Skip to content

security: add security attributes related to root usage to container definitions #214

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 2 commits into from
Sep 24, 2025
Merged

security: add security attributes related to root usage to container definitions #214

merged 2 commits into from
Sep 24, 2025

Conversation

fcanogab
Copy link
Contributor

This PR adds two security attributes to container definitions that improve the security of the containers when being run in Kubernetes.

At the same time, this PR reduces the noise of vulnerabilitiy scanners because they normally raise alerts when these attributes are missing.

@netlify Netlify
Copy link

netlify bot commented Sep 24, 2025
edited
Loading

Deploy Preview for vllm-semantic-router ready!

Name Link
🔨 Latest commit fe3da95
🔍 Latest deploy log https://app.netlify.com/projects/vllm-semantic-router/deploys/68d3f2aafb97700008dba42c
😎 Deploy Preview https://deploy-preview-214--vllm-semantic-router.netlify.app
📱 Preview on mobile
Toggle QR Code...

QR Code

Use your smartphone camera to open QR code link.

To edit notification comments on pull requests, go to your Netlify project configuration.

@rootfs
Copy link
Collaborator

rootfs commented Sep 24, 2025

@fcanogab thank you for this! it looks ready to go. Can you sign the DCO

In your local branch, run: git rebase HEAD~1 --signoff
Force push your changes to overwrite the branch: git push --force-with-lease origin add-security-containers

@fcanogab
Add security attributes related to root usage to container definitions
5dc563a 
Signed-off-by: Florencio Cano Gabarda <fcanogab@redhat.com>
@fcanogab fcanogab force-pushed the add-security-containers branch from 5c3c2f1 to 5dc563a Compare September 24, 2025 13:25
@github-actions GitHub Actions
Copy link

👥 vLLM Semantic Team Notification

The following members have been identified for the changed files in this PR and have been automatically assigned:

📁 deploy

Owners: @rootfs, @Xunzhuo
Files changed:

  • deploy/kubernetes/deployment.yaml
vLLM

🎉 Thanks for your contributions!

This comment was automatically generated based on the OWNER files in the repository.

@rootfs rootfs merged commit ebba50d into vllm-project:main Sep 24, 2025
9 checks passed
@rootfs
Copy link
Collaborator

rootfs commented Sep 24, 2025

@fcanogab Thank you for contribution!

Aias00 pushed a commit to Aias00/semantic-router that referenced this pull request Oct 4, 2025
@fcanogab @rootfs @Aias00
Add security attributes related to root usage to container definitions (
9038583 
vllm-project#214)

Signed-off-by: Florencio Cano Gabarda <fcanogab@redhat.com>
Co-authored-by: Huamin Chen <rootfs@users.noreply.github.com>
Signed-off-by: liuhy <liuhongyu@apache.org>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@rootfs rootfs rootfs approved these changes

@Xunzhuo Xunzhuo Awaiting requested review from Xunzhuo Xunzhuo is a code owner

Assignees

@rootfs rootfs

@Xunzhuo Xunzhuo

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@fcanogab @rootfs @Xunzhuo