kyma-project / test-infra

Test infrastructure for the Kyma project.

https://status.build.kyma-project.io/

Apache License 2.0

38 stars 181 forks source link

[IaC] Remove developer access for terraform planner service account #10075

Open KacperMalachowski opened 6 months ago

KacperMalachowski commented 6 months ago

Description:

As part of #8594 we have to set roles/container.developer to prevent from creating custom role. With end of using Prow the GKE clusters will be removed as well, please ensure to remove that role as well as it grants too much permissions for planner service account.

Acceptance Criteria

[ ] Terraform Planner has not write access to resources except state bucket

Important information:

Blocked by Prow usage.

github-actions[bot] commented 3 weeks ago

This issue has been automatically marked as stale due to the lack of recent activity. It will soon be closed if no further activity occurs. Thank you for your contributions.