├── .gitattributes ├── .github ├── ISSUE_TEMPLATE │ ├── bug_report.md │ ├── config.yml │ └── feature_request.md ├── PULL_REQUEST_TEMPLATE.md └── workflows │ ├── add-issue-to-project.yml │ ├── stale.yml │ └── sync-labels.yml ├── .gitignore ├── CHANGELOG.md ├── LICENSE ├── README.md ├── all_controls ├── all_controls.pp ├── cluster_role_binding.pp ├── config_map.pp ├── cronjob.pp ├── daemonset.pp ├── deployment.pp ├── docs │ └── all_controls_overview.md ├── endpoint.pp ├── ingress.pp ├── job.pp ├── namespace.pp ├── network_policy.pp ├── pod.pp ├── pod_security_policy.pp ├── pod_template.pp ├── replicaset.pp ├── replication_controller.pp ├── role.pp ├── role_binding.pp ├── secret.pp ├── service.pp ├── service_account.pp └── statefulset.pp ├── cis_kube_v120 ├── cis_kube_v120.pp ├── cis_kube_v120_v100.pp └── docs │ ├── cis_kube_v120_v100_5_1_6.md │ ├── cis_kube_v120_v100_5_2_1.md │ ├── cis_kube_v120_v100_5_2_2.md │ ├── cis_kube_v120_v100_5_2_3.md │ ├── cis_kube_v120_v100_5_2_4.md │ ├── cis_kube_v120_v100_5_2_5.md │ ├── cis_kube_v120_v100_5_2_6.md │ ├── cis_kube_v120_v100_5_3_2.md │ ├── cis_kube_v120_v100_5_7_2.md │ ├── cis_kube_v120_v100_5_7_4.md │ └── cis_kube_v120_v100_overview.md ├── cis_v170 ├── cis.pp ├── docs │ ├── cis_v170_5_1.md │ ├── cis_v170_5_1_3.md │ ├── cis_v170_5_1_6.md │ ├── cis_v170_5_3.md │ ├── cis_v170_5_3_2.md │ ├── cis_v170_5_7.md │ ├── cis_v170_5_7_2.md │ ├── cis_v170_5_7_4.md │ └── cis_v170_overview.md └── section_5.pp ├── controls ├── cluster_role_binding.pp ├── config_map.pp ├── cronjob.pp ├── daemonset.pp ├── deployment.pp ├── endpoint.pp ├── ingress.pp ├── job.pp ├── local.pp ├── namespace.pp ├── network_policy.pp ├── pod.pp ├── pod_security_policy.pp ├── pod_template.pp ├── replicaset.pp ├── replication_controller.pp ├── role.pp ├── role_binding.pp ├── secret.pp ├── service.pp ├── service_account.pp └── statefulset.pp ├── docs ├── index.md ├── kubernetes_cis_v120.png ├── kubernetes_compliance_dashboard.png ├── kubernetes_compliance_mod_console_output.png └── kubernetes_nsa_csa_v1.png ├── mod.pp ├── nsa_cisa_v1 ├── docs │ └── nsa_cisa_v1_overview.md ├── nsa_cisa_v1.pp ├── nsa_cisa_v1_network_hardening.pp └── nsa_cisa_v1_pod_security.pp ├── powerpipe.ppvars.example ├── query ├── cluster_role_binding.pp ├── config_map.pp ├── cronjob.pp ├── daemonset.pp ├── deployment.pp ├── endpoint.pp ├── ingress.pp ├── job.pp ├── namespace.pp ├── network_policy.pp ├── pod.pp ├── pod_security_policy.pp ├── pod_template.pp ├── replicaset.pp ├── replication_controller.pp ├── role.pp ├── role_binding.pp ├── secret.pp ├── service.pp ├── service_account.pp └── statefulset.pp └── variables.pp /.gitattributes: -------------------------------------------------------------------------------- 1 | **/*.sp linguist-language=HCL 2 | -------------------------------------------------------------------------------- /.github/ISSUE_TEMPLATE/bug_report.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/.github/ISSUE_TEMPLATE/bug_report.md -------------------------------------------------------------------------------- /.github/ISSUE_TEMPLATE/config.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/.github/ISSUE_TEMPLATE/config.yml -------------------------------------------------------------------------------- /.github/ISSUE_TEMPLATE/feature_request.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/.github/ISSUE_TEMPLATE/feature_request.md -------------------------------------------------------------------------------- /.github/PULL_REQUEST_TEMPLATE.md: -------------------------------------------------------------------------------- 1 | ### Checklist 2 | - [ ] Issue(s) linked 3 | -------------------------------------------------------------------------------- /.github/workflows/add-issue-to-project.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/.github/workflows/add-issue-to-project.yml -------------------------------------------------------------------------------- /.github/workflows/stale.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/.github/workflows/stale.yml -------------------------------------------------------------------------------- /.github/workflows/sync-labels.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/.github/workflows/sync-labels.yml -------------------------------------------------------------------------------- /.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/.gitignore -------------------------------------------------------------------------------- /CHANGELOG.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/CHANGELOG.md -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/LICENSE -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/README.md -------------------------------------------------------------------------------- /all_controls/all_controls.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/all_controls/all_controls.pp -------------------------------------------------------------------------------- /all_controls/cluster_role_binding.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/all_controls/cluster_role_binding.pp -------------------------------------------------------------------------------- /all_controls/config_map.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/all_controls/config_map.pp -------------------------------------------------------------------------------- /all_controls/cronjob.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/all_controls/cronjob.pp -------------------------------------------------------------------------------- /all_controls/daemonset.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/all_controls/daemonset.pp -------------------------------------------------------------------------------- /all_controls/deployment.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/all_controls/deployment.pp -------------------------------------------------------------------------------- /all_controls/docs/all_controls_overview.