kube-bench icon indicating copy to clipboard operation
kube-bench copied to clipboard

Published 20 hours ago verified publisher icon aquasecurity

feature request: support S3 destination for `--outputfile` option

Open rrey opened this issue 5 years ago • 7 comments
trafficstars

Hello there,

I'd like to run kube-bench regularly and have the reports made available on a S3 compatible storage (minio).

Do you have this feature in your roadmap ?

rrey avatar Dec 04 '19 10:12 rrey

This would be nice to have. I wonder if rather than building S3-specific code into kube-bench we can use aws s3

lizrice avatar Dec 09 '19 23:12 lizrice

Actually it should be the minio SDK. The minio API is an open S3 specification - AWS S3 api is AWS specific.

smijolovic avatar Apr 23 '20 22:04 smijolovic

Hi, is there any update here , I would like the reports to be uploaded somehere like s3, maybe in html format , so that I can serve them as static pages.

iahmad-khan avatar Aug 30 '20 20:08 iahmad-khan

Hi @lizrice I would like to pick this issue up. Please assign me this issue if it is still under consideration.

I can prep a basic design on how a user can feed aws creds accordingly to the spec/config of kube-bench and run it across here.

yashvardhan-kukreja avatar Feb 17 '21 23:02 yashvardhan-kukreja

@rrey I have recently built an add-on ( Kube-bench-exporter ) to export (fan-out) kube-bench reports to multiple targets like Amazon S3 buckets in one-go with ease.

As it is an add-on, so you don't have to mess around with the existing installation of kube-bench you're using.

Let me know what do you think :)

cc: @lizrice

yashvardhan-kukreja avatar Apr 05 '21 06:04 yashvardhan-kukreja

@yashvardhan-kukreja I changed project since I opened this issue. We used Ansible to run kube-bench and drop the output in s3.

rrey avatar Apr 05 '21 08:04 rrey

Oh cool, no worries :)

yashvardhan-kukreja avatar Apr 05 '21 08:04 yashvardhan-kukreja