1 Service Accounts
1 Workloads
6 Bindings
6 Low
Description
Scans SBOMs for vulnerabilities
Overview
| Identity | Namespace | Automount | Secrets | Permissions | Workloads | Risk |
|---|---|---|---|---|---|---|
vulnerability-operator | default | ❌ | — | 6 | 1 | Low |
Numbers in the last two columns indicate how many bindings or workloads involve each ServiceAccount.
Identities
🤖 vulnerability-operator
Namespace: default | Automount: ❌
🔑 Permissions (6)
| Role | Resource | Verbs | Risk | Tags |
|---|---|---|---|---|
ClusterRole vulnerability-operator | apps/daemonsets | get | Low | |
ClusterRole vulnerability-operator | apps/deployments | get | Low | |
ClusterRole vulnerability-operator | batch/jobs | get | Low | |
ClusterRole vulnerability-operator | core/pods | list | Low | |
ClusterRole vulnerability-operator | apps/replicasets | get | Low | |
ClusterRole vulnerability-operator | apps/statefulsets | get | Low |
⚠️ Potential Abuse (1)
The following security risks were found based on the above permissions:
📦 Workloads (1)
| Kind | Name | Container | Image |
|---|---|---|---|
| Deployment | vulnerability-operator | vulnerability-operator | ghcr.io/ckotzbauer/vulnerability-operator:0.28.10@sha256:c33ecd445dd3b276e79edf078f51a07a331d064539515d38ac347bf71e5a38b1 |