@
+Jmo�d.�K
.

ctfd/data/CTFd/.data/filesystem_cache/38db473e523e01f7ff0ad5043f69a380

@@ -1 +1 @@
-J%�sc.�K.
+J`t�d.�K.

ctfd/data/CTFd/.data/filesystem_cache/3ae827fd461ea9a238aff3f1b2d2820b

@@ -0,0 +1 @@
+J�t�d.�]�.

ctfd/data/CTFd/.data/filesystem_cache/4b0e47a966a59786237d49111a046ae3

@@ -0,0 +1 @@
+Jto�d.�]�.

ctfd/data/CTFd/.data/filesystem_cache/58bdfb241531b78e654d9e7b0e35c2ba

@@ -0,0 +1 @@
+J-p�d.�]�.

ctfd/data/CTFd/.data/filesystem_cache/6cd203375e4f76465869af1efad67261

@@ -0,0 +1 @@
+JUn�d.�K
.

ctfd/data/CTFd/.data/filesystem_cache/95de0e784321e3d9f12e1be3e109f16e

@@ -0,0 +1 @@
+J't�d.�]�.

ctfd/data/CTFd/.data/filesystem_cache/a65531221ccf1cfa3c9a7f54831d76a7

@@ -0,0 +1 @@
+Jot�d.�]�.

ctfd/data/CTFd/.data/filesystem_cache/cbad08fa8ab655b9172445c30e0c7e4e

@@ -0,0 +1 @@
+J;q�d.�]�.

ctfd/data/CTFd/.data/filesystem_cache/d77f44faedf5414dd44a7492b6964fb7

@@ -0,0 +1 @@
+J9q�d.�K
.

ctfd/data/CTFd/.data/filesystem_cache/ed74c6b8aa556eba3a09af19e17f56d3

@@ -0,0 +1 @@
+J�o�d.�]�.

ctfd/data/CTFd/.data/filesystem_cache/f74629989c4ab8c0c5de63f0efdebb86

@@ -0,0 +1 @@
+J�o�d.�]�.

gitea/Pipfile

@@ -8,8 +8,3 @@ requests = "*"
 click = "*"
 pyyaml = "*"
 gitpython = "*"
-
-[dev-packages]
-
-[requires]
-python_version = "3.8"

prod/Dockerfile

@@ -1,4 +1,4 @@
-FROM docker:24.0.2-dind
+FROM docker:dind
 ARG COMMIT_SHA
 ARG VERSION
 
@@ -11,7 +11,8 @@ LABEL org.opencontainers.image.vendor="Cider Security" \
     org.opencontainers.image.version=$VERSION \
     org.opencontainers.image.revision=$COMMIT_SHA
 
-RUN apk add --no-cache openssh \
+RUN apk add --no-cache openssh-client-default \
+    && apk add --no-cache openssh \
     && ssh-keygen -A \
     && mkdir /root/.ssh \
     && chmod 0700 /root/.ssh