New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Whats the impact of removing the auto mount of access token for cert manager service accounts. #5881
Comments
any updates on this ? |
... have a look into the best practices. |
I just stumbled upon the same issue. This will be fixed in 1.12.0, see release notes and #5668 |
Issues go stale after 90d of inactivity. |
Stale issues rot after 30d of inactivity. |
Rotten issues close after 30d of inactivity. |
@jetstack-bot: Closing this issue. In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
I have deployed the cert manager on aks, but microsoft inbuilt cloud defender security raised the high severity vulnerability on auto mount of access tokens for service accounts.
I would like to know on the following items:
Does cert manager supports disabling automount of sa tokens. if not , is it on future roadmap.
What will be the impact of mounting the tokens manually but on different mounted path.
The text was updated successfully, but these errors were encountered: