Kubernetes v1.35: Timbernetes (The World Tree Release)
… This means containers can operate as root internally while actually being mapped to an unprivileged user on the host, reducing the risk of privilege escalation in the event of a compromise. …
… This means containers can operate as root internally while actually being mapped to an unprivileged user on the host, reducing the risk of privilege escalation in the event of a compromise. …
… Furthermore this improvement keeps service account credentials from being a privilege escalation path for nodes. …