-
CIS-1.8 parent issue: https://github.com/rancher/rancher/issues/43159
This issue is created to document the hardening guides and self-assessment-guides in [Rancher docs](https://ranchermanager.docs…
-
### Question
Are there hardening guide or checklist available which can be used for production deployment?
-
To harden the security of the GitHub action workflow runners, there are multiple steps to consider:
* [ ] pin actions to a full length commit SHA (https://docs.github.com/en/actions/security-guides…
-
#### Is your feature request related to a problem?
Potential problems, yes...
#### Describe the feature you'd like
Give https://docs.github.com/en/actions/security-guides/security-hardening-f…
-
### OpenTofu Version
```shell
Latest
```
### Use Cases
Some organizations have a distrust of upstream tampering of versions. One way to give peace of mind is by pinning versions to upstream…
-
https://docs.github.com/en/actions/security-guides/security-hardening-for-github-actions
-
### What happened?
In github actions, workflows triggered by forks (and dependabot which is treated as a fork) do not have access to secrets and have a read only github token. This limits what workfl…
-
-
Currently in Rancher we prescribe a simple mustrunasnonroot option in Hardening guides but customers who need further hardening require specific RunAsUser rules specifying UID values
Currently ther…
-
Currently meson lacks built-in options for hardening binaries in a portable manner (across programming languages, across compilers, across OSes, across binary types, etc.). Adding such options would …