Joe Bowbeer

Any update? npm7 is no longer maintained, right? The last release (npm v7.24.2) was 1 year ago. Given that Node 16 enters maintenance phase in 60 days, and even it...

Can v3 be released without #25 ? It looks like #25 is a nice-to-have enhancement and not a strict requirement for v3

Affected manifests: * [manifests/base/redis](https://github.com/argoproj/argo-cd/tree/master/manifests/base/redis) * [manifests/ha/base/redis-ha](https://github.com/argoproj/argo-cd/tree/master/manifests/ha/base/redis-ha) * https://github.com/DandyDeveloper/charts/tree/master/charts/redis-ha

Verifying that the audit policy file is configured appropriately is now one of the CIS Benchmark recommendations. Where are the contents of the actual EKS `--audit-policy-file`? There is a yaml...

@EmrhT replied: > I found it in EKS Best Practices guide here > https://aws.github.io/aws-eks-best-practices/security/docs/detective/#auditing-and-logging Thanks. I updated my question.

This is securely configured to be false in the optimized AMI (and bottlerocket, too, I hope) https://github.com/awslabs/amazon-eks-ami/blob/master/files/kubelet-config.json#L7

> related https://raesene.github.io/blog/2023/03/18/lets-talk-about-anonymous-access-to-Kubernetes/ This recent article claims that all major distributions of Kubernetes enable this by default. Because, perhaps, quoting from CIS Benchmark: > If you are using RBAC authorization,...

@raesene writes: > Whilst I understand that there have been reasons why unauthenticated access to k8s clusters has been seen as necessary (which is why I wrote that bit in...

@tsurdilo see anything?

Fixed by #18003 ?