issues
search
PaloAltoNetworks
/
rbac-police
Evaluate the RBAC permissions of Kubernetes identities through policies written in Rego
https://www.paloaltonetworks.com/resources/whitepapers/kubernetes-privilege-escalation-excessive-permissions-in-popular-platforms
MIT License
339
stars
35
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
fix: correct the detection logic for bind_roles
#22
Danny-Wei
closed
6 months ago
0
[Fix] User permissions aren't evaluated if group violations are disabled #20
#21
yuvalavra
opened
1 year ago
0
User permissions aren't evaluated if group violations are disabled
#20
yuvalavra
opened
1 year ago
0
detect anonymous permissions
#19
krol3
opened
1 year ago
3
fix: reference utils files relative to policy lib directory
#18
jpts
opened
1 year ago
1
Question for issue_token_secrets and list_secret policies
#17
UgOrange
opened
1 year ago
2
GoReleaser workflow broken
#16
SimonGurney
opened
1 year ago
3
feat: add windows releases
#15
SimonGurney
opened
1 year ago
9
Add `--zoom` flag which expands the permissions of a specific identity
#14
yuvalavra
closed
2 years ago
0
[Community Health Assessment] Changes needed
#13
community-health-panw[bot]
closed
2 years ago
2
Merge main into ensure-static-releases
#12
yuvalavra
closed
2 years ago
0
Stop releasing PIE builds as they're not statically linked
#11
yuvalavra
closed
2 years ago
0
Support user & group violations, policy format change, perf improvements
#10
yuvalavra
closed
2 years ago
0
users & groups violations
#9
yuvalavra
closed
2 years ago
1
Add offline mode
#8
yuvalavra
closed
2 years ago
0
Collect NodeRestriction, consume in affected policies
#7
yuvalavra
closed
2 years ago
0
Add infra for discovering protections, identify LegacyServiceAccountToken feature gates
#6
yuvalavra
closed
2 years ago
2
Auto discover relevant admission controllers & feature gates
#5
yuvalavra
closed
2 years ago
2
Add local file reading
#4
smarticu5
closed
2 years ago
2
Don't alert on `list secrets` when SA tokens aren't stored as secrets
#3
yuvalavra
closed
2 years ago
0
Add NodeRestriction flag
#2
yuvalavra
closed
2 years ago
2
[Community Health Assessment] Changes needed
#1
community-health-panw[bot]
closed
2 years ago
3