The Kubernetes Pod Security Policy (PSP) was one of the first reliable security controls introduced by Kubernetes. It was an Admission Controller that simply checked whether or not the Pods being deployed met the minimum level of security expected for that cluster. It was a critical component in securing a cluster but… it will soon be removed!
As you may know as of Kubernetes version 1.21 Pod Security Policy have been deprecated. There are plans for removal from the project in version 1.25.
But Styra’s got your back! In this video we will demonstrate the implementation of common Pod Security Policy using OPA and Styra DAS.
