Zora is an open source solution that helps you achieve compliance with Kubernetes best practices recommended by industry-leading frameworks. By scanning your cluster with multiple plugins, Zora identifies potential issues, misconfigurations, and vulnerabilities.
Add flag scan.plugins.popeye.skipInternalResources in helm chart.
This flag specifies whether the following resources should be skipped by popeye scans.
resources from kube-system, kube-public and kube-node-lease namespaces;
kubernetes system reserved RBAC (prefixed with system:);
Description
Add flag
scan.plugins.popeye.skipInternalResourcesin helm chart. This flag specifies whether the following resources should be skipped bypopeyescans.kube-system,kube-publicandkube-node-leasenamespaces;system:);kube-root-ca.crtconfigmaps;defaultnamespace;defaultserviceaccounts;sh.helm.release);How has this been tested?
helm template zora ./charts/zora/ --set scan.plugins.popeye.skipInternalResources=truehelm template zora ./charts/zora/ --set scan.plugins.popeye.skipInternalResources=falseChecklist