It would be nice if we could get support for CNPs as wel as regular NPs. I'm aware regular NPs are a bit easier to match to pods, but maybe someone has a clever idea how to implement this in an efficient way.
Which version of kube-score are you using?
kube-score version: 1.19.0
What did you do?
Scan a pod that is protected by a CiliumNetworkPolicy
What did you expect to see?
No warning.
What did you see instead?
[CRITICAL] Pod NetworkPolicy
· The pod does not have a matching NetworkPolicy
Create a NetworkPolicy that targets this pod to control who/what
can communicate with this pod. Note, this feature needs to be
supported by the CNI implementation used in the Kubernetes cluster
to have an effect.
zegl / kube-score
Kubernetes object analysis with recommendations for improved reliability and security. kube-score actively prevents downtime and bugs in your Kubernetes YAML and Charts. Static code analysis for Kubernetes.
2.8k
How does funding with Polar work?
1
Pay now to fund the work behind this issue.
2
Get updates on progress being made.
3
Maintainer is rewarded once the issue is completed.
FAQ
Backer
You're funding impactful open source efforts
Contributor
You want to contribute to this effort
Maintainer
You want to get funding like this too