You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: content/en/docs/concepts/security/overview.md
+2Lines changed: 2 additions & 0 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -120,6 +120,7 @@ Area of Concern for Containers | Recommendation |
120
120
Container Vulnerability Scanning and OS Dependency Security | As part of an image build step, you should scan your containers for known vulnerabilities.
121
121
Image Signing and Enforcement | Sign container images to maintain a system of trust for the content of your containers.
122
122
Disallow privileged users | When constructing containers, consult your documentation for how to create users inside of the containers that have the least level of operating system privilege necessary in order to carry out the goal of the container.
123
+
Use container runtime with stronger isolation | Select [container runtime classes](/docs/concepts/containers/runtime-class/) that provider stronger isolation
123
124
124
125
## Code
125
126
@@ -152,3 +153,4 @@ Learn about related Kubernetes security topics:
152
153
*[Data encryption in transit](/docs/tasks/tls/managing-tls-in-a-cluster/) for the control plane
153
154
*[Data encryption at rest](/docs/tasks/administer-cluster/encrypt-data/)
154
155
*[Secrets in Kubernetes](/docs/concepts/configuration/secret/)
0 commit comments