Unrestricted access to create pods KUBELIN-W1001
Anti-pattern
Major
Indicates when a subject (Group/User/ServiceAccount) has create access to Pods. CIS Benchmark 5.1.4: The ability to create pods in a cluster opens up possibilities for privilege escalation and should be restricted, where possible.
Remediation
Where possible, remove create access to pod objects in the cluster.