Skip to content
This repository has been archived by the owner on Jan 12, 2023. It is now read-only.

Add disallow nginx snippet policy #126

Merged
merged 1 commit into from
Oct 25, 2021

Conversation

max0ne
Copy link
Collaborator

@max0ne max0ne commented Oct 22, 2021

This adds a policy to disallow usages of all NGINX snippet annotations, in response to NGINX Ingress Controller vulnerability CVE-2021-25742

Signed-off-by: Mingfei Huang <mingfei.huang@getcruise.com>
Copy link

@jravetch jravetch left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

lgtm

@dkiser dkiser merged commit 40c896a into cruise-automation:master Oct 25, 2021
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
None yet
Development

Successfully merging this pull request may close these issues.

3 participants