welcome-to-palo-alto-networks[bot]
commented
2 years ago :tada: Thanks for opening this pull request! We really appreciate contributors like you! :raised_hands:
Closed yuvalavra closed 2 years ago
welcome-to-palo-alto-networks[bot]
commented
2 years ago :tada: Thanks for opening this pull request! We really appreciate contributors like you! :raised_hands:
yuvalavra
commented
2 years ago Hi @wfg, can you please merge this one?
welcome-to-palo-alto-networks[bot]
commented
2 years ago :tada: Congrats on getting your first pull request merged! We here at Palo Alto Networks are so grateful! :heart:
Add admission rule that catches suspicious assignment of a controller serviceAccount to pods. This operation may be carried out by attackers that abuse compromised K8s credentials to attach a powerful controller service account to a pod in their control.