31
10
5
Events
chore: sleep to test update process in a disarmed way
chore: release 0.0.0-latest for other builds
chore: 5 controlplane nodes
chore: scale up control plane one at a time
chore: increase vmagent resources
Its getting oomkilled
fix: run services on service nodes (#384)
Several services were found to be running on user worker nodes which causes instability in user workloads and in the mission critical services.
- nats
- cainjector
- metrics-server
- vminsert
bbatha delete branch bbatha/sit-194-service-workloads-are-running-on-the
fix: run services on service nodes
Several services were found to be running on user worker nodes which causes instability in user workloads and in the mission critical services.
- nats
- cainjector
- metrics-server
- vminsert
fix: run services on service nodes
Several services were found to be running on user worker nodes which causes instability in user workloads and in the mission critical services.
- nats
- cainjector
- metrics-server
- vminsert
bbatha create branch bbatha/sit-194-service-workloads-are-running-on-the
fix: Dockerfile to reduce vulnerabilities (#375)
The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-ALPINE316-CURL-2938013
- https://snyk.io/vuln/SNYK-ALPINE316-CURL-3063711
- https://snyk.io/vuln/SNYK-ALPINE316-CURL-3063712
- https://snyk.io/vuln/SNYK-ALPINE316-EXPAT-3028183
- https://snyk.io/vuln/SNYK-ALPINE316-ZLIB-2976176
Co-authored-by: snyk-bot snyk-bot@snyk.io Co-authored-by: Ben Batha ben.batha@paperspace.com
[Snyk] Security upgrade hashicorp/terraform from 1.2.3 to 1.3.7
Changes included in this PR
- Dockerfile
We recommend upgrading to hashicorp/terraform:1.3.7, as this image has only 1 known vulnerabilities. To do this, merge this pull request, then verify your application still works as expected.
Some of the most important vulnerabilities in your base image include:
| Severity | Priority Score / 1000 | Issue | Exploit Maturity |
| :------: | :-------------------- | :---- | :--------------- |
| 
| 500 | Incorrect Default Permissions SNYK-ALPINE316-CURL-2938013 | No Known Exploit |
| | 500 | Exposure of Resource to Wrong Sphere SNYK-ALPINE316-CURL-3063711 | No Known Exploit |
| | 500 | Double Free SNYK-ALPINE316-CURL-3063712 | No Known Exploit |
| | 500 | Use After Free SNYK-ALPINE316-EXPAT-3028183 | No Known Exploit |
| | 500 | Out-of-bounds Write SNYK-ALPINE316-ZLIB-2976176 | No Known Exploit |
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information: 🧐 View latest project report
Learn how to fix vulnerabilities with free interactive lessons:
🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.
feature(graphcore): Setup rke2 via ansible for graphcore (#377)
chore: convert to github actions SIT-173 (#376)
chore: fix docker tag script
chore: debug upload script
chore: inject github token for upload step
chore: use right github variable
chore: use ref_name not ref
Remove the refs/tags gunk
Fix typos & remove quotes from kubelet-config (#378)
chore: remove circleci config
fix(graphcore-coredns-rke2): Ensure coredns only runs on services-small nodes (#379)
fix: Dockerfile to reduce vulnerabilities (#360)
The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-ALPINE316-CURL-2938013
- https://snyk.io/vuln/SNYK-ALPINE316-CURL-3063712
- https://snyk.io/vuln/SNYK-ALPINE316-EXPAT-3028183
- https://snyk.io/vuln/SNYK-ALPINE316-GIT-3053988
- https://snyk.io/vuln/SNYK-ALPINE316-ZLIB-2976176
Co-authored-by: snyk-bot snyk-bot@snyk.io
chore(traefik): Update forwardingTimeouts to 10m. Using RollingUpdate (#380)
-
chore(traefik): Update forwardingTimeouts to 10m. Using RollingUpdate
-
fixup!: Make timeouts easier to configure
-
fixup!: Remove if clause as Recreate is the only option
-
fixup!: Do not quote the variable type
chore(ps-cloud): include new omni container in cache list
chore: cache notebook_idle 1.0.6
chore: missing ,
chore: increate kube api servers SIT-200 (#381)
Update run
Revert "Update run"
This reverts commit 6a7b2eb6fe62f336e4c936a330bc371c74d4ae09.
