Thanks very much for this @bjoernek. This does a good job of setting the context. I’m looking forward to seeing more details and the additional considerations that are mentioned.
@Sat’s already done a brilliant job of upgrading the tooling to take hardcoded cluster information into account 
One thing I’d like to understand better is what should happen if any of the checks above fail? What happens if a Node Provider is found to be in violation of any of these requirements. I think there need to be well defined consequences, ones which are respected, known upfront, and rigorously applied when needed.