OWASP Kubernetes Top 10

This skill encodes the OWASP Kubernetes Top 10 for secure cluster and workload design and review. References are loaded per risk. Based on OWASP Kubernetes Top 10 2022.

When to Read Which Reference

Risk	Read
K01 Insecure Workload Configurations	references/k01-insecure-workload-configurations.md
K02 Supply Chain Vulnerabilities	references/k02-supply-chain-vulnerabilities.md
K03 Overly Permissive RBAC	references/k03-permissive-rbac.md
K04 Lack of Centralized Policy Enforcement	references/k04-policy-enforcement.md
K05 Inadequate Logging and Monitoring	references/k05-logging-monitoring.md
K06 Broken Authentication Mechanisms	references/k06-broken-authentication.md
K07 Missing Network Segmentation	references/k07-network-segmentation.md
K08 Secrets Management Failures	references/k08-secrets-management.md
K09 Misconfigured Cluster Components	references/k09-misconfigured-cluster-components.md
K10 Outdated and Vulnerable Components	references/k10-vulnerable-components.md

owasp-kubernetes-top-10

OWASP Kubernetes Top 10

When to Read Which Reference

More from yariv1025/skills

owasp-mobile-top-10

owasp-api-security-top-10

agent-dev-guardrails

owasp-iot-top-10

owasp-serverless-top-10

owasp-privacy-top-10