├── .github ├── CODEOWNERS ├── ISSUE_TEMPLATE │ └── config.yml ├── dependabot.yml └── workflows │ ├── build.yml │ └── release.yaml ├── .gitignore ├── .goreleaser.yaml ├── .yamllint ├── LICENSE ├── Makefile ├── README.md ├── examples └── trivy.go ├── go.mod ├── go.sum ├── imgs └── k8s-summary.png ├── pkg ├── artifacts │ ├── artifacts.go │ ├── artifacts_test.go │ └── testdata │ │ └── fixtures │ │ ├── clusterrole.yaml │ │ ├── clusterrolebindings.yaml │ │ ├── cronjob.yaml │ │ ├── deploy-with-sidecar.yaml │ │ ├── deploy.yaml │ │ ├── ephemeral.yaml │ │ ├── initcontainer.yaml │ │ ├── pod.yaml │ │ ├── role.yaml │ │ └── service.yaml ├── bom │ └── model.go ├── jobs │ ├── builder.go │ ├── builder_test.go │ ├── collector.go │ ├── collector_test.go │ ├── loader.go │ ├── loader_test.go │ ├── logs.go │ ├── runnable_job.go │ ├── runner.go │ ├── template │ │ └── node-collector.yaml │ ├── testdata │ │ └── fixture │ │ │ └── commands │ │ │ ├── config │ │ │ ├── kubelet_mapping_cfg.yaml │ │ │ ├── node_cfg.yaml │ │ │ └── platform_mapping_cfg.yaml │ │ │ └── kubernetes │ │ │ ├── aks_kubeletconfig_cmd.yaml │ │ │ └── kubeletconfig_cmd.yaml │ ├── util.go │ └── util_test.go ├── k8s │ ├── docker │ │ ├── config.go │ │ └── config_test.go │ ├── k8s.go │ ├── k8s_test.go │ └── utils.go └── trivyk8s │ ├── testdata │ ├── pod-ns1.yaml │ └── single-pod.yaml │ ├── trivyk8s.go │ └── trivyk8s_test.go ├── tests └── integrations │ ├── integrations_test.go │ └── testdata │ ├── commands │ ├── config │ │ ├── kubelet_mapping.yaml │ │ └── node.yaml │ └── kubernetes │ │ ├── adminConfFileOwnership.yaml │ │ ├── adminConfFilePermissions.yaml │ │ ├── certificateAuthoritiesFileOwnership.yaml │ │ ├── certificateAuthoritiesFilePermissions.yaml │ │ ├── containerNetworkInterfaceFileOwnership.yaml │ │ ├── containerNetworkInterfaceFilePermissions.yaml │ │ ├── controllerManagerConfFileOwnership.yaml │ │ ├── controllerManagerConfFilePermissions.yaml │ │ ├── etcdDataDirectoryOwnership.yaml │ │ ├── etcdDataDirectoryPermissions.yaml │ │ ├── kubeAPIServerSpecFileOwnership.yaml │ │ ├── kubeAPIServerSpecFilePermission.yaml │ │ ├── kubeControllerManagerSpecFileOwnership.yaml │ │ ├── kubeControllerManagerSpecFilePermission.yaml │ │ ├── kubeEtcdSpecFileOwnership.yaml │ │ ├── kubeEtcdSpecFilePermission.yaml │ │ ├── kubePKIDirectoryFileOwnership.yaml │ │ ├── kubePKIKeyFilePermissions.yaml │ │ ├── kubeSchedulerSpecFileOwnership.yaml │ │ ├── kubeSchedulerSpecFilePermission.yaml │ │ ├── kubeconfigFileExistsOwnership.yaml │ │ ├── kubeconfigFileExistsPermissions.yaml │ │ ├── kubeletAnonymousAuthArgumentSet.yaml │ │ ├── kubeletAuthorizationModeArgumentSet.yaml │ │ ├── kubeletClientCaFileArgumentSet.yaml │ │ ├── kubeletConfFileOwnership.yaml │ │ ├── kubeletConfFilePermissions.yaml │ │ ├── kubeletConfigYamlConfigurationFileOwnership.yaml │ │ ├── kubeletConfigYamlConfigurationFilePermission.yaml │ │ ├── kubeletEventQpsArgumentSet.yaml │ │ ├── kubeletHostnameOverrideArgumentSet.yaml │ │ ├── kubeletMakeIptablesUtilChainsArgumentSet.yaml │ │ ├── kubeletOnlyUseStrongCryptographic.yaml │ │ ├── kubeletProtectKernelDefaultsArgumentSet.yaml │ │ ├── kubeletReadOnlyPortArgumentSet.yaml │ │ ├── kubeletRotateCertificatesArgumentSet.yaml │ │ ├── kubeletRotateKubeletServerCertificateArgumentSet.yaml │ │ ├── kubeletServiceFileOwnership.yaml │ │ ├── kubeletServiceFilePermissions.yaml │ │ ├── kubeletStreamingConnectionIdleTimeoutArgumentSet.yaml │ │ ├── kubeletTlsCertFileTlsArgumentSet.yaml │ │ ├── kubeletTlsPrivateKeyFileArgumentSet.yaml │ │ ├── kubernetesPKICertificateFilePermissions.yaml │ │ ├── schedulerConfFileOwnership.yaml │ │ └── schedulerConfFilePermissions.yaml │ └── expected_node_info.json └── utils ├── managed_fields.go ├── managed_fields_test.go ├── referance.go └── referance_test.go /.github/CODEOWNERS: -------------------------------------------------------------------------------- 1 | # Global 2 | * @simar7 3 | -------------------------------------------------------------------------------- /.github/ISSUE_TEMPLATE/config.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/.github/ISSUE_TEMPLATE/config.yml -------------------------------------------------------------------------------- /.github/dependabot.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/.github/dependabot.yml -------------------------------------------------------------------------------- /.github/workflows/build.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/.github/workflows/build.yml -------------------------------------------------------------------------------- /.github/workflows/release.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/.github/workflows/release.yaml -------------------------------------------------------------------------------- /.