Enhance Kubernetes Security and Secret Management with Immutable Secrets
Secrets can be easily accessed and modified. A secret consists of several components, e.g., a token. A change in the token is difficult to trace.
A change in a secret can even cause damage in the cluster. (Accidental) modification of a secret, which is located in the kube-system namespace, can paralyze the cluster in the worst case.
Since v.1.19 immutable Secrets, which cannot be changed once created.
To do it, change the following in the yaml:
apiVersion: v1 kind: Secret metadata: ... data: ... immutable: true
Please feel free to contact us for any question that is not answered yet.
We are looking forward to get in contact with you!
Hinter Stöck 17
+49 7433 93724 00