疑似Oday
Ensure that authentication using client certificates is disabled for your Google Kubernetes Engine (GKE) clusters. Client certificates require manual key rotation for authentication and are difficult to revoke. It is highly recommended to use alternative authentication methods like OpenID Connect, which is the default authentication method used by gcloud and handles token management automatically.
id: gcloud-gke-client-certificate-enabled
info:
name: GKE Clusters With Client Certificate Authen
...