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/.gitignore -------------------------------------------------------------------------------- /.goreleaser.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/.goreleaser.yaml -------------------------------------------------------------------------------- /.yamllint: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/.yamllint -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/LICENSE -------------------------------------------------------------------------------- /Makefile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/Makefile -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/README.md -------------------------------------------------------------------------------- /examples/trivy.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/examples/trivy.go -------------------------------------------------------------------------------- /go.mod: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/go.mod -------------------------------------------------------------------------------- /go.sum: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/go.sum -------------------------------------------------------------------------------- /imgs/k8s-summary.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/imgs/k8s-summary.png -------------------------------------------------------------------------------- /pkg/artifacts/artifacts.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/pkg/artifacts/artifacts.go -------------------------------------------------------------------------------- /pkg/artifacts/artifacts_test.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/pkg/artifacts/artifacts_test.go -------------------------------------------------------------------------------- /pkg/artifacts/testdata/fixtures/clusterrole.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/pkg/artifacts/testdata/fixtures/clusterrole.yaml -------------------------------------------------------------------------------- /pkg/artifacts/testdata/fixtures/clusterrolebindings.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/pkg/artifacts/testdata/fixtures/clusterrolebindings.yaml -------------------------------------------------------------------------------- /pkg/artifacts/testdata/fixtures/cronjob.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/pkg/artifacts/testdata/fixtures/cronjob.yaml -------------------------------------------------------------------------------- /pkg/artifacts/testdata/fixtures/deploy-with-sidecar.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/pkg/artifacts/testdata/fixtures/deploy-with-sidecar.yaml -------------------------------------------------------------------------------- /pkg/artifacts/testdata/fixtures/deploy.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/pkg/artifacts/testdata/fixtures/deploy.yaml -------------------------------------------------------------------------------- /pkg/artifacts/testdata/fixtures/ephemeral.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/pkg/artifacts/testdata/fixtures/ephemeral.yaml -------------------------------------------------------------------------------- /pkg/artifacts/testdata/fixtures/initcontainer.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/pkg/artifacts/testdata/fixtures/initcontainer.yaml -------------------------------------------------------------------------------- /pkg/artifacts/testdata/fixtures/pod.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/pkg/artifacts/testdata/fixtures/pod.yaml -------------------------------------------------------------------------------- /pkg/artifacts/testdata/fixtures/role.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/pkg/artifacts/testdata/fixtures/role.yaml -------------------------------------------------------------------------------- /pkg/artifacts/testdata/fixtures/service.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/pkg/artifacts/testdata/fixtures/service.yaml -------------------------------------------------------------------------------- /pkg/bom/model.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/pkg/bom/model.go -------------------------------------------------------------------------------- /pkg/jobs/builder.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/pkg/jobs/builder.go -------------------------------------------------------------------------------- /pkg/jobs/builder_test.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/pkg/jobs/builder_test.go -------------------------------------------------------------------------------- /pkg/jobs/collector.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/pkg/jobs/collector.go -------------------------------------------------------------------------------- /pkg/jobs/collector_test.