HackTricks-wiki
diff --git a/‎.github/workflows/auto_merge_approved_prs.yml‎
Lines changed: 3 additions & 33 deletions b/‎.github/workflows/auto_merge_approved_prs.yml‎
Lines changed: 3 additions & 33 deletions
diff --git a/‎.github/workflows/build_master.yml‎
Lines changed: 23 additions & 45 deletions b/‎.github/workflows/build_master.yml‎
Lines changed: 23 additions & 45 deletions
diff --git a/‎.github/workflows/translate_all.yml‎
Lines changed: 20 additions & 42 deletions b/‎.github/workflows/translate_all.yml‎
Lines changed: 20 additions & 42 deletions
diff --git a/‎.gitignore‎
Lines changed: 1 addition & 0 deletions b/‎.gitignore‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎src/README.md‎
Lines changed: 15 additions & 0 deletions b/‎src/README.md‎
Lines changed: 15 additions & 0 deletions
@@ -2,7 +2,7 @@ name: Auto Merge Approved PRs
 
 on:
   schedule:
-    - cron: '0 */2 * * *'  # Every 2 hours
+    - cron: '0 */1 * * *'  # Every 1 hour
   workflow_dispatch:  # Allow manual triggering
 
 permissions:
@@ -26,9 +26,6 @@ jobs:
           git config --global user.email "action@github.com"
           git config --global user.name "GitHub Action"
 
-      - name: Make conflict resolution script executable
-        run: chmod +x ./resolve_searchindex_conflicts.sh
-
       - name: Check for running workflows
         id: check_workflows
         run: |
@@ -137,35 +134,8 @@ jobs:
                 else
                   echo "Failed to merge PR #$pr_number: $pr_title"
                 fi
-              elif [ "$pr_mergeable" = "CONFLICTED" ]; then
-                echo "PR #$pr_number has conflicts. Attempting to resolve searchindex.js conflicts..."
-                
-                # Try to resolve conflicts by updating the branch
-                export GITHUB_REPOSITORY="$GITHUB_REPOSITORY"
-                export GH_TOKEN="${{ secrets.PAT_TOKEN }}"
-                if ./resolve_searchindex_conflicts.sh "$pr_number" "$head_branch" "$base_branch"; then
-                  echo "Successfully resolved searchindex.js conflicts for PR #$pr_number"
-                  
-                  # Wait for GitHub to update the mergeable status after conflict resolution
-                  echo "Waiting for GitHub to process the conflict resolution..."
-                  sleep 15
-                  
-                  # Check if it's now mergeable
-                  pr_mergeable_after=$(gh pr view "$pr_number" --json mergeable --jq '.mergeable' --repo "$GITHUB_REPOSITORY")
-                  if [ "$pr_mergeable_after" = "MERGEABLE" ]; then
-                    if gh pr merge "$pr_number" --merge --delete-branch --repo "$GITHUB_REPOSITORY"; then
-                      echo "Successfully merged PR #$pr_number after resolving conflicts: $pr_title"
-                      current_count=$(cat /tmp/merged_count)
-                      echo $((current_count + 1)) > /tmp/merged_count
-                    else
-                      echo "Failed to merge PR #$pr_number after conflict resolution: $pr_title"
-                    fi
-                  else
-                    echo "PR #$pr_number still not mergeable after conflict resolution (status: $pr_mergeable_after)"
-                  fi
-                else
-                  echo "Failed to resolve conflicts for PR #$pr_number"
-                fi
+              elif [ "$pr_mergeable" = "CONFLICTED" ] || [ "$pr_mergeable" = "CONFLICTING" ]; then
+                echo "PR #$pr_number has conflicts. Skipping auto-merge so it can be resolved manually."
               else
                 echo "PR #$pr_number is not mergeable (status: $pr_mergeable)"
               fi
 
@@ -35,60 +35,38 @@ jobs:
       - name: Build mdBook
         run: MDBOOK_BOOK__LANGUAGE=en mdbook build || (echo "Error logs" && cat hacktricks-preprocessor-error.log && echo "" && echo "" && echo "Debug logs" && (cat hacktricks-preprocessor.log | tail -n 20) && exit 1)
 
