CIS Kubernetes Benchmark 1.5.1 # 5.1

[saurabhpandit]

5.1 RBAC and Service Accounts

• 5.1.1 Ensure that the cluster-admin role is only used where required
• 5.1.2 Minimize access to secrets
• 5.1.3 Minimize wildcard use in Roles and ClusterRoles
• 5.1.4 Minimize access to create pods
• 5.1.5 Ensure that default service accounts are not actively used
• 5.1.6 Ensure that Service Account Tokens are only mounted where necessary

[issue-label-bot]

Issue-Label Bot is automatically applying the label feature_request to this issue, with a confidence of 0.56. Please mark this comment with 👍 or 👎 to give our bot feedback!

Links: app homepage, dashboard and code for this bot.

[issue-label-bot]

Issue-Label Bot is automatically applying the label feature_request to this issue, with a confidence of 0.56. Please mark this comment with 👍 or 👎 to give our bot feedback!

Links: app homepage, dashboard and code for this bot.