This control checks if workloads specifications have sensitive information in their environment variables.Note, this control is configurable. See below the details.
CronJob, DaemonSet, Deployment, Job, Pod, ReplicaSet, StatefulSet
Check if the workload has sensitive information in environment variables, by using list of known sensitive key names.
Use Kubernetes secrets or Key Management Systems to store credentials.
This control can be configured using the following parameters. Read CLI/UI documentation about how to change parameters.
Secrets are stored as a key/value pair. The names of the keys/values may change from one company to the other. Below you can find some examples of popular value phrases that Kubescape is searching for
Secrets are stored as a key/value pair. The names of the keys/values may change from one company to the other. Here you can find some examples of popular key phrases that Kubescape is searching for
Updated 28 days ago