-
Notifications
You must be signed in to change notification settings - Fork 819
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
kubescape cli didn't scan all controls although kubescape-operator is installed in cluster. #1466
Comments
Hi @paokrab , |
@Daniel-GrunbergerCA
|
i see the same thing. Controls that require visibility on the nodes are skipped, even with the kubescape operator installed. How does one run a scan such as one for the CIS framework, where the host-scanner daemonset will need to be deployed? |
Upon deploying the kubescape operator chart, you'll encounter a Deployment named Consequently, we strongly advise conducting cluster scans using the kubescape operator rather than relying on the CLI. I'm leaving this issue open so I will remember to update the log because I see it is not clear enough. |
Resolved in release v3.0.4 |
Description
I have installed kubescape-operator helm chart and enable host scanner, when i run with kubescape api host
scanner pod is started to run and report has no action required but when i run with kubescape cli it's notice about
This control requires the host-scanner capability. To activate the host scanner capability, proceed with the installation
of the kubescape operator chart found here: https://github.com/kubescape/helm-charts/tree/main/charts/kubescape-operator and some controls in report need action required.
Environment
OS:
RHEL8
Version:
v3.0.0
Steps To Reproduce
kubescape scan framework cis-v1.23-t1.0.1 -v
Expected behavior
All controls must be test.
Controls: 121 (Failed: 30, Passed: 91, Action Required: 0)
Actual Behavior
Some controls in report show Action Required *
Controls: 121 (Failed: 33, Passed: 41, Action Required: 47)
The text was updated successfully, but these errors were encountered: