-
I'm unfamiliar with [shadow realms](https://tc39.es/proposal-shadowrealm) as a whole but I see that it introduces some form of script evaluation, does this need to be covered by Trusted Types like eva…
-
Hi OPA team - How do you feel about having some kind of spec that states exactly what can and can't come back as a response from `compile` for partial evaluation?
We're really loving the potential …
-
This is a proposal for implementing fine-grained excludes.
This proposal adds a new `excludes` type to the conftest tool which allows for more fine-grained exclusion of policies. I have also attach…
-
### Kyverno Version
1.12
### Kubernetes Version
1.29
### Kubernetes Platform
EKS
### Description
I created the following clusterPolicy to prevent updates to the existing ingress annotation (alb…
-
**STATUS: [INPROGRESS]**
**Integrate trusted cloud-native registry Harbor with Dragonfly to provide a joint image management and distribution solution to support containerized environments.**
##…
-
[OpenID Federation 1.0](https://openid.net/specs/openid-federation-1_0.html) provides:
- a consolidated approach to build an infrastructure of trust;
- a secure way to establish trust among differ…
-
### Is this the right place to submit this?
- [X] This is not a security vulnerability or a crashing bug
- [X] This is not a question about how to use Istio
### Bug Description
**Context**: …
-
Maybe it is already obvious to some, or maybe I can present some new viewpoints, but I wanted to write it down and formalize my thought experiment to everyone.
> For those who want to know more abo…
-
### Community Note
* Please vote on this issue by adding a 👍 [reaction](https://blog.github.com/2016-03-10-add-reactions-to-pull-requests-issues-and-comments/) to the original issue to help the commu…
-
I am seeing some test failures on get_firewall_policies in napalm-fortios.
napalm-base defines get_firewall_polices as:
```
{
'policy_name': [{
'position':…