-
Feature Request
-
Resolution: Unresolved
-
Normal
-
None
-
None
-
None
-
Product / Portfolio Work
-
None
-
False
-
-
None
-
50% To Do, 50% In Progress, 0% Done
-
None
-
-
None
-
None
-
None
-
None
-
None
What is the nature and description of the request ?
Customer is using sysdig monitor to check and validate compliance state of their RHOCP 4.16 environment where they have openshift-gitops running.
While running the compliance rules, cu identified that some pods/deployment etc are referenced with secrets that are configured as environment variable which is against their security policy so customer wants these secrets to be configured as files.
Why does the customer need this? (List the business requirements here)
This is against the customer CISO security team policy to configure secrets as environment variable and they needs this fixed in upcoming versions.
List any affected packages or components.
Secrets are affected which are being used inside the openshift-gitops project.
Additional Info:
For detail analysis of the compliance rule, Please check the attachment in section 2.5.4.1