github/kubescape
1
0
Fork 0
mirror of https://github.com/kubescape/kubescape.git synced 2026-04-15 06:58:11 +00:00
Code Issues Packages Projects Releases Wiki Activity
2,451 Commits 23 Branches 553 Tags
d55a74c6b2abbad33df10aab20b189a0d24bfb43
Commit Graph

443 Commits

Author SHA1 Message Date
Amir Malka
e470fce6ed initial implementation of OpenTelemetry metrics collection (#1269) 
Signed-off-by: Amir Malka <amirm@armosec.io>
 2023-07-10 14:22:26 +03:00
David Wertenteil
abe0477249 Merge pull request #1265 from dwertent/update-submit-message 
Update submit message
 2023-07-06 09:39:04 +03:00
David Wertenteil
b149e00d1a Merge pull request #1264 from dwertent/deprecate-image-controls 
core(adaptors): Ignore adaptors when credentials are not set
 2023-07-05 17:48:12 +03:00
David Wertenteil
f98b394ec2 Merge pull request #1254 from kubescape/rbac-fix 
initialize ns in case we don't have one in YAML
 2023-07-05 17:47:42 +03:00
David Wertenteil
8fa15688fb Merge pull request #1260 from dwertent/deprecate-host-scanner 
Deprecated host-scanner from CLI
 2023-07-05 17:46:12 +03:00
David Wertenteil
780be45392 update submit message 
Signed-off-by: David Wertenteil <dwertent@armosec.io>
 2023-07-05 10:38:59 +03:00
David Wertenteil
06f5c24b7d ignore adaptors if credentials are not set 
Signed-off-by: David Wertenteil <dwertent@armosec.io>
 2023-07-05 10:13:21 +03:00
Oshrat Nir
3c38021f7c Changed Assistance Remediation to Assited Remediation 
Signed-off-by: Oshrat Nir <oshratn@gmail.com>
 2023-07-04 13:13:50 +03:00
David Wertenteil
8989cc1679 Deprecated host-scanner 
Signed-off-by: David Wertenteil <dwertent@armosec.io>
 2023-07-04 09:43:10 +03:00
Matthias Bertschy
99938ecbee initialize ns in case we don't have one in YAML 
Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>
 2023-06-19 07:47:29 +02:00
guoguangwu
be63e1ef7c chore: remove refs to deprecated io/ioutil 
Signed-off-by: guoguangwu <guoguangwu@magic-shield.com>
 2023-06-14 16:33:24 +08:00
YiscahLevySilas1
8ee72895b9 Fix statuses - Manual review and Requires configuration (#1251) 
* fix statuses - req. review, configurations, manual

Signed-off-by: YiscahLevySilas1 <yiscahls@armosec.io>

* update opa-utils version

Signed-off-by: YiscahLevySilas1 <yiscahls@armosec.io>

* update opa-utils version

Signed-off-by: YiscahLevySilas1 <yiscahls@armosec.io>

* update opa-utils version

Signed-off-by: YiscahLevySilas1 <yiscahls@armosec.io>

* use const for inner info

Signed-off-by: YiscahLevySilas1 <yiscahls@armosec.io>

---------

Signed-off-by: YiscahLevySilas1 <yiscahls@armosec.io>
 2023-06-12 10:38:35 +03:00
Nitish Chauhan
6cefada215 correcting the formating of the table in pdf output (#1244) 
* correcting the formatting of the table in pdf output

