github/kube-bench
1
0
Fork 0
mirror of https://github.com/aquasecurity/kube-bench.git synced 2026-02-14 18:10:00 +00:00
Code Issues Packages Projects Releases Wiki Activity

Commit Graph

  • 4ebfe684c9 Rename master branch to main Liz Rice 2020-12-17 13:37:02 +00:00
  • c3f94dd89f Aws asff (#770) Brian Terry 2020-11-23 14:43:53 -05:00
  • 054c401f71 Support case which run etcd as systemd service instead of pod (#762) Huang Huang 2020-11-16 20:50:15 +08:00
  • bd0f59a013 Added Kubernetes Job for AKS-1.0 tests. (#735) Borko 2020-11-16 07:38:02 -05:00
  • ab3881420c Created config and test files for Azure Kubernetes Service (AKS). (#733) Borko 2020-11-16 07:35:57 -05:00
  • 83b80a5816 automate check 3.2.1 Ensure that a minimal audit policy is created (#742) bjrara 2020-11-02 15:41:07 +08:00
  • aa2a6f08f3 Add exit-code parameter for when checks have failed (#734) Wicked 2020-10-29 10:12:45 +00:00
  • 3a35c039e5 Add --skip command to skip groups and checks (#751) Wicked 2020-10-29 10:03:41 +00:00
  • 519f632147 Fix command on extract kube-bench binary (#750) Eric Ho 2020-10-29 17:45:07 +08:00
  • a4c3ce9f9e Update policies.yaml (#757) Sinith 2020-10-29 14:19:34 +05:30
  • dc84ae3438 Fix defaultkubeconfig in config.yaml to resolve variable exposure in remediation when conf is missing (#758) bjrara 2020-10-29 16:46:50 +08:00
  • 9474472194 Allow for skip to be defined on a group-level skipping all checks inside (#736) Wicked 2020-10-19 08:51:33 +01:00
  • 724cea4980 Customize kubeconfig location for kube-scheduler and kube-controller-manager (#738) bjrara 2020-10-18 23:10:29 +08:00
  • d026e046f7 Check tls-cipher-suites using valid_elements op (#739) bjrara 2020-10-18 23:08:19 +08:00
  • 58bea9c89b Fix go vet issues (#720) Oleksandr Slynko 2020-10-09 15:56:22 +01:00
  • f213918552 Updated documentation with section on downloading and installing kube-bench on Linux. (#716) Borko 2020-10-09 10:46:57 -04:00
  • ff0ce661a8 Fix typo of 1.1.19 in cis-1.6 (#728) Huang Huang 2020-10-09 22:39:05 +08:00
  • 8207532d16 Since the 1.3 and 1.4 tests were removed, these files are unnecessary. (#727) Tom Kelley 2020-10-07 11:58:44 -07:00
  • a7aa21f32c Improve Proxykubeconfig tests (#708) Tom Kelley 2020-10-07 11:53:34 -07:00
  • 714430c7fc Not exiting when executable not found (#702) v0.4.0 Yoav Rotem 2020-10-03 13:51:13 +03:00
  • 90b7ae6628 upgrade to go 1.15 (#706) Neha Viswanathan 2020-10-03 03:30:01 -07:00
  • 82421e5838 retire cis 1.3 and 1.4 (#693) Neha Viswanathan 2020-10-03 03:23:28 -07:00
  • deecf6265f Test Travis build condition (#713) Yoav Rotem 2020-10-01 18:37:38 +03:00
  • cf305eed74 Update .travis.yml Liz Rice 2020-09-21 10:18:40 +01:00
  • 7280438eb5 Add cis 1.6 (#678) yoavrotems 2020-09-17 18:54:43 +03:00
  • 041c437339 Set actualResult (#703) yoavrotems 2020-09-17 13:23:02 +03:00
  • 1899f26bc1 Note about OpenShift OCP 4.* (#700) Liz Rice 2020-09-14 07:27:49 +01:00
  • d6de4f7c3c Multi-arch build (#690) Liz Rice 2020-09-14 07:26:29 +01:00
  • 456d9b62e2 Default log output to stderr (#696) Huang Huang 2020-09-09 20:46:35 +08:00
  • 41a4059abe Create codecov.yml Liz Rice 2020-09-09 12:05:57 +01:00
  • 6702300b0a Fix remediation typo in 3.1.1 and 4.1.1 (#692) dylanzt 2020-09-07 18:33:21 +10:00
  • a8a59d3bd8 docs: more clarification on output states (#691) Liz Rice 2020-09-06 08:46:29 +01:00
