Our great sponsors
-
kube-bench
Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
The Center for Internet Security provides many guidelines and benchmark tests for best practices in securing your code. The CIS has published a benchmark for Kubernetes. The kube-bench is an open-source tool that checks whether Kubernetes is deployed securely by running the CIS benchmark for Kubernetes checks. It's written as a Go application and also distributed as a container. Each test is defined in the YAML and also supports JSON-format output that can be used to evolve along wiht Kubernetes and to integrate with automaton tools.
Related posts
- Evaluating and securing your Kubernetes infrastructure with kube-bench
- Quickstart - Aqua Security Kube-Bench
- Kubernetes Security: 10 Best Practices from the Industry and Community
- Securing Kubernetes Cluster using Kubescape and kube-bench
- What are some fundamental security practices for the self hosted k8s cluster?