This repository has been archived by the owner on Feb 5, 2024. It is now read-only.
iSKan
Harness your existing Container Image Vulnerability Scanning information to your Kubernetes Cluster.
Install
curl https://raw.githubusercontent.com/alcideio/iskan/master/download.sh | bash
Command Line Examples
# Scan the cluster pointed by the kubeconfig context 'myctx'
iskan cluster --cluster-context mycluster --api-config myconfig.yaml
# Get vulnerability information for a specific image
iskan image --image="gcr.io/myproj/path/to/myimage:v1.0" --api-config myconfig.yaml -f table --filter-severity CRITICAL,HIGH
Vulnerabilities Provider API References
Provider | References |
---|---|
ECR | ECR Policies, ECR Image Scanning |
GCR | Enabling the Container Scanning API |
ACR | Azure Defender, Vulnerability Assessment in Azure |
InsightVM | InsightVM Container Security |
Harbor | Harbor Administration |
Trivy | Trivy on GitHub |
Docker images
docker pull alcide/iskan:v1.4.0
docker pull alcide/iskan:latest
docker pull alcide/iskan:v1.4.0-localscan
docker pull alcide/iskan:localscan
docker pull alcide/iskan:v1.4.0-debug
docker pull alcide/iskan:debug