Zora is an open source solution that helps you achieve compliance with Kubernetes best practices recommended by industry-leading frameworks. By scanning your cluster with multiple plugins, Zora identifies potential issues, misconfigurations, and vulnerabilities.
Description
When checking a cluster running kubernetes 1.25, popeye fails because the resource
policy/v1beta1/podsecuritypolicies
has been removed.While PR https://github.com/derailed/popeye/pull/239 is not merged, we can use a fork https://github.com/undistro/popeye.
Our fork uses a non-root user in popeye docker image. So we can set
securityContext.runAsNonRoot
totrue
in CronJobs.Linked Issues
How has this been tested?
Checklist