patelpayal
e6e6333e6d
add glog flush to write the output to a file ( #329 )
...
* add glog flush to write the output to a file
* add glog flush before exit on error and fix code comment
5 years ago
nshauli
e64f61fa7f
Add --outputfile flag for writing json results to output file ( #295 )
5 years ago
Yoav Hizkiahou
3aa28c4c32
Printing the actual test result of failed tests - when a flag is raised
...
fix #110
5 years ago
Daniel Pacak
5fb133cd02
Adjust the semantics of scored and unscored flags
5 years ago
Daniel Pacak
306e1960af
Add flags to further filter CIS checks to run
5 years ago
Cyril Tovena
5baf81a70a
Adds master node detection and a root command that automatically detect checks to run.
...
The root command will run node checks and if possible master checks.
I've also added some Makefile targets to improve local testing and improve the documentation.
5 years ago
bvwells
cc43fcbb7e
Add link to CIS kubernetes benchmark
6 years ago
Abubakr-Sadik Nii Nai Davis
6d237607fb
Fix typo in help text.
6 years ago
Abubakr-Sadik Nii Nai Davis
5da707b8d6
Remove CIS benchmark version in tool title.
...
it has grown stale and is dependent on k8s version we are checking.
6 years ago
Liz Rice
0b4872104d
Merge branch 'master' into feature/issue-107
6 years ago
Will Medlar
9469b1c124
Allow kubernetes version and config directory to be specified ( resolves #107 )
6 years ago
Abubakr-Sadik Nii Nai Davis
ade064006e
Add extra output manipulation flags, --noremediations, --nosummary and
...
--noresults.
These flags disable printing sections of the final output of kube-bench.
6 years ago
Lee Briggs
94a1f3c41f
Lint all code for golint tests
7 years ago
Abubakr-Sadik Nii Nai Davis
42a1068964
Add default version if version check fails.
7 years ago
Steven Logue
d79a2a5478
added support for saving scan results to pgsql
7 years ago
Liz Rice
c4be4a1240
Remove installation flag and some other unused variables
7 years ago
Abubakr-Sadik Nii Nai Davis
f88de572f6
Improve error handling.
7 years ago
Abubakr-Sadik Nii Nai Davis
3d395994b0
Change environment variable prefix.
7 years ago
Abubakr-Sadik Nii Nai Davis
609c4ff01c
Move kubernetes binaries and config paths to kube-bench config.
7 years ago
Abubakr-Sadik Nii Nai Davis
2ee99eca64
Add support for various installation modes, hyperkube, kubeadm and kops.
...
Issue #17 .
7 years ago
Abubakr-Sadik Nii Nai Davis
bd53529387
Fix issue #16 about supporting verbosity.
7 years ago
Abubakr-Sadik Nii Nai Davis
d0d9900b29
Resolve issue #7 wait: error running audit command exit status 1.
...
This is caused by a command in the audit pipeline (for example
ps -ef | grep kube-apiserver) failing. The causes of this failure
in my testing is usually a missing config file.
Extensive refactor and correction in verification code to check for
config files and binaries.
Replace joncalhoun/pipes with implementation using exec.Cmds so errors
are visible and can be handled when audit pipeline commands fail.
Change some audit commands
from: ps -ef | grep <cmd> | grep -v
to: ps -C <something> -o comm,args --no-headers
which is simpler to work with.
7 years ago
Liz Rice
07750ea43a
Don't output message about config file if output format is JSON
7 years ago
Liz Rice
f6509b804e
Typo
7 years ago
Liz Rice
0d6d3a03ef
Allow config file to be specified on the command line
7 years ago
Liz Rice
96364e3f29
Error if the config file can’t be found
7 years ago
jerbia
432651e85f
Added test 1.4.11 ( #8 )
7 years ago
Liz Rice
c3d67e0fee
Use colorPrint for config file info too
7 years ago
Liz Rice
dcd416a521
Executable name changes
...
Updates to travis file, readme and help text
7 years ago
Amir Jerbi
55fd838191
No need to run install.sh.
...
Simply clone the project, compile the go app and run ./cis_kubernetes
7 years ago
Liz Rice
26cc77ec1d
Get the tests working on deployments where file names may be different or not in path ( #1 )
...
* Replace the default help text
* Readme file, including the test config format documentation
* Typo
* Warn if config files / executables aren't found
* Ignore original name of executable (as per current README)
* Update tests to avoid failing on stat of a non-existant file
* Add a makefile for ease of build
7 years ago
Amir Jerbi
154a140f74
Initial commit
7 years ago