From 7934b37a0848c4496cab11f8f6bd6f3c8a5c5a27 Mon Sep 17 00:00:00 2001 From: Shlomo Zalman Heigh Date: Thu, 29 Aug 2024 11:18:47 -0400 Subject: [PATCH] Update cheatsheets/Kubernetes_Security_Cheat_Sheet.md Co-authored-by: mackowski <35339942+mackowski@users.noreply.github.com> --- cheatsheets/Kubernetes_Security_Cheat_Sheet.md | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/cheatsheets/Kubernetes_Security_Cheat_Sheet.md b/cheatsheets/Kubernetes_Security_Cheat_Sheet.md index 35f2f3efa5..7dcd5c8471 100644 --- a/cheatsheets/Kubernetes_Security_Cheat_Sheet.md +++ b/cheatsheets/Kubernetes_Security_Cheat_Sheet.md @@ -426,7 +426,8 @@ Cluster administrators should properly organize and and enforce policy on cluste If more granular policy enforcement is required beyond the three profiles (Privileged, Baseline, Restricted), Third party admission controllers like OPA Gatekeeper or Kyverno, or built in Validating Admission Policy can be utilized. -**Use Pod security policies to control the security-related attributes of pods, which includes container privilege levels.** +#### Use Pod security policies to control the security-related attributes of pods, which includes container privilege levels. + > **Warning** > Kubernetes deprecated Pod Security Policies in favor of Pod Security Standards and the Pod Security Admission Controller, and was removed from Kubernetes in v1.25. Consider using Pod Security Standards and the Pod Security Admission Controller instead.