queue to be emptied once a week in a team triage meeting
Important soon, but no updates in 60 days: No matching items
Important longterm, but no updates in 120 days: No matching items
many reactions, low priority: No matching items
many commenters, low priority: No matching items
Screaming into the void: No matching items
Needs information for over 2 weeks: No matching items

Support request over 30 days old (1)

Resolution: Close, or add to triage/long-term-support

Average age: 1633.8d, Avg wait: 0.0d
ID Au Desc As Rea Cr Up Re Cmntrs Labels Tags
2181 Kubernetes Authenticator Websocket Client doesn't support Server Name Indication (SNI) 4y 5mo 5mo
kind/bug
kind/support
commented
member-last
send
Issues nearing expiration: No matching items
Pull requests: Approved and getting old: No matching items

Pull Requests: Stale (62)

Resolution: Add comment and/or close PR

Average age: 949.0d, Avg wait: 11.6d
ID Au Desc As Rea Cr Up Re Cmntrs Labels Tags
3021 Automated PR to update settings 5mo 6wk 4mo
commented
member-last
send
unreviewed
2436 Auth api additions 3y 6wk
draft
new-commits
recv-q
2666 WIP: Policy lifecycle extensions 3y 6wk
draft
reviewed-with-comment
2853 cyberark/migrate-slosilo-gem 2y 6wk
new-commits
2551 Conjur tracing with jaeger 3y 6wk 9mo
assigned
assignee-updated
commented
member-last
new-commits
send
2893 Add read-only configuration 2y 6wk 5mo
commented
draft
member-last
reviewed-with-comment
send
2522 Auth persist api
4
 3y 6wk 3y
commented
reviewed-with-comment
2640 Prevent status webservices from being returned on the providers endpoint 3y 6wk 3y
commented
reviewed-with-comment
send
2836 Solution Design: CyberArk Conjur Provider for Secret Store CSI Driver
2
 2y 6wk 9mo
commented
draft
member-last
new-commits
send
2863 WIP: Early Policy factory POC 2y 6wk
draft
unreviewed
2807 WIP: Add reset password rake task 2y 6wk 9mo
commented
draft
member-last
new-commits
send
2439 Semantic Logging (with metrics) 3y 6wk 3y
commented
draft
member-last
reviewed-with-comment
send
2587 Update k8s test app base image 3y 6wk 5mo
kind/enhancement
dependencies
assigned
commented
draft
member-last
send
unreviewed
2696 Developer documentation 2y 6wk
draft
unreviewed
2541 Remove `rack-rewrite` gem as it appears it is no longer needed 3y 6wk 5mo
commented
draft
member-last
send
unreviewed
2543 Potential Policy workflow for Synchronizer leader election 3y 6wk 3y
commented
draft
member-last
reviewed-with-comment
2616 Allow OIDC Providers to be available via local socket 3y 6wk
draft
new-commits
2631 add logging if send message fails 3y 6wk
draft
reviewed-with-comment
2634 Adds authenticator support for passing OIDC token via body or authorization header 3y 6wk 3y
commented
draft
member-last
new-commits
send
2714 Policy Template Factory 2y 6wk
draft
unreviewed
2734 Authn-JWT Refactor 2y 6wk 9mo
commented
member-last
new-commits
send
similar
2829 Replace Conjur Auth Token with a valid JWT token 2y 6wk
draft
unreviewed
2946 Use context variable instead of instance variable for certs 2y 6wk
draft
unreviewed
2999 Authenticator refactor v2 2y 6wk
draft
unreviewed
2944 Log warning of dropped updates to existing resources in policy POST 2y 6wk
draft
unreviewed
2896 PoC for managing write-only permission at the Sequel level 2y 6wk
draft
unreviewed
2953 Add OIDC proxy integration tests 2y 6wk
draft
unreviewed
2990 Authn jwt refactor v5 2y 6wk 9mo
commented
draft
member-last
send
similar
unreviewed
2699 Fix broken tests by refershing materalized views 2y 5mo 5mo
commented
draft
member-last
send
unreviewed
2565 Add annotation based user search 3y 3y 3y
commented