chore: update paperspace cluster autoscaler (#383)
Merge branch 'master' into snyk-fix-b0430e0b1891777ffbcf659f39ba83a8
estargz
- feat(gradient-metal-gc): add a new rke2 based metal target
- remove elastic
- fixup! remove elastic
- get it working
- fixup! fixup! remove elastic
- fixup! fixup! fixup! remove elastic
- fixup! fixup! fixup! fixup! remove elastic
- fixup! fixup! fixup! fixup! fixup! remove elastic
- fixup! fixup! fixup! fixup! fixup! fixup! remove elastic
- fixup! fixup! fixup! fixup! fixup! fixup! fixup! remove elastic
- fixup! fixup! fixup! fixup! fixup! fixup! fixup! fixup! remove elastic
- fixup! fixup! fixup! fixup! fixup! fixup! fixup! fixup! fixup! remove elastic
- fixup! fixup! fixup! fixup! fixup! fixup! fixup! fixup! fixup! fixup! remove elastic
- fixup! fixup! fixup! fixup! fixup! fixup! fixup! fixup! fixup! fixup! fixup! remove elastic
- fixup! fixup! fixup! fixup! fixup! fixup! fixup! fixup! fixup! fixup! fixup! fixup! remove elastic
- fixup! fixup! fixup! fixup! fixup! fixup! fixup! fixup! fixup! fixup! fixup! fixup! fixup! remove elastic
- fixup! fixup! fixup! fixup! fixup! fixup! fixup! fixup! fixup! fixup! fixup! fixup! fixup! fixup! remove elastic
- install script
- feat: add ipu model cache path
- fixup! feat: add ipu model cache path
- fixup! fixup! feat: add ipu model cache path
- work
- fixup! Merge branch 'marquis/gc-bare-metal-install' of https://github.com/Paperspace/gradient-installer into marquis/gc-bare-metal-install
- fixup! fixup! Merge branch 'marquis/gc-bare-metal-install' of https://github.com/Paperspace/gradient-installer into marquis/gc-bare-metal-install
- chore: nfs improvement
- chore: notebook volume type (#335)
- add cache images
- Update main.tf
- Update values.yaml.tpl
- add admin team handle
- fixup! add admin team handle
- fixup! fixup! add admin team handle
- fixup! fixup! fixup! add admin team handle
- add unlimit memlock for RDMA
- fixup! add unlimit memlock for RDMA
- legacy
- bbatha/pla 1428 setup docker registry mirror in cluster (#338)
- fixup! bbatha/pla 1428 setup docker registry mirror in cluster (#338)
- fixup! fixup! bbatha/pla 1428 setup docker registry mirror in cluster (#338)
- feat(gradient-metal-gc): enable estargz
[Snyk] Security upgrade hashicorp/terraform from 1.2.3 to 1.2.7
Keeping your Docker base image up-to-date means you’ll benefit from security fixes in the latest version of your chosen image.
Changes included in this PR
- Dockerfile
We recommend upgrading to hashicorp/terraform:1.2.7, as this image has only 0 known vulnerabilities. To do this, merge this pull request, then verify your application still works as expected.
Some of the most important vulnerabilities in your base image include:
| Severity | Priority Score / 1000 | Issue | Exploit Maturity |
| :------: | :-------------------- | :---- | :--------------- |
| 
| 400 | Use After Free SNYK-ALPINE316-BUSYBOX-2953070 | No Known Exploit |
| | 500 | Incorrect Default Permissions SNYK-ALPINE316-CURL-2938013 | No Known Exploit |
| | 400 | Uncontrolled Search Path Element SNYK-ALPINE316-GIT-2949331 | No Known Exploit |
| | 400 | Inadequate Encryption Strength SNYK-ALPINE316-OPENSSL-2941806 | No Known Exploit |
| | 400 | Inadequate Encryption Strength SNYK-ALPINE316-OPENSSL-2941806 | No Known Exploit |
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information: 🧐 View latest project report
Learn how to fix vulnerabilities with free interactive lessons:
🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.
[Snyk] Security upgrade hashicorp/terraform from 1.2.3 to 1.3.0
Keeping your Docker base image up-to-date means you’ll benefit from security fixes in the latest version of your chosen image.
Changes included in this PR
- Dockerfile
We recommend upgrading to hashicorp/terraform:1.3.0, as this image has only 0 known vulnerabilities. To do this, merge this pull request, then verify your application still works as expected.
Some of the most important vulnerabilities in your base image include:
| Severity | Priority Score / 1000 | Issue | Exploit Maturity |
| :------: | :-------------------- | :---- | :--------------- |
| | 400 | Use After Free SNYK-ALPINE316-BUSYBOX-2953070 | No Known Exploit |
| | 400 | Use After Free SNYK-ALPINE316-BUSYBOX-2953070 | No Known Exploit |
| | 500 | Incorrect Default Permissions SNYK-ALPINE316-CURL-2938013 | No Known Exploit |
| | 400 | Uncontrolled Search Path Element SNYK-ALPINE316-GIT-2949331 | No Known Exploit |
| | 500 | Out-of-bounds Write SNYK-ALPINE316-ZLIB-2976176 | No Known Exploit |
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information: 🧐 View latest project report
Learn how to fix vulnerabilities with free interactive lessons:
🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.
chore: update paperspace cluster autoscaler (#383)