Signed-off-by: ntishchauhan0022 <nitishchauhan0022@gmail.com>

* adding some starting unit tests

Signed-off-by: ntishchauhan0022 <nitishchauhan0022@gmail.com>

* resolving the mod error

Signed-off-by: ntishchauhan0022 <nitishchauhan0022@gmail.com>

---------

Signed-off-by: ntishchauhan0022 <nitishchauhan0022@gmail.com>
 2023-06-04 15:21:07 +03:00
Alessio Greggi
ce7fde582c fix: update host-scanner version 
Signed-off-by: Alessio Greggi <ale_grey_91@hotmail.it>
 2023-05-31 14:14:29 +02:00
Alessio Greggi
9e2fe607d8 fix: remove deprecated endpoint 
Signed-off-by: Alessio Greggi <ale_grey_91@hotmail.it>
 2023-05-30 10:50:31 +02:00
Alessio Greggi
c486b4fed7 feat: add log coupling for hostsensorutils 
Signed-off-by: Alessio Greggi <ale_grey_91@hotmail.it>
 2023-05-24 14:46:34 +02:00
Alessio Greggi
00c48d756d fix(hostsensorutils): add finalizers deletion 
Signed-off-by: Alessio Greggi <ale_grey_91@hotmail.it>
 2023-05-24 11:49:15 +02:00
Alessio Greggi
b49563ae8c fix(hostsensorutils): reduce periods of readiness probe 
Signed-off-by: Alessio Greggi <ale_grey_91@hotmail.it>
 2023-05-24 11:34:04 +02:00
Alessio Greggi
7840ecb5da fix: move host-scanner to kubescape namespace 
Signed-off-by: Alessio Greggi <ale_grey_91@hotmail.it>
 2023-05-24 09:45:12 +02:00
Amir Malka
987f97102d bump opa-utils version for memory optimizations 
Signed-off-by: Amir Malka <amirm@armosec.io>
 2023-05-22 16:44:11 +03:00
Amir Malka
0a0ef10d50 Control parallelism of opa rule processing by env var (#1230) 
* control parallelism of opa rule processing by env var

Signed-off-by: Amir Malka <amirm@armosec.io>

* go 1.20

Signed-off-by: Amir Malka <amirm@armosec.io>

* update go.mod go.sum

Signed-off-by: Amir Malka <amirm@armosec.io>

---------

Signed-off-by: Amir Malka <amirm@armosec.io>
 2023-05-14 14:59:21 +03:00
Matthias Bertschy
75b64d58f3 change basic auth username to x-token-auth 
Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>
 2023-05-01 10:55:07 +02:00
YiscahLevySilas1
b7935276e3 Merge branch 'master' of github.com:kubescape/kubescape into new-threshold-flag 
Signed-off-by: YiscahLevySilas1 <yiscahls@armosec.io>
 2023-04-27 15:56:12 +03:00
YiscahLevySilas1
d6edd818b8 add compliance score to new field in controls for backward compatibility 
Signed-off-by: YiscahLevySilas1 <yiscahls@armosec.io>
 2023-04-27 15:53:47 +03:00
David Wertenteil
a73081c816 Merge pull request #1203 from kubescape/fix/remove-outdated-endpoints 
fix: remove outdated enpoints
 2023-04-27 11:23:18 +03:00
Alessio Greggi
76ced13a26 fix(hostsensorutils): fix indentation of probe attributes 
Signed-off-by: Alessio Greggi <ale_grey_91@hotmail.it>
 2023-04-26 16:16:29 +02:00
YiscahLevySilas1
95e88f8581 add compliance-threshold, deprecate fail-threshold (#1197) 
* add compliance-threshold, deprecate fail-threshold

