-
Currently Commit Boost relies heavily on Docker to launch and organize the different modules. This has the advantage of better cross-platform support, sandboxing of modules, and easier integration for…
-
It is not possible to configure the Seccomp profile for the Helm hook jobs (such as https://github.com/neticdk/k8s-oaas-observability/blob/main/charts/prometheus-operator/templates/admission-webhooks/…
-
Hello Team
Can you please help me on below
I'm currently implementing Cloud Native Feature-Flagging using the OpenFeature Operator.
I've followed all the steps outlined in https://openfeature…
-
**Describe the bug**:
I think that RBAC and PSP applied to logging-operator, fluent-bit and fluentd are **too permissive**.
**Proposal**:
I propose following RBAC and PSP to restrict as much as p…
-
## Need Lots of References...
### Permissions
[amicontained](https://github.com/genuinetools/amicontained)
To install in a pod:
Assume you have running pod `node-starter-deploy-7f68bf7d57-rm…
-
```[tasklist]
- [ ] https://github.com/scylladb/scylla-operator/issues/1935
- [ ] https://github.com/scylladb/scylla-operator/issues/1975
- [ ] https://github.com/scylladb/scylla-operator/issues/1976
…
-
This issue came up while investigating a problem in the seccomp filters generated by snapd using libseccomp. We had a filter set up to allow calling the `copy_file_range` syscall provided that the six…
-
## What is the Problem Being Solved?
[seccomp(2)](https://en.wikipedia.org/wiki/Seccomp) is a Linux kernel facility that allows a process to voluntarily give up access to nearly everything. Once in…
-
Initially, we would like to respond statically. It means hard coding.
https://github.com/opencontainers/runtime-spec/pull/1130
-