A presentation at London Platform User Group in in London, UK by Marcus Noble
Webhooks in Kubernetes play an essential role in extending the functionality of the cluster and go a long way towards the power Kubernetes offers. However, as with any technology, they also come with their set of risks and even potential disaster.
In this talk we’ll go through scenarios that could possibly impact an otherwise healthy Kubernetes cluster by making use of a misconfigured or malicious webhook. Can we take down the whole cluster? Can we block access to others?
For each risk we’ll take a look at the ways we can try to avoid them or mitigate their impact, if at all possible.
By attending this talk, attendees will gain a better understanding of the potential risks associated with webhooks and the measures they can take to ensure a more secure and stable Kubernetes cluster.
The following resources were mentioned during the presentation or are useful additional information.
My talk from Rejekts EU 2024 about ValidatingAdmissionPolicies
Here’s what was said about this presentation on social media.