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/all_controls/docs/all_controls_overview.md -------------------------------------------------------------------------------- /all_controls/endpoint.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/all_controls/endpoint.pp -------------------------------------------------------------------------------- /all_controls/ingress.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/all_controls/ingress.pp -------------------------------------------------------------------------------- /all_controls/job.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/all_controls/job.pp -------------------------------------------------------------------------------- /all_controls/namespace.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/all_controls/namespace.pp -------------------------------------------------------------------------------- /all_controls/network_policy.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/all_controls/network_policy.pp -------------------------------------------------------------------------------- /all_controls/pod.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/all_controls/pod.pp -------------------------------------------------------------------------------- /all_controls/pod_security_policy.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/all_controls/pod_security_policy.pp -------------------------------------------------------------------------------- /all_controls/pod_template.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/all_controls/pod_template.pp -------------------------------------------------------------------------------- /all_controls/replicaset.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/all_controls/replicaset.pp -------------------------------------------------------------------------------- /all_controls/replication_controller.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/all_controls/replication_controller.pp -------------------------------------------------------------------------------- /all_controls/role.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/all_controls/role.pp -------------------------------------------------------------------------------- /all_controls/role_binding.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/all_controls/role_binding.pp -------------------------------------------------------------------------------- /all_controls/secret.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/all_controls/secret.pp -------------------------------------------------------------------------------- /all_controls/service.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/all_controls/service.pp -------------------------------------------------------------------------------- /all_controls/service_account.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/all_controls/service_account.pp -------------------------------------------------------------------------------- /all_controls/statefulset.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/all_controls/statefulset.pp -------------------------------------------------------------------------------- /cis_kube_v120/cis_kube_v120.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/cis_kube_v120/cis_kube_v120.pp -------------------------------------------------------------------------------- /cis_kube_v120/cis_kube_v120_v100.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/cis_kube_v120/cis_kube_v120_v100.pp -------------------------------------------------------------------------------- /cis_kube_v120/docs/cis_kube_v120_v100_5_1_6.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/cis_kube_v120/docs/cis_kube_v120_v100_5_1_6.md -------------------------------------------------------------------------------- /cis_kube_v120/docs/cis_kube_v120_v100_5_2_1.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/cis_kube_v120/docs/cis_kube_v120_v100_5_2_1.md -------------------------------------------------------------------------------- /cis_kube_v120/docs/cis_kube_v120_v100_5_2_2.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/cis_kube_v120/docs/cis_kube_v120_v100_5_2_2.md -------------------------------------------------------------------------------- /cis_kube_v120/docs/cis_kube_v120_v100_5_2_3.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/cis_kube_v120/docs/cis_kube_v120_v100_5_2_3.md -------------------------------------------------------------------------------- /cis_kube_v120/docs/cis_kube_v120_v100_5_2_4.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/cis_kube_v120/docs/cis_kube_v120_v100_5_2_4.md -------------------------------------------------------------------------------- /cis_kube_v120/docs/cis_kube_v120_v100_5_2_5.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/cis_kube_v120/docs/cis_kube_v120_v100_5_2_5.md -------------------------------------------------------------------------------- /cis_kube_v120/docs/cis_kube_v120_v100_5_2_6.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/cis_kube_v120/docs/cis_kube_v120_v100_5_2_6.md -------------------------------------------------------------------------------- /cis_kube_v120/docs/cis_kube_v120_v100_5_3_2.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/cis_kube_v120/docs/cis_kube_v120_v100_5_3_2.md -------------------------------------------------------------------------------- /cis_kube_v120/docs/cis_kube_v120_v100_5_7_2.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/cis_kube_v120/docs/cis_kube_v120_v100_5_7_2.md -------------------------------------------------------------------------------- /cis_kube_v120/docs/cis_kube_v120_v100_5_7_4.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/cis_kube_v120/docs/cis_kube_v120_v100_5_7_4.md -------------------------------------------------------------------------------- /cis_kube_v120/docs/cis_kube_v120_v100_overview.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/cis_kube_v120/docs/cis_kube_v120_v100_overview.md -------------------------------------------------------------------------------- /cis_v170/cis.