Vendor services misconfigurations

GKE Nodepool creating nodes without COS image

Risk Level

Informational (4)

Platform(s)

  • N/A

Compliance Frameworks

Description

COS is an operating system image for Compute Engine VMs optimized for running containers. With COS, you can bring up your containers on Google Cloud Platform quickly, efficiently, and securely. It was detected that {GcpGkeCluster.NodePools} is using nodes with a different image.

  • Recommended Mitigation

    Consider changing the nodepool's default image to use COS image. For more info: <a href="https://cloud.google.com/kubernetes-engine/docs/how-to/node-images" target="_blank" rel="noopener noreferrer">https://cloud.google.com/kubernetes-engine/docs/how-to/node-images</a>

Need help?

Get a free Security Risk Assessment. Start today

See Orca in action See Orca in action-> View a 10 minute recorded demo or sign up for a personalized one-on-one walk-through.