Table of Contents
CyberArk Secrets Provider for Kubernetes
The CyberArk Secrets Provider for Kubernetes enables you to use secrets stored and managed in the CyberArk Vault
using DAP or Conjur and consume them in your Openshift application containers. To do so, the CyberArk Secrets
Provider for Kubernetes image runs as an init container and provides the Conjur secrets, required by the pod,
from DAP or Conjur.
Supported services
- Openshift 3.9, 3.10, and 3.11
- DAP 11.1+
- Conjur 5.5.0+
Releases
The primary source of CyberArk Secrets Provider for Kubernetes releases is our Dockerhub.
When we release a version, we push the following images to Dockerhub:
- Latest
- Major.Minor.Build
- Major.Minor
- Major
In addition, each time the master
build is green, we push a <version>-<git_version>
(i.e. 0.2.0-d9494c1
) image to our internal repo.
Stable release definition
The CyberArk Secrets Provider for Kubernetes is considered stable when it meets the core acceptance criteria:
- Documentation exists that clearly explains how to set up and use the provider and includes troubleshooting information to resolve common issues.
- A suite of tests exist that provides excellent code coverage and possible use cases.
- The CyberArk Secrets Provider for Kubernetes has had a security review and all known high and critical issues have been addressed.
Any low or medium issues that have not been addressed have been logged in the GitHub issue backlog with a label of the form
security/X
- The CyberArk Secrets Provider for Kubernetes is easy to setup.
- The CyberArk Secrets Provider for Kubernetes is clear about known limitations and bugs, if they exist.
Development
We welcome contributions of all kinds to Cyberark Secrets Provider for Kubernetes. For instructions on
how to get started and descriptions of our development workflows, see our contributing guide.
Maintainers
Oren Ben Meir
Nessi Lahav
Sigal Sax
Moti Cohen
Dekel Asaf
Inbal Zilberman
Interested in checking out more of our open source projects? See our open source repository!
License
The Cyberark Secrets Provider for Kubernetes is licensed under the Apache License 2.0 - see LICENSE
for more details.