k8sgpt integration with aquasec Trivy

Renjith Ravindranathan
techbeatly
Published in
2 min readApr 16, 2023
Image Courtesy : k8sgpt.ai

In the previous article, I covered the basic functionality of k8sgpt and in this post I will take you through a recent enhancement on the CLI, which is the integration with Trivy CLI scanner. Let’s check it out.

Disclaimer : Below steps are written based on an assumption that you have workloads running on Kubernetes cluster and k8sgpt CLI installed on the machine and also have access to the running cluster with at least read/query permission.

Steps

  1. After installing the k8sgpt CLI, we need to do an activation of additional filters
k8sgpt filter list

To activate trivy scanner filter, execute the below command

k8sgpt filter add VulnerabilityReport

2. Let's do a check within the cluster.

k8sgpt analyze --filter=VulnerabilityReport

We can see the results in the console after execution, providing the CVE ID and a reference for additional info and mitigations plan in the Aquasec site.

Convenient right? We hope that additional integration with other tools will be available in the subsequent k8gpt version. That's all for now, and thanks for reading.

In case of any queries, please feel free to connect with me via the below social links

--

--

techbeatly
techbeatly

Published in techbeatly

Articles and how-to’s on #ansible, #openshift, #kubernetes #terraform and other #devops technologies. https://www.techbeatly.com

Renjith Ravindranathan
Renjith Ravindranathan

Written by Renjith Ravindranathan

A DevOps engineer by profession, Dad, Traveler & sometimes, like to tweak around stuff inside memory constrained devices. Currently living in the Netherlands.

No responses yet