IMDS is a REST API that is available at a well-known, non-routable IP address. Since the information is available only from inside the virtual machine, your containers must not have access to this information. First, prevent access to the container using principles of least privilege, security contexts, and containers without root permissions. Next, set up network policies to block the internal address of the REST API and ensure that your containers cannot mount any persistence from the host location.