github/kubescape
1
0
Fork 0
mirror of https://github.com/kubescape/kubescape.git synced 2026-04-15 06:58:11 +00:00
Code Issues Packages Projects Releases Wiki Activity
2,501 Commits 23 Branches 553 Tags
ba134ebc3262dcefeba53dfcf287967c19b4b298
Commit Graph

25 Commits

Author SHA1 Message Date
Daniel Grunberger
5379b9b0a6 New output (#1320) 
* phase-1

Signed-off-by: Daniel Grunberger <danielgrunberger@armosec.io>

* factory

Signed-off-by: Daniel Grunberger <danielgrunberger@armosec.io>

* wip: feat(cli): add an image scanning command

Add a CLI command that launches an image scan. Does not scan images yet.

Signed-off-by: Vlad Klokun <vklokun@protonmail.ch>

* wip: feat: add image scanning service

Signed-off-by: Vlad Klokun <vklokun@protonmail.ch>

* chore: include dependencies

Signed-off-by: Vlad Klokun <vklokun@protonmail.ch>

* wip: adjust image scanning service

Signed-off-by: Vlad Klokun <vklokun@protonmail.ch>

* wip: feat: use scanning service in CLI

Signed-off-by: Vlad Klokun <vklokun@protonmail.ch>

* use iface

Signed-off-by: Daniel Grunberger <danielgrunberger@armosec.io>

* touches

Signed-off-by: Daniel Grunberger <danielgrunberger@armosec.io>

* continue

Signed-off-by: Daniel Grunberger <danielgrunberger@armosec.io>

* add cmd

Signed-off-by: Daniel Grunberger <danielgrunberger@armosec.io>

* support single workload scan

Signed-off-by: Amir Malka <amirm@armosec.io>

* fix conflict

Signed-off-by: Amir Malka <amirm@armosec.io>

* identifiers

* go mod

* feat(imagescan): add an image scanning command

This commit adds a CLI command and an associated package that scan
images for vulnerabilities.

Signed-off-by: Vlad Klokun <vklokun@protonmail.ch>

feat(imagescan): fail on exceeding the severity threshold

Signed-off-by: Vlad Klokun <vklokun@protonmail.ch>

* chore(imagescan): include dependencies

This commit adds the dependencies necessary for image scanning.

Signed-off-by: Vlad Klokun <vklokun@protonmail.ch>

* chore(imagescan): add dependencies to httphandler

Signed-off-by: Vlad Klokun <vklokun@protonmail.ch>

* added unit tests

Signed-off-by: Amir Malka <amirm@armosec.io>

* merge

* more

* integrate img scan

* added unit tests

Signed-off-by: Amir Malka <amirm@armosec.io>

* more refactoring

Signed-off-by: Amir Malka <amirm@armosec.io>

* add scanned workload reference to opasessionobj

Signed-off-by: Amir Malka <amirm@armosec.io>

* fix GetWorkloadParentKind

Signed-off-by: Amir Malka <amirm@armosec.io>

* remove namespace argument from pullSingleResource, using field selector instead

Signed-off-by: Amir Malka <amirm@armosec.io>

* removed designators (unused) field from PolicyIdentifier, and designators argument from GetResources function

Signed-off-by: Amir Malka <amirm@armosec.io>

* changes

* changes

* fixes

* changes

* feat(imagescan): add an image scanning command

This commit adds a CLI command and an associated package that scan
images for vulnerabilities.

Signed-off-by: Vlad Klokun <vklokun@protonmail.ch>

feat(imagescan): fail on exceeding the severity threshold

Signed-off-by: Vlad Klokun <vklokun@protonmail.ch>

* chore(imagescan): include dependencies

This commit adds the dependencies necessary for image scanning.

Signed-off-by: Vlad Klokun <vklokun@protonmail.ch>

* chore(imagescan): add dependencies to httphandler

Signed-off-by: Vlad Klokun <vklokun@protonmail.ch>

* chore(imagescan): create vuln db with dedicated function

Remove commented out code, too.

