serving
serving copied to clipboard
knative
Support user namespaces in Serving
Describe the feature
Kubernetes v1.25 will add support for user namespaces as an alpha feature. This will improve security through increased pod to node/pod isolation and should also help with the multi-tenancy work stream.
For now, I'm proposing doing some initial exploratory work around what it would take to use user namespaces for Knative pods.
/area API /area security
/assign
@psschwei: The label(s) area/security cannot be applied, because the repository doesn't have them.
In response to this:
Describe the feature
Kubernetes v1.25 will add support for user namespaces as an alpha feature. This will improve security through increased pod to node/pod isolation and should also help with the multi-tenancy work stream.
For now, I'm proposing doing some initial exploratory work around what it would take to use user namespaces for Knative pods.
/area API /area security
/assign
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.
![knative-prow[bot] avatar](https://avatars.githubusercontent.com/in/183726?v=4 "Published by a pub.dev verified publisher"){kind=small}
This issue is stale because it has been open for 90 days with no
activity. It will automatically close after 30 more days of
inactivity. Reopen the issue with /reopen. Mark the issue as
fresh by adding the comment /remove-lifecycle stale.
![github-actions[bot] avatar](https://avatars.githubusercontent.com/in/15368?v=4 "Published by a pub.dev verified publisher"){kind=small}