Skip to content

Commit

Permalink
Updated openssl plugin to not leak certs to /tmp
Browse files Browse the repository at this point in the history
  • Loading branch information
@mmontes11
mmontes11 committed May 11, 2024
1 parent ed306dc commit fa817c7
Show file tree
Hide file tree
Showing 2 changed files with 2 additions and 5 deletions.
2 changes: 0 additions & 2 deletions .k9s/plugins/cert-manager.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -11,7 +11,6 @@ plugins:
args:
- -c
- "cmctl inspect secret --context $CONTEXT -n $NAMESPACE $NAME |& less"

cert-status:
shortCut: Shift-S
confirm: false
Expand All @@ -23,7 +22,6 @@ plugins:
args:
- -c
- "cmctl status certificate --context $CONTEXT -n $NAMESPACE $NAME |& less"

cert-renew:
shortCut: Shift-R
confirm: false
Expand Down
5 changes: 2 additions & 3 deletions .k9s/plugins/openssl.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -10,8 +10,7 @@ plugins:
background: false
args:
- -c
- kubectl get secret --context $CONTEXT -n $NAMESPACE $NAME -o json | jq -r ".data.\"ca.crt\"" | base64 -d > /tmp/ca.crt && openssl storeutl -noout -text -certs /tmp/ca.crt |& less

- kubectl get secret --context $CONTEXT -n $NAMESPACE $NAME -o json | jq -r ".data.\"ca.crt\"" | base64 -d | openssl storeutl -noout -text -certs /dev/stdin |& less
secret-openssl-tls:
shortCut: Shift-O
confirm: false
Expand All @@ -22,4 +21,4 @@ plugins:
background: false
args:
- -c
- kubectl get secret --context $CONTEXT -n $NAMESPACE $NAME -o json | jq -r ".data.\"tls.crt\"" | base64 -d > /tmp/tls.crt && openssl storeutl -noout -text -certs /tmp/tls.crt |& less
- kubectl get secret --context $CONTEXT -n $NAMESPACE $NAME -o json | jq -r ".data.\"tls.crt\"" | base64 -d | openssl storeutl -noout -text -certs /dev/stdin |& less

0 comments on commit fa817c7

Please sign in to comment.