privilegedescalation/headlamp-sealed-secrets-plugin
12
0
Fork 0
Code Issues 2 Pull Requests 2 Actions Packages Projects Releases 27 Wiki Activity

chore: replace Dependabot references with Renovate #55

Merged
privilegedescalation-engineer[bot] merged 1 commits from chore/scrub-dependabot-references into main 2026-05-04 21:19:16 +00:00
Conversation 5 Commits 1 Files Changed 3
+3 -3
3 changed files with 3 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files
README.md
+1 -1
View File
@@ -151,7 +151,7 @@ Plaintext values never leave your browser.
| Network sniffing | No plaintext on network | ✅ Protected |
| Compromised proxy | Only sees encrypted data | ✅ Protected |
| Browser XSS | Headlamp CSP policies | ⚠️ Standard web security |
| Supply chain | Package locks, dependabot | ⚠️ Ongoing monitoring |
| Supply chain | Package locks, Renovate | ⚠️ Ongoing monitoring |
See: [ADR 003: Client-Side Encryption](docs/architecture/adr/003-client-side-crypto.md)
SECURITY.md
+1 -1
View File
@@ -70,7 +70,7 @@ Key dependencies with security implications:
- **node-forge**: Used for client-side encryption of secret values with the cluster's sealing certificate. Keep this dependency up to date.
- **@kinvolk/headlamp-plugin**: Peer dependency providing the Kubernetes API proxy. Update by upgrading your Headlamp installation.
The project uses `npm audit` and Dependabot to monitor for known vulnerabilities.
The project uses `npm audit` and Renovate to monitor for known vulnerabilities.
## Contact
docs/architecture/adr/003-client-side-crypto.md
+1 -1
View File
@@ -349,7 +349,7 @@ Added type safety:
**Supply Chain**:
- Risk: Compromised node-forge dependency
- Mitigation: Package lock, dependabot, regular audits
- Mitigation: Package lock, Renovate, regular audits
- Same risk as any JavaScript dependency
**Browser Extensions**: