Zora is an open source solution that helps you achieve compliance with Kubernetes best practices recommended by industry-leading frameworks. By scanning your cluster with multiple plugins, Zora identifies potential issues, misconfigurations, and vulnerabilities.
Add flag scan.plugins.popeye.skipInternalResources in helm chart.
This flag specifies whether the following resources should be skipped by popeye scans.
resources from kube-system, kube-public and kube-node-lease namespaces;
kubernetes system reserved RBAC (prefixed with system:);
Description
Add flag
scan.plugins.popeye.skipInternalResources
in helm chart. This flag specifies whether the following resources should be skipped bypopeye
scans.kube-system
,kube-public
andkube-node-lease
namespaces;system:
);kube-root-ca.crt
configmaps;default
namespace;default
serviceaccounts;sh.helm.release
);How has this been tested?
helm template zora ./charts/zora/ --set scan.plugins.popeye.skipInternalResources=true
helm template zora ./charts/zora/ --set scan.plugins.popeye.skipInternalResources=false
Checklist