> ## Documentation Index
> Fetch the complete documentation index at: https://cloudanix.com/docs/llms.txt
> Use this file to discover all available pages before exploring further.

# Kubernetes Audit

## Checks performed

* [ECR Repository Tag Should Be Immutable](kubernetesmonitoring/rules/are_ecr_tags_immutable)
* [Endpoints Should Not Be Publicly Accessible](kubernetesmonitoring/rules/are_endpoints_notpublic)
* [ECS Tasks Should Have Network Mode Set To AWSVPC](kubernetesmonitoring/rules/ecs_awsvpc_networking_enabled)
* [ECS Container Insights Should Be Enabled](kubernetesmonitoring/rules/ecs_cluster_container_insights_enable)
* [ECS Tasks Should Be Configured To Run As Non-Privileged](kubernetesmonitoring/rules/ecs_containers_nonprivileged)
* [ECS Should Have Readonly Access For Containers](kubernetesmonitoring/rules/ecs_containers_readonly_access)
* [Secrets in Container Environment Variables](kubernetesmonitoring/rules/ecs_no_environment_secrets)
* [ECS Task Definition Log Configuration Should Be Enabled](kubernetesmonitoring/rules/ecs_task_definition_log_configuration_enabled)
* [ECS Task Definitions Has Memory Limit Set](kubernetesmonitoring/rules/ecs_task_definition_memory_hard_limit)
* [ECS Tasks Should Not Have Root As User](kubernetesmonitoring/rules/ecs_task_definition_nonroot_user)
* [ECS Tasks Should Not Have PidMode As Host](kubernetesmonitoring/rules/ecs_task_definition_pid_mode_check)
* [ECS Tasks With Network Mode Host Should Have Limited Permissions](kubernetesmonitoring/rules/ecs_task_definition_user_for_host_mode)
* [EFS Access Point Should Enforce Root Directory](kubernetesmonitoring/rules/efs_access_point_enforce_root_directory)
* [EFS Access Points User Identity Should Be Enforced](kubernetesmonitoring/rules/efs_access_point_enforce_user_identity)
* [EKS Clusters Encryption Of Secrets Should Be Enabled](kubernetesmonitoring/rules/eks_secrets_encrypted)
* [Latest ECS Fargate Platform Version Should Be Set](kubernetesmonitoring/rules/fargate_latest_platform_version)
* [ECR Image Repositories Should Have A Lifecycle Policy Attached](kubernetesmonitoring/rules/is_ecr_lifecycle_policy_attached)
* [ECR Repositories Should Be Private](kubernetesmonitoring/rules/is_ecr_repo_private)
* [Image Vulnerability Scanning Should Be Enabled For Amazon ECR](kubernetesmonitoring/rules/is_ecr_vuln_scan_enabled)
* [EKS Clusters Should Have High Availability](kubernetesmonitoring/rules/is_ha_enabled)
* [EKS Clusters Should Have Logging Enabled](kubernetesmonitoring/rules/is_k8s_logging_enabled)
* [EKS Clusters Should Use The Latest Stable Version of Kubernetes](kubernetesmonitoring/rules/is_version_recent)
* [EKS Cluster Should Allow Inbound Traffic only from Port 443(HTTPS)](kubernetesmonitoring/rules/sg_secure_only)
