Thomas Strömberg

I think this sounds like a great idea, and we should totally do this. As you mentioned, since all of the other read commands support this, it shouldn't be too...

@nshalman has some experience with this

@mazzy89 - are you still working on this? I think it would be a great addition to Tinkerbell.

I believe this is warning message from https://github.com/tinkerbell/tink/pull/442 Admittedly, the message isn't very helpful, as it doesn't give the user a clue what flag to provide. @mmlb - any clue...

I spoke to @mmlb during our community triage meeting and he mentioned that this noisy warning should be silenced. I understand that this warning should only happen when tink is...

@rgl - Personally, I don't think that flags are universally better than environment variables. I would rather see the flags override the environment variable.

Thank you for the detailed test case. This sounds like a fairly trivial issue to fix. Any volunteers?

For what it's worth, I feel like the core and correct part of this proposal is the signed requests to Hegel. All secrets should be communicated via that path. I'm...

Discussed at triage: in particular, securing the communication between the tink-worker and hegel seems reasonable. It's difficult to ensure a fully trusted environment until the operating system is installed, so...

I for one would love to see an integration story with Netbox.