https://github.com/helm/repo-audit
Repo Auditing tool - pre-alpha status
https://github.com/helm/repo-audit
Last synced: about 1 year ago
JSON representation
Repo Auditing tool - pre-alpha status
- Host: GitHub
- URL: https://github.com/helm/repo-audit
- Owner: helm
- License: apache-2.0
- Created: 2018-10-26T21:31:06.000Z (over 7 years ago)
- Default Branch: master
- Last Pushed: 2018-11-13T17:25:10.000Z (over 7 years ago)
- Last Synced: 2025-03-25T06:07:24.625Z (about 1 year ago)
- Language: Go
- Homepage:
- Size: 24.4 KB
- Stars: 4
- Watchers: 9
- Forks: 6
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
- Code of conduct: code-of-conduct.md
- Audit: audit/audit.go
Awesome Lists containing this project
README
# Helm Repo Audit
This tool, as the name suggests, enables you to audit a Helm repository.
A tool like this could be run at regular intervals (k8s CronJob?) to audit a repo.
## TODO
* [x] Check if digests for a given version have changed in a index file
* [x] Email a report
* [ ] (Opt-in) check if newly released charts, since the last run, match their digest
* [ ] (opt-in) check if all charts match their digest (this will download all charts on all runs)
* [ ] (Opt-in) check and report which charts have provenance files
* [ ] (Opt-in) check new chart versions, since the last run, against their prov files
* [ ] (Opt-in) check all chart versions against their prov files
* [ ] Fire off a webhook on completion of an audit
* [ ] Audit metadata in the charts (need a plan for this)