Prerequisites
Feature Summary
Add support for scanning and deploying to clusters that run Talos Linux.
Problem/Use Case
Talos is a Linux distro that provides a CNCF AI conformant Kubernetes environment (using upstream Kubernetes containers), but trying to scan a cluster with aicr quickly exposes issues because Talos has hardened security defaults (e.g. enforces baseline pod security admission) which causes the job not to run and when deploying to a namespace that allows the pod to run it fails because Talos doesn't use systemd
Warning FailedMount 24s (x8 over 88s) kubelet MountVolume.SetUp failed for volume "run-systemd" : hostPath type check failed: /run/systemd is not a directory
Proposed Solution
Add configuration and testing for Talos based Kubernetes clusters.
Success Criteria
- Supports scanning clusters that run on Talos
- Supports deploying bundles
- Supports validating config
Alternatives Considered
No response
Component
CLI (aicr)
Priority
Nice to have
Compatibility / Breaking Changes
No response
Operational Considerations
No response
Are you willing to contribute?
Yes, I can open a PR
Prerequisites
Feature Summary
Add support for scanning and deploying to clusters that run Talos Linux.
Problem/Use Case
Talos is a Linux distro that provides a CNCF AI conformant Kubernetes environment (using upstream Kubernetes containers), but trying to scan a cluster with
aicrquickly exposes issues because Talos has hardened security defaults (e.g. enforces baseline pod security admission) which causes the job not to run and when deploying to a namespace that allows the pod to run it fails because Talos doesn't use systemdProposed Solution
Add configuration and testing for Talos based Kubernetes clusters.
Success Criteria
Alternatives Considered
No response
Component
CLI (aicr)
Priority
Nice to have
Compatibility / Breaking Changes
No response
Operational Considerations
No response
Are you willing to contribute?
Yes, I can open a PR