pod-security-admission
Safeguard articles tagged "pod-security-admission" — guides, analysis, and best practices for software supply chain and application security.
4 articles
Kubernetes Pod Security Standards explained
A breakdown of Kubernetes' Privileged, Baseline, and Restricted Pod Security Standards, how they replaced PodSecurityPolicy, and where enforcement typically fails.
Kubernetes admission controllers for security
How Kubernetes admission controllers work, why defaults leave clusters exposed, and how Pod Security Admission, OPA Gatekeeper, and Kyverno close the gap.
What Are Kubernetes Admission Controllers
Kubernetes admission controllers intercept every API request before it hits etcd. Here's how validating and mutating webhooks work, what's enabled by default, and where they fail.
What is Admission Control (Kubernetes)
Admission control is the last checkpoint in Kubernetes before an object is written to etcd — here's how webhooks, PSA, and policy engines enforce it.