Authors: Ricardo Katz (VMware), James Strong
(Chainguard) The Ingress may be one of the most targeted
components of Kubernetes.An Ingress typically defines an HTTP
reverse proxy, exposed to the Internet, containing multiple
websites, and with some privileged access to Kubernetes API (such
as to read Secrets relating to TLS certificates and their private
keys). While it is a risky component in your architecture, it is
still the most popular way to properly expose your services.
Ingress-NGINX has been part of security assessments that figured
out we