github/kubescape
1
0
Fork 0
mirror of https://github.com/kubescape/kubescape.git synced 2026-04-15 06:58:11 +00:00
Code Issues Packages Projects Releases Wiki Activity
2,485 Commits 23 Branches 553 Tags
0c019819ff597ad5bebf98e97e6c5dab823bbc65
Commit Graph

2485 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Amir Malka
0c019819ff Scanning a single resource (#1300) 
* add cmd

Signed-off-by: Daniel Grunberger <danielgrunberger@armosec.io>

* support single workload scan

Signed-off-by: Amir Malka <amirm@armosec.io>

* fix conflict

Signed-off-by: Amir Malka <amirm@armosec.io>

* added unit tests

Signed-off-by: Amir Malka <amirm@armosec.io>

* added unit tests

Signed-off-by: Amir Malka <amirm@armosec.io>

* more refactoring

Signed-off-by: Amir Malka <amirm@armosec.io>

* add scanned workload reference to opasessionobj

Signed-off-by: Amir Malka <amirm@armosec.io>

* fix GetWorkloadParentKind

Signed-off-by: Amir Malka <amirm@armosec.io>

* remove namespace argument from pullSingleResource, using field selector instead

Signed-off-by: Amir Malka <amirm@armosec.io>

* removed designators (unused) field from PolicyIdentifier, and designators argument from GetResources function

Signed-off-by: Amir Malka <amirm@armosec.io>

* fix tests

Signed-off-by: Amir Malka <amirm@armosec.io>

* use ScanObject instead of workload identifier

Signed-off-by: Amir Malka <amirm@armosec.io>

* refactor logic after CR

Signed-off-by: Amir Malka <amirm@armosec.io>

---------

Signed-off-by: Daniel Grunberger <danielgrunberger@armosec.io>
Signed-off-by: Amir Malka <amirm@armosec.io>
Co-authored-by: Daniel Grunberger <danielgrunberger@armosec.io>
 2023-08-01 14:07:31 +03:00
David Wertenteil
d9e946cf6d reset head (#1306) 
Signed-off-by: David Wertenteil <dwertent@armosec.io>
 2023-08-01 10:47:07 +03:00
David Wertenteil
e3a8ebfe05 Merge pull request #1297 from dwertent/update-armo-docs 
docs(providers): Update ARMO docs
 2023-07-31 19:37:01 +03:00
David Wertenteil
fd3703b21b Merge pull request #1296 from kubescape/error-handle-for-empty-resource-scan 
Error handle for empty resource scan
 2023-07-31 16:13:42 +03:00
David Wertenteil
6bcdda7d56 Merge pull request #1309 from amirmalka/bump-dependencies 
bump opa-utils
 2023-07-31 12:11:26 +03:00
Amir Malka
981430d65f bump opa-utils 
Signed-off-by: Amir Malka <amirm@armosec.io>
 2023-07-31 12:00:52 +03:00
David Wertenteil
e91ec69832 Merge pull request #1307 from amirmalka/bump-dependencies 
Bump dependencies
 2023-07-31 11:02:05 +03:00
Amir Malka
bbfa5d356a bump opa-utils, k8s-interface and armoapi-go 
Signed-off-by: Amir Malka <amirm@armosec.io>
 2023-07-31 10:39:03 +03:00
rcohencyberarmor
d28afcb00c linter correction 
Signed-off-by: rcohencyberarmor <rcohen@armosec.io>
 2023-07-30 15:46:54 +03:00
rcohencyberarmor
ca6bdb0bef review corrections 
Signed-off-by: rcohencyberarmor <rcohen@armosec.io>
 2023-07-30 12:06:03 +03:00
Raziel Cohen
e424bfa81b Merge branch 'master' of github.com:kubescape/kubescape into error-handle-for-empty-resource-scan 2023-07-30 11:21:53 +03:00
David Wertenteil
9f1ff4c090 Merge pull request #1279 from XDRAGON2002/issue_760 
feat: add build.ps1
v2.3.8 		2023-07-25 14:41:00 +03:00
David Wertenteil
1a2dda700b Merge pull request #1291 from XDRAGON2002/issue_1290 
fix: yamlhandler error handling
 2023-07-25 14:39:26 +03:00
rcohencyberarmor
c4e5611c7f add print in the cli to which version the kubescape was update (#1295) 
* add print in the cli to which version the kubescape was update

