Issues that may be waiting for our response NOTE: for this to work properly, GitHub token must have read access to read organization members
Questions awaiting follow-up: No matching items
Bugs awaiting follow-up (13)
Resolution: Comment or close the issue
Average age: 1368.5d, Avg wait: 1315.8d
Features awaiting follow-up (105)
Resolution: Comment or close the issue
Average age: 1841.8d, Avg wait: 1803.2d
| ID | Au | Desc | As | Rea | Cr | Up | Re | Cmntrs | Labels | Tags |
| 2062 |  |
A test setup exists for testing simplified authn client config | 4y | 4y | 4y | |
kind/enhancement
component/conjur
|
contributor-last recv
|
||
| 1964 |  |
Update upgrade process: separate schema and data restoration | 4y | 4y | 4y |  |
kind/enhancement
component/conjur
|
contributor-last recv recv-q
|
||
| 1958 |  |
Adding recursive permit statements |
6
|
4y | 4y | 4y |  |
kind/enhancement
component/conjur
internal-contributor
|
recv
|
|
| 1787 | |
Conjur debian package is updated to exclude irrelevant files and directories | 
| 4y | 4y | 4y | |
component/appliance
kind/enhancement
component/conjur
|
assigned contributor-last recv
|
|
| 1718 |  |
Configure SSL certs/keys and postgres ssl_mode | 4y | 4y | 4y |   |
kind/enhancement
component/conjur
contributor
has-idea
|
recv recv-q
|
||
| 1557 | |
Extend rake task to get next available trackable log message code | 5y | 5y | 5y |
kind/enhancement
component/conjur
|
recv
|
|||
| 1265 | |
Kubernetes authenticator supports container-level application identity |
|
5y | 5y | 5y |  |
component/k8s
kind/enhancement
component/conjur
|
contributor-last recv
|
|
| 840 | |
Kubernetes authenticator has a service account token option | 6y | 6y | 6y |
component/k8s
triage/needs-info
kind/enhancement
|
recv
|
|||
| 1342 | |
Migrate to a new method for running the Secretless health check | 4y | 4y | 4y | |
kind/enhancement
component/secretless-broker
|
contributor-last recv
|
||
| 1336 | |
There should be capabilities in `secretless.yml` to supply custom settings to providers |
|
4y | 4y | 4y |  |
kind/enhancement
component/secretless-broker
|
contributor-last recv
|
|
| 1324 | |
Generic HTTP Connector: OAuth1 supports different signature hashing methods | 4y | 4y | 4y |
kind/enhancement
component/secretless-broker
|
recv
|
|||
| 1312 | |
Create a Docker CLI Connector for Secretless | 4y | 4y | 4y |
kind/enhancement
component/secretless-broker
component/secretless-connectors
|
recv
|
|||
| 1283 |  |
There is an example generic HTTP connector config for Salesforce | 5y | 4y | 5y |
kind/enhancement
component/secretless-broker
|
recv similar
|
|||
| 1279 | |
There is an example generic HTTP connector config for the Kubernetes API | 5y | 5y | 5y |
kind/enhancement
component/secretless-connectors
|
recv similar
|
|||
| 1262 | |
There is an example generic HTTP connector config for the Google Cloud SDK | 5y | 5y | 5y |
kind/enhancement
component/secretless-connectors
|
recv
|
|||
| 1222 | |
Secretless has a Cassandra DB connector |
2
|
5y | 5y | 5y |   |
kind/enhancement
component/secretless-broker
component/secretless-connectors
|
commented contributor-last recv similar
|
|
| 1213 | |
Secretless has a DB2 connector |
2
|
5y | 5y | 5y |  |
kind/enhancement
component/secretless-broker
component/secretless-connectors
|
commented contributor-last recv recv-q similar
|
|
