Detections
Analytics

Ensure liveness probe is configured for containers in all Kubernetes workloads

LOW

Description

No liveness probe will ensure there is no recovery in case of unexpected errors or unresponsive container.

Remediation

Numerous resource kinds can use use liveness probes in Kubernetes. To add a liveness probe, configure a livenessProbe section within the spec.containers section for the specific kind. To learn more about how to configure a liveness probe and all of the necessary components, see the Kubernetes documentation.

References:
https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/

Policy Details

Rule Reference ID: AC_K8S_0070
CSP: Kubernetes
Remediation Available: No
Domain: Security Best Practices
Resource: kubernetes_pod
Resource Category: Compute
Resource Type: Pod

Frameworks