Signed-off-by: rcohencyberarmor <rcohen@armosec.io>

* update will suggest to our user to update by following kubescape installation guide

Signed-off-by: rcohencyberarmor <rcohen@armosec.io>

---------

Signed-off-by: rcohencyberarmor <rcohen@armosec.io>
Co-authored-by: rcohencyberarmor <rcohen@armosec.io>
 2023-07-25 14:37:44 +03:00
DRAGON
d8e913fb9f feat: add build.ps1 
Signed-off-by: DRAGON <anantvijay3@gmail.com>
 2023-07-25 14:36:57 +05:30
David Wertenteil
a37b1f7319 update armo docs 
Signed-off-by: David Wertenteil <dwertent@armosec.io>
 2023-07-25 11:01:48 +03:00
rcohencyberarmor
b730ef5154 git recognition for empty directory for test 
Signed-off-by: rcohencyberarmor <rcohen@armosec.io>
 2023-07-24 17:24:13 +03:00
rcohencyberarmor
3280173e95 add error handle when there are no scan to trigger since the directory not contain any relevant scanning files 
Signed-off-by: rcohencyberarmor <rcohen@armosec.io>
 2023-07-24 17:17:06 +03:00
DRAGON
d0ae4f1c1a fix: yamlhandler error handling 
Signed-off-by: DRAGON <anantvijay3@gmail.com>
 2023-07-22 13:26:40 +05:30
Vlad Klokun
e4faad8284 Merge pull request #1287 from XDRAGON2002/issue_1255 
fix: --- kubescape fix
 2023-07-21 21:19:04 +03:00
Vlad Klokun
bc131efd91 tests(fixhandler): remove tests of an unexported sanitization method 
Signed-off-by: Vlad Klokun <vklokun@protonmail.ch>
 2023-07-21 20:29:04 +03:00
Vlad Klokun
4763f0d69d docs(fixhandler): follow Go Doc comments convention in sanitization func 
Signed-off-by: Vlad Klokun <vklokun@protonmail.ch>
 2023-07-21 20:28:18 +03:00
Vlad Klokun
22c412ce7f refactor(fixhandler): sanitize YAML inside ApplyFixToContent 
External observers don’t need to be aware of the fact we need to
sanitize leading document separators in YAML files. This should be
hidden inside our public function - `ApplyFixToContent()`.

Signed-off-by: Vlad Klokun <vklokun@protonmail.ch>
 2023-07-21 20:17:33 +03:00
Vlad Klokun
1503e984f8 tests(fixhandler): fail test if unable to open test data file 
Previously when there was a typo in a test file name, we silently
failed. This commit makes the test explicitly fail if a test data file
was not found.

Signed-off-by: Vlad Klokun <vklokun@protonmail.ch>
 2023-07-21 19:55:03 +03:00
Vlad Klokun
a4478ba899 style(fixhandler): newlines and spacing 
Ran with `go fmt`.

Signed-off-by: Vlad Klokun <vklokun@protonmail.ch>
 2023-07-21 19:45:43 +03:00
David Wertenteil
fcbcb53995 Merge pull request #1276 from amirmalka/time-based-cached-policies 
Time-based cached policies
 2023-07-20 16:56:39 +03:00
YiscahLevySilas1
17c43fd366 support related objects (#1272) 
* support related objects

Signed-off-by: YiscahLevySilas1 <yiscahls@armosec.io>

* update pkg versions

Signed-off-by: YiscahLevySilas1 <yiscahls@armosec.io>

* update go mod

Signed-off-by: YiscahLevySilas1 <yiscahls@armosec.io>

* fix test

Signed-off-by: YiscahLevySilas1 <yiscahls@armosec.io>

* fix test

Signed-off-by: YiscahLevySilas1 <yiscahls@armosec.io>

* only add ids of related resource

Signed-off-by: YiscahLevySilas1 <yiscahls@armosec.io>

* fixes following review

Signed-off-by: YiscahLevySilas1 <yiscahls@armosec.io>

* add test for processRule

Signed-off-by: YiscahLevySilas1 <yiscahls@armosec.io>

---------

Signed-off-by: YiscahLevySilas1 <yiscahls@armosec.io>
 2023-07-20 16:23:58 +03:00
YiscahLevySilas1
d44746cb85 allow adding a fw name when running all (#1286) 
* allow adding a fw name when running all

