https://github.com/opslevel/kubectl-opslevel

kubectl-opslevel is a command line tool that enables you to import & reconcile services with OpsLevel from your Kubernetes clusters.
https://github.com/opslevel/kubectl-opslevel

go golang kubernetes

Last synced: 11 months ago
JSON representation

kubectl-opslevel is a command line tool that enables you to import & reconcile services with OpsLevel from your Kubernetes clusters.

• Host: GitHub
• URL: https://github.com/opslevel/kubectl-opslevel
• Owner: OpsLevel
• License: mit
• Created: 2021-03-18T21:02:45.000Z (about 5 years ago)
• Default Branch: main
• Last Pushed: 2025-07-18T18:08:10.000Z (11 months ago)
• Last Synced: 2025-07-18T23:13:50.876Z (11 months ago)
• Topics: go, golang, kubernetes
• Language: Go
• Homepage: https://www.opslevel.com/docs/integrations/kubernetes/
• Size: 14.8 MB
• Stars: 6
• Watchers: 11
• Forks: 10
• Open Issues: 7
• Metadata Files:
  • Readme: Readme.md
  • Changelog: CHANGELOG.md
  • Contributing: CONTRIBUTING.md
  • License: LICENSE

Awesome Lists containing this project

README

          


    

        

    

        

    

        

    

        

    

        

    

        

    

        

    

        





 Prerequisite |

 Installation |

 CONTRIBUTING |

 Local Dev/Testing Instructions |

 Quickstart |

 Documentation |

 Troubleshooting



[![Overall](https://img.shields.io/endpoint?style=flat&url=https%3A%2F%2Fapp.opslevel.com%2Fapi%2Fservice_level%2F4SZo_XBzNM8K84zLHYdEXCcvBL6q_pTzUMSR09DmnZM)](https://app.opslevel.com/services/opslevel_kubernetes_sync/maturity-report)

`kubectl-opslevel` is a command line tool that enables you to import & reconcile services with [OpsLevel](https://www.opslevel.com/) from your Kubernetes clusters.  You can also run this tool inside your Kubernetes cluster as a job to reconcile the data with OpsLevel periodically using our [Helm Chart](https://github.com/OpsLevel/helm-charts).

## Prerequisites

- [kubectl](https://kubernetes.io/docs/tasks/tools/install-kubectl/)

- [jq](https://jqlang.github.io/jq/download/)

- [OpsLevel API Token](https://app.opslevel.com/api_tokens)

## Installation

```sh

# OR - manually copy the binary to /usr/bin/local

brew install opslevel/tap/kubectl

```

## Docker

The docker container is hosted on [AWS Public ECR](https://gallery.ecr.aws/opslevel/kubectl-opslevel)

## Quickstart

```sh

# Generate a config file

kubectl opslevel config sample > ./opslevel-k8s.yaml

# Like Terraform, generate a preview of data from your Kubernetes cluster

# NOTE: this step does not validate any of the data with OpsLevel

 OPSLEVEL_API_TOKEN=XXXX kubectl opslevel service preview

# Import (and reconcile) the found data with your OpsLevel account

 OPSLEVEL_API_TOKEN=XXXX kubectl opslevel service import

```

[![asciicast](https://asciinema.org/a/bv6WTcqkGtmC5wXN4VXYr035y.svg)](https://asciinema.org/a/bv6WTcqkGtmC5wXN4VXYr035y)

