kubernetes
/
website
mirror of https://github.com/kubernetes/website.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
53,054 Commits
70 Branches
73 Tags
1 GiB
Commit Graph

280 Commits (03ae214e8129b009b7a336dfa328e3eb2cb15dc2)

Author SHA1 Message Date
Kubernetes Prow Robot 01eccc6441
Merge pull request #48771 from ritazh/deprecate-EnforceMountableSecretsAnnotation 
Add deprecation warnings for enforce-mountable-secrets annotation
 2024-11-26 17:12:56 +00:00
Kubernetes Prow Robot 7ace2212e7
Merge pull request #48701 from windsonsea/autmec 
Add reference to and clean up authentication-mechanisms.md
 2024-11-21 15:52:55 +00:00
Rita Zhang 3b8c927a3b
Address comments 
Signed-off-by: Rita Zhang <rita.z.zhang@gmail.com>
 2024-11-20 19:00:50 -08:00
Rita Zhang 926db124d0
Add deprecation warnings for enforce-mountable-secrets annotation 2024-11-19 07:59:43 -08:00
Karl Johan Grahn 7f9c368c4b
add mto link (#48648) 2024-11-13 01:00:46 +00:00
windsonsea cd0b9c3a0c Add reference to authentication-mechanisms.md 2024-11-12 17:26:55 +08:00
windsonsea 27c53cc54c Fix a clause about request/limit in app-security-checklist 2024-11-06 16:41:29 +08:00
windsonsea 44a349ef86 Tweak application-security-checklist.md for cleanup 2024-11-05 09:56:57 +08:00
Kubernetes Prow Robot 739b4e4ce1
Merge pull request #46326 from AnshumanTripathi/anshuman/app_sec_checklist 
Creating application security checklist
 2024-10-25 16:06:53 +01:00
Kubernetes Prow Robot 5e7170cdf4
Merge pull request #48178 from raesene/patch-1 
Update the multi tenancy docs to remove reference to archived project
 2024-10-12 04:18:20 +01:00
Kubernetes Prow Robot 0deb5a5d98
Merge pull request #48238 from mikejoh/patch-1 
Update multi-tenancy.md
 2024-10-10 06:54:22 +01:00
Tushar Bansod c17ec5bf52
Update cloud-native-security.md (#48266) 
* Update cloud-native-security.md

* Update content/en/docs/concepts/security/cloud-native-security.md

Co-authored-by: Utkarsh Singh <96516301+utkarsh-singh1@users.noreply.github.com>

* Update cloud-native-security.md

---------

Co-authored-by: Utkarsh Singh <96516301+utkarsh-singh1@users.noreply.github.com>
 2024-10-09 19:28:23 +01:00
Kubernetes Prow Robot 4585cc1886
Merge pull request #47967 from saschagrunert/seccomp 
Add dedicated seccomp node reference
 2024-10-09 00:28:22 +01:00
Sascha Grunert c2b49fee37
Add dedicated seccomp node reference 
Signed-off-by: Sascha Grunert <sgrunert@redhat.com>
 2024-10-08 11:03:19 +02:00
Mikael Johansson 2f908f6cb7
Update multi-tenancy.md 
Write out numbers from zero through ten in words
 2024-10-07 13:46:08 +02:00
Rory McCune 5b032718cc
Update multi-tenancy.md 
remove the kiosk project from the page as it has been archived by its owner.
 2024-10-03 14:26:33 +01:00
Anshuman Tripathi 86c48ee42d
Application security checklist 
Signed-off-by: Anshuman Tripathi <anshuman.tripathi305@gmail.com>

Update based on feedback

Signed-off-by: Anshuman Tripathi <anshuman.tripathi305@gmail.com>

Update based on feedback

Signed-off-by: Anshuman Tripathi <anshuman.tripathi305@gmail.com>

Update checklist reading guide

Signed-off-by: Anshuman Tripathi <anshuman.tripathi305@gmail.com>

Update checklist structure based on feedback

Signed-off-by: Anshuman Tripathi <anshuman.tripathi305@gmail.com>

Apply suggestions from code review

Adding the suggestions from the last review.

