Vendor services misconfigurations

GKE with out Pod Security Policy feature enabled

Risk Level

Informational (4)

Platform(s)
Compliance Frameworks

Description

Pod Security Policy should be used to prevent privileged containers where possible and enforce namespace and workload configurations. It was detected that {GcpGkeCluster} has the Pod Security Policy feature disabled.

  • Recommended Mitigation

    Consider enabling the Pod Security Policy feature on {GcpGkeCluster}. For more info: <a href="https://cloud.google.com/kubernetes-engine/docs/how-to/pod-security-policies," target="_blank" rel="noopener noreferrer">https://cloud.google.com/kubernetes-engine/docs/how-to/pod-security-policies,</a> <a href="https://kubernetes.io/docs/concepts/policy/pod-security-policy" target="_blank" rel="noopener noreferrer">https://kubernetes.io/docs/concepts/policy/pod-security-policy</a>

Need help?

Get a free Security Risk Assessment. Start today

See Orca in action See Orca in action-> View a 10 minute recorded demo or sign up for a personalized one-on-one walk-through.