Implemented new Kubeaudit Scanner #162

SebieF · 2020-10-19T09:09:50Z

Implemented new Kubeaudit Scanner for checking kubernetes cluster and its integration tests.

WiP:

Improve parser to match new kubeaudit findings

Co-authored-by: Sebastian Franz <sebastian.franz@iteratec.com>

…deBox-v2 into kubeaudit

scanners/kubeaudit/parser/parser.js

scanners/kubeaudit/values.yaml

scanners/kubeaudit/scanner/wrapper.sh

nigthknight

See comments

J12934 and others added 30 commits October 9, 2020 10:40

Initial Kubeaudit Implementation

c335e98

Co-authored-by: Sebastian Franz <sebastian.franz@iteratec.com>

Update kubeaudit snapshots to current kubeaudit version

d3a1ced

Build kubeaudit scanner image on ci

50723e2

Build and use kubeaudit image on ci

f55ffdd

Add securityContexts and other additional Configs

c610a39

Update email address

95ec9de

Updating Helm Docs

ce8f05a

Dockerfiles Updated

a6bf455

Integrated Integration Test (wip)

10a418a

Allow default Service Account

b2ae1e5

CI Fix

03637cf

Docu fixes

0f5d69a

Integration test done

10dd3e7

Integration Test FIx

900a9e3

Integration Test Fix 2

e68cebf

Increase timeout time

0ff372c

New ClusterRole Service Account and fixed test

396cc97

Updating Helm Docs

9a5b35f

Add kubeaudit parser to ci

b808c2d

Merge branch 'kubeaudit' of https://github.com/secureCodeBox/secureCo…

97144e1

…deBox-v2 into kubeaudit

Test commit for ci tests (fixed typo)

c533847

Changed ci yaml to newer version

fb38a1a

Fix yaml

7c6245a

Change parserImage Dockerfile

92cca96

Add Githunter

5adab93

Added correct namespace to scan for test

97369b0

Added correct namespace to scan for test

530e4c9

Increased test timeout, delete namespace after test

c76b03d

Fixed kubeaudit Scope in CI

d992c01

Fix typo

0196222

Create Missing NetworkPolicy findings

66ef1ba

SebieF changed the title ~~Kubeaudit~~ Implemented new Kubeaudit Scanner Oct 19, 2020

SebieF assigned J12934 and SebieF Oct 19, 2020

SebieF requested a review from nigthknight October 19, 2020 09:13

SebieF added the enhancement New feature or request label Oct 19, 2020

SebieF linked an issue Oct 19, 2020 that may be closed by this pull request

🚓 Add kubeaudit as a new kubernetes security scanner #134

Closed

8 tasks

J12934 and others added 6 commits October 19, 2020 11:16

Update expected integration test findings

4d1c91b

Merge branch 'main' into kubeaudit

80a1a3d

Updating Helm Docs

b76d603

Add proper kubeaudit readme

7738ccb

Add missing newlines at EOF

2e05457

Remove commented out code

f4a5173

nigthknight approved these changes Oct 19, 2020

View reviewed changes

scanners/kubeaudit/parser/parser.js Outdated Show resolved Hide resolved

scanners/kubeaudit/values.yaml Show resolved Hide resolved

scanners/kubeaudit/scanner/wrapper.sh Outdated Show resolved Hide resolved

nigthknight self-requested a review October 19, 2020 10:12

nigthknight requested changes Oct 19, 2020

View reviewed changes

SebieF added 4 commits October 19, 2020 12:20

Rename createNonRootFsFinding to createNonReadOnlyRootFsFinding

150ab5a

New line at EOF

fd3a080

Merge remote-tracking branch 'origin/kubeaudit' into kubeaudit

c5284ee

Fixed function call

982bb7d

SebieF requested a review from nigthknight October 19, 2020 10:29

nigthknight approved these changes Oct 19, 2020

View reviewed changes

J12934 merged commit f96e8ca into main Oct 19, 2020

J12934 deleted the kubeaudit branch October 19, 2020 11:49

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Implemented new Kubeaudit Scanner #162

Implemented new Kubeaudit Scanner #162

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

4 participants

Implemented new Kubeaudit Scanner #162

Implemented new Kubeaudit Scanner #162

Uh oh!

Conversation

WiP:

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

4 participants