This week's articles
Securing Terraform monorepo CI
#ci/cd, #defend, #terraform
Post explaining the security problems the Mercari team faced in their Terraform environment, and how they improved the situation.
Istio version 1.12.0 and 1.12.1 are vulnerable to a privilege escalation attack. Users who have CREATE permission for gateways.gateway.networking.k8s.io objects can escalate this privilege to create other resources that they may not have access to, such as Pod.