-      - name: Update searchindex in repo (purge history, keep current on HEAD)
+      - name: Install GitHub CLI
+        run: |
+          sudo apt-get update
+          sudo apt-get install -y gh
+      
+      - name: Publish search index release asset
         shell: bash
+        env:
+          PAT_TOKEN: ${{ secrets.PAT_TOKEN }}
         run: |
           set -euo pipefail
 
-          ls -la
-          ls -la book
-
-          git config --global --add safe.directory /__w/hacktricks/hacktricks
-          git config --global user.email "build@example.com"
-          git config --global user.name "Build master"
-          git config pull.rebase false
-
-          # Ensure we're on the target branch and up to date
-          git fetch origin
-          git reset --hard origin/master
+          ASSET="book/searchindex.js"
+          TAG="searchindex-en"
+          TITLE="Search Index (en)"
 
-          # Choose the file to keep at HEAD:
-          # 1) Prefer freshly built version from book/
-          # 2) Fallback to the file currently at HEAD (if it exists)
-          HAS_FILE=0
-          if [ -f "book/searchindex.js" ]; then
-            cp "book/searchindex.js" /tmp/sidx.js
-            HAS_FILE=1
-          elif git cat-file -e "HEAD:searchindex.js" 2>/dev/null; then
-            git show "HEAD:searchindex.js" > /tmp/sidx.js
-            HAS_FILE=1
+          if [ ! -f "$ASSET" ]; then
+            echo "Expected $ASSET to exist after build" >&2
+            exit 1
           fi
 
-          # Skip if there's nothing to purge AND nothing to keep
-          if [ "$HAS_FILE" = "1" ] || git rev-list -n 1 HEAD -- "searchindex.js" >/dev/null 2>&1; then
-            # Fail early if working tree is dirty (avoid confusing rewrites)
-            git diff --quiet || { echo "Working tree has uncommitted changes; aborting purge." >&2; exit 1; }
-
-            # Install git-filter-repo and ensure it's on PATH
-            python -m pip install --quiet --user git-filter-repo
-            export PATH="$HOME/.local/bin:$PATH"
-
-            # Rewrite ONLY the current branch, dropping all historical blobs of searchindex.js
-            git filter-repo --force --path "searchindex.js" --invert-paths --refs "$(git symbolic-ref -q HEAD)"
-
-            # Re-add the current version on top of rewritten history (keep it in HEAD)
-            if [ "$HAS_FILE" = "1" ]; then
-              mv /tmp/sidx.js "searchindex.js"
-              git add "searchindex.js"
-              git commit -m "Update searchindex (purged history; keep current)"
-            else
-              echo "No current searchindex.js to re-add after purge."
-            fi
+          TOKEN="${PAT_TOKEN:-${GITHUB_TOKEN:-}}"
+          if [ -z "$TOKEN" ]; then
+            echo "No token available for GitHub CLI" >&2
+            exit 1
+          fi
+          export GH_TOKEN="$TOKEN"
 
-            # Safer force push (only updates if remote hasn't advanced)
-            git push --force-with-lease
+          if ! gh release view "$TAG" >/dev/null 2>&1; then
+            gh release create "$TAG" "$ASSET" --title "$TITLE" --notes "Automated search index build for master" --repo "$GITHUB_REPOSITORY"
           else
-            echo "Nothing to purge; skipping."
+            gh release upload "$TAG" "$ASSET" --clobber --repo "$GITHUB_REPOSITORY"
           fi
 
 
 
@@ -65,7 +65,7 @@ jobs:
       - name: Update and download scripts
         run: |
           sudo apt-get update
-          sudo apt-get install wget -y
+          sudo apt-get install -y wget gh
           mkdir scripts
           cd scripts
           wget -O get_and_save_refs.py https://raw.githubusercontent.com/HackTricks-wiki/hacktricks-cloud/master/scripts/get_and_save_refs.py
@@ -123,57 +123,35 @@ jobs:
           git pull
           MDBOOK_BOOK__LANGUAGE=$BRANCH mdbook build || (echo "Error logs" && cat hacktricks-preprocessor-error.log && echo "" && echo "" && echo "Debug logs" && (cat hacktricks-preprocessor.log | tail -n 20) && exit 1)
       
-      - name: Update searchindex.js in repo (purge history, keep current on HEAD)
+      - name: Publish search index release asset
         shell: bash
+        env:
+          PAT_TOKEN: ${{ secrets.PAT_TOKEN }}
         run: |
           set -euo pipefail
 
