From 0ceafc374db22f21d35a72288d76a55464fd9b92 Mon Sep 17 00:00:00 2001
From: Erich Blume <blume.erich@gmail.com>
Date: Tue, 21 Apr 2026 09:59:48 -0700
Subject: [PATCH] C0: review operator-managed-pods CC (2026-04-21)

Tailscale operator still defaults to privileged proxy pods with no
seccomp profile (issue #7359 open upstream). Control remains valid.
Added note about ProxyClass + device plugin remediation path.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
---
 compensating-controls.yaml | 9 +++++++--
 1 file changed, 7 insertions(+), 2 deletions(-)

diff --git a/compensating-controls.yaml b/compensating-controls.yaml
index b441341..67bbf75 100644
--- a/compensating-controls.yaml
+++ b/compensating-controls.yaml
@@ -77,11 +77,16 @@ controls:
       operator, not user manifests. Operator is tracked in
       service-versions.yaml and regularly updated.
     created: 2026-03-30
-    last-reviewed: 2026-03-30
+    last-reviewed: 2026-04-21
     notes: >-
       Verify operator version is current via 'mise run service-review'.
       Check Tailscale changelog for security fixes. If operator adds
-      seccomp support, remove these mutes.
+      seccomp support, remove these mutes. As of 2026-04-21: still no
+      default seccomp on operator-generated pods (upstream issue #7359
+      open). A ProxyClass + generic device plugin can downgrade proxies
+      from privileged to NET_ADMIN+NET_RAW and set seccompProfile —
+      potential future remediation to remove the seccomp mute without
+      waiting for upstream defaults.
 
   - id: ephemeral-privileged-jobs
     description: >-