turbot/kubernetes_compliance

Control: PodTemplate containers argument admission control plugin where either PodSecurityPolicy or SecurityContextDeny should be enabled

Description

This check ensures that the container in the PodTemplate has argument admission control plugin where either PodSecurityPolicy or SecurityContextDeny is enabled.

Usage

Run the control in your terminal:

powerpipe control run kubernetes_compliance.control.pod_template_container_argument_security_context_deny_enabled

Snapshot and share results via Turbot Pipes:

powerpipe login
powerpipe control run kubernetes_compliance.control.pod_template_container_argument_security_context_deny_enabled --share

SQL

This control uses a named query:

pod_template_container_argument_security_context_deny_enabled

Tags