scanner

package

v1.11.1 Latest Latest Go to latest Published: Mar 27, 2024 License: Apache-2.0 Imports: 25 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/kubewarden/audit-scanner

Links

Open Source Insights

Documentation ¶

Index ¶

type Scanner
- func NewScanner(policiesClient *policies.Client, k8sClient *k8s.Client, ...) (*Scanner, error)

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

This section is empty.

Types ¶

type Scanner ¶

type Scanner struct {
	// contains filtered or unexported fields
}

Scanner verifies that existing resources don't violate any of the policies

func NewScanner ¶

func NewScanner(
	policiesClient *policies.Client,
	k8sClient *k8s.Client,
	policyReportStore *report.PolicyReportStore,
	outputScan bool,
	disableStore bool,
	insecureClient bool,
	caCertFile string,
) (*Scanner, error)

NewScanner creates a new scanner If insecureClient is false, it will read the caCertFile and add it to the in-app cert trust store. This gets used by the httpClient when connection to PolicyServers endpoints.

func (*Scanner) ScanAllNamespaces ¶

func (s *Scanner) ScanAllNamespaces(ctx context.Context) error

ScanAllNamespaces scans resources for all namespaces, except the ones in the skipped list. Returns errors if there's any when fetching policies or resources, but only logs them if there's a problem auditing the resource of saving the Report or Result, so it can continue with the next audit, or next Result.

func (*Scanner) ScanClusterWideResources ¶

func (s *Scanner) ScanClusterWideResources(ctx context.Context) error

ScanClusterWideResources scans all cluster wide resources. Returns errors if there's any when fetching policies or resources, but only logs them if there's a problem auditing the resource of saving the Report or Result, so it can continue with the next audit, or next Result.

func (*Scanner) ScanNamespace ¶

func (s *Scanner) ScanNamespace(ctx context.Context, nsName string) error

ScanNamespace scans resources for a given namespace. Returns errors if there's any when fetching policies or resources, but only logs them if there's a problem auditing the resource of saving the Report or Result, so it can continue with the next audit, or next Result.

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL