Kubernetes Policies

How to Use this Page

This page lists the AWS Kubernetes Policies that Bridgecrew helps you enforce. You can browse this page, or search for a specific policy ID or short title. For each policy, press the link for more details about a policy and its fix options.

Ensure AWS EKS cluster security group is not overly permissive to all traffic
Policy ID: BC_AWS_KUBERNETES_1

Ensure AWS EKS cluster endpoint access is publicly disabled
Policy ID: BC_AWS_KUBERNETES_2

Ensure AWS EKS cluster has secrets encryption enabled
Policy ID: BC_AWS_KUBERNETES_3

Ensure AWS EKS control plane logging is enabled
Policy ID: BC_AWS_KUBERNETES_4

Ensure AWS EKS node group has implicit SSH access from 0.0.0.0/0
Policy ID: BC_AWS_KUBERNETES_5

Ensure Kubernetes secrets are encrypted using CMKs managed in AWS KMS
Policy ID: BC_AWS_KUBERNETES_6