| 1205 | |
TLS Connectors share a structure for connection details | 5y | 4y | 5y | |
kind/enhancement
component/secretless-broker
component/secretless-connectors
|
contributor-last recv
|
||
| 1182 | |
Secretless configuration files support ssl configuration information | 5y | 5y | 5y | |
kind/enhancement
|
contributor-last recv recv-q
|
||
| 1178 | |
Secretless optionally supports encryption for the client-to-Secretless connection | 5y | 5y | 5y |
triage/needs-info
kind/enhancement
component/secretless-broker
|
recv
|
|||
| 1171 | |
Add Unix socket flow to Kubernetes tutorial | 5y | 5y | 5y |
kind/enhancement
component/secretless-broker
|
recv
|
|||
| 1152 | |
Proxyservice package is unit tested | 5y | 2wk | 5y |
kind/enhancement
component/secretless-broker
kind/technical-debt
good-first-issue
kind/quality
|
recv
|
|||
| 1097 | |
Database clients receive a meaningful error when a new connection request has bad credentials | 5y | 5y | 5y |
kind/enhancement
component/secretless-connectors
|
recv
|
|||
| 1094 | |
Secretless has configurable connection timeouts for connectors | 5y | 5y | 5y |
kind/enhancement
component/secretless-broker
|
recv
|
|||
| 1065 | |
Broker can delegate basic sanity checks on `credentials` keys to plugins | 5y | 5y | 5y |
kind/enhancement
triage/scoping
component/secretless-broker
component/secretless-plugins
triage/needs-epic
kind/ux
|
recv
|
|||
| 1063 | |
Broker does early verification of plugin parameters | 5y | 5y | 5y | |
kind/enhancement
triage/scoping
component/secretless-broker
component/secretless-plugins
triage/needs-epic
severity/medium
kind/developer-experience
kind/ux
|
contributor-last recv
|
||
| 1011 |  |
ForceSSL defaults to true | 5y | 5y | 5y |
kind/enhancement
component/secretless-broker
|
recv
|
|||
| 980 | |
Secretless transmits packets after authentication without transforming them | 5y | 5y | 5y |
kind/enhancement
component/secretless-broker
|
recv
|
|||
| 979 | |
Add `--allow-builtin-plugin-overrides` CLI argument | 5y | 5y | 5y |
kind/enhancement
component/secretless-broker
component/secretless-plugins
security/low
|
recv
|
|||
| 957 | |
Re-evaluate ConnectionManager API | 5y | 5y | 5y |
kind/enhancement
component/secretless-broker
component/secretless-plugins
kind/technical-debt
|
recv
|
|||
| 940 | |
Add better logic when we can't open a tcp socket | 5y | 5y | 5y |
kind/enhancement
component/secretless-broker
kind/ux
|
recv
|
|||
| 934 | |
Tests are added for external_plugins.go | 5y | 5y | 5y |
kind/enhancement
component/secretless-broker
kind/technical-debt
defined
|
recv
|
|||
| 836 | |
Improve support for configuration CRDs | 5y | 5y | 5y | |
kind/enhancement
component/secretless-broker
|
contributor-last recv
|
||
| 834 | |
Secretless supports plugin types besides connectors | 5y | 5y | 5y |
kind/enhancement
component/secretless-broker
|
recv
|
|||
| 822 | |
Make our plugin system work on windows | 5y | 5y | 5y |
kind/enhancement
component/secretless-broker
|
recv
|
|||
| 715 | |
CRDs are updated to use v2 configuration format | 6y | 5y | 6y |
kind/enhancement
component/secretless-broker
|
recv
|
|||
| 645 | |
Jekyll can create foldable content from markdown |
|
6y | 6y | 6y |  |
kind/enhancement
component/secretless-site
|
contributor-last recv
|
|
| 592 | |
Simplify ConfigureBackend in database handlers | 6y | 6y | 6y | |
