Closed varshavaradarajan closed 5 years ago
Many cloud providers do not enable the pod security policy admission controller. So, pod security policies may or may not take effect while creating and updating pods. One way to ensure that pods adhere to good security practices is to iterate through the pods and check security contexts.
@timoreimann - ready for review again. :) Would you mind taking a look when you're free?
Instead of iterating through pods, we recommend that users create pod security policies with
privileged: false
,runAsRoot: true
, etc. Will raise a separate PR.