ghndrx/k8s-manifests
1
0
Fork 0
mirror of https://github.com/ghndrx/k8s-manifests.git synced 2026-02-10 06:45:09 +00:00
Code Issues Packages Projects Releases Wiki Activity

feat(security): add Pod Security Standards (PSA) namespace configurations

Browse Source 
- Add namespace templates for privileged, baseline, and restricted levels
- Include compliant deployment examples for baseline and restricted
- Add migration audit script for checking namespace compliance
- Document PSA levels, enforcement modes, and migration strategy

Follows Kubernetes Pod Security Admission best practices for 2025+.
Reference: https://kubernetes.io/docs/concepts/security/pod-security-standards/
This commit is contained in:
Greg Hendrickson
2026-02-06 18:02:00 +00:00
parent ef86c1a6c7
commit 58e8140f36
8 changed files with 380 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
README.md
View File

@@ -15,12 +15,14 @@ Production-ready Kubernetes manifests with security best practices, resource lim
├── secrets/ # Secret management patterns
├── networkpolicies/ # Network isolation
├── rbac/ # Role-based access control
── monitoring/ # Prometheus, alerts, ServiceMonitors
── monitoring/ # Prometheus, alerts, ServiceMonitors
└── pod-security/ # Pod Security Standards (PSA) configuration
```
## Features
- ✅ Security contexts and pod security standards
-**Pod Security Admission (PSA)** namespace configurations
- ✅ Resource requests/limits
- ✅ Liveness/readiness probes
- ✅ Network policies for isolation