Ashley Davis
Ashley Davis
If you were sent here from a reminder in `#cert-manager-dev` do the following: - Run `make update-kind-images` - Run `make update-base-images` If anything was changed, create a PR for the...
## Overview Supply chain security is a popular topic in infosec at the moment, largely because of several high-profile incidents using supply chain attacks. The issue is getting worse, too;...
We believe cert-manager is ready for incubation and this commit adds our proposal! :grin: We're hoping to move forwards as quickly as we can and we'll gladly make ourselves available...
E.g. for [pull-cert-manager-istio-csr-k8s-v1-22-istio-v1-11](https://prow.build-infra.jetstack.net/view/gs/jetstack-logs/pr-logs/pull/cert-manager_istio-csr/116/pull-cert-manager-istio-csr-k8s-v1-22-istio-v1-11/1471230153399996416) With [this build YAML](https://prow.build-infra.jetstack.net/prowjob?prowjob=a381bb47-5ded-11ec-848a-72115d172d36): ```yaml env: - name: K8S_VERSION value: 1.22.3 - name: ISTIO_VERSION value: 1.11.4 ``` Producing [these logs](https://storage.googleapis.com/jetstack-logs/pr-logs/pull/cert-manager_istio-csr/116/pull-cert-manager-istio-csr-k8s-v1-22-istio-v1-11/1471230153399996416/build-log.txt) We see that kind is started with...
It's currently difficult to use `NewReader` / `NewGenericReader` in a situation where an invalid file might be read, since they can panic when trying to read an invalid file. This...
This is a solid base to build on but I've not finished it completely or got confident about it. I think it does the same things as v1, but the...
This proposal introduces a design by which bundles are stored in sidecar containers and consumed from a shared path by the controller container.
WIP: This is a proof of concept and is not ready for prime-time. In any case it's blocked behind #47 This is an proof-of-concept demo of the design in #43...
(This is a follow up from discussions which took place in the cert-manager [biweekly meeting](https://docs.google.com/document/d/1Tc5t6ylY9dhXAan1OjOoldeaoys1Yh4Ir710ATfBa5U/edit#heading=h.7h8rkitcxn99) on 2022-07-27) Currently `Bundle` is essentially a Kubernetes implementation of the Unix `cat` command -...
When I try to talk about this project I struggle massively every time. "Trust" is such an important word in TLS that it can be incredibly confusing to talk about...