►
From YouTube: Kubernetes SIG Security Docs 20230105
Description
No description was provided for this meeting.
If this is YOUR meeting, an easy way to fix this is to add a description to your video, wherever mtngs.io found it (probably YouTube).
A
Foreign
welcome
to
sync
security
documentations
of
project
meeting.
This
meeting
abides
by
kubernetes
code
of
conduct,
which
boils
down
to
please
be
nice
to
each
other,
and
let
me
drop
in
the
agenda
link
one
more
time
in
the
chat,
please
feel
free
to
add
yourself
to
the
agenda,
and
then
we
can
kick
off
the
topics.
A
B
Yeah
sure
thanks
I
hope
this
was
fine.
I
just
put
the
thing
in
there
with
the
link
already
so
the
last
meeting
with
December
was
the
first
meeting.
I
joined
and
I
talked
about
like
a
blog
post
regarding
confidential
Computing
and
cncf
or
kubernetes
landscape.
How
this
can
be
used
so
in
between
the
holidays.
I
finished
the
the
first
draft,
I
shared
it
in
six
security
docs
already
in
the
in
this,
in
the
slack
Channel
I.
Think
one
or
two
folks
already
contributed
some
feedback.
A
B
I
know
Mikko
did
but
yeah
just
wanted
to
put
it
out
there.
So
if
you
want
to
have
a
look,
if
you
want
to
provide
some
feedback,
I
would
love
to
get
it
converted
to
a
PR
by
end
of
the
month.
B
But
I
would
like
to
have
it
in
the
heck
MD
for
now
to
have
like
easier
way
of
incorporating
feedback
and
having
annotations
stuff
like
that,
yeah.
So
more
like
an
update
or
if
you
have
any
any
input,
feel
free.
C
We
recently
did
a
similar
blog
post
like
this
in
six
security,
tooling,
where
we
spent
like
a
live
review
session,
which
I
think
was
helpful.
So
if.
A
B
A
Yeah
cool
so
I
think
those
are
the
correct
channels
and
if
you
think
it's
in
a
decent
shape,
then
I
would
say
like
create
a
draft
PR.
Once
you
create
a
draft
PR,
then
you'll
get
more
ice
like
some
folks
might
not
keep
checking.
They
don't
check
the
slack,
sometimes
noises
they
might
not
check,
but
yeah.
A
B
Yeah
sounds
great.
Miko
also
mentioned
that
the
let
me
check
the
name
so
there's
the
cloud
native
security
white
paper.
Well
version
three
is
coming
up
and
as
far
as
I
understand,
this
has
not
started
yet,
but
maybe
this
is
something
where
we
can
just
like
use
some
content
from
each
other
and
help
each
other
out.
So
if
anyone
has
this
connections
there
and
wants
to
connect
us,
that
would
be
great
I
already
put
in
a
note
into
the
pr
or
in
the
issue
in
tech,
security.
A
One
up
there,
so
it's
definitely.
A
We
can
definitely
take
contents
like
I'm
waiting
on
a
survey
to
close,
then
we
can
Kickstart
the
official
meeting
and
like
see
where
folks
want
to
like
we
almost
folks
like
where
they
want
to
what
do
they
want
to
see
in
the
paper
so
like
we
can
add
more
topics
and
see
and
I,
don't
like,
like
basically
figure
out
the
focus
area
and
see
if
we
can
reduce
the
size
of
paper,
if
needed
to
be
because
it's
like
too
long
already
and
see
if
you
could
refocus
and
stuff
like
that,
so
yeah
I
will
definitely
follow
up
on
that.
A
Once
I
have
more
for
the
white
paper
and
it's
I
think
it's
a
great
idea.
We
can
always
like
share
information
and
it'll,
be
cool
to
bring
awareness
to
in
a
wider
group
about
the
confidential,
Computing
and
whatnot.
So
it's
awesome.
A
For
definitely
like
draft
PR
is
another
way
to
go
so
like
I.
