Despite the difficulties we’ve all experienced during this pandemic, it has been fascinating to watch how human beings have come together as communities all over the world to support each other, and our Cloud Native community is no different.

A security vulnerability (CVE-2020-8555) with a Medium severity has been reported that affects following versions of Kubernetes: Note, an attack using this vulnerability requires permission to create a pod or StorageClass and would typically only be granted to internal administrators or developers within an organization. It is possible to mitigate an attack by implementing policies using Gatekeeper and restricting StorageClass using Kubernetes access controls.