Nirmata Documentation

Curated Policies
Nirmata Website

Curated Policies

View page source Edit this page Create child page Create documentation issue

Curated Policies
Pod Security Standards
Restricted profile

Restricted profile

The Restricted policy is aimed at enforcing current Pod hardening best practices, at the expense of some compatibility. It is targeted at operators and developers of security-critical applications, as well as lower-trust users.

Click on each of the controls to know more about them.

disallow-capabilities-strict
disallow-privilege-escalation
require-run-as-non-root-user
require-run-as-non-root
restrict-seccomp-strict
restrict-volume-types

Disallow Capabilities Strict

Disallow Privilege Escalation

Require Run As Non-root

Require Run As Non-root User

Restrict Seccomp Strict

Restrict Volume Types

© 2025 Nirmata Inc.All Rights ReservedPrivacy Policy