GKE - Kubernetes best practices for simple demo service.
-
Updated
Mar 20, 2021 - Python
GKE - Kubernetes best practices for simple demo service.
Demos for several kubernetes security features
Get started with Kubernetes pod security policies
Use Kubernetes Pod Security Policy to secure your clusters.
Curated resources help you prepare for the CNCF/Linux Foundation CKS 2021 "Kubernetes Certified Security Specialist" Certification exam. Please provide feedback or requests by raising issues, or making a pull request. All feedback for improvements are welcome. thank you.
A Kubewarden policy that controls usage of sysctls
This Kubewarden Policy is a replacement for the Kubernetes Pod Security Policy that controls containers user and groups
Replacement for the Kubernetes Pod Security Policy that controls the usage of /proc mount types
A Kubewarden Pod Security Policy that controls usage of allowPrivilegeEscalation
Replacement for the Kubernetes Pod Security Policy that controls the usage of hostpaths
Replacement for the Kubernetes Pod Security Policy that controls the usage of volumes
A Kubewarden policy that enforces root filesystem to be readonly
A Kubewarden Pod Security Policy that controls usage of Seccomp profiles
Replacement for the Kubernetes Pod Security Policy that controls the usage of SELinux
Replacement for the Kubernetes Pod Security Policy that controls the usage of host namespaces
A Kubewarden Policy that limits the ability to create privileged containers
Replacement for the Kubernetes Pod Security Policy that controls the allowed `flexVolume` drivers
A Kubewarden Policy that verifies all the signatures of the container images referenced by a Pod
A Pod Security Policy that controls Container Capabilities
Replacement for the Kubernetes Pod Security Policy that controls the usage of fsGroup in the pod security context
Add a description, image, and links to the pod-security-policy topic page so that developers can more easily learn about it.
To associate your repository with the pod-security-policy topic, visit your repo's landing page and select "manage topics."