KHV045 - Exposed System Logs

Issue description

The kubelet is leaking system logs via the /logs endpoint. This endpoint is exposed as part of the kubelet’s debug handlers.

Remediation

Disable --enable-debugging-handlers kubelet flag.

References

• kubelet server code
• Kubelet - options