Skip to content

The NKG controller should run with least privileges #545

New issue
New issue
Closed
#1004
Closed
The NKG controller should run with least privileges#545
#1004
Assignees
sjberman
Labels
area/securityFor security best practicesrefinedRequirements are refined and the issue is ready to be implemented.size/smallEstimated to be completed within ~2 days
Milestone
 
v1.0.0
@ja20222

Description

@ja20222
ja20222
opened on Apr 5, 2023

As a potential user of NKG that wants to run NKG on a permission restricted cluster
I want the NKG controller to run with the least privileges it needs to operate
So that I can run NKG in my permission restricted cluster.

Acceptance

  • Ensure that the privileges on the pod are restricted to only what is necessary
  • Ensure that RBAC permissions for the service account associated with NKG pods are restricted to only what is necessary.

Metadata

Metadata

Assignees

Labels

area/securityFor security best practicesrefinedRequirements are refined and the issue is ready to be implemented.size/smallEstimated to be completed within ~2 days

Type

No type

Projects

No projects

Milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions