search

edgelesssys / contrast

Deploy and manage confidential containers on Kubernetes
https://docs.edgeless.systems/contrast
GNU Affero General Public License v3.0
183 stars 7 forks source link

genpolicy-msft: add support for volumeDevices #496

Closed burgerdev closed 4 months ago

burgerdev commented 4 months ago

This is essentially kata-containers/kata-containers#9706, but adopted to Microsoft's fork.

Since the patch touches rules.rego, we can't take the one from the URL anymore, so I changed the rules to small derivations that extract the patched rules.rego and genpolicy-settings.json files, respectively.

CLAassistant commented 4 months ago

CLA assistant check
All committers have signed the CLA.