Iulian Mandache
Iulian Mandache
**Describe the bug** Vault CLI allows setting invalid `token_bound_cidrs` on AppRoles and breaks the AppRole. **To Reproduce** Steps to reproduce the behavior: 1. Create a test AppRole: ``` # vault...
Hi! First of all, thank you so much for this project, it's a really useful tool for a person that works with a lot of Kubernetes clusters from CLI :)...
**What would you like to be added**: I would like for the AWS assume role `ExternalID` to not show up in logs, for example: ``` time="2024-02-21T18:20:30Z" level=info msg="Instantiating new Kubernetes...
### What does this PR do? This PR solves issue #66 by adding `cloudwatch:TagResource` permissions to `DatadogStreamStackSetExecutionRole` IAM role ### Testing Guidelines Deploy/update the Cloudformation template containing this change
**Description** This change conceals the AWS `ExternalId` from application logs to mitigate security risks, as exposing this identifier could enable attackers to exploit it for unauthorized cross-account access or privilege...
By default, the Aiven Operator is configured to discover resources, including Kubernetes secrets, across the entire cluster. To minimize the potential attack surface and enhance security, I would like to...
this PR addresses https://github.com/aiven/aiven-operator/issues/807