-
Notifications
You must be signed in to change notification settings - Fork 2.3k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Kubeflow 1.9 Enterprise grade Agenda #6662
Comments
@juliusvonkohout thanks for this list! Dominik and I will review. |
I would also add securing the Katib web app's backend, with SubjectAccessReviews, as well kubeflow/katib#1983. Right now folks can manipulate (CRUD) Experiment CRs in any namespace via the browser |
It would also be nice to add Dex protection against multiple requests that eventually crash the cluster. (dexidp/dex#1292) In Kubeflow 1.8 there was no external access to Inference Services. |
We really need to prioritize the lowering of the installation and upgrade management overhead: |
@bhack feel free to join the manifests WG meeting |
Closed in favor of kubeflow/manifests#2727 |
For general Kubeflow:
Security:
For Pipelines maybe :
data_passing_method
. (https://kubeflow-pipelines.readthedocs.io/en/latest/_modules/kfp/dsl/_pipeline.html?highlight=data_passing_method#). For example if one uses a pvc named after the pipeline for all executions of that pipeline versions this could be useful.The text was updated successfully, but these errors were encountered: