Open fardin01 opened 1 year ago
We should default enabling external data to false to avoid unexpected outbound HTTP requests happening to users who run gator
in build pipelines, to avoid potential security issues.
I'm open to arguments about defaulting "enabled", but the more conservative option seems safer here.
How would the implementation look like?
Hey, is it going to be added anytime soon? We can't use Gator to validate externa_data policies.
Describe the solution you'd like
gator test
should be able to somehow handle external data providers.gator test
returnsundefined function external_data
ifexternal_data
is being used in aConstraintTemplate
.Anything else you would like to add: How is one supposed to test K8s yaml manifests against constraints at build time? It's not ideal to have to merge stuff and deploy and then find out the chart violates some policy.
Environment:
kubectl version
): 1.23