Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Several security tests have been developed and integrated in the CI since the beginning of ONAP.The main of this page is to compare the existing k8S security tests versus the Kubescape tool developed according to NSA recommendations.


Integration Security tests are deployed (some tests are developped internally) by integration Teams.

Image Added



Kubescape is the first open-source tool for testing if Kubernetes is deployed securely according to multiple frameworks: regulatory, customized company policies and DevSecOps best practices, such as the NSA-CISA and the MITRE ATT&CKĀ® .
Kubescape scans K8s clusters, YAML files, and HELM charts, and detect misconfigurations and software vulnerabilities at early stages of the CI/CD pipeline and provides a risk score instantly and risk trends over time. Kubescape integrates natively with other DevOps tools, including Jenkins, CircleCI and Github workflows.

https://github.com/armosec/kubescape