⭐️ discover k8s applications

Author: chris-rock

providers/k8s/resources/applications.go

@@ -0,0 +1,108 @@
+package resources
+
+import (
+	"slices"
+	"sort"
+
+	"go.mondoo.com/cnquery/v11/llx"
+)
+
+const (
+	// https://kubernetes.io/docs/concepts/overview/working-with-objects/common-labels/
+	K8sApplicationName      = "app.kubernetes.io/name"
+	K8sApplicationInstance  = "app.kubernetes.io/instance"
+	K8sApplicationVersion   = "app.kubernetes.io/version"
+	K8sApplicationComponent = "app.kubernetes.io/component"
+	K8sApplicationPartOf    = "app.kubernetes.io/part-of"
+	K8sApplicationManagedBy = "app.kubernetes.io/managed-by"
+)
+
+func (k *mqlK8s) apps() ([]interface{}, error) {
+	type k8sapp struct {
+		name       string
+		version    string
+		instance   string
+		components []string
+		partOf     string
+		managedBy  string
+	}
+
+	apps := map[string]k8sapp{}
+
+	// fetch deployment resources
+	deployments := k.GetDeployments()
+	if deployments.Error != nil {
+		return nil, deployments.Error
+	}
+
+	for i := range deployments.Data {
+		d := deployments.Data[i].(*mqlK8sDeployment)
+		labels := d.GetLabels().Data
+		name, nameOk := labels[K8sApplicationName]
+		instance, instanceOK := labels[K8sApplicationInstance]
+		version, versionOK := labels[K8sApplicationVersion]
+		component, componentOK := labels[K8sApplicationComponent]
+		partOf, partOfOK := labels[K8sApplicationPartOf]
+		managedBy, managedByOK := labels[K8sApplicationManagedBy]
+
+		if !nameOk {
+			continue
+		}
+
+		app := k8sapp{
+			name: name.(string),
+		}
+		if instanceOK {
+			app.instance = instance.(string)
+		}
+		if versionOK {
+			app.version = version.(string)
+		}
+		if componentOK {
+			app.components = []string{component.(string)}
+		}
+		if partOfOK {
+			app.partOf = partOf.(string)
+		}
+		if managedByOK {
+			app.managedBy = managedBy.(string)
+		}
+
+		key := app.name + app.instance
+		if existing, ok := apps[key]; ok {
+			// if the app already exists, we need to merge the components
+			components := append(existing.components, app.components...)
+			sort.Strings(components)
+			components = slices.Compact(components)
+			existing.components = components
+			apps[app.name+app.instance] = existing
+		} else {
+			apps[app.name+app.instance] = app
+		}
+	}
+
+	// // fetch daemonset resources
+	// daemonsets := k.GetDaemonsets()
+	// if daemonsets.Error != nil {
+	// 	return nil, daemonsets.Error
+	// }
+
+	// return k8s app list
+	appList := []interface{}{}
+	for _, app := range apps {
+		r, err := CreateResource(k.MqlRuntime, "k8s.app", map[string]*llx.RawData{
+			"__id":      llx.StringData("app"),
+			"name":      llx.StringData(app.name),
+			"version":   llx.StringData(app.version),
+			"instance":  llx.StringData(app.instance),
+			"managedBy": llx.StringData(app.managedBy),
+		})
+		if err != nil {
+			return nil, err
+		}
+
+		appList = append(appList, r)
+	}
+
+	return appList, nil
+}

providers/k8s/resources/k8s.lr

@@ -58,6 +58,8 @@ k8s {
   customresources() []k8s.customresource
   // Kubernetes admission webhook configurations
   validatingWebhookConfigurations() []k8s.admission.validatingwebhookconfiguration
+  // Kubernetes applications
+  apps() []k8s.app
 }
 
 // Kubernetes API resources
@@ -865,6 +867,7 @@ private k8s.userinfo @defaults("username") {
   uid string
 }
 
+// Kubernetes Validating Webhook Configuration
 private k8s.admission.validatingwebhookconfiguration @defaults("name") {
   // Mondoo ID for the Kubernetes object
   id string
@@ -886,4 +889,16 @@ private k8s.admission.validatingwebhookconfiguration @defaults("name") {
   manifest() dict
   // Webhooks configuration
   webhooks() []dict
+}
+
+// Kubernetes Application
+private k8s.app {
+  // Application name
+  name string
+  // Application version
+  version string
+  // Application instance
+  instance string
+  // Managed By
+  managedBy string
 }

providers/k8s/resources/k8s.lr.go

@@ -5,6 +5,8 @@ resources:
   k8s:
     fields:
       apiResources: {}
+      apps:
+        min_mondoo_version: 9.0.0
       clusterrolebindings:
         min_mondoo_version: 5.31.0
       clusterroles:
@@ -120,6 +122,17 @@ resources:
     platform:
       name:
       - kubernetes
+  k8s.app:
+    fields:
+      instance: {}
+      managedBy: {}
+      name: {}
+      version: {}
+    is_private: true
+    min_mondoo_version: 9.0.0
+    platform:
+      name:
+      - kubernetes
   k8s.configmap:
     fields:
       annotations: {}