[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"topic-bezopasnost-konteynerov":3,"topic-questions-bezopasnost-konteynerov":12},{"id":4,"name":5,"slug":6,"description":7,"emoji":8,"color":9,"sortOrder":10,"questionCount":11,"knownCount":10,"learningCount":10,"weakCount":10},9,"Безопасность контейнеров","bezopasnost-konteynerov","Вопросы по теме Безопасность контейнеров","🛡️","red",0,23,[13,26,33,41,50,61,71,81,88,96,105,113,121,129,136,146,154,162,170,179,187,198,206],{"id":14,"slug":15,"question":16,"difficulty":17,"tags":18,"topicId":4,"topicSlug":6,"topicName":5,"topicEmoji":8,"status":24,"starred":25},307,"kakie-osnovnye-ugrozy-bezopasnosti-konteynerov-sushchestvuyut","Какие основные угрозы безопасности контейнеров существуют?","junior",[19,20,21,22,23],"угрозы","kubernetes","attack-surface","container-security","docker",null,false,{"id":27,"slug":28,"question":29,"difficulty":17,"tags":30,"topicId":4,"topicSlug":6,"topicName":5,"topicEmoji":8,"status":24,"starred":25},308,"chto-takoe-printsip-naimenshikh-privilegiy-i-kak-on-primenyaetsya-v-konteynerakh","Что такое принцип наименьших привилегий и как он применяется в контейнерах?",[20,31,32,22,23],"least-privilege","securityContext",{"id":34,"slug":35,"question":36,"difficulty":17,"tags":37,"topicId":4,"topicSlug":6,"topicName":5,"topicEmoji":8,"status":24,"starred":25},309,"kak-zapustit-konteyner-ne-ot-polzovatelya-root","Как запустить контейнер не от пользователя root?",[38,39,22,40,23],"root","USER","runAsNonRoot",{"id":42,"slug":43,"question":44,"difficulty":17,"tags":45,"topicId":4,"topicSlug":6,"topicName":5,"topicEmoji":8,"status":24,"starred":25},310,"zachem-ispolzovat-minimalnye-bazovye-obrazy-i-kakie-varianty-sushchestvuyut","Зачем использовать минимальные базовые образы и какие варианты существуют?",[46,47,22,48,49,23],"base-image","alpine","jlink","distroless",{"id":51,"slug":52,"question":53,"difficulty":54,"tags":55,"topicId":4,"topicSlug":6,"topicName":5,"topicEmoji":8,"status":24,"starred":25},311,"kak-skanirovat-docker-obrazy-na-uyazvimosti","Как сканировать Docker-образы на уязвимости?","middle",[56,57,58,59,60,22],"grype","vulnerability-scanning","clair","trivy","snyk",{"id":62,"slug":63,"question":64,"difficulty":54,"tags":65,"topicId":4,"topicSlug":6,"topicName":5,"topicEmoji":8,"status":24,"starred":25},312,"chto-takoe-podpis-i-verifikatsiya-obrazov","Что такое подпись и верификация образов?",[66,67,68,69,70,22],"image-signing","docker-content-trust","sigstore","kyverno","cosign",{"id":72,"slug":73,"question":74,"difficulty":54,"tags":75,"topicId":4,"topicSlug":6,"topicName":5,"topicEmoji":8,"status":24,"starred":25},313,"kak-pravilno-upravlyat-sekretami-v-konteynerakh","Как правильно управлять секретами в контейнерах?",[76,77,22,78,79,80],"sealed-secrets","kubernetes-secrets","external-secrets","secrets","vault",{"id":82,"slug":83,"question":84,"difficulty":54,"tags":85,"topicId":4,"topicSlug":6,"topicName":5,"topicEmoji":8,"status":24,"starred":25},314,"kak-ispolzovat-multistage-builds-dlya-povysheniya-bezopasnosti","Как использовать multistage builds для повышения безопасности?",[86,87,22,48,23],"multistage-build","dockerfile",{"id":89,"slug":90,"question":91,"difficulty":54,"tags":92,"topicId":4,"topicSlug":6,"topicName":5,"topicEmoji":8,"status":24,"starred":25},315,"zachem-i-kak-ispolzovat-read-only-faylovuyu-sistemu-v-konteynerakh","Зачем и как использовать read-only файловую систему в контейнерах?",[20,93,94,22,95,23],"tmpfs","emptyDir","read-only",{"id":97,"slug":98,"question":99,"difficulty":54,"tags":100,"topicId":4,"topicSlug":6,"topicName":5,"topicEmoji":8,"status":24,"starred":25},316,"chto-takoe-network-policies-v-kubernetes-i-kak-oni-zashchishchayut-prilozhenie","Что такое Network Policies в Kubernetes и как они защищают приложение?",[101,20,102,22,103,104],"cilium","network-policies","микросегментация","calico",{"id":106,"slug":107,"question":108,"difficulty":54,"tags":109,"topicId":4,"topicSlug":6,"topicName":5,"topicEmoji":8,"status":24,"starred":25},317,"chto-takoe-pod-security-standards-i-pod-security-admission","Что