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/cis_v170/cis.pp -------------------------------------------------------------------------------- /cis_v170/docs/cis_v170_5_1.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/cis_v170/docs/cis_v170_5_1.md -------------------------------------------------------------------------------- /cis_v170/docs/cis_v170_5_1_3.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/cis_v170/docs/cis_v170_5_1_3.md -------------------------------------------------------------------------------- /cis_v170/docs/cis_v170_5_1_6.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/cis_v170/docs/cis_v170_5_1_6.md -------------------------------------------------------------------------------- /cis_v170/docs/cis_v170_5_3.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/cis_v170/docs/cis_v170_5_3.md -------------------------------------------------------------------------------- /cis_v170/docs/cis_v170_5_3_2.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/cis_v170/docs/cis_v170_5_3_2.md -------------------------------------------------------------------------------- /cis_v170/docs/cis_v170_5_7.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/cis_v170/docs/cis_v170_5_7.md -------------------------------------------------------------------------------- /cis_v170/docs/cis_v170_5_7_2.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/cis_v170/docs/cis_v170_5_7_2.md -------------------------------------------------------------------------------- /cis_v170/docs/cis_v170_5_7_4.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/cis_v170/docs/cis_v170_5_7_4.md -------------------------------------------------------------------------------- /cis_v170/docs/cis_v170_overview.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/cis_v170/docs/cis_v170_overview.md -------------------------------------------------------------------------------- /cis_v170/section_5.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/cis_v170/section_5.pp -------------------------------------------------------------------------------- /controls/cluster_role_binding.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/controls/cluster_role_binding.pp -------------------------------------------------------------------------------- /controls/config_map.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/controls/config_map.pp -------------------------------------------------------------------------------- /controls/cronjob.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/controls/cronjob.pp -------------------------------------------------------------------------------- /controls/daemonset.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/controls/daemonset.pp -------------------------------------------------------------------------------- /controls/deployment.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/controls/deployment.pp -------------------------------------------------------------------------------- /controls/endpoint.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/controls/endpoint.pp -------------------------------------------------------------------------------- /controls/ingress.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/controls/ingress.pp -------------------------------------------------------------------------------- /controls/job.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/controls/job.pp -------------------------------------------------------------------------------- /controls/local.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/controls/local.pp -------------------------------------------------------------------------------- /controls/namespace.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/controls/namespace.pp -------------------------------------------------------------------------------- /controls/network_policy.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/controls/network_policy.pp -------------------------------------------------------------------------------- /controls/pod.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/controls/pod.pp -------------------------------------------------------------------------------- /controls/pod_security_policy.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/controls/pod_security_policy.pp -------------------------------------------------------------------------------- /controls/pod_template.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/controls/pod_template.pp -------------------------------------------------------------------------------- /controls/replicaset.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/controls/replicaset.pp -------------------------------------------------------------------------------- /controls/replication_controller.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/controls/replication_controller.pp -------------------------------------------------------------------------------- /controls/role.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/controls/role.pp -------------------------------------------------------------------------------- /controls/role_binding.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/controls/role_binding.pp -------------------------------------------------------------------------------- /controls/secret.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/controls/secret.pp -------------------------------------------------------------------------------- /controls/service.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/controls/service.pp -------------------------------------------------------------------------------- /controls/service_account.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/controls/service_account.pp -------------------------------------------------------------------------------- /controls/statefulset.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/controls/statefulset.pp -------------------------------------------------------------------------------- /docs/index.