Jordan Liggitt
Jordan Liggitt
requires https://github.com/liggitt/audit2rbac/issues/3
The .secrets field within service accounts is only for listing secrets to be mounted into pods, not for extracting secrets for other uses. There is no guarantee the first item...
new members added after v2->v3 data migration do not receive existing data if no .snap file exists
1. Start an etcd server (versions tested: 3.1.9 - 3.2.9) 2. Write v2 data, but less than 10,000 keys, so that no .snap file is created 3. Stop the server...
The following files reference a metadata-only audit policy in order to prevent logging request/response contents for sensitive resources: * https://github.com/opsnull/follow-me-install-kubernetes-cluster/blob/master/05-2.apiserver%E9%9B%86%E7%BE%A4.md A recent Kubernetes [bugfix](https://github.com/kubernetes/kubernetes/pull/102040) means that audit-logging of subresource requests...
https://github.com/Kevin-fqh/learning-k8s-source-code/blob/master/Go-package%E4%BD%BF%E7%94%A8/%E5%9F%BA%E4%BA%8Ecobra%E6%9E%84%E5%BB%BA%E5%91%BD%E4%BB%A4%E8%A1%8C.md references `github.com/spf13/cobra/cobra` That is moving to github.com/spf13/cobra-cli. See https://github.com/spf13/cobra/issues/1597 for details. Use would look like this: ```shell go get github.com/spf13/cobra-cli ./bin/cobra-cli init cobra_example ```
Includes ability to list/install from dev branches: ```sh gvm listall -a gvm gos (available) ... dev.boringcrypto dev.cc dev.cmdgo dev.debug dev.fuzz dev.garbage dev.gcfe dev.go2go dev.inline dev.link dev.power64 dev.regabi dev.ssa dev.tls dev.typealias...
Switches to use the extracted cobra-cli command since it is being removed from the github.com/spf13/cobra module (xref https://github.com/spf13/cobra/issues/1597)
The following files reference a metadata-only audit policy in order to prevent logging request/response contents for sensitive resources: * https://github.com/kontena/pharos-cluster/blob/master/lib/pharos/resources/audit/policy.yml A recent Kubernetes [bugfix](https://github.com/kubernetes/kubernetes/pull/102040) means that audit-logging of subresource requests...