Potential insecure secret reference

[debuggerchen]

The Terraform CRD can reference many kinds of credentials in other namespaces, which may be a security risk, as a namespace-scoped user can leverage this to access unauthorized secrets. Perhaps we can leverage Webhook/CEL for better authorization?

[isaaguilar]

👋 @debuggerchen Thanks for asking.

It's true the controller can reach across namespaces with its ClusterRole, however, the actual workflow execution is namespaced including the CRD (see the CRD manifest).

I haven't heard of Webhook/CEL yet, but I'll check that out when I get a chance to see what kind of benefits it can offer the project, perhaps, it can add more security to the controller.