-
Notifications
You must be signed in to change notification settings - Fork 1
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
whorf v2 #6
Conversation
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Very cool! so much fresh new code, love it
# Conflicts: # Pipfile # Pipfile.lock
message.extend(sca_message) | ||
|
||
webhook.logger.error(f"Object {obj_kind_name} failed security checks. Request rejected!") | ||
return admission_response(allowed=False, uid=uid, message="\n".join(message)) |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
@gruebel If soft-fail is configured, shouldn't the allowed be True
?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
separate issue created #8
Co-authored-by: Nimrod Kor <[email protected]>
Co-authored-by: Nimrod Kor <[email protected]>
# Conflicts: # Pipfile # Pipfile.lock
unit-tests
job to GHAk8s.properties
towhorf.yaml
for easier configuration (you can still use thek8s.properties
config if needed)ignore-namespaces
setup.sh
, explained in the docs