Don't
have
any
more
information
on
like
any
any
other
feedback.
I
haven't
like
checked
it
yet
so
like
if
I
get
some
time,
I
will
definitely
go
check
it
out
and
I
will
also
bring
it
up
in
the
next
next
security
meeting
so
that
it's
for
more
wider
audience.
A
Thank
you
for
being
yeah
sure
this
Rory
Caitlyn.
Do
you
have
anything
to
add
to
that.
C
So,
just
like
a
quick
update
on
the
hardening
guide,
Rory
and
I
met
and
just
came
up
with
some
questions
and
a
general
strategy
for
tackling
it.
So
we're
hoping
to
break
it
apart
into
Pages
both
to
make
it
easier
for
review
and
to
make
it
easier
for
people
to
feel
more
comfortable,
jumping
in
and
grabbing
like
a
particular
page
that
relates
to
them
so
I'm,
just
waiting
Rory
just
asked
him
a
little
bit
more
clarification.
C
So
once
Tim
gets
back
to
that,
I'll
split
the
current
PR
up,
so
that
I'll
do
like
a
table
in
the
sections
similar
to
how
Mahi
did
for
the
the
other
big
one
that
he
did
and
then
hopefully
we
can
get
some
people
jumping
in
and
taking
on
work.
C
There
should
be
a
lot
of
really
good,
like
good
first
issues
for
people
that
want
to
contribute,
and
then
it's
completely
separate,
not
at
all
related
now
that
I'm
working
with
six
CLI
there
recently
was
an
issue
where
a
bug
in
customized
was
documented
by
someone
outside
of
the
customized
team
and
no
customized
reviewers
for
our
owners
were
tagged
on
it,
and
so
they
they've
dealt
with
that
and
they're
reverting
it
and
I.
Just
shipped
the
or
I
just
put
up
a
PR
to
remove
the
book,
but
there.
B
C
There
are
a
whole
bunch
of
people
that
are
really
concerned
with
like,
depending
on
that
bug,
which
allows
customized
to
pull
in
local
environment
variables,
and
so
six
CLI
was
thinking
that,
like
maybe
with
this
change,
we
could
also
put
together
some
documentation
or
like
update
the
current
documentation
for
secret
management
with
kubernetes,
because
it's
obvious
that
there's
not
like
a
consistent
method
and
people
are
a
bit
stumped
without
this
bug.
C
Let
me
oh
yeah,
here's
the
issue.
I
will
paste
it
in
the
chat
and
add
it
to
the
docs
or
to
the
notes,
but
yeah.
It's
there's
a
lot.
A
lot
of
people
have
commented
on
there
that,
like
this,
is
something
that
this
bug
is
something
that
they
use
in
their
day-to-day
work
and
it'll
impact
them.
So
I
don't
know
if
that's
something
that
we
want
to
pick
up,
but
I
just
thought,
I'd
share
it.
A
So
there
is
one
other
effort
that
I
know
that
Shannon
correct
now
I
hope,
I'm
pronouncing
the
last
name
correct,
so
they
have
been
working
on
a
secret
management.
Read,
write
So
like
I.
Don't
have
the
website
issue
handy,
but
I
can
always
you
know,
cross
reference
and
see
if
we
can
add
this
as
a
part
of
that
rewrite
or
like
if
it's
more
urgent,
then
we
can
see
if
it
can
be
one-off
issue
or
something
item
on
like
what
what
do
like
what
needs
to
be
improved
or
like
what?
A
What
is
the
warning
that
we
want
to
say
like
if
it's
like
a
two-line
warning,
then
we
can
put
that
and
then
ask
a
new
contributor
to
take
it.
C
Yeah
I
think
it's
probably
more
than
a
two-liner
I
think
it
would
be
a
little
bit
of
like
a
a
tutorial
or
idea.
I'm,
not
100.
Sure
I
would
be
open
to
other
people
kind
of
looking
through
the
comments
and
seeing.