kind/enhancement
component/secretless-broker
kind/technical-debt
on-hold
|
contributor-last recv recv-q
|
||
| 514 | |
Providers retrieve secret values per connection in batches if possible | 6y | 6y | 6y |
kind/enhancement
component/secretless-broker
|
recv
|
|||
| 510 | |
AWS Secrets credential provider has integration tests | 6y | 6y | 6y |
kind/enhancement
component/secretless-broker
|
recv
|
|||
| 493 |  |
Conjur authentication logic is removed from the provider | 6y | 6y | 6y |
kind/enhancement
component/secretless-broker
triage/needs-epic
|
recv
|
|||
| 477 | |
Secretless quick start demo instructions are clear about flow | 6y | 6y | 6y |
kind/documentation
kind/enhancement
to do
component/demos
component/secretless-broker
|
recv
|
|||
| 473 | |
Secretless optionally retries connections | 6y | 6y | 6y |
kind/enhancement
component/secretless-providers
component/secretless-broker
|
recv
|
|||
| 467 | |
HTTP response times are measured | 6y | 5y | 6y |
kind/enhancement
to do
component/secretless-broker
good-first-issue
|
recv
|
|||
| 466 | |
SSH throughput is measured | 6y | 5y | 6y |
kind/enhancement
to do
component/secretless-broker
good-first-issue
|
recv
|
|||
| 465 | |
MySQL query response times are measured | 6y | 4wk | 6y |
kind/enhancement
component/secretless-broker
on-hold
implementing
|
recv
|
|||
| 383 | |
Broker is secure | 6y | 6y | 6y |
in progress
kind/enhancement
kind/epic
component/secretless-broker
|
recv
|
|||
| 381 | |
Broker has additional configuration options | 6y | 4wk | 6y |
kind/enhancement
kind/epic
component/secretless-broker
|
recv
|
|||
| 379 | |
Performance metrics are published |
|
6y | 5y | 6y | |
kind/enhancement
to do
kind/epic
component/secretless-broker
|
contributor-last recv
|
|
| 374 | |
A pass-through listener exists | 6y | 4wk | 6y |
kind/enhancement
to do
component/secretless-broker
kind/technical-debt
|
recv
|
|||
| 270 | |
SSH agent only keeps loaded keys for the duration of connection | 6y | 6y | 6y | |
kind/enhancement
component/secretless-broker
kind/technical-debt
security/low
on-hold
|
contributor-last recv
|
||
| 260 | |
Add MongoDB handler/listener |
6
|
6y | 2mo | 6y |   |
kind/enhancement
kind/epic
component/secretless-connectors
|
recv recv-q
|
|
| 12 | |
Helm charts repo is updated after new helm chart release | 5y | 5y | 5y |
component/k8s
kind/enhancement
|
recv
|
|||
| 167 |  |
Add nodeSelector to list of Chart Parameters | 3y | 3y | 3y |
kind/enhancement
contributor
|
recv
|
|||
| 142 | |
Add check/warning for pre-existing ClusterRole in Kubernetes example scripts | 4y | 4y | 4y |
kind/enhancement
component/conjur
|
recv
|
|||
| 139 |  |
Make conjur proxy container optional and configurable |
2
|
4y | 4y | 4y | |
kind/enhancement
triage/needs-info
component/conjur
|
recv
|
|
| 136 | |
Add option to auto-create a Conjur data encryption key | 4y | 4y | 4y |
kind/enhancement
component/conjur
|
recv
|
|||
| 135 | |
Add deprecation warnings to NOTES.txt | 4y | 4y | 4y |
kind/enhancement
component/conjur
|
recv
|
|||
| 134 | |
Deprecated features to consider for removal for next major release (3.0.0) |
|
4y | 4y | 4y |
kind/enhancement
component/conjur
|
recv
|
||
| 132 | |
Add authn-k8s demo app E2E test based on KinD GitHub actions | 4y | 4y | 4y |
kind/enhancement
component/conjur
|
recv
|
|||
| 131 | |
