Insecured option - Githubissues

cyberark / KubiScan

A tool to scan Kubernetes cluster for risky permissions

GNU General Public License v3.0

1.31k stars 130 forks source link

Insecured option #5

Closed prasenforu closed 2 years ago

prasenforu commented 5 years ago

Not an issue but insecure option should be added if only "TOKEN" is used.

otherwise every command run we will get following error ..

/usr/local/lib/python3.6/dist-packages/urllib3/connectionpool.py:847: InsecureRequestWarning: Unverified HTTPS request is being made. Adding certificate verification is strongly advised. See: https://urllib3.readthedocs.io/en/latest/advanced-usage.html#ssl-warnings
  InsecureRequestWarning)

g3rzi commented 5 years ago

Thanks, I will check. I added the insecure option by default but I had issues with that so I commented it: https://github.com/cyberark/KubiScan/blob/11de797015bb76750429d184fb4a3f543687d77b/engine/utils.py#L15

I think the problem was because I am using Kubernetes python client package and they didn't use this option. I will check if there is an option to fix it.