├── .github ├── actions │ └── build_image │ │ └── action.yml ├── renovate.json └── workflows │ ├── bats.yml │ ├── main.yml │ ├── release.yml │ └── test-image.yml ├── .gitignore ├── .pre-commit-config.yaml ├── .shellcheckrc ├── CONTRIBUTING.md ├── LICENSE ├── README.md ├── RELEASES.md ├── SECURITY.md ├── argo-main.yml ├── catalog-info.yaml ├── deployment └── helm │ ├── cluster-image-scanner-orchestrator-base │ ├── .helmignore │ ├── Chart.yaml │ ├── README.md │ ├── templates │ │ ├── NOTES.txt │ │ ├── _helpers.tpl │ │ ├── cleanup-scandata.yml │ │ ├── cleanup-unpacked.yml │ │ ├── delete-test-products-template.yml │ │ ├── email.cm.yml │ │ ├── email.secret.yml │ │ ├── exit-handler.yml │ │ ├── orchestration-job.yml │ │ ├── pvc.yml │ │ ├── rbac.yml │ │ ├── scanjob.yml │ │ ├── servicemonitor.yaml │ │ ├── synchronization.cm.yml │ │ └── test-job.yml │ └── values.yaml │ └── cluster-image-scanner-orchestrator │ ├── .helmignore │ ├── Chart.yaml │ ├── README.md │ ├── templates │ ├── _helpers.tpl │ ├── api.cm.yml │ ├── api.secret.yml │ ├── artifacts.sa.cm.yml │ ├── artifacts.sa.yml │ ├── artifacts.yml │ ├── cron.yml │ ├── defectdojo.cm.yml │ ├── defectdojo.secret.yml │ ├── dependency-track.cm.yml │ ├── dependency-track.secret.yml │ ├── github.secret.yml │ ├── job.exclude-node.yml │ ├── local-minio.auth.yml │ ├── registry.secret.yml │ ├── repolist.yml │ ├── roles-workflow.yml │ ├── roles.yml │ ├── scanjob-parameter.yml │ └── slack.secret.yml │ └── values.yaml ├── docs ├── architecture │ ├── README.md │ ├── collector.md │ ├── comparsion.md │ ├── decisions │ │ ├── architecture-orchestration.md │ │ ├── case-study-image-transfer.md │ │ ├── collector-to-orchestrator-exchange.md │ │ ├── defectdojo-structure.md │ │ └── images │ │ │ ├── fetcher.png │ │ │ ├── file_transfer.png │ │ │ ├── initial_startup.png │ │ │ ├── multi_pv.png │ │ │ ├── one_pv.png │ │ │ └── orchestrate_containers.png │ ├── fetcher.md │ ├── images │ │ ├── collector.png │ │ ├── dfd-clusterimagescanner.dia │ │ ├── dfd-clusterimagescanner.png │ │ ├── dfd-defectdojo.dia │ │ ├── dfd-defectdojo.png │ │ └── technical.png │ └── threat-model.md ├── deployment │ ├── README.md │ ├── clusterscanner-image-collector.md │ ├── deployment-orchestrator.md │ ├── fetcher.md │ ├── multitenant-impl.png │ ├── multitenant.png │ └── repolist.md ├── development │ ├── README.md │ ├── coding-guideline.md │ └── scripts.md ├── dsomm.png ├── images │ ├── logo.png │ ├── overview.png │ └── usecase.png ├── index.md └── user │ ├── README.md │ ├── configuration │ ├── README.md │ ├── inheritance.png │ ├── latest-jenkins.png │ ├── lifetime-scans.png │ └── namespace-filter.md │ ├── defectdojo │ ├── README.md │ ├── defectdojo-findings-filter.png │ └── finding-duplicate.png │ └── scans │ ├── README.md │ ├── baseimage-lifetime.md │ ├── distroless.md │ ├── image-lifetime.md │ ├── images │ ├── accept-add-risk-exception.png │ ├── accept-overview.png │ ├── accept-threat-overview.png │ ├── baseimage-lifetime.png │ └── lifetime-yum.png │ ├── known-vulnerabilities.md │ ├── malware.md │ ├── new-version.md │ └── run-as-root.md ├── icons ├── cis_logo_128.png ├── cis_logo_16.png ├── cis_logo_192.png ├── cis_logo_32.png ├── cis_logo_48.png ├── cis_logo_64.png └── cis_logo_96.png ├── images ├── README.md ├── base │ ├── .gitignore │ ├── README.md │ ├── auth.bash │ ├── build.sh │ ├── cache.bash │ ├── check-required-env.bash │ ├── entrypoint.bash │ ├── env.bash │ ├── git.bash │ ├── scan-common.bash │ └── unpack.bash ├── process │ ├── image-source-fetcher │ │ ├── .gitignore │ │ ├── README.md │ │ ├── build.sh │ │ ├── env.bash │ │ ├── module.bash │ │ └── runImageLocally.bash │ ├── imagecollector │ │ ├── .gitconfig │ │ ├── .gitignore │ │ ├── bin │ │ │ ├── jq │ │ │ └── kubectl │ │ ├── build.sh │ │ ├── config │ │ │ ├── imageNegativeList.json │ │ │ ├── namespace-mapping.json │ │ │ ├── namespace-mapping.schema.json │ │ │ └── registry-rename.sample.json │ │ ├── entrypoint.bash │ │ ├── pods.bash │ │ ├── runImageLocally.bash │ │ ├── runLocally.bash │ │ └── test │ │ │ └── pvc.yaml │ ├── notifier │ │ ├── .gitignore │ │ ├── README.md │ │ ├── build.sh │ │ ├── module.bash │ │ ├── slack-template-one-block.json │ │ └── slack-template.json │ ├── test-image │ │ ├── build.sh │ │ ├── env.bash │ │ ├── log4j-core-2.14.0.jar │ │ └── module.bash │ └── workflow-runner │ │ ├── build.sh │ │ ├── env.bash │ │ ├── module.bash │ │ └── workflow.template.yml └── scan │ ├── ddTemplate.json │ ├── distroless │ ├── README.md │ ├── build.sh │ ├── env.bash │ └── module.bash │ ├── lifetime │ ├── build.sh │ ├── env.bash │ └── module.bash │ ├── malware │ ├── README.md │ ├── build.sh │ ├── env.bash │ ├── module.bash │ └── runLocally.bash │ ├── new-version │ ├── build.sh │ ├── env.bash │ ├── module.bash │ └── runLocally.bash │ ├── parseMarkdownToCreateDefectDojoText.bash │ ├── runasroot │ ├── build.sh │ ├── env.bash │ └── module.bash │ └── syft │ ├── README.md │ ├── build.sh │ ├── env.bash │ └── module.bash ├── mkdocs.yml ├── test_actions ├── .gitignore ├── argocd.project.yml ├── argocd │ ├── kustomization.yml │ └── namespace.yml ├── argowf │ ├── argowf.yml │ ├── kustomization.yml │ └── namespace.yml ├── base │ ├── auth.yml │ └── kustomization.yml ├── collector │ ├── application │ │ ├── deployment.yaml │ │ ├── kustomization.yaml │ │ └── namespace.yaml │ ├── configmap.yaml │ ├── job.yml │ ├── kustomization.yaml │ ├── namespace.yaml │ ├── secret-volume.yaml │ ├── service-account-authorization.yaml │ └── setup.bash ├── library.bash ├── minio │ ├── kustomization.yml │ ├── minio.yaml │ ├── namespace.yml │ ├── pvc.yml │ └── service.yml ├── secrets.example ├── setup.bash ├── submit-workflow-with-image.bash ├── teardown.bash ├── variables.base.yaml ├── variables.secret.yaml.example └── variables.yaml └── tests ├── clean-image.tar ├── infected-image.tar ├── scan-common.bats └── scan-malware.bats /.github/actions/build_image/action.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/.github/actions/build_image/action.yml -------------------------------------------------------------------------------- /.github/renovate.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/.github/renovate.json -------------------------------------------------------------------------------- /.github/workflows/bats.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/.github/workflows/bats.yml -------------------------------------------------------------------------------- /.github/workflows/main.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/.github/workflows/main.yml -------------------------------------------------------------------------------- /.github/workflows/release.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/.github/workflows/release.yml -------------------------------------------------------------------------------- /.github/workflows/test-image.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/.github/workflows/test-image.yml -------------------------------------------------------------------------------- /.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/.gitignore -------------------------------------------------------------------------------- /.pre-commit-config.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/.pre-commit-config.yaml -------------------------------------------------------------------------------- /.shellcheckrc: -------------------------------------------------------------------------------- 1 | external-sources=true 2 | -------------------------------------------------------------------------------- /CONTRIBUTING.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/CONTRIBUTING.md -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/LICENSE -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/README.md -------------------------------------------------------------------------------- /RELEASES.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/RELEASES.md -------------------------------------------------------------------------------- /SECURITY.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/SECURITY.md -------------------------------------------------------------------------------- /argo-main.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/argo-main.yml -------------------------------------------------------------------------------- /catalog-info.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/catalog-info.yaml -------------------------------------------------------------------------------- /deployment/helm/cluster-image-scanner-orchestrator-base/.helmignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/deployment/helm/cluster-image-scanner-orchestrator-base/.helmignore -------------------------------------------------------------------------------- /deployment/helm/cluster-image-scanner-orchestrator-base/Chart.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/deployment/helm/cluster-image-scanner-orchestrator-base/Chart.yaml -------------------------------------------------------------------------------- /deployment/helm/cluster-image-scanner-orchestrator-base/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/deployment/helm/cluster-image-scanner-orchestrator-base/README.md -------------------------------------------------------------------------------- /deployment/helm/cluster-image-scanner-orchestrator-base/templates/NOTES.txt: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /deployment/helm/cluster-image-scanner-orchestrator-base/templates/_helpers.tpl: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/deployment/helm/cluster-image-scanner-orchestrator-base/templates/_helpers.tpl -------------------------------------------------------------------------------- /deployment/helm/cluster-image-scanner-orchestrator-base/templates/cleanup-scandata.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/deployment/helm/cluster-image-scanner-orchestrator-base/templates/cleanup-scandata.yml -------------------------------------------------------------------------------- /deployment/helm/cluster-image-scanner-orchestrator-base/templates/cleanup-unpacked.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/deployment/helm/cluster-image-scanner-orchestrator-base/templates/cleanup-unpacked.yml -------------------------------------------------------------------------------- /deployment/helm/cluster-image-scanner-orchestrator-base/templates/delete-test-products-template.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/deployment/helm/cluster-image-scanner-orchestrator-base/templates/delete-test-products-template.yml -------------------------------------------------------------------------------- /deployment/helm/cluster-image-scanner-orchestrator-base/templates/email.cm.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/deployment/helm/cluster-image-scanner-orchestrator-base/templates/email.cm.yml -------------------------------------------------------------------------------- /deployment/helm/cluster-image-scanner-orchestrator-base/templates/email.secret.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/deployment/helm/cluster-image-scanner-orchestrator-base/templates/email.secret.yml -------------------------------------------------------------------------------- /deployment/helm/cluster-image-scanner-orchestrator-base/templates/exit-handler.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/deployment/helm/cluster-image-scanner-orchestrator-base/templates/exit-handler.yml -------------------------------------------------------------------------------- /deployment/helm/cluster-image-scanner-orchestrator-base/templates/orchestration-job.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/deployment/helm/cluster-image-scanner-orchestrator-base/templates/orchestration-job.yml -------------------------------------------------------------------------------- /deployment/helm/cluster-image-scanner-orchestrator-base/templates/pvc.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/deployment/helm/cluster-image-scanner-orchestrator-base/templates/pvc.yml -------------------------------------------------------------------------------- /deployment/helm/cluster-image-scanner-orchestrator-base/templates/rbac.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/deployment/helm/cluster-image-scanner-orchestrator-base/templates/rbac.yml -------------------------------------------------------------------------------- /deployment/helm/cluster-image-scanner-orchestrator-base/templates/scanjob.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/deployment/helm/cluster-image-scanner-orchestrator-base/templates/scanjob.yml -------------------------------------------------------------------------------- /deployment/helm/cluster-image-scanner-orchestrator-base/templates/servicemonitor.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/deployment/helm/cluster-image-scanner-orchestrator-base/templates/servicemonitor.yaml -------------------------------------------------------------------------------- /deployment/helm/cluster-image-scanner-orchestrator-base/templates/synchronization.cm.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/deployment/helm/cluster-image-scanner-orchestrator-base/templates/synchronization.cm.yml -------------------------------------------------------------------------------- /deployment/helm/cluster-image-scanner-orchestrator-base/templates/test-job.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/deployment/helm/cluster-image-scanner-orchestrator-base/templates/test-job.yml -------------------------------------------------------------------------------- /deployment/helm/cluster-image-scanner-orchestrator-base/values.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/deployment/helm/cluster-image-scanner-orchestrator-base/values.yaml -------------------------------------------------------------------------------- /deployment/helm/cluster-image-scanner-orchestrator/.helmignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/deployment/helm/cluster-image-scanner-orchestrator/.helmignore -------------------------------------------------------------------------------- /deployment/helm/cluster-image-scanner-orchestrator/Chart.