Ben Moss

No, I don't have the bandwidth for this right now. I know there is some talk of getting kubeadm test signal for Windows clusters, maybe we can piggyback on their...

adding to what @rubensa posted, this will auto-detect the correct address range for your Kind network: ```bash network=$(docker network inspect kind -f "{{(index .IPAM.Config 0).Subnet}}" | cut -d '.' -f1,2)...

Right now you can `kubectl edit deployment ` and add `hostNetwork: true` to the pod spec. The [driver options](https://github.com/docker/buildx/blob/6cb026b766c49df511ecf248bbef8422a64e37cc/driver/kubernetes/factory.go#L119-L213) support a bunch of customizations for the deployment but as far...

With the changes I made in #708 you can propagate trace headers through with the [otelhttp middleware](https://pkg.go.dev/go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp#Handler), I did this in this demo app: https://github.com/benmoss/knative-tracing/blob/main/cmd/coinflip/main.go#L60-L62 I think this is nice...

@ustiugov it looks like it's been in since 0.12.0 https://pkg.go.dev/go.opentelemetry.io/contrib/instrumentation/net/http/[email protected]

Looks like we can't remove the shell from photon:4.0 ``` ❯ docker run -ti --rm photon:4.0 bash root [ / ]# tdnf remove bash Refreshing metadata for: 'VMware Photon Linux...

Would it be enough to use [data.read()](https://carvel.dev/ytt/docs/v0.40.0/lang-ref-ytt/#data) to load the value file? https://carvel.dev/ytt/#gist:https://gist.github.com/benmoss/1eca4105a86871e69eb52564220b72a1

We should make sure we have test coverage at the kapp-controller level for this feature

To add to what Daniel was saying, Roles and RoleBindings are what give ServiceAccounts their permission to operate on resources, and so we'd have to have a way of preventing...

I think this was the approach that Helm used with Tiller, and was generally seen as a bad idea since it opened the door for privilege escalation