Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update kube-rbac-proxy image #794

Closed
Dionmm opened this issue Mar 23, 2022 · 0 comments · Fixed by #810
Closed

Update kube-rbac-proxy image #794

Dionmm opened this issue Mar 23, 2022 · 0 comments · Fixed by #810
Labels
area:collector Issues for deploying collector

Comments

@Dionmm
Copy link

Dionmm commented Mar 23, 2022

Issue

The default install for the operator runs a sidecar HTTP proxy for the controller manager using kube-rbac-proxy. Currently this is pulled from gcr.io/kubebuilder/kube-rbac-proxy using the v0.8.0 tag and has a number of CVEs in its dependencies, see attached example ouput from my image security scan.
kube-rbac-proxy-cves.md

The repository currently in use doesn't have a tag for the latest release of kube-rbac-proxy 0.11.0 from 2021-08-02: https://github.com/brancz/kube-rbac-proxy/releases

Resolution

Update to use a different repository that has the latest tags, potentially bitnami/kube-rbac-proxy and update to the current latest version 0.11.0
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
area:collector Issues for deploying collector
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Bump kube-rbac-proxy image version to 0.11 pavolloffay/opentelemetry-operator
2 participants
@pavolloffay @Dionmm