member-last
new-commits
send
1443 SSH connector improvements 3y 3y
draft
unreviewed
953 improved ssh service connector 6y 3y
draft
unreviewed
1223 POC: Auto generation of troubleshooting guide 5y 3y
draft
new-commits
1340 WIP: mongodb connector 5y 3y
assigned
draft
unreviewed
1379 WIP: Robust testing of AWS using feature-rich mock server
2
 4y 3y 4y
commented
draft
member-last
new-commits
186 Add resource values for nginx and postgres 2y 14d 14d
kind/enhancement
contributor
assigned
assignee-updated
commented
member-last
send
unreviewed
184 Make Postgres FIPS compliant
2y 2y 2y
commented
draft
unreviewed
183 Add option from datakey to be provided from existing secret
2
 2y 2y 2y
kind/enhancement
contributor
assigned
assignee-updated
commented
member-last
reviewed-with-comment
send
214 Allow deployment of stable Conjur version 3y 9mo 9mo
assigned
commented
draft
member-last
send
unreviewed
220 Added new routes for OIDC functionality 3y 9mo 9mo
commented
member-last
send
unreviewed
51 Added dry-run parameter on policy methods 8mo 5wk 5wk
enhancement
kind/community
kind/enhancement
commented
member-last
send
unreviewed
527 Add telemetry toggles 2y 2y
draft
unreviewed
553 Run in standalone mode
8mo 4mo 4mo
author-last
commented
new-commits
recv
552 leverage file temaplates with k8s-secret targets 8mo 8mo 8mo
recv
unreviewed
551 improve error handling batch retrieve 8mo 8mo 8mo
recv
unreviewed
550 retrieve k8s secrets based on label 8mo 8mo 8mo
recv
unreviewed
75 POC to add security context values 3y 6wk 6wk
assigned
commented
draft
member-last
send
unreviewed
153 Scan for and remove internal URLs 2y 9mo 9mo
commented
draft
member-last
send
unreviewed
106 TEST SELECTIVER REPLICATON - Sel rep codi 3y 2y
draft
unreviewed
109 Host factory example 2y 2y
draft
unreviewed
104 Example of a synchronizer "audit" role 3y 3y
draft
unreviewed
214 [Snyk] Security upgrade ubuntu from 24.04 to 24.10 7wk 7wk
unreviewed
213 [Snyk] Security upgrade ubuntu from 24.04 to 24.10 3mo 3mo
unreviewed
212 [Snyk] Security upgrade ubuntu from 24.04 to 24.10 3mo 3mo
unreviewed
206 Sanity test fixes 10mo 10mo
draft
unreviewed
205 Fix the Sanity Test for Ansible 2.16 version 1y 1y
unreviewed
185 ONYX-26897 To reuse the token 2y 2y 2y
commented
member-last
new-commits
186 Onyx 26897 retry 2y 2y
unreviewed
178 Implement support for JWT authentication 3y 3y
draft
unreviewed
121 ReadMe Update and pointing to new version of conjur API go 2y 2mo 2y
commented
member-last
reviewed-with-comment
send
126 Readme updated and unit test, acceptance testing, conjur-api-go version update 2y 2mo
approved
10 Add Tracer creation functions 2y 2y
unreviewed

Overdue answers for a question (6)

Resolution: Add a comment

Average age: 1983.2d, Avg wait: 1144.5d
ID Au Desc As Rea Cr Up Re Cmntrs Labels Tags
1753 Conjur policy reload does not update annotations in APPEND mode 5y 5y 5y
kind/bug
component/conjur
severity/critical
source/salesforce
recv
recv-q
1718 Configure SSL certs/keys and postgres ssl_mode 5y 4y 5y
kind/enhancement
component/conjur
contributor
has-idea
recv
recv-q
1559 authn_k8s:inject_client_cert: Make client cert path configurable
4
15
 5y 4y 5y
component/k8s
triage/needs-info
kind/enhancement
contributor
has-idea
commented
recv-q
send
813 Host Factory created hosts don't have the policy namespace of their layer
7y 2y 4y
kind/bug
component/conjur
severity/medium
commented
recv-q
260 Add MongoDB handler/listener
6
 7y 7mo 7y
kind/enhancement
kind/epic
component/secretless-connectors
recv
recv-q
191 Unable to run cyberark.conjur.conjur_host_identity role. 2y 2y 2y
kind/bug
author-last
recv
recv-q

