-
Bug
-
Resolution: Unresolved
-
Minor
-
None
-
4.13.z, 4.12.z, 4.14.z, 4.15.z, 4.16.0
-
No
-
False
-
Description of problem:
The security recommendation is to replace every '*' with an explicit list of verbs instead. There are some places in https://github.com/openshift/secondary-scheduler-operator/blob/master/manifests/cluster-secondary-scheduler-operator.clusterserviceversion.yaml#L98 which uses '*'.
Version-Release number of selected component (if applicable):
All
How reproducible:
Always
Steps to Reproduce:
Actual results:
OSSO rbac contains '*' as a verb
Expected results:
OSSO rbac does not contain '*' as a verb
Additional info:
