issues
search
StatCan
/
gatekeeper-policies
Policies that are to be enforced by GateKeeper for the Cloud Native Platform
Other
16
stars
12
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
feat(gatekeeper): Remove default config file
#53
sylus
opened
1 year ago
0
Implement method for preventing exec onto protected b pods.
#52
bryanpaget
opened
1 year ago
0
feat(general/restrict-prioriy-classes): add a policy to allow for the restriction of priority classes.
#51
justbert
closed
1 year ago
2
draft: update(general/container-allowed-images): ephemeralContainers
#50
SystemFiles
closed
1 year ago
1
feat(constraint): add new argo-workflow-gc constraint
#49
MichaelPatsula
opened
1 year ago
1
docs(readme/testing): add description of tests and how to take advant…
#48
justbert
closed
2 years ago
2
Feat: policy to ensure 6 digit workload ids in ns creation
#47
SajidDeo
closed
2 years ago
0
@cbrown/non employee rbac
#46
Collinbrown95
closed
2 years ago
9
fix(gatekeeper): update gatekeeper-opa-sync.yaml
#45
Jose-Matsuda
closed
2 years ago
0
DRAFT: @cbrown/1335 non employee rbac
#44
Collinbrown95
closed
2 years ago
1
refactor(restrict-hostnames): condensed violations
#43
frazs
closed
2 years ago
1
fix(restrict-hostnames): update the template.
#42
justbert
closed
2 years ago
0
fix(restrict-hostnames): account for ingress or virtualservice with no path
#41
MichaelPatsula
closed
2 years ago
0
fix(restrict-hostnames): account for ingress or virtualservice with no path
#40
frazs
closed
2 years ago
2
feat(restrict-hostnames): add the errorMsgAdditionalDetails parameter
#39
MichaelPatsula
closed
2 years ago
1
feat(restrict-ingress): incorporate ingress-hostname-conflict
#38
frazs
closed
2 years ago
1
feat(employee-only-feature): Update README
#37
saffaalvi
opened
2 years ago
0
DRAFT: Deny User Specified Tolerations
#36
Collinbrown95
opened
2 years ago
0
fix(deny-employee-only-features): update profileLabel
#35
saffaalvi
closed
2 years ago
0
fix(deny-employee-only-features): check profile label
#34
saffaalvi
closed
2 years ago
0
Update template.yaml
#33
saffaalvi
closed
2 years ago
0
Update kustomization.yaml
#32
Collinbrown95
closed
2 years ago
0
Update kustomization.yaml
#31
Collinbrown95
closed
2 years ago
0
feat(pv-pvc-classification): ensure statically provisioned PVs match binding PVCs
#30
blairdrummond
opened
2 years ago
1
feat: Pod Internal User policy (Employee-Only Feature)
#29
saffaalvi
closed
2 years ago
0
feat(restrict-hostnames): add integration tests.
#28
justbert
closed
2 years ago
2
feat: Internal User Policy
#27
saffaalvi
closed
2 years ago
5
Write policy to restrict AAW namespace to a Statcan employees
#26
blairdrummond
opened
2 years ago
0
Draft: Write policy to isolate personal namespaces to single user
#25
blairdrummond
opened
2 years ago
2
refactor(restrict-hostnames): restructure to better reuse code.
#24
justbert
closed
2 years ago
0
refactor(restrict-hostnames): restructure to better reuse code.
#23
justbert
closed
2 years ago
7
feat: Add restrict-hostnames constraint template
#22
zachomedia
closed
2 years ago
13
Validate goofys-injector annotations
#21
blairdrummond
opened
3 years ago
0
feat(ingress-no-hostnames): Add policy for no host name with ingress
#20
sylus
closed
3 years ago
0
fix: add missing type to templates
#19
blairdrummond
closed
3 years ago
0
DRAFT: Feat aaw policies
#18
blairdrummond
closed
3 years ago
1
fix(allowed-images): add vault to allowlist
#17
blairdrummond
closed
3 years ago
1
feat: Add block proB pod unless authpolicy present
#16
wg102
closed
3 years ago
3
Block creation of ProB Notebook until AuthorizationPolicy comes up
#15
blairdrummond
closed
3 years ago
1
feat(containerallowedimages): use OPA's Data Replication to achieve b…
#14
justbert
closed
3 years ago
1
feat(secured-gateways): policy that ensures Gateways are configured t…
#13
justbert
closed
3 years ago
4
Add alpine (no ":") to whitelist
#12
ca-scribner
closed
3 years ago
0
Adding miniconda image to allowed images
#11
Collinbrown95
closed
3 years ago
1
feat(opa): Prometheus Operator container allowed images
#10
frazs
closed
3 years ago
1
Create policy to ensure that Node restarts aren't blocked
#9
justbert
opened
3 years ago
0
feat(container-allowed-images): add new location for Kubecost
#8
justbert
closed
4 years ago
0
Separate AAW from Plaftorm containers in ContainerAllowedImages
#7
justbert
closed
3 years ago
7
feat: add Julia to allowed base images
#6
blairdrummond
closed
4 years ago
0
feat(boathouse): Allow boathouse flexvol driver
#5
zachomedia
closed
4 years ago
0
feat(opa): Update to latest rc1
#4
sylus
closed
4 years ago
1
Next