Cristi
Cristi
**Describe the bug** starboard-operator is throwing an error: `{"level":"error","ts":1669636274.1971748,"logger":"controller.job","msg":"Reconciler error","reconciler group":"batch","reconciler kind":"Job","name":"scan-vulnerabilityreport-75f9d4f95d","namespace":"monitoring","error":"unexpected EOF","stacktrace":"sigs.k8s.io/controller-runtime/pkg/internal/controller.(*Controller).processNextWorkItem\n\t/home/runner/go/pkg/mod/sigs.k8s.io/[email protected]/pkg/internal/controller/controller.go:266\nsigs.k8s.io/controller-runtime/pkg/internal/controller.(*Controller).Start.func2.2\n\t/home/runner/go/pkg/mod/sigs.k8s.io/[email protected]/pkg/internal/controller/controller.go:227"}` Deleting the scan job doesn't fix the issue. **To Reproduce** Steps to reproduce the behaviour: 1. Check...
**Describe the bug** Pipeline kubespray error: ``` TASK [kubernetes/kubeadm : Check if kubeadm CA cert is accessible] ************* fatal: [pipeline-sc-master-0]: FAILED! => {"msg": "Timeout (12s) waiting for privilege escalation prompt:...
**Describe the bug** The retention size for some indices (e.g. authlog and security-auditlog) might not be accurate. **Expected behaviour** The default retention size for each index should reflect the reality....
There are some falco alerts that should be investigated and solved: - [ ] #1100 - [ ] #1105 - [ ] #1114 - [x] #1115 - [ ] #1116...
**Describe the bug** Falco is generating the below namespace change alerts on a test cluster setup: > {"output":"09:51:41.088557396: Notice Namespace change (setns) by unexpected program (user=root user_loginuid=-1 command=nsenter -m/proc/1/ns/mnt --...
**Describe the bug** Falco is generating the below PostgreSQL alert on a test cluster setup: > {"output":"09:49:46.578763685: Notice Database-related program spawned process other than itself (user= user_loginuid=-1 program=sh -c envdir...
**Describe the bug** Falco is generating the below host alert on a test cluster setup: > {"output":": Notice Unexpected setuid call by non-sudo, non-root program (user= user_loginuid=-1 cur_uid= parent= command=...
**Describe the bug** Falco is generating the below host alert on a test cluster setup: > {"output":"07:46:35.784669247: Notice Unexpected connection to K8s API Server from container (command=controller --v=2 --cluster-resource-namespace=cert-manager --leader-election-namespace=kube-system...
**Describe the bug** Falco is generating the below grafana alert on a test cluster setup: > {"output":"06:09:22.130958663: Error File below /etc opened for writing (user= user_loginuid=-1 command=python -u /app/sidecar.py parent=...
**Describe the bug** Falco is generating the below ingress-nginx alerts on a test cluster setup: > {"output":"19:08:45.554856659: Notice Disallowed inbound connection source (command=nginx-ingress-c --default-backend-service=ingress-nginx/ingress-nginx-default-backend --election-id=ingress-controller-leader --controller-class=k8s.io/ingress-nginx --ingress-class=nginx --configmap=ingress-nginx/ingress-nginx-controller --validating-webhook=:8443 --validating-webhook-certificate=/usr/local/certificates/cert...