kubeaudit
kubeaudit copied to clipboard
Shopify
kubeaudit helps you audit your Kubernetes clusters against common security controls
Closes #436 Left some comments/questions for reviewers as part of self-review `go run cmd/main.go -f internal/sarif/fixtures/apparmor-invalid.yaml all -s kubeaudit.sarif` will yield a new sarif report (kubeaudit.sarif): ``` { "version": "2.1.0",...
##### ISSUE TYPE - [ ] Bug Report - [x] Feature Idea ##### SUMMARY the idea here is to offer open source users the convenience of uploading a sarif result...
Bumps [k8s.io/apiextensions-apiserver](https://github.com/kubernetes/apiextensions-apiserver) from 0.23.5 to 0.24.3. Commits f803324 Update dependencies to v0.24.3 tag f6dccd8 Merge pull request #110042 from Jefftree/automated-cherry-pick-of-#109880-ups... b82ec0b Remove warning log for merging meta and scale type...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
##### ISSUE TYPE - [x] Bug Report - [ ] Feature Idea # BUG REPORT ##### SUMMARY https://github.com/Shopify/kubeaudit lists some annotations that have meaning to kubeaudit. However, these annotations are...
##### ISSUE TYPE - [ ] Bug Report - [X] Feature Idea # FEATURE IDEA **Proposal:** At current kubeaudit does not support annotations of the form: `container.apparmor.security.beta.kubernetes.io/: unconfined`. It errors...
##### ISSUE TYPE - [ ] Bug Report # BUG REPORT ##### SUMMARY In k8s 1.20 was introduced GA syntax for setting seccompProfile: ``` spec: securityContext: seccompProfile: type: RuntimeDefault ```...
This idea was proposed by @thepwagner: We could extend Kubeaudit to output results in [Static Analysis Results Interchange Format (SARIF)](https://docs.oasis-open.org/sarif/sarif/v2.1.0/csprd01/sarif-v2.1.0-csprd01.html) format. This would allow integrating with GitHub via GitHub Code...
##### ISSUE TYPE - [x] Feature Idea # BUG REPORT ##### SUMMARY It would be great if there was a way to pass multiple files to `kubeaudit` so that it...
##### ISSUE TYPE - [ ] Bug Report - [x] Feature Idea # FEATURE IDEA - [x ] If the maintainers agree with the feature as described here, I intend...
Hi, Would it be possible to integrate the installation via krew. Like installing the kubeaudit as a kubectl plugin?. https://krew.sigs.k8s.io/ Thanks Rama
