github/kubescape
1
0
Fork 0
mirror of https://github.com/kubescape/kubescape.git synced 2026-02-14 09:59:54 +00:00
Code Issues Packages Projects Releases Wiki Activity
3,473 Commits 20 Branches 551 Tags
master
Commit Graph

3473 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
anjali-deore
af39f9a7ef fix removed space 
Signed-off-by: anjali-deore <200181980+cx-anjali-deore@users.noreply.github.com>
 2025-08-29 15:31:35 +05:30
anjali-deore
482b7c1f67 fix 1817 ,code cleanup 
Signed-off-by: anjali-deore <200181980+cx-anjali-deore@users.noreply.github.com>
 2025-08-29 15:20:00 +05:30
anjali-deore
82e2fd0be2 fix issue 1817,Added Container Name in control scan output 
Signed-off-by: anjali-deore <200181980+cx-anjali-deore@users.noreply.github.com>
 2025-08-29 15:20:00 +05:30
Matthias Bertschy
6eec751027 Merge pull request #1864 from kubescape/dependabot/go_modules/httphandler/github.com/hashicorp/go-getter-1.7.9 
Bump github.com/hashicorp/go-getter from 1.7.8 to 1.7.9 in /httphandler
 2025-08-21 17:48:44 +02:00
dependabot[bot]
4a6480c8b4 Bump github.com/hashicorp/go-getter from 1.7.8 to 1.7.9 
Bumps [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter) from 1.7.8 to 1.7.9.
- [Release notes](https://github.com/hashicorp/go-getter/releases)
- [Changelog](https://github.com/hashicorp/go-getter/blob/main/.goreleaser.yml)
- [Commits](https://github.com/hashicorp/go-getter/compare/v1.7.8...v1.7.9)

---
updated-dependencies:
- dependency-name: github.com/hashicorp/go-getter
  dependency-version: 1.7.9
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-08-21 17:14:35 +02:00
Matthias Bertschy
a51bfa4c3e Merge pull request #1863 from kubescape/new_fix/issue_1284 
Issue 1284 fix: new approach implemented
 2025-08-19 16:02:53 +02:00
Yehudah Tor
2a48af3c17 new approach of fix implemented 
Signed-off-by: Yehudah Tor <yehudahtor@gmail.com>
 2025-08-19 12:22:15 +03:00
Matthias Bertschy
ffeb4577e3 refactor output formatting in prettyprinter and related files 
Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>
v3.0.38 v3.0.38-rc.1 		2025-08-18 12:15:54 +02:00
Matthias Bertschy
b5c7422355 Merge pull request #1862 from kubescape/threshold 
bump helm.sh/helm/v3 to 3.18.5
v3.0.38-rc.0 		2025-08-18 11:07:42 +02:00
Matthias Bertschy
e41b5d77a0 bump helm.sh/helm/v3 to 3.18.5 
Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>
 2025-08-18 10:28:34 +02:00
Matthias Bertschy
5afaae8847 Merge pull request #1860 from kubescape/threshold 
return error on image when severity threshold exceeded
 2025-08-18 10:22:19 +02:00
Matthias Bertschy
011fc0689d return error on image when severity threshold exceeded 
Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>
 2025-08-14 14:38:59 +02:00
aadarsh-nagrath
db30020c95 feat: add default matchers option to image scanning 
hey! added the default matchers option for image scanning as requested in #1838. now you can choose between stock matchers and CPE matchers when scanning images.

what's new:
- added --use-default-matchers flag to scan/image/patch commands
- true = stock matchers (default behavior)
- false = CPE matchers (more precise)

usage:
# use CPE matchers for more precise detection
kubescape scan image nginx:latest --use-default-matchers=false

# or in scan command
kubescape scan --scan-images --use-default-matchers=false

everything's backward compatible - existing code works exactly the same. just added the new option for folks who want more control over their vulnerability detection.