-          # Be explicit about workspace trust (avoids "dubious ownership")
-          git config --global --add safe.directory "$GITHUB_WORKSPACE"
+          ASSET="book/searchindex.js"
+          TAG="searchindex-${BRANCH}"
+          TITLE="Search Index (${BRANCH})"
 
-          git checkout "$BRANCH"
-          git fetch origin "$BRANCH" --quiet
-          git pull --ff-only
-
-          # Choose the file to keep at HEAD:
-          # 1) Prefer freshly built version from book/
-          # 2) Fallback to the file currently at HEAD (if it exists)
-          HAS_FILE=0
-          if [ -f "book/searchindex.js" ]; then
-            cp "book/searchindex.js" /tmp/sidx.js
-            HAS_FILE=1
-          elif git cat-file -e "HEAD:searchindex.js" 2>/dev/null; then
-            git show "HEAD:searchindex.js" > /tmp/sidx.js
-            HAS_FILE=1
+          if [ ! -f "$ASSET" ]; then
+            echo "Expected $ASSET to exist after build" >&2
+            exit 1
           fi
 
-          # Skip if there's nothing to purge AND nothing to keep
-          if [ "$HAS_FILE" = "1" ] || git rev-list -n 1 "$BRANCH" -- "searchindex.js" >/dev/null 2>&1; then
-            # **Fail early if working tree is dirty** (prevents confusing filter results)
-            git diff --quiet || { echo "Working tree has uncommitted changes; aborting purge." >&2; exit 1; }
-
-            # Make sure git-filter-repo is callable via `git filter-repo`
-            python -m pip install --quiet --user git-filter-repo
-            export PATH="$HOME/.local/bin:$PATH"
-
-            # Rewrite ONLY this branch, dropping all historical blobs of searchindex.js
-            git filter-repo --force --path "searchindex.js" --invert-paths --refs "refs/heads/$BRANCH"
-
-            # Re-add the current version on top of rewritten history (keep it in HEAD)
-            if [ "$HAS_FILE" = "1" ]; then
-              mv /tmp/sidx.js "searchindex.js"
-              git add "searchindex.js"
-              git commit -m "Update searchindex (purged history; keep current)"
-            else
-              echo "No current searchindex.js to re-add after purge."
-            fi
+          TOKEN="${PAT_TOKEN:-${GITHUB_TOKEN:-}}"
+          if [ -z "$TOKEN" ]; then
+            echo "No token available for GitHub CLI" >&2
+            exit 1
+          fi
+          export GH_TOKEN="$TOKEN"
 
-            # **Safer force push** (prevents clobbering unexpected remote updates)
-            git push --force-with-lease origin "$BRANCH"
+          if ! gh release view "$TAG" >/dev/null 2>&1; then
+            gh release create "$TAG" "$ASSET" --title "$TITLE" --notes "Automated search index build for $BRANCH" --repo "$GITHUB_REPOSITORY"
           else
-            echo "Nothing to purge; skipping."
+            gh release upload "$TAG" "$ASSET" --clobber --repo "$GITHUB_REPOSITORY"
           fi
-      
+
       # Login in AWs
       - name: Configure AWS credentials using OIDC
         uses: aws-actions/configure-aws-credentials@v3
 
@@ -11,3 +11,4 @@ book
 book/*
 hacktricks-preprocessor.log
 hacktricks-preprocessor-error.log
+searchindex.js
@@ -222,6 +222,21 @@ Stay informed and up to date with the latest in cybersecurity by visiting our [*
 https://www.lasttowersolutions.com/
 {{#endref}}
 
+---
+
+### [K8Studio - The Smarter GUI to Manage Kubernetes.](https://k8studio.io/)
+
+<figure><img src="images/k8studio.png" alt="k8studio logo"><figcaption></figcaption></figure>
+
+K8Studio IDE empowers DevOps, DevSecOps, and developers to manage, monitor, and secure Kubernetes clusters efficiently. Leverage our AI-driven insights, advanced security framework, and intuitive CloudMaps GUI to visualize your clusters, understand their state, and act with confidence.
+
+Moreover, K8Studio is **compatible with all major kubernetes distributions** (AWS, GCP, Azure, DO, Rancher, K3s, Openshift and more).
+
+{{#ref}}
+https://k8studio.io/
+{{#endref}}
+
+
 ---
 
 ## License & Disclaimer