But
if
you
put
me
in
touch
with
the
people
already
working
on
it,
maybe
I
can
make
them
aware
of
this
particular
use
case
and
see
what
they
think.
A
Cool,
so
I
will
definitely
read
through
this
and
then
I
will
CC
Shannon
or
you
like,
put
you
in
touch
with
Shannon,
so
that
like
there
should
be
even
a
Threading
security
dog.
Sorry,
like
slack
log
me
out
of
my
work
profile
for
some
reason,
so
like
I,
don't
have
access
to
slack.
That's
why
I'm
like
all
over
the
place,
but
once
I
after
this
meeting
once
I
log
back
in
I,
will
definitely
like
Cc
or
like
Crosslink
and
do
all
those
things.
A
This
will
be
like
good
awareness,
even
if
it
doesn't
go
in
the
main
Concepts
page
or
wherever
they
don't
see
them
appropriate.
We,
it
can
just
definitely
go
any
tutorial
or,
like
hey
just
be
aware,
this
is
what's
happening.
A
That's
cool
and
thank
you
for
the
update
on
the
hardening
guide.
One
of
the
things
that
I
was
thinking
is
that
once
it's
broken
up,
maybe
we
can
just
get
the
kubernetes
official
handle
to
like
shout
it
out
and
see
if
we
could
get
more
contributors.
A
A
I'm
hoping
someone
will
want
to
learn
more
security,
so
like
I'm,
hoping
like
we'll
just
divide
it
and
get
it
out
and
see
like
if
we
get
more
contributors,
definitely
and
then,
like
I,
think
we
can
even
highlight
this.
If
anyone's
going
to
the
cloud
data
security,
con,
like
Word
of
Mouth
that'd,
be
awesome
and
I
know
kailyn's
gone.
So
what
I
thought
we
ask
them
and
they're
like?
We
can
also
highlight
it
again
in
the
kubecon
Europe.
C
C
Mandy
had
had
his
broken
down
like
that
was
my
first
issue.
I
think
was
six
security
because
it
was
like
really
easy
little
chunks
that
were
specific
and
then
Not
only
was
there
a
lot
of
writing
review
but
as
docs
go,
there's
loads
of
reviewing
works,
I
think
I.
Think
it'll
go
really
well,
once
it's
like
less
intimidating,
but
let's
just
write
an
entire
cluster
Gardening
Guide
and
one
Fell
Swoop.
A
100
agree
and
we
don't
already
have
some
materials.
So
if
someone
wants
to
like
reference,
we
already
have
like
things
to
Roy
put
together
and
then
like
things
that
you're
working
on
and
then
like
the
blog
series
and
everything.
So
you
can
like
link-
and
you
know,
give
folks
background
and
even
if
they
want
to
pair
up
with
someone
who
is
knowledgeable,
but
they
don't
have
the
time
to
actually
write
things.
So
that
would
also
be
a
great
mentoring
opportunity.
So
we
can
like
figure
it
out.
If
anyone
has
time
things
like
that,.
A
A
Hi,
everyone
I
hope
you
all
had
a
great
New,
York.
A
Sorry
I'm,
all
over
the
place
like
my
holiday
brain
is
not
letting
me
catch
up
on
things
so,
like
I
hope
you
all
had
a
great
vacation
if
you
were
off
or
like
recharge
time
or
whatever,
and
if
we
are
in
the
places
where
currently
there
are
a
lot
of
storms
just
stay
safe,
you
know,
I
keep
reading
them
one
after
another,
so
stay
safe
out
there
and
then,
like
that's,
all
I
I
will
see
you
all
in
like
two
weeks
actually
a
week.
A
I
will
see
you
all
in
a
week.
The
next
six
six
security
meeting,
if
you
call,
if
you
all,
can
make
it
and
I
will
also
like
find
the
links
and
then
send
it
over
kitten.
I'll
send
the
link
for
the
secret
management
stuff
and
that's
it
awesome,
enjoy
the
rest
of
your
day.
Everyone.