For additional protection, customize your runtime rules to
prevent or
block actions that access the metadata services or the open local kubelet port.
Compliance rules should include checks set to
alert or
block to ensure your containers and hosts are following the best practices for Kubernetes.