Updated support requests (123)

Resolution: Move out of support, or add a comment

Average age: 2143.9d, Avg wait: 2074.0d
ID Au Desc As Rea Cr Up Re Cmntrs Labels Tags
2245 Add minimum thread count to puma configuration 4y 4y 4y
recv
2117 Fix all Conjur CC issues 4y 4y 4y
kind/technical-debt
recv
2081 Add tests for no STDIN but `--password-from-stdin` option is provided 4y 4y 4y
recv
1958 Adding recursive permit statements
6
 5y 4y 5y
kind/enhancement
component/conjur
internal-contributor
recv
1602 Tags and successful image publishes trigger builds of downstream projects 5y 5y 5y
triage/needs-info
kind/technical-debt
component/suite
recv
1587 Refactor `./start` 5y 5y 5y
kind/cleanup
recv
1557 Extend rake task to get next available trackable log message code 5y 5y 5y
kind/enhancement
component/conjur
recv
1467 Improve security by permitting only expected params 5y 5y 5y
kind/technical-debt
component/conjur
recv
1191 Architecture Diagram for DB off OpenShift 6y 6y 6y
recv
1096 A central location exists for Conjur Log docs 6y 2y 6y
kind/developer-experience
assigned
recv
840 Kubernetes authenticator has a service account token option 6y 6y 6y
component/k8s
triage/needs-info
kind/enhancement
recv
812 Conjur k8s tests can be run on minikube 7y 7y 7y
kind/technical-debt
component/conjur
kind/developer-experience
recv
614 Cucumber tests should run in random order 7y 7y 7y
recv
482 Document maximum policy size 8y 5mo 8y
kind/documentation
good-first-issue
rnd-boost
open-milestone
recv
1347 Secretless component quality levels move from alpha/beta/GA to community/trusted/certified 5y 5y 5y
kind/documentation
component/secretless-broker
recv
1324 Generic HTTP Connector: OAuth1 supports different signature hashing methods 5y 5y 5y
kind/enhancement
component/secretless-broker
recv
1312 Create a Docker CLI Connector for Secretless 5y 5y 5y
kind/enhancement
component/secretless-broker
component/secretless-connectors
recv
1283 There is an example generic HTTP connector config for Salesforce 5y 5y 5y
kind/enhancement
component/secretless-broker
recv
similar
1279 There is an example generic HTTP connector config for the Kubernetes API 5y 5y 5y
kind/enhancement
component/secretless-connectors
recv
similar
1262 There is an example generic HTTP connector config for the Google Cloud SDK 5y 5y 5y
kind/enhancement
component/secretless-connectors
recv
1225 There is a central set of tests that validate the SSL configuration of the TLS connectors 5y 5y 5y
component/secretless-broker
kind/technical-debt
recv
1201 Determine how Secretless responds to DB server TLS renegotiation 5y 5y 5y
kind/spike
component/secretless-broker
recv
1178 Secretless optionally supports encryption for the client-to-Secretless connection 5y 5y 5y
triage/needs-info
kind/enhancement
component/secretless-broker
recv
1171 Add Unix socket flow to Kubernetes tutorial 5y 5y 5y
kind/enhancement
component/secretless-broker
recv
1152 Proxyservice package is unit tested 5y 5mo 5y
kind/enhancement
component/secretless-broker
kind/technical-debt
good-first-issue
kind/quality
recv
1132 JDBC Jar is built at runtime for integration tests 5y 5y 5y
recv
1097 Database clients receive a meaningful error when a new connection request has bad credentials 5y 5y 5y
kind/enhancement
component/secretless-connectors
recv
1094 Secretless has configurable connection timeouts for connectors 5y 5y 5y
kind/enhancement
component/secretless-broker
recv
1083 Example plugin uses Secretless logger 5y 5y 5y
component/secretless-broker