Signed-off-by: YiscahLevySilas1 <yiscahls@armosec.io>

* update opa-utils version

Signed-off-by: YiscahLevySilas1 <yiscahls@armosec.io>

* update opa-utils version for fix in compliance score

Signed-off-by: YiscahLevySilas1 <yiscahls@armosec.io>

---------

Signed-off-by: YiscahLevySilas1 <yiscahls@armosec.io>
 2023-04-24 15:33:30 +03:00
Alessio Greggi
b48c04da63 fix: remove outdated enpoints 
Signed-off-by: Alessio Greggi <ale_grey_91@hotmail.it>
 2023-04-21 19:47:24 +02:00
David Wertenteil
ecf770c756 Merge pull request #1189 from dwertent/hotfix-2.2.6-add_data 
fix(submit): set default report time
 2023-04-20 16:39:51 +03:00
YiscahLevySilas1
344e9188f6 add compliance-threshold, deprecate fail-threshold 
Signed-off-by: YiscahLevySilas1 <yiscahls@armosec.io>
 2023-04-17 16:08:38 +03:00
Hollow Man
5c1a41e920 nit 
Signed-off-by: Hollow Man <hollowman@opensuse.org>
 2023-04-13 10:54:25 +03:00
Hollow Man
0b8d207615 Add more error check 
Signed-off-by: Hollow Man <hollowman@opensuse.org>
 2023-04-13 10:54:25 +03:00
Hollow Man
539b6c51b9 Add unit testcase 
Signed-off-by: Hollow Man <hollowman@opensuse.org>
 2023-04-13 10:54:25 +03:00
Hollow Man
19ca590e2f S1023: redundant break statement (gosimple) 
Signed-off-by: Hollow Man <hollowman@opensuse.org>
 2023-04-13 10:54:25 +03:00
Hollow Man
4de50f82c0 feat(sarif): add fix object in generated reports 
Signed-off-by: Hollow Man <hollowman@opensuse.org>
 2023-04-13 10:54:19 +03:00
David Wertenteil
91c13381b2 set default report time 
Signed-off-by: David Wertenteil <dwertent@armosec.io>
 2023-04-09 11:15:06 +02:00
Hollow Man
64e3b08641 fix(fix): mixed up change list 
Signed-off-by: Hollow Man <hollowman@opensuse.org>
 2023-04-07 01:07:49 +03:00
yuleib
875deb7ec3 adding compliance score updates (#1181) 
Signed-off-by: Yuval Leibovich <yuvall@armosec.io>
 2023-04-04 16:03:40 +03:00
YiscahLevySilas1
93a35fffbd comment failing test because of many requests 
Signed-off-by: YiscahLevySilas1 <yiscahls@armosec.io>
 2023-04-03 10:45:51 +03:00
Alessio Greggi
feb39ed130 test: fix test with new function argument 
Signed-off-by: Alessio Greggi <ale_grey_91@hotmail.it>
 2023-03-28 16:39:00 +02:00
Alessio Greggi
f010364c98 feat: add progress bar during cloud resources download 
Signed-off-by: Alessio Greggi <ale_grey_91@hotmail.it>
 2023-03-28 16:10:55 +02:00
David Wertenteil
7b9ad26e8e update host scanner image tag 
Signed-off-by: David Wertenteil <dwertent@armosec.io>
 2023-03-26 15:07:06 +03:00
Frédéric BIDON
a090a296fa refact(hostsensorutils): unexported fields that don't need to be exposed 
Also:
* declared scanner resources as an enum type
* replaced stdlib json, added uit tests for skipped resources
* unexported worker pool
* more unexported methods (i.e. everything that is not part of the interface)
* refact(core): clarified mock injection logic and added a few unit tests at the caller's (CLI init utils)

Signed-off-by: Frederic BIDON <fredbi@yahoo.com>
 2023-03-25 09:37:24 +01:00
Matthias Bertschy
1e1a48bd9a Merge pull request #1064 from fredbi/perf/opaprocessor-process 
perf(opaprocessor): run OPA rule compilation and evaluation in parallel
 2023-03-24 15:38:14 +01:00
Frederic BIDON
dee3a10bac test(utils): introduced internal/testutils package to factorize testing utilities 
Signed-off-by: Frederic BIDON <fredbi@yahoo.com>
Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>

Conflicts:
	core/pkg/hostsensorutils/hostsensordeploy_test.go
 2023-03-24 11:15:25 +01:00
Frédéric BIDON
5b62b0b749 addressed review from David: reverted on unconditional loop exit 
Signed-off-by: Frédéric BIDON <fredbi@yahoo.com>
 2023-03-23 16:56:37 +01:00
Frédéric BIDON
e4f34f6173 refact(host-sensor): refactors the host sensor 
This PR factorizes the list of calls to the host-scanner API in a loop.

More godoc-friendly doc strings are added.

Signed-off-by: Frédéric BIDON <fredbi@yahoo.com>
 2023-03-23 16:56:37 +01:00
Frédéric BIDON
4a9f26b27c perf(opaprocessor): run OPA rule compilation and evaluation in parallel 
This parallelize the Process() portion of the OPA processor.

The main change is that called methods to evaluate a rule no longer
mutate the internal state of the opaprocessor and allocate maps (less
often, in larger chunks) that are merged at the end of the processing.

Signed-off-by: Frédéric BIDON <fredbi@yahoo.com>
 2023-03-23 16:56:21 +01:00
David Wertenteil
b4180b34e7 core(logs): Enhance logs (#1158) 
* adding ks version

Signed-off-by: David Wertenteil <dwertent@armosec.io>

* Initialize scanInfo

Signed-off-by: David Wertenteil <dwertent@armosec.io>

* print if logger level is lower than warning

Signed-off-by: David Wertenteil <dwertent@armosec.io>

* wip: scan default frameworks when scanning files

Signed-off-by: David Wertenteil <dwertent@armosec.io>

* change print to log

Signed-off-by: David Wertenteil <dwertent@armosec.io>

* wip: Add end-line after last log

Signed-off-by: David Wertenteil <dwertent@armosec.io>

* wip: silent spinner when logger is warn

Signed-off-by: David Wertenteil <dwertent@armosec.io>

---------

Signed-off-by: David Wertenteil <dwertent@armosec.io>
 2023-03-20 17:49:51 +02:00
David Wertenteil
d0b5c7c2c2 update host scanner image tag 
Signed-off-by: David Wertenteil <dwertent@armosec.io>
 2023-03-16 09:45:12 +02:00