February 18, 2025, Conformity—New Rule
GCP
- GKE-023: Use Sandbox with gVisor for GKE Clusters Nodes: GKE Sandbox provides an extra layer of isolation between containers and the underlying host kernel, mitigating the risk of container escape vulnerabilities.