connaisseur

connaisseur copied to clipboard

Bumps the gh-actions-packages group with 5 updates: | Package | From | To | | --- | --- | --- | | [github/codeql-action](https://github.com/github/codeql-action) | `3.23.1` | `3.24.4` | | [actions/dependency-review-action](https://github.com/actions/dependency-review-action)...

dependabot[bot]

Internal error occurred: failed calling webhook "connaisseur-svc.connaisseur.svc": failed to call webhook: Post "https://connaisseur-svc.connaisseur.svc:443/mutate?timeout=30s": EOF

6

**Describe the bug** Error from server (InternalError): Internal error occurred: failed calling webhook "connaisseur-svc.connaisseur.svc": failed to call webhook: Post "https://connaisseur-svc.connaisseur.svc:443/mutate?timeout=30s": EOF **Expected behavior** This happens when trying to test the...

muralivakkala

**Describe the bug** See observation https://github.com/sse-secure-systems/connaisseur/pull/873#discussion_r1095759341 There's an option that allows to reject a deployment if sending the corresponding alerts did not work. If so, Connaisseur throws an error and...

Starkteetje

Slow memory leak causing cosign subprocess termination

11

**Describe the bug** We have connaisseur `2.8.0` deployed in Kubernetes using a Helm install, and after running normally for a while (between a few days to a week) we start...

sbeck14

SSLV3_ALERT_BAD_CERTIFICATE: failed calling webhook "connaisseur-svc.connaisseur.svc":

7

**Describe the bug** failed calling webhook "connaisseur-svc.connaisseur.svc": failed to call webhook: Post "https://connaisseur-svc.connaisseur.svc:443/mutate?timeout=30s": x509: certificate signed by unknown authority (possibly because of "x509: invalid signature: parent certificate cannot sign this...

kgopi1

**Describe the feature** Connaisseur should early exit from verifying signatures if threshold is met **Optional: Is your feature request related to a problem? Please describe.** We have a validator spec...

dbbhat

Connaisseur verifies signature with every helm reconcile even with automaticUnchangedApproval enabled

5

**Describe the bug** We are observing that with every reconcile of HelmReleases in our cluster, connaisseur is verifying image signatures. Our reconcile period is set to 5m and from below...

dbbhat

Better support for gitops based approaches

16

**Describe the bug** There seems to be a limitation with connaisseur when working with gitOps based approaches. Connaisseur mutates the `image:` field of the Pod Spec to :@SHA256 knowing how...

dbbhat

Failed calling webhook

1

Hello, Recently we have done the setup of Connaisseur along with Cosign for signing images in our firm. Today I was doing some test for pods as part of testing....

rkydx

**Describe the feature** Currently helm chart doesn't provide ability to set 'hostNetwork'. **Optional: Is your feature request related to a problem? Please describe.** When using Calico we require to have...

pranali139