cleanstart/kubectl

Verified Publisher

By CleanStart

Updated about 22 hours ago

Hardened Kubernetes CLI tool container on CleanStart's minimal, secure base OS.

Image
Developer tools
0

10K+

cleanstart/kubectl repository overview

Container Documentation for Kubectl Documentation Official kubectl container image providing a secure, enterprise-ready command-line interface for managing Kubernetes clusters. Features FIPS-compliant cryptography, security hardening, and comprehensive cluster management capabilities for production environments.

📌 Base Foundation: Production-ready container from cleanstart.

Image Path: kubectl
Registry: cleanstart Registry

Key Features Core capabilities and strengths of this container

Common Use Cases Typical scenarios where this container excels

Pull Latest Image Download the container image from the registry

docker pull cleanstart/kubectl:latest
docker pull cleanstart/kubectl:latest-dev

Basic Run Run the container with basic configuration

docker run -it --name kubectl-test cleanstart/kubectl:latest

Production Deployment Deploy with production security settings

docker run -d --name kubectl-prod \
  --read-only \
  --security-opt=no-new-privileges \
  --user 1000:1000 \
  cleanstart/kubectl:latest

Volume Mount Mount local directory for persistent data

docker run -v /app:/app cleanstart/kubectl:latest

Port Forwarding Run with custom port mappings

docker run -p 8001:8001 cleanstart/kubectl:latest proxy

Environment Variables Configuration options available through environment variables

VariableDefaultDescription
ENVproductionEnvironment mode
LOG_LEVELinfoLogging level

Security Best Practices Recommended security configurations and practices

Kubernetes Security Context Recommended security context for Kubernetes deployments

securityContext:
  allowPrivilegeEscalation: false
  capabilities:
    drop:
    - ALL
  readOnlyRootFilesystem: true
  runAsUser: 1000
  runAsGroup: 1000

Documentation Resources Essential links and resources for further information

---

Vulnerability Disclaimer CleanStart offers Docker images that include third-party open-source libraries and packages maintained by independent contributors. While CleanStart maintains these images and applies industry-standard security practices, it cannot guarantee the security or integrity of upstream components beyond its control.

Users acknowledge and agree that open-source software may contain undiscovered vulnerabilities or introduce new risks through updates. CleanStart shall not be liable for security issues originating from third-party libraries, including but not limited to zero-day exploits, supply chain attacks, or contributor-introduced risks.

Security remains a shared responsibility: CleanStart provides updated images and guidance where possible, while users are responsible for evaluating deployments and implementing appropriate controls.

Tag summary

Content type

Image

Digest

sha256:29d30f05d

Size

40.6 MB

Last updated

about 22 hours ago

docker pull cleanstart/kubectl:1.36.2-amd64