3 things every developer should know about K8s security

securityContext runAsNonRoot runAsUser privileged procMount allowPrivilegeEscalation readOnlyRootFilesystem PodSecurityPolicy RBAC seccomp Linux Capabilities AppArmor SELinux NetworkPolicy Falco Open Policy Agent gVisor Kata Containers Nabla Containers Service Mesh mTLS KubeSec KubeBench