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/deployment/helm/cluster-image-scanner-orchestrator/Chart.yaml -------------------------------------------------------------------------------- /deployment/helm/cluster-image-scanner-orchestrator/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/deployment/helm/cluster-image-scanner-orchestrator/README.md -------------------------------------------------------------------------------- /deployment/helm/cluster-image-scanner-orchestrator/templates/_helpers.tpl: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/deployment/helm/cluster-image-scanner-orchestrator/templates/_helpers.tpl -------------------------------------------------------------------------------- /deployment/helm/cluster-image-scanner-orchestrator/templates/api.cm.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/deployment/helm/cluster-image-scanner-orchestrator/templates/api.cm.yml -------------------------------------------------------------------------------- /deployment/helm/cluster-image-scanner-orchestrator/templates/api.secret.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/deployment/helm/cluster-image-scanner-orchestrator/templates/api.secret.yml -------------------------------------------------------------------------------- /deployment/helm/cluster-image-scanner-orchestrator/templates/artifacts.sa.cm.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/deployment/helm/cluster-image-scanner-orchestrator/templates/artifacts.sa.cm.yml -------------------------------------------------------------------------------- /deployment/helm/cluster-image-scanner-orchestrator/templates/artifacts.sa.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/deployment/helm/cluster-image-scanner-orchestrator/templates/artifacts.sa.yml -------------------------------------------------------------------------------- /deployment/helm/cluster-image-scanner-orchestrator/templates/artifacts.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/deployment/helm/cluster-image-scanner-orchestrator/templates/artifacts.yml -------------------------------------------------------------------------------- /deployment/helm/cluster-image-scanner-orchestrator/templates/cron.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/deployment/helm/cluster-image-scanner-orchestrator/templates/cron.yml -------------------------------------------------------------------------------- /deployment/helm/cluster-image-scanner-orchestrator/templates/defectdojo.cm.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/deployment/helm/cluster-image-scanner-orchestrator/templates/defectdojo.cm.yml -------------------------------------------------------------------------------- /deployment/helm/cluster-image-scanner-orchestrator/templates/defectdojo.secret.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/deployment/helm/cluster-image-scanner-orchestrator/templates/defectdojo.secret.yml -------------------------------------------------------------------------------- /deployment/helm/cluster-image-scanner-orchestrator/templates/dependency-track.cm.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/deployment/helm/cluster-image-scanner-orchestrator/templates/dependency-track.cm.yml -------------------------------------------------------------------------------- /deployment/helm/cluster-image-scanner-orchestrator/templates/dependency-track.secret.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/deployment/helm/cluster-image-scanner-orchestrator/templates/dependency-track.secret.yml -------------------------------------------------------------------------------- /deployment/helm/cluster-image-scanner-orchestrator/templates/github.secret.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/deployment/helm/cluster-image-scanner-orchestrator/templates/github.secret.yml -------------------------------------------------------------------------------- /deployment/helm/cluster-image-scanner-orchestrator/templates/job.exclude-node.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/deployment/helm/cluster-image-scanner-orchestrator/templates/job.exclude-node.yml -------------------------------------------------------------------------------- /deployment/helm/cluster-image-scanner-orchestrator/templates/local-minio.auth.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/deployment/helm/cluster-image-scanner-orchestrator/templates/local-minio.auth.yml -------------------------------------------------------------------------------- /deployment/helm/cluster-image-scanner-orchestrator/templates/registry.secret.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/deployment/helm/cluster-image-scanner-orchestrator/templates/registry.secret.yml -------------------------------------------------------------------------------- /deployment/helm/cluster-image-scanner-orchestrator/templates/repolist.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/deployment/helm/cluster-image-scanner-orchestrator/templates/repolist.yml -------------------------------------------------------------------------------- /deployment/helm/cluster-image-scanner-orchestrator/templates/roles-workflow.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/deployment/helm/cluster-image-scanner-orchestrator/templates/roles-workflow.yml -------------------------------------------------------------------------------- /deployment/helm/cluster-image-scanner-orchestrator/templates/roles.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/deployment/helm/cluster-image-scanner-orchestrator/templates/roles.yml -------------------------------------------------------------------------------- /deployment/helm/cluster-image-scanner-orchestrator/templates/scanjob-parameter.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/deployment/helm/cluster-image-scanner-orchestrator/templates/scanjob-parameter.yml -------------------------------------------------------------------------------- /deployment/helm/cluster-image-scanner-orchestrator/templates/slack.secret.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/deployment/helm/cluster-image-scanner-orchestrator/templates/slack.secret.yml -------------------------------------------------------------------------------- /deployment/helm/cluster-image-scanner-orchestrator/values.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/deployment/helm/cluster-image-scanner-orchestrator/values.yaml -------------------------------------------------------------------------------- /docs/architecture/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/architecture/README.md -------------------------------------------------------------------------------- /docs/architecture/collector.