I reached out to Kev Johnson from Runecast, so that I could deploy their tool and analyze a Kubernetes cluster. Runecast implements checks against the CIS Benchmark for Kubernetes. I did actually find an issue with their deployment in my lab, Kev connected me to one of their engineers to look into it and help resolve. I believe this made them rethink their Helm Chart configuration too. Great service especially as I was just poking around at the software.
Runecast have a great solution for monitoring complaince in your environment for a number of your platforms, and they are rapidly expanding to additional platorms as well.
Kubecon finished a few days ago, but I've not even scratched the surface and there's too much I need to go back and watch, or watch again!
- 3 Key Takeaways from KubeCon EU 2021
- KubeCon EU 2021 Recap - A Celebration of Kubernete
- This Week in Programming: What’s the Takeaway of KubeCon EU 2021?
- KubeCon EU 2021: Developers, Developers, Developers (and Control Planes)
- KubeCon Europe 2021 Wrapup
- KubeCon EU 2021: Tetrate Takeaways
- Runecast - you can deploy the analyzer directly in your kubernetes cluster using Helm or you can run it outside of the cluster and then connect it using a service account. See the documentation.