Comments (2)
Hi,
It looks like you have opened the same issue with almost similar text across dozens of other projects. For future references, GitHub is not how we do security disclosures.
For the record, the information contained here was reviewed and does not constitute a security vulnerability. As for the methods mentioned below, Dapr does not grant ClusterAdmin roles, nor does it allow the execution of privileged or privileged pods or containers. The service account in question is scoped to a namespace running a Pod and even gaining control of this service account identity cannot lead to a cluster takeover. Closing this
from dapr.
from dapr.
Related Issues (20)
- How to use Promethues outside the cluster as a metrics library for DAPR services.
- Daprd deleting actors unexpectedly HOT 3
- hight cardinality metrics are shown for actors but increasedCardinality is set to false HOT 1
- Subscribing to the same topic with different routing keys and endpoints
- Standardize README shield badges HOT 1
- Subscription stops working when having 5 routing keys defined HOT 1
- Workflow activity cannot be run - 'too many activities are running in parallel' error.
- How can i use dapr connect to hashicorp vault and read data of database secrets engine?
- DAPR: On connection interruption DAPR Side car not listening again to Solace Queue
- Remove faultyHostDetection check in the placement service and replace it with the gRPC keepalive mechanism
- Sidecar connection issues with placement service with on-disk raft logs HOT 5
- 1.13.3 Patch Release Checklist
- Workflows often throw errors and get stuck HOT 1
- Dapr pubsub service bus topics missing custom metadata HOT 1
- error msg="service account 'system:kube-controller-manager' not on the list of allowed controller accounts" instance=dapr-sidecar-injector-
- doc: Question on HowTo: Configure Pub/Sub components with multiple namespaces HOT 3
- Add custom properties when receiving messages from Service Bus topics with pubsub component
- How to send user input from UI HOT 1
- failed to start workflow engine: actor runtime has not been configured
- Please add support for Versioning in Amazon S3 and Azure Blob Store
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from dapr.