feat: disable automount token on engine

In order to avoid wrong behavior on the engine, it's preferable to disable automount token to deny then engine to have k8s api access on the cluster it's running

Cargo.toml

@@ -28,7 +28,7 @@ lazy_static = "1.4.0"
 
 # tar gz
 flate2 = "1.0.20" # tar gz
-tar = "0.4.35"
+tar = ">=0.4.36"
 
 # logger
 tracing = "0.1.26"
@@ -47,7 +47,7 @@ serde = "1.0.126"
 serde_json = "1.0.64"
 serde_derive = "1.0.126"
 # AWS deps
-tokio = { version = "1.6.1", features = ["full"] }
+tokio = { version = "1.10.0", features = ["full"] }
 rusoto_core = "0.46.0"
 rusoto_sts = "0.46.0"
 rusoto_credential = "0.46.0"

lib/common/bootstrap/charts/qovery-engine/templates/statefulset.yaml

@@ -19,6 +19,7 @@ spec:
       labels:
         {{- include "qovery-engine.selectorLabels" . | nindent 8 }}
     spec:
+      automountServiceAccountToken: false
       terminationGracePeriodSeconds: {{ .Values.terminationGracePeriodSeconds }}
       {{- with .Values.imagePullSecrets }}
       imagePullSecrets:

test_utilities/Cargo.lock

@@ -1012,7 +1012,7 @@ dependencies = [
  "http 0.2.1",
  "indexmap",
  "slab",
- "tokio 1.7.0",
+ "tokio 1.10.0",
  "tokio-util 0.6.7",
  "tracing",
 ]
@@ -1236,7 +1236,7 @@ dependencies = [
  "itoa",
  "pin-project",
  "socket2 0.4.0",
- "tokio 1.7.0",
+ "tokio 1.10.0",
  "tower-service",
  "tracing",
  "want 0.3.0",
@@ -1277,7 +1277,7 @@ dependencies = [
  "bytes 1.0.1",
  "hyper 0.14.7",
  "native-tls",
- "tokio 1.7.0",
+ "tokio 1.10.0",
  "tokio-native-tls",
 ]
 
@@ -2074,7 +2074,7 @@ dependencies = [
  "tar",
  "tera",
  "timeout-readwrite",
- "tokio 1.7.0",
+ "tokio 1.10.0",
  "tracing",
  "tracing-subscriber",
  "trust-dns-resolver",
@@ -2507,7 +2507,7 @@ dependencies = [
  "serde",
  "serde_json",
  "serde_urlencoded 0.7.0",
- "tokio 1.7.0",
+ "tokio 1.10.0",
  "tokio-native-tls",
  "url 2.2.0",
  "wasm-bindgen",
@@ -2556,7 +2556,7 @@ dependencies = [
  "rustc_version",
  "serde",
  "serde_json",
- "tokio 1.7.0",
+ "tokio 1.10.0",
  "xml-rs",
 ]
 
@@ -2574,7 +2574,7 @@ dependencies = [
  "serde",
  "serde_json",
  "shlex",
- "tokio 1.7.0",
+ "tokio 1.10.0",
  "zeroize",
 ]
 
@@ -2670,7 +2670,7 @@ dependencies = [
  "serde",
  "sha2",
  "time 0.2.24",
- "tokio 1.7.0",
+ "tokio 1.10.0",
 ]
 
 [[package]]
@@ -3109,9 +3109,9 @@ dependencies = [
 
 [[package]]
 name = "tar"
-version = "0.4.35"
+version = "0.4.37"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "7d779dc6aeff029314570f666ec83f19df7280bb36ef338442cfa8c604021b80"
+checksum = "d6f5515d3add52e0bbdcad7b83c388bb36ba7b754dda3b5f5bc2d38640cdba5c"
 dependencies = [
  "filetime",
  "libc",
@@ -3320,9 +3320,9 @@ dependencies = [
 
 [[package]]
 name = "tokio"
-version = "1.7.0"
+version = "1.10.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "c79ba603c337335df6ba6dd6afc38c38a7d5e1b0c871678439ea973cd62a118e"
+checksum = "01cf844b23c6131f624accf65ce0e4e9956a8bb329400ea5bcc26ae3a5c20b0b"
 dependencies = [
  "autocfg 1.0.1",
  "bytes 1.0.1",
@@ -3398,7 +3398,7 @@ source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "f7d995660bd2b7f8c1568414c1126076c13fbb725c40112dc0120b78eb9b717b"
 dependencies = [
  "native-tls",
- "tokio 1.7.0",
+ "tokio 1.10.0",
 ]
 
 [[package]]
@@ -3508,7 +3508,7 @@ dependencies = [
  "futures-sink",
  "log",
  "pin-project-lite 0.2.6",
- "tokio 1.7.0",
+ "tokio 1.10.0",
 ]
 
 [[package]]
@@ -3624,7 +3624,7 @@ dependencies = [
  "smallvec 1.6.1",
  "thiserror",
  "tinyvec",
- "tokio 1.7.0",
+ "tokio 1.10.0",
  "url 2.2.0",
 ]
 
@@ -3644,7 +3644,7 @@ dependencies = [
  "resolv-conf",
  "smallvec 1.6.1",
  "thiserror",
- "tokio 1.7.0",
+ "tokio 1.10.0",
  "trust-dns-proto",
 ]