derailed / k9s

🐶 Kubernetes CLI To Manage Your Clusters In Style!
https://k9scli.io
Apache License 2.0
27.21k stars 1.7k forks source link

Aqua Starboard Integration #1466

Open tks98 opened 2 years ago

tks98 commented 2 years ago




Is your feature request related to a problem? Please describe.

I use Aqua Starboard for automating several types of security scans on Kubernetes. These scan reports are saved as CRDs and the starboard cli tool can generate html reports for these CRDs.

There are only two tools to visualize/summarize the report crds, Lens and Octant (as far as I know). Currently, I use the starboard cli for report generation, and the Lens extension for viewing a summary of the CRDs. I felt an implementation consolidating these in k9s could be beneficial.

Describe the solution you'd like

I already added this functionality to k9s in my fork, and I have found it to be very useful for personal use. I am opening this issue to see if this would be something useful to be added k9s officially. If so, I can submit a PR for review.

Additional context

This is what I brainstormed and eventually added to my k9s fork

I have attached a few screenshots showing some of this functionality. Please let me know if this is something to submit a PR for, or any feedback/suggestions. Thanks!!

Vulnerability report crd summary k9s (summaries also added for the other starboard crd report types)

k9s view

Vulnerability report crd summary Lens extension

lens view

HTML report generation plugin

k9s generate-report

Initiate scans for a selected Kubernetes workload

k9s scan workload
tks98 commented 2 years ago

Kindly bumping this issue again. Is this something which could warrant a PR/review? My co-workers and I use this very often and have found it to be useful for working with Aqua starboard.

If its integrated we could even open a PR with the starboard folks to add k9s as another UI/Dashboard for starboard crds, and another method for running scans, which could bring more users to use k9s overall.

If we feel its too niche, please let me know and I will close. Thanks!

bryanasdev000 commented 2 years ago

Sounds interesting @tks98, did you open a PR for it?

I can give a shot to test and maybe review it.

tks98 commented 2 years ago

Sounds interesting @tks98, did you open a PR for it?

I can give a shot to test and maybe review it.

Thanks for the reply. Since I opened this starboard has added a few more report CRD types. I'll add those to my changes and open a PR.

derailed commented 1 year ago

@tks98 Thank you for this Travis!! I think it totally makes sense. Could this report be run using k9s plugins as it seems it just execs in and we would not have to maintain this dependency in code?

alexanderkjeldaas commented 7 months ago

How does this differ from the vulnerability score system? I understand that there are more details here, but are they also overlapping?