Loading controls...
Control: ClusterRoles permissions for managing the configuration of validation or mutation admission webhooks should be minimized
Description
Minimize the permissions granted to ClusterRoles for managing admission webhooks. It is recommended to follow the principle of least privilege to enhance security.
Usage
Run the control in your terminal:
powerpipe control run kubernetes_compliance.control.cluster_role_with_validating_or_mutating_admission_webhook_configurations
Snapshot and share results via Turbot Pipes:
powerpipe loginpowerpipe control run kubernetes_compliance.control.cluster_role_with_validating_or_mutating_admission_webhook_configurations --share
SQL
This control uses a named query:
cluster_role_with_validating_or_mutating_admission_webhook_configurations