During the month, contributed security-focused enhancements to the keycloak/keycloak and cilium/tetragon repositories. Developed fine-grained password reset permissions for Keycloak FGAPv2, introducing a RESET_PASSWORD scope enforced in backend logic and exposed through new permission checks, with supporting documentation and tests to ensure compatibility with deny-overrides and secure-by-default requirements. In the Tetragon Helm chart, added envFrom support to export-stdout, enabling environment variable propagation from ConfigMaps and Secrets for improved configuration management. The work emphasized maintainability and admin usability, leveraging Java, Helm, and Kubernetes, and focused on strengthening authorization controls and secure configuration propagation across both projects.