From bd0f59a013d43ece3a3156158e8874f892041f54 Mon Sep 17 00:00:00 2001
From: Borko <borkod@users.noreply.github.com>
Date: Mon, 16 Nov 2020 07:38:02 -0500
Subject: [PATCH] Added Kubernetes Job for AKS-1.0 tests. (#735)

---
 job-aks.yaml | 34 ++++++++++++++++++++++++++++++++++
 1 file changed, 34 insertions(+)
 create mode 100644 job-aks.yaml

diff --git a/job-aks.yaml b/job-aks.yaml
new file mode 100644
index 0000000..56b6e50
--- /dev/null
+++ b/job-aks.yaml
@@ -0,0 +1,34 @@
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  name: kube-bench
+spec:
+  template:
+    spec:
+      hostPID: true
+      containers:
+        - name: kube-bench
+          image: aquasec/kube-bench:latest
+          command: ["kube-bench", "node", "--benchmark", "aks-1.0"]
+          volumeMounts:
+            - name: var-lib-kubelet
+              mountPath: /var/lib/kubelet
+              readOnly: true
+            - name: etc-systemd
+              mountPath: /etc/systemd
+              readOnly: true
+            - name: etc-kubernetes
+              mountPath: /etc/kubernetes
+              readOnly: true
+      restartPolicy: Never
+      volumes:
+        - name: var-lib-kubelet
+          hostPath:
+            path: "/var/lib/kubelet"
+        - name: etc-systemd
+          hostPath:
+            path: "/etc/systemd"
+        - name: etc-kubernetes
+          hostPath:
+            path: "/etc/kubernetes"