-
contrary to what the README.md says, default_allow_privilege_escalation is not defaulted, it does need to be set
```yaml
apiVersion: policies.kubewarden.io/v1alpha2
kind: ClusterAdmissionPolicy
…
-
All the Kubewarden policies published on the policy hub must be signed using Sigstore.
## Acceptance criteria
* Each policy is signed using Sigstore, via the `cosign` cli
* The signature is per…
-
Changes to ClusterAdmissionPolicies such as performing a Delete trigger the watch of policyserver_controller.go twice (or so it seems). This doesn't break the functionality, but makes the operations f…
-
> As a kubernetes operator using Rancher and Kubewarden,
> I want to have a quick overview about how a policy is behaving,
> so that I can see how effective it is and spot issues.
Given a `Cluste…
-
### Is there an existing issue for this?
- [X] I have searched the existing issues
### Current Behavior
If the metrics bundle offered by the Rancher Monitoring app the `Metrics` tab does not …
-
Version used: kwctl 0.2.4
# kwctl pull error
When running `kwctl.exe pull`, I get the following error:
```powershell
kwctl.exe pull registry://ghcr.io/kubewarden/policies/pod-privileged:v0.1.9
…
nunix updated
2 years ago
-
## Acceptance criteria
- Bug listed in https://github.com/kubewarden/kubewarden-controller/issues/110 is fixed.
- Implement a new readiness probe for kubewarden-controller that:
* waits for the c…
-
Policies can be pulled either via a mutable tag (e.g.: `latest`, `v1.0.0`) or by their immutable sha2sum.
The sha256 sum is **not** the digest of the actual policy, but rather the digest of its OCI m…
-
### Current Behavior
The navigation buttons do not work as expected.
- `Cancel` button does not do anything
- `Next` is allowed to be pressed when the user hasn't selected a policy
- `Finish` do…
-
### Is your feature request related to a problem?
_No response_
### Solution you'd like
For subcommands that perform verification (`kwctl {verify, pull, run}`), add flags for keyless verification. …