This Guardrails agent is used to send Kubernetes cluster details to a Turbot Guardrails workspace using osquery with the guardrails-agent-kubernetes Helm chart.
Please see Guardrails Kubernetes Integration for more information.
To build the image locally run the Docker build command:
docker build ./kubernetes/docker/ \
-t guardrails-agent-kubernetes:latest \
--build-arg OSQUERY_VERSION=5.14.1 \
--build-arg KUBECTL_VERSION=1.31.3 \
--build-arg EXTENSION_VERSION=1.2.0-
OSQUERY_VERSION: This argument specifies the version of osquery to be installed in the Docker image. osquery is an operating system instrumentation framework that makes operating system analytics and monitoring easier. In your Dockerfile, this version is used to download the specific osquery package from the official osquery repository.
-
KUBECTL_VERSION: This argument specifies the version of kubectl to be installed in the Docker image. Kubectl is a command line tool for controlling Kubernetes clusters. In your Dockerfile, this version is used to download the specific kubectl binary from the official Kubernetes release page.
-
EXTENSION_VERSION: This argument specifies the version of the osquery extension for Kubernetes to be installed in the Docker image. This extension allows osquery to interact with Kubernetes. In your Dockerfile, this version is used to download the specific osquery extension tarball from the Steampipe Kubernetes plugin releases.
This repository is published under the Apache 2.0 (source code) and CC BY-NC-ND (docs) licenses. Please see our code of conduct. We look forward to collaborating with you!
Want to help but don't know where to start? Pick up one of the help wanted issues: