🚓 Add kubeaudit as a new kubernetes security scanner #134
Description
New Scanner implementation request
Is your feature request related to a problem? Please describe.
As a security tester i would like to test security aspects of my kubernetes cluster because there is alot stuff that can be missconfigured. The secureCodeBox v2 is already based on kubernetes so this should fit perfectly.
Describe the solution you'd like
As a security tester i would like to test the security of my kubernetes cluster based on the kubeaudit scanner: https://github.com/Shopify/kubeaudit
Describe alternatives you've considered
none
Additional context
There is already a scanner folder for this feature request: https://github.com/secureCodeBox/secureCodeBox-v2/tree/master/scanners/kubeaudit
Steps to implement a new scanner
- Create a new folder with the name of the scanner here
- Add a README.md and give a brief overview of the scanner and its configuration options.
- Implement a new scanner specific scan-type.yaml
- Implement a new scanner specific parse-definition.yaml
- Add (optional) some cascading-rules.yaml
- Add (optional) a Dockerfile for the scanner if there is no existing one publicly available on dockerHub
- Use the parser-SDK to implement a new findings parser (currently based on NodeJS)
- Add unit tests with at minimum 80% test coverage