In alignment with your company's security strategy to shift left on security, the InfoSec team requires all teams to enforce guardrails on Google Kubernetes Engine (GKE) clusters, allowing only the deployment of trusted and approved images. How can you fulfill this requirement effectively?