kics icon indicating copy to clipboard operation
kics copied to clipboard

Published 20 hours ago verified publisher icon Checkmarx

Include a custom helm chart values file to scan helm-charts

Open felipeng opened this issue 2 years ago • 0 comments

Is your feature request related to a problem? Please describe. KICS finds some issues with the helm-chart default values.yaml, however my custom values custom-values.yaml has the configuration to fix the issues. Unfortunately is not possible to provide the custom values to KICS

Example: A helm-chart has default values: chart/values.yaml

resources: {}

KICS will complain about lack of settings resources request/limits.

However, the custom custom-values.yaml has:

resources:
  limits:
    cpu: 600m
    memory: 100Mi
  requests:
    cpu: 300m
    memory: 50Mi

Describe the solution you'd like A way to provide KICS a custom custom-values.yaml file, example: kics scan -t Kubernetes -p chart/ --values custom-values.yaml

Describe alternatives you've considered Maybe provide multiple directory/files: kics scan -t Kubernetes -p "chart/,custom-values.yaml"

Additional context We are trying to use KICS on our pipeline to generate reports and upload to SonarQube. We have the custom helm values for each environment, for example: develop.yaml, staging.yaml, production.yaml and KICS is finding several issues on the default helm chart values; however, the correct settings are defined on the environment values file

felipeng avatar May 04 '23 15:05 felipeng