services / Google Cloud / Kubernetes Engine Services

Services provide a stable network endpoint for one or more pods, allowing them to be accessed by other pods or external clients.

Services control how your Kubernetes Pods are exposed on the Kubernetes network.

container.​services.​updateStatus

Updating the status metadata has no effect on the actual status of the Service. Services are managed by controllers. However, the response returns the entire Service object, with the same information as the `GET api/v1/namespaces/default/services/{{service-name}}` endpoint, allowing discovery of Service parameters.

Risks

1. Network discovery (LOW)

Scope: MEDIUM

This privilege may grant access to confidential data, or its exploit can incur operational cost.

Links