Description: Discussion about Seccomp policies, why they're useful and what are the reason they don't have wide adoption in the ecosystem.
Benefits to Ecosystem: Seccomp is one of the best ways to limit blast radius of container exploits. It can protect the kernel from malicious actors executing in containers and it also limits what an attacker can do within the container. Despite the support Kubernetes has for Seccomp profiles, the adoption is very low. Have high adoption would raise the security level considerably.
Description: Discussion about Seccomp policies, why they're useful and what are the reason they don't have wide adoption in the ecosystem. Benefits to Ecosystem: Seccomp is one of the best ways to limit blast radius of container exploits. It can protect the kernel from malicious actors executing in containers and it also limits what an attacker can do within the container. Despite the support Kubernetes has for Seccomp profiles, the adoption is very low. Have high adoption would raise the security level considerably.