Personal opinion: the second. If the container is popped so you can read environ... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		falcolas on Sept 30, 2022 \| parent \| context \| favorite \| on: Kubernetes Security: 10 Best Practices from the In... Personal opinion: the second. If the container is popped so you can read environment variables, you can read files too.

mschuster91 on Sept 30, 2022 [–]

Not always. Stuff like exposed debug toolbars or over-exposing stacktraces can leak environment variables, but (usually not) files.

Consider applying for YC's Fall 2025 batch! Applications are open till Aug 4
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact