Feedback on Detected Misconfigurations

Greetings,

We are some security researchers who have built a scanner to detect configurations that can be used to conduct attacks for Kubernetes pods. For your repository, we have found a few misconfigurations in the following locations:

Misconfiguration name: HOSTPATH

Location-1: https://gitlab.com/ndevox/kubernetes-elastic-logging/-/blob/master/filebeat-ds.yaml?ref_type=heads#L111-112

Misconfiguration name: HOSTPATH

Location-2: https://gitlab.com/ndevox/kubernetes-elastic-logging/-/blob/master/metricbeat-ds.yaml?ref_type=heads#L141-142

Misconfiguration name: HOSTPATH

Location-3: https://gitlab.com/ndevox/kubernetes-elastic-logging/-/blob/master/metricbeat-ds.yaml?ref_type=heads#L144-145

Misconfiguration name: HOSTPATH

Location-4: https://gitlab.com/ndevox/kubernetes-elastic-logging/-/blob/master/metricbeat-ds.yaml?ref_type=heads#L147-148

Misconfiguration name: RUN_AS_USER

Location-5: https://gitlab.com/ndevox/kubernetes-elastic-logging/-/blob/master/filebeat-ds.yaml?ref_type=heads#L84-85

Misconfiguration name: RUN_AS_USER

Location-6: https://gitlab.com/ndevox/kubernetes-elastic-logging/-/blob/master/metricbeat-ds.yaml?ref_type=heads#L115-116

Misconfiguration name: RUN_AS_USER

Location-7: https://gitlab.com/ndevox/kubernetes-elastic-logging/-/blob/master/metricbeat-ds.yaml?ref_type=heads#L224-225

Misconfiguration name: INSECURE_HTTP

Location-8: https://gitlab.com/ndevox/kubernetes-elastic-logging/-/blob/master/kibana-deployment.yaml?ref_type=heads#L32-33

Misconfiguration name: TRUE_HOST_NET

Location-9: https://gitlab.com/ndevox/kubernetes-elastic-logging/-/blob/master/metricbeat-ds.yaml?ref_type=heads#L88

Please give us feedback. Do you think these are valid instances of misconfigurations? Will you fix them?