Mahé
Mahé
Expected Behavior ================= By reading the documentation of the project, I was expecting that `docker-slim profile` was running the exact same part of the app that generates the seccomp profile...
Congrats on this list, there are plenty of resources available here! Just want to signal that we are currently writing a security checklist a bit similar to this one on...
First of all thanks for creating tide, I just tried fish and it's amazing to have a p10k equivalent for fish. This bug is just a minor annoyance but I...
POC for #10. The idea would be to generate a random valid manifest in order to fuzz the admission control. Not in a traditional fuzzing sense, like finding crashes and...
In the documentation on the privileged execution use case: https://github.com/cilium/tetragon/blob/f4d6ac470658375109bcb37cfbe679b5432cdf6d/README.md?plain=1#L594-L609 We could use a more realistic example, using an nginx image instead of the test-pod made-up image. > Let's do...
As we detect BPF features using `pkg/bpf/detect.go` for now, it would be interesting to add more detection logic for other kernel configs that Tetragon makes use of. Indeed we have...
The e2e labels test is suffering from flakes because the jobs-app sometimes fails to deploy, even though we provide enough resources, see https://github.com/cilium/tetragon/issues/1954. The idea would be to migrate from...
The documentation is now pointing to the CRD for the definition of the list of possible arguments but we could improve that to detail: 1. What is the argument type...
See [an example of workflow here](https://github.com/cilium/tetragon/actions/runs/7593848324/job/20721370961?pr=1931): ``` Run geekyeggo/delete-artifact@65041433121f7239077fa20be14c0690f70569de Error: HttpError: Resource not accessible by integration ``` It looks like a permissions error because this is running in the context...