[$] Handling the Kubernetes symbolic link vulnerability

A year-old bug in Kubernetes was thetopic of a talk given by Michelle Au and Jan Aafrinek at KubeCon+ CloudNativeCon North America, which was held mid-December inSeattle. In the talk, they looked at the details of the bug and theresponse from the Kubernetes product security team (PST). While the bug was fairly straightforward, it wassurprisingly hard to fix. The whole process also provided experience thatwill help improve vulnerability handling in the future.