Signed-off-by: YiscahLevySilas1 <yiscahls@armosec.io>

clean code

Signed-off-by: YiscahLevySilas1 <yiscahls@armosec.io>

* fix following review

Signed-off-by: YiscahLevySilas1 <yiscahls@armosec.io>

---------

Signed-off-by: YiscahLevySilas1 <yiscahls@armosec.io>
 2023-07-20 14:07:38 +03:00
DRAGON
912035662b fix: --- kubescape fix 
Signed-off-by: DRAGON <anantvijay3@gmail.com>
 2023-07-20 00:05:23 +05:30
Matthias Bertschy
61dac76369 Merge pull request #1283 from kubescape/remove-website 
Remove website folder
 2023-07-19 16:29:34 +02:00
Amir Malka
bacf15eeb8 cache control inputs 
Signed-off-by: Amir Malka <amirm@armosec.io>
 2023-07-18 15:56:16 +03:00
Craig Box
0a5af235e3 Remove website folder 
Signed-off-by: Craig Box <craigb@armosec.io>
 2023-07-17 20:09:34 +12:00
David Wertenteil
6fec02caff Merge pull request #1281 from XDRAGON2002/issue_1280 
fix: stuck spinner
 2023-07-17 09:27:26 +03:00
DRAGON
067655d003 fix: stuck spinner 
Signed-off-by: DRAGON <anantvijay3@gmail.com>
 2023-07-14 01:24:46 +05:30
Amir Malka
e470fce6ed initial implementation of OpenTelemetry metrics collection (#1269) 
Signed-off-by: Amir Malka <amirm@armosec.io>
 2023-07-10 14:22:26 +03:00
Amir Malka
ea3172eda6 time-based cached policies 
Signed-off-by: Amir Malka <amirm@armosec.io>
 2023-07-10 10:54:56 +03:00
David Wertenteil
f060d02fbc Merge pull request #1267 from dwertent/submit-untracked-files 
feat(file scanning): Submit untracked files
v2.3.7 		2023-07-06 09:40:21 +03:00
David Wertenteil
43975ddafe Merge pull request #1266 from batazor/patch-1 
Update grafana-kubescape-dashboard.json
 2023-07-06 09:40:06 +03:00
David Wertenteil
abe0477249 Merge pull request #1265 from dwertent/update-submit-message 
Update submit message
 2023-07-06 09:39:04 +03:00
David Wertenteil
5f197eb27c submit file scanning 
Signed-off-by: David Wertenteil <dwertent@armosec.io>
 2023-07-06 09:25:34 +03:00
Victor Login
84b43d2b03 Update grafana-kubescape-dashboard.json 
Signed-off-by: Victor Login <batazor@evrone.com>
 2023-07-05 19:03:27 +02:00
David Wertenteil
b149e00d1a Merge pull request #1264 from dwertent/deprecate-image-controls 
core(adaptors): Ignore adaptors when credentials are not set
 2023-07-05 17:48:12 +03:00
David Wertenteil
f98b394ec2 Merge pull request #1254 from kubescape/rbac-fix 
initialize ns in case we don't have one in YAML
 2023-07-05 17:47:42 +03:00
David Wertenteil
492b08c995 Merge pull request #1259 from kubescape/update_regolibrary_version 
Update regolibrary version
 2023-07-05 17:46:35 +03:00
David Wertenteil
8fa15688fb Merge pull request #1260 from dwertent/deprecate-host-scanner 
Deprecated host-scanner from CLI
 2023-07-05 17:46:12 +03:00
David Wertenteil
1a3e140e56 Merge pull request #1261 from Oshratn/master 
English language fix on Kubescape output
 2023-07-05 12:59:19 +03:00
David Wertenteil
72f6988bb4 update messaging based on Oshrats comments 
Signed-off-by: David Wertenteil <dwertent@armosec.io>
 2023-07-05 10:40:22 +03:00
David Wertenteil
780be45392 update submit message 
Signed-off-by: David Wertenteil <dwertent@armosec.io>
 2023-07-05 10:38:59 +03:00
David Wertenteil
676771e8b3 deprecate the login flags 
Signed-off-by: David Wertenteil <dwertent@armosec.io>
 2023-07-05 10:16:09 +03:00
David Wertenteil
06f5c24b7d ignore adaptors if credentials are not set 
Signed-off-by: David Wertenteil <dwertent@armosec.io>
 2023-07-05 10:13:21 +03:00