Dear Colleague,
We are looking to find ways to help developers find security anti-patterns, i.e., violation of security best practices in Kubernetes manifests.
We have noticed an instance of not using rolling updates. Rolling updates helps to automatically apply continuous updates. Without continuous updates, a Kubernetes cluster will be susceptible to a denial of service attack, according to researchers: https://arxiv.org/pdf/2006.15275.pdf .
Location of anti-pattern:
Dear Colleague,
We are looking to find ways to help developers find security anti-patterns, i.e., violation of security best practices in Kubernetes manifests.
We have noticed an instance of not using rolling updates. Rolling updates helps to automatically apply continuous updates. Without continuous updates, a Kubernetes cluster will be susceptible to a denial of service attack, according to researchers: https://arxiv.org/pdf/2006.15275.pdf .
Location of anti-pattern:
CloudFlix/monitor/kubernetes-prometheus/manifests/grafana/deployment.yaml
Line 10 in e29eaee