|
1 | 1 | # Kube Secure Scanner |
2 | 2 |
|
3 | | -A flexible, security-focused framework for scanning containers in Kubernetes environments with multiple scanning engines. Initially built with CINC Auditor (open source InSpec), the platform provides secure RBAC configurations, multiple scanning approaches, and comprehensive CI/CD integration. |
4 | | - |
5 | 3 | !!! info "Release Preview v0.90" |
6 | 4 | This is an ongoing joint community research effort and is currently at **Release Preview (v0.90)**. Some examples, automation, pipelines, and scripts are still in the process of being fully tested and validated. We'll be releasing updates in v0.9.x versions as we work toward a stable v1.0.0 release. |
7 | 5 |
|
| 6 | + [View Project on GitHub ↗](https://github.com/mitre/kube-secure-scanner){: .md-button .md-button--primary target="_blank"} |
| 7 | + |
| 8 | +## Overview |
| 9 | + |
| 10 | +A flexible, security-focused framework for scanning containers in Kubernetes environments with multiple scanning engines. Initially built with CINC Auditor (open source InSpec), the platform provides secure RBAC configurations, multiple scanning approaches, and comprehensive CI/CD integration. |
| 11 | + |
| 12 | +<div class="grid" markdown> |
| 13 | +<div markdown> |
| 14 | +**Key Features:** |
| 15 | +- Multiple scanner engine support (extensible framework) |
| 16 | +- Three container scanning approaches for all Kubernetes environments |
| 17 | +- Specialized security controls with least-privilege design |
| 18 | +- Comprehensive documentation and integration examples |
| 19 | +- CI/CD pipeline integration for GitHub Actions and GitLab |
| 20 | +</div> |
| 21 | +<div markdown> |
| 22 | +**Quick Links:** |
| 23 | +[Quick Start Guide](quickstart-guide.md){: .md-button .md-button--primary } |
| 24 | +[Approach Comparison](approaches/comparison.md){: .md-button } |
| 25 | +[GitHub Actions Integration](integration/platforms/github-actions.md){: .md-button } |
| 26 | +[GitLab CI Integration](integration/platforms/gitlab-ci.md){: .md-button } |
| 27 | +</div> |
| 28 | +</div> |
| 29 | + |
8 | 30 | *[CINC]: CINC Is Not Chef |
9 | 31 | *[SAF]: Security Automation Framework |
10 | 32 | *[RBAC]: Role-Based Access Control |
11 | 33 | *[K8s]: Kubernetes |
12 | 34 | *[API]: Application Programming Interface |
13 | 35 |
|
14 | | -## I am a |
| 36 | +## Choose Your Path |
15 | 37 |
|
16 | 38 | <div class="grid cards" markdown> |
17 | 39 |
|
@@ -121,10 +143,22 @@ This project offers three distinct approaches for container scanning, designed t |
121 | 143 |
|
122 | 144 | ## Getting Started |
123 | 145 |
|
124 | | -The fastest way to get started is with our Quick Start guide: |
| 146 | +The fastest way to get started is with our Quick Start guide, which walks you through: |
| 147 | +- Setting up a testing environment |
| 148 | +- Deploying the scanning infrastructure |
| 149 | +- Running container scans |
| 150 | +- Validating compliance results |
125 | 151 |
|
| 152 | +<div class="grid" markdown> |
| 153 | +<div markdown> |
126 | 154 | [Quick Start Guide](quickstart-guide.md){: .md-button .md-button--primary } |
127 | 155 | [Site Index](site-index.md){: .md-button } |
| 156 | +</div> |
| 157 | +<div markdown> |
| 158 | +[Security Overview](security/index.md){: .md-button } |
| 159 | +[Documentation Map](site-index.md){: .md-button } |
| 160 | +</div> |
| 161 | +</div> |
128 | 162 |
|
129 | 163 | ## Project Roadmap |
130 | 164 |
|
|
0 commit comments