►
From YouTube: SIG Cluster Lifecycle - Cluster Addons 20190903
A
B
Can
take
my
items?
Yes,
I
I
think
that
was
for
prettier,
but
I,
don't
know
who,
but
the
other
the
other,
both
really
for
me.
I
guess,
I
have
mostly
been
working
on
this
Kubota
PR
and
I've
not
yet
tried
having
cops.
That
will
hopefully
happen
in
this
two-week
sprint.
I
guess
you'd
call
it,
but
the
Cupido
PR
is
trying
to
introduce
the
pattern
as
a
plug-in
is
what
we
sort
of
decided.
B
I
was
I
thought
it
was
gonna
go
in
and
then
there's
been
some
discussion
around
suitable
gating
and
it's
not
clear
from
our
point
of
view
that
we
that
we
gain
a
lot
from
being
a
PR.
So
I
need
to
figure
out
like
sorry
that
we
gained
a
lot
from
being
a
plug-in
I
need
to
figure
out
what
are
like
what
the
installation
story
is
gonna,
be
if
the
installation
story
is
sufficiently
complicated,
doesn't
seem
like
it's
worth
it.
B
So
we'd
still
use
all
the
same
machinery
we
just
instead
of
installing
a
plug-in
and
Cuba,
you
just
install
our
things.
So
that's
that's.
What
I
need
to
follow
up
on
with
the
Q
builder
folk
to
understand
that,
but
I
think
the
the
basic
approach
is
there
and
we
just
need
to
figure
out
what
the
best
sort
of
user
experiences.
B
B
They
know
if
the
general
idea
they
know
of
the
idea
they
are
very,
very
enthusiastic.
It
solves
a
serious
problem
for
cops,
which
is
the
co
packaging
in
the
cops
binary
of
add-ons
is
problematic
or
everyone
wants
it.
Probably
I
would
have
to
be
the
first
one,
but
then
I
imagine
once
we
open
the
floodgates,
there
will
be
a
flood,
which
is
why
I
do
want
to
get
the
the
pattern
working
first.
D
D
Yeah,
that
is
sorry
I,
have
to
see
if
the
document
is
linked,
there's
notes
yeah.
D
D
D
And
now
you
don't
get
the
new
default
and
those
kinds
of
things,
and
it's
just
not
a
helpful
pattern
to
be
trying
to
use
the
cluster
as
an
authoritative
source
of
state
when
none
of
the
locations,
where
we're
storing
that
state
are
documented,
and
it's
not
intended
for
users
to
be
modifying
it,
and
so
kind
of
talking
with
Timothy
and
like
I,
also
suggested
to
really
just
get
rid
of
the
pattern
and
there's
agreement.
But
it
it
complicates
things
for
add-ons.
D
D
B
D
D
E
D
A
D
D
D
D
A
C
C
B
Heard
that
I
think
actually,
in
the
last
working
group
case,
infra
Philips
demonstrated
a
proof
of
concept
of
using
a
certificate
transparency
logs
to
do
some
shot
with
int
or
some
slight
weight.
Signing
of
Shaw's
I
think
the
that
there
may
be
a
different
mechanism
that
we
end
up
adopting,
but
rather
than
that
particular
mechanism.
B
Yeah,
it
would
be
good
said
yes
to
know
that
the
there
are
lot
of
binaries
that
are
not
currently
built
by
the
communities
in
the
Canaries
release.
Infrastructure,
I
think
what
we
should
say,
and
so
this
is
sort
of
part
of
getting
that
onto
a
more
standardized
or
more
reproducible
and
a
tested
path,
so
that
you
know
the
binary
you're
getting
is
from
the
source
and
the
source
followed
the
rules,
Grammy's
rules
and
so
on,
and
you
in
theory
could
rebuild
it
yourself
with
and
get
the
same
shot.
B
C
B
E
C
C
C
D
So,
basically
you
could
like
curl
something
and
then
read
it
and
then,
if
you
pipe
it
that
same
exact
URL
to
bash,
the
server
can
detect
the
latency
of
the
shell
and
then
start
actually
printing
different
commands
than
what
you
would
actually
print
and
read.
If
you
had
not
piped
it
through
the
shell.
It's
kind
of
interesting.
D
D
I
thought
the
timing
attack
when
I
saw
a
demo
of
that
it
was
really
cool.
It's
yeah.
You
can
see
the
server
like
it's
like,
oh
it's
taking
a
while,
but
for
the
first
couple
lines
to
be
read
through
this,
the
streamed
response
body,
let's
start
changing
what
we
print
and
then
the
shell
is
not
executing
something.
That's
different
from
what
you
read.