  • f0e30cef62 Add a trailing slash to find directory path (#687) JoostC 2020-09-03 19:18:48 +02:00
  • 3488c8343d Updating section id 4.6 (#689) Sathi Dyapa 2020-09-02 10:29:57 -04:00
  • 4e43c9a9a2 Update makefile to create kubeconfig (#685) Danny Sauer 2020-09-02 09:28:30 -05:00
  • 33f6773a43 Code quality improvements (#677) Satya Pawan 2020-09-01 19:20:04 +05:30
  • 772839fc92 move target mapping to config.yaml - updated version (#682) Liz Rice 2020-08-30 08:16:21 +01:00
  • 01c77b2315 chore: improve test clarity (#675) Liz Rice 2020-08-13 09:01:30 +01:00
  • 2d548597ae Support CIS v1.5.1 (#673) Huang Huang 2020-08-13 02:57:51 +08:00
  • 07f3c40dc7 Better handling of parameters and config audits (#674) Liz Rice 2020-08-12 14:32:42 +01:00
  • 5d138f6388 Fix YAML Linting issue (#672) Huang Huang 2020-08-12 16:14:45 +08:00
  • 10f4e6c691 Refactor testitem-set (#668) yoavrotems 2020-08-10 17:12:41 +03:00
  • 68c8764ea8 Create bug_report.md Liz Rice 2020-08-10 15:09:03 +01:00
  • 56770b14c6 Ideas and questions go to Discussions Liz Rice 2020-08-10 15:05:47 +01:00
  • 4b9453bb83 Refactor: remove ContinueWithError (#630) yoavrotems 2020-08-10 12:12:57 +03:00
  • 6684979741 Add tests for 1.1.19、1.1.20 and 1.1.21 of cis-1.5 (#641) Huang Huang 2020-08-10 04:44:42 +08:00
  • a6161aa868 Warn if kubectl can't autodetect the version (#656) Liz Rice 2020-08-04 16:04:02 +01:00
  • b0d175bf5c Update default Kubernetes to 1.18 (#657) Liz Rice 2020-08-04 14:40:12 +01:00
  • e69b2fe549 Add mappings for eks-1.0 and Kubernetes 1.18 (#654) Liz Rice 2020-08-03 20:38:37 +01:00
  • 5ff32e55eb Check PodSecurityPolicy when test 1.2.13 of cis-1.5 (#651) Huang Huang 2020-08-03 15:38:22 +08:00
  • db109daf43 Support multiple values flag when check the audit output (#652) Huang Huang 2020-08-03 15:31:54 +08:00
  • ea4eaa6fd5 Fix supported targets for EKS benchmark (#648) Matthieu ANTOINE 2020-07-29 15:40:59 +02:00
  • 2a325bd60d make the kubelet cafile test posix compliant (#643) Kevin W Monroe 2020-07-21 09:43:39 -05:00
  • 66692951c8 4.1.7 of cis-1.5 should not be marked as manual (#640) Huang Huang 2020-07-21 22:32:13 +08:00
  • 50a9dca720 Dockerfile: Update to alpine-3.12 (#645) Manuel Rüger 2020-07-21 11:09:41 +02:00
  • 4e00954485 docs: add Troubleshooting (#638) Liz Rice 2020-07-15 14:41:35 +01:00
  • 20ec5d14f2 added eks-1.0 cfg and modified job-eks.yaml for node checks (#639) v0.3.1 Paavan 2020-07-10 10:14:41 -05:00
  • 3e6a41af04 Try to search the right ca file of kubelet (#633) Huang Huang 2020-07-08 15:22:49 +08:00
  • 1b5b6c2afe Remove os.exit When not needed (#631) yoavrotems 2020-06-28 17:29:55 +03:00
  • 52ebfa5b5a Fix invalid JSON output (#629) Huang Huang 2020-06-24 17:13:10 +08:00
  • 5cf3821eb6 .goreleaser: Create binaries for arm/arm64 (#628) Manuel Rüger 2020-06-23 19:02:31 +02:00
  • c7b518e76b Run audit as shell script instead of as single line command (#610) Huang Huang 2020-06-22 15:45:31 +08:00
  • 122bc4b351 Fix misspelling - identied / identified (#626) Andrew Horton 2020-06-17 18:08:20 +04:00
  • 35cf28c140 Add integration tests for cis 1.3 and cis 1.5 (#609) Huang Huang 2020-05-21 01:30:52 +08:00
  • 2cf2876a10 Update Running in an EKS cluster documentation (#621) Neha Viswanathan 2020-05-15 01:53:24 -07:00
  • 305283f9d4 Fix OpenShift table layout (#612) Craig Jellick 2020-05-14 10:04:14 -07:00
  • 4557ca00f1 Fix a typo in 1.1.11 of cis-1.5 (#605) Huang Huang 2020-05-15 00:44:43 +08:00
