containers-roadmap icon indicating copy to clipboard operation
containers-roadmap copied to clipboard

Published 20 hours ago verified publisher icon aws

[EKS] [request]: Add support for securityContext in kube-proxy add-on configuration

Open cbugneac-nex opened this issue 1 year ago • 0 comments

Community Note

  • Please vote on this issue by adding a 👍 reaction to the original issue to help the community and maintainers prioritize this request
  • Please do not leave "+1" or "me too" comments, they generate extra noise for issue followers and do not help prioritize the request
  • If you are interested in working on this issue or have submitted a pull request, please leave a comment

Tell us about your request Provide support for kube-proxy add-on to specify security context in configuration. Specifically looking to be able to drop capabilities like this (and add only necessary ones):

securityContext: 
   capabilities: 
      drop: 
      - ALL

At the moment, the latest version v1.26.11-eksbuild.4 doesn't support it.

Which service(s) is this request for? EKS

Tell us about the problem you're trying to solve. What are you trying to do, and why is it hard? Cyber Cecurity team want to reduce attack surface and improve EKS cluster security posture.

Are you currently working around this issue? Nope, as add-on config is managed by AWS.

Additional context None

Attachments None.

cbugneac-nex avatar Feb 15 '24 15:02 cbugneac-nex