Difference between revisions of "K8s security scanner"
Jump to navigation
Jump to search
| Line 5: | Line 5: | ||
microk8s enable community | microk8s enable community | ||
microk8s enable trivy | microk8s enable trivy | ||
| − | kubectl get | + | kubectl get pod -n trivy-system |
| + | ``` | ||
| + | |||
| + | It might take awhile for trivy to adjust pods to your k8s size but when all pods are in a healthy state run | ||
| + | ``` | ||
| + | kubectl get vulnerabilityreports --all-namespaces -o wide | ||
``` | ``` | ||
Revision as of 16:36, 4 April 2023
https://github.com/aquasecurity/trivy
Trivy on Microk8s
microk8s enable community microk8s enable trivy kubectl get pod -n trivy-system
It might take awhile for trivy to adjust pods to your k8s size but when all pods are in a healthy state run
kubectl get vulnerabilityreports --all-namespaces -o wide
Get reports
Inspect created VulnerabilityReports by:
kubectl get vulnerabilityreports --all-namespaces -o wide
Inspect created ConfigAuditReports by:
kubectl get configauditreports --all-namespaces -o wide
Inspect the work log of trivy-operator by:
kubectl logs -n trivy-system deployment/trivy-operator