Do Not Allow Sharing Host IPC Namespace

Ensure not allowing sharing host IPC namespace.

Policy Details

Policy Subtype
Build
Severity
Medium
Template Type
Kubernetes

Build Rules

Do not allow sharing host IPC namespace.
JSON Query:
$.spec.template.spec.hostIPC is true
Recommendation:
Recommended solution for not sharing host IPC namespace.
It is recommended not to sharing host IPC namespace. Please make sure "hostIPC" has value set to "false".
For example:
"spec": { "hostIPC": false, "containers": [ { "name": "pause", "image": "k8s.gcr.io/pause" } ] }

Recommended For You