arno/kube-bench
1
0
Fork 0
mirror of https://github.com/aquasecurity/kube-bench.git synced 2025-02-21 12:02:30 +00:00
Code Issues Releases Wiki Activity
d255b49d4b
kube-bench/cfg/1.11
History
Abubakr-Sadik Nii Nai Davis a88b0703d8 Add kubeconfig variable substitution for kubelet and proxy. 
There are checks for the kubeconfig for both kubelet and proxy which
the current kube-bench implementation does not check for properly.
kube-bench checks the wrong files.

This PR adds support for variable substitution for all the config file
types are that should be checked in the CIS benchmarks.

This PR also fixes a buggy in CIS 1.3.0 check 2.2.9, which checks for
ownership of the kubelet config file /var/lib/kubelet/config.yaml but
recommends changing ownership of kubelet kubeconfig file
/etc/kubernetes/kubelet.conf as remediation.
2019-02-27 22:15:14 +00:00
..
config.yaml Update kubernetes node benchmark to check kubelet systemd unitfile. 2018-10-23 02:30:08 +00:00
master.yaml Changed 1.1.14 to not fail when flag is not set 2019-01-08 13:58:41 +01:00
node.yaml Add kubeconfig variable substitution for kubelet and proxy. 2019-02-27 22:15:14 +00:00