github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/avd_docs/kubernetes/general/AVD-KSV-0041/docs.md

github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/avd_docs/kubernetes/general/AVD-KSV-0041/docs.md (about)

     1  
     2  Viewing secrets at the cluster-scope is akin to cluster-admin in most clusters as there are typically at least one service accounts (their token stored in a secret) bound to cluster-admin directly or a role/clusterrole that gives similar permissions.
     3  
     4  ### Impact
     5  <!-- Add Impact here -->
     6  
     7  <!-- DO NOT CHANGE -->
     8  {{ remediationActions }}
     9  
    10  ### Links
    11  - https://kubernetes.io/docs/concepts/security/rbac-good-practices/
    12  
    13