Refactor earlier mutator implementations to use wildcard methodology - Nexus
Compare changes
UNCLASSIFIED - NO CUI
Currently supported Big Bang Version is 2.49
Attention Iron Bank Customers: On March 27, 2025, we are moving SBOM artifacts from the Anchore Scan job to the Build job to streamline the container hardening pipeline. If you currently download SBOMs from the Anchore Scan job, you can still get them from the Build job and from other sources, including IBFE and image attestations.
Omits the serviceAccounts list in Kiali automountServiceAccountToken hardening, allowing the mutator to target all SAs via wildcard. This is more robust and better accommodates upstream changes over time.
At the moment, however, this is a simple refactor and there is no change to the original hardening.
(Link to Package MR here)
Closes https://repo1.dso.mil/big-bang/bigbang/-/issues/1900
N/A
UNCLASSIFIED - NO CUI