Question 1

How to scan a Kubernetes deployment for security issues with kubectl-kubesec?

Accepted Answer

Use the command `kubectl kubesec-scan -n deployment `, which outputs a security score and specific advice like setting runAsNonRoot. For self-hosting, add `--url http://localhost:8080` after running the local Docker service.

Question 2

kubectl-kubesec vs kube-bench: which is better for Kubernetes security?

Accepted Answer

kubectl-kubesec focuses on scanning resource configurations for misconfigurations like privileged containers, while kube-bench checks cluster-level compliance with CIS benchmarks. kubesec is more for workload security, kube-bench for infrastructure hardening.

Question 3

Can kubectl-kubesec scan YAML files offline?

Accepted Answer

Yes, but indirectly; you need to apply the YAML to a cluster or use a mock environment. Self-hosting the kubesec service with Docker allows offline scanning by pointing to the local instance with the `--url` flag.

Question 4

What types of security issues does kubectl-kubesec detect?

Accepted Answer

It identifies common misconfigurations such as running containers as root, excessive kernel capabilities, host network or PID sharing, and provides recommendations like readOnlyRootFilesystem and dropping ALL capabilities based on kubesec.io's rules.

Question 5

How to install kubectl-kubesec on Windows?

Accepted Answer

The README doesn't specify Windows, but you can use the curl method adapted for Windows Subsystem for Linux or check for community builds. Installation via krew is cross-platform if krew is set up on Windows.

Question 6

Is kubectl-kubesec free to use with the cloud service?

Accepted Answer

The hosted kubesec.io service is generally free, but usage terms and rate limits might apply; self-hosting is open-source and free, though it requires maintaining your own Docker instance and staying updated with API changes.

Kubectrl Kubesec

What is Kubectrl Kubesec?

Overview

Use Cases

Best For

Related Projects

Found a gem we're missing?

Not Ideal For

Pros & Cons

Pros

Cons

Frequently Asked Questions