  • 582ce02ce6 Removed references to dep from README.md (#607) Paul McCarthy 2020-05-15 02:34:47 +10:00
  • 82614d9b3f Correct typo (#616) Gábor Lipták 2020-05-14 12:25:47 -04:00
  • d8234ff07c docs: update params for logging to screen (#618) Liz Rice 2020-05-11 10:18:30 +01:00
  • 7e87c980b2 docs: CIS benchmarks are not frequent (#617) Liz Rice 2020-05-06 14:42:40 +01:00
  • 7cd6b32ebb docs: notes in README for common misunderstandings (#602) Liz Rice 2020-04-07 14:04:42 +01:00
  • 71bc8f544c bumped to gloang 1.14.0 (#594) v0.3.0 Daniel Sutton 2020-03-16 13:18:27 +00:00
  • 9efd942bcc Add config paths for microk8s (#556) Mathis Kretz 2020-03-16 13:37:32 +01:00
  • 60f2fb592a Add option to do bitmask (#565) yoavrotems 2020-03-16 14:25:46 +02:00
  • 451721a1cf Add GKE into list of support tests (#597) Liz Rice 2020-03-11 15:48:07 +00:00
  • b403b364fe Get Kubernetes Version: Adds Retry Logic (#593) Roberto Rojas 2020-03-05 10:34:44 -05:00
  • 06303f6a7a Add warn reason (#547) Liz Rice 2020-03-05 12:20:26 +00:00
  • 70988356c8 Support config files which use .yml file extension (#586) Huang Huang 2020-03-04 01:03:21 +08:00
  • 0b07f40c9b Support parse boolean flag with no value (#579) Huang Huang 2020-03-04 00:54:38 +08:00
  • d988b81540 CIS GKE 1.0.0 benchmark (#570) Abubakr-Sadik Nii Nai Davis 2020-03-03 14:51:48 +00:00
  • 237f8cf818 fix small typo (#592) Thorsten Schifferdecker 2020-03-02 17:35:02 +01:00
  • 65fb352e0e Change to checking --disable-admission-plugins for cis-1.4-1.1.27 and cis-1.5-1.2.14 (#584) Huang Huang 2020-02-18 22:37:50 +08:00
  • 17cd104788 Fixes issue #574: change the PATH in container (#577) Huang Huang 2020-02-13 01:18:44 +08:00
  • 77f66511e7 Set all host-mounted volumes to be read-only. (#569) Nick Smith 2020-01-28 15:45:31 +00:00
  • 037bb14729 added 444, 440, 400 and 000 file permission checks for all benchmarks (#563) v0.2.3 LukasAuerbeck 2020-01-22 15:40:01 +01:00
  • 89f8e454ba Resolved bug in master.yml for cis-1.5 for the apiserverbin variable name (#567) mustafa-rean 2020-01-22 19:30:23 +05:30
  • 813dc6ef47 Integration Tests: Adds generateDiff Function (#561) Roberto Rojas 2020-01-21 10:36:04 -05:00
  • 27d326614f Dockerfile: Use go 1.13 and alpine 3.11 bases (#560) Manuel Rüger 2020-01-14 15:55:11 +01:00
  • 4925adbe6b Update .goreleaser.yml (#549) yoavrotems 2020-01-13 17:56:26 +00:00
  • efcd63aa38 Integration Test: Improves performance and Reliability (#555) Roberto Rojas 2020-01-09 09:57:40 -05:00
  • b677c86868 remove always true for logtostderr (#548) Murali Paluru 2020-01-07 18:34:06 +05:30
  • 48e33d33e5 fix mismatching checks, tests (#544) Murali Paluru 2020-01-07 18:01:07 +05:30
  • 5f34058dc7 Support Linting YAML as part of Travis CI build (#554) James Ward 2020-01-06 04:18:25 -05:00
  • dc14cb14b0 Update tests for check states (#550) Liz Rice 2020-01-03 14:02:49 +00:00
  • ca749ccb32 Adding a section for Azure Kubernetes Service (#495) v0.0.1-alpha.0 Saurya Das 2019-12-20 04:17:00 -08:00
  • 299ab36a13 doc: fix ECR image build instructions for EKS mode (#531) Zeid Marouf 2019-12-20 21:00:38 +09:00
  • 9fc13ca02e Fixes Issue #538 (#539) Roberto Rojas 2019-12-13 11:04:58 -05:00
  • 13193d75b0 Fixes Issue #535 (#537) Roberto Rojas 2019-12-13 10:09:30 -05:00
  • 62af68f3f5 fixes issue #536 (#540) Roberto Rojas 2019-12-12 16:51:35 -05:00