fixes #1838

Signed-off-by: aadarsh-nagrath <anagrath1@gmail.com>
 2025-08-06 21:48:40 +05:30
Matthias Bertschy
c5341a356b fix prettyprinter test results 
Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>
v3.0.37 v3.0.37-rc.2 		2025-07-28 15:06:09 +02:00
Matthias Bertschy
85a7f57373 Merge pull request #1854 from kubescape/fixurls 
fix docs URL in tests
v3.0.37-rc.1 		2025-07-28 14:55:14 +02:00
Matthias Bertschy
cd9ebdf08f fix workflow permissions 
Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>
 2025-07-28 14:44:36 +02:00
Matthias Bertschy
bc602a78ab fix docs URL in tests 
Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>
 2025-07-28 14:41:25 +02:00
Matthias Bertschy
a2361fd155 Merge pull request #1853 from kubescape/dependabot/go_modules/github.com/containerd/containerd/v2-2.0.5 
Bump github.com/containerd/containerd/v2 from 2.0.4 to 2.0.5
v3.0.37-rc.0 		2025-07-28 14:26:07 +02:00
Matthias Bertschy
aa8d41fc2e fix workflow permissions 
Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>
 2025-07-28 14:18:31 +02:00
dependabot[bot]
5bd4beb41f Bump github.com/containerd/containerd/v2 from 2.0.4 to 2.0.5 
Bumps [github.com/containerd/containerd/v2](https://github.com/containerd/containerd) from 2.0.4 to 2.0.5.
- [Release notes](https://github.com/containerd/containerd/releases)
- [Changelog](https://github.com/containerd/containerd/blob/main/RELEASES.md)
- [Commits](https://github.com/containerd/containerd/compare/v2.0.4...v2.0.5)

---
updated-dependencies:
- dependency-name: github.com/containerd/containerd/v2
  dependency-version: 2.0.5
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-07-28 14:14:59 +02:00
Matthias Bertschy
dbf21dee37 Merge pull request #1852 from kubescape/dependabot/go_modules/helm.sh/helm/v3-3.17.4 
Bump helm.sh/helm/v3 from 3.17.3 to 3.17.4
 2025-07-28 14:13:32 +02:00
dependabot[bot]
be49d9b7be Bump helm.sh/helm/v3 from 3.17.3 to 3.17.4 
Bumps [helm.sh/helm/v3](https://github.com/helm/helm) from 3.17.3 to 3.17.4.
- [Release notes](https://github.com/helm/helm/releases)
- [Commits](https://github.com/helm/helm/compare/v3.17.3...v3.17.4)

---
updated-dependencies:
- dependency-name: helm.sh/helm/v3
  dependency-version: 3.17.4
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-07-28 14:02:05 +02:00
Matthias Bertschy
7a5699fba3 Merge pull request #1851 from kubescape/dependabot/go_modules/github.com/cloudflare/circl-1.6.1 
Bump github.com/cloudflare/circl from 1.5.0 to 1.6.1
 2025-07-28 13:48:28 +02:00
dependabot[bot]
1f8afecea8 Bump github.com/cloudflare/circl from 1.5.0 to 1.6.1 
Bumps [github.com/cloudflare/circl](https://github.com/cloudflare/circl) from 1.5.0 to 1.6.1.
- [Release notes](https://github.com/cloudflare/circl/releases)
- [Commits](https://github.com/cloudflare/circl/compare/v1.5.0...v1.6.1)

---
updated-dependencies:
- dependency-name: github.com/cloudflare/circl
  dependency-version: 1.6.1
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-07-28 13:33:52 +02:00
Matthias Bertschy
3ebb1d749e Merge pull request #1850 from kubescape/dependabot/go_modules/httphandler/github.com/go-viper/mapstructure/v2-2.3.0 
Bump github.com/go-viper/mapstructure/v2 from 2.2.1 to 2.3.0 in /httphandler
 2025-07-28 13:32:17 +02:00
dependabot[bot]
f80c9d947d Bump github.com/go-viper/mapstructure/v2 in /httphandler 
Bumps [github.com/go-viper/mapstructure/v2](https://github.com/go-viper/mapstructure) from 2.2.1 to 2.3.0.
- [Release notes](https://github.com/go-viper/mapstructure/releases)
- [Changelog](https://github.com/go-viper/mapstructure/blob/main/CHANGELOG.md)
- [Commits](https://github.com/go-viper/mapstructure/compare/v2.2.1...v2.3.0)

---
updated-dependencies:
- dependency-name: github.com/go-viper/mapstructure/v2
  dependency-version: 2.3.0
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-07-28 13:18:52 +02:00
Matthias Bertschy
03b76ff4aa Merge pull request #1833 from kubescape/dependabot/go_modules/github.com/open-policy-agent/opa-1.4.0 
Bump github.com/open-policy-agent/opa from 1.3.0 to 1.4.0
 2025-07-28 13:06:52 +02:00
dependabot[bot]
01531b6276 Bump github.com/open-policy-agent/opa from 1.3.0 to 1.4.0 
Bumps [github.com/open-policy-agent/opa](https://github.com/open-policy-agent/opa) from 1.3.0 to 1.4.0.
- [Release notes](https://github.com/open-policy-agent/opa/releases)
- [Changelog](https://github.com/open-policy-agent/opa/blob/main/CHANGELOG.md)
- [Commits](https://github.com/open-policy-agent/opa/compare/v1.3.0...v1.4.0)

