cluster-security

I avoid handing broad cluster access to workloads just because it is convenient during setup. Service accounts should have the minimum verbs and resources needed for the job, nothing more. Over-permissioned cluster identities make post-exploitation mu

Cluster flat networking is convenient right up until an attacker lands in one pod. I define NetworkPolicy resources early so east-west communication is explicit, reviewable, and least-privilege by default. This makes later incident containment far mor