Maxime Brunet

Tackling the issue with @musabmasood, I have copied this kubeconfig in the `argocd-server` and `argocd-application-server`: ```yaml # /home/argocd/.kube/config apiVersion: v1 kind: Config preferences: {} clusters: - cluster: certificate-authority-data: server: https://.eks.amazonaws.com...

@okdas yes, the `fsGroup` is needed (when running as non-root), the `kubectl cluster-info` command I posted runs inside the pod using the WebIdendity token, so it was readable, and as...

If that helps anyone: for now, if you would like to opt-out, you can use a package rule: ```json { "packageRules": [ { "description": "Opt-out minimum Go version updates: https://github.com/renovatebot/renovate/issues/16715",...

There is also Renovate which is an excellent alternative to Dependabot and is always accepting new managers: https://github.com/renovatebot/renovate/issues/new Once the feature request is created, they will ask to complete this...

Thank you for the fast reply, quickly looking around, I have not found a documentation being explicit about it, but it seems to be the convention. Among 118 CR schemas...

> So what are you actually validating and how? You talk about CRs - but it is you who creates the CRs. So what makes them invalid? Yes, and as...

```yaml apiVersion: kafka.strimzi.io/v1beta2 kind: Kafka metadata: name: my-cluster spec: kafka: # ... foobar: #

Unfortunately, using [modsecurity-snippet](https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/#modsecurity-snippet) as a workaround does not work: ```yaml modsecurity-snippet: | SecAuditLogType Concurrent SecAuditLogStorageDir /var/log/audit/ ```

> @maxbrunet This is somewhat deprecated now. Should we close it or do you want to update it? We can close, it'll be probably easier to create a new one...

Excellent read, thanks for sharing! Frederic had mentioned it in a blog post as well: https://www.polarsignals.com/blog/posts/2021/04/13/demystifying-pprof-labels-with-go/