terraform-operator icon indicating copy to clipboard operation
terraform-operator copied to clipboard
verified publisher icon GalleyBytes

Potential insecure secret reference

Open debuggerchen opened this issue 1 month ago • 1 comments

The Terraform CRD can reference many kinds of credentials in other namespaces, which may be a security risk, as a namespace-scoped user can leverage this to access unauthorized secrets. Perhaps we can leverage Webhook/CEL for better authorization?

debuggerchen avatar Oct 31 '25 13:10 debuggerchen