jupyterhub-k8s-network-tools
Summary
Initial Hardened Container Submission for JupyterHub's k8s-network-tools.
The intent of this ticket/hardening effort is to try to mirror the collection of open source images for JupyterHub. While the open source network tools image is basically an alpine base image with iptables installed, that can be accomplished with the base UBI image which is why this image is just a re-tag of the UBI image.
Version Information
Current version: 0.11.1
Definition of Done
Hardening:
-
Hardening manifest is created and adheres to the schema (https://repo1.dsop.io/ironbank-tools/ironbank-pipeline/-/blob/master/schema/hardening_manifest.schema.json) -
Container builds successfully through the Gitlab CI pipeline -
Branch has been merged into development
-
Project is configured for automatic renovate updates (if possible)
Justifications:
-
All findings have been justified per the above documentation -
Justifications have been attached to this issue -
Apply the label Approval
to indicate this container is ready for the approval phase
Approval Process (Container Hardening Team processes):
-
Peer review from Container Hardening Team -
Findings Approver has reviewed and approved all justifications -
Approval request has been sent to Authorizing Official -
Approval request has been processed by Authorizing Official