Eliminate redundant Kubernetes service for Conjur |
5
|
4y | 4y | 4y |  |
kind/enhancement
component/conjur
|
commented contributor-last recv
|
|
| 104 | |
Reorganize README.md KinD example to make it more of a Getting Started guide | 4y | 2mo | 4y |
kind/enhancement
component/conjur
good-first-issue
|
recv
|
|||
| 86 | |
Document use of or add subchart for bitnami/postgresql | 4y | 4y | 4y |
kind/enhancement
component/conjur
|
recv
|
|||
| 54 | |
Automated end-to-end testing suite | 5y | 5y | 5y | |
kind/enhancement
kind/technical-debt
component/k8s
component/conjur
kind/quality
|
contributor-last recv recv-q
|
||
| 46 | |
Adds TLS between Conjur and posgres pod | 5y | 5y | 5y |
kind/enhancement
component/conjur
|
recv
|
|||
| 7 |  |
Conjur Helm chart has published shasums | 6y | 6y | 6y |
kind/enhancement
component/k8s
component/openshift
|
recv
|
|||
| 186 | |
Migrate client configuration from `conjur-cli` gem to this gem | 4y | 4y | 4y |
component/api/ruby
kind/enhancement
|
recv
|
|||
| 102 | |
Add ability to pass in CONJUR_APPLIANCE_URL and CONJUR_ACCOUNT into Conjur class |
|
4y | 4y | 4y |
component/api/java
kind/enhancement
internal-contributor
|
recv
|
||
| 99 | |
Unit tests exist for each class | 4y | 4y | 4y |
component/api/java
kind/enhancement
|
recv
|
|||
| 251 |  |
Default not supported for `gopass` | 1y | 1y | 1y |
kind/enhancement
|
recv
|
|||
| 153 | |
Multiple `-e` environments can be supported | 5y | 5y | 5y |
kind/enhancement
component/summon
|
recv
|
|||
| 151 | |
Add more information about `!file` handling | 5y | 2mo | 5y |
kind/documentation
kind/enhancement
component/summon
good-first-issue
|
recv
|
|||
| 149 |  |
Summon has examples of unofficial "provider wrappers" somewhere (e.g. `gopass`) |
2
5
|
5y | 4y | 5y | |
kind/enhancement
component/summon
triage/scoping
kind/developer-experience
contributor
has-idea
|
recv recv-q
|
|
| 135 | |
Zeroize all vars right after start of child process | 5y | 13d | 5y |
kind/enhancement
component/summon
kind/security
|
recv
|
|||
| 48 | |
Tests exist for `main.go` | 4y | 4y | 4y |
kind/technical-debt
kind/enhancement
component/summon
|
recv
|
|||
| 44 |  |
Ability to specify versions of secrets to retrieve | 4y | 4y | 4y | |
kind/enhancement
component/summon
contributor
has-idea
|
recv
|
||
| 22 |  |
Apple silicon is not supported for this provider |
|
2y | 2y | 2y |
kind/enhancement
contributor
|
recv
|
||
| 305 | |
Add get-conjur-cert.sh and test-helm scripts to release artifacts | 4y | 10d | 4y |  |
component/k8s
kind/enhancement
stale
|
recv
|
||
| 291 | |
The Namespace prep helm test uses validator Host ID to validate the Kubernetes authenticator is functional | 4y | 10d | 4y | |
component/k8s
kind/enhancement
stale
|
recv
|
||
| 290 | |
The Namespace helm test queries the /info endpoint for validation | 4y | 10d | 4y | |
component/k8s
kind/enhancement
stale
|
recv
|
||
| 289 | |
There is an initial framework for the Namespace prep Helm test | 4y | 10d | 4y | |
component/k8s
kind/enhancement
stale
|
recv
|
||
| 222 | |
Enable cloud provided authentication methods in sidecar | 4y | 10d | 4y | |
component/k8s
kind/enhancement
internal-contributor
stale
|
recv
|
||
| 549 |  |
Secrets rotation improvements | 
|
|
3mo | 2mo | 2mo | |
kind/enhancement
|
assigned assignee-updated commented recv
|
| 289 | |
Add optional hostAliases to values.yaml | 4y | 4y | 4y |  |
