Marcin Ciszak
Marcin Ciszak
I'd like to propose a few improvements to the `/incidents` API: - `POST /incidents` - Addition of _optional_ `componentID` when new incident is created, for easier filtering later (see below)...
Fixes slight inconsistencies in docs. Documents `version` spec option.
Complex RBAC structure can sometimes generate significant amount of data and lead to unresponsive faceted tree view which renders it effectively unusable. Proposed improvements: 1. Reduce facets (entry points) to...
Krane is currently stateless and depends on the correct configuration supplied at the app start time. This includes the custom risk rules definitions which are currently expected to be present...
Allow for RBAC status report consumption by external services over HTTP. Endpoints: `/status` - triggers all RBAC risk rules check and returns a report Filtering to select specific severity items...
This is to cover further RBAC inspection. The list below is just an indicator and some ideas around how to make it come complete (individual commands will link to separate...
Change risk statuses to `high`, `medium`, `low` for clarity.
Once all the commands are in (#10) we could try and make it work as krew plugin for kubectl.
Currently whitelisting in risk rules doesn't take into account resource versions. If we keep the whitelisting feature in the tool then it'd be good to make it so resource version...