-
**Component:** Kubernetes CSI Snapshotter
**Version:** v8.0.1
**Image:** `registry.k8s.io/sig-storage/csi-snapshotter:v8.0.1`
**Detected by:** Aqua Security Trivy
**Description:**
I hav…
-
Kubernetes v1.30 deprecates enabling appArmor through annotations and enables it via securitycontext. Tortoise seems to remove this securitycontext through the mutating webhook `{"configuration":"tort…
-
### Search before asking
- [X] I had searched in the [issues](https://github.com/apache/incubator-streampark/issues?q=is%3Aissue+label%3A%22bug%22) and found no similar issues.
### Java Version
JD…
-
*Description*:
>What issue is being seen? Describe what should be happening instead of
when applying a security policy against a gateway with authorization and a rule with principal clientCIDRS th…
-
### Version
5.2.0
### Details & Steps to reproduce
Currently, the provided Docker image can't run on OpenShift (Red Hat Kubernetes) as it doesn't follow some security requirements,
There's a great…
-
Greetings,
We recently published a [paper](https://dl.acm.org/doi/10.1145/3579639) related to security misconfigurations that occur in Kubernetes. As Kubernetes is becoming increasingly popular to…
-
### What would you like to be added?
When kubectl edits resources, a kubectl-edit-xxx.yaml file is generated in the /tmp directory. Can this file be generated in other directories or can it be config…
-
### What is the problem you're trying to solve
containerd 2.0 launch is imminent. I noticed that there was no CIS benchmark for containerd and thought that it would be a good idea to create one for c…
-
**What is missing?**
I would like the ability to upgrade just individual components version within releases.
Right now when you want to select a version of kube-prometheus you check the [comp…
-
Hi,
I am trying the Docker CIS benchmark scenario: https://madhuakula.com/kubernetes-goat/docs/scenarios/scenario-5/docker-cis-benchmarks-in-kubernetes-containers/welcome
I am able to login to …