mirror of
https://github.com/aquasecurity/kube-bench.git
synced 2025-01-01 19:30:53 +00:00
Merge pull request #251 from aquasecurity/version-mapping
Add CIS & Kubernetes version mapping to README
This commit is contained in:
commit
588d75d20d
14
README.md
14
README.md
@ -13,7 +13,17 @@ Tests are configured with YAML files, making this tool easy to update as test sp
|
|||||||
|
|
||||||
## CIS Kubernetes Benchmark support
|
## CIS Kubernetes Benchmark support
|
||||||
|
|
||||||
kube-bench supports the tests for multiple versions of Kubernetes (1.6, 1.7, 1.8, and 1.11) as defined in the CIS Benchmarks 1.0.0, 1.1.0, 1.2.0, and 1.3.0 respectively. It will determine the test set to run based on the Kubernetes version running on the machine.
|
kube-bench supports the tests for Kubernetes as defined in the CIS Benchmarks 1.0.0 to 1.4.0 respectively.
|
||||||
|
|
||||||
|
| CIS Kubernetes Benchmark | kube-bench config | Kubernetes versions |
|
||||||
|
|---|---|---|
|
||||||
|
| 1.0.0| 1.6 | 1.6 |
|
||||||
|
| 1.1.0| 1.7 | 1.7 |
|
||||||
|
| 1.2.0| 1.8 | 1.8-1.10 |
|
||||||
|
| 1.3.0| 1.11 | 1.11-1.12 |
|
||||||
|
| 1.4.0| 1.13 | 1.13- |
|
||||||
|
|
||||||
|
By default kube-bench will determine the test set to run based on the Kubernetes version running on the machine.
|
||||||
|
|
||||||
## Installation
|
## Installation
|
||||||
|
|
||||||
@ -188,4 +198,4 @@ Next you'll have to build the kube-bench docker image using `make build-docker`,
|
|||||||
|
|
||||||
Finally we can use the `make kind-run` target to run the current version of kube-bench in the cluster and follow the logs of pods created. (Ctrl+C to exit)
|
Finally we can use the `make kind-run` target to run the current version of kube-bench in the cluster and follow the logs of pods created. (Ctrl+C to exit)
|
||||||
|
|
||||||
Everytime you want to test a change, you'll need to rebuild the docker image and push it to cluster before running it again. ( `make build-docker kind-push kind-run` )
|
Everytime you want to test a change, you'll need to rebuild the docker image and push it to cluster before running it again. ( `make build-docker kind-push kind-run` )
|
||||||
|
Loading…
Reference in New Issue
Block a user