mirrors/talos
1
0
Fork 0
mirror of https://github.com/siderolabs/talos.git synced 2025-11-01 00:41:40 +01:00
Code Issues Packages Projects Releases Wiki Activity
3,256 Commits 28 Branches 544 Tags
Commit Graph

2 Commits

Author SHA1 Message Date
Andrey Smirnov
9dace93b59
feat: enable Pod Security Admission by default 
As Talos 1.1 supports Kubernetes 1.22-1.24, we can finally enable Pod
Security Admission by default:

```yaml
apiVersion: apiserver.config.k8s.io/v1
kind: AdmissionConfiguration
plugins:
- configuration:
    apiVersion: pod-security.admission.config.k8s.io/v1alpha1
    defaults:
      audit: restricted
      audit-version: latest
      enforce: baseline
      enforce-version: latest
      warn: restricted
      warn-version: latest
    exemptions:
      namespaces:
      - kube-system
      runtimeClasses: []
      usernames: []
    kind: PodSecurityConfiguration
  name: PodSecurity
  path: ""
```

Signed-off-by: Andrey Smirnov <andrey.smirnov@talos-systems.com>
 2022-04-11 15:36:04 +03:00
Tim Jones
d1294d014f
chore: add day-two tests for e2e-qemu 
Uses Sidero Labs d2ctl to install a small sample of
common cluster services to ensure the Talos cluster
is capable.

Signed-off-by: Tim Jones <tim.jones@siderolabs.com>
 2022-03-22 20:53:07 +01:00