Feature Requests

Currently, the 'Enforce Git experience' setting is only available for pipelines, inputs, and templates. It would be beneficial to extend this feature to include environments, infra, and overrides v2 to ensure a consistent Git experience across all components.

The App-of-Apps pattern is widely adopted in ArgoCD to orchestrate applications across environments and clusters. We require the ability to define a root “App-of-Apps” in Git that can manage child applications targeting different clusters and namespaces. Currently, Harness GitOps does not support this pattern natively for multi-cluster use cases. Requested Capability: Native support in Harness GitOps for multi-cluster deployments in the App-of-Apps pattern.

Currently, the GSM connector only supports pulling secrets from 1 project. This means that if our secrets are spread across 100 projects, we need to create 100 connectors. Just how multi-project OIDC support for GKE + Cloud Run was released, please add this feature to Google Secret Manager plugin too. GKE : https://developer.harness.io/docs/continuous-delivery/deploy-srv-diff-platforms/kubernetes/define-your-kubernetes-target-infrastructure/#enable-cross-project-access Google Cloud Run: https://developer.harness.io/docs/continuous-delivery/deploy-srv-diff-platforms/google-cloud-functions/google-cloud-run/#enable-cross-project-access

Please enable Testing Intelligence module to support pytest 9.x.

We would like Harness to provide native support for Infrastructure-as-Code (IaC) scanning as part of its security testing orchestration (STO) capabilities. Specifically: Integration with WIZ: Allow a plugin or connector for WIZ to perform IaC scanning during pipeline execution. STO Support for IaC Scanning: Extend STO functionality to include IaC scanning checks, enabling security posture validation for Terraform, CloudFormation, and other IaC templates.

Currently, when a user is added at the Account level and subsequently granted Role Binding at the Project level, the user details of the requester or approver in Security Exemption are not visible to the user. We’ve identified that users need Account-level User View access to view the Security Exemption users. To address this, we require that Security Exemption views be made compatible with Project level User View access.

Hi Team, Please enable the following feature flag CI_ENABLE_MULTILINE_OUTPUTS_SECRETS. Thank you for your support.

Looks like the default docker version is quite old Docker version 20.10.18, build b40c2f6 The latest docker version has quite a few security patches and additional features. Please update the default docker version.

Deployment and service V2 view for dashboard has dimensions for InputKey and Input value. However such dimensions does not exist in the DB Devops view. This enhancement request is to have the dimensions added by default in the DB devops view as well.

Priority: High Account Details: Account ID: HgTKqISVTX-kQSVsWCHEcA Organization: International_Markets Project: testing User: sanjay.chandrashekar@transunion.com Delegate Environment: On-premises Issue Summary: Pipeline execution failing with NullPointerException when attempting to access SLSA generation output variables in SBOM orchestration step. Error Details: java.lang.NullPointerException: Cannot invoke " java.util.Map .containsKey(Object)" because "outputVariables" is null Affected Pipeline: Pipeline Name: airflow_poc Pipeline ID: airflow_poc Failing Stage: Security Scans Failing Step Group: SEAL_SBOM_StepGroup_Template (version 1.42) Specific Step: SBOMOrchestration Root Cause: The SLSA generation output variables feature requires the CDS_CV_INPUT_OUTPUT_VARIABLES_ENABLED feature flag to be enabled for the account. Request: Please enable the CDS_CV_INPUT_OUTPUT_VARIABLES_ENABLED feature flag for account HgTKqISVTX-kQSVsWCHEcA. Additional Context: Using on-premises delegates Pipeline includes S