In this article, you'll discuss the security risks associated with the deprecation of Pod Security Policies and potential issues with webhook validation that could lead to a compromised cluster

➤ https://medium.com/@skraga/how-to-mess-with-admission-webhooks-and-have-a-giant-security-hole-b4f3e8c0c9b9

This article will discuss how Kubernetes combines and uses several authorization modes (e.g. RBAC, Node, ABAC, etc.)

➜ https://yuminlee2.medium.com/kubernetes-authorization-part1-authorization-modes-overview-18538759e2d5

In this tutorial, you will learn how to store your sensitive secrets in a self-hosted Vault and share them with a Kubernetes cluster

➤ https://medium.com/@verove.clement/vault-externals-secrets-in-kubernetes-cluster-407f251a5e89

kubectl-np-viewer is a kubectl plugin to visualize network policy rules

➜ https://github.com/runoncloud/kubectl-np-viewer

In this 2-part tutorial, you'll learn how to create policies, how to build and publish them as a bundle served by Nginx and register them with OPA

You'll also look at example policies to restrict the tolerations that pods can use

➜ https://dev.to/gitguardian/open-policy-agent-with-kubernetes-tutorial-pt-1-3lfn

KubeHound is a Kubernetes attack graph tool that allows automated calculation of attack paths between assets in a cluster

➜ https://github.com/DataDog/KubeHound

In this tutorial, you will learn how to write a validating admission controller to check if Deployments have the proper liveness and readiness probes in place

➤ https://medium.com/@ivan.herrmann89/validate-if-kubernetes-deployment-have-livenessprobe-and-readinessprobe-enabled-6424738deeec