turbot/kubernetes_compliance

Control: ClusterRoleBinding subjects should not actively use default service accounts

Description

Default service accounts should not be used by ClusterRoleBinding subjects.

Usage

Run the control in your terminal:

powerpipe control run kubernetes_compliance.control.cluster_role_binding_default_service_account_binding_not_active

Snapshot and share results via Turbot Pipes:

powerpipe login
powerpipe control run kubernetes_compliance.control.cluster_role_binding_default_service_account_binding_not_active --share

SQL

This control uses a named query:

cluster_role_binding_default_service_account_binding_not_active

Tags