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/architecture/collector.md -------------------------------------------------------------------------------- /docs/architecture/comparsion.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/architecture/comparsion.md -------------------------------------------------------------------------------- /docs/architecture/decisions/architecture-orchestration.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/architecture/decisions/architecture-orchestration.md -------------------------------------------------------------------------------- /docs/architecture/decisions/case-study-image-transfer.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/architecture/decisions/case-study-image-transfer.md -------------------------------------------------------------------------------- /docs/architecture/decisions/collector-to-orchestrator-exchange.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/architecture/decisions/collector-to-orchestrator-exchange.md -------------------------------------------------------------------------------- /docs/architecture/decisions/defectdojo-structure.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/architecture/decisions/defectdojo-structure.md -------------------------------------------------------------------------------- /docs/architecture/decisions/images/fetcher.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/architecture/decisions/images/fetcher.png -------------------------------------------------------------------------------- /docs/architecture/decisions/images/file_transfer.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/architecture/decisions/images/file_transfer.png -------------------------------------------------------------------------------- /docs/architecture/decisions/images/initial_startup.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/architecture/decisions/images/initial_startup.png -------------------------------------------------------------------------------- /docs/architecture/decisions/images/multi_pv.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/architecture/decisions/images/multi_pv.png -------------------------------------------------------------------------------- /docs/architecture/decisions/images/one_pv.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/architecture/decisions/images/one_pv.png -------------------------------------------------------------------------------- /docs/architecture/decisions/images/orchestrate_containers.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/architecture/decisions/images/orchestrate_containers.png -------------------------------------------------------------------------------- /docs/architecture/fetcher.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/architecture/fetcher.md -------------------------------------------------------------------------------- /docs/architecture/images/collector.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/architecture/images/collector.png -------------------------------------------------------------------------------- /docs/architecture/images/dfd-clusterimagescanner.dia: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/architecture/images/dfd-clusterimagescanner.dia -------------------------------------------------------------------------------- /docs/architecture/images/dfd-clusterimagescanner.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/architecture/images/dfd-clusterimagescanner.png -------------------------------------------------------------------------------- /docs/architecture/images/dfd-defectdojo.dia: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/architecture/images/dfd-defectdojo.dia -------------------------------------------------------------------------------- /docs/architecture/images/dfd-defectdojo.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/architecture/images/dfd-defectdojo.png -------------------------------------------------------------------------------- /docs/architecture/images/technical.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/architecture/images/technical.png -------------------------------------------------------------------------------- /docs/architecture/threat-model.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/architecture/threat-model.md -------------------------------------------------------------------------------- /docs/deployment/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/deployment/README.md -------------------------------------------------------------------------------- /docs/deployment/clusterscanner-image-collector.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/deployment/clusterscanner-image-collector.md -------------------------------------------------------------------------------- /docs/deployment/deployment-orchestrator.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/deployment/deployment-orchestrator.md -------------------------------------------------------------------------------- /docs/deployment/fetcher.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/deployment/fetcher.md -------------------------------------------------------------------------------- /docs/deployment/multitenant-impl.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/deployment/multitenant-impl.png -------------------------------------------------------------------------------- /docs/deployment/multitenant.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/deployment/multitenant.png -------------------------------------------------------------------------------- /docs/deployment/repolist.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/deployment/repolist.md -------------------------------------------------------------------------------- /docs/development/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/development/README.md -------------------------------------------------------------------------------- /docs/development/coding-guideline.md: -------------------------------------------------------------------------------- 1 | # TODO 2 | -------------------------------------------------------------------------------- /docs/development/scripts.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/development/scripts.md -------------------------------------------------------------------------------- /docs/dsomm.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/dsomm.png -------------------------------------------------------------------------------- /docs/images/logo.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/images/logo.png -------------------------------------------------------------------------------- /docs/images/overview.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/images/overview.png -------------------------------------------------------------------------------- /docs/images/usecase.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/images/usecase.png -------------------------------------------------------------------------------- /docs/index.