polaris VS kube-bench

We are delighted to announce that the interface of Ryviu account has been updated according to Shopify Polaris. Aligned with Shopify's top-tier standards for safety, performance, and functionality, these changes aim to simplify the process of importing and managing product reviews for your store.

Shopify Polaris: Shopify's Polaris Design System features a color module with primary, secondary, and functional colors, plus an extended palette for shades and tints. Similar to others, it underscores the role of color in conveying meaning, maintaining visual hierarchy, and ensuring accessibility.

shopify design system: https://polaris.shopify.com/

I love the idea because community contributions in OS projects are always super focused on the code aspect while the design work is performed by the core team. Sometimes the results are shared publicly (Cals Design System or Shopify's Polaris)

Currently Im using templates, so my options are kind of limited by that. I cannot do fancy React or Vue apps (would love to tho). My main point of reference is the Polaris design system by Shopify (https://polaris.shopify.com). Simple but efficient.

Learn UX. There are a couple of publicly available design systems out there that give some guidelines about UX: Material Design, Polaris, Human Interface Guidelines.

https://polaris.shopify.com/ - Shopify

However, no matter how well our applications are secured, the security of our entire IT environment ultimately depends on the security of our infrastructure. Therefore, in the lab to follow, we will shift our focus away from Kubernetes workloads and instead explore how we can evaluate and improve upon the security of our Kubernetes clusters with kube-bench, the industry-leading Kubernetes benchmarking solution developed by Aqua.

The official repository can be found here with detailed installation instructions.

curl -L [https://github.com/aquasecurity/kube-bench/releases/download/v0.6.10/kube-bench_0.6.10_linux_amd64.deb](https://github.com/aquasecurity/kube-bench/releases/download/v0.6.2/kube-bench_0.6.2_linux_amd64.deb) -o kube-bench_0.6.10_linux_amd64.deb

I haven't used Kubernetes for a while, but shouldn't kube-bench (1) be enough? Do you have to check anything manually?

(1) https://github.com/aquasecurity/kube-bench

kube-bench checks whether Kubernetes is deployed securely by running the checks documented in the CIS Kubernetes Benchmark. We can deploy kube-bench as a Job that runs daily and consume its report in CI/CD to pass or fail the pipeline based on the level of severity.

kube-bench can be executed as a simple command on the host, as a container on the host using Docker command, or as a job inside Kubernetes Cluster. In case it is run inside a container/pod, it will need access to the PID namespace of the host system. The methods to run kube-bench in AKS, EKS, GKE, On-prem cluster, Openshift and ACK (Alibaba Cloud Container Service For Kubernetes) are different but well documented.

Check this out: kube-bench - CIS Benchmark

Kube-bench, written as a Go application, is deployable as a container. Ready-made job.yaml files make it easy to run Kube-bench inside a Kubernetes cluster or on a managed Kubernetes service, such as Azure Kubernetes Service (AKS), Amazon Elastic Kubernetes Service (EKS), Google Kubernetes Engine (GKE), or OpenShift. Here's a link to Kube-Bench on Github

kube-bench - Checks whether Kubernetes is deployed securely by running CIS Kubernetes Benchmark