github.com/aquasecurity/trivy-iac@v0.8.1-0.20240127024015-3d8e412cf0ab/avd_docs/google/gke/AVD-GCP-0050/docs.md

github.com/aquasecurity/trivy-iac@v0.8.1-0.20240127024015-3d8e412cf0ab/avd_docs/google/gke/AVD-GCP-0050/docs.md (about)

     1  
     2  You should create and use a minimally privileged service account to run your GKE cluster instead of using the Compute Engine default service account.
     3  
     4  ### Impact
     5  Service accounts with wide permissions can increase the risk of compromise
     6  
     7  <!-- DO NOT CHANGE -->
     8  {{ remediationActions }}
     9  
    10  ### Links
    11  - https://cloud.google.com/kubernetes-engine/docs/how-to/hardening-your-cluster#use_least_privilege_sa
    12  
    13