Comments (1)
With security-first, we have a strong multi-tenancy design which must not violate the namespace boundary.
For example in this design, a runner is solely responsible to writing outputs. A runner is namespace scoped Pod, and it must not be allowed to access anything beyond its scope.
Relaxing this enforcement will cause many security problems. So we cannot implement this relaxation.
from tofu-controller.
Related Issues (20)
- storeReadablePlan Plan read error HOT 2
- Branch planner does plan for all opened PRs in the repo despite on branch HOT 4
- infra.contrib.fluxcd.io/v1alpha2\": Not Implemented" HOT 2
- BranchPlanner cant create terraform resources in kubernetes (RC4) HOT 2
- tfVarsFiles schema is missing from the Helm chart CRDs HOT 2
- Makefile and pipline should have pinned versions of dependencies HOT 2
- Branch planner does not comment of PR if plan failed due to post plan web hook HOT 1
- Branch Planner Fails due to missing create & delete RBAC for gitrepositories
- Documentation: better documentation on the differences between vars and values.
- Helm chart 0.16.0-rc.4 issue with runner-discovery-service.yaml HOT 2
- Namesapce flux-system is always needed (helm install) HOT 2
- Helm Support for Customizing Tf-Runner HOT 3
- "https://weaveworks.github.io/tf-controller" is not a valid chart repository or cannot be reached HOT 2
- TF-Runner stuck in Terminating state HOT 2
- Finalizer remains despite dependency was deleted HOT 4
- Upgrade Terraform version to v1.6.x for tf-runner HOT 3
- sourceRef using labels
- Detect what was applied historically
- How to set TF_CLI_ARGS_init
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from tofu-controller.