Lateral movement

Namespace without network policy defined

Risk Level

Informational (4)

Platform(s)
  • N/A

Compliance Frameworks

Description

Network Policies are namespace scoped. When a network policy is introduced to a given namespace, all traffic not allowed by the policy is denied. However, if there are no network policies in a namespace all traffic will be allowed into and out of the pods in that namespace. Orca has detected that {K8sNamespace} namespace does not have a network policy defined.
  • Recommended Mitigation

    Consider adding a network policy for {K8sNamespace} namespace.