aboutsummaryrefslogtreecommitdiffstats
path: root/functest_kubernetes/security/kube-hunter.yaml
diff options
context:
space:
mode:
authormrichomme <morgan.richomme@orange.com>2020-02-10 17:49:43 +0100
committerCédric Ollivier <cedric.ollivier@orange.com>2020-07-02 09:37:40 +0200
commitea4ae5de28b08d5be02425e6ef14c2c68444cbfa (patch)
tree66259ae4f98cda60cf0d0e3504ede3f7cd7d9555 /functest_kubernetes/security/kube-hunter.yaml
parent5169cd72511838af0cedd9ce6b5c3baba45d8f6c (diff)
Add security docker for functest-kubernetes
run kube-hunter and kube-bench cases dealing with security in kubernetes (check vulnerabilities) [1][2] It's the first step only printing the output. [1]: https://github.com/aquasecurity/kube-bench [2]: https://github.com/aquasecurity/kube-hunter Co-Authored-By: Cédric Ollivier <cedric.ollivier@orange.com> Change-Id: I3bd9bda80046ef7a0c494d51dfb0b8cbfea02bb0 Signed-off-by: mrichomme <morgan.richomme@orange.com> (cherry picked from commit 98d9f93337ab514fa9aafc1cd1e87473de68b364) (cherry picked from commit 0626f54b8686134515eab3b9014c5b538405d84f)
Diffstat (limited to 'functest_kubernetes/security/kube-hunter.yaml')
-rw-r--r--functest_kubernetes/security/kube-hunter.yaml14
1 files changed, 14 insertions, 0 deletions
diff --git a/functest_kubernetes/security/kube-hunter.yaml b/functest_kubernetes/security/kube-hunter.yaml
new file mode 100644
index 00000000..ce88c062
--- /dev/null
+++ b/functest_kubernetes/security/kube-hunter.yaml
@@ -0,0 +1,14 @@
+apiVersion: batch/v1
+kind: Job
+metadata:
+ name: kube-hunter
+spec:
+ template:
+ spec:
+ containers:
+ - name: kube-hunter
+ image: aquasec/kube-hunter
+ command: ["python", "kube-hunter.py"]
+ args: ["--pod"]
+ restartPolicy: Never
+ backoffLimit: 4