Static Analysis manual approach kubesec OPA Conftest.

Run specific version do not run as root not shell read only filesystem.

OPA is not Kubenretes specific general purpose policy engine An admission controller is a piece of code that intercepts requests to the Kubernetes API server prior to.

CKS exam topic: mTLS — concepts, configuration, and practice exercises.

Define privilege and access control for Pod/Container.

CKS exam topic: container runtimes — concepts, configuration, and practice exercises.

Check if you can access ETCD at master node.

Upgrade Master Node procedure.

There is an flag when starting `kube-aoiserver` called.

Basic Seed job that creates a definitions for other jobs.