Webhooks in Kubernetes play an essential role in extending the functionality of the cluster and go a long way towards the power Kubernetes offers. However, as with any technology, they also come with their set of risks and even potential disaster.

In this talk we’ll go through scenarios that could possibly impact an otherwise healthy Kubernetes cluster by making use of a misconfigured or malicious webhook. Can we take down the whole cluster? Can we block access to others?

For each risk we’ll take a look at the ways we can try to avoid them or mitigate their impact, if at all possible.

By attending this talk, attendees will gain a better understanding of the potential risks associated with webhooks and the measures they can take to ensure a more secure and stable Kubernetes cluster.