Contact UsTry it for free
© 2026 Direct Cursus Technology L.L.C.

Viewing Kubernetes control rules

Written by
Updated at February 9, 2026

Note

This feature is at the Preview stage.

To view Kubernetes control rules, you need the security-deck.viewer role or higher for the folder containing the KSPM module resources.

To view active Kubernetes control rules:

  1. Go to Yandex Security Deck.

  2. In the left-hand panel, select Control rules.

  3. At the top of the window, click More and select the workspace for which you want to view the rule info. Use search, if required.

  4. On the Security control rules page that opens, go to the Kubernetes® tab. The section that opens lists the control rules that form a part of the security standards specified for the current workspace.

    For each rule, the table displays the following information:

    Tip

    If you need to, you can change the info columns displayed in the table. Do it by clicking in the row with the table column headers, selecting the info columns you need, and clicking Apply.

    • : Rule criticality level; this icon indicates how security-critical the rule is:

      • : Remark
      • : Low severity
      • : Medium severity
      • : High severity

    • Control rule: Rule name and brief summary.

    • Rule sets: Icon(s) for the security standards that are using this rule. If the icon is colored, it means the rule is checked for the corresponding standard. If the icon is gray, it means it is not.

    • Rule type: How the infrastructure controlled in the workspace is checked for compliance with this rule:

      • runtime
      • admission

    • ID: Rule ID in Yandex Cloud.

    • Violations: Number of detected rule violations.

  5. To view detailed information about a specific Kubernetes control rule, click the table row with its name. The detailed info window that opens includes the following tabs:

    The Overview tab contains:

    • Rule ID.

    • Set of security requirements the rule applies to.

    • Date and time of the most recent security check.

    • Check method:

      • runtime: Automatic checking of container runtime environments.
      • admission: Automatic Kubernetes object checking.

    • Details on the monitored features, their configurations, or actions performed with them.

    The Violations tab lists control rule violations detected during the checks. Detected violations will not appear in this list if they satisfy the exception criteria specified for the rule.

    The Recommendations tab provides guides and solutions to assist you with rule compliance.

Previous
Working with a dashboard
Next
Performing security compliance checks