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/pkg/jobs/collector_test.go -------------------------------------------------------------------------------- /pkg/jobs/loader.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/pkg/jobs/loader.go -------------------------------------------------------------------------------- /pkg/jobs/loader_test.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/pkg/jobs/loader_test.go -------------------------------------------------------------------------------- /pkg/jobs/logs.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/pkg/jobs/logs.go -------------------------------------------------------------------------------- /pkg/jobs/runnable_job.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/pkg/jobs/runnable_job.go -------------------------------------------------------------------------------- /pkg/jobs/runner.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/pkg/jobs/runner.go -------------------------------------------------------------------------------- /pkg/jobs/template/node-collector.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/pkg/jobs/template/node-collector.yaml -------------------------------------------------------------------------------- /pkg/jobs/testdata/fixture/commands/config/kubelet_mapping_cfg.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/pkg/jobs/testdata/fixture/commands/config/kubelet_mapping_cfg.yaml -------------------------------------------------------------------------------- /pkg/jobs/testdata/fixture/commands/config/node_cfg.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/pkg/jobs/testdata/fixture/commands/config/node_cfg.yaml -------------------------------------------------------------------------------- /pkg/jobs/testdata/fixture/commands/config/platform_mapping_cfg.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/pkg/jobs/testdata/fixture/commands/config/platform_mapping_cfg.yaml -------------------------------------------------------------------------------- /pkg/jobs/testdata/fixture/commands/kubernetes/aks_kubeletconfig_cmd.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/pkg/jobs/testdata/fixture/commands/kubernetes/aks_kubeletconfig_cmd.yaml -------------------------------------------------------------------------------- /pkg/jobs/testdata/fixture/commands/kubernetes/kubeletconfig_cmd.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/pkg/jobs/testdata/fixture/commands/kubernetes/kubeletconfig_cmd.yaml -------------------------------------------------------------------------------- /pkg/jobs/util.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/pkg/jobs/util.go -------------------------------------------------------------------------------- /pkg/jobs/util_test.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/pkg/jobs/util_test.go -------------------------------------------------------------------------------- /pkg/k8s/docker/config.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/pkg/k8s/docker/config.go -------------------------------------------------------------------------------- /pkg/k8s/docker/config_test.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/pkg/k8s/docker/config_test.go -------------------------------------------------------------------------------- /pkg/k8s/k8s.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/pkg/k8s/k8s.go -------------------------------------------------------------------------------- /pkg/k8s/k8s_test.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/pkg/k8s/k8s_test.go -------------------------------------------------------------------------------- /pkg/k8s/utils.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/pkg/k8s/utils.go -------------------------------------------------------------------------------- /pkg/trivyk8s/testdata/pod-ns1.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/pkg/trivyk8s/testdata/pod-ns1.yaml -------------------------------------------------------------------------------- /pkg/trivyk8s/testdata/single-pod.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/pkg/trivyk8s/testdata/single-pod.yaml -------------------------------------------------------------------------------- /pkg/trivyk8s/trivyk8s.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/pkg/trivyk8s/trivyk8s.go -------------------------------------------------------------------------------- /pkg/trivyk8s/trivyk8s_test.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/pkg/trivyk8s/trivyk8s_test.go -------------------------------------------------------------------------------- /tests/integrations/integrations_test.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/integrations_test.go -------------------------------------------------------------------------------- /tests/integrations/testdata/commands/config/kubelet_mapping.