{"id":30063451,"url":"https://github.com/theunknownsoul/k8s-security","last_synced_at":"2026-05-14T23:37:34.861Z","repository":{"id":301338655,"uuid":"1007889164","full_name":"TheUnknownSoul/k8s-security","owner":"TheUnknownSoul","description":"CLI tool for Kubernetes security inspection. ","archived":false,"fork":false,"pushed_at":"2025-08-06T13:14:35.000Z","size":15689,"stargazers_count":0,"open_issues_count":0,"forks_count":0,"subscribers_count":0,"default_branch":"master","last_synced_at":"2025-08-06T14:33:39.926Z","etag":null,"topics":["hacking","kubernetes","security","security-tools","trivy"],"latest_commit_sha":null,"homepage":"","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/TheUnknownSoul.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2025-06-24T17:31:31.000Z","updated_at":"2025-08-06T13:13:15.000Z","dependencies_parsed_at":"2025-07-17T03:58:20.591Z","dependency_job_id":"04c59c74-5a3c-4106-96a9-d51a2d8e06f8","html_url":"https://github.com/TheUnknownSoul/k8s-security","commit_stats":null,"previous_names":["theunknownsoul/k8s-security"],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/TheUnknownSoul/k8s-security","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/TheUnknownSoul%2Fk8s-security","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/TheUnknownSoul%2Fk8s-security/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/TheUnknownSoul%2Fk8s-security/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/TheUnknownSoul%2Fk8s-security/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/TheUnknownSoul","download_url":"https://codeload.github.com/TheUnknownSoul/k8s-security/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/TheUnknownSoul%2Fk8s-security/sbom","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":269364300,"owners_count":24405000,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","status":"online","status_checked_at":"2025-08-08T02:00:09.200Z","response_time":72,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["hacking","kubernetes","security","security-tools","trivy"],"created_at":"2025-08-08T04:27:19.418Z","updated_at":"2026-05-14T23:37:34.855Z","avatar_url":"https://github.com/TheUnknownSoul.png","language":"Python","funding_links":[],"categories":[],"sub_categories":[],"readme":"![Static Badge](https://img.shields.io/badge/Language%3A_-_Python_v.3-blue)\n![Static Badge](https://img.shields.io/badge/Requires%3A_-_trivy_-purple)\n![Static Badge](https://img.shields.io/badge/Requires%3A_-_CVEmap_-purple)\n![Static Badge](https://img.shields.io/badge/Requires%3A_-_bash_-green)\n\n# Kubernetes security inspector  :lock: [![Awesome](https://awesome.re/badge.svg)](https://awesome.re)\nInteractive CLI tool for Kubernetes security assessment.\n## Introduction\n\n\n![Скриншот](./img/screen.png)\n\nProject consists of two main parts:\n1. Python scripts for gathering information about Kubernetes cluster and its components.\n2. Script that triggers trivy and scan vulnerabilities.\n3. Python scripts that count number of vulnerabilities, group them by severity and \ngive additional info about them.\n\n#### Required tools\n* Python 3.*\n* bash\n* kubectl\n* [Trivy](https://github.com/aquasecurity/trivy)\n* [CVEmap](https://github.com/projectdiscovery/cvemap)\n\n\n## Installation and usage\n* clone repository with ```git clone https://github.com/TheUnknownSoul/k8s-security```\n* run ```chmod +x k8_inspector.sh```\n* run ```./k8_inspector.sh```\n* using arrows select what you want to do\n* follow instructions and hints in the terminal\n\n\n### Version 0.0.1\n- Check Role - base access control\n- Count same type vulnerabilities \n- Give info about CVE's\n\n### Planned features\n- Check Pod Security Policies\n- Check Network Policies\n- Check Ingresses\n- Check ConfigMaps\n- Check Service Accounts\n- Check Nodes\n- Check Deployments\n- Check StatefulSets\n- Check DaemonSets\n- Check Jobs\n- Check CronJobs\n- Check Services\n- Check Volumes\n- Check Helm releases","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ftheunknownsoul%2Fk8s-security","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Ftheunknownsoul%2Fk8s-security","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ftheunknownsoul%2Fk8s-security/lists"}