Kubescape is a security tool designed for Kubernetes environments. It is used to assess the security posture of your Kubernetes clusters by identifying potential vulnerabilities and misconfigurations. It scans your Kubernetes cluster configuration and resources, looking for security issues, vulnerabilities, and best practice violations.

Usage of Kubescape in SSD

• Kubescape scans your Kubernetes cluster to detect issues based on the following security frameworks:

  • CIS Benchmark for Kubernetes

  • MITRE ATT&CK

  • NSA CISA

• SSD uses Kubescape to perform security analysis on your Kubernetes cluster. It runs security scans on clusters before deployment and block the deployments in insecure clusters.

• The scanned results help in calculating the overall image and application risk. These results are available in the Deploy section of the DBOM page as well as in the View Open Security Issues page.

To Manage Kubescape:

1. Navigate to Config > Integrations.

2. In the Artifact panel, click KubeScape.

3. The KubeScape integration page is displayed.

4. Enable or disable the Helm Scan toggle button.

Helm scans the helm charts continuously and automatically so that the security issues are addressed before the deployment. This scan is helpful when Kubernetes is used to run complex applications with many microservices as you can easily automate the deployment and management of the application, thus improving the reliability and stability.

5. Click Save.

6. You can click Edit to make changes to the Helm Scan toggle button.

7. Click Update.

The changes get updated.