Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Vulnerability Scan fails for Secrets Store CSI Driver Azure Plugin Daemonset #1754

Open
mustaFAB53 opened this issue Feb 12, 2025 · 0 comments
Open

Vulnerability Scan fails for Secrets Store CSI Driver Azure Plugin Daemonset #1754

mustaFAB53 opened this issue Feb 12, 2025 · 0 comments
Labels
enhancement New feature or request

Comments

@mustaFAB53
Copy link

Describe the solution you'd like

On running Prisma Cloud Scan at runtime, we could see following checks getting failed for Secrets Store CSI Driver Azure plugin daemonset

  • Do not share the host's network namespace
  • Do not share the host's UTS namespace
  • Do not disable default seccomp profile
  • Container is running as root

I am looking for the resolution of the same to enhance our security posture

Environment:

  • Secrets Store CSI Driver version: v1.4.7
  • Azure Key Vault provider version: v1.6.0
  • Kubernetes version: 1.30
  • Cluster type: AKS
@mustaFAB53 mustaFAB53 added the enhancement New feature or request label Feb 12, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@mustaFAB53