Co-authored-by: Tim Bannister <tim@scalefactory.com>

Fix style

Signed-off-by: Anshuman Tripathi <anshuman.tripathi305@gmail.com>
 2024-09-29 14:05:42 -07:00
Mikael Johansson 92b64712bf
Update cloud-native-security.md 
Match links to subsections with subsection order
 2024-09-29 14:45:53 +02:00
Qiming Teng 52cb6e5784 Drop executable permission for files 
There are a few files that has the executable permission set.
This PR fixes it.
 2024-09-10 11:37:15 +08:00
vaibhav2107 52e5a5b0f9 Updated the whitepaper link in cloud-native-security.md 2024-08-28 02:36:43 +05:30
vaibhav2107 493ef1ba1c Fixed the security white-paper link in cloud-native-security.md 2024-08-23 15:14:04 +05:30
Daniel Chan c2ab3112f1 Merge main into dev-1.31 to keep in sync 2024-08-05 11:47:31 -04:00
Peter Hunt 06aff012a2 PSS: add container_engine_t to allowed list of selinux types 
Signed-off-by: Peter Hunt <pehunt@redhat.com>
 2024-07-23 12:19:14 -04:00
Andrew Peabody d421b5814e consistency updates for pod security standards 
Co-authored-by: Tim Allclair <timallclair@gmail.com>
 2024-06-11 23:58:58 +00:00
Leon Welchert bd6541b8fe Rewrite Security information about LegacyServiceAccountTokenNoAutoGeneration feature gate 2024-05-12 07:07:51 +02:00
Peter Piontek ccefac9707
Fix typo 
Changed ValidatingAdmisisonPolicy to ValidatingAdmissionPolicy
 2024-05-02 15:11:31 +02:00
Kubernetes Prow Robot ea4444a849
Merge pull request #43214 from shannonxtreme/apparmor-seccomp 
Add new page for kernel-level constraints
 2024-04-30 04:56:15 -07:00
Rita Zhang f833f4f671 Revise authz page 
Improve how we explain authz, and remove some existing duplication.

Co-Authored-By: Rita Zhang <rita.z.zhang@gmail.com>
 2024-04-23 01:42:20 +01:00
Tim Bannister ed0951f7af Warn people about privilege escalation via Pod creation 2024-04-23 01:42:19 +01:00
Shannon Kularathna 7416c9c4d2 Modify Windows HostProcess section to point to dedicated page 2024-04-17 17:02:08 -04:00
Shannon Kularathna 610753c768 Add page for kernel-level security concepts 2024-04-17 17:00:13 -04:00
Vyom-Yadav 37b0b3ed72
Merge remote-tracking branch 'upstream/main' into dev-1.30 2024-04-10 23:04:57 +05:30
John.C cb695b712d
Signpost to API reference for ServiceAccount (#45750) 
* Update service-accounts.md

* Update service-accounts.md

Co-authored-by: Tim Bannister <tim@scalefactory.com>

---------

Co-authored-by: Tim Bannister <tim@scalefactory.com>
 2024-04-02 16:44:11 -07:00
Daniel Chan 251c58aa34 Merge main into dev-1.30 to keep in sync 2024-03-28 18:14:58 -04:00
Tim Bannister 54e1d3308e
Align with style guide 2024-03-27 16:36:16 +00:00
Iain Smart 1ed331ccbb
Update content/en/docs/concepts/security/rbac-good-practices.md 
Co-authored-by: Tim Bannister <tim@scalefactory.com>
 2024-03-26 13:51:18 +00:00
Iain Smart 3f990cd272
Add Namespace Labelling to RBAC good practice 2024-03-25 17:54:40 +00:00
Tim Allclair 4f11f83a45 AppArmor v1.30 docs update 2024-03-19 14:25:06 -07:00
Kubernetes Prow Robot a053579136
Merge pull request #44594 from adityasamant25/issue-40114 
Improve wording around Kata containers and OCI runtime spec
 2024-03-06 22:48:17 -08:00
Aditya Samant 5b064812d8 Improved the wording for Kata containers. 2024-03-06 09:24:16 +05:30
Kubernetes Prow Robot da14ff8f59
Merge pull request #43176 from sftim/20230923_revise_security_concept_section 
Move and revise overview for Security section
 2024-02-16 11:41:30 -08:00
Tim Bannister 9323995f01 Add note to localizers 2024-02-16 11:47:37 +00:00
Tim Bannister 892978919f Move cloud native security out of section overview 2024-02-16 11:47:24 +00:00
Tim Bannister 18cdba2449 Remove legacy security overview page 2024-02-16 11:43:53 +00:00
Tim Bannister 872808b895 Add section overview for Security 
Co-authored-by: Anshuman Tripathi <anshuman.tripathi305@gmail.com>
Co-authored-by: Anuj Tiwari <aj11anuj123@gmail.com>
Co-authored-by: Gaurav Padam <1032201077@tcetmumbai.in>
Co-authored-by: Tabitha Sable <51767484+tabbysable@users.noreply.github.com>
 2024-02-16 11:43:31 +00:00
John Reese 4a3d9e433a
Update rbac-good-practices.md 
Fix typos on page "Role Based Access Control Good Practices"
 2024-01-30 13:58:54 -05:00
Kubernetes Prow Robot a64b2324c7
Merge pull request #42355 from deepak4566/Deepak-1 
Remove API server --enable-logs-handler argument from docs
 2024-01-09 16:52:58 +01:00
hunshcn bcc55ae7c9
fix outdated link/anchor 
Signed-off-by: hunshcn <hunsh.cn@gmail.com>
 2024-01-03 15:00:11 +08:00
Kubernetes Prow Robot e2509cb624
Merge pull request #44506 from Takashiidobe/fix-typos 
fix typos
 2024-01-02 19:29:55 +01:00
hunshcn fc8e79b96c
update safe sysctl 
Signed-off-by: hunshcn <hunsh.cn@gmail.com>
 2023-12-25 10:47:54 +08:00