kube-score

Kubernetes object analysis with recommendations for improved reliability and security. kube-score is a tool that does static code analysis of your Kubernetes object definitions. The output is a list of recommendations of what you can improve to make your application more secure and resilient. kube-score is open-source and available under the MIT-license. Container limits (should be set) Pod is targeted by a NetworkPolicy, both egress and ingress rules are recommended. Deployments and StatefulSets should have a PodDisruptionPolicy. Deployments and StatefulSets should have host PodAntiAffinity configured. For container probes, a readiness should be configured, and should not be identical to the liveness probe. Read more in README_PROBES.md. Container securityContext, run as a high number user/group, do not run as root or with privileged root fs. Read more in README_SECURITYCONTEXT.md. Stable APIs, use a stable API if available (supported: Deployments, StatefulSets, DaemonSet)

Features

Container limits (should be set)
Deployments and StatefulSets should have host PodAntiAffinity configured
Container securityContext, run as high number user/group
Stable APIs, use a stable API if available (supported: Deployments, StatefulSets, DaemonSet)
You can test kube-score out in the browser with the online demo (source)
The output is a list of recommendations of what you can improve to make your application more secure and resilient

Project Samples

Project Activity

See All Activity >

License

MIT License

Follow kube-score

kube-score Web Site

User Reviews

Be the first to post a review of kube-score!

Additional Project Details

Operating Systems

Linux, Mac, Windows

Programming Language

Related Categories

Go Security Software, Go Static Code Analysis Tool

Registered

2023-01-24

Similar Business Software

Fairwinds Insights

Protect and optimize your mission-critical Kubernetes applications. Fairwinds Insights is a Kubernetes configuration validation platform that proactively monitors your Kubernetes and container configurations and recommends improvements. The software combines trusted open source tools, toolchain...

See Software
Visual Expert

Visual Expert is a static code analyzer for Oracle PL/SQL, SQL Server T-SQL, and PowerBuilder. Identify code dependencies to modify your code without breaking your application. Scan your code to improve the security, performance, and quality. Perform Impact analysis to Identify breaking...

See Software
Ambassador

Ambassador Edge Stack is a Kubernetes-native API Gateway that delivers the scalability, security, and simplicity for some of the world's largest Kubernetes installations. Edge Stack makes securing microservices easy with a comprehensive set of security functionality, including automatic TLS,...

See Software
Aikido Security

Secure your code, cloud, and runtime in one central system. Aikido’s all-in-one security platform is loved by developers and security teams alike with full security visibility, insight in what matters most, and fast/automatic vulnerability fixes. Teams get security done with Aikido thanks...

See Software
groundcover

Cloud-based observability solution that helps businesses track and manage workload and performance on a unified dashboard. Monitor everything you run in your cloud without compromising on cost, granularity, or scale. groundcover is a full stack cloud-native APM platform designed to make...

See Software
Semgrep

Modern security teams are “paving the road” for developers — enforcing code guardrails on every commit. r2c’s Semgrep can eliminate vulnerability classes organization-wide. Scale your security team with lightweight static analysis. Semgrep is a fast, open-source, static analysis tool that excels...

See Software

Report inappropriate content

kube-score

Kubernetes object analysis with recommendations

Get an email when there's a new version of kube-score

Features

Project Samples

Project Activity

Categories

License

Follow kube-score

User Reviews

Additional Project Details

Operating Systems

Programming Language

Related Categories

Registered