turbot/kubernetes_compliance

Control: CronJob containers argument admission control plugin where either PodSecurityPolicy or SecurityContextDeny should be enabled

Description

This check ensures that the container in the CronJob has argument admission control plugin where either PodSecurityPolicy or SecurityContextDeny is enabled.

Usage

Run the control in your terminal:

powerpipe control run kubernetes_compliance.control.cronjob_container_argument_security_context_deny_enabled

Snapshot and share results via Turbot Pipes:

powerpipe login
powerpipe control run kubernetes_compliance.control.cronjob_container_argument_security_context_deny_enabled --share

SQL

This control uses a named query:

cronjob_container_argument_security_context_deny_enabled

Tags