kube-bench icon indicating copy to clipboard operation
kube-bench copied to clipboard
verified publisher icon aquasecurity

Support for EKS CIS benchmark 1.4.0

Open hanneshofmann opened this issue 1 year ago • 2 comments

The EKS CIS benchmark 1.4.0 was released last year, yet only 1.2.0 is supported by kube-bench.

Are there any plans to support newer versions like 1.3.0 and 1.4.0 soon? I am aware of https://github.com/aquasecurity/kube-bench/pull/1484 which seems to add support for 1.3.0, although there wasn't any activity since quite some time.

Given the frequency of EKS updates, it is very crucial to keep pace with newer CIS versions as well.

hanneshofmann avatar May 24 '24 08:05 hanneshofmann

Fun fact EKS 1.5.0 is out now, so even 1.4.0 is behind the current data. I would also really like to know more about where this is going. 1.2.0 is about 2 years old now, and in the Kubernetes world, that's old enough to draw retirement. The biggest issue is Pod Security Policies are no longer a thing, and more than half of the checks rely on said PSPs.

hdsiles avatar May 29 '24 21:05 hdsiles

any updates?

ODB686 avatar Aug 22 '24 17:08 ODB686

kube-bench supports EKS CIS 1.5 #1653

afdesk avatar Feb 13 '25 07:02 afdesk