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/index.md -------------------------------------------------------------------------------- /docs/user/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/user/README.md -------------------------------------------------------------------------------- /docs/user/configuration/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/user/configuration/README.md -------------------------------------------------------------------------------- /docs/user/configuration/inheritance.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/user/configuration/inheritance.png -------------------------------------------------------------------------------- /docs/user/configuration/latest-jenkins.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/user/configuration/latest-jenkins.png -------------------------------------------------------------------------------- /docs/user/configuration/lifetime-scans.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/user/configuration/lifetime-scans.png -------------------------------------------------------------------------------- /docs/user/configuration/namespace-filter.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/user/configuration/namespace-filter.md -------------------------------------------------------------------------------- /docs/user/defectdojo/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/user/defectdojo/README.md -------------------------------------------------------------------------------- /docs/user/defectdojo/defectdojo-findings-filter.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/user/defectdojo/defectdojo-findings-filter.png -------------------------------------------------------------------------------- /docs/user/defectdojo/finding-duplicate.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/user/defectdojo/finding-duplicate.png -------------------------------------------------------------------------------- /docs/user/scans/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/user/scans/README.md -------------------------------------------------------------------------------- /docs/user/scans/baseimage-lifetime.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/user/scans/baseimage-lifetime.md -------------------------------------------------------------------------------- /docs/user/scans/distroless.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/user/scans/distroless.md -------------------------------------------------------------------------------- /docs/user/scans/image-lifetime.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/user/scans/image-lifetime.md -------------------------------------------------------------------------------- /docs/user/scans/images/accept-add-risk-exception.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/user/scans/images/accept-add-risk-exception.png -------------------------------------------------------------------------------- /docs/user/scans/images/accept-overview.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/user/scans/images/accept-overview.png -------------------------------------------------------------------------------- /docs/user/scans/images/accept-threat-overview.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/user/scans/images/accept-threat-overview.png -------------------------------------------------------------------------------- /docs/user/scans/images/baseimage-lifetime.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/user/scans/images/baseimage-lifetime.png -------------------------------------------------------------------------------- /docs/user/scans/images/lifetime-yum.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/user/scans/images/lifetime-yum.png -------------------------------------------------------------------------------- /docs/user/scans/known-vulnerabilities.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/user/scans/known-vulnerabilities.md -------------------------------------------------------------------------------- /docs/user/scans/malware.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/user/scans/malware.md -------------------------------------------------------------------------------- /docs/user/scans/new-version.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/user/scans/new-version.md -------------------------------------------------------------------------------- /docs/user/scans/run-as-root.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/docs/user/scans/run-as-root.md -------------------------------------------------------------------------------- /icons/cis_logo_128.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/icons/cis_logo_128.png -------------------------------------------------------------------------------- /icons/cis_logo_16.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/icons/cis_logo_16.png -------------------------------------------------------------------------------- /icons/cis_logo_192.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/icons/cis_logo_192.png -------------------------------------------------------------------------------- /icons/cis_logo_32.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/icons/cis_logo_32.png -------------------------------------------------------------------------------- /icons/cis_logo_48.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/icons/cis_logo_48.png -------------------------------------------------------------------------------- /icons/cis_logo_64.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/icons/cis_logo_64.png -------------------------------------------------------------------------------- /icons/cis_logo_96.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/icons/cis_logo_96.png -------------------------------------------------------------------------------- /images/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/README.md -------------------------------------------------------------------------------- /images/base/.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/base/.gitignore -------------------------------------------------------------------------------- /images/base/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/base/README.md -------------------------------------------------------------------------------- /images/base/auth.bash: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/base/auth.bash -------------------------------------------------------------------------------- /images/base/build.