Affected by GO-2023-1819
and 2 other vulnerabilities
GO-2023-1819: Kyverno resource with a deletionTimestamp may allow policy circumvention in github.com/kyverno/kyverno
GO-2023-2340: Attacker can cause Kyverno user to unintentionally consume insecure image in github.com/kyverno/kyverno
GO-2024-3230: Kyverno's PolicyException objects can be created in any namespace by default in github.com/kyverno/kyverno
package
Version:
v1.10.0-alpha.2
Opens a new window with list of versions in this module.
Published: Apr 14, 2023
License: Apache-2.0
Opens a new window with license information.
Imports: 10
Opens a new window with list of imports.
Imported by: 0
Opens a new window with list of known importers.
Documentation
¶
type AuthChecker interface {
CanICreate(ctx context.Context, kind, namespace, subresource string) (bool, error)
CanIUpdate(ctx context.Context, kind, namespace, subresource string) (bool, error)
CanIGet(ctx context.Context, kind, namespace, subresource string) (bool, error)
}
Mutate provides implementation to validate 'mutate' rule
NewMutateFactory returns a new instance of Mutate validation checker
Validate validates the 'mutate' rule
Source Files
¶
Click to show internal directories.
Click to hide internal directories.