Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Support fsGroupPolicy: File for Pod security context #530

Open
abbi-gaurav opened this issue Jul 1, 2022 · 3 comments
Open

Support fsGroupPolicy: File for Pod security context #530

abbi-gaurav opened this issue Jul 1, 2022 · 3 comments
Labels
area/security Security related kind/enhancement Enhancement, improvement, extension lifecycle/rotten Nobody worked on this for 12 months (final aging stage) platform/azure Microsoft Azure platform/infrastructure

Comments

@abbi-gaurav
Copy link

abbi-gaurav commented Jul 1, 2022
edited
Loading

How to categorize this issue?

/area security
/kind enhancement
/platform azure

What would you like to be added:
Provide support for enable fsGroupPolicy: File in the Pod security context.
Comments from Dev
It seems to be enabled by default in newer releases, so as a first estimation it shouldn’t be much effort to do so

Why is this needed:
Better security for the workloads
@gardener-robot gardener-robot added area/security Security related kind/enhancement Enhancement, improvement, extension platform/azure Microsoft Azure platform/infrastructure labels Jul 1, 2022
@gardener-robot
Copy link

@abbi-gaurav Label area/todo does not exist.

@dkistner
Copy link
Member

dkistner commented Jul 1, 2022

/assign

@dkistner
Copy link
Member

dkistner commented Jul 7, 2022

Short status update I didn't find the time to look further into it.
I'm planning to have a look into until end of the week.

@gardener-robot gardener-robot added the lifecycle/stale Nobody worked on this for 6 months (will further age) label Jan 3, 2023
@gardener-robot gardener-robot added lifecycle/rotten Nobody worked on this for 12 months (final aging stage) and removed lifecycle/stale Nobody worked on this for 6 months (will further age) labels Sep 13, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
area/security Security related kind/enhancement Enhancement, improvement, extension lifecycle/rotten Nobody worked on this for 12 months (final aging stage) platform/azure Microsoft Azure platform/infrastructure
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@abbi-gaurav @dkistner @gardener-robot