### Current Sample Configuration

```yaml

version: "1.3.0"

service:

  import:

    - selector:

        apiVersion: apps/v1

        kind: Deployment

        excludes:

          - .metadata.namespace == "kube-system"

          - .metadata.annotations."opslevel.com/ignore"

      opslevel:

        aliases:

          - '"k8s:\(.metadata.name)-\(.metadata.namespace)"'

          - '"\(.metadata.namespace)-\(.metadata.name)"'

        description: .metadata.annotations."opslevel.com/description"

        framework: .metadata.annotations."opslevel.com/framework"

        language: .metadata.annotations."opslevel.com/language"

        lifecycle: .metadata.annotations."opslevel.com/lifecycle"

        name: .metadata.name

        owner: .metadata.annotations."opslevel.com/owner"

        product: .metadata.annotations."opslevel.com/product"

        properties:

          prop_object: .metadata.annotations.prop_object

        repositories:

          - '{"name": "My Cool Repo", "directory": "", "repo": .metadata.annotations.repo} | if .repo then . else empty end'

          - .metadata.annotations.repo

          - '.metadata.annotations | to_entries |  map(select(.key | startswith("opslevel.com/repo"))) | map({"name": .key | split(".")[2], "directory": .key | split(".")[3:] | join("/"), "repo": .value})'

        system: ""

        tags:

          assign:

            - '{"imported": "kubectl-opslevel"}'

            - '.metadata.annotations | to_entries |  map(select(.key | startswith("opslevel.com/tags"))) | map({(.key | split(".")[2]): .value})'

            - .metadata.labels

          create:

            - '{"environment": .spec.template.metadata.labels.environment}'

        tier: .metadata.annotations."opslevel.com/tier"

        tools:

          - '{"category": "other", "environment": "production", "displayName": "my-cool-tool", "url": .metadata.annotations."example.com/my-cool-tool"} | if .url then . else empty end'

          - '.metadata.annotations | to_entries |  map(select(.key | startswith("opslevel.com/tools"))) | map({"category": .key | split(".")[2], "displayName": .key | split(".")[3], "url": .value})'

```

### Enable shell autocompletion

We have the ability to generate autocompletion scripts for the shell's `bash`, `zsh`, `fish` and `powershell`.  To generate

the completion script for macOS zsh:

```sh

kubectl opslevel completion zsh > /usr/local/share/zsh/site-functions/_kubectl-opslevel

```

Make sure you have `zsh` completion turned on by having the following as one of the first few lines in your `.zshrc` file

```sh

echo "autoload -U compinit; compinit" >> ~/.zshrc

```

### JSON-Schema

The tool also has the ability to output a [JSON-Schema](https://json-schema.org/) file for use in IDEs when editing the configuration file.

You can read more about adding JSON-Schema validate to [VS Code](https://code.visualstudio.com/docs/languages/json#_json-schemas-and-settings)

```sh

kubectl opslevel config schema > ~/.opslevel-k8s-schema.json

```

Then add the following to your [VS Code user settings](https://code.visualstudio.com/docs/getstarted/settings)

```json

    "yaml.schemas": {

        "~/.opslevel-k8s-schema.json": ["opslevel-k8s.yaml"],

    }

```

## Troubleshooting

### No services output from `service preview`

This can happen for a number of reasons:

  - Kubernetes RBAC permissions do not allow for listing namespaces

  - Configuration file exclude rules exclude all found resources

### Unable to connect to Kubernetes cluster

Generally speaking if any other command works IE `kubectl get deployment` then any `kubectl opslevel` command should work too.  If this is not the case then there is likely a special authentication mechanism in place that we are not handling properly.  This should be reported as a bug.

### A field mapped in the configuration file is not in the service data

For the most part `jq` filter failures are bubbled up but in certain edgecases they can fail silently.

The best way to test a `jq` expression in isoloation is to emit the Kubernetes resource to json IE `kubectl get deployment  -o json`

and then play around with the expression in [jqplay](https://jqplay.org/)

Generally speaking if we detect a json `null` value we don't build any data for that field.

### String interpolation has NULL in it

There is a special edgecase with string interpolation and null values that we cannot handle that is documented [here](https://github.com/OpsLevel/kubectl-opslevel/issues/36)

### Unable to list all Namespaces

Sometimes in tight permissions cluster listing of all Namespaces is not allowed.  The tool currently tries to list all Namespaces

in a cluster to use as a batching mechanism.  This functionality can be skipped by using

the explict list `namespaces` in the selector which skips the API call to Kubernetes to list all Namespaces.

```yaml

version: "1.3.0"

service:

  import:

    - selector: # This limits what data we look at in Kubernetes

        apiVersion: apps/v1 # only supports resources found in 'kubectl api-resources --verbs="get,list"'

        kind: Deployment

        namespaces:

          - default

          - kube-system

```