This repo has all the stuff needed for running CIS scan on RKE clusters.
The corresponding docker image (rancher/security-scan) is used in the system charts.
Tag the image to personal docker hub repo
docker tag rancher/security-scan:<MAKE TAG OUTPUT> <DOCKER_HUB_USER>/security-scan:dev
Push docker tag
docker push <DOCKER_HUB_USER>/security-scan:dev
On Rancher install CIS Benchmark app, changing the Values YAML to point to your image
image: ... securityScan: repository: <DOCKER_HUB_USER>/security-scan tag: dev
Copyright (c) 2019 Rancher Labs, Inc.
Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at
Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.
We found that github.com/rancher/security-scan demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket installs a GitHub app to automatically flag issues on every pull request and report the health of your dependencies. Find out what is inside your node modules and prevent malicious activity before you update the dependencies.