Table: k8s_core_service_accounts

This table shows data for Kubernetes (K8s) Core Service Accounts.

The primary key for this table is uid.

Columns

NameType
_cq_iduuid
_cq_parent_iduuid
contextutf8
kindutf8
api_versionutf8
nameutf8
namespaceutf8
uid (PK)utf8
resource_versionutf8
generationint64
deletion_grace_period_secondsint64
labelsjson
annotationsjson
owner_referencesjson
finalizerslist<item: utf8, nullable>
secretsjson
image_pull_secretsjson
automount_service_account_tokenbool

Example Queries

These SQL queries are sampled from CloudQuery policies and are compatible with PostgreSQL.

Pod service account tokens disabled

SELECT
  DISTINCT
  uid AS resource_id,
  'Pod service account tokens disabled' AS title,
  context AS context,
  namespace AS namespace,
  name AS resource_name,
  CASE
  WHEN automount_service_account_token THEN 'fail'
  ELSE 'pass'
  END
    AS status
FROM
  k8s_core_service_accounts;