Documentation
¶
Index ¶
- Constants
- type Processor
- func (p *Processor) GeneratePSP(cssList []types.ContainerSecuritySpec, pssList []types.PodSecuritySpec) *v1beta1.PodSecurityPolicy
- func (p *Processor) GeneratePSPGrant(cssList []types.ContainerSecuritySpec, pssList []types.PodSecuritySpec) ([]types.PSPGrant, string)
- func (p *Processor) GenerateReport(cssList []types.ContainerSecuritySpec, pssList []types.PodSecuritySpec) *report.Report
- func (p *Processor) GetSecuritySpec() ([]types.ContainerSecuritySpec, []types.PodSecuritySpec, error)
- func (p *Processor) GetServiceAccount(ns, saName string) v1.ServiceAccount
- func (p *Processor) SetNamespace(ns string)
Constants ¶
View Source
const ( DaemonSet = "DaemonSet" Deployment = "Deployment" Pod = "Pod" StatefulSet = "StatefulSet" ReplicaSet = "ReplicaSet" ReplicationController = "ReplicationController" Job = "Job" CronJob = "CronJob" )
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type Processor ¶
type Processor struct {
// contains filtered or unexported fields
}
func NewProcessor ¶
NewProcessor returns a new processor
func (*Processor) GeneratePSP ¶
func (p *Processor) GeneratePSP(cssList []types.ContainerSecuritySpec, pssList []types.PodSecuritySpec) *v1beta1.PodSecurityPolicy
GeneratePSP generates Pod Security Policy
func (*Processor) GeneratePSPGrant ¶ added in v1.2.0
func (p *Processor) GeneratePSPGrant(cssList []types.ContainerSecuritySpec, pssList []types.PodSecuritySpec) ([]types.PSPGrant, string)
GeneratePSPGrant generates Pod Security Policies, Roles, RoleBindings for service accounts to use PSP
func (*Processor) GenerateReport ¶
func (p *Processor) GenerateReport(cssList []types.ContainerSecuritySpec, pssList []types.PodSecuritySpec) *report.Report
GenerateReport generate a JSON report
func (*Processor) GetSecuritySpec ¶
func (p *Processor) GetSecuritySpec() ([]types.ContainerSecuritySpec, []types.PodSecuritySpec, error)
GetSecuritySpec security posture
func (*Processor) GetServiceAccount ¶ added in v1.2.0
func (p *Processor) GetServiceAccount(ns, saName string) v1.ServiceAccount
func (*Processor) SetNamespace ¶
Source Files
Click to show internal directories.
Click to hide internal directories.