GitHub user potiuk added a comment to the discussion: Out of the box gunicorn_config.py doesn't allow cipher suite configuration.
> Please be advised that excessive use of environment variables can be an > indicator of compromise(IOC). It's the first time I hear it. Could you please elaborate what your assesement of IOC indicator is taken from? What is it based on? Variables are excessively used to configure various aspects of Airlfow. Most of the configuration of Helm chart is used using multiple 10s of env variables. So if this is threat, I would like to see it explained, because maybe we have a wrong approach. And there are MANY ways you are expected to use env variables to configure various aspects of Airlfow. So if this is a threat - can you please explain what's the scenario ? GitHub link: https://github.com/apache/airflow/discussions/43338#discussioncomment-11045947 ---- This is an automatically sent email for [email protected]. To unsubscribe, please send an email to: [email protected]