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/base/build.sh -------------------------------------------------------------------------------- /images/base/cache.bash: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | -------------------------------------------------------------------------------- /images/base/check-required-env.bash: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/base/check-required-env.bash -------------------------------------------------------------------------------- /images/base/entrypoint.bash: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/base/entrypoint.bash -------------------------------------------------------------------------------- /images/base/env.bash: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | export MODULE_NAME="base" 4 | -------------------------------------------------------------------------------- /images/base/git.bash: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/base/git.bash -------------------------------------------------------------------------------- /images/base/scan-common.bash: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/base/scan-common.bash -------------------------------------------------------------------------------- /images/base/unpack.bash: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/base/unpack.bash -------------------------------------------------------------------------------- /images/process/image-source-fetcher/.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/process/image-source-fetcher/.gitignore -------------------------------------------------------------------------------- /images/process/image-source-fetcher/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/process/image-source-fetcher/README.md -------------------------------------------------------------------------------- /images/process/image-source-fetcher/build.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/process/image-source-fetcher/build.sh -------------------------------------------------------------------------------- /images/process/image-source-fetcher/env.bash: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/process/image-source-fetcher/env.bash -------------------------------------------------------------------------------- /images/process/image-source-fetcher/module.bash: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/process/image-source-fetcher/module.bash -------------------------------------------------------------------------------- /images/process/image-source-fetcher/runImageLocally.bash: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/process/image-source-fetcher/runImageLocally.bash -------------------------------------------------------------------------------- /images/process/imagecollector/.gitconfig: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/process/imagecollector/.gitconfig -------------------------------------------------------------------------------- /images/process/imagecollector/.gitignore: -------------------------------------------------------------------------------- 1 | .idea 2 | -------------------------------------------------------------------------------- /images/process/imagecollector/bin/jq: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/process/imagecollector/bin/jq -------------------------------------------------------------------------------- /images/process/imagecollector/bin/kubectl: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/process/imagecollector/bin/kubectl -------------------------------------------------------------------------------- /images/process/imagecollector/build.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/process/imagecollector/build.sh -------------------------------------------------------------------------------- /images/process/imagecollector/config/imageNegativeList.json: -------------------------------------------------------------------------------- 1 | [ 2 | "eu-central-1.amazonaws.com/", 3 | "kiwigrid/k8s-sidecar" 4 | ] 5 | -------------------------------------------------------------------------------- /images/process/imagecollector/config/namespace-mapping.json: -------------------------------------------------------------------------------- 1 | {} 2 | -------------------------------------------------------------------------------- /images/process/imagecollector/config/namespace-mapping.schema.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/process/imagecollector/config/namespace-mapping.schema.json -------------------------------------------------------------------------------- /images/process/imagecollector/config/registry-rename.sample.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/process/imagecollector/config/registry-rename.sample.json -------------------------------------------------------------------------------- /images/process/imagecollector/entrypoint.bash: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/process/imagecollector/entrypoint.bash -------------------------------------------------------------------------------- /images/process/imagecollector/pods.bash: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/process/imagecollector/pods.bash -------------------------------------------------------------------------------- /images/process/imagecollector/runImageLocally.bash: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/process/imagecollector/runImageLocally.bash -------------------------------------------------------------------------------- /images/process/imagecollector/runLocally.bash: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/process/imagecollector/runLocally.bash -------------------------------------------------------------------------------- /images/process/imagecollector/test/pvc.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/process/imagecollector/test/pvc.yaml -------------------------------------------------------------------------------- /images/process/notifier/.gitignore: -------------------------------------------------------------------------------- 1 | .idea 2 | -------------------------------------------------------------------------------- /images/process/notifier/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/process/notifier/README.md -------------------------------------------------------------------------------- /images/process/notifier/build.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/process/notifier/build.sh -------------------------------------------------------------------------------- /images/process/notifier/module.bash: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | set -e 3 | # not used, see orchestration.yml 4 | -------------------------------------------------------------------------------- /images/process/notifier/slack-template-one-block.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/process/notifier/slack-template-one-block.json -------------------------------------------------------------------------------- /images/process/notifier/slack-template.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/process/notifier/slack-template.json -------------------------------------------------------------------------------- /images/process/test-image/build.