Loading...

XML

Word

Printable

Type: Story
Resolution: Done
Priority: Normal
Fix Version/s: None
Affects Version/s: None
Labels:
None

Activity Type:
Product / Portfolio Work
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Ready:
False
Epic Link:
readOnlyRootFilesystem should be explicitly to true and if required to false for security reason
Story Points:
None

Target Version:
None
Release Blocker:
None
Sprint:
None

Enable readOnlyRootFilesystem on all of the cloud-credential-operator pods. This will require reverting prior changes that caused the tls-ca-bundler.pem to be mounted in a temporary location and then moved to the default location as part of the cloud-credential-operator pod's command.

links to

openshift/cloud-credential-operator#819: CCO-647: Enable readOnlyRootFilesystem on all containers

Assignee:: Jeremiah Stuever

Reporter:: Jeremiah Stuever

Need Info From:: None

Contributors:: None

QA Contact:: Mingxia Huang

Doc Contact:: None

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Created:: 2025/02/20 8:38 PM

Updated:: 2025/07/21 5:41 PM

Resolved:: 2025/03/28 4:52 AM

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates