Capacity
APP.4.4.A9
1
Rule
Severity: Medium
Ensure no ClusterRoleBindings set for default Service Account
1
Rule
Severity: Medium
Ensure no RoleBindings set for default Service Account
1
Rule
Severity: Medium
Restrict Automounting of Service Account Tokens
1
Rule
Severity: Medium
Ensure Usage of Unique Service Accounts
1
Rule
Severity: High
Ensure that the RBAC setup follows the principle of least privilege
1
Rule
Severity: Medium
Minimize Wildcard Usage in Cluster and Local Roles
1
Rule
Severity: Medium
Drop Container Capabilities
1
Rule
Severity: Medium
Limit Container Capabilities
1
Rule
Severity: Medium
Limit Containers Ability to use the HostDir volume plugin
1
Rule
Severity: Medium
Limit Containers Ability to bind to privileged ports
1
Rule
Severity: Medium
Limit Access to the Host IPC Namespace
1
Rule
Severity: Medium
Limit Use of the CAP_NET_RAW
1
Rule
Severity: Medium
Limit Access to the Host Network Namespace
1
Rule
Severity: Medium
Limit Containers Ability to Escalate Privileges
1
Rule
Severity: Medium
Limit Privileged Container Use
1
Rule
Severity: Medium
Limit Access to the Host Process ID Namespace
1
Rule
Severity: Medium
Limit Container Running As Root User
Patternfly
PatternFly elements
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
Modules