Open xunholy opened 3 years ago
issue-label-bot[bot]
commented
3 years ago Issue-Label Bot is automatically applying the label feature_request to this issue, with a confidence of 0.98. Please mark this comment with :thumbsup: or :thumbsdown: to give our bot feedback!
Links: app homepage, dashboard and code for this bot.
xunholy
commented
3 years ago Various searches have resulted in no results for decent Grafana dashboards that can be leveraged for Gatekeeper, one will need to be created. Key criteria are violations per namespaces, with scope to breakdown per resource or label.
xunholy
commented
3 years ago Gatekeeper is deployed and running on version 3.2.0-rc.1 however, constraints are not being applied to the cluster.
https://github.com/plexsystems/konstraint will be quite handy to render the rego files in the security policies repo
Details
Deploying Gatekeeper into the cluster with the CIS benchmark policies written in the raspbernetes/k8s-security-policies repository.