💼 4.1.5 Ensure that Service Account Tokens are only mounted where necessary (Automated)
- ID:
/frameworks/cis-gke-v1.8.0/04/01/05
Description​
Service accounts tokens should not be mounted in pods except where the workload running in the pod explicitly needs to communicate with the API server
Similar​
- Sections
/frameworks/cis-gke-v1.0.0/05/01/06
Similar Sections (Take Policies From)​
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| 💼 CIS GKE v1.0.0 → 💼 5.1.6 Ensure that Service Account Tokens are only mounted where necessary (Not Scored) | no data |
Sub Sections​
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|