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/process/test-image/build.sh -------------------------------------------------------------------------------- /images/process/test-image/env.bash: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/process/test-image/env.bash -------------------------------------------------------------------------------- /images/process/test-image/log4j-core-2.14.0.jar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/process/test-image/log4j-core-2.14.0.jar -------------------------------------------------------------------------------- /images/process/test-image/module.bash: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/process/test-image/module.bash -------------------------------------------------------------------------------- /images/process/workflow-runner/build.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/process/workflow-runner/build.sh -------------------------------------------------------------------------------- /images/process/workflow-runner/env.bash: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/process/workflow-runner/env.bash -------------------------------------------------------------------------------- /images/process/workflow-runner/module.bash: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/process/workflow-runner/module.bash -------------------------------------------------------------------------------- /images/process/workflow-runner/workflow.template.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/process/workflow-runner/workflow.template.yml -------------------------------------------------------------------------------- /images/scan/ddTemplate.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/scan/ddTemplate.json -------------------------------------------------------------------------------- /images/scan/distroless/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/scan/distroless/README.md -------------------------------------------------------------------------------- /images/scan/distroless/build.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/scan/distroless/build.sh -------------------------------------------------------------------------------- /images/scan/distroless/env.bash: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/scan/distroless/env.bash -------------------------------------------------------------------------------- /images/scan/distroless/module.bash: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/scan/distroless/module.bash -------------------------------------------------------------------------------- /images/scan/lifetime/build.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/scan/lifetime/build.sh -------------------------------------------------------------------------------- /images/scan/lifetime/env.bash: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/scan/lifetime/env.bash -------------------------------------------------------------------------------- /images/scan/lifetime/module.bash: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/scan/lifetime/module.bash -------------------------------------------------------------------------------- /images/scan/malware/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/scan/malware/README.md -------------------------------------------------------------------------------- /images/scan/malware/build.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/scan/malware/build.sh -------------------------------------------------------------------------------- /images/scan/malware/env.bash: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | export MODULE_NAME="scan-malware" 4 | -------------------------------------------------------------------------------- /images/scan/malware/module.bash: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/scan/malware/module.bash -------------------------------------------------------------------------------- /images/scan/malware/runLocally.bash: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/scan/malware/runLocally.bash -------------------------------------------------------------------------------- /images/scan/new-version/build.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/scan/new-version/build.sh -------------------------------------------------------------------------------- /images/scan/new-version/env.bash: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | export MODULE_NAME="scan-new-version" 4 | -------------------------------------------------------------------------------- /images/scan/new-version/module.bash: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/scan/new-version/module.bash -------------------------------------------------------------------------------- /images/scan/new-version/runLocally.bash: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/scan/new-version/runLocally.bash -------------------------------------------------------------------------------- /images/scan/parseMarkdownToCreateDefectDojoText.bash: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/scan/parseMarkdownToCreateDefectDojoText.bash -------------------------------------------------------------------------------- /images/scan/runasroot/build.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/scan/runasroot/build.sh -------------------------------------------------------------------------------- /images/scan/runasroot/env.bash: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | export MODULE_NAME="scan-runasroot" 4 | -------------------------------------------------------------------------------- /images/scan/runasroot/module.bash: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/scan/runasroot/module.bash -------------------------------------------------------------------------------- /images/scan/syft/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/scan/syft/README.md -------------------------------------------------------------------------------- /images/scan/syft/build.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/scan/syft/build.sh -------------------------------------------------------------------------------- /images/scan/syft/env.bash: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | export MODULE_NAME="syft" 4 | -------------------------------------------------------------------------------- /images/scan/syft/module.bash: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/images/scan/syft/module.bash -------------------------------------------------------------------------------- /mkdocs.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/mkdocs.yml -------------------------------------------------------------------------------- /test_actions/.gitignore: -------------------------------------------------------------------------------- 1 | secrets/ 2 | -------------------------------------------------------------------------------- /test_actions/argocd.project.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/test_actions/argocd.project.yml -------------------------------------------------------------------------------- /test_actions/argocd/kustomization.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/test_actions/argocd/kustomization.yml -------------------------------------------------------------------------------- /test_actions/argocd/namespace.