Tanzu Kubernetes Grid

Jan 1, 0001

Definition

Tanzu Kubernetes Grid (TKG) is a Kubernetes runtime provided by VMware that enables the deployment and management of Kubernetes clusters across various environments, including on-premises, public clouds, and edge locations. It integrates with VMware’s suite of tools to provide a consistent and secure Kubernetes experience, offering features like automated lifecycle management, integrated networking, and observability.

Secure Settings Example

apiVersion: v1
kind: Pod
metadata:
  name: secure-pod
spec:
  containers:
  - name: secure-container
    image: secure-image:latest
    securityContext:
      runAsNonRoot: true
      capabilities:
        drop:
        - ALL
      readOnlyRootFilesystem: true
  podSecurityContext:
    fsGroup: 1000

Insecure Settings Example

apiVersion: v1
kind: Pod
metadata:
  name: insecure-pod
spec:
  containers:
  - name: insecure-container
    image: insecure-image:latest
    securityContext:
      runAsNonRoot: false
      capabilities:
        add:
        - NET_ADMIN
      readOnlyRootFilesystem: false
  podSecurityContext:
    fsGroup: 0