Feedback on Detected Misconfigurations
Greetings,
We are some security researchers who have built a scanner to detect configurations that can be used to conduct attacks for Kubernetes pods. For your repository, we have found a few misconfigurations in the following locations:
Misconfiguration name: PRIV_DEFAULT_SA
Location-1: https://gitlab.com/uplex/varnish/k8s-ingress/-/blob/master/deploy/rbac-varnish.yaml?ref_type=heads#L19-22
Misconfiguration name: NO_DEFAULT_NSPACE
Please give us feedback. Do you think these are valid instances of misconfigurations? Will you fix them?