CIS GKE Benchmark Recommendation: 6.5.5. Ensure Shielded GKE Nodes are Enabled
Shielded GKE Nodes provide strong, verifiable node identity and integrity to increase the security of GKE nodes and should be enabled on all GKE clusters.
Node identity and integrity can’t be verified without shielded GKE nodes
Enable node shielding
The following example will fail the google-gke-node-shielding-enabled check.
The following example will pass the google-gke-node-shielding-enabled check.