kubectl logs <pod-name> -n <namespace>
. This will provide you with the logs of the pod, where you can find more details about the fileless execution event and the associated process or container.kubectl get pods
command to list all the pods in the cluster.kubectl get pod <pod-name> -o yaml
command.securityContext
section in the pod’s YAML manifest to restrict the usage of memfd_create.allowUntrusted
field to false
in the securityContext
section to prevent the usage of memfd_create.kubectl apply -f <path-to-updated-manifest>
command to apply the changes to the affected pod.kubectl get pod <pod-name> -o yaml
.