---
updated-dependencies:
- dependency-name: github.com/open-policy-agent/opa
  dependency-version: 1.4.0
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-07-28 12:20:18 +02:00
Ben Hirschberg
aedfe1c4c0 Merge pull request #1849 from kubescape/fix/addon-urls 
added urls hub.armo --> kubescape.io
 2025-07-27 14:19:34 +03:00
Yehudah Tor
d2bedc1d2b added urls 
Signed-off-by: Yehudah Tor <yehudahtor@gmail.com>
 2025-07-27 13:50:47 +03:00
Ben Hirschberg
35288e7b85 Merge pull request #1846 from kubescape/fix/update-links 
Fix/update links
 2025-07-27 10:01:27 +03:00
Matthias Bertschy
cd046fa695 fix buildnumber test 
Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>
v3.0.36 v3.0.36-rc.1 		2025-07-26 11:08:43 +02:00
Matthias Bertschy
407b8be08f Merge pull request #1848 from kubescape/fixgrype 
close grype DB at the very end of processing
v3.0.36-rc.0 		2025-07-25 11:23:56 +02:00
Matthias Bertschy
b211fe9148 Merge pull request #1847 from kubescape/fixversion 
do not fail version if update info cannot be fetched
 2025-07-25 11:23:24 +02:00
Matthias Bertschy
525e51d68e close grype DB at the very end of processing 
Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>
 2025-07-25 09:50:10 +02:00
Matthias Bertschy
daabd6c81a do not fail version if update info cannot be fetched 
Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>
 2025-07-25 08:48:27 +02:00
Yehudah Tor
5b351d5eec Done URL ref's before problematic ones 
Signed-off-by: Yehudah Tor <yehudahtor@gmail.com>
 2025-07-24 12:11:31 +03:00
Yehudah Tor
a5b607ae2e All controls updated 
Signed-off-by: Yehudah Tor <yehudahtor@gmail.com>
 2025-07-24 11:12:18 +03:00
Yehudah Tor
fec51b00ba getting started kubescape.io control links updated 
Signed-off-by: Yehudah Tor <yehudahtor@gmail.com>
 2025-07-23 15:16:41 +03:00
Amir Malka
4f9809eec1 fix: control-plane node taints check (#1843) 
Signed-off-by: Amir Malka <amirm@armosec.io>
 2025-07-15 11:06:09 +03:00
Matthias Bertschy
c0c25c3430 Merge pull request #1841 from kubescape/submit 
check scanInfo.Submit in HandleResults to not submit by default
v3.0.35-rc.4 		2025-06-30 09:09:05 +02:00
Matthias Bertschy
6ed3e408be check scanInfo.Submit in HandleResults to not submit by default 
Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>
 2025-06-30 08:16:41 +02:00
Matthias Bertschy
6042818a71 use go 1.24 
Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>
v3.0.35 v3.0.35-rc.3 		2025-06-24 16:31:45 +02:00
Matthias Bertschy
b37c20aed9 fix workflow permissions 
Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>
v3.0.35-rc.2 		2025-06-24 16:01:11 +02:00
Matthias Bertschy
3de8204c43 fix workflow permissions 
Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>
v3.0.35-rc.1 		2025-06-24 15:59:27 +02:00
Ben Hirschberg
d5bd3708b8 Merge pull request #1836 from slashben/feature/mcpserver-v1 
Feature/mcpserver v1
v3.0.35-rc.0 		2025-06-24 16:29:16 +03:00
Ben
2bd686131e Incorporating review 
Signed-off-by: Ben <ben@armosec.io>
 2025-06-10 14:32:26 +03:00
Ben
1ea4e0c304 Add configuration scan tools and resource handling 
Implemented two new tools: 'list_configuration_security_scan_manifests' for listing available configuration scan manifests and 'get_configuration_security_scan_manifest' for retrieving details of a specific manifest. Added a resource template for configuration manifests and integrated these tools into the mcpserver.

Signed-off-by: Ben <ben@armosec.io>
 2025-06-09 09:11:28 +03:00
Matthias Bertschy
b3251306d0 Merge pull request #1837 from ian-fox/master 
Make a second sigint terminate kubescape immediately
 2025-06-03 12:54:02 +02:00
Ian Fox
91ecdaba4e Make a second sigint terminate immediately 
Right now, sending a sigint will start a graceful shutdown, which can take quite a while.
By calling stop() in the signal handler it unregisters the handler so that a subsequent
sigint received during a graceful shutdown will kill the process immediately.

Signed-off-by: Ian Fox <code@whatthefox.dev>
 2025-06-02 19:12:45 +02:00