Move all Dockerfile samples to non-root user

Expected Behaviour

As an OpenFaaS end-user, I want to run all samples on my OpenFaaS cluster, even with the new non-root feature enabled.

Current Behaviour

Checklist:

• I've searched in the docs and FAQ for my answer: https://bit.ly/argocd-faq.
• I've included steps to reproduce the bug.
• I've pasted the output of argocd version.

Describe the bug

If an invalid token for a local user exists in argocd-secret, the API will refuse to process any request with an error message similar to:

FATA[0002] rpc error: code =

Summary

jx create addon istio doesn't work
since v 1.5 istio moved to operator so no folder install/kubernetes/helm/istio

Steps to reproduce the behavior

jx create addon istio

Output

Istio package already downloaded: /Users/msirs/.jx/cache/istio-1.6.0-osx.tar.gz
error: Could not find folder install/kubernetes/helm/istio inside istio clone at /Users/msirs/.jx/cache/istio

Hi. We have recently upgraded the sealed-secrets-controller to v0.8.1 from v0.7 and are experiencing that all sealed secrets are getting unsealed frequently without any modifications to the sealed secret entity.

Is this an expected behavior?

Worth noting is that we are runnnig in a

We'd like to make sure flagger is there if there's some contention. Also please add this to the loadtester chart

Implement a gPRC version of the API (on a different port) for podinfo and generate the client in podcli.

What is the problem?
When visiting a page whose availability is determined from the server state, there is a time lag before the response is shown to the user.

Your solution
We can show an intermediate loading page to let users know that we have received the request and the server is validating the page access request.

Alternatives considered
Currently, an empty page is shown.

Reliability monitoring - e2e testing of GitHub workflow

Context

Since moving the Communtity Cluster from GKE to DigitalOcean the reliability has dropped dramatically due to issues with the Cilium networking driver 1.4.0. A separate action will be required for this, but in the meantime it highlights a lack of e2e monito

Authentication via Azure/aad-pod-identity for keyvault access could be a good feature to avoid use of clientId/ clientSecret in chart values. Don't you think ?

Expected behavior

When running the terraform step, all plan contents should be visible or there should be a scroll bar.

Actual behavior

A scrollbar never appears, and content clips off the bottom of the screen. If the page zoom is changed, content reflows and a scroll bar appears.

Information

• Ship version: 0.43.1
• Command line run: ship init ./ship.yaml
• Chrome v

Summary

The plugin currently only shows a Rollout has an InvalidSpec, but does not show the message associated with the InvalidSpec condition. It would be much more useful to show why a Rollout was invalid.

Message from the maintainers:

Impacted by this bug? Give it a 👍. We priorit

Long tags with all digits seem to be changed to scientific notation at some point.

valuesFromFile:
  chartFileRef:
    myScript: path/to/file.js
  externalSourceRef:
    defaultScript: https://raw.githubusercontent.com/cdenneen/example/master/script.js

result in equivalent of:

helm install --set-file key=path/to/file.js

myScript: |
  const { events, Job } = require("brigadier")
  function run(e, project) {
    console.log("this i

As a: developer

I want: the dashboard to display ring names I've configured in bedrock.yaml

So that: I can see the right ring name for services in the dashboard

Describe the solution you'd like:
Following the work on microsoft/bedrock#1313, any branch can be associated with any ring name. Currently, the introspection script assumes that the branc

it seems that some configuration providers (eg https://github.com/cloudfoundry/cf-for-k8s/blob/master/supported_k8s_versions.yml) will benefit from ability to specify min/max version of supported k8s. we should also provide a way to bypass this check for users that do not care about it.

apiVersion: kapp.k14s.io/v1alpha1
kind: Config
minimumRequiredVersion: 1.26.0 # kapp binary versio

As a developer, I want to be able add Fabrikate components that remotely pull in a static resource.

For example, this Rook Cassandra Operator is completely specified statically in the project website and I would like to be able to directly pull in this static file from this remote URL a

If there are pending migrations for the database, setting the immediateDeploy flag to try should approve all pending migrations

Today the templates/gateway_config.yml includes many essential values. Some of them are exposed to overrides in init.yaml But several are not. I think the best approach is to have default possible to override all "changeable" values. For gateway config template we are almost there, the are three values sticking out. [L30-L32](https://github.com/openfaas-incubator/ofc-bootstrap/blob/6accd2fbe