tetragon icon indicating copy to clipboard operation
tetragon copied to clipboard

Published 20 hours ago verified publisher icon cilium

Don't give operator permissions to create CRDs if not needed

Open lambdanis opened this issue 5 months ago • 2 comments

Tetragon Operator has an option to skip CRD creation, but even if it's used, the operator ClusterRole still contains permissions to create CRDs. For slightly better security hygiene, these permissions can be included conditionally, only if needed.

lambdanis avatar Mar 15 '24 12:03 lambdanis