# HostPath Volume Mounted

- ID: kubernetes-hostpath-volume
- Severity: CRITICAL
- CWE: CWE-668 (CWE-668)
- Languages: YAML
- Frameworks: kubernetes

## Description

Detects HostPath volumes that mount directories from the host filesystem into pods.

## Detection Message

HostPath volumes mount directories from the host filesystem into the pod.

## Remediation

Use PersistentVolumeClaim or emptyDir instead of hostPath.

```yaml
volumes:
  - name: data
    persistentVolumeClaim:
      claimName: my-pvc
```

Learn more: https://shoulder.dev/learn/kubernetes/cwe-668/hostpath-volume

## Documentation

[object Object]

## Related Rules

- **NodePort Service Exposes Application** [MEDIUM]: 
- **TypeScript Access Modifier Bypass** [HIGH]: