Tim Bannister

Is it feasible to enable this improved security initially for clusters created after a flag date, and then document a mechanism to switch the cluster to the new security model?

Is this: /sig security ?

Thanks! /ok-to-test

@julienperignon > Is there a way to disable the in-tree controller and let the aws-controller create NLB for target type = instance ? I recommend also filing this via https://github.com/aws/containers-roadmap/issues/new/choose

LGTM

This is marked as not tracked, but it looks like a ClusterCIDRConfig API might have been added into v1.24? Is that API part of v1.24 or not? (I'm asking because...

We should document all APIs. Even if they're optional. Even if they're alpha. We don't need GA-quality docs, but I'm also not satisfied with “nothing”.

/transfer kubectl?

(I meant that as a question, not as an imperative - but I think it's OK)

Should we track this as a kubectl issue (ie: prow command `/transfer kubectl`)?