Closed shayancanonical closed 1 year ago
Merging #293 (83cb530) into main (2ff030b) will decrease coverage by
0.29%
. Report is 2 commits behind head on main. The diff coverage is50.00%
.
@@ Coverage Diff @@
## main #293 +/- ##
==========================================
- Coverage 63.80% 63.52% -0.29%
==========================================
Files 15 15
Lines 2815 2829 +14
Branches 365 367 +2
==========================================
+ Hits 1796 1797 +1
- Misses 904 916 +12
- Partials 115 116 +1
Files Changed | Coverage Δ | |
---|---|---|
lib/charms/mysql/v0/mysql.py | 70.02% <50.00%> (-0.16%) |
:arrow_down: |
@shayancanonical you can go ahead, I'm dealing with the root removal separately
Issue
We are creating the root@% that is not used anywhere in the operator. This user poses a security risk.
Solution
Stop creating the root@% user. Thus
root@%
is no longer exposed to any consuming applications (there dont look to be any applications/relations that were usingroot@%
. Additionally, when using theset-password
orget-password
actions withusername=root
, the userroot@localhost
is affected.Followups
How to get a consistent list of user, host combinations when upgrading existing clusters