Kumbirai Tanekha
Kumbirai Tanekha
# Overview ~The code changes to accommodate metrics collection will likely be shared among the different connectors, however there's nuance to each connector (at the very least when it comes...
# Overview Assume there is a pipeline to measure, export and analyse metrics. This issue is about defining the potential formats of benchmarking reports. For example, for streaming latency we...
## Is your feature request related to a problem? Please describe. Well-defined error codes simplify the troubleshooting experience. Authn-k8s client and Secrets provider have both shown the benefits. These also...
The functionality of the AWS connector relies on manual tests. These should really be automated. We could use AWS itself or Localstack.
Currently options are ingested as bytes and converted to map[string]string. Methods and logic specific to the options have no structure to latch onto and so are dispersed in the code....
# Overview The integration tests strategies for MSSQL and (MySQL+PG) are quite different. They both have their pros and cons. It would be good to reconcile them into one pattern...
## Description I noticed as part of https://github.com/cyberark/secretless-broker/pull/1249 that in the integration tests we either have secretless and secretless-dev built as part of `./start` and the `docker-compose.yml`. The former is...
## Description It's possible for values like hostname and port to be leaked through error messages. These error messages can make it to the client or end up logs. We...
## Description At present the mysql service connector only supports v5.7. This is because we hardcode the use of the [mysql_native_password](https://github.com/cyberark/secretless-broker/blob/latest/internal/app/secretless/handlers/mysql/protocol/protocol.go#L639) authentication strategy and [disallow authentication plugins](https://github.com/cyberark/secretless-broker/blob/latest/internal/app/secretless/handlers/mysql/authentication_handshake.go#L179). In order to...
A test harness used for rapid prototyping of service connector plugins. It avoids the overhead of creating `net.Listener`s or ProxyService instances from Secretless Config. Instead, it creates a single TCP/HTTP...