Information
Create and enforce Pod Security Policies for your cluster.
Rationale:
A Pod Security Policy is a cluster-level resource that controls the actions that a pod can perform and what it has the ability to access. The `PodSecurityPolicy` objects define a set of conditions that a pod must run with in order to be accepted into the system. Pod Security Policies are comprised of settings and strategies that control the security features a pod has access to and hence this must be used to control pod access permissions.
NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.
Solution
Follow the documentation and create and enforce Pod Security Policies for your cluster. Additionally, you could refer the 'CIS Security Benchmark for Docker' and follow the suggested Pod Security Policies for your environment.
Impact:
Pods must align with the Pod Security Policies enforced on the cluster.