security in layers. • The 4C's of Cloud Native security are Cloud, Clusters, Containers, and Code. https://kubernetes.io/docs/concepts/security/overview/
tools into the k8s environment. • Users can find and view risks. • Starboard provides CRD and go module to work with those tools. • v0.2.5 (2020/6/28) https://github.com/aquasecurity/starboard • Overview
Roll-up of security risk information in each namespace • Starboard Admission Webhook that can take policy decisions based on the security information from any Starboard-compatible CRD • ・・・ https://blog.aquasec.com/starboard-kubernetes-tools
Available Commands: cleanup Delete custom resource definitions created by starboard find Manage security scanners get Get security reports help Help about any command init Create custom resource definitions used by starboard kube-bench Run the CIS Kubernetes Benchmark https://www.cisecurity.org/benchmark/kubernetes kube-hunter Hunt for security weaknesses polaris Run a variety of checks to ensure that Kubernetes pods and controllers are configured using best practices rbac Get RBAC config to run starboard version Print the version information