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/testdata/commands/config/kubelet_mapping.yaml -------------------------------------------------------------------------------- /tests/integrations/testdata/commands/config/node.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/testdata/commands/config/node.yaml -------------------------------------------------------------------------------- /tests/integrations/testdata/commands/kubernetes/adminConfFileOwnership.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/testdata/commands/kubernetes/adminConfFileOwnership.yaml -------------------------------------------------------------------------------- /tests/integrations/testdata/commands/kubernetes/adminConfFilePermissions.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/testdata/commands/kubernetes/adminConfFilePermissions.yaml -------------------------------------------------------------------------------- /tests/integrations/testdata/commands/kubernetes/certificateAuthoritiesFileOwnership.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/testdata/commands/kubernetes/certificateAuthoritiesFileOwnership.yaml -------------------------------------------------------------------------------- /tests/integrations/testdata/commands/kubernetes/certificateAuthoritiesFilePermissions.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/testdata/commands/kubernetes/certificateAuthoritiesFilePermissions.yaml -------------------------------------------------------------------------------- /tests/integrations/testdata/commands/kubernetes/containerNetworkInterfaceFileOwnership.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/testdata/commands/kubernetes/containerNetworkInterfaceFileOwnership.yaml -------------------------------------------------------------------------------- /tests/integrations/testdata/commands/kubernetes/containerNetworkInterfaceFilePermissions.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/testdata/commands/kubernetes/containerNetworkInterfaceFilePermissions.yaml -------------------------------------------------------------------------------- /tests/integrations/testdata/commands/kubernetes/controllerManagerConfFileOwnership.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/testdata/commands/kubernetes/controllerManagerConfFileOwnership.yaml -------------------------------------------------------------------------------- /tests/integrations/testdata/commands/kubernetes/controllerManagerConfFilePermissions.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/testdata/commands/kubernetes/controllerManagerConfFilePermissions.yaml -------------------------------------------------------------------------------- /tests/integrations/testdata/commands/kubernetes/etcdDataDirectoryOwnership.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/testdata/commands/kubernetes/etcdDataDirectoryOwnership.yaml -------------------------------------------------------------------------------- /tests/integrations/testdata/commands/kubernetes/etcdDataDirectoryPermissions.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/testdata/commands/kubernetes/etcdDataDirectoryPermissions.yaml -------------------------------------------------------------------------------- /tests/integrations/testdata/commands/kubernetes/kubeAPIServerSpecFileOwnership.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/testdata/commands/kubernetes/kubeAPIServerSpecFileOwnership.yaml -------------------------------------------------------------------------------- /tests/integrations/testdata/commands/kubernetes/kubeAPIServerSpecFilePermission.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/testdata/commands/kubernetes/kubeAPIServerSpecFilePermission.yaml -------------------------------------------------------------------------------- /tests/integrations/testdata/commands/kubernetes/kubeControllerManagerSpecFileOwnership.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/testdata/commands/kubernetes/kubeControllerManagerSpecFileOwnership.yaml -------------------------------------------------------------------------------- /tests/integrations/testdata/commands/kubernetes/kubeControllerManagerSpecFilePermission.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/testdata/commands/kubernetes/kubeControllerManagerSpecFilePermission.yaml -------------------------------------------------------------------------------- /tests/integrations/testdata/commands/kubernetes/kubeEtcdSpecFileOwnership.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/testdata/commands/kubernetes/kubeEtcdSpecFileOwnership.yaml -------------------------------------------------------------------------------- /tests/integrations/testdata/commands/kubernetes/kubeEtcdSpecFilePermission.