Cloud / Kubernetes Runtime Incident Case Tracker
- Case ID:
- Trigger / signal:
- Time window:
- Namespace / cluster / account:
- Workload / image digest:
- Service account / cloud principal:
- First evidence saved:
- Blast-radius hypotheses:
- Containment chosen:
- Credential / token rotation needed:
- Recovery owner:
- Post-incident control gaps: