PodSecurityPolicy controller is disabled on the Kubernetes Engine Clusters TF-S2024

"PodSecurityPolicy" is an admission controller resource created to validate requests to create and update Pods on your cluster.

The "PodSecurityPolicy" defines a set of conditions that Pods must meet to be accepted by the cluster. The request to create or update a Pod can be rejected (or error out) if it doesn't meet the requirements in the PodSecurityPolicy.

We recommend you enable "PodSecurityPolicy" Controller on Kubernetes engine clusters.

Recommended

pod_security_policy_config {
    enabled = true
}

References

• Security Policy Config