Home / Companies / Octopus Deploy / Blog / Post Details
Content Deep Dive

Securing your Kubernetes cluster with Kubewarden

Blog post from Octopus Deploy

Post Details
Company
Date Published
Author
Matthew Casperson
Word Count
845
Company Posts That Month
10
Language
English
Hacker News Points
-
Post removed?
No
Summary

Kubernetes is increasingly becoming the primary operating system for cloud environments, supported by all major cloud providers and adaptable through on-premises deployment, with Helm serving as its package manager. While Kubernetes offers considerable flexibility, it can be challenging to maintain a production cluster without effective controls, as its Role-Based Access Controls (RBAC) only provide limited resource management. Admission controllers like Kubewarden enhance control by allowing teams to inspect and modify resources before deployment, ensuring compliance with specific requirements. Kubewarden supports admission policies written in various languages compiled to WebAssembly, enabling fine-grained control over resource properties. The installation of Kubewarden is simplified through its Helm chart, and it can prevent undesirable resource configurations by implementing policies like psp-capabilities, which can, for instance, block pods with the SYS_TIME capability. This approach provides a higher level of security and control over resource deployment than standard RBAC, as demonstrated through practical deployment scenarios.

Trends Found in this Post
Trend Post Mentions Total Month Mentions Posts Companies MoM
Kubernetes 16 1,341 163 55 +34%
Use This Data

Use this post, company, and trend context to find content marketing opportunities, perform competitive analysis, or address product feature gaps via the Plushcap MCP server or the Plushcap API.