search

XenitAB / gatekeeper-library

Collection of OPA Gatekeeper policies that can be used in your Kubernetes cluster.
MIT License
14 stars 7 forks source link

Pod disallow service account token by default #74

Closed NissesSenap closed 2 years ago

NissesSenap commented 2 years ago

Overall pods don't need k8s api tokens to run. Disable it by default but you can opt in if needed. Fixes #47

NissesSenap commented 2 years ago

Before this PR get's merged we need to write some docs. https://github.com/XenitAB/xenitab.github.io/pull/120