🔒 Security Alert: Selenium Grid users beware! Default no-auth settings put you at risk for crypto mining attacks. Lock it down now to prevent injection of miners and proxyjacking scripts. Stay safe online! #CyberSecurity #SeleniumGrid

If you are a user of #SeleniumGrid, you would want to be aware of #SeleniumGreed. While it is not the greatest moment to have a named security vulnerability, educating could help here. Don't leave your grids for people to use in the internet. https://www.selenium.dev/blog/2024/protecting-unsecured-selenium-grid/

Tonight

Set up a #kubernetes cluster on #digitalocean
Installed #nginx controller and k8s dashboard
Configured #seleniumgrid with #helmchart especially the hostname with #cloudflare dns and the extra environment variable on #chrome node for managed downloads.
Finally tested with #mocha chai

Used again #DigitalOcean droplet and #kubernetes to test helm and #SeleniumGrid managed downloads from chromenode to my javascript code client via an nginx ingress and it went all smooth and cool!
I like DOKS for educational exercises! It seems cheaper and more friendly than AKS that I've also tried (and GKE as well).
Btw in the last year I've learnt so much about cloud infrastructure, devops, k8s, azure, terraform, gitlab etc...