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/testdata/commands/kubernetes/kubeEtcdSpecFilePermission.yaml -------------------------------------------------------------------------------- /tests/integrations/testdata/commands/kubernetes/kubePKIDirectoryFileOwnership.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/testdata/commands/kubernetes/kubePKIDirectoryFileOwnership.yaml -------------------------------------------------------------------------------- /tests/integrations/testdata/commands/kubernetes/kubePKIKeyFilePermissions.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/testdata/commands/kubernetes/kubePKIKeyFilePermissions.yaml -------------------------------------------------------------------------------- /tests/integrations/testdata/commands/kubernetes/kubeSchedulerSpecFileOwnership.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/testdata/commands/kubernetes/kubeSchedulerSpecFileOwnership.yaml -------------------------------------------------------------------------------- /tests/integrations/testdata/commands/kubernetes/kubeSchedulerSpecFilePermission.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/testdata/commands/kubernetes/kubeSchedulerSpecFilePermission.yaml -------------------------------------------------------------------------------- /tests/integrations/testdata/commands/kubernetes/kubeconfigFileExistsOwnership.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/testdata/commands/kubernetes/kubeconfigFileExistsOwnership.yaml -------------------------------------------------------------------------------- /tests/integrations/testdata/commands/kubernetes/kubeconfigFileExistsPermissions.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/testdata/commands/kubernetes/kubeconfigFileExistsPermissions.yaml -------------------------------------------------------------------------------- /tests/integrations/testdata/commands/kubernetes/kubeletAnonymousAuthArgumentSet.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/testdata/commands/kubernetes/kubeletAnonymousAuthArgumentSet.yaml -------------------------------------------------------------------------------- /tests/integrations/testdata/commands/kubernetes/kubeletAuthorizationModeArgumentSet.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/testdata/commands/kubernetes/kubeletAuthorizationModeArgumentSet.yaml -------------------------------------------------------------------------------- /tests/integrations/testdata/commands/kubernetes/kubeletClientCaFileArgumentSet.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/testdata/commands/kubernetes/kubeletClientCaFileArgumentSet.yaml -------------------------------------------------------------------------------- /tests/integrations/testdata/commands/kubernetes/kubeletConfFileOwnership.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/testdata/commands/kubernetes/kubeletConfFileOwnership.yaml -------------------------------------------------------------------------------- /tests/integrations/testdata/commands/kubernetes/kubeletConfFilePermissions.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/testdata/commands/kubernetes/kubeletConfFilePermissions.yaml -------------------------------------------------------------------------------- /tests/integrations/testdata/commands/kubernetes/kubeletConfigYamlConfigurationFileOwnership.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/testdata/commands/kubernetes/kubeletConfigYamlConfigurationFileOwnership.yaml -------------------------------------------------------------------------------- /tests/integrations/testdata/commands/kubernetes/kubeletConfigYamlConfigurationFilePermission.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/testdata/commands/kubernetes/kubeletConfigYamlConfigurationFilePermission.yaml -------------------------------------------------------------------------------- /tests/integrations/testdata/commands/kubernetes/kubeletEventQpsArgumentSet.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/testdata/commands/kubernetes/kubeletEventQpsArgumentSet.yaml -------------------------------------------------------------------------------- /tests/integrations/testdata/commands/kubernetes/kubeletHostnameOverrideArgumentSet.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/testdata/commands/kubernetes/kubeletHostnameOverrideArgumentSet.yaml -------------------------------------------------------------------------------- /tests/integrations/testdata/commands/kubernetes/kubeletMakeIptablesUtilChainsArgumentSet.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/testdata/commands/kubernetes/kubeletMakeIptablesUtilChainsArgumentSet.yaml -------------------------------------------------------------------------------- /tests/integrations/testdata/commands/kubernetes/kubeletOnlyUseStrongCryptographic.