Closed jeason81 closed 5 days ago
@jeason81 thanks for reporting us. @NDStrahilevitz could you check this later?
If it helps, I'm deploying in an EKS cluster using the amzn2-ami-minimal-hvm-2.0.20240719.0-x86_64-ebs
AMI. Here are the details:
Kubernetes 1.30
AMI Names | Release version | Included artifacts |
---|---|---|
amazon-eks-node-al2023-x86_64-standard-1.30-v20240807 | 1.30.2-20240807 | s3://amazon-eks/1.30.2/2024-07-12/ |
amazon-eks-node-1.30-v20240807 | 1.30.2-20240807 | s3://amazon-eks/1.30.2/2024-07-12/ |
amazon-eks-node-al2023-arm64-standard-1.30-v20240807 | 1.30.2-20240807 | s3://amazon-eks/1.30.2/2024-07-12/ |
amazon-eks-arm64-node-1.30-v20240807 | 1.30.2-20240807 | s3://amazon-eks/1.30.2/2024-07-12/ |
amazon-eks-gpu-node-1.30-v20240807 | 1.30.2-20240807 | s3://amazon-eks/1.30.2/2024-07-12/ |
Package | AL2_x86_64 | |
---|---|---|
amazon-ssm-agent | 3.3.380.0-1.amzn2 | |
containerd | 1.7.11-1.amzn2.0.1 | |
cuda-12-2 | — | 12.2.2-1 |
efa | — | 2.10.0-1.amzn2 |
kernel | 5.10.220-209.869.amzn2 | |
nvidia-driver-latest-dkms | — | 535.183.06-1.el7 |
runc | 1.1.11-1.amzn2 |
Package | AL2023_x86_64_STANDARD |
---|---|
amazon-ssm-agent | 3.3.380.0-1.amzn2023 |
containerd | 1.7.20-1.amzn2023.0.1 |
kernel | 6.1.102-108.177.amzn2023 |
runc | 1.1.11-1.amzn2023.0.1 |
Description
When running tracee in a Kubernetes environment (x86_64 hosts), the image digest is populated with the image name rather than the digest. See below:
Output of
tracee version
:Output of
uname -a
:Additional details
There seems to be a typo here: https://github.com/aquasecurity/tracee/blob/a325d6439f319f4988428ae4741ee0eef9cd9b32/pkg/containers/runtime/containerd.go#L82-L84
I believe it should read: