Eric Zimanyi

My thinking had been more related to improving the security of inbound webhooks. Right now, the only authentication mechanism we support is adding a pre-shared expected key in the payload;...

I'll re-open and tag this as `sig/security` to see if they have any thoughts, though definitely can't comment on whether they will prioritize this.

I dug into this a bit yesterday, and this is indeed something we've seen before and don't have a great answer to right now. Essentially this is a combination of...

The part about the pipeline failing is surprising, and I suspect it's not related to the SpEL issue and instead is (as you suggest) related to the amount of data...

We're starting to scope out #5676, and the tentative plan there would involve no longer storing the full Kubernetes YAML in the pipeline context. This should address the two related...

@ethai : I don't have a great answer yet for what version will address the issue. Roughly the work we're planning should be in Spinnaker 1.22 and 1.23, but I...

@ethai @pselden : The case where you have an expression that *is* valid SpEL (but that you don't want to actually evaluate) is tricky. For now the best I can...

I think this should be discussed at a meeting of the [Kubernetes SIG](https://github.com/spinnaker/governance/tree/master/sig-kubernetes). We usually have pretty good discussions around proposed new features and how to implement them. If based...

@bmuschko : The next meeting will be April 7th. I've added this as an item---I'd definitely encourage you to attend if you'd like to advocate for adding this feature. If...

It looks like this might actually be a manifestation of the Kubernetes issue kubernetes/kubernetes#44165. We're using `kubectl apply` to create the `ConfigMap`, so it should not error if the `ConfigMap`...