CVE-2018-11047: UAA accepts refresh token as access token on admin endpoints Severity HighVendor Cloud Foundry FoundationAffected Cloud Foundry Products and Versions You are using uaa versions 4.19 pr

Hi Mike, Yes, we are also validating an optional configuration that would allow operators to shift the burden to applications to retrieve credentials directly from CredHub. This configuration would be

Hey All - We are holding a Cloud Foundry meetup at Pivotal in San Francisco on Tuesday, July 25. This session will focus on how to use CredHub in your environment to manage platform and service creden

Hey Bernd, I am the product manager of CredHub. We view our project as being part of the 'rotate' component of Justin's vision. Repave is focused on recreating instances to a known-good state, which i

Hi Daniel, I'm glad you are excited for CredHub. The repos are currently in pivotal-cf as a first step to open sourcing them and moving them to the foundation. As soon as we get the official approval

Hi Mathias - (Copying my reply in the doc for visibility) Correct, our initial plan is for CredHub to store the service credentials. This feature work is a separate initiative and a proposal will be s

Hi Wayne - When you say that your customers would prefer to use Vault as their "at-rest" store, do you know the motivation driving that preference? I assume the concern is primarily focused on the enc

Hi David - You are correct - our initial use case if focused on operator concerns. An additional proposal that focuses on application secrets is forthcoming and will involve the larger group of teams

Hello Everyone, Pivotal would like to propose to the Extensions PMC a new incubation project focusing on credential management in Cloud Foundry. This product may be used in a Cloud Foundry environment