Kubernetes originally had a feature calledPodSecurityPolicy (PSP), which provided controls to restrict pod behavior.
Official docs:
“PodSecurityPolicy was deprecated in Kubernetes v1.21 and removed in v1.25.”
“Pod Security Standards (PSS) replace PodSecurityPolicy (PSP) with a simpler, policy-driven approach.”
PSP was often complex and hard to manage, so it was replaced by Pod Security Admission (PSA) which enforcesPod Security Standards.
[References:, Kubernetes Docs — PodSecurityPolicy (deprecated): https://kubernetes.io/docs/concepts/security/pod-security-policy/, Kubernetes Blog — PodSecurityPolicy Deprecation: https://kubernetes.io/blog/2021/04/06/podsecuritypolicy-deprecation-past-present-and-future/, ]
Submit