Skip to content

Improve Dagger security by using TLS certificates #323

@Smana

Description

@Smana

Enhancement Title

Secure access to Dagger with TLS

Summary

In the current architecture with Github Self-Hosted runners, dagger listens in plain HTTP.
It should be possible to expose TLS certificates using our internal PKI (Vault)

Benefits

Improve the security level, avoid leaking code.

Additional Context

Note that we mitigated the risk with a fine grained network policy which only grants the desired services.

Metadata

Metadata

Assignees

No one assigned

    Labels

    enhancementNew feature or request

    Projects

    Status

    No status

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions