Kubescape
| Project Name | Stars | Downloads | Repos Using This | Packages Using This | Most Recent Commit | Total Releases | Latest Release | Open Issues | License | Language |
|---|---|---|---|---|---|---|---|---|---|---|
| Portainer | 26,681 | 2 | 21 hours ago | 78 | April 21, 2021 | 465 | zlib | Go | ||
| Making Docker and Kubernetes management easy. | ||||||||||
| Trivy | 18,764 | 44 | a day ago | 198 | July 31, 2023 | 188 | apache-2.0 | Go | ||
| Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more | ||||||||||
| Authelia | 17,453 |  | 2 | a day ago | 64 | October 28, 2019 | 98 | apache-2.0 | Go | |
| The Single Sign-On Multi-Factor portal for web apps | ||||||||||
| Vitess | 16,819 | 89 | 20 hours ago | 413 | July 28, 2023 | 825 | apache-2.0 | Go | ||
| Vitess is a database clustering system for horizontal scaling of MySQL. | ||||||||||
| Cilium | 16,557 | 22 | 20 hours ago | 763 | July 27, 2023 | 1,094 | apache-2.0 | Go | ||
| eBPF-based Networking, Security, and Observability | ||||||||||
| Teleport | 15,136 | 8 | 20 hours ago | 252 | July 29, 2021 | 2,366 | apache-2.0 | Go | ||
| Protect access to all of your infrastructure. | ||||||||||
| Linkerd2 | 9,896 | 12 | a day ago | 108 | March 23, 2022 | 250 | apache-2.0 | Go | ||
| Ultralight, security-first service mesh for Kubernetes. Main repo for Linkerd 2.x. | ||||||||||
| Kubescape | 8,902 | 2 | 2 days ago | 199 | July 06, 2023 | 49 | apache-2.0 | Go | ||
| Kubescape is an open-source Kubernetes security platform for your IDE, CI/CD pipelines, and clusters. It includes risk analysis, security, compliance, and misconfiguration scanning, saving Kubernetes users and administrators precious time, effort, and resources. | ||||||||||
| Netmaker | 7,989 | 2 | a day ago | 84 | July 31, 2023 | 166 | other | Go | ||
| Netmaker makes networks with WireGuard. Netmaker automates fast, secure, and distributed virtual networks. | ||||||||||
| Devops Resources | 7,566 | 2 months ago | 14 | Groovy | ||||||
| DevOps resources - Linux, Jenkins, AWS, SRE, Prometheus, Docker, Python, Ansible, Git, Kubernetes, Terraform, OpenStack, SQL, NoSQL, Azure, GCP | ||||||||||
Kubescape
An open-source Kubernetes security platform for your IDE, CI/CD pipelines, and clusters
Kubescape is an open-source Kubernetes security platform. It includes risk analysis, security compliance, and misconfiguration scanning. Targeted at the DevSecOps practitioner or platform engineer, it offers an easy-to-use CLI interface, flexible output formats, and automated scanning capabilities. It saves Kubernetes users and admins precious time, effort, and resources.
Kubescape scans clusters, YAML files, and Helm charts. It detects misconfigurations according to multiple frameworks (including NSA-CISA, MITRE ATT&CK® and the CIS Benchmark).
Kubescape was created by ARMO and is a Cloud Native Computing Foundation (CNCF) sandbox project.
Demo
Please star ⭐ the repo if you want us to continue developing and improving Kubescape! 😀
Getting started
Experimenting with Kubescape is as easy as:
curl -s https://raw.githubusercontent.com/kubescape/kubescape/master/install.sh | /bin/bash
Learn more about:
Did you know you can use Kubescape in all these places?
Under the hood
Kubescape uses Open Policy Agent to verify Kubernetes objects against a library of posture controls.
By default, the results are printed in a console-friendly manner, but they can be:
- exported to JSON or junit XML
- rendered to HTML or PDF
- submitted to a cloud service
It retrieves Kubernetes objects from the API server and runs a set of Rego snippets developed by ARMO.
Community
Kubescape is an open source project, we welcome your feedback and ideas for improvement. We are part of the Kubernetes community and are building more tests and controls as the ecosystem develops.
We hold community meetings on Zoom, on the first Tuesday of every month, at 14:00 GMT. (See that in your local time zone).
The Kubescape project follows the CNCF Code of Conduct.
Contributions
Thanks to all our contributors! Check out our CONTRIBUTING file to learn how to join them.
- Feel free to pick a task from the issues, roadmap or suggest a feature of your own.
- Open an issue: we aim to respond to all issues within 48 hours.
- Join the CNCF Slack and then our users or developers channel.
License
Copyright 2021-2023, the Kubescape Authors. All rights reserved. Kubescape is released under the Apache 2.0 license. See the LICENSE file for details.
Kubescape is a Cloud Native Computing Foundation (CNCF) sandbox project and was contributed by ARMO.
