removal(sbom-operator): Drop sbom-operator
After running it for a while now, it turns to be not too useful for the SI Infra. The main use-cases for SBOMs at this point are security scans and license compliance. None of these are use-cases that I actually used the produced SBOMs for. One of the main issues for using these SBOMs for security scans was the glaring false-negatives for actual security issues due to a lack of detection of certain packages/application within containers. Instead running renovate and regularly upgrading all parts has proven way more practical. License Compliance, while might being a potential concern, is not on the list of things to worry about right now. Finally another issue with this particular operator, was it breaking for various reasons and resulting in dropping out regularly, which made SBOMs also out of date.
Showing
- apps/k8s01/sbom-operator/kustomization.yaml 0 additions, 9 deletionsapps/k8s01/sbom-operator/kustomization.yaml
- apps/k8s01/sbom-operator/namespace.yaml 0 additions, 31 deletionsapps/k8s01/sbom-operator/namespace.yaml
- apps/k8s01/sbom-operator/release.yaml 0 additions, 98 deletionsapps/k8s01/sbom-operator/release.yaml
- apps/k8s01/sbom-operator/repository.yaml 0 additions, 8 deletionsapps/k8s01/sbom-operator/repository.yaml
- apps/k8s01/sbom-operator/secret.yaml 0 additions, 119 deletionsapps/k8s01/sbom-operator/secret.yaml
Loading
Please register or sign in to comment