kind/developer-experience
recv
1065 Broker can delegate basic sanity checks on `credentials` keys to plugins 5y 5y 5y
kind/enhancement
triage/scoping
component/secretless-broker
component/secretless-plugins
triage/needs-epic
kind/ux
recv
1042 Conjur provider has improved automated tests 5y 5y 5y
component/secretless-providers
kind/technical-debt
recv
1036 Unit tests validate service connector plugin error handling 5y 5y 5y
component/secretless-broker
kind/technical-debt
recv
1021 Add a Security Model to the connector plugin README 6y 6y 6y
kind/documentation
kind/developer-experience
component/secretless-connectors
recv
1011 ForceSSL defaults to true 6y 6y 6y
kind/enhancement
component/secretless-broker
recv
994 Use our logger implementation for signal/reload listener 6y 6y 6y
component/secretless-broker
kind/ux
recv
993 Use our logger implementation for health check output 6y 6y 6y
component/secretless-broker
kind/ux
recv
980 Secretless transmits packets after authentication without transforming them 6y 6y 6y
kind/enhancement
component/secretless-broker
recv
979 Add `--allow-builtin-plugin-overrides` CLI argument 6y 6y 6y
kind/enhancement
component/secretless-broker
component/secretless-plugins
security/low
recv
957 Re-evaluate ConnectionManager API 6y 6y 6y
kind/enhancement
component/secretless-broker
component/secretless-plugins
kind/technical-debt
recv
941 Remove URL parsing logic from `internal/proxyservice/proxy_service.go` 6y 6y 6y
component/secretless-broker
kind/technical-debt
defined
recv
940 Add better logic when we can't open a tcp socket 6y 6y 6y
kind/enhancement
component/secretless-broker
kind/ux
recv
937 Replace XXXFunc with values in AvailablePlugins UTs 6y 6y 6y
component/secretless-broker
kind/technical-debt
recv
934 Tests are added for external_plugins.go 6y 6y 6y
kind/enhancement
component/secretless-broker
kind/technical-debt
defined
recv
902 secretless.Logger is simplified with cleaner tests 6y 6y 6y
component/secretless-broker
kind/technical-debt
recv
875 Logger tests use mocks for simplicity 6y 6y 6y
component/secretless-broker
kind/technical-debt
recv
834 Secretless supports plugin types besides connectors 6y 6y 6y
kind/enhancement
component/secretless-broker
recv
822 Make our plugin system work on windows 6y 6y 6y
kind/enhancement
component/secretless-broker
recv
715 CRDs are updated to use v2 configuration format 6y 6y 6y
kind/enhancement
component/secretless-broker
recv
704 fs_watcher has a goroutine leak 6y 6y 6y
kind/bug
component/secretless-broker
recv
701 Best practices recommendations exist for writing new DB handlers 6y 6y 6y
kind/epic
component/secretless-broker
recv
681 Tutorial progress bar position is fixed 6y 6y 6y
component/secretless-broker
kind/XA
recv
680 Abstraction exists in tutorial to accept multiple tutorials as parameter 6y 6y 6y
component/secretless-broker
kind/XA
recv
671 A good way to prevent log leaks has been agreed upon 6y 6y 6y
kind/spike
component/secretless-broker
recv
657 K8s tutorial scripts use correct method for waiting on containers 6y 6y 6y
component/secretless-broker
kind/technical-debt
good-first-issue
recv
640 Cleanup and document code for autogenerating test secretless.yml
6y 6y 6y
component/secretless-broker
kind/technical-debt
recv
625 SSL util functions for handlers have correct interface and clean code 6y 6y 6y
component/secretless-broker
kind/technical-debt
recv
624 Use structured representation of options for Pg Handler 6y 6y 6y
component/pg-handler
kind/technical-debt
recv
similar
