-
**What happened**:
I ran kube-state-metrics using Roles and RoleBindings following: https://github.com/kubernetes/kube-state-metrics?tab=readme-ov-file#limited-privileges-environment but I did no…
-
### What happened?
`data: null` in configMap is flagged for potentially sensitive content
```yaml
apiVersion: v1
data: null
kind: ConfigMap
metadata:
labels:
app: cert-manager
app…
-
## Whats the Goal?
I am trying to figure out how to allow users to __SSH into Notebook Pods from their laptop__. The benefit of this is supporting tools like [Remote VSCode](https://code.visualstud…
-
### What would you like to be added?
I propose the addition of a new configuration field in Kubernetes to facilitate the creation and mapping of **vTPM** (Virtual Trusted Platform Module) devices int…
-
**What would you like to be added**
As part of SIG-Security-Docs, we've been discussing the creation of a hardening guide for Kubernetes. We've got an initial document for the guide's creation here…
-
The policy "[Kubernetes clusters should disable automounting API credentials](https://github.com/Azure/azure-policy/blob/850be20c40a109b44bf9ed8f873f4b7b390343bb/built-in-policies/policyDefinitions/Ku…
-
We need to update all our Kubernetes manifests (mainly `deployments` for client apps) to include `securityContext` and optimize our configurations. This includes, but is not limited to, adding resourc…
-
# Title: Integrate Internal and External ingress-nginx for Internal and External Services
## **Description:**
To enhance the flexibility and security of Kuberise, we propose integrating both inter…
-
**What happened**:
kueue controller lacks permission for configmaps.
![image](https://github.com/kubernetes-sigs/kueue/assets/30817980/626ab068-f0e5-466a-9b1c-cd4dfd28b63b)
**What you e…
-
Hi rclone devs,
I'd like to expose the metrics on another port than the rcd API for security reasons.
`rclone rcd` is running as a sidecar container in kubernetes and remote control should
only b…