Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[1.15] fix CVE namespace-isolation break CVE-13484 #869

Merged
merged 1 commit into from
Apr 3, 2025
Merged

[1.15] fix CVE namespace-isolation break CVE-13484 #869

merged 1 commit into from
Apr 3, 2025

Conversation

anandrkskd
Copy link
Contributor

argocd adds cluster monitoring label if the ns contains openshift- prefix

What type of PR is this?

/kind bug

What does this PR do / why we need it:
This PR fixes the namespace isolation break, caused by using cluster-monitoring label for monitoring
Have you updated the necessary documentation?

  • Documentation update is required by this PR.
  • Documentation has been updated.

Which issue(s) this PR fixes:

Fixes GITOPS-6251

Test acceptance criteria:

  • Unit Test
  • E2E Test

How to test changes / Special notes to the reviewer:

@anandrkskd
fix CVE namespace-isolation break
2909a5c 
argocd adds cluster monitoring label if the ns contains openshift- prefix

Signed-off-by: Anand Kumar Singh <[email protected]>
@openshift-ci openshift-ci bot added the kind/bug Something isn't working label Mar 20, 2025
@openshift-ci openshift-ci bot requested review from jaideepr97 and svghadi March 20, 2025 09:54
@iam-veeramalla
Copy link
Collaborator

/lgtm
/approved

@openshift-ci openshift-ci bot added the lgtm label Mar 21, 2025
@anandrkskd
Copy link
Contributor Author

retest

@anandrkskd
Copy link
Contributor Author

/retest

@iam-veeramalla
Copy link
Collaborator

/lgtm
/approve

1 similar comment
@iam-veeramalla
Copy link
Collaborator

/lgtm
/approve

@openshift-ci OpenShift CI
Copy link

openshift-ci bot commented Apr 3, 2025

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: iam-veeramalla

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@openshift-ci openshift-ci bot added the approved label Apr 3, 2025
@anandrkskd
Copy link
Contributor Author

/restart

@anandrkskd
Copy link
Contributor Author

/test v4.16-kuttl-sequential

@openshift-merge-bot openshift-merge-bot bot merged commit f973d59 into redhat-developer:v1.15 Apr 3, 2025
12 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jaideepr97 jaideepr97 Awaiting requested review from jaideepr97

@svghadi svghadi Awaiting requested review from svghadi

Assignees

@iam-veeramalla iam-veeramalla

Labels
approved kind/bug Something isn't working lgtm
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@anandrkskd @iam-veeramalla