k8s.io

k8s.io copied to clipboard

eks-prow-build-cluster: separate canary manifests from prod

3

As we configure more services, differences between prod and canary configurations expands. In order to use Flux with different configs for prod and canary we need to create a dedicated...

pkprzekwas

AWS: Migrate AWS infra Terraform state files outside the AWS Org management account

6

We are currently saving Terraform state files in buckets that live in the AWS management account. What AWS account do we put the state buckets in? Long term, it's good...

deobieta

Cleanup registry.k8s.io

12

We have a few images present in `registry.k8s.io` that are non-used, with more recent versions on other registries or shouldn't be hosted on the Kubernetes official registry. - cluster-api-aure -...

ameukam

AWS: Establish tag policies for the organization

10

Establish and implement tag policies across the organization. - Tags at the org level - Tags at the account level - Tags at the ressource level /area infra /area infra/aws...

ameukam

AWS: Ensure CloudTrail is enabled for the Organization

10

Ensure we have a _Cloudtrail_ trail for the organization. The trail will be created in the audit account under `[email protected]`. /milestone v1.27 /area infra /area infra/aws /priority important-soon

ameukam

AWS: Configure AWS Config for the organization

5

Ensure we have AWS Config data for all the accounts is aggregated to the audit account. It should be done for all the regions. /milestone v1.27 /area infra /area infra/aws...

ameukam

Promote ip-masq-agent v2.10.0 and v2.10.1 images.

11

We are cutting a new release for ip-masq-agent and need to release this image (manifest list). Noticeable change: - Add random-fully to the masquerade rule (https://github.com/kubernetes-sigs/ip-masq-agent/pull/108). Ref https://github.com/kubernetes-sigs/ip-masq-agent/issues/115. cc @jingyuanliang...

MrHohn

add mailing list members migration functionality

13

### Description This PR attempts to add functionality for migrating mailing list members across two google groups. - add `MigrateMailingListMembers` function in `groups/service.go` to implement the migration logic - add...

Priyankasaggu11929

AWS Identity Center Setup

15

Top-level problem statement: We need an Identity Provider(IdP) to use with AWS SSO to access all the various AWS accounts of the project. In a typical company/enterprise, you often use...

upodroid

Kyverno mutate eks-prow-build-cluster to pull images from ecr

21

This uses Kyverno to address issue #4928 This was tested using a fake pod manifest and applying the kyverno policy in clusterpolicy.yaml ``` apiVersion: v1 kind: Pod metadata: name: nginx...

junshun