Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

NET-12097 Support PodSecurityAdmission at the restricted level #4478

Merged
merged 15 commits into from
Feb 21, 2025
Merged

NET-12097 Support PodSecurityAdmission at the restricted level #4478

merged 15 commits into from
Feb 21, 2025
+114 −28

Conversation

nathancoleman
Copy link
Member

@nathancoleman nathancoleman commented Feb 11, 2025
edited
Loading

Warning

  • API gateways that bind to privileged ports must now use the pre-existing mapPrivilegedContainerPorts setting in values.yaml (docs); otherwise, Envoy will fail to attach the listener when the gateway Pod is starting up.

Changes proposed in this PR

How I've tested this PR

How I expect reviewers to test this PR

Checklist

@nathancoleman nathancoleman added the pr/no-backport signals that a PR will not contain a backport label label Feb 11, 2025
@nathancoleman nathancoleman force-pushed the NET-12097-Support-K8s-Pod-Security-Admission-Controller-instead-of-Pod-Security-Policies branch from 8b282b5 to 78372be Compare February 13, 2025 18:33
@nathancoleman nathancoleman force-pushed the NET-12097-Support-K8s-Pod-Security-Admission-Controller-instead-of-Pod-Security-Policies branch from 04474a2 to f000eb4 Compare February 20, 2025 16:07
@sarahalsmiller sarahalsmiller force-pushed the NET-12097-Support-K8s-Pod-Security-Admission-Controller-instead-of-Pod-Security-Policies branch from e1249fc to 76a3058 Compare February 20, 2025 16:58
@nathancoleman nathancoleman force-pushed the NET-12097-Support-K8s-Pod-Security-Admission-Controller-instead-of-Pod-Security-Policies branch from 76a3058 to 92e1077 Compare February 20, 2025 17:03
@sarahalsmiller sarahalsmiller marked this pull request as ready for review February 20, 2025 22:43
@sarahalsmiller sarahalsmiller requested a review from a team as a code owner February 20, 2025 22:43
NiniOak
NiniOak approved these changes Feb 21, 2025
View reviewed changes
Copy link
Collaborator

@NiniOak NiniOak left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

thanks for these changes

@sarahalsmiller sarahalsmiller merged commit f86756d into main Feb 21, 2025
50 of 51 checks passed
@sarahalsmiller sarahalsmiller deleted the NET-12097-Support-K8s-Pod-Security-Admission-Controller-instead-of-Pod-Security-Policies branch February 21, 2025 18:46
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@NiniOak NiniOak NiniOak approved these changes

Assignees
No one assigned
Labels
pr/no-backport signals that a PR will not contain a backport label
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@nathancoleman @NiniOak @sarahalsmiller