Explain Kubernetes auditing with Falco #14332
Conversation
|
Thanks for your pull request. Before we can look at your pull request, you'll need to sign a Contributor License Agreement (CLA). 📝 Please follow instructions at https://git.k8s.io/community/CLA.md#the-contributor-license-agreement to sign the CLA. It may take a couple minutes for the CLA signature to be fully registered; after that, please reply here with a new comment and we'll verify. Thanks.
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here. |
k8s-ci-robot
added
cncf-cla: no
k8s-ci-robot
added
cncf-cla: yes
|
Deploy preview for kubernetes-io-master-staging ready! Built with commit af9329e https://deploy-preview-14332--kubernetes-io-master-staging.netlify.com |
|
Deploy preview for kubernetes-io-master-staging ready! Built with commit 8176441 https://deploy-preview-14332--kubernetes-io-master-staging.netlify.com |
|
/assign @stewart-yu |
k8s-ci-robot
added
size/L
|
@leodido 👋 Thanks for this PR. Unfortunately, this content isn't suitable for K8s docs because:
These requirements aren't currently documented in our style guide. Sorry about that! I've opened #15576 to ensure that we correctly document these restrictions. /close |
|
@zacharysarah: Closed this PR. In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
|
@leodido I owe you an apology; I didn't realize that Falco is a CNCF incubator project. Given that Falco's in the incubator, it meets standards for inclusion with some feedback. (I'll leave a separate review shortly.) Sorry! 🙇 /reopen |
|
@zacharysarah: Reopened this PR. In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
There was a problem hiding this comment.
@leodido This is well-written and clear. ✨Some nits, otherwise LGTM. 🚀
|
@radhikapc @thecrudge Sorry for the confusion! I owe you beverages at the next KubeCon. 🍻 |
|
@leodido Please remove the excess whitespace and squash your commits so we can proceed. 😄 |
|
@thecrudge @radhikapc 👋 Would you please poke @leodido to respond? I'd hate to close this PR again because it went inactive. 😳 |
|
Done
|
|
@zacharysarah sorry I was on vacation with little access to the internet. I'm going to fix the excess white spaces and squash the commits today! |
Co-authored-by: Lorenzo Fontana <lo@linux.com> Signed-off-by: Leonardo Di Donato <leodidonato@gmail.com> Co-Authored-By: Tim Bannister <tim@scalefactory.com> Co-Authored-By: Radhika Puthiyetath <radhika.dwaraka@gmail.com>
leodido
force-pushed
the
falco-k8s-audit
branch
from
43d4701
to
8176441
Compare
k8s-ci-robot
added
size/M
|
/lgtm |
k8s-ci-robot
added
the
lgtm
|
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: zacharysarah The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
k8s-ci-robot
added
the
approved
|
@leodido Congratulations! 🎉 |
Co-authored-by: Lorenzo Fontana <lo@linux.com> Signed-off-by: Leonardo Di Donato <leodidonato@gmail.com> Co-Authored-By: Tim Bannister <tim@scalefactory.com> Co-Authored-By: Radhika Puthiyetath <radhika.dwaraka@gmail.com>
Example on how to use the CNCF Falco project to do Kubernetes auditing.
Here an asciinema showing the described steps.