As per Kubernetes Security Hardening guidelines, automounting API credentials should be disabled, to prevent a potentially compromised Pod resource to run API commands against Kubernetes clusters.
Currently, the field automountServiceAccountToken is not supported in the helm chart.
As per Kubernetes Security Hardening guidelines, automounting API credentials should be disabled, to prevent a potentially compromised Pod resource to run API commands against Kubernetes clusters.
Currently, the field
automountServiceAccountToken
is not supported in the helm chart.It would be nice if it could be included.