Jason DeTiberus
Jason DeTiberus
/help
/lifecycle frozen
/remove-lifecycle stale
/lifecycle frozen
One test that I've done in the past for images is to validate Node Conformance on an image: https://github.com/kubernetes-sigs/image-builder/tree/master/images/capi/packer/ami#run-the-e2e-node-conformance-tests We should be able to assume that the general binaries are...
> > Where do we publish the images? (e.g. GCS buckets?) > Github releases are a good option as well, they have a limit of 2GB per file and are...
> How do want to handle securing credentials? We'll need AWS keys for AMI building. VMC (most likely) keys for OVA building, etc. If we can build using prow, then...
> Security testing, do the images have any known vulnerabilities? do they score below a threshold on CIS or similar - @randomvariable I know you were doing some work in...
> > validate Node Conformance on an image > Does this not depend on having a working go installation inside the image? No, the tests are distributed as binaries. The...
> > Sure, but that also means that we may need to do things such as modify kernels based on the targeted cloud provider, install per-provider required drivers, per-provider required...