такое Pod Security Standards и Pod Security Admission?",[20,110,111,22,112],"pod-security-standards","PodSecurityPolicy","PSA",{"id":114,"slug":115,"question":116,"difficulty":54,"tags":117,"topicId":4,"topicSlug":6,"topicName":5,"topicEmoji":8,"status":24,"starred":25},318,"chto-takoe-security-context-v-kubernetes","Что такое Security Context в Kubernetes?",[118,20,119,120,32,22],"AppArmor","capabilities","seccomp",{"id":122,"slug":123,"question":124,"difficulty":54,"tags":125,"topicId":4,"topicSlug":6,"topicName":5,"topicEmoji":8,"status":24,"starred":25},319,"kak-rabotaet-rbac-v-kubernetes","Как работает RBAC в Kubernetes?",[126,20,127,22,128],"authorization","rbac","access-control",{"id":130,"slug":131,"question":132,"difficulty":54,"tags":133,"topicId":4,"topicSlug":6,"topicName":5,"topicEmoji":8,"status":24,"starred":25},320,"kak-ogranichenie-resursov-zashchishchaet-ot-dos-atak","Как ограничение ресурсов защищает от DoS-атак?",[20,134,135,22,23],"dos-protection","resource-limits",{"id":137,"slug":138,"question":139,"difficulty":140,"tags":141,"topicId":4,"topicSlug":6,"topicName":5,"topicEmoji":8,"status":24,"starred":25},321,"chto-takoe-supply-chain-security-v-kontekste-konteynerov","Что такое Supply Chain Security в контексте контейнеров?","senior",[142,143,144,70,145,22],"supply-chain","slsa","dependency-check","sbom",{"id":147,"slug":148,"question":149,"difficulty":54,"tags":150,"topicId":4,"topicSlug":6,"topicName":5,"topicEmoji":8,"status":24,"starred":25},322,"chto-takoe-docker-bench-for-security","Что такое Docker Bench for Security?",[151,152,22,153,23],"kube-bench","audit","cis-benchmark",{"id":155,"slug":156,"question":157,"difficulty":54,"tags":158,"topicId":4,"topicSlug":6,"topicName":5,"topicEmoji":8,"status":24,"starred":25},323,"kak-zashchitit-docker-daemon","Как защитить Docker daemon?",[159,160,22,161,23],"rootless-docker","tls","daemon",{"id":163,"slug":164,"question":165,"difficulty":140,"tags":166,"topicId":4,"topicSlug":6,"topicName":5,"topicEmoji":8,"status":24,"starred":25},324,"kak-rabotaet-izolyatsiya-konteynerov-na-urovne-yadra-linux","Как работает изоляция контейнеров на уровне ядра Linux?",[167,119,168,120,22,169],"cgroups","linux","namespaces",{"id":171,"slug":172,"question":173,"difficulty":140,"tags":174,"topicId":4,"topicSlug":6,"topicName":5,"topicEmoji":8,"status":24,"starred":25},325,"chto-takoe-runtime-security-i-kak-rabotaet-falco","Что такое Runtime Security и как работает Falco?",[175,22,176,177,178],"falco","ebpf","monitoring","runtime-security",{"id":180,"slug":181,"question":182,"difficulty":54,"tags":183,"topicId":4,"topicSlug":6,"topicName":5,"topicEmoji":8,"status":24,"starred":25},326,"kak-organizovat-protsess-obnovleniya-i-patchinga-bazovykh-obrazov","Как организовать процесс обновления и патчинга базовых образов?",[184,59,22,185,186,23],"renovate","patching","dependabot",{"id":188,"slug":189,"question":190,"difficulty":140,"tags":191,"topicId":4,"topicSlug":6,"topicName":5,"topicEmoji":8,"status":24,"starred":25},327,"kak-vstroit-proverki-bezopasnosti-v-ci-cd-payplayn","Как встроить проверки безопасности в CI\u002FCD пайплайн?",[192,193,194,195,196,197,22],"dast","sca","shift-left","jenkins","cicd","sast",{"id":199,"slug":200,"question":201,"difficulty":54,"tags":202,"topicId":4,"topicSlug":6,"topicName":5,"topicEmoji":8,"status":24,"starred":25},328,"chto-takoe-owasp-docker-top-10","Что такое OWASP Docker Top 10?",[203,204,205,22,23],"owasp","best-practices","checklist",{"id":207,"slug":208,"question":209,"difficulty":140,"tags":210,"topicId":4,"topicSlug":6,"topicName":5,"topicEmoji":8,"status":24,"starred":25},329,"kak-obespechit-bezopasnost-java-prilozheniya-v-konteynere-v-bankovskoy-srede","Как обеспечить безопасность Java-приложения в контейнере в банковской среде?",[20,211,212,22,213,214],"java","pci-dss","comprehensive","banking"]