New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Explain Kubernetes auditing with Falco #14332
Conversation
Thanks for your pull request. Before we can look at your pull request, you'll need to sign a Contributor License Agreement (CLA). 📝 Please follow instructions at https://git.k8s.io/community/CLA.md#the-contributor-license-agreement to sign the CLA. It may take a couple minutes for the CLA signature to be fully registered; after that, please reply here with a new comment and we'll verify. Thanks.
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here. |
Deploy preview for kubernetes-io-master-staging ready! Built with commit af9329e https://deploy-preview-14332--kubernetes-io-master-staging.netlify.com |
Deploy preview for kubernetes-io-master-staging ready! Built with commit 8176441 https://deploy-preview-14332--kubernetes-io-master-staging.netlify.com |
/assign @stewart-yu |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Reviewing informally.
I hope these suggestions & comments are helpful.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Reviewed for
- Completeness
- Clarity
- Punctuation
- Conciseness
@leodido 👋 Thanks for this PR. Unfortunately, this content isn't suitable for K8s docs because:
These requirements aren't currently documented in our style guide. Sorry about that! I've opened #15576 to ensure that we correctly document these restrictions. /close |
@zacharysarah: Closed this PR. In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
@leodido I owe you an apology; I didn't realize that Falco is a CNCF incubator project. Given that Falco's in the incubator, it meets standards for inclusion with some feedback. (I'll leave a separate review shortly.) Sorry! 🙇 /reopen |
@zacharysarah: Reopened this PR. In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
@leodido This is well-written and clear. ✨Some nits, otherwise LGTM. 🚀
@radhikapc @thecrudge Sorry for the confusion! I owe you beverages at the next KubeCon. 🍻 |
@leodido Please remove the excess whitespace and squash your commits so we can proceed. 😄 |
@thecrudge @radhikapc 👋 Would you please poke @leodido to respond? I'd hate to close this PR again because it went inactive. 😳 |
Done
|
@zacharysarah sorry I was on vacation with little access to the internet. I'm going to fix the excess white spaces and squash the commits today! |
Co-authored-by: Lorenzo Fontana <lo@linux.com> Signed-off-by: Leonardo Di Donato <leodidonato@gmail.com> Co-Authored-By: Tim Bannister <tim@scalefactory.com> Co-Authored-By: Radhika Puthiyetath <radhika.dwaraka@gmail.com>
43d4701
to
8176441
Compare
/lgtm |
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: zacharysarah The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
@leodido Congratulations! 🎉 |
Co-authored-by: Lorenzo Fontana <lo@linux.com> Signed-off-by: Leonardo Di Donato <leodidonato@gmail.com> Co-Authored-By: Tim Bannister <tim@scalefactory.com> Co-Authored-By: Radhika Puthiyetath <radhika.dwaraka@gmail.com>
Example on how to use the CNCF Falco project to do Kubernetes auditing.
Here an asciinema showing the described steps.