A container that runs with hostPID set has visibility into processes running on the host, which could expose information including environment variables to an attacker.
apiVersion:v1kind:Podmetadata:name:hellospec:containers:-name:helloimage:busyboxcommand:['sh','-c','echo"Hello,Kubernetes!"&&sleep3600']hostPID:false# other required fields here