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/test_actions/argocd/namespace.yml -------------------------------------------------------------------------------- /test_actions/argowf/argowf.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/test_actions/argowf/argowf.yml -------------------------------------------------------------------------------- /test_actions/argowf/kustomization.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/test_actions/argowf/kustomization.yml -------------------------------------------------------------------------------- /test_actions/argowf/namespace.yml: -------------------------------------------------------------------------------- 1 | apiVersion: v1 2 | kind: Namespace 3 | metadata: 4 | name: clusterscanner 5 | -------------------------------------------------------------------------------- /test_actions/base/auth.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/test_actions/base/auth.yml -------------------------------------------------------------------------------- /test_actions/base/kustomization.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/test_actions/base/kustomization.yml -------------------------------------------------------------------------------- /test_actions/collector/application/deployment.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/test_actions/collector/application/deployment.yaml -------------------------------------------------------------------------------- /test_actions/collector/application/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/test_actions/collector/application/kustomization.yaml -------------------------------------------------------------------------------- /test_actions/collector/application/namespace.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v1 2 | kind: Namespace 3 | metadata: 4 | name: shire 5 | -------------------------------------------------------------------------------- /test_actions/collector/configmap.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/test_actions/collector/configmap.yaml -------------------------------------------------------------------------------- /test_actions/collector/job.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/test_actions/collector/job.yml -------------------------------------------------------------------------------- /test_actions/collector/kustomization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/test_actions/collector/kustomization.yaml -------------------------------------------------------------------------------- /test_actions/collector/namespace.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/test_actions/collector/namespace.yaml -------------------------------------------------------------------------------- /test_actions/collector/secret-volume.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/test_actions/collector/secret-volume.yaml -------------------------------------------------------------------------------- /test_actions/collector/service-account-authorization.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/test_actions/collector/service-account-authorization.yaml -------------------------------------------------------------------------------- /test_actions/collector/setup.bash: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/test_actions/collector/setup.bash -------------------------------------------------------------------------------- /test_actions/library.bash: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/test_actions/library.bash -------------------------------------------------------------------------------- /test_actions/minio/kustomization.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/test_actions/minio/kustomization.yml -------------------------------------------------------------------------------- /test_actions/minio/minio.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/test_actions/minio/minio.yaml -------------------------------------------------------------------------------- /test_actions/minio/namespace.yml: -------------------------------------------------------------------------------- 1 | apiVersion: v1 2 | kind: Namespace 3 | metadata: 4 | name: clusterscanner 5 | -------------------------------------------------------------------------------- /test_actions/minio/pvc.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/test_actions/minio/pvc.yml -------------------------------------------------------------------------------- /test_actions/minio/service.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/test_actions/minio/service.yml -------------------------------------------------------------------------------- /test_actions/secrets.example: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/test_actions/secrets.example -------------------------------------------------------------------------------- /test_actions/setup.bash: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/test_actions/setup.bash -------------------------------------------------------------------------------- /test_actions/submit-workflow-with-image.bash: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/test_actions/submit-workflow-with-image.bash -------------------------------------------------------------------------------- /test_actions/teardown.bash: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/test_actions/teardown.bash -------------------------------------------------------------------------------- /test_actions/variables.base.yaml: -------------------------------------------------------------------------------- 1 | serviceAccount: 2 | name: "argo-workflows" 3 | -------------------------------------------------------------------------------- /test_actions/variables.secret.yaml.example: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/test_actions/variables.secret.yaml.example -------------------------------------------------------------------------------- /test_actions/variables.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/test_actions/variables.yaml -------------------------------------------------------------------------------- /tests/clean-image.tar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/tests/clean-image.tar -------------------------------------------------------------------------------- /tests/infected-image.tar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/tests/infected-image.tar -------------------------------------------------------------------------------- /tests/scan-common.bats: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/tests/scan-common.bats -------------------------------------------------------------------------------- /tests/scan-malware.bats: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SDA-SE/cluster-image-scanner/HEAD/tests/scan-malware.bats --------------------------------------------------------------------------------