623 MySQL Handler has good code quality and all required tests 6y 6y 6y
in progress
kind/epic
component/secretless-broker
kind/technical-debt
on-hold
recv
617 Credentials are consistently zeroized after use 6y 6y 6y
kind/epic
component/secretless-broker
security/medium
recv
608 Improve dev flow on tests, test documentation, and test infrastructure 6y 6y 6y
component/secretless-broker
kind/technical-debt
good-first-issue
recv
607 MySQL/PG/SSL tests have been refactored 6y 6y 6y
component/secretless-broker
kind/technical-debt
recv
591 Add README to the integration tests 6y 6y 6y
kind/documentation
component/secretless-broker
kind/technical-debt
on-hold
good-first-issue
recv
similar
514 Providers retrieve secret values per connection in batches if possible 7y 6y 7y
kind/enhancement
component/secretless-broker
recv
510 AWS Secrets credential provider has integration tests 7y 6y 7y
kind/enhancement
component/secretless-broker
recv
507 Secretless has AWS Secrets Provider 7y 6y 7y
kind/epic
recv
506 Config watcher is tested 7y 6y 7y
component/secretless-broker
kind/technical-debt
good-first-issue
recv
505 Secretless watches for config file changes 7y 6y 7y
kind/epic
component/secretless-broker
recv
493 Conjur authentication logic is removed from the provider 7y 6y 7y
kind/enhancement
component/secretless-broker
triage/needs-epic
recv
483 PostgreSQL handler protocol has unit tests 7y 6y 7y
component/secretless-broker
kind/technical-debt
recv
477 Secretless quick start demo instructions are clear about flow 7y 7y 7y
kind/documentation
kind/enhancement
to do
component/demos
component/secretless-broker
recv
473 Secretless optionally retries connections 7y 6y 7y
kind/enhancement
component/secretless-providers
component/secretless-broker
recv
467 HTTP response times are measured 7y 6y 7y
kind/enhancement
to do
component/secretless-broker
good-first-issue
recv
466 SSH throughput is measured 7y 6y 7y
kind/enhancement
to do
component/secretless-broker
good-first-issue
recv
465 MySQL query response times are measured 7y 6mo 7y
kind/enhancement
component/secretless-broker
on-hold
implementing
recv
451 Secretless has an Azure Key Vault credential provider
7y 7y 7y
triage/scoping
kind/epic
component/secretless-providers
recv
409 Website has performance page 7y 7y 7y
kind/documentation
to do
component/secretless-site
recv
400 Broker documentation is improved 7y 6y 7y
to do
kind/epic
component/secretless-broker
recv
383 Broker is secure 7y 6y 7y
in progress
kind/enhancement
kind/epic
component/secretless-broker
recv
381 Broker has additional configuration options 7y 6mo 7y
kind/enhancement
kind/epic
component/secretless-broker
recv
380 Broker is easy to develop for 7y 6y 7y
kind/epic
component/secretless-broker
kind/technical-debt
assigned
recv
374 A pass-through listener exists 7y 6mo 7y
kind/enhancement
to do
component/secretless-broker
kind/technical-debt
recv
354 Istio can be used with an external DB 7y 7y 7y
kind/spike
to do
component/secretless-broker
assigned
recv
325 Secretless can be deployed with a sidecar injector 7y 6y 7y
triage/scoping
kind/epic
assigned
recv
265 Secretless has option to configure response when provider fails to resolve a variable 7y 6y 7y
component/secretless-broker
recv
82 AWS handler has test suite with documentation 7y 6y 7y
component/aws-handler
assigned
recv
31 Use a dot foo.bar scheme to access nested data from HashiCorp Vault 7y 7y 7y
component/vault-provider
triage/needs-epic
recv
16 Helm charts are published to Helm artifact hub and helm/hub 5y 5y 5y
