Skip to main content

Kubernetes Service Account Token

Description

General

  • Documentation: https://kubernetes.io/docs/reference/access-authn-authz/authentication/
  • Summary: Kubernetes is a system for automating deployment, scaling, and management of containerized applications. JSON Web Tokens are used for authentication in Kubernetes, often for service accounts or short-lived access tokens. These tokens are sensitive as they grant access to Kubernetes clusters and resources.

Revoke the secret

Kubernetes JWTs can be revoked by deleting the associated service account or regenerating the token. For short-lived tokens, expiration ensures automatic revocation.

Details for Kubernetes JSON Web Token

  • Family: token

  • Category: other

  • Company: Kubernetes

  • High recall: False

  • Validity check available: False

  • Analyzer available: False

  • Minimum number of matches: 1

  • Occurrences found for one million commits: 3.14

  • Prefixed: False

Details for Kubernetes JSON Web Token with host

  • Family: token

  • Category: other

  • Company: Kubernetes

  • High recall: False

  • Validity check available: True

  • Analyzer available: False

  • On-premise instances exist: False

  • Only valid secrets raise an alert: False

  • Minimum number of matches: 2

  • Occurrences found for one million commits: 1.8

  • Prefixed: False