Add validating admission policy to restrict upstream driver access #482
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Signed-off-by: Kevin Fox <[email protected]>
kfox1111
requested review from
marcofranssen,
faisal-memon,
mrsabath and
edwbuck
as code owners
kfox1111
commented
Oct 23, 2024
Signed-off-by: kfox1111 <[email protected]>
Signed-off-by: Kevin Fox <[email protected]>
Signed-off-by: Kevin Fox <[email protected]>
Signed-off-by: Kevin Fox <[email protected]>
Signed-off-by: Kevin Fox <[email protected]>
Signed-off-by: Kevin Fox <[email protected]>
Signed-off-by: Kevin Fox <[email protected]>
Signed-off-by: Kevin Fox <[email protected]>
Signed-off-by: Kevin Fox <[email protected]>
Signed-off-by: Kevin Fox <[email protected]>
Signed-off-by: Kevin Fox <[email protected]>
Signed-off-by: Kevin Fox <[email protected]>
Signed-off-by: Kevin Fox <[email protected]>
Signed-off-by: Kevin Fox <[email protected]>
Signed-off-by: Kevin Fox <[email protected]>
Signed-off-by: Kevin Fox <[email protected]>
Signed-off-by: Kevin Fox <[email protected]>
Signed-off-by: Kevin Fox <[email protected]>
Signed-off-by: Kevin Fox <[email protected]>
Signed-off-by: Kevin Fox <[email protected]>
Co-authored-by: Faisal Memon <[email protected]> Signed-off-by: kfox1111 <[email protected]>
Signed-off-by: Kevin Fox <[email protected]>
faisal-memon
approved these changes
Oct 26, 2024
This was referenced Oct 28, 2024
faisal-memon
added a commit
that referenced
this pull request
Oct 28, 2024
* a3e607e Bump test chart dependencies (#484) * a360646 Add validating admission policy to restrict upstream driver access (#482) * a7368ee Upgrade to spire 1.11.0 (#483) * fe5464b Update notes (#479) * 29e9866 Bump test chart dependencies (#481) * 13736cd Add support for the new hint spire-controller-manager feature (#472) * b08e8bf Agent support for bundle on host path (#478) * 7b409ed Fix cert-manager upstream authority when enabling recommendations (#476) * 01c7227 Add support for the new fallback spire-controller-manager feature (#471) * 0a6dd19 Bump test chart dependencies (#477) * fcbd64e Support federation bundle endpoint profile http_web certificates (#469) * c29f45f Add AWS DB types (#464) * 898a349 Add remaining data store options (#463) * 2443515 Bump test chart dependencies (#474) * c461794 Update the spire-controller-manager to 0.6.0 (#473) * 5d07eaf Align more settings to convention (#467) * ea2d673 Bump test chart dependencies (#470) * 352aee2 Bump test chart dependencies (#468) * c3c8514 Change curl --caPath to --capath (#462) * 68d21cc Add an initial json schema file for spire-agent (#458) * b7e9823 Add new config.jwtDomain value to oidc-discovery chart (#457) * 8832da3 Protects SPIRE Agent's Chart Against YAML Template Injection (#450) * 3bc7025 Update spiffe-helper (#453) * 86d6fca Bump test chart dependencies (#449) Signed-off-by: Faisal Memon <[email protected]>
faisal-memon
added a commit
that referenced
this pull request
Oct 28, 2024
* a3e607e Bump test chart dependencies (#484) * a360646 Add validating admission policy to restrict upstream driver access (#482) * a7368ee Upgrade to spire 1.11.0 (#483) * fe5464b Update notes (#479) * 29e9866 Bump test chart dependencies (#481) * 13736cd Add support for the new hint spire-controller-manager feature (#472) * b08e8bf Agent support for bundle on host path (#478) * 7b409ed Fix cert-manager upstream authority when enabling recommendations (#476) * 01c7227 Add support for the new fallback spire-controller-manager feature (#471) * 0a6dd19 Bump test chart dependencies (#477) * fcbd64e Support federation bundle endpoint profile http_web certificates (#469) * c29f45f Add AWS DB types (#464) * 898a349 Add remaining data store options (#463) * 2443515 Bump test chart dependencies (#474) * c461794 Update the spire-controller-manager to 0.6.0 (#473) * 5d07eaf Align more settings to convention (#467) * ea2d673 Bump test chart dependencies (#470) * 352aee2 Bump test chart dependencies (#468) * c3c8514 Change curl --caPath to --capath (#462) * 68d21cc Add an initial json schema file for spire-agent (#458) * b7e9823 Add new config.jwtDomain value to oidc-discovery chart (#457) * 8832da3 Protects SPIRE Agent's Chart Against YAML Template Injection (#450) * 3bc7025 Update spiffe-helper (#453) * 86d6fca Bump test chart dependencies (#449) Signed-off-by: Faisal Memon <[email protected]>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Fixes: #439