-
## Summary
Hi team,
PodSecurityPolicy API, initially deprecated in Kubernetes v1.21, was [entirely removed i](https://kubernetes.io/blog/2022/08/04/upcoming-changes-in-kubernetes-1-25/#podsecuri…
-
As architect, I would like the production kubernetes cluster to automatically apply security updates based on the *Node Image* security channel.
This should be scheduled to apply at a configurable t…
-
**This is a Feature Request**
**What would you like to be added**
Revise https://kubernetes.io/docs/reference/issues-security/official-cve-feed/ to have a page about each vulnerability, rend…
-
Tracking issue for the Kubernetes third-party security audit for 2024:
- [ ] Define audit scope
- [ ] Create RFP
- [ ] Finalize dates: RFP opening and closing dates, question period, vendor selec…
-
# The 4C's of Cloud Native Security
![image](https://user-images.githubusercontent.com/414141/87148182-aa54f480-c2cd-11ea-9b32-9e1e015652df.png)
How certificates are used by your cluster
Kube…
-
targetGroupBinding failing when both cluster_security_group_tags and node_security_group_tags have the tag kubernetes.io/cluster/
Like NLB, we want to select additional tag for the controller to l…
-
As a CSP, I want to continuously scan my container infrastructure for security weaknesses so that I can prevent security gaps in my Kubernetes clusters.
This issue focusses on the **Trivy Operator*…
-
-
Currently, the [`k8sdisallowanonymous` template](https://github.com/open-policy-agent/gatekeeper-library/blob/master/library/general/disallowanonymous/template.yaml) disallows bindings to the followin…
-
With growing number of eyes on Kubernetes, the number of CVEs related to Kubernetes have increased. Although most CVEs are regularly fixed that directly or indirectly or transitively impact Kubernetes…