capsule-render icon indicating copy to clipboard operation
capsule-render copied to clipboard

Published 20 hours ago • verified publisher icon kyechan99

New plugin discussions umbrella issue

Open johnSchnake opened this issue 3 years ago • 5 comments

If you have a request for a new plugin or want to promote your plugin (or get it into the sonobuoy-plugins repo), here is the place to discuss!

If you request a plugin, please provide:

  • Where the plugin code comes from
  • Is there already an image published, or would that also need to be created on our end?
  • Do you have any relationship to the proposed project?
  • Would you (or do you know who would) be willing to maintain the plugin in the future?

johnSchnake avatar Oct 12 '21 15:10 johnSchnake

K8s API Coverage plugin

  • This was requested long ago but the tooling around it has changed drastically I've heard and this may be much more doable now.
  • https://github.com/cncf/apisnoop
  • I wouldn't be the long term maintainer, but since I think they publish images for this and it has its own active community, we may be able to get support from the community on this

Updates:

  • Requires audit settings on the API server to be set. We'd have to start with checking those and restarting the API server (or telling the user how to) with the option set. https://kubernetes.io/docs/tasks/debug-application-cluster/audit/
  • https://raw.githubusercontent.com/ii/kind/ci-audit-logging/hack/ci/e2e-k8s.sh shows how the current api coverage starts a cluster with the audit log settings it needs
  • https://github.com/cncf/apisnoop/blob/main/apps/auditlogger/README.org#cluster shows the requirement of the cluster
  • Found an blog showing how to edit the API server config and restart it it for auditing. May be helpful.

johnSchnake avatar Oct 12 '21 15:10 johnSchnake

Rough idea:

  • Plugin: OpenAPI automated testing
  • Purpose: Last I used OpenAPI tooling I had an OpenAPI spec for my service but wanted to automate the creation/running of integration tests. It would be great if we could take an openAPI spec as input and create a test client that tests all the endpoints of a given, running service.
  • I dont have any personal connection to the OpenAPI project other than having been a consumer in the past.
  • I dont know the maintenance expectation; openAPI in general has a strong community so we may find support.

Updates:

  • Just looking at the openAPI tooling I, once again, failed to easily find the kind of schema testing tool that I had envisioned here
  • I also found an article https://pactflow.io/blog/schemas-are-not-contracts/ which did point out some shortcomings even if you implement simple, schema based tests.
  • There is definitely a community of users and companies that use OpenAPI but I'm not sure which need we can help out with.

johnSchnake avatar Oct 12 '21 15:10 johnSchnake

https://github.com/kubernetes/node-problem-detector

Obviously we'd be interested in supporting things that are already supported/maintained by the upstream community.

johnSchnake avatar Oct 18 '21 16:10 johnSchnake

https://github.com/sieve-project/sieve is a really interesting project related to the testing of controllers and ensuring they are robust to distributed types of bugs. I had some questions related to the potential of containerizing it; hopefully @lalithsuresh can comment on the feasibility.

johnSchnake avatar Feb 11 '22 04:02 johnSchnake

There has not been much activity here. We'll be closing this issue if there are no follow-ups within 15 days.

stale[bot] avatar Aug 11 '22 19:08 stale[bot]