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/testdata/commands/kubernetes/kubeletOnlyUseStrongCryptographic.yaml -------------------------------------------------------------------------------- /tests/integrations/testdata/commands/kubernetes/kubeletProtectKernelDefaultsArgumentSet.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/testdata/commands/kubernetes/kubeletProtectKernelDefaultsArgumentSet.yaml -------------------------------------------------------------------------------- /tests/integrations/testdata/commands/kubernetes/kubeletReadOnlyPortArgumentSet.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/testdata/commands/kubernetes/kubeletReadOnlyPortArgumentSet.yaml -------------------------------------------------------------------------------- /tests/integrations/testdata/commands/kubernetes/kubeletRotateCertificatesArgumentSet.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/testdata/commands/kubernetes/kubeletRotateCertificatesArgumentSet.yaml -------------------------------------------------------------------------------- /tests/integrations/testdata/commands/kubernetes/kubeletRotateKubeletServerCertificateArgumentSet.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/testdata/commands/kubernetes/kubeletRotateKubeletServerCertificateArgumentSet.yaml -------------------------------------------------------------------------------- /tests/integrations/testdata/commands/kubernetes/kubeletServiceFileOwnership.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/testdata/commands/kubernetes/kubeletServiceFileOwnership.yaml -------------------------------------------------------------------------------- /tests/integrations/testdata/commands/kubernetes/kubeletServiceFilePermissions.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/testdata/commands/kubernetes/kubeletServiceFilePermissions.yaml -------------------------------------------------------------------------------- /tests/integrations/testdata/commands/kubernetes/kubeletStreamingConnectionIdleTimeoutArgumentSet.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/testdata/commands/kubernetes/kubeletStreamingConnectionIdleTimeoutArgumentSet.yaml -------------------------------------------------------------------------------- /tests/integrations/testdata/commands/kubernetes/kubeletTlsCertFileTlsArgumentSet.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/testdata/commands/kubernetes/kubeletTlsCertFileTlsArgumentSet.yaml -------------------------------------------------------------------------------- /tests/integrations/testdata/commands/kubernetes/kubeletTlsPrivateKeyFileArgumentSet.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/testdata/commands/kubernetes/kubeletTlsPrivateKeyFileArgumentSet.yaml -------------------------------------------------------------------------------- /tests/integrations/testdata/commands/kubernetes/kubernetesPKICertificateFilePermissions.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/testdata/commands/kubernetes/kubernetesPKICertificateFilePermissions.yaml -------------------------------------------------------------------------------- /tests/integrations/testdata/commands/kubernetes/schedulerConfFileOwnership.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/testdata/commands/kubernetes/schedulerConfFileOwnership.yaml -------------------------------------------------------------------------------- /tests/integrations/testdata/commands/kubernetes/schedulerConfFilePermissions.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/testdata/commands/kubernetes/schedulerConfFilePermissions.yaml -------------------------------------------------------------------------------- /tests/integrations/testdata/expected_node_info.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/tests/integrations/testdata/expected_node_info.json -------------------------------------------------------------------------------- /utils/managed_fields.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/utils/managed_fields.go -------------------------------------------------------------------------------- /utils/managed_fields_test.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/utils/managed_fields_test.go -------------------------------------------------------------------------------- /utils/referance.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/utils/referance.go -------------------------------------------------------------------------------- /utils/referance_test.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/aquasecurity/trivy-kubernetes/HEAD/utils/referance_test.go --------------------------------------------------------------------------------