Signed-off-by: Vlad Klokun <vklokun@protonmail.ch>

* docs(imagescan): provide package-level docs

Signed-off-by: Vlad Klokun <vklokun@protonmail.ch>

* finish merge

* image scan tests

* continue

* fixes

* refactor

* rm duplicate

* start fixes

* update gh actions

Signed-off-by: David Wertenteil <dwertent@armosec.io>

* pr fixes

* fix test

* improvements

---------

Signed-off-by: Daniel Grunberger <danielgrunberger@armosec.io>
Signed-off-by: Vlad Klokun <vklokun@protonmail.ch>
Signed-off-by: Amir Malka <amirm@armosec.io>
Signed-off-by: David Wertenteil <dwertent@armosec.io>
Co-authored-by: Daniel Grunberger <danielgrunberger@armosec.io>
Co-authored-by: Vlad Klokun <vklokun@protonmail.ch>
Co-authored-by: Amir Malka <amirm@armosec.io>
Co-authored-by: David Wertenteil <dwertent@armosec.io>
 2023-08-03 12:09:33 +03:00
Amir Malka
b26f83d0bd update go version 1.19->1.20 
Signed-off-by: Amir Malka <amirm@armosec.io>
 2023-05-14 10:04:30 +03:00
YiscahLevySilas1
aff8cc480e add compliance score system test 
Signed-off-by: YiscahLevySilas1 <yiscahls@armosec.io>
 2023-05-07 16:07:39 +03:00
Hollow Man
d4b75dcb0c ci: update before install packages 
Signed-off-by: Hollow Man <hollowman@opensuse.org>
 2023-04-27 15:50:21 +00:00
Hollow Man
e8d92ffd43 Resume test core pkg under ubuntu arm64 
Signed-off-by: Hollow Man <hollowman@opensuse.org>
 2023-04-07 00:47:40 +03:00
Hollow Man
48a15e1a8d Disable multi-platform test with commits 
Signed-off-by: Hollow Man <hollowman@opensuse.org>
 2023-04-07 00:47:40 +03:00
Hollow Man
9327f70e1a Fix naming 
Signed-off-by: Hollow Man <hollowman@opensuse.org>
 2023-04-07 00:47:40 +03:00
Hollow Man
c498026208 Disable core pkg test for ubuntu arm64 
Signed-off-by: Hollow Man <hollowman@opensuse.org>
 2023-04-07 00:47:40 +03:00
Hollow Man
3238555df3 add cross compilation for ubuntu arm64 
Signed-off-by: Hollow Man <hollowman@opensuse.org>
 2023-04-07 00:47:40 +03:00
Hollow Man
0c77d89bfc add cross compilation for mac m1 
Signed-off-by: Hollow Man <hollowman@opensuse.org>
 2023-04-07 00:47:40 +03:00
Matan Shkalim
173eac552c delete BUILD_AND_TEST_LOCAL_KUBESCAPE_CLI input for b-binary-build-and-e2e-tests wf 
Signed-off-by: Matan Shkalim <shekel8@gmail.com>
 2023-04-03 07:40:09 +01:00
Matan Avital
678ef2b787 changed ks_branch to release 
Signed-off-by: Matan Avital <matavital13@gmail.com>
 2023-03-20 17:34:48 +02:00
Matan Avital
2ea9e1a596 moved the output TEST_NAMES to wf-preparation job (was check-secret job) and added step export_tests.. 
Signed-off-by: Matan Avital <matavital13@gmail.com>
 2023-03-20 17:22:52 +02:00
Matan Avital
62e3d3263d fixed syntax error 
Signed-off-by: Matan Avital <matavital13@gmail.com>
 2023-03-20 14:11:09 +02:00
Matan Avital
650d489c26 fixed syntax error 
Signed-off-by: Matan Avital <matavital13@gmail.com>
 2023-03-20 14:09:04 +02:00
Matan Avital
100822f48d added input to make the binary build and test dynamic 
Signed-off-by: Matan Avital <matavital13@gmail.com>
 2023-03-20 13:45:31 +02:00
Matan Avital
e3d5a8c3c6 added CHECKOUT_REPO input parameter 
Signed-off-by: Matan Avital <matavital13@gmail.com>
 2023-03-19 18:19:48 +02:00
Alessio Greggi
e419af6c03 ci: pin workflows versions to fixed commits 
Signed-off-by: Alessio Greggi <ale_grey_91@hotmail.it>
 2023-02-27 21:43:09 +01:00
Amir Malka
cc823d7559 fix macos build - add missing pkg-config 
Signed-off-by: Amir Malka <amirm@armosec.io>
 2023-02-21 10:13:08 +02:00
David Wertenteil
17f313177c release with new tag 
Signed-off-by: David Wertenteil <dwertent@armosec.io>
 2023-02-06 15:49:13 +02:00
David Wertenteil
a81353aa15 Leave release var empty for tests 
Signed-off-by: David Wertenteil <dwertent@armosec.io>
 2023-02-06 15:49:12 +02:00
David Wertenteil
b675d09fe2 rename build dir 
Signed-off-by: David Wertenteil <dwertent@armosec.io>
 2023-02-06 15:49:12 +02:00
David Wertenteil
ce43661307 Revert "change wf trigger" 2023-02-02 16:39:16 +02:00
Matan Shkalim
16c74a228f change wf trigger 
Signed-off-by: Matan Shkalim <shekel8@gmail.com>
 2023-02-01 16:24:11 +00:00
Matan Shkalim
ac60dbed5e add new workflows + action 
Signed-off-by: Matan Shkalim <shekel8@gmail.com>
 2023-01-31 13:01:22 +00:00