Justen Mehl requested to merge 1860-refactor-old-hardening into master Jan 31, 2024

General MR

Summary

tempo, kyverno-reporter, sonarqube, metrics-server, and cluster-auditor all were previously hardened to remove automountServiceAccountToken findings before our mutator existed.

To keep hardening methodology consistent across all packages, hardening of those packages has been added to this MR via the mutator.

This is a simple refactor and there is no functional change to the original hardening of these packages.

Relevant logs/screenshots

N/A

Linked Issue

https://repo1.dso.mil/big-bang/bigbang/-/issues/1860

Upgrade Notices

N/A

Edited Jan 31, 2024 by Justen Mehl

Admin message

Draft: Refactor automountServiceAccountToken hardening for consistency

General MR

Summary

Relevant logs/screenshots

Linked Issue

Upgrade Notices

Merge request reports