Skip to content

Whitelist for Config Types #628

Closed
Task
open-component-model/open-component-model
#1998
Closed
Whitelist for Config Types#628
Task
open-component-model/open-component-model
#1998
Assignees
frewilhelm
Labels
area/ipceiImportant Project of Common European Interestkind/tasksmall task, normally part of feature or epic
@fabianburth

Description

@fabianburth
fabianburth
opened on Jun 13, 2025

Description
To minimize the risk of malicious configurations, the team agreed to having and filtering based on a whitelist of config types. For more details, see https://github.com/open-component-model/ocm-k8s-toolkit/issues/244.

Whitelist:

  • Credentials (credentials.config.ocm.software)
  • Resolvers (ocm.config.ocm.software)

Additionally, introspect ocm.config.ocm.software and filter out aliases. Filtering can be achieved with OCM v2 via https://github.com/open-component-model/open-component-model/blob/main/bindings/go/configuration/generic/v1/spec/filter.go

The scope of this issue is to implement this filtering using the v2 library.

Done Criteria

  • Code has been reviewed by other team members
  • Analysis of existing tests (Unit and Integration)
  • Unit Tests created for new code or existing Unit Tests updated
  • Integration Test Suite updated (includes deletion of existing unnecessary Integration Test and/or creation of new ones if required)
  • Enduser Documentation updated (if applicable)
  • Internal technical Documentation created/updated (if applicable)
  • Successful demonstration in Review

Metadata

Metadata

Assignees

Labels

area/ipceiImportant Project of Common European Interestkind/tasksmall task, normally part of feature or epic

Type

Task

Fields

No fields configured for Task.

Projects

OCM Backlog Board
Status
🍺 Done

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions