Hi folks,
Thank you to everyone who has continued to show up and contribute the
PSP replacement proposal. I think we're close to getting it to an implementable state, but I wanted to highlight that next Wednesdays breakout session is the
last meeting we have before enhancements freeze (
https://github.com/kubernetes/sig-release/tree/master/releases/release-1.22#tldr). Because of this, I'd like to do our best to close out all the unresolved issues next week. I've made a few executive decisions and closed out the ones that I considered decided (notably: renamed `allow` to `enforce`) - but please feel free to add feedback on the "resolved" sections if you have outstanding concerns.
The outstanding decisions are:
2. Windows support - I think we can punt this to Beta, but I promised that we would start the next meeting with a windows discussion.
3. Monitoring - There is an open question about how to handle versions that I'd like to discuss, but otherwise this is close to resolved.
4. Capabilities - I will talk to some SIG-Node folks before wedsenday to try to come to a decision on this (leaning towards a Kubernetes default list that is the docker defaults minus NET_RAW)
Thanks all, have a great weekend!