recv
12 Helm charts repo is updated after new helm chart release 5y 5y 5y
component/k8s
kind/enhancement
recv
177 Conjur does not start with an external Postgres database due to OpenSSL internal error, assertion failed: Low level API call to digest SHA256 forbidden in FIPS mode 2y 2y 2y
kind/bug
contributor
recv
167 Add nodeSelector to list of Chart Parameters 4y 4y 4y
kind/enhancement
contributor
recv
142 Add check/warning for pre-existing ClusterRole in Kubernetes example scripts 4y 4y 4y
kind/enhancement
component/conjur
recv
141 Clarify compatible database versions in README 4y 4y 4y
component/conjur
kind/documentation
recv
139 Make conjur proxy container optional and configurable
2
 4y 4y 4y
kind/enhancement
triage/needs-info
component/conjur
author-last
recv
136 Add option to auto-create a Conjur data encryption key 4y 4y 4y
kind/enhancement
component/conjur
recv
135 Add deprecation warnings to NOTES.txt 4y 4y 4y
kind/enhancement
component/conjur
recv
134 Deprecated features to consider for removal for next major release (3.0.0)
4y 4y 4y
kind/enhancement
component/conjur
recv
133 Instructions fail when LoadBalancer service defines a hostname instead of an IP for the LB ingress 4y 4y 4y
component/conjur
kind/bug
recv
132 Add authn-k8s demo app E2E test based on KinD GitHub actions 4y 4y 4y
kind/enhancement
component/conjur
recv
130 Failure in Conjur schema migrations of external DB can't recover 4y 4y 4y
component/conjur
kind/bug
recv
104 Reorganize README.md KinD example to make it more of a Getting Started guide 5y 7mo 5y
kind/enhancement
component/conjur
good-first-issue
recv
86 Document use of or add subchart for bitnami/postgresql 5y 5y 5y
kind/enhancement
component/conjur
recv
68 Helm deployment instructions (README) include architecture diagrams 5y 5y 5y
component/conjur
kind/bug
recv
57 Pipeline validates upgrade instructions 5y 5y 5y
component/k8s
kind/infrastructure
recv
46 Adds TLS between Conjur and posgres pod 5y 5y 5y
kind/enhancement
component/conjur
recv
28 Documentation is updated to clarify setup steps
6y 6y 6y
good-first-issue
recv
9 CI pipeline runs kubesec 7y 6y 7y
good-first-issue
recv
7 Conjur Helm chart has published shasums 7y 6y 7y
kind/enhancement
component/k8s
component/openshift
recv
260 Multi-line secrets. 7d 7d 7d
kind/user-story
recv
93 TLS handshake error when following README in local cluster
2y 14d 6wk
kind/bug
author-last
commented
recv
31 The demo flows have automated tests 6y 6y 6y
component/appliance
kind/enhancement
recv
49 Add other ways to specify Conjur / DAP identity in `cyberark.conjur.conjur_variable` 5y 5y 5y
component/ansible
kind/enhancement
recv
47 The UX of configuring the lookup plugin and role has been evaluated 5y 5y 5y
recv
46 Roles are tested with Molecule 5y 5y 5y
component/ansible
kind/enhancement
recv
45 The log output of the conjur-role without "no_log" set to true has been reviewed 5y 4y 5y
component/ansible
kind/enhancement
kind/XA
recv
43 Documentation is clear that input variable path should not be urlencoded 5y 5y 5y
component/ansible
source/salesforce
kind/documentation
recv
42 Expand Ansible Collection to include Conjur Role 5y 4y 5y
component/ansible
kind/enhancement
Epic
recv
258 Error with self signed certificate 2y 2y 2y
kind/bug
author-last
recv
132 Add an ability to update Conjur secret
3
 2y 2y 2y
kind/enhancement
recv
53 Add Windows instructions to README 5y 5y 5y
component/terraform
kind/enhancement
recv
4 previously listed items omitted: #1753 #1718 #260 #191
Triage Party v1.4.0