[kyverno] check if v1.13.0 breaking chances affects us #843

jkleinlercher · 2024-11-12T23:07:27Z

See https://github.com/kyverno/kyverno/releases/tag/v1.13.0

especially the wildcard view role removal … does that mean that https://github.com/suxess-it/kubriX/blob/main/platform-apps/charts/kyverno/templates/policy-kargo-project-name-validation-apps-in-any-ns.yaml does not work anymore because kyverno cannot read kargo projects and argocd anymore?

phac008 · 2024-11-25T21:49:44Z

uibklab issue since update to v1.13.x

admission webhook "validate-policy.kyverno.svc" denied the request: path: spec.rules[0].generate..: system:serviceaccount:kyverno:kyverno-admission-controller requires permissions get for resource rbac.authorization.k8s.io/v1/RoleBinding in namespace kubevirt

https://github.com/suxess-it/kubriX/blob/main/platform-apps/charts/kyverno/templates/policy-kubevirt-rolebinding.yaml

jkleinlercher added the area:security Related to security brick label Nov 12, 2024

jkleinlercher mentioned this issue Nov 26, 2024

make all kyverno policies optional and disabled by default #872

Merged

jkleinlercher added this to the sprint 3 milestone Nov 26, 2024

jkleinlercher added this to kubriX Nov 26, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[kyverno] check if v1.13.0 breaking chances affects us #843

[kyverno] check if v1.13.0 breaking chances affects us #843

jkleinlercher commented Nov 12, 2024

phac008 commented Nov 25, 2024

[kyverno] check if v1.13.0 breaking chances affects us #843

[kyverno] check if v1.13.0 breaking chances affects us #843

Comments

jkleinlercher commented Nov 12, 2024

phac008 commented Nov 25, 2024