component/k8s
kind/enhancement
|
recv recv-q
|
||
| 239 | |
Add GH action for dispatching release event |
|
4y | 4wk | 4y | |
component/k8s
kind/enhancement
|
contributor-last recv
|
|
| 99 | |
Don't use separate yamls for OC and K8s where possible | 5y | 5y | 5y |
triage/scoping
kind/technical-debt
kind/enhancement
component/k8s
kind/cleanup
triage/needs-epic
kind/developer-experience
good-first-issue
|
recv
|
|||
| 55 | |
Tests include coverage of master deployment to both GKE and OpenShift | 6y | 6y | 6y |
component/openshift
kind/enhancement
component/k8s
kind/cleanup
triage/needs-epic
severity/low
kind/developer-experience
|
recv
|
|||
| 135 | |
Add validator host ID to allow authn-k8s config to be validated | 4y | 4y | 4y |
kind/enhancement
component/demos
|
recv
|
|||
| 130 | |
Automated tests only run against annotation-based identities | 4y | 4y | 4y |
kind/enhancement
component/demos
|
recv
|
|||
| 115 | |
Add DeploymentConfigs as app identity in Jenkins OpenShift CI | 4y | 4y | 4y |
kind/enhancement
component/demos
|
recv
|
|||
| 113 | |
Replace use of sed for yaml templating with Yaml.sh or helm charts | 4y | 4y | 4y |
kind/enhancement
component/demos
|
recv
|
|||
| 91 | |
Users can determine buildpack version from Cloud Foundry | 4y | 4y | 4y |
component/pcf
kind/enhancement
|
recv
|
|||
| 80 | |
Secrets.yml configuration can be supplied as an environment variable |
3
|
4y | 4y | 4y |  |
kind/enhancement
component/conjur-sdk
|
contributor-last recv recv-q
|
|
| 56 | |
Collection is published to Automation Hub | 4y | 4y | 4y | |
component/ansible
kind/enhancement
|
contributor-last recv
|
||
| 49 | |
Add other ways to specify Conjur / DAP identity in `cyberark.conjur.conjur_variable` | 4y | 4y | 4y |
component/ansible
kind/enhancement
|
recv
|
|||
| 46 | |
Roles are tested with Molecule | 4y | 4y | 4y |
component/ansible
kind/enhancement
|
recv
|
|||
| 45 | |
The log output of the conjur-role without "no_log" set to true has been reviewed | 4y | 4y | 4y |
component/ansible
kind/enhancement
kind/XA
|
recv
|
|||
| 44 | |
Roles and plugins share a build stage and test directory structure | 4y | 4y | 4y | |
kind/cleanup
component/ansible
kind/enhancement
|
contributor-last recv
|
||
| 42 | |
Expand Ansible Collection to include Conjur Role | 4y | 4y | 4y |
component/ansible
kind/enhancement
Epic
|
recv
|
|||
| 30 | |
Migrate this Ansible role to the Conjur Ansible collection | 5y | 2mo | 5y |  |
kind/enhancement
component/ansible
|
contributor-last recv recv-q
|
||
| 26 | |
conjur_variable lookup plugin can be improved |
|
5y | 2mo | 5y | |
kind/enhancement
component/ansible
|
contributor-last recv recv-q
|
|
| 201 | |
Investigate (and possibly implement) ability to check if we can validate that agent credentials are valid | 4y | 4y | 4y | |
component/puppet
kind/enhancement
kind/developer-experience
kind/XA
kind/community
|
contributor-last recv
|
||
| 132 |  |
Add an ability to update Conjur secret |
2
|
1y | 1y | 1y |
kind/enhancement
|
recv
|
||
| 60 | |
Add unit tests | 5y | 2wk | 5y | |
component/terraform
kind/enhancement
good-first-issue
kind/quality
|
contributor-last recv
|
||
| 53 | |
Add Windows instructions to README | 5y | 5y | 5y |
component/terraform
kind/enhancement
|
recv
|
Items that deserve a follow-up comment: No matching items