Kubesec is an open-source Kubernetes security scanner and analysis tool. It scans your Kubernetes cluster for common exploitable risks such as privileged capabilities and provides a severity score for each found vulnerability.
Security risk analysis for Kubernetes resources.
Take in a single YAML file as input.
+ One YAML can connect multiple Kubernetes resources.
Kubesec is available as,
+ Docker container image at docker.io/kubesec/kubesec:v2
+ Linux/MacOS/Win binary (get the latest release)
+ Kubernetes Admission Controller
+ Kubectl plugin
Chúng ta có file
Có thể scan offline bằng run docker
Scan online bằng API.
Bạn có thể vào trang web là 1 số example:
https://kubesec.io/