-
Per GH security docs: https://docs.github.com/en/actions/security-guides/security-hardening-for-github-actions#using-third-party-actions
I think we should consider locking down all GH Actions that …
-
Hi, I installed K8S 1.25 using RKE2 without the option enabled `profile: "cis-1.23"`, then Rancher using helm, and it seems to have pulled rancher-webhook:
```
helm3 list
NAME NAMESP…
-
### Prerequisites
- [X] I have written a descriptive issue title
- [X] I have searched existing issues to ensure the issue has not already been raised
### Issue
While working on #411 , I n…
-
Microsoft is now building Windows 10 and Windows Server for ARM64 machines. To successfully run these in qemu, virtio drivers are needed for the ARM64 platform.
-
Hello everyone,
I'm using this container on my Unraid-machine with an i3 12100.
When want to encode a video file, I cannot choose the H.265 (Intel QSV) encoder, because it doesn't appear in the lis…
-
**Problem statement**
Workflows can use 3rd party actions. When specifying an action in a workflow you can use a version (i.e. `actions/setup-node@v3`) or specify a full length SHA number (i.e. `pe…
-
In order to avoid storing client_secret in github environments it is preferable to use federated credentials.
Right now when you login using the azure/login@v1 action the provider gives an error…
-
Test to make sure we will not hit https://github.com/rancher/elemental-operator/issues/317 anymore.
-
Internal reference: SURE-4172
Reported in 2.6.5 & 2.6.7
Issue description:
When we use rke2 custom deployment from rancher 2.6.7 with CIS Profile cis-1.6, the protect-kernel-defaults is set to fa…
-
**Describe the bug**
If someone is automating configuring self hosted runners and specifies the `--token` option it could get logged to cli invocation logs (file in nix, security event log in windows…