turbot/kubernetes_compliance

Control: Job containers argument admission control plugin where either PodSecurityPolicy or SecurityContextDeny should be enabled

Description

This check ensures that the container in the Job has argument admission control plugin where either PodSecurityPolicy or SecurityContextDeny is enabled.

Usage

Run the control in your terminal:

powerpipe control run kubernetes_compliance.control.job_container_argument_security_context_deny_enabled

Snapshot and share results via Turbot Pipes:

powerpipe login
powerpipe control run kubernetes_compliance.control.job_container_argument_security_context_deny_enabled --share

SQL

This control uses a named query:

job_container_argument_security_context_deny_enabled

Tags