github.com/castai/kvisor@v1.7.1-0.20240516114728-b3572a2607b5/tools/hack/demo2023/demo.md (about) 1 # Kubernetes security automation 2 3 4 ### AppArmor 5 Use program profiles to restrict the capabilities of individual programs. 6 7 ### Seccomp 8 Filter a process's system calls. 9 10 ### Capabilities 11 Give a process some privileges, but not all the privileges of the root user. 12 13