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/docs/index.md -------------------------------------------------------------------------------- /docs/kubernetes_cis_v120.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/docs/kubernetes_cis_v120.png -------------------------------------------------------------------------------- /docs/kubernetes_compliance_dashboard.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/docs/kubernetes_compliance_dashboard.png -------------------------------------------------------------------------------- /docs/kubernetes_compliance_mod_console_output.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/docs/kubernetes_compliance_mod_console_output.png -------------------------------------------------------------------------------- /docs/kubernetes_nsa_csa_v1.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/docs/kubernetes_nsa_csa_v1.png -------------------------------------------------------------------------------- /mod.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/mod.pp -------------------------------------------------------------------------------- /nsa_cisa_v1/docs/nsa_cisa_v1_overview.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/nsa_cisa_v1/docs/nsa_cisa_v1_overview.md -------------------------------------------------------------------------------- /nsa_cisa_v1/nsa_cisa_v1.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/nsa_cisa_v1/nsa_cisa_v1.pp -------------------------------------------------------------------------------- /nsa_cisa_v1/nsa_cisa_v1_network_hardening.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/nsa_cisa_v1/nsa_cisa_v1_network_hardening.pp -------------------------------------------------------------------------------- /nsa_cisa_v1/nsa_cisa_v1_pod_security.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/nsa_cisa_v1/nsa_cisa_v1_pod_security.pp -------------------------------------------------------------------------------- /powerpipe.ppvars.example: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/powerpipe.ppvars.example -------------------------------------------------------------------------------- /query/cluster_role_binding.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/query/cluster_role_binding.pp -------------------------------------------------------------------------------- /query/config_map.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/query/config_map.pp -------------------------------------------------------------------------------- /query/cronjob.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/query/cronjob.pp -------------------------------------------------------------------------------- /query/daemonset.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/query/daemonset.pp -------------------------------------------------------------------------------- /query/deployment.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/query/deployment.pp -------------------------------------------------------------------------------- /query/endpoint.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/query/endpoint.pp -------------------------------------------------------------------------------- /query/ingress.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/query/ingress.pp -------------------------------------------------------------------------------- /query/job.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/query/job.pp -------------------------------------------------------------------------------- /query/namespace.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/query/namespace.pp -------------------------------------------------------------------------------- /query/network_policy.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/query/network_policy.pp -------------------------------------------------------------------------------- /query/pod.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/query/pod.pp -------------------------------------------------------------------------------- /query/pod_security_policy.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/query/pod_security_policy.pp -------------------------------------------------------------------------------- /query/pod_template.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/query/pod_template.pp -------------------------------------------------------------------------------- /query/replicaset.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/query/replicaset.pp -------------------------------------------------------------------------------- /query/replication_controller.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/query/replication_controller.pp -------------------------------------------------------------------------------- /query/role.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/query/role.pp -------------------------------------------------------------------------------- /query/role_binding.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/query/role_binding.pp -------------------------------------------------------------------------------- /query/secret.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/query/secret.pp -------------------------------------------------------------------------------- /query/service.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/query/service.pp -------------------------------------------------------------------------------- /query/service_account.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/query/service_account.pp -------------------------------------------------------------------------------- /query/statefulset.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/query/statefulset.pp -------------------------------------------------------------------------------- /variables.pp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/turbot/steampipe-mod-kubernetes-compliance/HEAD/variables.pp --------------------------------------------------------------------------------