Pavan Kumar Gondhi
|
2d126fc623
|
fix(infra): expand host env security policy denylist [AI] (#63277)
* fix: address issue
* fix: address PR review feedback
* fix: address PR review feedback
* fix: address PR review feedback
* fix: address PR review feedback
* fix: address PR review feedback
* fix: address PR review feedback
* fix: address PR review feedback
* fix: address PR review feedback
* fix: close host env inherited sanitization gap
* fix: enforce host env reported baseline coverage
* fix: address PR review feedback
* fix: address PR review feedback
* fix: address PR review feedback
* docs: add changelog entry for PR merge
|
2026-04-10 11:36:39 +05:30 |
|
Agustin Rivera
|
fa82193c72
|
fix(env): align inherited host exec env filtering (#59119)
* fix(env): block inherited host exec config vars
* fix(env): preserve trusted inherited proxy env
* fix(env): preserve inherited host exec vars
* fix(env): refresh host env policy parity artifacts
* test(env): align blocked override ordering
* docs(changelog): add host env policy parity entry
---------
Co-authored-by: Devin Robison <drobison@nvidia.com>
|
2026-04-07 15:50:32 -06:00 |
|
Peter Steinberger
|
e27bbe4982
|
fix(exec): block dangerous override-only env pivots
|
2026-03-07 19:18:05 +00:00 |
|
Peter Steinberger
|
10481097f8
|
refactor(security): enforce v1 node exec approval binding
|
2026-02-26 18:09:01 +01:00 |
|
Peter Steinberger
|
4894d907fa
|
refactor(exec-approvals): unify system.run binding and generate host env policy
|
2026-02-26 16:58:01 +01:00 |
|